Authenticate database users in OVD 11g

Similar Messages

• 11G Modplsql Basic Authentication not working for globally identified database users

  I have a modplsql dad that uses Basic authentication.  When I supply a username and password where the database user is locally defined in the database using the "identified by" syntax the authentication works perfectly and the modplsql app works.  When I try to authenticate a database user that is defined in the database using the "identified globally" syntax authentication fails.  Any idea on how to get modplsql app to work with users identified via OID?
  Thanks,
  Phil

  Hi,
  Before deploying, have you changed:
  Application properties -> Deployment
  Remove the selection from "Auto Generate and Syncronize weblogic-jdc.xml ....."
  Kind Regards

• Ldapbind to database adapter users in OVD with email

  Hi!
  Can anyone tell me howto ldapbind to database adapter users in OVD with email or uid?
  Ldapbind with full DN work just fine.
  Thanks!

  >
  Also I can bind to users in database CRM OVD-DB table using
  ldapbind -h ovd.mydomain.com -p 6501 -D "cn=extcustomername,cn=customers,cn=users,dc=mydoamin,dc=com" -w %custpwd%
  But I getting "ldap_bind: Invalid credentials" error trying to bind with:
  ldapbind -h ovd.mydomain.com -p 6501 -D cn=extcustomername -w %custpwd%You can bind with UPN to AD because AD is special.
  You won't be able to bind with cn=extcustomername using out of the box adapter. If you write your own plugin that will look up the DN based on cn=extcustomername, then have the plugin do the bind with the DN for you, it'll work. Then you would have to make sure this plugin will work with the database adapter, I haven't tried it so I don't know.
  If you're trying to make this bind with cn=extcustomername work for OAM to OVD, then you don't need to do it. Leave the adapter as is (bind with full DN). External users will login to OAM-protected application with their username or whatever is the value of cn. OAM will then look up the DN based on the cn or any other attribute, this is configured in authentication scheme in credential_mapping plugin. Take a look at the OBE example: http://www.oracle.com/technology/obe/fusion_middleware/im1014/ovd-oam/index.htm

• New HTMLDB User - Want to authenticate against a database user

  Greetings... I would like to authenticate a user sign-in/logon screen against database users setup in the database. It appears to me that DAD might do this, but I'm a bit fuzzy on how to make it work. I looked in some of the FAQ's here and can't seem to find something that tells me how to do this. I'd be thankful for any help you can give this old DBA who's stepping into HTMLDB Development.
  (Love the product so far by the way!)
  Robert

  Robert - It depends on what your aim is, but one way to do it is to create a new DAD without a username or password in the connect info. This will require users to respond to the basic authentication challenge allowing those who have database accounts to authenticate to your application.
  Regardless of which database account is used to authenticate, keep in mind that all SQL and PL/SQL in the application executes as the schema designated as the application's "owner" or parsing schema, so the identity of the authenticated user with respect to database roles and privileges plays no part unless you actively use the session's USER value in VPD/RLS, for example.
  Scott

• OVD 11g - How to do Join in DB Adapter?

  I must be missing something but for the life of me I cannot see where in the OVD 11g administrative user interface (i.e., ODSM) I can set a join condition between 2 tables in a single database adapter.
  In the 10g Eclipse based interface there was a panel between the selection of tables and the mapping of LDAP attributes to columns that allowed me to provide join conditions between the selected tables. For example I could add HR.EMPLOYEES and HR. JOBS to the adapter and then tell the adapter to do a join on EMPLOYEES.JOB_ID=JOBS.JOB_ID.
  I have crawled through the admin guide and stared at the new 11g based web interface for creating/updating the adapter and for the life of me I can't see where or how to specify this join condition within a single database adapter instance? Did that get dropped somehow in the conversion from Eclipse to ADF? If so am I going to have to 'backdoor' the join via the adapter.os_xml file?
  Thanks in advance

  Hi, Did you find a solution? I am looking to doing a simple join between 2 tabls too and do not see any way of specifying it in the DB adapter..
  Thanks!

• ORASSO database user privileges

  Hi-
  We are using 10G SSO, in the OID database DBA role is assigned to ORASSO user.
  I am unable to find that why do we require DBA role for this user, can we revoke DBA role from ORASSO?
  Regards

  Hio Srini,
  Thanks for your feedback. We are using Discoverer 11g on a 10g database. OS on client machine running Discoverer Desktop is Windows xp and im pretty sure its solaris on the box.
  The eulowner user is indeed a database account and was specifically created to create the eul with. Therefore with this in mind, i created a new database user with resource and connect privs. Once this was created i navigated to Discoverer Administrator expecting to see the user within the dropdown menu under tool > priviledges, but the new user namely disco_user is not appearing in the lsit for selection.
  I'm wondering if this eul was created as an apps mode eul, would this determine whether standard database users are able to be selected in this mode? The full error message when logging into Discoverer Desktop is;
  unable to connect to: disco_user@db you do not have access priviledges to any end user layer tables.
  This message appears does apear quite rightly as i have found before when no priviledges have been assigned to the user in admin, but without the ability to select the user from the dropdown list, im unable to grant these.
  Please let me know if you have any further questions. I appreciate your help.
  Simon

• Facing Parse Errors after upgrading database from 10g to 11g

  Hi,
  We are facing parse errors in the SQL's after upgrading database from 10g to 11g.
  Kindly look into below parse errors.
  ********************************** Parse Error *****************************************************
  Tue Aug 13 14:13:08 2013
  kksSetBindType 16173533-2: parse err=1446 hd=3c73061fb8 flg=100476 cisid=173 sid=173 ciuid=173 uid=173
  PARSE ERROR: ospid=15598, error=1446 for statement:
  SELECT ROWID,ORGANIZATION_CODE,PADDED_CONCATENATED_SEGMENTS,PRIMARY_UOM_CODE,REVISION,SUBINVENTORY_CODE,TOTAL_QOH,NET,RSV,ATP,ORGANIZATION_NAME,ITEM_DESCRIPTION,INVENTORY_ITEM_ID,ORGANIZATION_ID,LOCATOR_ID,LOCATOR_TYPE,ITEM_LOCATOR_CONTROL,ITEM_LOT_CONTROL,ITEM_SERIAL_CONTROL FROM MTL_ONHAND_LOCATOR_V WHERE (INVENTORY_ITEM_ID=:1) and (ORGANIZATION_ID=:2) order by ORGANIZATION_CODE,SUBINVENTORY_CODE,REVISION, organization_code, padded_concatenated_segments
  Tue Aug 13 14:13:10 2013
  kksfbc 16173533: parse err=942 hd=3c387c4028 flg=20 cisid=3266 sid=3266 ciuid=3266 uid=3266
  PARSE ERROR: ospid=29813, error=942 for statement:
  Select feature from toad.toad_restrictions where user_name=USER or user_name in ( select ROLE from sys.session_roles)
  kksfbc 16173533: parse err=942 hd=3c97d83648 flg=20 cisid=3266 sid=3266 ciuid=3266 uid=3266
  PARSE ERROR: ospid=29813, error=942 for statement:
  SELECT password
  FROM SYS.USER$
  WHERE  0=1
  kksfbc 16173533: parse err=6550 hd=35185e4278 flg=20 cisid=3266 sid=3266 ciuid=3266 uid=3266
  ----- PL/SQL Stack -----
  ----- PL/SQL Call Stack -----
    object      line  object
    handle    number  name
  319e277050        30  anonymous block
  319e277050        57  anonymous block
  PARSE ERROR: ospid=29813, error=6550 for statement:
  BEGIN sys.dbms_profiler."146775420110782746251362632012"; END;
  kksfbc 16173533: parse err=942 hd=3c142d8600 flg=20 cisid=3266 sid=3266 ciuid=3266 uid=3266
  ----- PL/SQL Stack -----
  ----- PL/SQL Call Stack -----
    object      line  object
    handle    number  name
  319e277050        67  anonymous block
  PARSE ERROR: ospid=29813, error=942 for statement:
  SELECT 1 FROM plsql_profiler_data WHERE 0 = 1
  Please help.
  Regards
  Suresh

  Hi Suresh,
  Apologies for misunderstanding..
  Tue Aug 13 14:13:08 2013
  kksSetBindType 16173533-2: parse err=1446 hd=3c73061fb8 flg=100476 cisid=173 sid=173 ciuid=173 uid=173
  PARSE ERROR: ospid=15598, error=1446 for statement:
  SELECT ROWID,ORGANIZATION_CODE,PADDED_CONCATENATED_SEGMENTS,PRIMARY_UOM_CODE,REVISION,SUBINVENTORY_CODE,TOTAL_QOH,NET,RSV,ATP,ORGANIZATION_NAME,ITEM_DESCRIPTION,INVENTORY_ITEM_ID,ORGANIZATION_ID,LOCATOR_ID,LOCATOR_TYPE,ITEM_LOCATOR_CONTROL,ITEM_LOT_CONTROL,ITEM_SERIAL_CONTROL FROM MTL_ONHAND_LOCATOR_V WHERE (INVENTORY_ITEM_ID=:1) and (ORGANIZATION_ID=:2) order by ORGANIZATION_CODE,SUBINVENTORY_CODE,REVISION, organization_code, padded_concatenated_segments
  Assuming you see the above error message in the alert log file, which was your original post, follow the below steps:
  1 Get the 'ospid' value from the error
  2. Issue the below command:
  SQL> select request_id,ORACLE_PROCESS_ID
    2 from fnd_concurrent_requests
    3 where request_id = 15598;
  3. After obtaining the request_id
  4, Query it from the front-end using SYSADMIN responsibility
  Hopefully this should get you the respective concurrent report/program.
  Thanks &
  Best Regards,

• Database User Management Connector ,

  Hi,
  Want some help in understanding the database user management connector to achieve the Requirement -
  " Need to do user provisioning to a database according to roles/entitlements assigned to a user and also wants that access to that database is managed according to roles assigned to that users "
  My environment is OIM 11g R2 which is integradted with OIA 11.1.1.5.0
  Googled and found that Database User mangement Connector is required for his purpose.Please confirm is this understanding correct or is there any better approach.
  Also want to know is it mandatory to install bundle on ICF for this connector?
  Thanks,
  Puneet
  Edited by: Puneet Lobana on May 23, 2013 11:55 PM

  Hi one more silly doubt.....can i connect to oracle database without using a connector but creating an IT Resource Type, IT Resource, RO,PD - adapters using stored procedure task to call a stored procedure on the target database?
  Pls help
  Regards,
  sk
  Edited by: sk on 19/08/2010 22:15

• How to get more information about users in oracle 11g

  Hi All,
  I need to know more infor about users in oracle 11g.
  1.How to check when user last time login to database.
  2.If user account is lock why it is locked? if it is locked by trying to loing with wrong password how to check how many times he attempted with wrong password...and other reasons also
  3.Wheni was trying to select user expire date it is showing empty value...can we check expire date through querys or we need to check profile?
  4.How to check when he was reset his password last time.
  Please correct me if am wrong. thanks
  Regards

  1.How to check when user last time login to database.AUDIT
  2.If user account is lock why it is locked? if it is locked by trying to loing with wrong password how to check how many times he attempted with wrong password...and other reasons alsoCheck Profile For this user and attr.
  3.Wheni was trying to select user expire date it is showing empty value...can we check expire date through querys or we need to check profile?
  SQL> select EXPIRY_DATE from dba_users ;
  EXPIRY_DA
  24-SEP-11
  24-SEP-11
  24-SEP-11
  24-SEP-11
  24-SEP-11
  24-SEP-11
  24-SEP-11
  23-MAY-13
  24-SEP-11
  24-SEP-11
  24-SEP-11 check
  expiry_date in dba_users is null
  4.How to check when he was reset his password last time.SELECT PTIME FROM SYS.USER$;

• Database link between Oracle 11g and MS Sql Server 2005 EE

  Hi everybody,
  I trying to create database link from Oracle 11g to MS Sql and I'm not succesful.
  I found tutorial for Oracle 10g, but it does't work.
  I created odbc data source, then I modified tnsnames.ora and listener.ora, then I created initkw.ora in HS directory and then I created dabase link, but it does't work.
  Can you help me please? Thanks for help ... ondra
  Tnsnames.ora:
  KW =
  (DESCRIPTION =
  (ADDRESS_LIST =
  (ADDRESS = (PROTOCOL = tcp)(HOST = oracle_ip)(PORT = 1521))
  (CONNECT_DATA =
  (SID = KW)
  (HS = OK)
  listener.ora:
  (SID_DESC =
  (SID_NAME = KW)
  (ORACLE_HOME = C:\oracle\product\11.1.0\db_1)
  (PROGRAM = hsodbc)
  initkw.ora
  HS_FDS_CONNECT_INFO = kw
  HS_FDS_TRACE_LEVEL = 0
  HS_FDS_TRACE_FILE_NAME = kw.trc
  create public database link KW connect to "user" identified by "pass" using 'KW';
  Message was edited by:
  user598176

  Hi, I get two errors.
  ORA-28545 - NET8 mistake Unable to restrieve textof NEWTWORK/NCR message 65535
  and then ORA-02063
  zenda
  I resolved one of error, I have wrong ip.
  But now I have another error:
  ORA-28500: connection from ORACLE to a non-Oracle system returned this message:
  [Generic Connectivity Using ODBC][Microsoft][ODBC Driver Manager] Data source name
  not found and no default driver specified (SQL State: IM002; SQL Code: 0)
  I have ODBC data source in system DSN
  PS: Our Oracle 11g database is 64 bit version
  Message was edited by:
  user598176

• Need to create OVD 11g java plugin to process data inside DB Adapter

  Hi All,
  I have OVD 11g setup and I have created one Database Adapter which retrives the database(sybase) values. The values present in DB contains white spaces at the end. So when this DB adapter displays the search result, it contains the white space as some special characters ,E.g(India_/_/_/). I cant do any modification in the DB. So I have to write a plugin which I need to add to the existing DB Adapter. The plugin should trim the white space in the value that we received from DB before it is displayed in the client. Even I am new to OVD plugin creation. help me with some sample code of this kind. I have code through API guide and plugin developer guide which confuses a lot saying lot of chain concepts and etc. So help me with basic implementation points where I can intercept the data received thro DB adapter and I can trim the white space and I can pass to the client.

  Thank you, that's very helpful.
  Creating an virtualattribute plugin with
  ContainerDN = "ou=orgTree,dc=org"
  ReplaceAttribute = supervisor = { cn=%supervisor%, ou=orgTree, dc=org }
  now populates a supervisor entry with supervisor being the RCU_OIM:ACT.PARENT_KEY value.
  However, that value is an integer, pointing the the key of the parent. Can I resolve the key to be SELECT RCU_OIM:ACT.ACT_NAME from RCU_OIM:ACT where RCU_OIM:ACT.ACT_KEY = %supervisor% ?
  Do I need to create another adapter, and perform a join? If so, can I use the same adapter? ie: the data that I need is all in the ACT table, so creating another seems a bit excessive.
  Thank you.

• Can't get rid of database user name contain '

  Hi All,
  I can't drop a database username whose name looks like "MaryO'Connor"(without quotes) in 10.2.0.1.0 version DB, it fails and gives me error msg like:
  ORA-00604: error occurred at recursive SQL level 1
  ORA-00933: SQL command not properly ended
  ORA-06512: at line 7
  Can anyone give me some ideas how to get rid of such database user whose name containing small case letters or punctuation, etc.?
  Notes,
  - I connected as sysdba
  - the command I used to drop the user is:
  SQL>drop user "MaryO'Connor" cascade;
  Thanks.

  This is a bug with the code name "6653002" that hits 10g for which currently there is no workaround.
  11g though seems to have this thing repaired.
  test case :
  *10g*
  [oracle@dell admin]$ sqlplus / as sysdba
  SQL*Plus: Release 10.2.0.4.0 - Production on Tue Aug 18 01:10:40 2009
  Copyright (c) 1982, 2007, Oracle.  All Rights Reserved.
  Connected to:
  Oracle Database 10g Enterprise Edition Release 10.2.0.4.0 - Production
  With the Partitioning, Data Mining and Real Application Testing options
  SQL>
  SQL> select * from v$version;
  BANNER
  Oracle Database 10g Enterprise Edition Release 10.2.0.4.0 - Prod
  PL/SQL Release 10.2.0.4.0 - Production
  CORE    10.2.0.4.0      Production
  TNS for Linux: Version 10.2.0.4.0 - Production
  NLSRTL Version 10.2.0.4.0 - Production
  SQL> create user "MaryX'Connor" identified by a default tablespace users temporary tablespace temp;
  User created.
  SQL>
  SQL>
  SQL> drop user "MaryX'Connor";
  drop user "MaryX'Connor"
  ERROR at line 1:
  ORA-00604: error occurred at recursive SQL level 1
  ORA-00933: SQL command not properly ended
  ORA-06512: at line 7
  SQL>*11g*
  [oracle@g5 ~]$ sqlplus / as sysdba
  SQL*Plus: Release 11.1.0.6.0 - Production on Tue Aug 18 01:24:42 2009
  Copyright (c) 1982, 2007, Oracle.  All rights reserved.
  Connected to:
  Oracle Database 11g Enterprise Edition Release 11.1.0.6.0 - 64bit Production
  With the Partitioning, OLAP, Data Mining and Real Application Testing options
  SQL> select * from v$version;
  BANNER
  Oracle Database 11g Enterprise Edition Release 11.1.0.6.0 - 64bit Production
  PL/SQL Release 11.1.0.6.0 - Production
  CORE    11.1.0.6.0      Production
  TNS for Linux: Version 11.1.0.6.0 - Production
  NLSRTL Version 11.1.0.6.0 - Production
  SQL>
  SQL>
  SQL> create user "MaryX'Connor" identified by a default tablespace users temporary tablespace temp;
  User created.
  SQL>
  SQL> drop user "MaryX'Connor";
  User dropped.
  SQL>

• URGENT: OVD 11g SQL Adapter?

  Hi all,
  I have a requirement to have OVD 11g talk to MY SQL backend. Is there a connector/adapter available out of the box for OVD 11g? If so, can you please give the links to documentation? If it is not available, can someone throw light on building a custom connector/adapter for OVD11g? This is very urgent.
  Thanks,
  Mahendra.

  I think there is a template for MySQL 5.x adapter in OVD 11g. Not 100% sure though. Even if there is not, you can use the "custom" database adapter template, which will work. Here is the link which describes the adapters in OVD: http://www.art2dec.com/documentation/docs/fmw11g1114documentation/oid.1111/e10046/basic_adapters.htm#CHDFCEAE
  Read the section on "custom url" for database adapters and you would be good. You will have to place the required sql jar files in the OVD lib path as well.
  Hope this helps. Let us know.
  PS: Do not write "urgent" in public posts for people who are volunteering to help for free. :-)

• Query to know a user is a Database User or a Windows User

  Hi All,
  Can any one help me with the query to find out the given user name is a database user or a windows user in oracle 10g/11g?
  Thanks in advance
  MK.

  ManuK wrote:
  I think i may not express what i really need.
  I have a set of users in the database. Some are database users and some are external users.
  I'm a bit more confused. Do you mean with database users, the schema users, the owners of the tables?
  I was trying to find out can i take out external users using the query
  SELECT username FROM dba_users where password ='EXTERNAL';
  The PASSWORD column of DBA_USERS held in older releases a hashed value of the password of the/a database user.
  There is no such possibility of getting a distinction of users here.
  and database users using the query
  SELECT username FROM dba_users where password IS NULL;
  In the new releases this value is always NULL
  What you really need is what we described in earliers posts.
  Or you need to make clear by what you mean with WINDOWS USERS.
  Are this the USERS connecting from a WINDOWS CLIENT ( a PC/Notebook) to a database account in your database?
  Then look them up in V$SESSION ( OSUSER column )
  Or do you need to find the SCHEMA users that these WINDOWS users connnect to ( USERNAME column of V$SESSION )
  Regards,
  FJFranken

• Have OAM authenticate/authorize users against diff dir servers

  Hi folks,
  Is there a way to have OAM authenticate/authorize users against diff dir server under single OAM instance?
  We have standalone OAM 10_1_4_3_0 w OHS11g installed on linux and connected to a particular directory server (sun ldap). We also have an OAM-protected app which authenticate/authorizes users against the same dir server. Can we somehow configure rules/policies/etc, so that users accessing app B will be authenticated/authorized against dir server B; users accessing app C will be authenticated/authorized against dir server c; etc, without having multiple OAM instances?
  Any help is greatly appreciated
  Thank you, Roman

  OVD will not be able to figure out what directory servers its getting authenticated to. OVD is a virtual directory server which can talk to different data sources and fetch a match according to the request.
  For instance, if OVD is configured to AD, SunOne LDAP, OID and Oracle DB. When you call OVD for authentication, it will make a call to all the data sources (AD/OID/LDAP/DB) and gets a match and provides to OAM. If you have 2 Auth modules one with Sun LDAP and other with Oracle DB, OVD will not remember to which data source it should make a call. All it does is dynamically makes calls to all the configured data source and gets a matching results.
  To tell you in more detail - Consider App A is configured to authenticate against SunOne LDAP and App B is configured to get authenticate against Oracle DB. When user tries to login to App A; OAM makes a call to OVD and OVD [OVD don't have capability of maintaining the info of users and where they reside] will make a call to both SunOne LDAP and Oracle DB and when SunOne returns a matching record, OVD sends the authentication info to OAM.
  For better results, try to maintain the same set of schema across all your data sources.