Configuring TLS support in a clustered environment

Hi folks !
I couldn't find a definitive guide to TLS support in a clustered environment... So I'll give it a shout :)
Has anyone managed to configure TLS support in his/her cluster ?
My setup is as follows :
- we have two Ironports, clustered, who are addressed using a common name through a hardware loadbalancer (mxfarm)
- Each ironport is seen as a unique host when sending outbound emails (ironport-1 and ironport-2)
- I have installed a certificate in MACHINE mode on each of them (i.e. one certificate for ironport-1, another for ironport-2)
Now, when I want to enable TLS (in cluster mode), I get the message that a security/key certificate hasn't been installed....
Sooooooooo how should I do it ??
Thanks !!
Frédéric Lens

Hello,
We have four machines in a cluster, using TLS as default for inbound and outbound traffic.
Since we do not use load balancers we have individual certs for each machine. Besides that we have (company signed) certificates for each machine. These are used for systems management (HTTPS). (By the way... the certificate management is a terrible job if you have to maintain four machines with two certs each (and thus two certification paths). Hey Ironport: some major enhancements are possible on this field.....)
Since we use individual certs we have to install them in machine mode. The TLS policies are cluster based and this is configured and functioning without any problems.
I have a few attention points:
The certs that are installed before a machines has joined the cluster are removed on the moment you add this machine to the cluster. This in normally not done very frequently so I think this will not be the problem in this case, but it’s good to know that after joining the cluster you have the initial demo certs active again.
Even if you buy certificates from commercial vendors you must be sure you install the complete certification path. We have Verisign certs and had to install the intermediate certificate to get the chain complete.
You mention you have connected your MGA's to an incoming load balancer and send out mail via the individual hosts. I expect you to utilize three IP addresses for that (one incoming that is assigned to the load balancer and two others for the MGA's outgoing traffic). This means you must have three individual forward and reversed DNS entries. Since the CN of the cert must match the (public) DNS name of your system you should have individual certs for inbound and outbound traffic. The inbound cert (and intermediate certs) must be the same on both machines since these are is presented to the outside world as if they where one and should match the forward DNS name of the load balancer IP address. The outbound certs must be unique for each machine, matching the reversed DNS name of that machine.
I have two points that I'm not sure of, maybe someone else can clear this up:
The SMTP greeting normally contains the public systems hostname. I do not know if you can configure individual SMTP greetings for in and outbound mail and, if this is possible, if the inbound greeting can be the same on two clustered machines. Since you have two machines combined behind a loadbalancer I would expect the to present them selves to the public identically, for the outbound traffic is the individual machine IP address used, I would expect the system to identify it selves by the hostname that is in the PTR for the used IP address. Finally: I am not sure if this has any impact on TLS or not.
I always import the all intermediate certs for each cert I import. That means I install the two public intermediate certs twice and install the internal root and intermediate cert also twice. It might be sufficient to install both sets only once but I have never tested this. Who can tell if I am forcing myself into too much work or not?
I hope you solve your problem. My experience is that starting with certificates is most of the time a PITA (Pain In The Ass) but if you have figured out how to do it for a particular system it becomes quite simple.
Best regards
Steven

Similar Messages

Procedure to Install support packs on Clustering Environment.....!

Hi,
Can some please provide information (or ) documentation regarding the support packs installaton / Upgradation on Clustering Environment.
We are running on ECC 6.0 + Windows -2003,SP2.
I never done suport packs on clustering as we are planning for upgrade soon for one client.so i'm just loking for information like to gather information like pre-requisites,instructions and post upgradation activites and known problems etc.... I Would highly appriciated any assitance.
Many Thanks,
Vinod

It is done the same way as for the systems which have no HA. The procedure is the same.
Thanks,
Naveed

JMX in clustered environment

          hi all,
          i am little confused about how weblogic 'behaves' in following situation:
          - i have one adminserver and 4 managed servers in a clustered environment
          - i deploy an application on all the servers in the cluster
          the application (servlet based) registers an MBean with adminserver.
          question that i would like to ask is the following:
          if my app is deployed in a cluster with 4 servers,does it mean that i will have
          at least 4
          registrations of the same MBean? because in this case i'¨ll have to handle exceptions
          in case same objectname has been registered.
          can anyone clarify me?
          thanx in advance and regards
          marco


Is your configuration any different in the clustered environment? Are you using cache-coordination/synchronization in TopLink?
Any idea of what the application is doing that leads to the server running out of memory?
You may wish to use a memory profiler such as JProfiler or JProbe on the server to determine the cause of the memory leak.

Deploying in Clustered environment..

We are using Toplink 10.1.3 in our application and deploying the application in clustered environment. The application is running fine in single node but when deployed in clustered environment with 2 nodes of Jboss application server (4.0.3 sp1) then we are encountering OutOfMemory problem.
Can anyone help us whether there any specific settings that need to be done for Toplink to deploy the application in clustered environment...
An early response will be highly appreciated..
Thanks,

Is your configuration any different in the clustered environment? Are you using cache-coordination/synchronization in TopLink?
Any idea of what the application is doing that leads to the server running out of memory?
You may wish to use a memory profiler such as JProfiler or JProbe on the server to determine the cause of the memory leak.

Deploying Webapps in clustered environment

Hi All,
We have started the installation of BI 4.1 SP3. We have 3 Application servers on 3 machines (with only one CMS). We have a seperate server for the Tomcat.
We have installed the Tomcat too on the seperate machine.
We did create the BIlaunchpad.properties, CmcApp.properties and opendocument.properties files in the Webapps folder (under BOE).
The properties of the files looks like below,
[email protected]:6400
cms.default=USHPEWSAPP743:6400
Still, we are not able to access the CMS and Launchpad.

Is your configuration any different in the clustered environment? Are you using cache-coordination/synchronization in TopLink?
Any idea of what the application is doing that leads to the server running out of memory?
You may wish to use a memory profiler such as JProfiler or JProbe on the server to determine the cause of the memory leak.

EntSSO configuration in clustered environment

Hi All
I am trying to use SSO Applications to store credentials and use it on Send / Receive ports. It worked fine on the development machine which is a standalone box. But while moving it to a higher clustered environment, I am facing some issues.
BTS_Service is a BT service account which is added to both BTS_SSO_Admins and BTS_SSO_Affiliate_Admins
BTS_SSO_Service is an SSO Service account which is running the ENTSSO service and its also added to BTS_SSO_Admins and BTS_SSO_Affiliate_Admins
Logged in using BTS_Service account
Using SSO Administration - Created SSO Application as individual, allow tickets true.
Using SSO Client Utility - Added credentials to the SSO Application
Now logged back in using the normal user credentials
Ticketing component and pipeline is already deployed (tested in standalone - working fine)
On a WCF Send port, used the Ticketing Send pipeline, and on credentials tab, selected the SSO Application created in Step 2.
while running, I get the below error
There was a failure executing the send pipeline: "BizTalk_Server_Project1.SendPipelineSSOTicketRetriver, XXX.Pipeline.SSOTicketRetriever, Version=1.0.0.0, Culture=neutral, PublicKeyToken=sf343fs3t34daf8" Source: "SSO Ticket Retriever"
Send Port: "XXXRequestResponse_WCFCustom" URI: "http://XXXXXXXXXXXXXX/XXXXXXXXXXXXXXX" Reason: Access denied.
I have referred to Richard Seroter's post .
http://blogs.msdn.com/b/richardbpi/archive/2005/08/09/building-and-executing-a-biztalk-single-sign-on-scenario.aspx
Another big difference i see is that when in my development machine, i have windows accounts setup in BizTalk configuration under Enterprise SSO tab as below. while in the Clustered environment where I am facing the issue, windows accounts are not added.
Could that be the issue?
mayur macwan

Hi Mayur,
Since you are working in cluster environment might be the SSO admin is configured in this clustered node. Also, check whether this cluster node contains SSO admin group. If yes, add your credential into this group. Since SSO denied access is popping up I
believe you first try to add your credential in BizTalk SSO group (might be present in different cluster group).
Thanks

Issue in Synchronous File Read in clustered environment

Hi,
We are using clustered environment (4 managed servers) in Unix. In a OSB 11gR3 proxy service we are using Synchronous File Read. Randomly we are getting the below error. Let us know what could cause the issue. But the same code is working fine in a single stand-alone server configuration.
Error Code : BEA-380002 , Error Reason : Invoke JCA outbound service failed with connection error, exception: com.bea.wli.sb.transports.jca.JCATransportException: oracle.tip.adapter.sa.api.JCABindingException: oracle.tip.adapter.sa.impl.fw.ext.org.collaxa.thirdparty.apache.wsif.WSIFException: servicebus:/WSDL/wsdlPathAndName [ SynchRead_ptt::SynchRead(Empty,body) ] - WSIF JCA Execute of operation 'SynchRead' failed due to: No Data to process.
No Data to process.
File /root/oracle/domains/osb/11.1.1.4/cluster/data/osb2/FolderName/Filename.txt to be processed was not found or not available or has no content ; nested exception is:
BINDING.JCA-11007
No Data to process.
No Data to process.
File /root/oracle/domains/osb/11.1.1.4/cluster/data/osb2/FolderNamer/Filename.txt to be processed was not found or not available or has no content Please make sure that the file exists in the specified directory.
com.bea.wli.sb.transports.jca.JCATransportException: oracle.tip.adapter.sa.api.JCABindingException: oracle.tip.adapter.sa.impl.fw.ext.org.collaxa.thirdparty.apache.wsif.WSIFException: servicebus:/WSDL/wsdlPathAndName [ SynchRead_ptt::SynchRead(Empty,body) ] - WSIF JCA Execute of operation 'SynchRead' failed due to: No Data to process.
No Data to process.
File /root/oracle/domains/osb/11.1.1.4/cluster/data/osb2/FolderName/Filename.txt to be processed was not found or not available or has no content ; nested exception is:
BINDING.JCA-11007
No Data to process.
No Data to process.
File /root/oracle/domains/osb/11.1.1.4/cluster/data/osb2/FolderName/Filename.txt to be processed was not found or not available or has no content Please make sure that the file exists in the specified directory.
at com.bea.wli.sb.transports.jca.binding.JCATransportOutboundOperationBindingServiceImpl.invoke(JCATransportOutboundOperationBindingServiceImpl.java:153)
at com.bea.wli.sb.transports.jca.JCATransportEndpoint.sendRequestResponse(JCATransportEndpoint.java:209)
at com.bea.wli.sb.transports.jca.JCATransportEndpoint.send(JCATransportEndpoint.java:170)
at com.bea.wli.sb.transports.jca.JCATransportProvider.sendMessageAsync(JCATransportProvider.java:598)
at sun.reflect.GeneratedMethodAccessor1115.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at com.bea.wli.sb.transports.Util$1.invoke(Util.java:83)
at $Proxy142.sendMessageAsync(Unknown Source)
at com.bea.wli.sb.transports.LoadBalanceFailoverListener.sendMessageAsync(LoadBalanceFailoverListener.java:148)
at com.bea.wli.sb.transports.LoadBalanceFailoverListener.sendMessageToServiceAsync(LoadBalanceFailoverListener.java:603)
at com.bea.wli.sb.transports.LoadBalanceFailoverListener.sendMessageToService(LoadBalanceFailoverListener.java:538)
at com.bea.wli.sb.transports.TransportManagerImpl.sendMessageToService(TransportManagerImpl.java:558)
at com.bea.wli.sb.transports.TransportManagerImpl.sendMessageAsync(TransportManagerImpl.java:426)
at com.bea.wli.sb.pipeline.PipelineContextImpl.doDispatch(PipelineContextImpl.java:670)
at com.bea.wli.sb.pipeline.PipelineContextImpl.dispatchSync(PipelineContextImpl.java:551)
at stages.transform.runtime.WsCalloutRuntimeStep$WsCalloutDispatcher.dispatch(WsCalloutRuntimeStep.java:1391)
at stages.transform.runtime.WsCalloutRuntimeStep.processMessage(WsCalloutRuntimeStep.java:236)
at com.bea.wli.sb.stages.StageMetadataImpl$WrapperRuntimeStep.processMessage(StageMetadataImpl.java:346)
at com.bea.wli.sb.stages.impl.SequenceRuntimeStep.processMessage(SequenceRuntimeStep.java:33)
at com.bea.wli.sb.pipeline.PipelineStage.processMessage(PipelineStage.java:84)
at com.bea.wli.sb.pipeline.PipelineContextImpl.execute(PipelineContextImpl.java:1055)
at com.bea.wli.sb.pipeline.Pipeline.processMessage(Pipeline.java:141)
at com.bea.wli.sb.pipeline.PipelineContextImpl.execute(PipelineContextImpl.java:1055)
at com.bea.wli.sb.pipeline.PipelineNode.doRequest(PipelineNode.java:55)
at com.bea.wli.sb.pipeline.Node.processMessage(Node.java:67)
at com.bea.wli.sb.pipeline.PipelineContextImpl.execute(PipelineContextImpl.java:1055)
at com.bea.wli.sb.pipeline.Router.processMessage(Router.java:214)
at com.bea.wli.sb.pipeline.MessageProcessor.processRequest(MessageProcessor.java:96)
at com.bea.wli.sb.pipeline.RouterManager$1.run(RouterManager.java:593)
at com.bea.wli.sb.pipeline.RouterManager$1.run(RouterManager.java:591)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:146)
at com.bea.wli.sb.security.WLSSecurityContextService.runAs(WLSSecurityContextService.java:55)
at com.bea.wli.sb.pipeline.RouterManager.processMessage(RouterManager.java:590)
at com.bea.wli.sb.transports.TransportManagerImpl.receiveMessage(TransportManagerImpl.java:375)
at com.bea.wli.sb.transports.jca.binding.JCATransportInboundOperationBindingServiceImpl$4.run(JCATransportInboundOperationBindingServiceImpl.java:415)
at com.bea.wli.sb.transports.jca.binding.JCATransportInboundOperationBindingServiceImpl$4.run(JCATransportInboundOperationBindingServiceImpl.java:413)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:146)
at weblogic.security.Security.runAs(Security.java:61)
at com.bea.wli.sb.transports.jca.binding.JCATransportInboundOperationBindingServiceImpl.sendMessage(JCATransportInboundOperationBindingServiceImpl.java:413)
at com.bea.wli.sb.transports.jca.binding.JCATransportInboundOperationBindingServiceImpl.invokeOneWay(JCATransportInboundOperationBindingServiceImpl.java:126)
at com.bea.wli.sb.transports.jca.binding.JCAInboundRequestListener.post(JCAInboundRequestListener.java:39)
at oracle.tip.adapter.sa.impl.inbound.JCAInboundListenerImpl.onMessage(JCAInboundListenerImpl.java:170)
at oracle.tip.adapter.fw.jca.messageinflow.MessageEndpointImpl.onMessage(MessageEndpointImpl.java:502)
at oracle.tip.adapter.file.inbound.Publisher.onMessageDelegate(Publisher.java:493)
at oracle.tip.adapter.file.inbound.Publisher.publishMessage(Publisher.java:419)
at oracle.tip.adapter.file.inbound.InboundTranslatorDelegate.xlate(InboundTranslatorDelegate.java:484)
at oracle.tip.adapter.file.inbound.InboundTranslatorDelegate.doXlate(InboundTranslatorDelegate.java:121)
at oracle.tip.adapter.file.inbound.ProcessorDelegate.doXlate(ProcessorDelegate.java:388)
at oracle.tip.adapter.file.inbound.ProcessorDelegate.process(ProcessorDelegate.java:174)
at oracle.tip.adapter.file.inbound.ProcessWork.run(ProcessWork.java:349)
at weblogic.work.ContextWrap.run(ContextWrap.java:41)
at weblogic.work.SelfTuningWorkManagerImpl$WorkAdapterImpl.run(SelfTuningWorkManagerImpl.java:528)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:207)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:176)
Caused by: oracle.tip.adapter.sa.api.JCABindingException: oracle.tip.adapter.sa.impl.fw.ext.org.collaxa.thirdparty.apache.wsif.WSIFException: servicebus:/WSDL/wsdlPathAndName [ SynchRead_ptt::SynchRead(Empty,body) ] - WSIF JCA Execute of operation 'SynchRead' failed due to: No Data to process.
No Data to process.
File /root/oracle/domains/osb/11.1.1.4/cluster/data/osb2/FolderName/Filename.txt to be processed was not found or not available or has no content ; nested exception is:
BINDING.JCA-11007
No Data to process.
No Data to process.
File /root/oracle/domains/osb/11.1.1.4/cluster/data/osb2/FolderName/Filename.txt to be processed was not found or not available or has no content Please make sure that the file exists in the specified directory.
at oracle.tip.adapter.sa.impl.JCABindingReferenceImpl.request(JCABindingReferenceImpl.java:259)
at com.bea.wli.sb.transports.jca.binding.JCATransportOutboundOperationBindingServiceImpl.invoke(JCATransportOutboundOperationBindingServiceImpl.java:150)
... 56 more
Caused by: oracle.tip.adapter.sa.impl.fw.ext.org.collaxa.thirdparty.apache.wsif.WSIFException: servicebus:/WSDL/wsdlPathAndName [ SynchRead_ptt::SynchRead(Empty,body) ] - WSIF JCA Execute of operation 'SynchRead' failed due to: No Data to process.
No Data to process.
File /root/oracle/domains/osb/11.1.1.4/cluster/data/osb2/FolderName/Filename.txt to be processed was not found or not available or has no content ; nested exception is:
BINDING.JCA-11007
No Data to process.
No Data to process.
File /root/oracle/domains/osb/11.1.1.4/cluster/data/osb2/FolderName/Filename.txt to be processed was not found or not available or has no content Please make sure that the file exists in the specified directory.
at oracle.tip.adapter.sa.impl.fw.wsif.jca.WSIFOperation_JCA.performOperation(WSIFOperation_JCA.java:662)
at oracle.tip.adapter.sa.impl.fw.wsif.jca.WSIFOperation_JCA.executeOperation(WSIFOperation_JCA.java:353)
at oracle.tip.adapter.sa.impl.fw.wsif.jca.WSIFOperation_JCA.executeRequestResponseOperation(WSIFOperation_JCA.java:312)
at oracle.tip.adapter.sa.impl.JCABindingReferenceImpl.invokeWsifProvider(JCABindingReferenceImpl.java:350)
at oracle.tip.adapter.sa.impl.JCABindingReferenceImpl.request(JCABindingReferenceImpl.java:253)
... 57 more
Caused by: BINDING.JCA-11007
No Data to process.
No Data to process.
File /root/oracle/domains/osb/11.1.1.4/cluster/data/osb2/FolderName/Filename.txt to be processed was not found or not available or has no content Please make sure that the file exists in the specified directory.
at oracle.tip.adapter.file.outbound.FileReader.readFile(FileReader.java:277)
at oracle.tip.adapter.file.outbound.FileReader.executeFileRead(FileReader.java:181)
at oracle.tip.adapter.file.outbound.FileInteraction.executeFileRead(FileInteraction.java:331)
at oracle.tip.adapter.file.outbound.FileInteraction.execute(FileInteraction.java:395)
at oracle.tip.adapter.sa.impl.fw.wsif.jca.WSIFOperation_JCA.performOperation(WSIFOperation_JCA.java:529)
... 61 more
Edited by: 842347 on Jul 6, 2011 3:11 AM

I face the same issue and I have given all permissions to the folder for OS user.
Because of this error my server is not starting up . Is there any way I can undeploy this composite to get my server running.
I cant do this from EM because SOA server is failing to start up.
I have tried removing it from $DOMAIN_HOME/deployed-composites but still when i try restarting the soa server the composite comes up there. Do we need to delete the entry some where else too. Kindly help.
Thanks,
Sri.

How to keep track of EJBs in case of failover under clustered environment?

Does anybody know what happens with a stateless session EJB in
weblogic 5.1 under clustered environment, in case of a failover (if
one of computers dies), the one, which keeps that ejb in a pool?
Does that EJB automatically go to the state "does not exist"?
Is method ejbRemove() then called on that EJB?
Or is it still in the "method-ready pool" state? Without ejbCreate()
method being called on this EJB?
Or does it disappear completely without those methods being called on
this EJB?
I need to organize some kind of tracking for those EJBs, and it is
critically important for me to understand what exactly methods are
called on those EJBs.
I saw this, but it does not answer my question:
Clustered EJB
All EJBs are clusterable. If an EJB is deployed on multiple servers in
the cluster, each of these servers will be able to host instances of
the bean. This does not necessarily mean, however, that the bean
instances are clustered.
EJB Homes
All bean homes are clusterable. When a bean is deployed on a server,
its home is bound into the cluster-wide naming service. Because homes
are clusterable, each server can bind an instance of the home under
the same name. When a client looks up this home, it gets a
replica-aware stub that has a reference to the home on each server
that deployed the bean. When create() or find() is called, the
replica-aware stub routes the call to one of the replicas. The home
replica that receives the finds or creates an instance of the bean on
its server.
Stateless EJBs
When a home creates a stateless bean, it returns a replica-aware stub
that can route to any server on which the bean is deployed. Because a
stateless bean holds no state on behalf of the client, the stub is
free to route any call to any server that hosts the bean. Also,
because the bean is clustered, the stub can automatically fail over in
the event of a failure. The stub does not automatically treat the bean
as idempotent, so it will not recover automatically from all failures.
If the bean has been written with idempotent methods, this can be
noted in the deployment descriptor and automatic fail-over will be
enabled in all cases.
Thanks

Check out Java's support for udo/redo: [http://java.sun.com/javase/6/docs/api/javax/swing/undo/package-summary.html]
Also, google the "Memento Pattern".
You don't have to make copies of objects, just maintain commands the can undo and redo your program's state.

FTP Adapter On in a Clustered Environment

Hi everyone,
I noticed that in a clustered environment (3 servers) an FTP Adapter using the “File Modification” feature to get files will get the file 3 times. Is there some configuration that can be done to stop that from happening?

Try adding Singleton property to adapter and set it as TRUE.
For reference check this blog - Mark's Blog: File Adapter in Oracle SOA 11g cluster environment

Business One in Clustered Environment

Hey Guys,
I was wondering if anyone has any documentation with regards to running Business One in a clustered environment. We have a client who is asking questions about running Business One in this type of setup.
Are there any documents available on the SAP support site or anything that speak to this?
Thanks for any help.

Hi!!
I tested a Dell solution for fault tolerance. This kind of machine makes an internal administration of the MAC Address and the disks, the power supplys, so, Windows never notes if one of the two machines, or net address cards or hard disks are down.
SBO works fine in this kind of machine.
I think that any enviroment where the MAC address is replicated and the Hard Disk can be swapped in hot, the Hardware key does not change, so, the license server will not have any problems to run in there.
Hope this help.
Harold Gómez V.

Deployment of BPEL (and ESB) into Clustered Environment

Hi All,
I was after any view points / pointers into peoples experiences into deployment of BPEL and ESB into a clustered Oracle iAS SOA suite environment, where there are two or more nodes running BPEL, ESB etc with a corresponding OHS Loan Balancers. I have been unable to find any specific information with regards to recommendations into the best ways to deploy into a clustered environment.
My viewpoints are there are two alternative approaches that could be used, both of which use ANT deployment scripts to register / deploy the various services.
(1) Leaving all nodes up in the cluster and using a properties file to specify the relevant details, deploy to one environment allowing the load balancer to distribute the software to the respective nodes in the cluster
(2) Deploy to each of the nodes in turn ensuring all other nodes in the cluster are taken down during each separate deployment
What are other peoples thoughts / experiences / recommendations?
Thanks in Advance
Dave

I don't believe there is any real information on deployments in a cluster in those documents.
There is a note on metalink 457654.1 which says to apply to each node, while doing this shut down the other servers. From experience this worked for some configuration and not others.
Can you say what cluster deployment you used, e.g. 10.1.3.1 or 10.1.3.3 with BPEL and ESB-RT in the same oc4j?
Also what version are you on. If you are on 10.1.3.4 using the 10.1.3.3 deployment configuration you don't need to shutdown the nodes. And you can get away with just deploying to one node but make sure your <ORACLE_HOME>/bpel/system/config/collaxa-config.xml file has been set to cluster = true. Look at metalink note 746251.1.
You can experience the notorious Process Lock Timeout Error when not shutdown cleanly but this is resolved using the best practice guide http://www.oracle.com/technology/tech/soa/soa-suite-best-practices/soa_best_practices_1013x_drop1.pdf
ESB can be applied to just one node.
Make sure that all your endpoints are pointing to the load balancer and not the actual node themselves.
Also you connect string is different in your build.properties make sure of the following
cluster = true
oc4jinstancename = default_group
local.oc4jinstancename = oc4j_soa (or the oc4j container with BPEL)
esb
deployer.uri=deployer:cluster:opmn://hostname:opmn port/default_group
cheers
James

AIA FP 2.4 on SOA suit 10.3.1.4 clustered environment

Hi
I am trying to install the FP on top of my SOA 10.1.3.4 MLR5. This is a clustered environment.
As described, one should install the FP with ant on the admin member, with ant --noconfig FPInstall.xml
But it keeps failng at deploy AIAReadJMSNotificationProcess with ORABPEL-12529
It says it misses some adapters :
AdapterFrameworkImpl::endpointActivation - Endpoint Activation Error.
The Resource Adapter was unable to activate the endpoint :{} due to the following reason: ORABPEL-12529
ManagedConnectionFactory problem.
Could not instantiate ManagedConnectionFactory oracle.tip.adapter.jms.JmsManagedConnectionFactory due to:
Missing class: oracle.tip.adapter.jms.JmsManagedConnectionFactory
Dependent class: oracle.tip.adapter.fw.wsdl.WSDLUtils
Loader: oracle.bpel.common:10.1.3
Code-Source: /opt/oracle/product/10.1.3/assoa/bpel/lib/orabpel.jar
Configuration: <code-source> in /opt/oracle/product/10.1.3/assoa/j2ee/oc4j_soa/config/server.xml
This load was initiated at orabpel.root:0.0.0 using the Class.forName() method.
The missing class is not available from any code-source or loader in the system.
Please make sure the corresponding JCA Resource Adapter has been deployed.
Please correct the reported issue and redeploy the BPEL process.
These adapters are installed in the oc4j_esbdt as the install guide on soa clustering describes, and I think the deployment expects it to be in the oc4j_soa. Am I right? Does anyone know how to overcome these issues?
kind regrds
Michel

Hi Michel,
I found the solution myself
Just manually deploy the adapters in oc4j_soa the same as in oc4j_esbdt, now deployment goes ok.
Please excuse my ignorance. How do you manually deploy the adapters as mentioned above? Please give the details.
Thanks,
Amorsolo

SAP Adapter Best Practice Question for Deployment to Clustered Environment

I have a best practices question on the iway Adapters around deployment into a clustered environment.
According to the documentation, you are supposed to run the installer on both nodes in the cluster but configure on just the first node. See below:
Install Oracle Application Adapters 11g Release 1 (11.1.1.3.0) on both machines.
Configure a J2CA configuration as a database repository on the first machine.
Perform the required changes to the ra.xml and weblogic-ra.xml files before deployment.
This makes sense to me because once you deploy the adapter rar in the next step it the appropriate rar will get staged and deployed on both nodes in the cluster.
What is the best practice for the 3rdParty adapter directory on the second node? The installer lays it down with the adapter rar and all. Since we only configure the adapter on node 1, the directory on node 2 will remain with the default installation files/values not the configured ones. Is it best practice to copy node 1's 3rdParty directory to node 2 once configured? If we leave node 2 with the default files/values, I suspect this will lead to confusion to someone later on who is troubleshooting because it will appear it was never configured correctly.
What do folks typically do in this situation? Obviously everything works to leave it as is, but it seems strange to have the two nodes differ.

What is the version of operating system. If you are any OS version lower than Windows 2012 then you need to add one more voter for quorum.
Balmukund Lakhani
Please mark solved if I've answered your question, vote for it as helpful to help other users find a solution quicker
This posting is provided "AS IS" with no warranties, and confers no rights.
My Blog |
Team Blog | @Twitter
| Facebook
Author: SQL Server 2012 AlwaysOn -
Paperback, Kindle

Common reason for Mirage Server Failure in Clustered Environment and how clients will be switched to other server in a cluster

Hi,
Can Anybody share me the information regarding Common reason for Mirage Server Failure in Clustered Environment.
And how clients will be switched to other server in a cluster to continue their operations from the failed server.
Regards,
Bathesha C

Hello,
if you have more than one mirage server configured with Load balancing (LB or MSFTNLB) the client would disconnect from the faulting server and then reconnect to an other server to progress with the action as before.
All Mirage server are stateless and share the same SIS (single instance store) so any server can update or create CVD file set for an client.
Hope that helps.

Configure OSB Cluster with MQ Clustering

Hi All,
Presently I have clustered environment with below things in each Node.
Node1:*
1. OSB1
2. MQ QueueManager1
Node2*
1. OSB2
2. MQ QueueManager2
Producing_
OSB1, OSB2 are clustered and MQ Queuemanager1 and MQ Queuemanager2 are also clustered.
There is a channel C1 defined in both Node1 and Node2. Now my issue is how can I push my message to Channel from OSB1 and OSB2 as Clustered MQ ash no common logical queue manager name or logical host name.
Do I need to configure OSB1 to utilize MQ Queuemanger1 in tcp mode and simillarly OSB2 to MQ Queuemanager2
Consuming*
I have a local queue with same name on bothnodes. In bindingmode which queuemanager name I need to configure in OSB1 and OSB2 to consume message.
If we dont have a logical name defined for MQ and one of the MQ is down then how can clustering concept can be utilized.
Thanks in Advance
Nishanth

Hi All,
Presently I have clustered environment with below things in each Node.
Node1:*
1. OSB1
2. MQ QueueManager1
Node2*
1. OSB2
2. MQ QueueManager2
Producing_
OSB1, OSB2 are clustered and MQ Queuemanager1 and MQ Queuemanager2 are also clustered.
There is a channel C1 defined in both Node1 and Node2. Now my issue is how can I push my message to Channel from OSB1 and OSB2 as Clustered MQ ash no common logical queue manager name or logical host name.
Do I need to configure OSB1 to utilize MQ Queuemanger1 in tcp mode and simillarly OSB2 to MQ Queuemanager2
Consuming*
I have a local queue with same name on bothnodes. In bindingmode which queuemanager name I need to configure in OSB1 and OSB2 to consume message.
If we dont have a logical name defined for MQ and one of the MQ is down then how can clustering concept can be utilized.
Thanks in Advance
Nishanth

Configuring TLS support in a clustered environment

Similar Messages

Maybe you are looking for