Connecting LDAP (sun) to Webcenter content

Similar Messages

• Cannot find api to implement RIDC connect WebCenter Content Server over SSL

  Hi WebCenter Content team,
  I find the following sample code from http://docs.oracle.com/cd/E23943_01/doc.1111/e10807/c23_ridc.htm#BJFIHEHI
  Example 23-6 IDC Protocol over SSL
  +// build a secure IDC client as cast to specific type+
  IntradocClient idcClient = (IntradocClient)
  manager.createClient("idcs://localhost:4443");
  +// set the SSL socket options+
  config.setKeystoreFile("ketstore/client_keystore");  //location of keystore file
  config.setKeystorePassword ("password");      // keystore password
  config.setKeystoreAlias("SecureClient");  //keystore alias
  config.setKeystoreAliasPassword("password");  //password for keystore alias
  I downloaded RIDC package from Individual Component Downloads in http://www.oracle.com/technetwork/middleware/webcenter/content/downloads/index.html.
  But cannot find the above methods in IdcClientConfig and its subclasses. For example, cannot compile the following code.
  IdcClientConfig config = idcClient.getConfig();
  config.setKeystoreFile("ketstore/client_keystore");  // no such method
  Could you please give a correct example.
  Thanks a lot.

  Most likely the port. RIDC listens usually at 4444, 16200 is the port for browser-based communication.

• Webcenter Content installation issues

  Hi,
  I am new to Webcenter 11g and i am trying to in stall Webcenter Content.
  I followed http://docs.oracle.com/cd/E23943_01/doc.1111/e14538/qiecm.htm#autoId15.
  After installation i started the Admin server and i having issues starting the managed servers.
  I am getting the below error when starting the UCM_server1. Am i missing something?
  Thanks
  Ajay
  ERROR:
  <Aug 21, 2012 4:08:35 PM IST> <Error> <Security> <BEA-090892> <The loading of OPSS java security policy provider failed due to exception, see the exception stack trace or the server log file for root cause. If still see no obvious cause, enable the debug flag -Djava.security.debug=jpspolicy to get more information. Error message: JPS-00056: Failed to create identity store service instance idstore.ldap.provider:idstore.ldap. Reason: weblogic.security.service.SecurityServiceRuntimeException: Invalid host or port for admin server..>
  <Aug 21, 2012 4:08:35 PM IST> <Critical> <WebLogicServer> <BEA-000386> <Server subsystem failed. Reason: weblogic.security.SecurityInitializationException: The loading of OPSS java security policy provider failed due to exception, see the exception stack trace or the server log file for root cause. If still see no obvious cause, enable the debug flag -Djava.security.debug=jpspolicy to get more information. Error message: JPS-00056: Failed to create identity store service instance idstore.ldap.provider:idstore.ldap. Reason: weblogic.security.service.SecurityServiceRuntimeException: Invalid host or port for admin server..
  weblogic.security.SecurityInitializationException: The loading of OPSS java security policy provider failed due to exception, see the exception stack trace or the server log file for root cause. If still see no obvious cause, enable the debug flag -Djava.security.debug=jpspolicy to get more information. Error message: JPS-00056: Failed to create identity store service instance idstore.ldap.provider:idstore.ldap. Reason: weblogic.security.service.SecurityServiceRuntimeException: Invalid host or port for admin server..
  at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.loadOPSSPolicy(CommonSecurityServiceManagerDelegateImpl.java:1398)
  at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.initialize(CommonSecurityServiceManagerDelegateImpl.java:1018)
  at weblogic.security.service.SecurityServiceManager.initialize(SecurityServiceManager.java:873)
  at weblogic.security.SecurityService.start(SecurityService.java:141)
  at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
  Truncated. see log file for complete stacktrace
  Caused By: oracle.security.jps.JpsRuntimeException: JPS-00056: Failed to create identity store service instance idstore.ldap.provider:idstore.ldap. Reason: weblogic.security.service.SecurityServiceRuntimeException: Invalid host or port for admin server..
  at oracle.security.jps.internal.policystore.PolicyDelegationController.<init>(PolicyDelegationController.java:167)
  at oracle.security.jps.internal.policystore.JavaPolicyProvider.<init>(JavaPolicyProvider.java:369)
  at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
  at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:39)
  at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:27)
  Truncated. see log file for complete stacktrace
  Caused By: oracle.security.jps.JpsException: JPS-00056: Failed to create identity store service instance idstore.ldap.provider:idstore.ldap. Reason: weblogic.security.service.SecurityServiceRuntimeException: Invalid host or port for admin server..

  Ajay G M wrote: Reason: weblogic.security.service.SecurityServiceRuntimeException: Invalid host or port for admin serverWhen starting the managed server using "startManagedWebLogic", you will provide an admin server address and port as part of the command line argument. The values you provided appear to be incorrect according to the trace.

• Running webcenter Portal  based enterprise application using oracle webcenter content on the java cloud.

  And direction on how to use cloud service for a oracle webcenter application based on oracle webcenter content.
  We currently have an on premise enterprise application that is built using oracle webcenter,content ,
  ADF and connecting to OID for authentication and authorization.
  From the document I get the we can have the ADF application deployed.
  How about the migration of content.
  Can we build a webcenter portal domain?
  Can we have OID instance?
  Can we have BIP instance on the cloud?

  Hello,
  You can currently store users of the WebCenter products in the embedded LDAP server provided by the WebLogic server.
  As far as I know, BIP or OID are not currently supported in the cloud.
  ~Bogdan

• Integrating BPM with WebCenter Content

  To integrate UCM and BPM, I followed this tutorial written by J@n van Zoggel.
  At the moment, I've already set up everything exactly as instructed in the tutorial. However, when I viewed a task in BPM Workspace, I still cannot see the Attachment section. In the log, I saw the following error:
  Ensure that credential store map WF-ADMIN-USER with key WF-ADMIN-CREDENTIAL
  contains UCM server admin username/password. Also ensure that Workflow configuration parameter
  UcmIdcUrl contains IDC socket connection url to connect to UCM server and UCM server has permission
  to let SOA server connect to it using IDC protocol.
  access denied ("oracle.security.jps.service.credstore.CredentialAccessPermission" "context=SYSTEM,mapName=WF-ADMIN-USER,keyName=WF-ADMIN-CREDENTIAL" "read")]]
  One thing I'd like to ask is that in all tutorials or articles I've read, the authors are always testing in the environment in which both the UCM and BPM servers are on the same machine. In my case, I am trying to connect my local BPM server with the online WebCenter Content server of my company, I wonder if I have to make any additional settings for this to work. A few pictures of my current settings are shown below.
  I'd be very grateful if you could share with me your experience in integrating BPM and UCM.
  Best regards,
  James Tran
  P/S: My environment is SOA Suite 11.1.1.7 and WebCenter 11.1.1.7
  1. UcmIdcUrl setting:
  2. WF-ADMIN-USER key map:
  3. WebCenter Content IP Filter:

  I don't believe that noone has ever tried to connect the local BPM environment to a remote WCC server before. Please let me know if you've ever experienced the same problem. Otherwise, even a simple "I tried to do the samething and I succeeded using the same steps in the tutorial" would help too .
  Another thing is that yesterday, I talked to the tech-lead and I learned that our WCC server environment doesn't have BPM installed yet. I am wondering if this would cause the WCC server to not understand the request from my BPM server. In addtion, I've also upgraded my local BPM server using the lastest SOA bundled patch. Should the same patch be applied to the WCC server environment too?
  I'd be very grateful for any advice .

• Webcenter Content URL is NOT WORKING

  Hi All,
  I'm new to Oracle Webcenter and  installed webcenter content 11.1.1.8 in my system(Windows 7).After running Admin and managed server(UCM_server1), getting the following error while i'm going
  to connect http://localhost:16200/cs
  Error 404--Not Found
  From RFC 2068 Hypertext Transfer Protocol -- HTTP/1.1:
  10.4.5 404 Not Found
  The server has not found anything matching the Request-URI. No indication is given of whether the condition is temporary or permanent.
  If the server does not wish to make this information available to the client, the status code 403 (Forbidden) can be used instead. The 410 (Gone) status code SHOULD be used if the server knows, through some internally configurable mechanism, that an old resource is permanently unavailable and has no forwarding address.
  Please help me to resolve the issue? Thanks in advance.
  Regards
  Chandra

  Srinath is 100% correct.
  If the deployment failed, then there will very likely be some mention in the log.
  You state that you checked the log, but you didn't mention whether you found an error, no error, a successful startup, etc. you are providing painfully few details to assist.
  I would bet if you posted your .log and .out logs to Pastebin.com - #1 paste tool since 2002 and provided us links, We would be able to point out the error.
  Lacking that information, my best advice would be to re-install and double-check you're completing all steps in the correct order.
  Also, be sure to always search the product documentation first, the search this forum. For basic issues (e.g., standard installation), there is a high probability that someone else has asked that question.
  I hope that helps,
  -ryan

• WebCenter Content Architecture

  Hello everyone,
  I just need an advice on how to solve a particular client's document management requirement. Need help on a good (if not best) architecture for their case.
  In a nutshell, they have satellite/offsite branches that can receive documents from their customers. They want to get those documents digitized and kept in a doc. mgmt. solution. I've looked into some implementation examples from this site: http://docs.oracle.com/cd/E10316_01/cs/cs_doc_10/implementation/wwhelp/wwhimpl/js/html/wwhelp.htm
  but there's no WCC configuration where a content contributor is outside the client's intranet (or extranet). Is it ok to just have one Content Server in the head office/data center, and the branches can connect to WCC (client-server mode) from a different geographical location? Or should there be a branch content server where scanning is available?
  Hope you can throw in some ideas.
  Thanks,
  Jason

  Thank you for the explanation! I've commented inline on some of the items.
  Well, I don't know. This very much depends on what requirements
  > get those documents digitized and kept in a doc. mgmt. solution
  and
  > a content contributor is outside the client's intranet
  really mean.
  The process basically is that customers go to either the head office or satellite branches to file an application. In order for the application to be processed, supporting documents must be presented. Currently, the client is photocopying these documents and filing away manually in cabinets. If an application needs to be reviewed again later, they need to sift through their storage.
  Since they can accept applications from different locations, scanning and indexing (or in WCC, uploading/checking-in) of documents will be outside the data center where WCC will reside.
  a) It is certainly true that WebCenter Content is a centralized, not distributed system.
  OK, noted!
  b) There are few exceptions (that might be irrelevant to your use case)
  Desktop Integration Suite supports also offline mode (for reading, but even updates of documents)
  Some news from PM suggest that the new 11.1.1.8 release will support mobile solutions, where content can be ingested even in offline mode (where a mobile device has no signal)
  The mobile support will definitely be great as some branches have limited physical space. Although, I might put this in the backburner for now.
  However, those scenarios are usually only for exceptions - you cannot expect that a remote site would work with a single DIS client and/or mobile device.c) ODDC is also a centralized solution, but you could have one ODDC server per branch, if necessary, supplemented by ODC. However, ODC/ODDC can be used only for content ingestion (scanning/importing documents, initial metadata). Once a document is committed to a content repository, it is (usually) no longer available. Besides, there is no support for scenarios like searching, revisions, content retrieval, etc.d) Even though, WCC is a centralized system, it does not mean that you could not try to implement a distributed scenario using content migration/replication (Archiver utility). There are, however, two main reasons against it:
  Costs - CPU/NUP license model is very effective for a centralized solution, because you can benefit from synergy effects of clustering. I remember a project where we had 80+ branches, altogether with 4K+ users that could run on something like 4 CPUs (eq. to 200 NUPs), if centralized
  Manageability - everyone in OCS (Oracle Consulting Services) strongly discouraged us from any distributed design. Imagine a star architecture, where you have one central node containing everything, and a number of smaller branch systems containing items "belonging" to the branch. Unless the product supports a distributed locking (check-out) you can easily end up with inconsistent data. Again, there can be exceptions - in our case, we had just one revision, data were synchronized overnight and it could never happen that data was updated by anyone, but the branch that "owned" them.
  In our case, the issue was the internet connectivity, and fortunately, we were finally able to convince the customer to solve the root cause, rather than go with an overkill architecture.
  I think the architecture can survive with just one ODDC server where branches (not that many) can connect and send scanned documents to. There are no hard requirements on revisions yet. I also need an application to actually encode the customer's application, and is thinking of a custom-made ADF application, deployed on the WLS where WCC will run on. Or can I just create pages on WCC and expose that?
  IMHO,
  > a content contributor is outside the client's intranet (or extranet)
  is not an argument for a distributed architecture.
  OK, understood.
  If your concern is security, you may install web server to DMZ. One remaining challenge might be managing user identities, but even for that there are solutions available.
  OK, I'll look into this.
  Thanks for all the inputs!

• Can Webcenter Content serves as a content repository to present to Adobe CQ5?

  Hi,
  It seems that we really love to use Adobe CQ5 but want to build web sites so that some of those contents are from WebCenter Content.
  Is it possible for WebCenter Content to share to Adobe as its content repository?
  Possible?
  K.

  Hi ,
  Webcenter content can be used as the repository if the connection framework to Adobe is created with a common background . For eg , maybe you can use web services / java to create an application that will pull the contents from WCC and display it from Adobe .
  These documentation links will help you in getting a start : http://docs.oracle.com/cd/E29542_01/doc.1111/e26694/part7_integrate_apps.htm#CIHJHEHA
  Thanks,
  Srinath

• Webcenter -Content can be socialized ???

  Hello,
  We are work on POC and here I need your suggestions and help.
  We have an application using Site Studio and Webcenter Content. Our application shows different electronic products in each secondary page. Its working fine.
  Now we want our user to communicate. They should be allowed to express their experience and feedback. I looked into OSN - Conversation feature. I liked it!!
  what is our requirement and plan::
  1. We can have one small portlet where we can show latest conversation.
  2. If user want to express they can log in and add their comments.
  In different words, if you have used/ seen the Facebook application, currently we see one portlet on right top, which shows all the updates of your friends. Similar things but in my case we will show all the conversation related to the product. So if I am looking at Iphone product, we get all conversation only related to the Iphone. Once I switch to different page lets suppose Samsung 4S product page then we should see only conversation related to Samsung 4S product.
  Suggestion need??
  1. So do we have any connection with webcenter content and 'Oracle Social network' in terms of implementation.
  2. How can I selectively bring the conversation feature in my application?
  3. Do we have OSN downloadable tool available for POC?
  4. Please lets us know any development document available?
  Please let me know if you need more information.
  Thanks,
  MAK

  Hi Srinivas ,
  Yes , ECM can be integrated with Oracle EBS (enterprise business suite) and other Oracle Apps as well like Peoplesoft , Siebel etc .
  Details can be read from the following link : http://docs.oracle.com/cd/E23943_01/doc.1111/e17953/toc.htm
  Thanks
  Srinath

• How can scan directly with webcenter content

  how can directly scan with webcenter content without other software for scanner
  tnx

  Hi,
  If you are referring to not using ODC/ODDC kind of software which has drivers to connect to Webcenter Content then following is what I can think of:
  1. Have your scanner drop the scanned images to a shared folder
  2. Have a standalone Java program to checkin the scanned images to Webcenter Content using RIDC API calls
  3. Access what set of metadata you want to set on the content, advice you set most of the general metadata on the folder so the content inherits them
  4. If the metadata is available in a database then you could use the Java program to look up to this DB for metadata which performing the checkin
  Regards,
  - Anand

• Webcenter Content and OSB

  Hi,
  Can anyone let me know how we can integrate the Webcenter content with OSB. We want to create users but through OSB. Do Webcenter provide any Web service?
  Thanks in advance.

  a) WebCenter Content has its standard services - see http://docs.oracle.com/cd/E23943_01/doc.1111/e11011/toc.htm
  b) the most common services are exposed in WSDL as Web Services - see http://docs.oracle.com/cd/E23943_01/doc.1111/e10807/c25_wsdl_and_soap.htm#BEHDIABD
  c) for the remainder (even for your own custom services) you may use WSDL Generator to expose them
  d) since the version 11g, WCC does not hold its own identity pool, but rather takes it from one used by the Weblogic domain (usually, an external LDAP), so if you are interested in creation of users you might want to integrate with this LDAP, rather than with WCC

• WebCenter Content Connector Integration

  Hello,
  I have a problem to test the WCC Connector integration for WebCenter Sites. I had and Error -3 when connector wants to save all assets from WCC.
  I don't have external Ldap I use Weblogic for WCC and I use internal for WCS
  Thanks for yours help
  Michel

  I assume it will require more data to be able to analyse where the problem potentially can be.
  First of all take a look at these two articles that explain what needs to be done. Perhaps, you will find if something is missing:
  http://www.ateam-oracle.com/webcenter-sites-and-webcenter-content-integration/
  WebCenter Sites 11g R1 (11.1.1.8.0) First Look: The WebCenter Content Connector | Function1

• Webcenter Content and WCI 10gR4

  I'm trying to find information on how to integrate Webcenter Content(UCM) and Webcenter Interaction 10gR4. Any help would be GREATLY appreciated!
  Thanks,
  Steve

  This is actually not so much a WCC question like a Weblogic one. Therefore, it might be better in a forum dedicated to such kind of questions - I believe this one is the correct WebLogic Server - Security
  However, maybe this post http://oraclemiddlewareblog.com/2011/09/05/26/ will help you.
  Also, not being an expect in that area, I'd believe that using WNA kind of expects that all users are in the AD domain. Note that you still need to register external users' identities somewhere (most likely not in AD - perhaps, in another LDAP, then?) I don't know if WNA makes any sense in this setup. Either way, what might be necessary as the first step is to "unite" identities from AD and the other LDAP. Either Weblogic Server, or a product like Oracle Virtual Directory might be able to do that; for SSO, however, there still might be other things needed.

• Don't miss Thursday's Webcast: Security Scenarios with WebCenter Content 11

  Learn how user authentication and authorization is now implemented in WCC 11g by attending this 1 hour Advisor Webcast!
  Topic: Security Scenarios with WebCenter Content
  When: September 27, 2012 at 16:00 UK / 17:00 CET / 08:00 am Pacific / 9:00 am Mountain / 10:00 am Central / 11:00 am Eastern
  This one-hour session is recommended for technical and functional users who use WebCenter Content (WCC). This session will be used to explain how user authentication and authorization is now implemented in WCC 11g. Also the means that single sign can be used.
  TOPICS WILL INCLUDE:
  - How authentcation and authorization was handled in previous Content Server versions
  - The WLS mechanisms now used to provide user access and content security
  - External users and internal users
  - Overview of the WLS ldap provider configuration
  - How to differentiate Roles and Accounts
  - WCC credential mapping -- not WLS credential mapping
  - Single Sign on -- OAM only
  - Saml and Kerberos
  To register for this meeting:
  1. Event address for attendees: https://oracleaw.webex.com/oracleaw/onstage/g.php?d=595760912&t=a
  2. Register for the meeting.
  Once the host approves your request, you will receive a confirmation email with instructions for joining the meeting.

  Hi Everybody:
  I've found the solution. It was necessary to fill the roles on the Front End. However, this step is not mentioned on the GRC 10.1 Security guide, only in 10.0.
  Best Regards:
  Caio

• UPCOMING Webcast on Sept 27th - Security Scenarios with WebCenter Content

  Learn how user authentication and authorization is now implemented in WCC 11g by attending this 1 hour Advisor Webcast!
  Topic: Security Scenarios with WebCenter Content
  When: 16:00 UK / 17:00 CET / 08:00 am Pacific / 9:00 am Mountain / 11:00 am Eastern
  This one-hour session is recommended for technical and functional users who use WebCenter Content (WCC). This session will be used to explain how user authentication and authorization is now implemented in WCC 11g. Also the means that single sign can be used.
  TOPICS WILL INCLUDE:
  - How authentcation and authorization was handled in previous Content Server versions
  - The WLS mechanisms now used to provide user access and content security
  - External users and internal users
  - Overview of the WLS ldap provider configuration
  - How to differentiate Roles and Accounts
  - WCC credential mapping -- not WLS credential mapping
  - Single Sign on -- OAM only
  - Saml and Kerberos
  A short, live demonstration (only if applicable) and question and answer period will be included. Oracle Advisor Webcasts are dedicated to building your awareness around our products and services. This session does not replace offerings from Oracle Global Support Services.
  WebEx Conference Details
  Topic: Advisor Webcast: Security Scenarios with WebCenter Content
  Date and Time:
  Thursday, September 27, 2012 5:00 pm, Europe Summer Time (Berlin, GMT+02:00)
  Thursday, September 27, 2012 4:00 pm, GMT Summer Time (London, GMT+01:00)
  Thursday, September 27, 2012 11:00 am, Eastern Daylight Time (New York, GMT-04:00)
  Thursday, September 27, 2012 10:00 am, Central Daylight Time (Chicago, GMT-05:00)
  Event number: 595 760 912
  To register for this meeting
  1. Event address for attendees: https://oracleaw.webex.com/oracleaw/onstage/g.php?d=595760912&t=a
  2. Register for the meeting.
  Once the host approves your request, you will receive a confirmation email with instructions for joining the meeting.

  You need to keep in mind that these OTN forums are user community forums and are publicly viewable to anyone with a web browser on the Internet.
  If you are to present a link into a forum post it needs to be a freely available link, else you need to qualify your post if it is not.
  If CSI/MOS login credentials are required (which seems to be the case here) then you need to be aware of that and state that fact. If your link is to be restricted to company-internal or for partner-only access, you need to state that.
  (... and company-internal or partner-only postings have no place in these user community forums)