Creating LDAP v2 realm in WLS 6.1sp2

Similar Messages

• LDAP Security Realm

  Using Weblogic 7.0 I have an LDAP security realm setup with the LDAP URL admins
  user name and password. I want to be able to interface this connection to access
  the LDAP and make changes to user information within in the ldap. Right now in
  my code I make a connection to the LDAP and supply the same user name and password
  set up in the LDAP security realm. I want to be able to rather then re-supply
  the URL and user name and password in my code I want to be able to just get that
  (or create a connection simil;ar to a jdbc connection pool) connection to the
  LDAP that configured in the Security Realm. Is this possible? And how would I
  go about it if so?
  Thanks
  Sjb

  the LDAPConnection pool which is used WLS Realm is not accessible to public
  for programming.
  thanks
  kiran
  "Sjb" <[email protected]> wrote in message
  news:3f5744c1$[email protected]..
  >
  Using Weblogic 7.0 I have an LDAP security realm setup with the LDAP URLadmins
  user name and password. I want to be able to interface this connection toaccess
  the LDAP and make changes to user information within in the ldap. Rightnow in
  my code I make a connection to the LDAP and supply the same user name andpassword
  set up in the LDAP security realm. I want to be able to rather thenre-supply
  the URL and user name and password in my code I want to be able to justget that
  (or create a connection simil;ar to a jdbc connection pool) connection tothe
  LDAP that configured in the Security Realm. Is this possible? And howwould I
  go about it if so?
  Thanks
  Sjb

• Error while creating multiple identity realms

  Hi,
  I am trying the tutorial for creating multiple identity realms posted on
  http://www.oracle.com/technology/obe/obe_as_10g/im/realm_mng/realm.htm
  While executing "STEP 12" to enter the following values:
  -User Search Base,
  -User Creation Base,
  -Group Search Base,
  -Group Creation Base
  I get the following error:
  Identity Management Realm Modification Error!
  Cannot Modify Identity Management Realm : [LDAP: error code 20 - Attribute Or Value Exists]
  For some reason this step just doesnt seem to work. I am using OCS 10.1.1 on Solaris10
  Can anyone please help me resolve this issue.
  Thanks.

  Hi. It is a "feature" of SRM.
  I asked SAP about it and did not get a good response.
  If you enter Asset A, it will copy the internal order number from that asset into the cart. You can not see the internal order in the web, but you can see it in BBP_PD.
  If you then change the asset to asset B, it will not refresh the internal order number.
  This means you get internal order A on asset B.
  It happens any time you change asset number, so if you copy a line then change you will get this problem.
  We ended up using the BBP_DOC_CHANGE_BADI to RFC into R/3 and update the internal order number.
  Regards,
  Dave.

• Creating a JAZN realm in OID

  Using JAZN-XML, I am able to create new realms with
  %JAVA_EXE% -jar jazn.jar -user jazn.com/admin -password welcome -addrealm newRealm realmadmin adminpass realmadminrole
  Now I need to create a realm in LDAP using JAZN-LDAP. Ideally this would also be through jazn.jar. I've tried several commands
  %JAVA_EXE% -jar jazn.jar -addrealm newRealm realmadmin realmadminrole "cn=users,cn=newRealm ,cn=subscribers" "cn=roles,cn=newRealm ,cn=subscribers" external
  %JAVA_EXE% -jar jazn.jar -addrealm newRealm realmadmin realmadminrole "cn=users" "cn=roles" external
  %JAVA_EXE% -jar jazn.jar -addrealm newRealm realmadmin realmadminrole users roles external
  In all three cases, the return value is:
  The system is unable to create the specified realm.
  What am I doing wrong?
  Is there another way to create a realm through the command-line?
  Is there another recommended process for creating a realm in OID?
  Thanks

  did you ever figure out how to do this? I am having the same problem trying to configure a second realm on Windows Platform with cygwin emulator.
  Thanks.

• Create a New Realm in OID on windows Platform

  Hi
  I am trying to create a new realm using the following doc located at
  http://www.oracle.com/technology/obe/obe_as_10g/im/realm_mng/realm.htm
  but this doc gives instructions about executing shell scripts which is not possible in windows.
  I got cygwin(Unix Emulator) but since this is a windows installation some files instead of being shell scripts get converted to bat for example the script searches for ldifmigrator whereas we have only ldifmigrator.bat
  Please advice that can we get an equivalent doc for windows 2000 installation of OID
  Thanks in Advance

  did you ever figure out how to do this? I am having the same problem trying to configure a second realm on Windows Platform with cygwin emulator.
  Thanks.

• Apache 2.0.35 httpd.conf issue with Win2k WLS 6.1sp2 Cluster

  Hi,
            Anybody has a Win2K Apache 2.0.35 httpd.conf that works
            with a WLS 6.1sp2 Cluster?
            I am getting errors like
            "..Cannot load D:/Apache2.0.35/Apache2/modules/mod_wl_20.so into server: The
            specified procedure could not be found."
            Thanks,
            -ad
            

  you should post this question plugin newsgroup.
            I will ask one of our plugin engineer to get back to you...
            Kumar
            Toly Dedes wrote:
            > Hi,
            > Anybody has a Win2K Apache 2.0.35 httpd.conf that works
            > with a WLS 6.1sp2 Cluster?
            > I am getting errors like
            > "..Cannot load D:/Apache2.0.35/Apache2/modules/mod_wl_20.so into server: The
            > specified procedure could not be found."
            >
            > Thanks,
            > -ad
            >
            >
            >
            

• Close Wait also with WLS 6.1SP2

  Hi,
  we encounter the same situation with the NES (predecessor of iPlanet) and WLS 6.1SP2.
  Con      TWait      CWait      Files      Sockets
  706     0     422     980     815
  749     0     554     1022     857
  749     0     597     1022     857
  Any suggestions?
  Regards
  Andi

  "Shirley" <[email protected]> wrote:
  >
  "Khalid" <[email protected]> wrote:
  We seem to have close wait problem in extreme load where apache/weblogic
  hold the
  tread so the socket cannot be closed. Does anyone know how to fix this
  problem.
  It seems like after in runs out of thread the server crashes.
  Have you fixed this problem you were facing ,because we are facing exactly
  the
  same problem.Did you find any solution .If so please do let us know
  Cheers
  Shirley RemediosWe had the same problem and reduced the number of sockets in this state by reducing
  the time to wait before closing the sockets. On Solaris we set 'tcp_time_wait_interval'
  to 30000 (30 seconds) on the web and app servers.

• Best Approach to create LDAP structure in OID

  We are currently in the process to create LDAP schema and structure in OID 11g. This schema and structure in OID will be then used by Oracle products such as OIM, OES, OAM and others to perform user authentication, coarse grained authorization, fine grained authorizaiton, attribute mappings, etc.
  I wanted to know if there is any Best Practices approach/guidelines we can use to define this schema and structure now so we don't encounter any obstacles and limitations while using OIM, OAM and OES.
  Will appreciate quick response.
  Thanks!

  I understand that the LDAP structure design depends on the business goals and requirements and we are defnitely building the schema in that lines. But the thing we want to make sure is how flexible are the products like OIM, OAM and OES to provide user authentication(if the user is deep down in the tree), authorization (if the user needs to be authorized to services having attributes deep down in the tree), mapping complex relationships and permissions in conjunction with OID.
  I think the other way of asking this question would be what we should take into consideration while designing the LDAP structure in OID as the backend LDAP store and what things we should leave whille designing LDAP structure in OID that could be considered while designing the authentication, authorization process in OIM, OAM and OES.
  Our goal is to keep the LDAP structure simple and flexible but at the sametime use OAM, OES and OIM at their best capabilities to serve our purpose without lot of customizations required.
  Thanks!

• How to create the multi-realm (or multi-entries)in one Directory instance?

  how to create the multi-realm (or multi-entries)in one Directory instance?
  I have installed a new iplanet Directory Server 5.2 on a win2k box, named "vp.com1.com"
  When I installed this server, it helped me to create a new Directory server instance with the default realm "dc=com1,dc=com".
  I could log on console and found root node, which is "com1.com"
  expanded this root node, I got a tree as following:
  "com1.com" -> "vp.com1.com" -> "server group" -> "Directory Server(VP)"
  Then open "Direbory Server(VP)" -> click tab "Directory"
  Got a tree as following:
  vp.com1.com(389) --> dc=com1,dc=com
  o=NetscapeRoot
  Now I wanna create a new entries, which is "dc=com2,dc=com"
  How to do?
  I had checked almost all the related doc but failed to get the valuable info.
  Would you like to do me a favour? Or forward me some reference?
  Because I'm a new guy for iplanet Directory Server, would you pls me the help in detail.
  This task is very urgent for me, so really appreciate your early help!

  Look on page 87 of the Sun ONE Directory Server 5.2 Administration Guide. The section "Creating a New Root Suffix Using the Console" should give you step-by-step instructions.

• Intermittent java.lang.NoClassDefFoundError WLS 8.1SP2 Solaris 5.8

  Hello.
  I have experienced an intermittent java.lang.NoClassDefFoundError following deployment as follows:
  java.lang.NoClassDefFoundError: /net/sf/hibernate/cfg/Configuration
  on Solaris 5.8 WLS 8.1SP2 for a web application whose WAR contains all of the required .jar files for Hibernate. The code involved uses a static initializer (following the thread local pattern shown in many Hibernate documentation sources) and has shown no issues to date in a Win2K environment.
  The issue persisted between several re-deployments and fresh server instances on a given day. Two days later the same WAR deployment was used and the error did not appear again.
  Has anyone experienced a similar behaviour in their deployment experiences ? Does anyone have any suggestions on avoiding the issue (e.g. something related to ClassLoaders) ?
  Regards,
  James.

  Hello.
  I have experienced an intermittent java.lang.NoClassDefFoundError following deployment as follows:
  java.lang.NoClassDefFoundError: /net/sf/hibernate/cfg/Configuration
  on Solaris 5.8 WLS 8.1SP2 for a web application whose WAR contains all of the required .jar files for Hibernate. The code involved uses a static initializer (following the thread local pattern shown in many Hibernate documentation sources) and has shown no issues to date in a Win2K environment.
  The issue persisted between several re-deployments and fresh server instances on a given day. Two days later the same WAR deployment was used and the error did not appear again.
  Has anyone experienced a similar behaviour in their deployment experiences ? Does anyone have any suggestions on avoiding the issue (e.g. something related to ClassLoaders) ?
  Regards,
  James.

• Adding object classes when creating ldap user in workflow

  I'm creating ldap users in a workflow and when I assign the object classes in the workflow I get an object class violation. It seems that when I call check in view and when my break point stops in Update User the default object classes on the resource have been removed from the user.accounts[LDAP].objectClass attribute which I just set. Not sure what's going on here. Is there another way to assign more than just the default object classes to a new ldap user through the workflow? Thanks in advance.

  Multiple things I can think of
  1) put all the object classes you may be expecting with the user account in the resource configuration panel. LDAP is smart enough to assign the related object classes to the object based on the attributes assigned to the user.
  2) Check if you have the object class in the schema of LDAP.

• Creating a custom realm for tomcat. Help and suggestions please.

  Has anybody ever created a custom realm to authenticate users in tomcat.
  I would like to use form based login with my own realm.
  The form requires 3 fields to log in (hence the custom realm) . I would also like to be able to use the built-in functions like isuserinrole.
  If anybody has experience with this or knows of a place where to get valuable information please let me know.
  Thanks in advance!

  Hi
  Tomcatx.x.x uses the realm sandbox security tecnique
  1)In you'r abcd/web-inf/WEB.xml file
  write the realm config scripts for the required
  jsp/servlet pages[similar will be found in
    Tomcat/webapps/examples/web-inf/web.xml]
  2)In Tomcatx.x.x/conf/tomcat_users.xml
  declare the realm id/pass/roles
  3)If still not able to do then study the web.xml (pdf)
  avaliable at websiter http://www.moreservlets.com

• How to use DS 5.2 to create LDAP user ID and password to Login to Sun ONE I

  Hi all,
  I have just install Sun One Web server 6.1, Sun One Directory 5.2 and Sun One Instant Messaging 6.1 together on Win2K advance server. And I have successful launch Sun� ONE Instant Messenger.
  But I can not know, how to create LDAP user ID and password to Login to Sun ONE Instant Messenger???
  Could anyone help me to solve this problem?
  I'm looking forward to receive your reply soon.
  Thanks

  Hi Tuo,
  I think you better ask this in the forum where the ACS experts are, since this does not seem to be a problem on the ASA side.
  hth
  Herbert

• Creating users in realm

  I am in the oid console and it says "you logged in as a oid admin . you can create realms and users" .When I search for realms then I see only "view" button but I can see and links or buttons to create users inside those realms. How can create users inside those realms
  thanks

  Step 1) (As Andreas explained): create an extra realm; navigate to the your.servername/oiddas page. Select the third tab "Directory". Notice an extra picture appears in the upper right corner, called "Realms". Click that, and create the realm.
  Step 2) Reconfigure your SSO server to allow for the extra realm
  Step 3) Configure Application Server Hosting
  Step 4) Add the subscriber
  Step 5) Add user(s) - note the extra option "Realm" in the basic data part
  It's a lot more complicated than rpelies on this forum allows; the documentation describes it quite well - note that the enblhstg.csh misses the "-mode sso" switch (at least for 10.1.2 on HP-UX)
  Bottom line: create users is simply the Create button on the users page - you shoud have the option to select the default realm there, not on the realm pages

• Howto create ldap account?

  I need create ldap account from IDM in ldap resource. All my work ended on error "naming exception" or "LDAP resource not available". Is any "cooking book" howto create any working configuration, any account? IDM never try write any ldap data, but test configuration is OK and is it in access log of LDAP.
  Thanx for any answer :-)

  hi..
  try looking into your ldap error logs.
  my guess would be your schema mapping is the culprit.
  i would remove the unnecessary attribute mapping.