Custom user name mapper needs external LDAP connection.

I have a custom user name mapper that needs to connect to our external LDAP. Our security realm is configured to connect to the external LDAP for users and groups. Is there a way to reuse this connection in the custom user name mapper?

Similar Messages

Weblogic SAML2 Custom Credential Name Mapper Problem

HI All
I Have configured both the Identity Provider and SP in the same machine but in the different domains. It is working without any issues when it is configured with default Credential Name mapper .
Since I was in need to add custom attributes in the assertion ,I have written a test custom credential name mapper as it is mentioned in the programming weblogic security document , made that Jar available in the system class path and configured successfully the Name mapper class name attribute under the Credential Mapping provider in the admin.
But when i run the application , after getting credentials There was an ArrayStore exception occurred when it is trying to generate the assertions.
please have a look at the following logs and give your valuable inputs.
####<Jul 25, 2012 4:43:55 PM IST> <Debug> <SecuritySAML2CredMap> <vsolv-de-224> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1343214835090> <BEA-000000> <SAML2CredentialMapper: getCredentials: Subject initiator>
####<Jul 25, 2012 4:43:55 PM IST> <Debug> <SecuritySAML2CredMap> <vsolv-de-224> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1343214835090> <BEA-000000> <SAML2CredentialMapper: getCredentials(Subject): getCredentialInternal() called>
####<Jul 25, 2012 4:43:55 PM IST> <Debug> <SecuritySAML2CredMap> <vsolv-de-224> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1343214835090> <BEA-000000> <SAML2CredentialMapper: getCredentialInternal(): requestor = Subject: 2
     Principal = class weblogic.security.principal.WLSUserImpl("weblogic")
     Principal = class weblogic.security.principal.WLSGroupImpl("Administrators")
>
####<Jul 25, 2012 4:43:55 PM IST> <Debug> <SecuritySAML2CredMap> <vsolv-de-224> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1343214835090> <BEA-000000> <SAML2CredentialMapper: getCredentialInternal(): initiator = Subject: 2
     Principal = class weblogic.security.principal.WLSUserImpl("weblogic")
     Principal = class weblogic.security.principal.WLSGroupImpl("Administrators")
>
####<Jul 25, 2012 4:43:55 PM IST> <Debug> <SecuritySAML2CredMap> <vsolv-de-224> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1343214835090> <BEA-000000> <SAML2CredentialMapper: getCredentialInternal(): resource = type=<adm>, category=Credential Mapping, realm=realm, action=SAML2>
####<Jul 25, 2012 4:43:55 PM IST> <Debug> <SecuritySAML2CredMap> <vsolv-de-224> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1343214835090> <BEA-000000> <SAML2NameMapperCache.getNameMapper: Not found name mapper in the cache, try to create one>
####<Jul 25, 2012 4:43:55 PM IST> <Debug> <SecuritySAML2CredMap> <vsolv-de-224> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1343214835121> <BEA-000000> <SAML2CreateAssertion: Mapped subject 'Subject: 2
     Principal = class weblogic.security.principal.WLSUserImpl("weblogic")
     Principal = class weblogic.security.principal.WLSGroupImpl("Administrators")
' to: username='weblogic',qualifier='idprec.com',format='urn:oasis:names:tc:SAML:2.0:attrname-format:basic'>
####<Jul 25, 2012 4:43:55 PM IST> <Debug> <SecuritySAML2CredMap> <vsolv-de-224> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1343214835121> <BEA-000000> <SAML2CreateAssertion.getSAML2Assertion - attrStateInfo: [SAML2AttributeStatement - NumOfAttrs: 2
    attrName=loginid, attrNameFormat=urn:oasis:names:tc:SAML:2.0:attrname-format:basic, attrFridentlyName=null, NumOfAttrValues=1
      value=mylogin
    attrName=b, attrNameFormat=urn:oasis:names:tc:SAML:2.0:attrname-format:basic, attrFridentlyName=null, NumOfAttrValues=1
      value=value
]>
####<Jul 25, 2012 4:43:55 PM IST> <Debug> <SecuritySAML2CredMap> <vsolv-de-224> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1343214835121> <BEA-000000> <SAML2CreateAssertion: Groups attribute statement requested and group info is present>
####<Jul 25, 2012 4:43:55 PM IST> <Debug> <SecuritySAML2CredMap> <vsolv-de-224> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1343214835121> <BEA-000000> <SAML2CreateAssertion: Creating urn:oasis:names:tc:SAML:2.0:cm:bearer assertion>
####<Jul 25, 2012 4:43:55 PM IST> <Debug> <SecuritySAML2CredMap> <vsolv-de-224> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1343214835121> <BEA-000000> <SAML2CreateAssertion: Assertion IS signed>
####<Jul 25, 2012 4:43:55 PM IST> <Debug> <SecuritySAML2CredMap> <vsolv-de-224> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1343214835121> <BEA-000000> <SAML2CreateAssertion: KeyInfo IS NOT supplied>
####<Jul 25, 2012 4:43:55 PM IST> <Debug> <SecuritySAML2CredMap> <vsolv-de-224> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1343214835121> <BEA-000000> <AttrStmtInfo IS supplied>
####<Jul 25, 2012 4:43:55 PM IST> <Debug> <SecuritySAML2CredMap> <vsolv-de-224> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1343214835137> <BEA-000000> <SAML2CreateAssertion.generateSAML2Assertion - attributeOnly? false>
####<Jul 25, 2012 4:43:55 PM IST> <Debug> <SecuritySAML2CredMap> <vsolv-de-224> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1343214835137> <BEA-000000> <SAML2CredentialMapper: getCredentialInternal(): Exception while generating assertion credential: java.lang.ArrayStoreException>
####<Jul 25, 2012 4:43:55 PM IST> <Debug> <SecuritySAML2CredMap> <vsolv-de-224> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1343214835137> <BEA-000000> <SAML2CredentialMapper: getCredentialInternal(): Returning null credential>
####<Jul 25, 2012 4:43:55 PM IST> <Debug> <SecuritySAML2Service> <vsolv-de-224> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1343214835137> <BEA-000000> <[Security:096578]Can't generated assertion for the user.
com.bea.security.saml2.service.SAML2DetailedException: [Security:096578]Can't generated assertion for the user.
     at com.bea.security.saml2.service.sso.SSOServiceProcessor.getAssertionForUser(SSOServiceProcessor.java:403)
     at com.bea.security.saml2.service.sso.SSOServiceProcessor.sendResponse(SSOServiceProcessor.java:355)
     at com.bea.security.saml2.service.sso.SSOServiceProcessor.loginReturn(SSOServiceProcessor.java:234)
     at com.bea.security.saml2.service.sso.SSOServiceProcessor.process(SSOServiceProcessor.java:95)
Thanks

Dear all
It has been resolved after I have done the following.
In the CustomCredentialNameMapper , in the mapSubject method.
I have passed the Set of <String> type as Grounames instead the Set of <WLSGroup> to the SAML2NameMapperInfo . They are expecting the Set<String> it seems.
Thanks.
Edited by: ravi_orcl on Aug 31, 2012 4:06 AM
Edited by: ravi_orcl on Aug 31, 2012 4:07 AM

P6 user name is not valid for connecting to the reporting database

No data is available because your P6 user name is not valid for connecting to the reporting database
I am getting above error in the following environment:
P6 running on wls instance 1.
BI Publisger running on wls instance 2
MS SQL server 2005
Note that the error appears when I clink on the 'Reports' tab in P6. My admin user on P6 has access to report/analyser modules.
To connect P6 to BI Publisher I am using 'PxRptUser' in the P6 configuration for Bi Publisher. I know as well that the WSDL URL is correct and I can test this in SoapUI tool.
In BI publisher I have created the PMDB data source using PxRprUser, and the test of this connection works.
(Because the report samples come with Oracle flavoured SQL that SQL server does not like, I have configured BI Publisher so I have just a single report left that sources it data from an xml file. This works in BI Publisher. It also helps me in that I do not need to add 'WHERE' clauses and parameters required for SQL server?)
Furthermore, using a DB tool, I can connect to my SQL server using PxRPTUser.
So why do I get the error above?
I picked up somewhere that I should not be adding users to BI Publisher. Funny enough, testing the 'login' method the BI Publisher exposes through its WSDL (as above) I noticed I HAD to create the user PxRptUser in BI publisher application itself (on top of PxRptUser in database) for the login web service to work with PxRptUser
That did not solve the connection between P6 and BI Publisher though. What am I missing ...
Edited by: user3674522 on 10/11/2011 20:16

Thought I found something but can't repliacte, som issue is still there:
Had a look at the wls instance logs where BI publisher is running, and the error I get is:
111111_023646955][][ERROR] javax.naming.NamingException: Unresolved naming: cn=admin, dc=user, dc=users, dc=principals at [cn=admin]
That user, admin, is the one I have used to access P6. Why is this passed on to BI Publisher? I thought the idea was that the PxRptUser set in BI Publisher configurations in P6 would be used?
Edited by: user3674522 on 10/11/2011 20:17

Creating OAAM users and groups in external LDAP i.e. OID

Hi Experts,
I am looking for the procedure to create OAAM users and groups in external LDAP i.e. OID.
I am using 11gR2.
Any pointers would be appreciated.
Regards,
Subin

Check this link http://docs.oracle.com/cd/E27559_01/dev.1112/e27206/lcm.htm#autoId3

Custom user name validation in subscription to event

Hello,
I am on R11.5.10.2 and trying to create fnd_users using FND_USER_PKG.CREATEUSER. But i am getting following error :
ORA - 20001: Custom user name validation in subscription to event oracle.apps.fnd.user.name.validate failed.
The above mention business event is enabled but their is no subscription attached to it.
Can any body faced the same issue ?
Thanks
Ayaz

Also send the count of invalid onjects in the DBNot sure how the count would help, but I believe the name of invalid objects would be more helpful.

FND_USER_PKG.CreateUser - ORA-20001: Custom user name validation

Hi,
I created a user IDM in Oracle ERP instance (R12.1.2). I gave execute privilege on FND_USER_PKG to IDM.
I also created synonym IDM.FND_USER_PKG for APPS.FND_USER_PKG;
I logged in to SQLPLUS as IDM and executed the below and got an error - ORA-20001: Custom user name validation in subscription to event oracle.fnd.user.name.validate failed. Could anyone of you help me?
The statement works fine when I run as APPS.
SQL>begin
2 FND_USER_PKG.CreateUser (
3 x_user_name => 'TEST899',
4 x_owner => NULL,
5 x_unencrypted_password => 'oracle',
6 x_session_number => userenv('sessionid'),
7 x_start_date => sysdate );
8
9 end;
10 /
begin
ERROR at line 1:
ORA-20001: Custom user name validation in subscription to event
oracle.fnd.user.name.vali
date failed.
ORA-06512: at "APPS.APP_EXCEPTION", line 72
ORA-06512: at "APPS.FND_USER_PKG", line 3663
ORA-06512: at "APPS.FND_USER_PKG", line 955
ORA-06512: at "APPS.FND_USER_PKG", line 1173
ORA-06512: at "APPS.FND_USER_PKG", line 1292
ORA-06512: at line 2
Thanks
Cherrish Vaidiyan

Can you reproduce the issue when you create the same user from the application?
ORA-20001: Custom user name validation in subscription to event oracle.fnd.user.name.validate failedDo you have any customization that could be related to user creation validation?
Can you reproduce the issue if you use the code in https://forums.oracle.com/forums/search.jspa?threadID=&q=FND_USER_PKG.CreateUser&objID=c3&dateRange=all&userID=&numResults=15&rankBy=10001
Thanks,
Hussein

Trying to give remote user FTP access to external HDD connected to my iMac

This gets a little complicated, so bear with me.
I have an external hard drive connected via FireWire to my iMac. I have a remote user that I want to be able to access this hard drive via FTP.
Here's what I've done so far:
1) I've given the iMac a static IP on the local network.
2) I've forwarded port 21 to said IP address via my Airport Extreme.
3) I've given the user her own account on my iMac.
4) I've turned on file sharing in System Preferences, and the user has read & write permissions. I've also enabled FTP access to the iMac.
5) I've added the external drive to the Shared Folders list, and given the user read & write permissions.
When the user attempts to FTP into my iMac, she is prompted for a user name and password. She authenticates and is redirected to her home folder on my iMac. She can read and write to this folder, but the external drive is nowhere to be found.
I'm sure I've just missed a small detail. Does anyone have any ideas?

I came up with a work around, if anyone is interested.
In user accounts system preferences, I edited advanced options for the user I want to give access to. I changed the location of her home directory to the external hard drive. Now every time she logs in, she's directed straight to the external.

External LDAP connection for Jive forum webcenter Discussion

Hi All,
We could successfully configure external LDAP with Webcenter Discussion forum. In turns Jive forum.
Problem we are facing : It is authenticating for display name instead of actual userid.
EX:
John Paul (display name)
[email protected] (email id)
John.paul (userid)
It is accepting John Paul as username instead of john.paul. This is issue as there can be duplicate display names.
Which parameter and where to configure to make sure Authentication is done for userid only.

I think jive is used in webcenter discussions?
You may have the wrong forum... this is for Webcenter Interaction Products.
For help with Webcenter Discussion, blogs, and wiki's (part of webcenter services), you want to ask your question here:
http://forums.oracle.com/forums/forum.jspa?forumID=733

User ID Number to Custom User Name

Hello.
We have some users logging in using their SSN (or some important #). We want them to create their own usernames and login using the new name. This name will just be for logging in, we want to track audit info like updated by and created by etc. with the SSN. (We have old records with this # as audit col values , also the user should be able to change their user names later)
Is there a way to authenticate using the new user name and set the session user id with the original ID (SSN or other numbers) used.
Thanks.
A.S

Bump.

Customizing User Name Policy OOTB Plugin

Hi
I want to use the User Name policy generation plugin to generate the user id for an oim user. But the requirement is that we have to create the User ID with Preferred Name(not with first name) and Last Name and the issue is that in the code we cannot get the attribute other then the attribute coming in the HashMap. So the question is , Is there any way in which we can pass this UDF to that hashmap or can get the value in the code?
Please note Preferred name is a UDF and coming from the trusted Source.
Thanks in Advance

Maybe i've partially solved the issue, I've noted that during the user creation procedure the username field is mandatory in the for so I must specify a value.
Maybe the validation procedure of the OOTB username policy returns alway a true value so the field is always converted in UPPERCASE and the username generation rule is never called
How can i set a non mandatory account name field ?

Domain\User Name is not able to connect to Database

We have a service account and we want to run the report using the service account. Users will be accessing the report using their windows authentication, while on connecting to data source service account needs to be used.
We have added the service account in database server and also on physical server as "Allow logon as locally".
While creating the datasource, we are getting this error "logon failed for user domain\username".
We tried with the first checkbox "Use as windows credentials when connecting to the data source", but the error is "Logon Failed. Ensure the username and password are correct".
When we tried with the second checkbox "impersonate authenticated user after the connection has been made to the data source", but the error is "Login Failed for user domain\username".
We have even tried to add this domain\username as execution account in reporting services configuration and its failing.
Kindly let me know wat needs to be done to run the report as a service account and not as windows integrated or sql account.

Hi CrazySam81,
Per my understanding that when you are using one service account to access the report server to run the report you got some error, right?
I assumed that the use have grant the correct permission to access the report server, so the issue can be caused by use don't have grant the right permission to access the datasource or the setting of the credential is not correct.
Use stored credentials or prompted credentials to query external data sources for report data. The credentials can be either a Windows domain account or a database login.
In your scenario, please make use the service account is the Windows domain account or a database login account. please also check details information below:
make sure you have done the setting like below and test connection to see if the username and password is correct：
Go to SQL Server Reporting Services Configuration Manager, make sure the service account have the correct password and username.
Go to Database, Verify that the service account can connect to the database.
More details information about the grant of permission reference to:
How to: Store Credentials for a Data Source (Report Manager)
pecify Credential and Connection Information for Report Data Sources
If your problem still exists, please try to provide more details informaiton in the log file which path like:
C:\Program Files\Microsoft SQL Server\MSRS10_50.MSSQLSERVER\Reporting Services\LogFiles
Regafrds,
Vicky Liu
Vicky Liu
TechNet Community Support

Changing user password in the external LDAP server from weblogic

Hi !
We have been successful in configuring the ldap security realm from weblogic 7.0.
We have also done the user authentication.
Now we want to allow the user himself to change his password from the application.Can
the user password which is stored in an iplanet directory server be changed from
application?If yes , then is there any extra configuration that needs to be done

I am not sure whether u got an answer for this..
But iplanet provides a web-link for end-users to change their LDAP password...u
can just give this link in ur app ..and iplanet will take care of the rest..
Krish Venkataraman
Bank Of America Corp.
Senior Analyst
"Mitali" <[email protected]> wrote:
>
Hi !
We have been successful in configuring the ldap security realm from weblogic
7.0.
We have also done the user authentication.
Now we want to allow the user himself to change his password from the
application.Can
the user password which is stored in an iplanet directory server be changed
from
application?If yes , then is there any extra configuration that needs
to be done

Server App not seeing external LDAP users & groups

I have a clean 10.8.2 + Server install set up with our standard external LDAP directory (Novell's eDirectory in our case) configuration that is known to support Lion & Mountain Lion client LDAP authentication. With this same configuration on OS X 10.8.2 Server both Directory Utility and WGM can see all the LDAP users and groups as expected.
When I look for the external users & groups in the LDAP domain under the Server App "Accounts" heading I cannot see any entries in either users or groups lists. Should I be able to or is this a Server App quirk?
I can add individual LDAP users to a local group and enable access to individual services. How can I give access to services to all LDAP users without having to build & maintain a massive "All LDAP Users" local group?
Is there a published list of required LDAP attributes for users & groups for Mountain Lion Server? I suspect there are new requirements over and above those for 10.6 server but I have failed to find a good reference. I've noticed I get different behaviours for LDAP templates that includes a mapping for GeneratedUID to one which does not for example.
This is all so much more opaque than our superbly reliable Snow Leopard servers!
TIA

Ok, and again:
You want to see Users and Groups , which are stored in an third Party directory service like OpenLDAP, in your Server.app? This is what you have to do:
Connect the third party ldap to your server
Have all your external LDAP entries made so you can see them in the Workgroup Manager and are able to Login with them
When you see your LDAP-entry in the Directory Manager, change it from "From Server" to "RFC2307"
Edit the entry, add the following mapping to it:GeneratedUUID maps to apple-generateduuid
To your group and user entries in the external LDAP add the follwing attribute:apple-generateduuid gets the value taken from the output of "uuidgen"
Feel lucky
And there ist ist; now you are able to use The accounts taken from an external LDAP.

How to change newly registered user name, without changing entire apple id, in iCloud?

Recently created new user name. Need to change it. I do not want to change my entire apple id account information. The only information I can find in communities, has to do with the previous Mobile Me stuff and not the new iCloud stuff. Again, I don't want to change my long standing account id with Apple. There must be some sane way to do this! I've been searching now, for over 2 hours. Help!

Go to https//appleid.apple.com, click Manage my Apple ID and sign in with your current iCloud ID. Tap edit next to the primary email account, tap Edit, change it back to your old email address and save the change. Then edit the name of the account to change it back to your old email address. You can now use your current password to turn off Find My iPhone on your device, even though it prompts you for the password for your old account ID. Then go to Settings>iCloud, tap Delete Account and choose Delete from My iDevice when prompted (your iCloud data will still be in iCloud). Next, go back to https//appleid.apple.com and change your primary email address and iCloud ID name back to the way it was. Now you can go to Settings>iCloud and sign in with your current iCloud ID and password.

TNS-12541: TNS: no listener (has to input user name)

Hi!
I have installed Oracle10g successful. I have tested the connection in Net Manager and is successful in condition that I change the user name to system. How can I preset the user name, so that the system will not prompt me for input when I sqlplus?
Enclosed please find the output:
C:\>tnsping train
TNS Ping Utility for 32-bit Windows: Version 10.2.0.1.0 -
Production on 21-9月 -2005 12:10:04
Copyright (c) 1997, 2005, Oracle. All rights reserved.
Used parameter files:
C:\oracle\product\10.2.0\db_1\network\admin\sqlnet.ora
Used EZCONNECT adapter to resolve the alias
Attempting to contact (DESCRIPTION=
(CONNECT_DATA=
(SERVICE_NAME=train.plusten.com.cn))(ADDRESS=
(PROTOCOL=TCP)(HOST=210.245.166.72)
(PORT=1521)))
TNS-12541: TNS:no listener
C:\>sqlplus system/manager@train
SQL*Plus: Release 10.2.0.1.0 - Production on 星期三 9
月 21 12:14:16 2005
Copyright (c) 1982, 2005, Oracle. All rights reserved.
ERROR:
ORA-12541: TNS:no listener
Enter user-name:system //will prompt for user name and password
Enter password:
Connected to:
Oracle Database 10g Release 10.2.0.1.0 - Production
SQL> exit
Disconnected from Oracle Database 10g Release
10.2.0.1.0 - Production
C:\oracle\product\10.2.0\db_1\BIN>lsnrctl status
LSNRCTL for 32-bit Windows: Version 10.2.0.1.0 - Production on 21-9月 -2005 16:43:31
Copyright (c) 1991, 2005, Oracle. All rights reserved.
Connecting to (DESCRIPTION=(ADDRESS=(PROTOCOL=IPC)(KEY=EXTPROC1)))
STATUS of the LISTENER
Alias LISTENER
Version TNSLSNR for 32-bit Windows: Version 10.2.0.1.0 - Production
Start Date 21-9月 -2005 15:01:50
Uptime 0 days 1 hr. 41 min. 41 sec
Trace Level off
Security ON: Local OS Authentication
SNMP OFF
Listener Parameter File C:\oracle\product\10.2.0\db_1\network\admin\listener.ora
Listener Log File C:\oracle\product\10.2.0\db_1\network\log\listener.log
Listening Endpoints Summary...
(DESCRIPTION=(ADDRESS=(PROTOCOL=ipc)(PIPENAME=\\.\pipe\EXTPROC1ipc)))
(DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=orange.plusten.com.cn)(PORT=1521)))
Services Summary...
Service "PLSExtProc" has 1 instance(s).
Instance "PLSExtProc", status UNKNOWN, has 1 handler(s) for this service...
Service "train.plusten.com.cn" has 1 instance(s).
Instance "train", status READY, has 1 handler(s) for this service...
Service "trainXDB.plusten.com.cn" has 1 instance(s).
Instance "train", status READY, has 1 handler(s) for this service...
Service "train_XPT.plusten.com.cn" has 1 instance(s).
Instance "train", status READY, has 1 handler(s) for this service...
The command completed successfully

I am sorry. I am newbie in Oracle and still do not know how to solve it. Even I try sqlplus system/[email protected], the outcome is still the same. Enclosed pleae find my sqlnet.ora, listener.ora and tnsnames.ora files:
# sqlnet.ora Network Configuration File: C:\oracle\product\10.2.0\db_1\NETWORK\ADMIN\sqlnet.ora
# Generated by Oracle configuration tools.
# This file is actually generated by netca. But if customers choose to
# install "Software Only", this file wont exist and without the native
# authentication, they will not be able to connect to the database on NT.
SQLNET.AUTHENTICATION_SERVICES= (NTS)
NAMES.DIRECTORY_PATH= (TNSNAMES, EZCONNECT)
NAMES.DEFAULT_DOMAIN = plusten.com.cn
# listener.ora Network Configuration File: C:\oracle\product\10.2.0\db_1\network\admin\listener.ora
# Generated by Oracle configuration tools.
SID_LIST_LISTENER =
(SID_LIST =
(SID_DESC =
(SID_NAME = PLSExtProc)
(ORACLE_HOME = C:\oracle\product\10.2.0\db_1)
(PROGRAM = extproc)
LISTENER =
(DESCRIPTION_LIST =
(DESCRIPTION =
(ADDRESS = (PROTOCOL = IPC)(KEY = EXTPROC1))
(ADDRESS = (PROTOCOL = TCP)(HOST = ORANGE)(PORT = 1521))
# tnsnames.ora Network Configuration File: C:\oracle\product\10.2.0\db_1\network\admin\tnsnames.ora
# Generated by Oracle configuration tools.
TRAIN =
(DESCRIPTION =
(ADDRESS = (PROTOCOL = TCP)(HOST = ORANGE)(PORT = 1521))
(CONNECT_DATA =
(SERVER = DEDICATED)
(SERVICE_NAME = train.plusten.com.cn)
EXTPROC_CONNECTION_DATA =
(DESCRIPTION =
(ADDRESS_LIST =
(ADDRESS = (PROTOCOL = IPC)(KEY = EXTPROC1))
(CONNECT_DATA =
(SID = PLSExtProc)
(PRESENTATION = RO)
)

Custom user name mapper needs external LDAP connection.

Similar Messages

Maybe you are looking for