How to use LDAP authentication in Oracle Linux

Similar Messages

• Designer takes several minutes for login using LDAP authentication

  We have a issue, when we tried to login to the designer using LDAP authentication it takes several minutes and using enterprise account we are able to login to the designer with in seconds.
  CMC and infoview all are working fine using LDAP authentication.
  We are using BOXIR2,
  FP 1.6.
  Thank You in Advance.
  Thanks & Regards,
  Collin.

  There have been several changes in LDAP since FP 1.6 but if infoview is ok then hopefully you aren't running into any of them. When logging into client tools the LDAP requests are sent to the LDAP server directly from the client. An issue like this would suggest there is a problem reaching the LDAP server from the client.
  Is LDAP SSL being used? If yes try disabling it, if no then you can packet scan the logon attempt on the client and filter the LDAP traffic to see how long it's taking for that communication.
  Regards,
  Tim

• How to use an authenticated user for a proxy call

  Dear all,
  I am currently working on a JEE application where the user needs to authenticate (for this I have configured the web.xml).
  Now inside this application I need to do a proxy call to a PI webservice.
  I would like to use the user credentials of the already logged in user in order to call the proxy.
  What I don't want to do is to use a service user for the proxy call.
  The code I am trying to call looks something like this:
       private IntegratedConfigurationIn getPort() throws Exception{
            IntegratedConfigurationIn port = null;
            try {
                 IntegratedConfigurationInService service = null;
                 service = new IntegratedConfigurationInService();
                 port = (IntegratedConfigurationIn) service.getIntegratedConfigurationIn_Port();
                BindingProvider bp = (BindingProvider)port;
                bp.getRequestContext().put(BindingProvider.USERNAME_PROPERTY, user);
                bp.getRequestContext().put(BindingProvider.PASSWORD_PROPERTY, password);
                if (url.length() != 0)
                     bp.getRequestContext().put(BindingProvider.ENDPOINT_ADDRESS_PROPERTY, url);
            catch (Exception ex){
                 ex.printStackTrace();
            return port;
  The examples I found to retrieve the userdata pointed to codes similar to this one:
  public HttpServletRequest getHttpRequest() throws Exception {
            // Get runtime context
            Properties props = new Properties();
            props.put("domain", "true");
            Context initialContext = new InitialContext(props);
            ApplicationWebServiceContext wsContext = (ApplicationWebServiceContext) initialContext
                      .lookup(" /wsContext/ApplicationWebServiceContext");
            HttpServletRequest req = wsContext.getHttpServletRequest();
            return req;
  com.sap.security.api.IUser sapUser = com.sap.security.api.UMFactory.getAuthenticator().getLoggedInUser(getHttpRequest(), null);
            IUser ep5User = com.sapportals.wcm.util.usermanagement.WPUMFactory.getUserFactory().getEP5User(sapUser);
  Now I don't know how to bring it togehter and how to use an authenticated user for the BindingProvider.
  I would appreciate any hints or ideas.

  Peter,
  from the first screenshot, what I understood is that, you are calling an inbound PI web service that is intended to create an integrated configuration object (this is used for whole lot of other reason completely) but not actually calling a development web service.
  For this, you would have to generate your client classes from the WSDL provided by the PI developer for that particular service. Once you get those client classes generated, you could used the method provided in the other screenshot to extract the user and password and call the intended web service.
  Vijay Konam

• How to use java source in Oracle when select by sqlplus.

  How to use java source in Oracle when select by sqlplus.
  I can create java source in Oracle
  import java.util.*;
  import java.sql.*;
  import java.util.Date;
  public class TimeDate
       public static void main(String[] args)
  public String setDate(int i){
  GregorianCalendar calendar = new GregorianCalendar();
  calendar.setTime(new Date((long)i*1000));
  System.out.println("Dateline: "
  + calendar.get(Calendar.HOUR_OF_DAY) + ":"
  + calendar.get(Calendar.MINUTE) + ":"
  + calendar.get(Calendar.SECOND) + "-"
  + calendar.get(Calendar.YEAR) + "/"
  + (calendar.get(Calendar.MONTH) + 1) + "/"
  + calendar.get(Calendar.DATE));
  String n = calendar.get(Calendar.YEAR) + "/" + (calendar.get(Calendar.MONTH) + 1) + "/" + calendar.get(Calendar.DATE);
       System.out.print(n);
       return n;
  I have table name TEST
  ID DATE_IN
  1 942685200
  2 952448400
  When I write jsp I use method setDate in class TimeDate
  The result is
  ID DATE_IN
  1 1999/11/16
  2 2003/7/25
  Thanks you very much.

  It is unclear where you are having a problem.  Is your issue at runtime (when the form runs in the browser) or when working in the Builder on the form?
  Also be aware that you will need to sign your jar and include some new manifest entries.  Refer to the Java 7u51 documentation and blogs that discuss the changes.
  https://blogs.oracle.com/java-platform-group/entry/new_security_requirements_for_rias
  http://docs.oracle.com/javase/7/docs/technotes/guides/jweb/manifest.html

• How to use unicode fonts in Oracle forms 10g?

  Hi I am working in forms 10g for quite a long time, the software that I have developed so far are all in English language. Now I have requirements to use Bengali Fonts in Forms 10g. I am facing difficulties doing that. Please reply with help. Thanks
  Hasan Al Mamun

  Check this forum post (though that is for 6i, it would be of helpful for you)
  How to use unicode fonts in Oracle forms 10g?
  -Arun

• How to  use  crystal reports in oracle Jdeveloper

  Hi,
  I was implemented crystal reports in Crystal reports for eclipse also i made .rpt & .JSP how to use these file in oracle JDeveloper 10 g
  can any one please help regarding this matter send any information if avilable send me on my mail My mail id: - [email protected]
  Thank you !
  regards,
  Amol

  you are in the Oracle Forms Forum and your question is related to JDeveloper and Crystal Reports, you think those two are linked to Oracle Forms in anyway??
  Please post your questions in the appropriate Forum.
  Tony

• Unable to use share feature in Oracle Linux 6.4

  Hi,
  Please help us to use share feature in Oracle Linux 6.4.
  what extra steps, configuration and functionality needed be to changed in Oracle Linux Environment?
  Regards,
  Arvind 

  Hi Arvind,
  Is this query regarding Azure Files Share feature?
  If yes, I'm Afraid Azure Files is not supported in Oracle Linux 6.4.
  However, a request has been raised with the Product group for this feature and they might consider it in the future.
  Regards,
  Malar.

• How to use LDAP with Oracle forms 10g on Oracle application server

  Hi,
  I need some help on this. I have developed oracle forms 10g on application server 9iAS. The client want to use the existing LDAP authentication to the software we wrote. I do not know how I could configure to use the existing LDAP authentication . If anyone know how would I use the existing LDAP on different server to use when they logon to our menu in 10g to validate the user. Do I need to add any varibales in formweb.cfg or any other method. Please help.
  Thanks
  Luksh

  I am not quite sure if this works out of the box. According to an Oracle FAQ:
  4.2 Can I use LDAP to authenticate Forms Services?
  Not directly. However, Oracle Login Server is able to authenticate against a LDAP directory and thus a Forms application can take advantage of this in a SSO environment. But you cannot use access control information stored in a LDAP directory with Forms.

• How can I install kornshell in Oracle Linux no using yum?

  I have a VM with Oracle Linux. with no internet access and I need to install korn shell. How can I do it no using yum?

  I really would like to use YUM to install, but my VM is not accessing the internet. I browsed the repository (Index of /repo/OracleLinux/OL6/3/base/x86_64/) and found out the right file.
  Thanks for your help!

• How to do LDAP authentication in OC4J instance?

  Need to configure third party LDAP authentication for an application deployed in OC4J instance. How to configure this?

  Hi,
  I think that links will be useful to you!
  http://download-uk.oracle.com/docs/cd/B15904_01/web.1012/b14013/configoc4j.htm
  http://www.oracle.com/technology/sample_code/tech/java/codesnippet/security/jaznldap/index.html
  Afonso

• How to use tacacs+ authentication to assign a group policy at login in Cisco ASA

  Hi everyone
  As title, anyone knows how it works?
  I only found it can work with LDAP authentication, but not in TACACS+
  http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/98634-asa-ldap-group-pol.html#noaccessgp
  please give me a hand, thanks.

  Hi Karten,
  I have the similar requirement and I used the ACS and configure Auth profile and map the RADIUS class (25) value as ASA group-policy name (even tried with tunnel-group name), but it does not work. It allows whatever vpn group that user select regardless of the user groups he belongs to.
  I use two ACS local users and put them in two different groups and maped those two groups with two different Access rules in the ACS and pointed to correct Auth profile etc.
  I am not sure what could be the issue and appreciate if you can advise.
  thanks in advance.

• Filtering Groups on Windows Active Directory using LDAP Authentication

  Hi All,
  I have small module that filters the groups from the Windows AD using LDAP attributes and flushes the data into the DB[code below].
  This module was developed and tested on weblogic 8.1[on windows]and works fine.
  Now the same is moved to another environment- Websphere on Linux Suse. The code fails to retreieve any value from the Windows AD.
  Please note no exception is aslo thrown.
  env.put(Context.INITIAL_CONTEXT_FACTORY,ldapCtxFactory);
            //set security credentials, note using simple cleartext authentication
            env.put(Context.SECURITY_AUTHENTICATION,authentication);
            env.put(Context.SECURITY_PRINCIPAL,adminName);
            env.put(Context.SECURITY_CREDENTIALS,adminPassword);
            //connect to my domain controller
            env.put(Context.PROVIDER_URL, domainController);
            // Create the initial directory context
            try {
                                dirCtx = new InitialDirContext(env);
                 // Create the search controls           
                 SearchControls searchCtls = new SearchControls();
                 //Specify the attributes to return
                 String returnedAtts[]={"member"};
                 searchCtls.setReturningAttributes(returnedAtts);
                 //Specify the search scope
                 searchCtls.setSearchScope(SearchControls.SUBTREE_SCOPE);
                 int totalResults = 0;
                 int iteration=0;
                 // Search for objects using the filter
                 NamingEnumeration results = ctx.search(searchBase, searchFilter, searchCtls);
  In the above code the method exits even before the try block[i could detect this using Sysout's]
  Below is the property file from which the values are read.
  admin=username
  password=password
  #AD search attributes
  searchBase=DC=domainname,DC=domainname
  searchFilter=(&(objectClass=group) (CN=value*))
  #JNDI context attributes
  ldapCtxFactory=com.sun.jndi.ldap.LdapCtxFactory
  authentication=simple
  domainController=ldap://address
  groupPattern=pattern
  Please Assit,
  Thanks in Advance
  Message was edited by:
  radiant
  Message was edited by:
  radiant

  Assuming it is the same Active Directory environment and only your Java platform has changed, the I can only assume that if no exception is thrown, and no data is returned, then the credentials you are using on the new Java platform are being mapped to an anonymous user (perhaps a blank password ?). By default, Windows Server 2003 domains, do not return any results to anonymous users.

• How to see new disk in oracle linux 5

  Dear,
  i am using oracle VM and created 2 guest OS (both Olx5) i also created a shared disk and assigned to both linux servers.
  question: how can i see the disk in each server. using fdisk -l it just shown the one there before.
  in HPUX we have ioscan to detect new devices. is there away to check for new disk in oracle linux.
  Thanks in advance.
  Tom

  fdisk -l shows only existing partitions. So if your new disk has not partition created it will be not shown in the output.
  AFAIK there is not such command which will list all devices but there are several ways how to find the devices. All informations you can find in /proc directory (fdisk -l reads /proc/partitions when device is not passed as argument).
  You can find devices (local disks) for example using following commands (hope it helps):
  cat /var/log/dmesg |egrep 'sd[a-z]: s|hd[a-z]: h'
  cat /proc/diskstats |egrep -v 'ram|fd'|awk {'print $3'}

• Help with setting up LDAP Client on Oracle Linux 6.4

  Hi,
  I'm having problems getting my Oracle Linux server setup as a ldap client and hoping someone can find where I'm going wrong. We have Oracle/Sun Directory Server 7 with Solaris ldap clients already setup with ssl. We are also using crypt for storing passwords. Here are the steps I have done on the Linux server.
  yum install -y openldap openldap-clients nss-pam-ldapd pam_ldap
  Edited the line FORCELEGACY=no to yes in /etc/sysconfig/authconfig
  Copied the CA certs to /etc/openldap/cacerts
  Ran: authconfig updateall enableldap enableldapauth ldapserver=zldap1.<domain> ldapbasedn="o=<domain>,o=isp" enableldaptls --enableldapstarttls
  Changed pam_password md5 to crypt in /etc/pam_ldap.conf
  Restarted /etc/init.d/nslcd and also tried rebooting.
  I'm seeing the following errors in messages:
  May 21 08:50:01 ryolinux nslcd[1261]: [c79ea8] ldap_start_tls_s() failed: Connect error (uri="ldap://zldap1.<domain>/")
  May 21 08:50:01 ryolinux nslcd[1261]: [c79ea8] failed to bind to LDAP server ldap://zldap1.<domain>/: Connect error
  May 21 08:50:01 ryolinux nslcd[1261]: [c79ea8] no available LDAP server found
  Here is what my /etc/openldap/ldap.conf file looks like:
  TLS_CACERTDIR /etc/openldap/cacerts
  TLS_REQCERT allow
  URI ldap://zldap1.<domain>/
  BASE o=<domain>,o=isp
  Any help would be appreciated.
  Thanks

  Copy cacerts to /etc/openldap/cacerts
  yum install -y openldap ldap-clients nss-pam-ldapd pam_ldap authconfig sssd
  authconfig enablesssd enablesssdauth enablelocauthorize update
  authconfig updateall enableldap enableldapauth ldapserver=zldap1.<domain> ldapbasedn="o=<domain>,o=isp" enableldaptls --enableldapstarttls
  Add line to /etc/sssd/sssd.conf "ldap_tls_reqcert = allow"
  Change /etc/pam_ldap.conf line:
  pam_password md5 --> pam_password crypt
  service sssd restart

• SOLVED: How To Use LDAP over SSL (no certs) from java program

  Trying to connect to OID from Java program (using Grocery Store demo as a test). Want to use SSL with no server certificate. OID is configured, and ldapsearch -U 1 works.
  Tried using URL with ldaps, or adding SECURITY_PROTOCOL,"ssl". In both case the error is 'simple bind failed'.
  Samples on OTN say this should be possible, but then only have code for the non-ssl connection.
  Posting from others with this same question don't seem to have been answered.
  Message was edited by:
  user590350
  I have found that using ConnectionUtil.getSSLDirCtx() from Oracle will make a no-authentication SSL connection. An example in the sample code would be useful.

  Even with Java APIs, There is a way to talk through SSL without bothering about certificates. It's just that you will have to write some code and make some changes in settings.
  Read following to get further information on the same.
  http://kiranthakkar.blogspot.com/2007/04/dummny-certificate-authentication.html
  I don't know or I won't comment whether it's the right approach or not but it's definitely a work around.
  Thanking You
  Kiran Thakkar