JSSE (JDK 1.6) with custom KeyStore implementation -- need more doc
Hi,
is there somewhere more info available on how to support your own KeyStore implementation in JSSE: algos used by the JSSE implementation? other stuff to implement? The JSSE reference documentation doesn't supply this details :(
We wrote already our own X509KeyManager...
What we know from this forum:
--> to enable JSSE to use our own KeyStore implementation, we need to implement the algorithm Signature.NONEwithRSA. We did this, but now we are facing this problem:
javax.net.ssl.SSLHandshakeException: Received fatal alert: decrypt_error
at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Unknown Source)
at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Unknown Source)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.recvAlert(Unknown Source)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(Unknown Source)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readDataRecord(Unknown Source)
at com.sun.net.ssl.internal.ssl.AppInputStream.read(Unknown Source)
at java.io.BufferedInputStream.fill(Unknown Source)
at java.io.BufferedInputStream.read1(Unknown Source)
at java.io.BufferedInputStream.read(Unknown Source)
at sun.net.www.http.HttpClient.parseHTTPHeader(Unknown Source)
at sun.net.www.http.HttpClient.parseHTTP(Unknown Source)
at sun.net.www.http.HttpClient.parseHTTP(Unknown Source)
at sun.net.www.protocol.http.HttpURLConnection.getInputStream(Unknown Source)
at sun.net.www.protocol.https.HttpsURLConnectionImpl.getInputStream(Unknown Source)
kind regards,
Tom
Edited by: TomV2406 on Jun 3, 2008 7:53 AM
That's an alert received from the other end, which probably means you sent it something it couldn't decrypt. Enable SSL tracing on the other end to see more.
Similar Messages
-
I was given a 16Gb ipad mini retina with cellular but I need more storage. We do not have the receipt as it is a gift. I like to swap for a 64Gb unit and pay for the difference, how do I go about doing that? I have not open the packaging yet.
Hi
Thanks for that. Yes, the ipad was purchased recently. I called Apple last Friday and they ask for the receipt. I wonder if anyone were able to swap their ipad for a larger storage in the past at the apple store without a receipt? 16Gb is such a small storage. -
SSL with custom keystores question
Hi,
I am trying to configure certificates and keystores to enable SSL for WLS 8.1
sp1.
First, I generated the certs with CertGen. Then created custom keystores for digital
certificates and imported the cert successfully into my custom keystore. Imported
CertGenCA.pem into the custom keystore for trust certificates. I used SUN's Keytool
to import certs.
Upon making changes to config.xml, the server starts up with the following error
message...
<Jan 5, 2004 3:07:38 PM PST> <Notice> <Security> <BEA-090171>
<Loading the identity certificate stored under the alias MyCertAlias from the
jks keystore fil
e C:\projects\SSL\MyCertKeyStore.jks.>
<Jan 5, 2004 3:07:38 PM PST> <Alert> <Security> <BEA-090168>
<No identity key/certificate entry was found under alias MyCertAlias in keystore
C:\projects\SSL
\MyCertKeyStore.jks on server myPlatformServer>
<Jan 5, 2004 3:07:38 PM PST> <Critical> <WebLogicServer> <BEA-000306>
<Cannot use SSL, no certificates have been specified in the WebLogic configuration.>
<Jan 5, 2004 3:07:38 PM PST> <Error> <WebLogicServer> <BEA-000297>
<Inconsistent security configuration, java.lang.Exception: Cannot use SSL, no
certificates ha
ve been specified in the WebLogic configuration.>
<Jan 5, 2004 3:07:38 PM PST> <Emergency> <Security> <BEA-090034>
<Not listeningfor SSL, java.io.IOException: Inconsistent security configuration,
Cannot use SS
L, no certificates have been specified in the WebLogic configuration..>
To make sure the import of certs happened successfully, I did this..
keytool -list -alias MyCertAlias -keystore MyCertKeyStore.jks -storepass MyCertKeyStorePass
MyCertAlias, Jan 5, 2004, trustedCertEntry,
Certificate fingerprint (MD5): C7:DE:CC:C7:50:33:15:21:90:D9:C3:55:51:CC:35:3E
This indicates that the import was successful. I am not why WLS is not able to
fetch the cert using the alias..
Any input is greatly appreciated.
Thanks,
AjayJKS keystore can have two types of entries: key entries and trusted cert entries.
keytool import command only allows to create trusted cert entries, while the identity
public/private key pair need to be imported as a key entry. utils.ImportPrivateKey
can do this for you. It does this via java keystore api.
The output of the keytool -list command that you provided shows that you have
trustedCertEntry under MyCertAlias: "MyCertAlias, Jan 5, 2004, trustedCertEntry"
This is why when you boot the server you get the error message about it not being
able to find identity key/certificate under MyCertAlias.
Pavel.
"Ajay Oruganti" <[email protected]> wrote:
>
Pavel,
I had separate key stores for digital certs and trust certs. I imported
digital
certs (with the key file) into the keystore1 and imported trust certs
into keystore2.
I did not understand what you meant by this..
The identity certificate
and private key need to be imported as a key entry. keytool does not
provide a way to do that. Could you please elaborate?
Ajay
"Pavel" <[email protected]> wrote:
The command you used created trusted certificate entry. The identity
certificate
and private key need to be imported as a key entry. keytool does not
provide a
way to do that. You will need to use weblogic utility: utils.ImportPrivateKey
for this.
Pavel.
"Ajay Oruganti" <[email protected]> wrote:
Hi,
I am trying to configure certificates and keystores to enable SSL for
WLS 8.1
sp1.
First, I generated the certs with CertGen. Then created custom keystores
for digital
certificates and imported the cert successfully into my custom keystore.
Imported
CertGenCA.pem into the custom keystore for trust certificates. I used
SUN's Keytool
to import certs.
Upon making changes to config.xml, the server starts up with the following
error
message...
<Jan 5, 2004 3:07:38 PM PST> <Notice> <Security> <BEA-090171>
<Loading the identity certificate stored under the alias MyCertAlias
from the
jks keystore fil
e C:\projects\SSL\MyCertKeyStore.jks.>
<Jan 5, 2004 3:07:38 PM PST> <Alert> <Security> <BEA-090168>
<No identity key/certificate entry was found under alias MyCertAlias
in keystore
C:\projects\SSL
\MyCertKeyStore.jks on server myPlatformServer>
<Jan 5, 2004 3:07:38 PM PST> <Critical> <WebLogicServer> <BEA-000306>
<Cannot use SSL, no certificates have been specified in the WebLogic
configuration.>
<Jan 5, 2004 3:07:38 PM PST> <Error> <WebLogicServer> <BEA-000297>
<Inconsistent security configuration, java.lang.Exception: Cannot use
SSL, no
certificates ha
ve been specified in the WebLogic configuration.>
<Jan 5, 2004 3:07:38 PM PST> <Emergency> <Security> <BEA-090034>
<Not listeningfor SSL, java.io.IOException: Inconsistent security configuration,
Cannot use SS
L, no certificates have been specified in the WebLogic configuration..>
To make sure the import of certs happened successfully, I did this..
keytool -list -alias MyCertAlias -keystore MyCertKeyStore.jks -storepass
MyCertKeyStorePass
MyCertAlias, Jan 5, 2004, trustedCertEntry,
Certificate fingerprint (MD5): C7:DE:CC:C7:50:33:15:21:90:D9:C3:55:51:CC:35:3E
This indicates that the import was successful. I am not why WLS isnot
able to
fetch the cert using the alias..
Any input is greatly appreciated.
Thanks,
Ajay -
Instantiation error with custom filter implementation
have implemented the custom filter in oracle UCM 11. component is created via component wizard and it's succesfully deployed and enabled in content server. filter is being associated with event validateStandard.
when we check-in a file, check-in is failing due to message below
Unable to do filter 'mypackage.CustomFilter' for type 'validateStandard'. Unable to instantiate java class code for 'mypackage.CustomFilter' at location 'mypackage.CustomFilter'
we've placed the java class file under custom component folder. with-in custom component folder we've created mypackage and then placed class file (since mypackage is java package).
Below mentioned is the stacktrace,
!csUserEventMessage,weblogic,localhost:16200!$!apFilterInstantiationError,mypackage.CustomFilter,validateStandard!apUnableToInstantiateClass2,mypackage.CustomFilter,mypackage.CustomFilter
intradoc.common.ServiceException: !apFilterInstantiationError,mypackage.CustomFilter,validateStandard
*ScriptStack CHECKIN_NEW_SUB
3:doScriptableAction,dDocName=testtest3:doSubService,dDocName=testtestCHECKIN_NEW_SUB,dDocName=testtest3:validateStandard,dDocName=testtest
at intradoc.shared.ComponentClassFactory.createClassInstance(ComponentClassFactory.java:172)
at intradoc.shared.PluginFilters.filterWithAction(PluginFilters.java:90)
at intradoc.shared.PluginFilters.filter(PluginFilters.java:68)
at intradoc.server.DocServiceHandler.validateStandard(DocServiceHandler.java:1228)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:601)
at intradoc.common.IdcMethodHolder.invokeMethod(IdcMethodHolder.java:86)
at intradoc.common.ClassHelperUtils.executeMethodReportStatus(ClassHelperUtils.java:324)
at intradoc.server.ServiceHandler.executeAction(ServiceHandler.java:79)
at intradoc.server.Service.doCodeEx(Service.java:603)
at intradoc.server.Service.doCode(Service.java:575)
at intradoc.server.ServiceRequestImplementor.doAction(ServiceRequestImplementor.java:1643)
at intradoc.server.Service.doAction(Service.java:547)
at intradoc.server.ServiceRequestImplementor.doActions(ServiceRequestImplementor.java:1458)
at intradoc.server.Service.doActions(Service.java:542)
at intradoc.server.ServiceRequestImplementor.executeSubServiceCode(ServiceRequestImplementor.java:1322)
at intradoc.server.Service.executeSubServiceCode(Service.java:4023)
at intradoc.server.ServiceRequestImplementor.executeServiceEx(ServiceRequestImplementor.java:1200)
at intradoc.server.Service.executeServiceEx(Service.java:4018)
at intradoc.server.Service.executeService(Service.java:4002)
at intradoc.server.Service.doSubService(Service.java:3912)It looks like the filter is not properly locating the compiled Java class.
In Component Wizard, did you go into the Advanced Build Settings and ensure there is an Install ID and the classes properly points to your compiled Java class?
Here is a sample component which implements a filter: http://jonathanhult.com/blog/2012/07/minify-css-and-javascript-automatically-in-webcenter-content/
You can try loading that into Component Wizard and determining what your component is missing. You could also compare the manifest.hda files between components.
Jonathan
http://jonathanhult.com -
Hiya,
I moved a 40GB file off my MacBook Pro to make room so that I could enable the iCloud Photo Library. I optimised the storage but during this process it used 10GB of space and so I cant now put back the file I took off my mac. I though that once I had optimised the storage I would gain space not loose it!. So i'm wondering how can I delete photos off my MacBook and not off all my devices and so I can get this 40 GB file back on ??
CheersHi, that's how it works. photos in Photo Stream are these ones that actually exist on your Camera Roll. Photo Stream is an iClous service that helps you to share photos. Just think about Dropbox or any other cloud services, isn't it that you delete a file on your computer, then found the file no longer exist on your other devices?
If you want to keep the photos while making them occupy less space, I suggest you try SafeEraser's Photo Compressor feature. It compress the photos and make it easy for you to keep them on your iPhone without losing much quality. -
I'd like to express how unsatisfied we have been with Verizon on an issue that has been ongoing now since March 14, 2014. It involves an upgrade on one of our lines. After all these months, phone call with customer service, Tech support, and visits to a Verizon stores, I would hope that there are ample notation on our acct but since I've had to explain the situation on a bi-weekly time frame, I would assume that no one has documented any contacts.
We've been with Verizon for few yrs now and I have always been very satisfied with Verizon who, up until now , always provided excellent customer service in their knowledge, concern, and customer satisfaction. But I have to say, every positive outlook I've had with your company has been wiped clean with the worst service we have received in the last few months.
We upgraded my daughter's phone on 03-14-14 with a Samsung Galaxy Mini from an Iphone 4s. Within 24 hrs, the phone failed. After 2 visits to a Verizon store the next day which took 6 hrs, we still had to return the next day to speak to a manager. The 2 stores advised us to make a CLAIM on the defective phone thru our insurance plan with Verizon. A CLAIM on a 24 hr old phone!! A 3rd visit with a manager finally convinced him to replace the phone with another new phone at the store. Within 2 weeks - issues began to occur with the replacement phone. Several visits more, several calls more with Customer Service, several calls more with tech support which adds up to soooo many of our time taken up to simple have temporary "fixes" is outrageous. If I billed Verizon for my time, perhaps the situation would have been resolved more quickly. Each visit lasts approx 2 hrs, each phone call approx 1-1 1/2 hrs. We are talking at least 2x a month for the course of 5 1/2 months. Plus the time it takes to get the phone back to where she needs it - contacts, apps, internet.
Not once were we offered a new phone or replace the phone. Not until today. Replace the phone with the same phone that my daughter has grown to hate. So basically a 3rd phone - same phone. She is not interested in this phone any longer. She dealt with this phone model for far too long.
Today we were offered to replace the phone with same phone, or pay for a refurbished Iphone 4. So basically she would be going back to her original Iphone 4s before the upgraded WITH a cost. So her upgrade was wasted, we'd paid over $200 for a defective phone, and would need to pay for an even older model Iphone 4 and have to pay for it. Why wasn't she offered a different phone within those 30 days after the upgrade and 6 visits?
Every rep at the stores, every rep in tech support would provide a different reason for the issue. Finally, tech support advised not to download apps. WHAT GOOD IS A SMARTPHONE IF YOU CAN'T HAVE APPS??? We are talking about a 20 yrs college student who attends school in another state. Do you know the trouble she has to go thru to visit a store? To find 2 hrs between being a full time student with 2 jobs to sit on the phone with a tech support or go to a Verizon store? Once-ok Twice-maybe BUT for 5 months?
She's not eligible for an upgrade. She will be stuck with a phone that she had grown to hate. And I with customer service which I've grown to hate.
Finally, The Edge. Trying to find a way to make my daughter happy, I spoke with 4 representative today about the Edge. Each rep gave me 4 different information. 1st rep advised Edge phone could not be used on another line so I could not use a line eligible for the Edge and give that phone to my daughter since she isn't eligible for the Edge. 2nd rep advised that although new phone thru edge must be used by same number that it was eligible for, we could use the current phone o that line for my daughter. My son currently has an Iphone 5 and is eligible for the Edge early upgrade. He would not have to return his Iphone 5 so my daughter could use it. However, all the lines would have to go to the More Everything Plan and share the Data between all our phone lines. 3rd rep advised the cost would almost double from our current $358 to go to the More Everything Plan so suggested to have 2 accounts vs just 1. 4th rep advised not every line needs to go the More Everything Plan, we could not keep the current phone, and my daughter could get a replacement phone but same phone or made exception to offer the Edge early upgrade to my daughter but only after we go thru the replacement program because the phone we send to Verizon has to be in good working order/no defects.
After 5 1/2 months, it is now Verizon that is indicating that we have a defective phone and can't accept it thru the Edge program or we would get billed approx $299 for a defective phone. After 5 1/2 months of me calling in about a defective phone that not one rep replaced because they "fixed" the problem ( by the way, a temporary fix is not fixing, if it was fixed I would have made those calls today or writing this email), I am now being told her phone is defective. She advised to get a replacement phone first, return the old phone, activate the new phone, then call in to get the Edge early upgrade. So my daughter would have to do all this, plus add contacts back, apps and whatever else she needs to use her phone just to turn around a couple weeks later and do it all over again with the new phone thru the Edge program. Once again, we are the ones having to be inconvenienced and go thru all these steps. Did I mention she is going to be studying abroad in Italy beginning Nov? So the idea of having to wait 2-3 weeks for a new phone and having only a week or 2 to test the phone to make sure it's working properly before she's out of the country doesn't sound appealing to me. Verizon has made us have a defective phone for 5 months advising it's in good working order after each and every "fix" but Verizon will not accept that phone if returned in the same condition as a phone in good working condition. Do you see the irony in that?
I have reached my limit and after 5 yrs of my brother in law trying to convince us to switch to AT&T where he works in their Corporate Office, I can honestly say I will not be sad to leave Verizon. Especially when one of your reps simply provided me with the contract end dates to provide to AT&T because they offered to buy out our contract. No effort in customer retention what so ever. That was a phone call on Thursday.
And yes, one of your tech reps tried to convince me of all the hassle it would be to switch and time AT&T would take to buy out our contracts but honestly it was the pot calling the kettle. I am not in the position to discuss hassle and time after 5 months of getting that with Verizon. Did I mention it's my brother in law so we would be getting special treatment and no out of pocket expenses to switch. It was my loyalty and satisfaction with Verizon that has kept me from switching all these years. Something Verizon clearly does not appreciate.
So can you guess where I am with confidence that your customer service department is knowledgable about the plans/offers? Where I am that I can trust what I'm being told?
I know this email is confusing and really hard to understand...perhaps now you will know how i've been feeling--lost and confused with all the mis-information, with a hit and miss phone, and out of time with all the 1 1/2 hr to 2 hrs EACH wasted on this issue.
On top of all this, I can't even find out how to file a complaint with anyone higher up than Customer Service.Jneklason wrote:
~snip~
I know this email is confusing and really hard to understand...perhaps now you will know how i've been feeling--lost and confused with all the mis-information, with a hit and miss phone, and out of time with all the 1 1/2 hr to 2 hrs EACH wasted on this issue.
On top of all this, I can't even find out how to file a complaint with anyone higher up than Customer Service.
I hate to tell you this, but you didn't write an email. You wrote a discussion post on the Verizon Wireless Community forum which is a public peer to peer forum. Unfortunately since you didn't mark your post as a question, the VZW reps that roam this community won't ever see your post. Before you re-post it, don't. Duplicate posts get removed from the community.
I see there were several missteps both by the reps and yourself in your post. First you should have insisted on returning the phone within the 14 day return policy period. Second which Samsung Galaxy mini model did you purchase? The S3 mini or the S4 mini? Did you do any research prior to deciding on this device. The reps at that time deflected the easiest course of action, by trying to get you to replace the phone under insurance instead of returning the phone. The Early Edge payment option requires the current phone on the line using the early Edge must be returned to Verizon Wireless. Did you once considered going to a third party site like Swappa to purchase a gently used device for your daughter? -
what is the exact role of customer service in automobile industry?
can somebody send any document if they have regarding sd with customer services.
will be more helpful
my id <REMOVED BY MODERATOR>
thanks in advance
rajanHi,
See:
http://help.sap.com/printdocu/core/Print46c/en/data/pdf/CS/PMSMASC.pdf
Arthur! -
After applying custom keystore in weblogic admin_server, server is not get started
Hi All, (Thanks in advance)
I have a big problem now. I applied the SSL configuration to weblogic and OBIEE. It was working fine with Demo Keystore. After creating selfsigned keystore and applying to weblogic admin_server, the server get shutdown and now it is not starting. here is the log, I have checked the username/password many times. also I removed boot.properties file and it get generated again during startup.
I used the following commands to generate custome keystores.
$JAVA_HOME/jre/bin/keytool -genkey -keyalg RSA -alias selfsigned -keystore identity.jks \
-dname "CN=`hostname`, OU=My Department, O=My Company, L=Birmingham, ST=West Midlands, C=GB" \
-storepass password1 -validity 3600 -keysize 2048 -keypass password1
$JAVA_HOME/jre/bin/keytool -selfcert -v -alias selfsigned -keypass password1 -keystore identity.jks \
-storepass password1 -storetype jks -validity 3600
$JAVA_HOME/jre/bin/keytool -export -v -alias selfsigned -file "`hostname`-rootCA.der" -keystore identity.jks \
-storepass password1
# Trust? yes
$JAVA_HOME/jre/bin/keytool -import -v -trustcacerts -alias selfsigned -file "`hostname`-rootCA.der" \
-keystore trust.jks -storepass password1
####<Apr 28, 2014 6:46:00 PM GST> <Info> <WebLogicServer> <MYHOSTSERVER> <> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <1398696360069> <BEA-000000> <WebLogic Server "AdminServer" version:
WebLogic Server 10.3.5.0 Fri Apr 1 20:20:06 PDT 2011 1398638 Copyright (c) 1995, 2009, Oracle and/or its affiliates. All rights reserved.>
####<Apr 28, 2014 6:46:00 PM GST> <Notice> <Log Management> <MYHOSTSERVER> <> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <1398696360215> <BEA-170019> <The server log file /u01/app/obiee/user_projects/domains/bifoundation_domain/servers/AdminServer/logs/AdminServer.log is opened. All server side log events will be written to this file.>
####<Apr 28, 2014 6:46:00 PM GST> <Info> <Log Management> <MYHOSTSERVER> <> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <1398696360232> <BEA-170023> <The Server Logging is initialized with Java Logging API implementation.>
####<Apr 28, 2014 6:46:00 PM GST> <Info> <Diagnostics> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696360426> <BEA-320001> <The ServerDebug service initialized successfully.>
####<Apr 28, 2014 6:46:00 PM GST> <Info> <Server> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696360522> <BEA-002622> <The protocol "t3" is now configured.>
####<Apr 28, 2014 6:46:00 PM GST> <Info> <Server> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696360522> <BEA-002622> <The protocol "t3s" is now configured.>
####<Apr 28, 2014 6:46:00 PM GST> <Info> <Server> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696360522> <BEA-002622> <The protocol "http" is now configured.>
####<Apr 28, 2014 6:46:00 PM GST> <Info> <Server> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696360523> <BEA-002622> <The protocol "https" is now configured.>
####<Apr 28, 2014 6:46:00 PM GST> <Info> <Server> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696360524> <BEA-002622> <The protocol "iiop" is now configured.>
####<Apr 28, 2014 6:46:00 PM GST> <Info> <Server> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696360524> <BEA-002622> <The protocol "iiops" is now configured.>
####<Apr 28, 2014 6:46:00 PM GST> <Info> <Server> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696360525> <BEA-002622> <The protocol "ldap" is now configured.>
####<Apr 28, 2014 6:46:00 PM GST> <Info> <Server> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696360526> <BEA-002622> <The protocol "ldaps" is now configured.>
####<Apr 28, 2014 6:46:00 PM GST> <Info> <Server> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696360530> <BEA-002622> <The protocol "cluster" is now configured.>
####<Apr 28, 2014 6:46:00 PM GST> <Info> <Server> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696360531> <BEA-002622> <The protocol "clusters" is now configured.>
####<Apr 28, 2014 6:46:00 PM GST> <Info> <Server> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696360536> <BEA-002622> <The protocol "snmp" is now configured.>
####<Apr 28, 2014 6:46:00 PM GST> <Info> <Server> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696360536> <BEA-002622> <The protocol "admin" is now configured.>
####<Apr 28, 2014 6:46:00 PM GST> <Info> <Server> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696360536> <BEA-002624> <The administration protocol is "t3s" and is now configured.>
####<Apr 28, 2014 6:46:00 PM GST> <Info> <RJVM> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696360571> <BEA-000570> <Network Configuration for Channel "AdminServer"
Listen Address :7002 (SSL)
Public Address N/A
Http Enabled true
Tunneling Enabled false
Outbound Enabled false
Admin Traffic Enabled true>
####<Apr 28, 2014 6:46:00 PM GST> <Info> <Server> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696360611> <BEA-002609> <Channel Service initialized.>
####<Apr 28, 2014 6:46:00 PM GST> <Info> <Socket> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696360633> <BEA-000415> <System has file descriptor limits of - soft: 4,096, hard: 4,096>
####<Apr 28, 2014 6:46:00 PM GST> <Info> <Socket> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696360633> <BEA-000416> <Using effective file descriptor limit of: 4,096 open sockets/files.>
####<Apr 28, 2014 6:46:00 PM GST> <Info> <Socket> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696360634> <BEA-000406> <PosixSocketMuxer was built on Apr 24 2007 16:05:00>
####<Apr 28, 2014 6:46:00 PM GST> <Info> <Socket> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696360658> <BEA-000436> <Allocating 4 reader threads.>
####<Apr 28, 2014 6:46:00 PM GST> <Info> <Socket> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696360659> <BEA-000446> <Native IO Enabled.>
####<Apr 28, 2014 6:46:00 PM GST> <Info> <IIOP> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696360842> <BEA-002014> <IIOP subsystem enabled.>
####<Apr 28, 2014 6:46:09 PM GST> <Info> <Security> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696369085> <BEA-090894> <Successfully loaded the OPSS Policy Provider using oracle.security.jps.internal.policystore.JavaPolicyProvider.>
####<Apr 28, 2014 6:46:09 PM GST> <Info> <Security> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696369777> <BEA-000000> <Starting OpenJPA 1.1.1-SNAPSHOT>
####<Apr 28, 2014 6:46:10 PM GST> <Info> <Security> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696370127> <BEA-000000> <StoreServiceImpl.initJDO - StoreService is initialized with Id = ldap_POF2C8zjWtAwo24sMoFyQ+Komsg=>
####<Apr 28, 2014 6:46:10 PM GST> <Info> <Security> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696370185> <BEA-090074> <Initializing Authenticator provider using LDIF template file /u01/app/obiee/user_projects/domains/bifoundation_domain/security/DefaultAuthenticatorInit.ldift.>
####<Apr 28, 2014 6:46:10 PM GST> <Info> <Security> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696370328> <BEA-090075> <The Authenticator provider has had its LDIF information loaded from: /u01/app/obiee/user_projects/domains/bifoundation_domain/security/DefaultAuthenticatorInit.ldift>
####<Apr 28, 2014 6:46:10 PM GST> <Info> <Security> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696370690> <BEA-000000> <BootStrapServiceImpl.loadLDIFTemplate - Did not find /u01/app/obiee/user_projects/domains/bifoundation_domain/servers/AdminServer/data/ldap/XACMLAuthorizermyrealmInit.initialized, will load full LDIFT.>
####<Apr 28, 2014 6:46:10 PM GST> <Info> <Security> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696370716> <BEA-090074> <Initializing Authorizer provider using LDIF template file /u01/app/obiee/wlserver_10.3/server/lib/XACMLAuthorizerInit.ldift.>
####<Apr 28, 2014 6:46:11 PM GST> <Info> <Security> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696371107> <BEA-090075> <The Authorizer provider has had its LDIF information loaded from: /u01/app/obiee/wlserver_10.3/server/lib/XACMLAuthorizerInit.ldift>
####<Apr 28, 2014 6:46:11 PM GST> <Info> <Security> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696371736> <BEA-000000> <BootStrapServiceImpl.loadLDIFTemplate - Did not find /u01/app/obiee/user_projects/domains/bifoundation_domain/servers/AdminServer/data/ldap/DefaultCredentialMappermyrealmInit.initialized, will load full LDIFT.>
####<Apr 28, 2014 6:46:11 PM GST> <Info> <Security> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696371737> <BEA-090827> <LDIF template file /u01/app/obiee/wlserver_10.3/server/lib/DefaultCredentialMapperInit.ldift was empty. The WebLogic provider CredentialMapper has been bootstrapped but has not been initialized with any LDIF data.>
####<Apr 28, 2014 6:46:11 PM GST> <Info> <Security> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696371753> <BEA-000000> <BootStrapServiceImpl.loadLDIFTemplate - Did not find /u01/app/obiee/user_projects/domains/bifoundation_domain/servers/AdminServer/data/ldap/XACMLRoleMappermyrealmInit.initialized, will load full LDIFT.>
####<Apr 28, 2014 6:46:11 PM GST> <Info> <Security> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696371753> <BEA-090074> <Initializing RoleMapper provider using LDIF template file /u01/app/obiee/user_projects/domains/bifoundation_domain/security/XACMLRoleMapperInit.ldift.>
####<Apr 28, 2014 6:46:11 PM GST> <Info> <Security> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696371787> <BEA-090075> <The RoleMapper provider has had its LDIF information loaded from: /u01/app/obiee/user_projects/domains/bifoundation_domain/security/XACMLRoleMapperInit.ldift>
####<Apr 28, 2014 6:46:12 PM GST> <Info> <Security> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696372038> <BEA-090093> <No pre-WLS 8.1 Keystore providers are configured for server AdminServer for security realm myrealm.>
####<Apr 28, 2014 6:46:12 PM GST> <Notice> <Security> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696372038> <BEA-090082> <Security initializing using security realm myrealm.>
####<Apr 28, 2014 6:46:12 PM GST> <Critical> <Security> <MYHOSTSERVER> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398696372064> <BEA-090402> <Authentication denied: Boot identity not valid; The user name and/or password from the boot identity file (boot.properties) is not valid. The boot identity may have been changed since the boot identity file was created. Please edit and update the boot identity file with the proper values of username and password. The first time the updated boot identity file is used to start the server, these new values are encrypted.>
####<Apr 28, 2014 6:46:12 PM GST> <Critical> <WebLogicServer> <MYHOSTSERVER> <AdminServer> <main> <<WLS Kernel>> <> <> <1398696372067> <BEA-000386> <Server subsystem failed. Reason: weblogic.security.SecurityInitializationException: Authentication denied: Boot identity not valid; The user name and/or password from the boot identity file (boot.properties) is not valid. The boot identity may have been changed since the boot identity file was created. Please edit and update the boot identity file with the proper values of username and password. The first time the updated boot identity file is used to start the server, these new values are encrypted.
weblogic.security.SecurityInitializationException: Authentication denied: Boot identity not valid; The user name and/or password from the boot identity file (boot.properties) is not valid. The boot identity may have been changed since the boot identity file was created. Please edit and update the boot identity file with the proper values of username and password. The first time the updated boot identity file is used to start the server, these new values are encrypted.
at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.doBootAuthorization(CommonSecurityServiceManagerDelegateImpl.java:959)
at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.initialize(CommonSecurityServiceManagerDelegateImpl.java:1050)
at weblogic.security.service.SecurityServiceManager.initialize(SecurityServiceManager.java:873)
at weblogic.security.SecurityService.start(SecurityService.java:141)
at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:178)
Caused By: javax.security.auth.login.FailedLoginException: [Security:090304]Authentication Failed: User weblogic javax.security.auth.login.FailedLoginException: [Security:090302]Authentication Failed: User weblogic denied
at weblogic.security.providers.authentication.LDAPAtnLoginModuleImpl.login(LDAPAtnLoginModuleImpl.java:261)
at com.bea.common.security.internal.service.LoginModuleWrapper$1.run(LoginModuleWrapper.java:110)
at java.security.AccessController.doPrivileged(Native Method)
at com.bea.common.security.internal.service.LoginModuleWrapper.login(LoginModuleWrapper.java:106)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at javax.security.auth.login.LoginContext.invoke(LoginContext.java:769)
at javax.security.auth.login.LoginContext.access$000(LoginContext.java:186)
at javax.security.auth.login.LoginContext$4.run(LoginContext.java:683)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:680)
at javax.security.auth.login.LoginContext.login(LoginContext.java:579)
at com.bea.common.security.internal.service.JAASLoginServiceImpl.login(JAASLoginServiceImpl.java:113)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at com.bea.common.security.internal.utils.Delegator$ProxyInvocationHandler.invoke(Delegator.java:57)
at $Proxy36.login(Unknown Source)
at weblogic.security.service.internal.WLSJAASLoginServiceImpl$ServiceImpl.login(WLSJAASLoginServiceImpl.java:89)
at com.bea.common.security.internal.service.JAASAuthenticationServiceImpl.authenticate(JAASAuthenticationServiceImpl.java:82)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at com.bea.common.security.internal.utils.Delegator$ProxyInvocationHandler.invoke(Delegator.java:57)
at $Proxy54.authenticate(Unknown Source)
at weblogic.security.service.WLSJAASAuthenticationServiceWrapper.authenticate(WLSJAASAuthenticationServiceWrapper.java:40)
at weblogic.security.service.PrincipalAuthenticator.authenticate(PrincipalAuthenticator.java:348)
at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.doBootAuthorization(CommonSecurityServiceManagerDelegateImpl.java:929)
at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.initialize(CommonSecurityServiceManagerDelegateImpl.java:1050)
at weblogic.security.service.SecurityServiceManager.initialize(SecurityServiceManager.java:873)
at weblogic.security.SecurityService.start(SecurityService.java:141)
at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:178)
>
####<Apr 28, 2014 6:46:12 PM GST> <Notice> <WebLogicServer> <MYHOSTSERVER> <AdminServer> <main> <<WLS Kernel>> <> <> <1398696372142> <BEA-000365> <Server state changed to FAILED>
####<Apr 28, 2014 6:46:12 PM GST> <Error> <WebLogicServer> <MYHOSTSERVER> <AdminServer> <main> <<WLS Kernel>> <> <> <1398696372143> <BEA-000383> <A critical service failed. The server will shut itself down>
####<Apr 28, 2014 6:46:12 PM GST> <Notice> <WebLogicServer> <MYHOSTSERVER> <AdminServer> <main> <<WLS Kernel>> <> <> <1398696372147> <BEA-000365> <Server state changed to FORCE_SHUTTING_DOWN>
####<Apr 28, 2014 6:46:12 PM GST> <Info> <WebLogicServer> <MYHOSTSERVER> <AdminServer> <main> <<WLS Kernel>> <> <> <1398696372164> <BEA-000236> <Stopping execute threads.>hi Puneeth, Thanks for the solution to run the weblogic. Now i have change SSL certificate to Demo. But also i have checked the default password for certificates is blank. i ran the following commad with blank password , and it runs without any error. After checking all these, I am getting the following error log, for bi_server1.
####<Apr 29, 2014 6:20:42 PM GST> <Info> <WebLogicServer> <AUHSPDC03OBIAP2> <> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <1398781242221> <BEA-000000> <WebLogic Server "bi_server1" version:
WebLogic Server 10.3.5.0 Fri Apr 1 20:20:06 PDT 2011 1398638 Copyright (c) 1995, 2009, Oracle and/or its affiliates. All rights reserved.>
####<Apr 29, 2014 6:20:42 PM GST> <Notice> <Log Management> <AUHSPDC03OBIAP2> <> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <1398781242366> <BEA-170019> <The server log file /u01/app/obiee/user_projects/domains/bifoundation_domain/servers/bi_server1/logs/bi_server1.log is opened. All server side log events will be written to this file.>
####<Apr 29, 2014 6:20:42 PM GST> <Info> <Log Management> <AUHSPDC03OBIAP2> <> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <1398781242383> <BEA-170023> <The Server Logging is initialized with Java Logging API implementation.>
####<Apr 29, 2014 6:20:42 PM GST> <Info> <Diagnostics> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781242643> <BEA-320001> <The ServerDebug service initialized successfully.>
####<Apr 29, 2014 6:20:42 PM GST> <Info> <Server> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781242773> <BEA-002622> <The protocol "t3" is now configured.>
####<Apr 29, 2014 6:20:42 PM GST> <Info> <Server> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781242774> <BEA-002622> <The protocol "t3s" is now configured.>
####<Apr 29, 2014 6:20:42 PM GST> <Info> <Server> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781242774> <BEA-002622> <The protocol "http" is now configured.>
####<Apr 29, 2014 6:20:42 PM GST> <Info> <Server> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781242775> <BEA-002622> <The protocol "https" is now configured.>
####<Apr 29, 2014 6:20:42 PM GST> <Info> <Server> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781242776> <BEA-002622> <The protocol "iiop" is now configured.>
####<Apr 29, 2014 6:20:42 PM GST> <Info> <Server> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781242776> <BEA-002622> <The protocol "iiops" is now configured.>
####<Apr 29, 2014 6:20:42 PM GST> <Info> <Server> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781242777> <BEA-002622> <The protocol "ldap" is now configured.>
####<Apr 29, 2014 6:20:42 PM GST> <Info> <Server> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781242778> <BEA-002622> <The protocol "ldaps" is now configured.>
####<Apr 29, 2014 6:20:42 PM GST> <Info> <Server> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781242782> <BEA-002622> <The protocol "cluster" is now configured.>
####<Apr 29, 2014 6:20:42 PM GST> <Info> <Server> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781242783> <BEA-002622> <The protocol "clusters" is now configured.>
####<Apr 29, 2014 6:20:42 PM GST> <Info> <Server> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781242787> <BEA-002622> <The protocol "snmp" is now configured.>
####<Apr 29, 2014 6:20:42 PM GST> <Info> <Server> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781242788> <BEA-002622> <The protocol "admin" is now configured.>
####<Apr 29, 2014 6:20:42 PM GST> <Info> <Server> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781242788> <BEA-002624> <The administration protocol is "t3s" and is now configured.>
####<Apr 29, 2014 6:20:42 PM GST> <Info> <RJVM> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781242802> <BEA-000570> <Network Configuration for Channel "bi_server1"
Listen Address AUHSPDC03OBIAP2:9804 (SSL)
Public Address N/A
Http Enabled true
Tunneling Enabled true
Outbound Enabled false
Admin Traffic Enabled true>
####<Apr 29, 2014 6:20:42 PM GST> <Info> <Server> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781242831> <BEA-002609> <Channel Service initialized.>
####<Apr 29, 2014 6:20:42 PM GST> <Info> <Socket> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781242853> <BEA-000415> <System has file descriptor limits of - soft: 4,096, hard: 4,096>
####<Apr 29, 2014 6:20:42 PM GST> <Info> <Socket> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781242853> <BEA-000416> <Using effective file descriptor limit of: 4,096 open sockets/files.>
####<Apr 29, 2014 6:20:42 PM GST> <Info> <Socket> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781242853> <BEA-000406> <PosixSocketMuxer was built on Apr 24 2007 16:05:00>
####<Apr 29, 2014 6:20:42 PM GST> <Info> <Socket> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781242878> <BEA-000436> <Allocating 4 reader threads.>
####<Apr 29, 2014 6:20:42 PM GST> <Info> <Socket> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781242879> <BEA-000446> <Native IO Enabled.>
####<Apr 29, 2014 6:20:43 PM GST> <Info> <IIOP> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781243056> <BEA-002014> <IIOP subsystem enabled.>
####<Apr 29, 2014 6:21:13 PM GST> <Info> <Security> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781273079> <BEA-090894> <Successfully loaded the OPSS Policy Provider using oracle.security.jps.internal.policystore.JavaPolicyProvider.>
####<Apr 29, 2014 6:21:13 PM GST> <Info> <Security> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781273641> <BEA-000000> <Starting OpenJPA 1.1.1-SNAPSHOT>
####<Apr 29, 2014 6:21:14 PM GST> <Info> <Security> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781274003> <BEA-000000> <StoreServiceImpl.initJDO - StoreService is initialized with Id = ldap_k2qDRpL7zl4bwzJMUfuX1cN+738=>
####<Apr 29, 2014 6:21:14 PM GST> <Info> <Security> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781274363> <BEA-090516> <The Authorizer provider has preexisting LDAP data.>
####<Apr 29, 2014 6:21:14 PM GST> <Info> <Security> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781274872> <BEA-090516> <The CredentialMapper provider has preexisting LDAP data.>
####<Apr 29, 2014 6:21:14 PM GST> <Info> <Security> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781274888> <BEA-090516> <The RoleMapper provider has preexisting LDAP data.>
####<Apr 29, 2014 6:21:15 PM GST> <Info> <Security> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781275099> <BEA-090093> <No pre-WLS 8.1 Keystore providers are configured for server bi_server1 for security realm myrealm.>
####<Apr 29, 2014 6:21:15 PM GST> <Notice> <Security> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781275100> <BEA-090082> <Security initializing using security realm myrealm.>
####<Apr 29, 2014 6:21:15 PM GST> <Critical> <Security> <AUHSPDC03OBIAP2> <bi_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1398781275125> <BEA-090402> <Authentication denied: Boot identity not valid; The user name and/or password from the boot identity file (boot.properties) is not valid. The boot identity may have been changed since the boot identity file was created. Please edit and update the boot identity file with the proper values of username and password. The first time the updated boot identity file is used to start the server, these new values are encrypted.>
####<Apr 29, 2014 6:21:15 PM GST> <Critical> <WebLogicServer> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275126> <BEA-000386> <Server subsystem failed. Reason: weblogic.security.SecurityInitializationException: Authentication denied: Boot identity not valid; The user name and/or password from the boot identity file (boot.properties) is not valid. The boot identity may have been changed since the boot identity file was created. Please edit and update the boot identity file with the proper values of username and password. The first time the updated boot identity file is used to start the server, these new values are encrypted.
weblogic.security.SecurityInitializationException: Authentication denied: Boot identity not valid; The user name and/or password from the boot identity file (boot.properties) is not valid. The boot identity may have been changed since the boot identity file was created. Please edit and update the boot identity file with the proper values of username and password. The first time the updated boot identity file is used to start the server, these new values are encrypted.
at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.doBootAuthorization(CommonSecurityServiceManagerDelegateImpl.java:959)
at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.initialize(CommonSecurityServiceManagerDelegateImpl.java:1050)
at weblogic.security.service.SecurityServiceManager.initialize(SecurityServiceManager.java:873)
at weblogic.security.SecurityService.start(SecurityService.java:141)
at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:178)
Caused By: javax.security.auth.login.FailedLoginException: [Security:090303]Authentication Failed: User weblogic weblogic.security.providers.authentication.LDAPAtnDelegateException: [Security:090295]caught unexpected exception
at weblogic.security.providers.authentication.LDAPAtnLoginModuleImpl.login(LDAPAtnLoginModuleImpl.java:251)
at com.bea.common.security.internal.service.LoginModuleWrapper$1.run(LoginModuleWrapper.java:110)
at java.security.AccessController.doPrivileged(Native Method)
at com.bea.common.security.internal.service.LoginModuleWrapper.login(LoginModuleWrapper.java:106)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at javax.security.auth.login.LoginContext.invoke(LoginContext.java:769)
at javax.security.auth.login.LoginContext.access$000(LoginContext.java:186)
at javax.security.auth.login.LoginContext$4.run(LoginContext.java:683)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:680)
at javax.security.auth.login.LoginContext.login(LoginContext.java:579)
at com.bea.common.security.internal.service.JAASLoginServiceImpl.login(JAASLoginServiceImpl.java:113)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at com.bea.common.security.internal.utils.Delegator$ProxyInvocationHandler.invoke(Delegator.java:57)
at $Proxy36.login(Unknown Source)
at weblogic.security.service.internal.WLSJAASLoginServiceImpl$ServiceImpl.login(WLSJAASLoginServiceImpl.java:89)
at com.bea.common.security.internal.service.JAASAuthenticationServiceImpl.authenticate(JAASAuthenticationServiceImpl.java:82)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at com.bea.common.security.internal.utils.Delegator$ProxyInvocationHandler.invoke(Delegator.java:57)
at $Proxy54.authenticate(Unknown Source)
at weblogic.security.service.WLSJAASAuthenticationServiceWrapper.authenticate(WLSJAASAuthenticationServiceWrapper.java:40)
at weblogic.security.service.PrincipalAuthenticator.authenticate(PrincipalAuthenticator.java:348)
at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.doBootAuthorization(CommonSecurityServiceManagerDelegateImpl.java:929)
at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.initialize(CommonSecurityServiceManagerDelegateImpl.java:1050)
at weblogic.security.service.SecurityServiceManager.initialize(SecurityServiceManager.java:873)
at weblogic.security.SecurityService.start(SecurityService.java:141)
at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:178)
>
####<Apr 29, 2014 6:21:15 PM GST> <Notice> <Security> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275253> <BEA-090171> <Loading the identity certificate and private key stored under the alias DemoIdentity from the jks keystore file /u01/app/obiee/wlserver_10.3/server/lib/DemoIdentity.jks.>
####<Apr 29, 2014 6:21:15 PM GST> <Notice> <Security> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275282> <BEA-090169> <Loading trusted certificates from the jks keystore file /u01/app/obiee/wlserver_10.3/server/lib/DemoTrust.jks.>
####<Apr 29, 2014 6:21:15 PM GST> <Notice> <Security> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275289> <BEA-090169> <Loading trusted certificates from the jks keystore file /u01/app/obiee/Oracle_BI1/jdk/jre/lib/security/cacerts.>
####<Apr 29, 2014 6:21:15 PM GST> <Alert> <Security> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275470> <BEA-090152> <Demo trusted CA certificate is being used in production mode: [
Version: V3
Subject: CN=CACERT, OU=FOR TESTING ONLY, O=MyOrganization, L=MyTown, ST=MyState, C=US
Signature Algorithm: MD5withRSA, OID = 1.2.840.113549.1.1.4
Key: Sun RSA public key, 512 bits
modulus: 9550192877869244258838480703390456015046425375252278279190673063544122510925482179963329236052146047356415957587628011282484772458983977898996276815440753
public exponent: 65537
Validity: [From: Fri Mar 22 00:12:27 GST 2002,
To: Wed Mar 23 00:12:27 GST 2022]
Issuer: CN=CACERT, OU=FOR TESTING ONLY, O=MyOrganization, L=MyTown, ST=MyState, C=US
SerialNumber: [ 33f10648 fcde0deb 4199921f d64537f4]
Certificate Extensions: 1
[1]: ObjectId: 2.5.29.15 Criticality=true
KeyUsage [
Key_CertSign
Algorithm: [MD5withRSA]
Signature:
0000: 9D 26 4C 29 C8 91 C3 A7 06 C3 24 6F AE B4 F8 82 .&L)......$o....
0010: 80 4D AA CB 7C 79 46 84 81 C4 66 95 F4 1E D8 C4 .M...yF...f.....
0020: E9 B7 D9 7C E2 23 33 A4 B7 21 E0 AA 54 2B 4A FF .....#3..!..T+J.
0030: CB 21 20 88 81 21 DB AC 90 54 D8 7D 79 63 23 3C .! ..!...T..yc#<
] The system is vulnerable to security attacks, since it trusts certificates signed by the demo trusted CA.>
####<Apr 29, 2014 6:21:15 PM GST> <Notice> <Security> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275506> <BEA-090898> <Ignoring the trusted CA certificate "CN=Entrust Root Certification Authority - G2,OU=(c) 2009 Entrust\, Inc. - for authorized use only,OU=See www.entrust.net/legal-terms,O=Entrust\, Inc.,C=US". The loading of the trusted certificate list raised a certificate parsing exception PKIX: Unsupported OID in the AlgorithmIdentifier object: 1.2.840.113549.1.1.11.>
####<Apr 29, 2014 6:21:15 PM GST> <Notice> <Security> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275516> <BEA-090898> <Ignoring the trusted CA certificate "CN=thawte Primary Root CA - G3,OU=(c) 2008 thawte\, Inc. - For authorized use only,OU=Certification Services Division,O=thawte\, Inc.,C=US". The loading of the trusted certificate list raised a certificate parsing exception PKIX: Unsupported OID in the AlgorithmIdentifier object: 1.2.840.113549.1.1.11.>
####<Apr 29, 2014 6:21:15 PM GST> <Notice> <Security> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275527> <BEA-090898> <Ignoring the trusted CA certificate "CN=T-TeleSec GlobalRoot Class 3,OU=T-Systems Trust Center,O=T-Systems Enterprise Services GmbH,C=DE". The loading of the trusted certificate list raised a certificate parsing exception PKIX: Unsupported OID in the AlgorithmIdentifier object: 1.2.840.113549.1.1.11.>
####<Apr 29, 2014 6:21:15 PM GST> <Notice> <Security> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275529> <BEA-090898> <Ignoring the trusted CA certificate "CN=T-TeleSec GlobalRoot Class 2,OU=T-Systems Trust Center,O=T-Systems Enterprise Services GmbH,C=DE". The loading of the trusted certificate list raised a certificate parsing exception PKIX: Unsupported OID in the AlgorithmIdentifier object: 1.2.840.113549.1.1.11.>
####<Apr 29, 2014 6:21:15 PM GST> <Notice> <Security> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275536> <BEA-090898> <Ignoring the trusted CA certificate "CN=GlobalSign,O=GlobalSign,OU=GlobalSign Root CA - R3". The loading of the trusted certificate list raised a certificate parsing exception PKIX: Unsupported OID in the AlgorithmIdentifier object: 1.2.840.113549.1.1.11.>
####<Apr 29, 2014 6:21:15 PM GST> <Notice> <Security> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275539> <BEA-090898> <Ignoring the trusted CA certificate "OU=Security Communication RootCA2,O=SECOM Trust Systems CO.\,LTD.,C=JP". The loading of the trusted certificate list raised a certificate parsing exception PKIX: Unsupported OID in the AlgorithmIdentifier object: 1.2.840.113549.1.1.11.>
####<Apr 29, 2014 6:21:15 PM GST> <Notice> <Security> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275544> <BEA-090898> <Ignoring the trusted CA certificate "CN=VeriSign Universal Root Certification Authority,OU=(c) 2008 VeriSign\, Inc. - For authorized use only,OU=VeriSign Trust Network,O=VeriSign\, Inc.,C=US". The loading of the trusted certificate list raised a certificate parsing exception PKIX: Unsupported OID in the AlgorithmIdentifier object: 1.2.840.113549.1.1.11.>
####<Apr 29, 2014 6:21:15 PM GST> <Notice> <Security> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275561> <BEA-090898> <Ignoring the trusted CA certificate "CN=KEYNECTIS ROOT CA,OU=ROOT,O=KEYNECTIS,C=FR". The loading of the trusted certificate list raised a certificate parsing exception PKIX: Unsupported OID in the AlgorithmIdentifier object: 1.2.840.113549.1.1.11.>
####<Apr 29, 2014 6:21:15 PM GST> <Notice> <Security> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275568> <BEA-090898> <Ignoring the trusted CA certificate "CN=GeoTrust Primary Certification Authority - G3,OU=(c) 2008 GeoTrust Inc. - For authorized use only,O=GeoTrust Inc.,C=US". The loading of the trusted certificate list raised a certificate parsing exception PKIX: Unsupported OID in the AlgorithmIdentifier object: 1.2.840.113549.1.1.11.>
####<Apr 29, 2014 6:21:15 PM GST> <Info> <WebLogicServer> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275581> <BEA-000307> <Exportable key maximum lifespan set to 500 uses.>
####<Apr 29, 2014 6:21:15 PM GST> <Notice> <Security> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275602> <BEA-090898> <Ignoring the trusted CA certificate "CN=Entrust Root Certification Authority - G2,OU=(c) 2009 Entrust\, Inc. - for authorized use only,OU=See www.entrust.net/legal-terms,O=Entrust\, Inc.,C=US". The loading of the trusted certificate list raised a certificate parsing exception PKIX: Unsupported OID in the AlgorithmIdentifier object: 1.2.840.113549.1.1.11.>
####<Apr 29, 2014 6:21:15 PM GST> <Notice> <Security> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275611> <BEA-090898> <Ignoring the trusted CA certificate "CN=thawte Primary Root CA - G3,OU=(c) 2008 thawte\, Inc. - For authorized use only,OU=Certification Services Division,O=thawte\, Inc.,C=US". The loading of the trusted certificate list raised a certificate parsing exception PKIX: Unsupported OID in the AlgorithmIdentifier object: 1.2.840.113549.1.1.11.>
####<Apr 29, 2014 6:21:15 PM GST> <Notice> <Security> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275619> <BEA-090898> <Ignoring the trusted CA certificate "CN=T-TeleSec GlobalRoot Class 3,OU=T-Systems Trust Center,O=T-Systems Enterprise Services GmbH,C=DE". The loading of the trusted certificate list raised a certificate parsing exception PKIX: Unsupported OID in the AlgorithmIdentifier object: 1.2.840.113549.1.1.11.>
####<Apr 29, 2014 6:21:15 PM GST> <Notice> <Security> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275621> <BEA-090898> <Ignoring the trusted CA certificate "CN=T-TeleSec GlobalRoot Class 2,OU=T-Systems Trust Center,O=T-Systems Enterprise Services GmbH,C=DE". The loading of the trusted certificate list raised a certificate parsing exception PKIX: Unsupported OID in the AlgorithmIdentifier object: 1.2.840.113549.1.1.11.>
####<Apr 29, 2014 6:21:15 PM GST> <Notice> <Security> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275627> <BEA-090898> <Ignoring the trusted CA certificate "CN=GlobalSign,O=GlobalSign,OU=GlobalSign Root CA - R3". The loading of the trusted certificate list raised a certificate parsing exception PKIX: Unsupported OID in the AlgorithmIdentifier object: 1.2.840.113549.1.1.11.>
####<Apr 29, 2014 6:21:15 PM GST> <Notice> <Security> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275628> <BEA-090898> <Ignoring the trusted CA certificate "OU=Security Communication RootCA2,O=SECOM Trust Systems CO.\,LTD.,C=JP". The loading of the trusted certificate list raised a certificate parsing exception PKIX: Unsupported OID in the AlgorithmIdentifier object: 1.2.840.113549.1.1.11.>
####<Apr 29, 2014 6:21:15 PM GST> <Notice> <Security> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275632> <BEA-090898> <Ignoring the trusted CA certificate "CN=VeriSign Universal Root Certification Authority,OU=(c) 2008 VeriSign\, Inc. - For authorized use only,OU=VeriSign Trust Network,O=VeriSign\, Inc.,C=US". The loading of the trusted certificate list raised a certificate parsing exception PKIX: Unsupported OID in the AlgorithmIdentifier object: 1.2.840.113549.1.1.11.>
####<Apr 29, 2014 6:21:15 PM GST> <Notice> <Security> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275646> <BEA-090898> <Ignoring the trusted CA certificate "CN=KEYNECTIS ROOT CA,OU=ROOT,O=KEYNECTIS,C=FR". The loading of the trusted certificate list raised a certificate parsing exception PKIX: Unsupported OID in the AlgorithmIdentifier object: 1.2.840.113549.1.1.11.>
####<Apr 29, 2014 6:21:15 PM GST> <Notice> <Security> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275651> <BEA-090898> <Ignoring the trusted CA certificate "CN=GeoTrust Primary Certification Authority - G3,OU=(c) 2008 GeoTrust Inc. - For authorized use only,O=GeoTrust Inc.,C=US". The loading of the trusted certificate list raised a certificate parsing exception PKIX: Unsupported OID in the AlgorithmIdentifier object: 1.2.840.113549.1.1.11.>
####<Apr 29, 2014 6:21:15 PM GST> <Notice> <WebLogicServer> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275833> <BEA-000365> <Server state changed to FAILED>
####<Apr 29, 2014 6:21:15 PM GST> <Error> <WebLogicServer> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275834> <BEA-000383> <A critical service failed. The server will shut itself down>
####<Apr 29, 2014 6:21:15 PM GST> <Notice> <WebLogicServer> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275839> <BEA-000365> <Server state changed to FORCE_SHUTTING_DOWN>
####<Apr 29, 2014 6:21:15 PM GST> <Info> <WebLogicServer> <AUHSPDC03OBIAP2> <bi_server1> <main> <<WLS Kernel>> <> <> <1398781275857> <BEA-000236> <Stopping execute threads.> -
BEA-090156 Invalid identity certificate signature with custom stores
How does one go about resolving BEA-090156 <Invalid identity certificate signature> when using custom keystores. As I have DoD certificates with a root that isn't in the standard JDK keystore, how does one go about resolving this issue. I created the keystores with the DoD certs, but get this message when trying to use them. Pls advise.
Thanks.The solution is that the certificates in tempcertfile.crt must be in the correct order. The order must be:
Identity certificate
Intermediate certificate
Root certificate
The identity certificate can be located easily in tempcertfile.crt since there must be header that shows the identity--information such as the name of a person or an organization, their address, and so forth. The intermediate certificate will be the last certificate in the tempcertfile.crt.
After I changed the order of the certificates it worked fine.
Regards Steffen -
Runtime error - FBL1N - vendor balance with customer line item
Hi gurus,
One scenario where i have assign vendor as customer & customer as vendor in vendor & customer data. also make tick mark for both clearing with vendor & customer.
when i see the customer report with vendor item it shows me the customer & vendor dues but when i tried to see the vendor balance with customer line item it gives dump error.
Runtime Errors PERFORM_NOT_FOUND
Exception CX_SY_DYN_CALL_ILLEGAL_FORM
Error analysis
An exception occurred that is explained in detail below.
The exception, which is assigned to class 'CX_SY_DYN_CALL_ILLEGAL_FORM', was
not caught in
procedure "%_LDB_CALLBACK" "(FORM)", nor was it propagated by a RAISING clause.
Since the caller of the procedure could not have anticipated that the
exception would occur, the current program is terminated.
The reason for the exception is:
The program "RSDBRUNT" is meant to execute an external PERFORM,
namely the routine "CB_DDF_GET_KNA1 " of the program "RFITEMAP ", but
this routine does not exist.
This may be due to any of the following reasons:
1. One of the programs "RSDBRUNT" or "RFITEMAP " is currently being developed.
The name "CB_DDF_GET_KNA1 " of the called routine may be incorrect, or
the routine "CB_DDF_GET_KNA1 " is not yet implemented in the program "RFITEMAP
2. If the program SAPMSSY1 is involved in the runtime error, one of
the function modules called via RFC is not flagged as remote-capable.
(see Transaction SE37 Goto -> Administration -> RFC flag)
3. There is an inconsistency in the system. The versions of the
programs "RSDBRUNT" and "RFITEMAP " do not match.
Warm regards,
Dhananjay R.Hi martin
still problem was not solved. actually i am working on ECC 6.0 & not required to implement the sap note on development. i had done the configuration in vendor master & customer master for clearing.
please suggest me.....what to do ?
Than'x
Dhananjay R -
Need expertise opinion on ADF custom BackEnd implementation
Hi all,
Jdeveloepr version: Studio Edition Version 11.1.1.5.0.
I am working on an ADF application and trying to go with the following implementations which are currently working fine while unit testing (me alone- single user) . I would like to have a expert opinion as whether this would be a scalable solution for an application which will support multiple users simultaneously . I am very new to ADF framework , so please advice
-The page are mostly inside bounded taskflows, which are nested and having backing beans are different scope. The backing bean is talking to a service layer (java classes ) to call the Webservice layer few database tables and then integrate and process the data to be shown on the front end.
(we have decided to opt out of drag and drop technique in ADF, due to some UI design reasons and large Webservice calls, though it is possible as mentioned by some experts)
The questions are based on the Database interaction, we have created an appmodule which has several VOs abased on entity objects and accessing them programmatically from the service layer like
1. Get the appmoduleDatacontrol via the id name in Databindings.cpx and get corresponding VO implementation classes to invoke custom methods written inside. How good would be the connection pooling and state management of the application modue in production environments.
2. for insertion - we call createROW on VO implementation and call an commit on the row implementation classes after adding detials to the new row.
3. for select op- we create filter criteria on the view and apply them programmatically to get the rows.
4. for update- get the row using the filters VO and manipulate the row using RowImpl classes and do a commit on then. (a commit on VO or commit on RowImpl, which would be better?)
Any pointers to tutorials/Blogs related optimizing and testing this implemtnation to this would be really helpful.
Thanks,
JSWLHi all,
Jdeveloepr version: Studio Edition Version 11.1.1.5.0.
I am working on an ADF application and trying to go with the following implementations which are currently working fine while unit testing (me alone- single user) . I would like to have a expert opinion as whether this would be a scalable solution for an application which will support multiple users simultaneously . I am very new to ADF framework , so please advice
-The page are mostly inside bounded taskflows, which are nested and having backing beans are different scope. The backing bean is talking to a service layer (java classes ) to call the Webservice layer few database tables and then integrate and process the data to be shown on the front end.
(we have decided to opt out of drag and drop technique in ADF, due to some UI design reasons and large Webservice calls, though it is possible as mentioned by some experts)
The questions are based on the Database interaction, we have created an appmodule which has several VOs abased on entity objects and accessing them programmatically from the service layer like
1. Get the appmoduleDatacontrol via the id name in Databindings.cpx and get corresponding VO implementation classes to invoke custom methods written inside. How good would be the connection pooling and state management of the application modue in production environments.
2. for insertion - we call createROW on VO implementation and call an commit on the row implementation classes after adding detials to the new row.
3. for select op- we create filter criteria on the view and apply them programmatically to get the rows.
4. for update- get the row using the filters VO and manipulate the row using RowImpl classes and do a commit on then. (a commit on VO or commit on RowImpl, which would be better?)
Any pointers to tutorials/Blogs related optimizing and testing this implemtnation to this would be really helpful.
Thanks,
JSWL -
Invoke a business service base in a WSDL with customer WS-Security Policy
Customer write a Web service (Refer to the attachment file “HTTPS_PartyServicePortType.WSDL”)which declare a WS-Security Policy and apply this it to WS binding ,How can I generate a business service base in this WSDL and invoke it successfully?
When create a business service in OSB, we get a error with below messages
[[OSB Kernel:398133]The service is based on WSDL with Web Services Security Policies that are not natively supported by Oracle Service Bus. Please select OWSM Policies - From OWSM Policy Store option and attach equivalent OWSM security policy. For the Business Service, either you can add the necessary client policies manually by clicking Add button or you can let Oracle Service Bus automatically pick and add compatible client policies by clicking Add Compatible button.
After enhanced the OSB domain with OWSM extension, we found the OOTB OWSM defined cannot support the HttpsToken and OSB cannot support below WS-Policy defined in OWSM, refer to http://docs.oracle.com/cd/E21764_01/doc.1111/e15866/owsm.htm#OSBDV1681
51.2.8.1 Unsupported Assertion
• binding-permission-authorization
• http-security
• OptimizedMimeSerialization (MTOM)
• RMAssertion (Reliable Messaging)
• sca-component-authorization
• sca-component-permission-authorization
• UsingAddressing
• wss-saml-token-bearer-over-ssl (Authentication)
it means that we cannot generate a web service with customer WS-security Policy
The WS-Security Policy is shown as below:
<wsp:Policy wsu:Id="WSHttpBinding_IPartyServicePortType_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:TransportBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<wsp:Policy>
<sp:TransportToken>
<wsp:Policy>
<sp:HttpsToken RequireClientCertificate="false"/>
</wsp:Policy>
</sp:TransportToken>
<sp:AlgorithmSuite>
<wsp:Policy><sp:Basic256/></wsp:Policy>
</sp:AlgorithmSuite>
<sp:Layout><wsp:Policy><sp:Strict/></wsp:Policy></sp:Layout>
</wsp:Policy>
</sp:TransportBinding>
<wsaw:UsingAddressing/>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
BestRegards!
SimonHi
According to
http://e-docs.bea.com/wls/docs90/webserv/annotations.html#1050414
If you are going to publish the policy file in the Web Service archive, the policy XML file must be located in either the META-INF/policies or WEB-INF/policies directory of the EJB JAR file (for EJB implemented Web Services) or WAR file (for Java class implemented Web Services), respectively.
Can you make sure the policy file is in there?
Also there is a sample from the developer at http://dev2dev.bea.com/blog/jlee/archive/2005/09/how_to_use_anno.html
Vimala- -
FBL1N error - vendor balance with customer item
Hi gurus,
One scenario where i have assign vendor as customer & customer as vendor in vendor & customer data. also make tick mark for both clearing with vendor & customer.
when i see the customer report with vendor item it shows me the customer & vendor dues but when i tried to see the vendor balance with customer line item it gives dump error.
Runtime Errors PERFORM_NOT_FOUND
Exception CX_SY_DYN_CALL_ILLEGAL_FORM
Error analysis
An exception occurred that is explained in detail below.
The exception, which is assigned to class 'CX_SY_DYN_CALL_ILLEGAL_FORM', was
not caught in
procedure "%_LDB_CALLBACK" "(FORM)", nor was it propagated by a RAISING clause.
Since the caller of the procedure could not have anticipated that the
exception would occur, the current program is terminated.
The reason for the exception is:
The program "RSDBRUNT" is meant to execute an external PERFORM,
namely the routine "CB_DDF_GET_KNA1 " of the program "RFITEMAP ", but
this routine does not exist.
This may be due to any of the following reasons:
1. One of the programs "RSDBRUNT" or "RFITEMAP " is currently being developed.
The name "CB_DDF_GET_KNA1 " of the called routine may be incorrect, or
the routine "CB_DDF_GET_KNA1 " is not yet implemented in the program "RFITEMAP
2. If the program SAPMSSY1 is involved in the runtime error, one of
the function modules called via RFC is not flagged as remote-capable.
(see Transaction SE37 Goto -> Administration -> RFC flag)
3. There is an inconsistency in the system. The versions of the
programs "RSDBRUNT" and "RFITEMAP " do not match.
Warm regards,
Dhananjay R.Hi Dhananjay,
Pls show the error/ dump to the ABAPer
Regards,
Kiran -
We need to develop a new Single Sign On security provider to automatically authenticate Oracle BPM Workspace application.
Following some samples and tips from Oracle Forum, blogs[1], OTN Samples[2], and also the documentation[3] we build a new Assertion Provider.
We created a new MBean type, implemented the classes AuthenticationProvider, IdentityAsserter, and installed it at MBeanTypes folder at Weblogic Server.
The new Assertion Provider appears at realm providers and was configured without errors.
In this first test we develop a very simple authentication, just decoding the username from the new token and trusting it.
But when we try to call the BPM Workspace passing the new token in the http headers, seems nothing happend: the BPM Workspace login page it is opened and there isn't any message in the log indicating that the new provider has been used.
In fact we need to develop a SSO that receive the token at URL (not in the http headers) run a specific library to decrypt the token, check the token validity and proceed with the authentication. But at now we haven't even a simple sample working ...
Is it possible to have SSO at Oracle BPM Workspace only configuring a provider at Weblogic realm or we need to config/hack something at BPM Workspace application?
BPM Workspace web.xml it is already configured by default with these options:
<auth-method>CLIENT-CERT,FORM</auth-method>
<realm-name>myrealm</realm-name>
Infra:
RHEL 5.5 64Bits - Kernel 2.6.18-194.el5
Oracle SOA Suite 11gR1 PS2 - 11.1.1.3.0
Some references checked:
[1] http://fusionsecurity.blogspot.com/2009/07/building-custom-security-providers-with.html
[2] code-sample ID S224: Sample Security Providers for WLS 9.1
https://www.samplecode.oracle.com/tracker/tracking/linkid/prpl1004?sfLoginToken=088763F78B4F7961288649650A424AF3&sfProj=codesamples&isLoggedIn=true&id=S224&dapCheckedPassed=false
[3] Oracle® Fusion Middleware Developing Security Providers for Oracle WebLogic Server 11g Release 1 (10.3.3) E13718-02
http://download.oracle.com/docs/cd/E21043_01/web.1111/e13718/intro.htm...seems nothing happend: the BPM Workspace login page it is opened and there isn't any message in the log indicating that the new provider...
Is there an Audit provider configured, which collects and stores the security logs.
To my knowledge, WebLogic uses the same cookie name (<code>JSESSIONID</code>) for all web applications on the server.
That way, no matter what type of authentication method is used in a particular web application, an authenticated user will have
single sign-on to all other web applications in the server.
If you want to have a global single sign-on a good solution would be to use Oracel Single Sign-On (http://download.oracle.com/docs/cd/E17904_01/core.1111/e10043/osso_d_10g.htm)
With your own implementation how is the authentication token mapped to a username? -
HELP!! ClassCastException with custom module classloader hierarchy and redeployment
Hi,
I am defining custom module classloader hierarchy to avoid redeploying of the
entire application mainly because we have so many EJBs and it takes a long time
to deploy the entire app. I deploy my app using the exploded directory, add a
new method to an EJB in my dal.jar, redeploy, run my unittest and I get ClassCastException.
I am using weblogic.Deployer utility to reploy my module using "-targets dal.jar@accsserver"
argument. I even tried undeploying that module and redeploy again with no luck.
here is weblogic-application.xml definition of the custom class loader
<classloader-structure>
<module-ref>
<module-uri>floghmi.war</module-uri>
</module-ref>
<module-ref>
<module-uri>cts.jar</module-uri>
</module-ref>
<module-ref>
<module-uri>fdbs.jar</module-uri>
</module-ref>
<classloader-structure>
<module-ref>
<module-uri>dml.jar</module-uri>
</module-ref>
<classloader-structure>
<module-ref>
<module-uri>dal.jar</module-uri>
</module-ref>
</classloader-structure>
</classloader-structure>
</classloader-structure>
thanks,
NasrinRob,
regarding your question on redeploying the whole app without the classloader
structure, yes, that works fine. If I change a class and redeploy the whole app,
things are ok. However, when I speocify the classloader structure, and try to
redeploy the dal.jar, I get ClassClasException.
You are right about dml.jar being in a separate classloader. I have changed my
structure after I posted my question to load dml.jar from the application classloader.
So Rob, is there a bug in Weblogic 8.1 that causes this exception?
please let me know, I am anxiously waiting your response.
thanks,
Nasrin
Rob Woollen <[email protected]> wrote:
>
>
Nasrin Azordegan wrote:
Rob,
if I remove my classloader structure from weblogic-application.xml,I get an
error during redeployment, saying "You must include all of<list ofmy module names
here> in your files list to modify <dal.jar>. Yes, the server enforces constraints on partial redeployments. You must
deploy all the modules in a given classloader and any modules in child
classloaders.
Just to make sure, if you initially deploy your app, or redeploy the
whole thing, it works fine without the classloader-structure, right?
The problem I am trying to solve is to minimize our deployment time.Our application
has over 700 CMP 2.0 entity beans and 200 session beans. Our applicationdeployment
follows the J2EE layer architecture. The data mapping layer which consistof 700
entity beans are located in dml.jar. The data access layer which consistof 200
session beans are located in dal.jar. We create our ear with thesetwo jar files
plus some other framework jars and deploy on bea weblogic 8.1 SP2 andthat takes
about an hour. I need to be able to modify a session bean, i.e. changethe implementation
of a session bean or add a new method to a session bean interface andredeploy
only data access layer, the dal.jar, not the entity beans. This explainswhy you
see dml.jar in a classloader with a child classloader that loads dal.jar.
I included the ClassCastException from weblogic server console below.What is
happening is that I have a session bean with 6 methods that just doesa println.
I deploy my session bean, ExerciseSessionBeanFactory, and run my unittest that
invokes test1 through test6 methods. I modify my bean to add "test7"method and
redeply dal.jar successfully. I run my unit test that invokes test1through test7
methods and then I get a ClassCastException.
I hope this helps. Please let me know if you need more details.If you push dml.jar into a subloader, that means you can change dml.jar
without touching anything in the parent loader. However, it also means
that you've isolated it's classes and other modules can't see them.
-- Rob
thanks,
Nasrin
in test method
in test2 method
in test3 method
in test4 method
in test5 method
in test6 method
<Apr 12, 2004 9:26:03 AM PDT> <Warning> <EJB> <BEA-010096> <The Message-Driven
EJB: SimTimeListener is unable to connect
to the JMS destination: cn=t.cms.cts.simTimeInfo. Connection failedafter 184
attempts. The MDB will attempt to reconne
ct every 10 seconds. This log message will repeat every 600 secondsuntil the
condition clears.>
<Apr 12, 2004 9:26:03 AM PDT> <Warning> <EJB> <BEA-010061> <The Message-Driven
EJB: SimTimeListener is unable to connect
to the JMS destination: cn=t.cms.cts.simTimeInfo. The Error was:
[EJB:011011]The Message-Driven EJB attempted to connect to the JMSdestination
with the JNDI name: cn=t.cms.cts.simTimeI
nfo. However, the object with the JNDI name: cn=t.cms.cts.simTimeInfois not a
JMS destination, or the destination found
was of the wrong type (Topic or Queue).>
in test method
in test2 method
in test3 method
in test4 method
in test5 method
in test6 method
<Apr 12, 2004 9:28:26 AM PDT> <Warning> <RMI> <BEA-080003> <RuntimeExceptionthrown
by rmi server: com.trs.cv.infr.istr.
sc.sim.factory.ejb.ExerciseSessionFactory_zhotso_EOImpl.test7()
java.lang.ClassCastException.
java.lang.ClassCastException
at com.trs.cv.infr.istr.sc.sim.factory.ejb.ExerciseSessionFactory_zhotso_EOImpl_WLSkel.invoke(Unknown
Source)
at weblogic.rmi.internal.BasicServerRef.invoke(BasicServerRef.java:477)
at weblogic.rmi.cluster.ReplicaAwareServerRef.invoke(ReplicaAwareServerRef.java:108)
at weblogic.rmi.internal.BasicServerRef$1.run(BasicServerRef.java:420)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:353)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:144)
at weblogic.rmi.internal.BasicServerRef.handleRequest(BasicServerRef.java:415)
at weblogic.rmi.internal.BasicExecuteRequest.execute(BasicExecuteRequest.java:30)
at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:197)
at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:170)
Rob Woollen <[email protected]> wrote:
You'll have to give me some more information on the ClassCastException.
Where does it happen? Print out the classnames and the
classloaders of the 2 objects.
Does everything work fine if you remove your classloader-structure?
-- Rob
Nasrin Azordegan wrote:
Hi,
I am defining custom module classloader hierarchy to avoid redeployingof the
entire application mainly because we have so many EJBs and it takesa long time
to deploy the entire app. I deploy my app using the exploded directory,add a
new method to an EJB in my dal.jar, redeploy, run my unittest and
I
get ClassCastException.
I am using weblogic.Deployer utility to reploy my module using "-targetsdal.jar@accsserver"
argument. I even tried undeploying that module and redeploy again
with
no luck.
here is weblogic-application.xml definition of the custom class loader
<classloader-structure>
<module-ref>
<module-uri>floghmi.war</module-uri>
</module-ref>
<module-ref>
<module-uri>cts.jar</module-uri>
</module-ref>
<module-ref>
<module-uri>fdbs.jar</module-uri>
</module-ref>
<classloader-structure>
<module-ref>
<module-uri>dml.jar</module-uri>
</module-ref>
<classloader-structure>
<module-ref>
<module-uri>dal.jar</module-uri>
</module-ref>
</classloader-structure>
</classloader-structure>
</classloader-structure>
thanks,
Nasrin
Maybe you are looking for
-
[Windows] Video conversion for iPod Touch on 2.0
I have recently purchased an iPod Touch 16Gb - cost £242 -, on software version 1.1.4. Immediately installing the latest iTunes (7.7.1.11) with Quicktime (7.5 Build 861), I upgraded the Software version to 2.0. Cost £6.99 Then I went to transfer vide
-
HP5850 printer driver for microsoft 8.1
This printer is the best I have had and I want to use on my new Laptop with Microsoft 8.1. No driver available. Is there a way of downloading a driver to allow me to use my 5850....or do I have yo buy another printer (which will NOT be an HP model)
-
Remittance for check to vendor with multiple invoices paid
SBO 2007A, PL15 If I print a vendor check to pay 10 or more invoices, the remittance portion prints 9 invoices on the stub and then prints the remainder of the invoices on the next check in the check run. How can I make the stub stop at 9? Edited by:
-
How to rectify Extended Syntax check warning , when object REF TO is used..
hi all, when running "Extended program check " for the below , I am getting warning error when I delcare the below stmts. DATA: go_alv TYPE REF TO cl_salv_table. lo_selections TYPE REF TO cl_salv_selections, lo_display_settings
-
Playback stops when clicking another screen
Need help in setting up CS4 for playback in the background when accessing other windows. I loved doing this on CS3 while doing other tasks. I use dv to playback to tape. Assistance appreciated. Gary Goin