LDAP Server Configuration in Weblogic
Hi,
While configuring LDAP provider in the existing weblogic server, I am facing issue while importing the certificate [.cer files] into the weblogic server for installation.
Could someone provide the sequential steps that need to be followed to setup LDAP?
Thanks,
Pratik.
I'm not sure what you want to achieve, but I guess that you want to use the Oracle Internet Directory for authentication?
Usually there would be some place in the Weblogic setup where you can configure this. Needed for the connectivity to the OID are usually the DN of the user that can connect (cn=orcladmin,dc=users,dc=acme,dc=com) and the hostname and port where the OID is running.
cu
Andreas
Similar Messages
-
LDAP-Server configuration and using
Hi,
can anyone tel me how it function with the LDAP-Server in the Adobe LiveCycle Es?
What i have to do? and how can i get user data from the logged user via LDAP?
ThankLiveCycle ES has an administrative console you can get at http://localhost:8080/adminui. You can log in with administrator/password.
Under the Settings section, you can go to User Management and then Domain Management.
In there you can define a new Enteprise Domain and create a new Authorization and Directory for that new domain.
In the Authorization, you can select LDAP. Under the Directory, you'll be taken through a wizard that will help you configure the LDAP connection to get the list of users and groups.
Then go back to Domain Management and select "Synch Now". You can set that synchronization to occur periodically.
Once you can connect to the LDAP server properly and get the list of users, you should be able to log to the different interfaces using users from the LDAP system.
You might need to give them LiveCyle roles to access some of the interfaces like adminui, workspace, etc. You can add roles under Settings/User Mangement/Role Management
Jasmin -
Issues with an LDAP server configured using DHCP instead of static.
Can anyone tell me if there is a known issue using a DHCP address instead of a static IP address to build a 10.4 MAC server that will is a LDAP master?
I have an LDAP master that is running 10.4 that has user account issues. Random users will suddenly not be able to authenticate against the server. I have been told this is because the server was originally built using a DHCP address and then migrated to a static IP. Being a UNIX geek this does not seem to make a lot of sense to me but I am new to MAC..... So?It absolutely could be the cause of the issue. Open Directory uses Kerberos (among other things) for authentication. Kerberos is VERY VERY VERY particular about DNS... and if your OD master changed the IP address, it could cause these problems. I wouldn't expect that it would ever work, but perhaps some days the IP is the same as it was during initial setup.
Do a 'sudo changeip -checkhostname' from the server and see if it says everything is okay. If not, you definitely have things you need to fix. Frankly, with DHCP on the server you are 100% guaranteed to have problems at some point. -
Open LDAP Authenticator Configuration on WLSSP5
I have problems in the open LDAP authenticator configuration on Weblogic Server with Service Pack 5. I have users on OpenLDAP Server that do not belong to any group. My LDIF file contents are as given below.
dn: dc=my-domain,dc=com
dc: my-domain
objectClass: dcObject
objectClass: organization
o: MYABC, Inc
dn: cn=Manager, dc=my-domain,dc=com
userPassword:: c2VjcmV0
objectClass: person
sn: Manager
cn: Manager
dn: cn=myabcsystem, dc=my-domain,dc=com
userPassword:: dmVuZGF2b3N5c3RlbQ==
objectClass: person
sn: myabcsystem
cn: myabcsystem
dn: cn=Philippe, dc=my-domain,dc=com
userPassword:: UGhpbGlwcGU=
objectClass: person
sn: Philippe
cn: Philippe
dn: cn=mlrick, dc=my-domain,dc=com
userPassword:: bWxyaWNr
objectClass: person
sn: mlrick
cn: mlrick
All these users appear in the Users tab after configuration on the console only if LDAP Server is up. While I select group tab, I get errors indicating BAD SEARCH Filter.
Inspite of me not having any groups in the ldap as indicated in ldif contents.
While I try to login t the application with this LDAP configuration, I do not get any errors. LDAP authentication is not happening with just the LDAP authenticator in place. Even if I stop the LDAP server, I do nto get any exceptions while trying ot login. The config params for the Open LADP are as given below
<weblogic.security.providers.authentication.OpenLDAPAuthenticator
AllGroupsFilter="objectclass=*"
Credential="{3DES}rGCpYmhaIorI99BjZ2u6Fg=="
GroupBaseDN="dc=my-domain,dc=com"
GroupFromNameFilter="(cn=%u)"
Name="Security:Name=MYABCAuthenticationOpenLDAPAuthenticator"
Principal="cn=myabcsystem,dc=my-domain,dc=com"
Realm="Security:Name=MYABCAuthentication"
StaticGroupDNsfromMemberDNFilter=""
StaticGroupNameAttribute="" StaticGroupObjectClass=""
StaticMemberDNAttribute="" UserBaseDN="dc=my-domain, dc=com"/>
####<Mar 3, 2006 4:21:34 PM IST> <Debug> <SecurityDebug> <hemalatha> <myserver> <ExecuteThread: '49' for queue: 'default'> <<WLS Kernel>> <> <000000> <LDAP ATN LoginModule initialized>
####<Mar 3, 2006 4:21:34 PM IST> <Debug> <SecurityDebug> <hemalatha> <myserver> <ExecuteThread: '49' for queue: 'default'> <<WLS Kernel>> <> <000000> <LDAP Atn Login>
####<Mar 3, 2006 4:21:34 PM IST> <Debug> <SecurityDebug> <hemalatha> <myserver> <ExecuteThread: '49' for queue: 'default'> <<WLS Kernel>> <> <000000> <LDAP Atn Login username: bob>
####<Mar 3, 2006 4:21:34 PM IST> <Debug> <SecurityDebug> <hemalatha> <myserver> <ExecuteThread: '49' for queue: 'default'> <<WLS Kernel>> <> <000000> <getConnection return conn:LDAPConnection { ldapVersion:2 bindDN:""}>
####<Mar 3, 2006 4:21:34 PM IST> <Debug> <SecurityDebug> <hemalatha> <myserver> <ExecuteThread: '49' for queue: 'default'> <<WLS Kernel>> <> <000000> <authenticate user:bob>
####<Mar 3, 2006 4:21:34 PM IST> <Debug> <SecurityDebug> <hemalatha> <myserver> <ExecuteThread: '49' for queue: 'default'> <<WLS Kernel>> <> <000000> <getDNForUser search("ou=people,ou=MYABCAuthentication,dc=myabc", "(&(uid=bob)(objectclass=person))", base DN & below)>
####<Mar 3, 2006 4:21:34 PM IST> <Debug> <SecurityDebug> <hemalatha> <myserver> <ExecuteThread: '49' for queue: 'default'> <<WLS Kernel>> <> <000000> <returnConnection conn:LDAPConnection { ldapVersion:2 bindDN:""}>
CAN ANYONE HELP ME IDENTIFY WHAT IS THE ISSUE. Why is the authentication not happening?Hi Amol,
I've seen this happen at least two times in 11.1.1.1 installs. You can safely restart and then add the service back again. Suggest you reboot after you re-add the service back or cycle all the Hyperion services.
I was not aware you could install the service with that command.
I used the below command instead:
sc create OpenLDAP-slapd start= auto binPath= "D:\Hyperion\...\slapd.exe service" DisplayName= "Hyperion Shared Services OpenLAP"
Regards,
-John -
[Security:090314]Entitlement Engine unable to connect to the embedded LDAP server
I rebuilt the server and I still can't start cluster server but got a different
error message. Any thoughts? (Migrating from Weblogic 6.1 to 8.1)
=============================================================================
LD_LIBRARY_PATH is:
/usr/openwin/lib
/usr/dt/lib
/usr/lib
/usr/local/lib
/export/opt/weblogic/8.1_SP2/weblogic81/server/lib/solaris
/export/opt/weblogic/8.1_SP2/weblogic81/server/lib/solaris
/export/opt/weblogic/8.1_SP2/weblogic81/server/lib/solaris/oci920_8
/opt/rv/lib
/bin/Solaris <not found>
/opt/BPARun1.0_A0/lib
=============================================================================
CLASSPATH is:
/export/opt/weblogic/8.1_SP2/weblogic81/server
/opt/rv/java/rvjpro.jar
/opt/rv/java/ssmbrvclient.jar
/opt/rv/java/tibrvj.jar
/export/opt/weblogic/8.1_SP2/weblogic81/server/lib/weblogic_sp.jar
/export/opt/weblogic/8.1_SP2/weblogic81/server/lib/weblogic.jar
/xenv/iona/sun4/5.x/6.0/asp/6.0/lib/asp-corba.jar
/work2/gx80747/src/Orbix6_config/etc/domains/GFINetEnv
:$
at weblogic.security.service.RoleManager.<init>(RoleManager.java:98)
at weblogic.security.service.SecurityServiceManagerDelegateImpl.doRole(SecurityServiceManagerDelegateImpl.jav
a:512)
at weblogic.security.service.SecurityServiceManagerDelegateImpl.initializeRealm(SecurityServiceManagerDelegat
eImpl.java:408)
at weblogic.security.service.SecurityServiceManagerDelegateImpl.loadRealm(SecurityServiceManagerDelegateImpl.
java:697)
at weblogic.security.service.SecurityServiceManagerDelegateImpl.initializeRealms(SecurityServiceManagerDelega
teImpl.java:730)
at weblogic.security.service.SecurityServiceManagerDelegateImpl.initialize(SecurityServiceManagerDelegateImpl
.java:873)
at weblogic.security.service.SecurityServiceManager.initialize(SecurityServiceManager.java:719)
at weblogic.t3.srvr.T3Srvr.initializeHere(T3Srvr.java:820)
at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:664)
at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:342)
at weblogic.Server.main(Server.java:32)
Reason: weblogic.security.spi.ProviderInitializationException: [Security:090314]Entitlement
Engine unable to connect
to the embedded LDAP server
Cannot instantiate weblogic.entitlement.data.ldap.EData
null
I rebuilt the server and I still can't start cluster server but got a different
error message. Any thoughts? (Migrating from Weblogic 6.1 to 8.1)
=============================================================================
LD_LIBRARY_PATH is:
/usr/openwin/lib
/usr/dt/lib
/usr/lib
/usr/local/lib
/export/opt/weblogic/8.1_SP2/weblogic81/server/lib/solaris
/export/opt/weblogic/8.1_SP2/weblogic81/server/lib/solaris
/export/opt/weblogic/8.1_SP2/weblogic81/server/lib/solaris/oci920_8
/opt/rv/lib
/bin/Solaris <not found>
/opt/BPARun1.0_A0/lib
=============================================================================
CLASSPATH is:
/export/opt/weblogic/8.1_SP2/weblogic81/server
/opt/rv/java/rvjpro.jar
/opt/rv/java/ssmbrvclient.jar
/opt/rv/java/tibrvj.jar
/export/opt/weblogic/8.1_SP2/weblogic81/server/lib/weblogic_sp.jar
/export/opt/weblogic/8.1_SP2/weblogic81/server/lib/weblogic.jar
/xenv/iona/sun4/5.x/6.0/asp/6.0/lib/asp-corba.jar
/work2/gx80747/src/Orbix6_config/etc/domains/GFINetEnv
:$
at weblogic.security.service.RoleManager.<init>(RoleManager.java:98)
at weblogic.security.service.SecurityServiceManagerDelegateImpl.doRole(SecurityServiceManagerDelegateImpl.jav
a:512)
at weblogic.security.service.SecurityServiceManagerDelegateImpl.initializeRealm(SecurityServiceManagerDelegat
eImpl.java:408)
at weblogic.security.service.SecurityServiceManagerDelegateImpl.loadRealm(SecurityServiceManagerDelegateImpl.
java:697)
at weblogic.security.service.SecurityServiceManagerDelegateImpl.initializeRealms(SecurityServiceManagerDelega
teImpl.java:730)
at weblogic.security.service.SecurityServiceManagerDelegateImpl.initialize(SecurityServiceManagerDelegateImpl
.java:873)
at weblogic.security.service.SecurityServiceManager.initialize(SecurityServiceManager.java:719)
at weblogic.t3.srvr.T3Srvr.initializeHere(T3Srvr.java:820)
at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:664)
at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:342)
at weblogic.Server.main(Server.java:32)
Reason: weblogic.security.spi.ProviderInitializationException: [Security:090314]Entitlement
Engine unable to connect
to the embedded LDAP server
Cannot instantiate weblogic.entitlement.data.ldap.EData
null
-
Getting iCal 3 to work with an LDAP server
I've managed to set up Directory Utility with a third-party LDAP server (part of Communigate Pro) so that Directory will look up people.
However I expected that once I did this, iCal would consult the LDAP server to do autocompletion when adding attendees to events. It doesn't.
I thought maybe I could use Address Book's Directories Group to facilitate adding attendees. Both the LDAP server configured through Mail and the LDAP Directory Service configured through Directory Utility are visible here--but even though I can look people up, I can't drag any of the resulting names into the Attendees list in iCal.
It seems I first have to drag them into a local Group; only then can I drag them into Attendee lists in iCal.
Finally, iCal has a feature called the Address Panel which I thought might make use of an LDAP server configured through Directory Utility, but it hasn't worked for me. The Panel says "Open Directory Lookup" near the top of the window, which suggests it might not be intended to function with any old LDAP implementation.
Any suggestions?
By the way, I have the LDAP server's entry in Directory Utility as RFC 2307 with an empty searchbase for all mappings. However I haven't modified any of the mappings themselves.
Thanks.iCal 3 looks for certain specific LDAP attributes which are (somewhat) unique to Open Directory.
Some information on mimicking Open Directory can be found at http://wiki.expertmx.com/doku.php?id=applecalendarserver -
Weblogic Admin server - Configuration/Server Start/Arguments ignored?
Hi,
I'm trying to specify a http proxy for a WebLogic Admin Server in order for an application to access external resources. I've placed the settings into the "Server Configuration / Server Start / Arguments", and verified that they have been saved into the config/config.xml file for that domain:
<server-start>
<arguments>-Dhttp.proxyHost=[XXXX] -Dhttp.proxyPort=8080</arguments>
<password-encrypted>[XXXX]</password-encrypted>
</server-start>
However, no matter how I start the server, these settings are ignored despite that the documentation states these should be added to the java command line.
starting weblogic with Java version:
java version "1.6.0_19"
Java(TM) SE Runtime Environment (build 1.6.0_19-b04)
Java HotSpot(TM) 64-Bit Server VM (build 16.2-b04, mixed mode)
Starting WLS with line:
C:\PROGRA~1\Java\JDK16~1.0_1\bin\java -client -Xms256m -Xmx512m -XX:CompileThreshold=8000 -XX:PermSize=128m -XX:MaxPermSize=256m -Dweblogic.Name=AdminServer -Djava.security.policy=C:\Oracle\MIDDLE~1\WLSERV~1.3\server\lib\weblogic.policy -Xverify:none -da -Dplatform.home=C:\Oracle\MIDDLE~1\WLSERV~1.3 -Dwls.home=C:\Oracle\MIDDLE~1\WLSERV~1.3\server -Dweblogic.home=C:\Oracle\MIDDLE~1\WLSERV~1.3\server -Dweblogic.management.discover=true -Dwlw.iterativeDev= -Dwlw.testConsole= -Dwlw.logErrorsToConsole= -Dweblogic.ext.dirs=C:\Oracle\MIDDLE~1\patch_wls1032\profiles\default\sysext_manifest_classpath weblogic.Server
As a test I created a new managed server in the same domain, specifying the same startup properties, and they were picked up during startup.
If I manually place the settings into the bin/setDomainEnv.cmd batch file for the domain they are also picked up and work.
Is there an undocumented restriction on Admin Servers that they ignore the "Server Start / Arguments" setting, or is there something else I can check as to why this is not working?
Many thanks,
- Micha.Umm... I already pasted the relevant snippet out of the config.xml, but following is the entire file. The startup arguments, as specified in the admin console, are:
-Dhttp.proxyHost=[XXXXXXXX] -Dhttp.proxyPort=8080
which matches what is saved in the config.xml.
<?xml version='1.0' encoding='UTF-8'?>
<domain xmlns="http://xmlns.oracle.com/weblogic/domain" xmlns:sec="http://xmlns.oracle.com/weblogic/security" xmlns:wls="http://xmlns.oracle.com/weblogic/security/wls" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://xmlns.oracle.com/weblogic/security/xacml http://xmlns.oracle.com/weblogic/security/xacml/1.0/xacml.xsd http://xmlns.oracle.com/weblogic/security/providers/passwordvalidator http://xmlns.oracle.com/weblogic/security/providers/passwordvalidator/1.0/passwordvalidator.xsd http://xmlns.oracle.com/weblogic/domain http://xmlns.oracle.com/weblogic/1.0/domain.xsd http://xmlns.oracle.com/weblogic/security http://xmlns.oracle.com/weblogic/1.0/security.xsd http://xmlns.oracle.com/weblogic/security/wls http://xmlns.oracle.com/weblogic/security/wls/1.0/wls.xsd">
<name>wls_starter</name>
<domain-version>10.3.2.0</domain-version>
<security-configuration>
<name>wls_starter</name>
<realm>
<sec:authentication-provider xsi:type="wls:default-authenticatorType"></sec:authentication-provider>
<sec:authentication-provider xsi:type="wls:default-identity-asserterType">
<sec:active-type>AuthenticatedUser</sec:active-type>
</sec:authentication-provider>
<sec:role-mapper xmlns:xac="http://xmlns.oracle.com/weblogic/security/xacml" xsi:type="xac:xacml-role-mapperType"></sec:role-mapper>
<sec:authorizer xmlns:xac="http://xmlns.oracle.com/weblogic/security/xacml" xsi:type="xac:xacml-authorizerType"></sec:authorizer>
<sec:adjudicator xsi:type="wls:default-adjudicatorType"></sec:adjudicator>
<sec:credential-mapper xsi:type="wls:default-credential-mapperType"></sec:credential-mapper>
<sec:cert-path-provider xsi:type="wls:web-logic-cert-path-providerType"></sec:cert-path-provider>
<sec:cert-path-builder>WebLogicCertPathProvider</sec:cert-path-builder>
<sec:name>myrealm</sec:name>
<sec:password-validator xmlns:pas="http://xmlns.oracle.com/weblogic/security/providers/passwordvalidator" xsi:type="pas:system-password-validatorType">
<sec:name>SystemPasswordValidator</sec:name>
<pas:min-password-length>8</pas:min-password-length>
<pas:min-numeric-or-special-characters>1</pas:min-numeric-or-special-characters>
</sec:password-validator>
</realm>
<default-realm>myrealm</default-realm>
<credential-encrypted>[XXXXXXXXXX]</credential-encrypted>
<node-manager-username>weblogic</node-manager-username>
<node-manager-password-encrypted>[XXXXXXXX]</node-manager-password-encrypted>
</security-configuration>
<server>
<name>AdminServer</name>
<max-http-message-size>-1</max-http-message-size>
<ssl>
<enabled>false</enabled>
</ssl>
<log>
<file-name>logs/AdminServer.log</file-name>
<rotation-type>bySize</rotation-type>
<number-of-files-limited>true</number-of-files-limited>
<file-count>7</file-count>
<file-min-size>500</file-min-size>
<rotate-log-on-startup>true</rotate-log-on-startup>
<logger-severity>Trace</logger-severity>
<logger-severity-properties></logger-severity-properties>
<log-file-severity>Info</log-file-severity>
<stdout-severity>Info</stdout-severity>
<domain-log-broadcast-severity>Notice</domain-log-broadcast-severity>
<memory-buffer-severity>Debug</memory-buffer-severity>
<log4j-logging-enabled>false</log4j-logging-enabled>
<redirect-stdout-to-server-log-enabled>false</redirect-stdout-to-server-log-enabled>
<domain-log-broadcaster-buffer-size>1</domain-log-broadcaster-buffer-size>
</log>
<machine>[XXXXXXXXXX]</machine>
<listen-port>8080</listen-port>
<listen-port-enabled>true</listen-port-enabled>
<web-server>
<frontend-http-port>0</frontend-http-port>
<frontend-https-port>0</frontend-https-port>
<keep-alive-enabled>true</keep-alive-enabled>
<keep-alive-secs>30</keep-alive-secs>
<https-keep-alive-secs>60</https-keep-alive-secs>
<post-timeout-secs>30</post-timeout-secs>
<max-post-size>-1</max-post-size>
<send-server-header-enabled>false</send-server-header-enabled>
<wap-enabled>false</wap-enabled>
<accept-context-path-in-get-real-path>false</accept-context-path-in-get-real-path>
</web-server>
<listen-address></listen-address>
<java-compiler>javac</java-compiler>
<tunneling-enabled>false</tunneling-enabled>
<tunneling-client-ping-secs>45</tunneling-client-ping-secs>
<tunneling-client-timeout-secs>40</tunneling-client-timeout-secs>
<server-start>
<arguments>-Dhttp.proxyHost=[XXXXXXXX] -Dhttp.proxyPort=8080</arguments>
<password-encrypted>[XXXXXXX]</password-encrypted>
</server-start>
<server-life-cycle-timeout-val>30</server-life-cycle-timeout-val>
<startup-timeout>0</startup-timeout>
<graceful-shutdown-timeout>30</graceful-shutdown-timeout>
<ignore-sessions-during-shutdown>false</ignore-sessions-during-shutdown>
<client-cert-proxy-enabled>false</client-cert-proxy-enabled>
</server>
<embedded-ldap>
<name>wls_starter</name>
<credential-encrypted>[XXXXXXXXXX]</credential-encrypted>
</embedded-ldap>
<configuration-version>10.3.2.0</configuration-version>
<app-deployment>
<name>[XXXXXXXXXX]</name>
<target>AdminServer</target>
<module-type>ear</module-type>
<source-path>[XXXXXXXXXX]</source-path>
<security-dd-model>DDOnly</security-dd-model>
</app-deployment>
<app-deployment>
<name>[XXXXXXXXXX]</name>
<target>AdminServer</target>
<module-type>ear</module-type>
<source-path>[XXXXXXXXXX]</source-path>
<security-dd-model>DDOnly</security-dd-model>
</app-deployment>
<app-deployment>
<name>[XXXXXXXXXX]</name>
<target>AdminServer</target>
<module-type>ear</module-type>
<source-path>[XXXXXXXXXX]</source-path>
<security-dd-model>DDOnly</security-dd-model>
</app-deployment>
<app-deployment>
<name>[XXXXXXXXXX]</name>
<target>AdminServer</target>
<module-type>ear</module-type>
<source-path>[XXXXXXXXXX]</source-path>
<security-dd-model>DDOnly</security-dd-model>
</app-deployment>
<machine>
<name>[XXXXXXXXXX]</name>
</machine>
<jms-server>
<name>WseeJmsServer</name>
<target>AdminServer</target>
<persistent-store>WseeFileStore</persistent-store>
</jms-server>
<jms-server>
<name>[XXXXXXXXXX]</name>
<target>AdminServer</target>
<persistent-store>WseeFileStore</persistent-store>
</jms-server>
<self-tuning>
<work-manager>
<name>weblogic.wsee.mdb.DispatchPolicy</name>
<target>AdminServer</target>
</work-manager>
</self-tuning>
<file-store>
<name>WseeFileStore</name>
<directory>WseeFileStore</directory>
<target>AdminServer</target>
</file-store>
<jms-system-resource>
<name>WseeJmsModule</name>
<target>AdminServer</target>
<sub-deployment>
<name>BEA_JMS_MODULE_SUBDEPLOYMENT_WSEEJMSServer</name>
<target>WseeJmsServer</target>
</sub-deployment>
<descriptor-file-name>jms/wseejmsmodule-jms.xml</descriptor-file-name>
</jms-system-resource>
<jms-system-resource>
<name>[XXXXXXXXXX]</name>
<target>AdminServer</target>
<sub-deployment>
<name>[XXXXXXXXXX]</name>
<target>[XXXXXXXXXX]</target>
</sub-deployment>
<descriptor-file-name>[XXXXXXXXXX]</descriptor-file-name>
</jms-system-resource>
<admin-server-name>AdminServer</admin-server-name>
<jdbc-system-resource>
<name>[XXXXXXXXXX]</name>
<target>AdminServer</target>
<descriptor-file-name>[XXXXXXXXXX]</descriptor-file-name>
</jdbc-system-resource>
<saf-agent>
<name>ReliableWseeSAFAgent</name>
<target>AdminServer</target>
<store>WseeFileStore</store>
</saf-agent>
</domain> -
Use of external LDAP server in Weblogic Commerce Server
I'm using the following software:
Iplanet Directory Server v5
Weblogic Application Server v6
Weblogic Commerce v3.5
I need to configure Weblogic Commerce Server to use Iplanet Directory Server directory
services. How do I do that?
I have a couple of questions related to this:
1) As Weblogic Commerce Server runs on top of Weblogic v6, does it mean that to
use an external LDAP server, I need to configure weblogic v6 to do that and not
Weblogic Commerce Server?
2) Whatever may be the case above, how do I do that?
3) config.xml (weblogic application server v6) contains information that needs
to be modified to point to an external JNDI source provider but what information
do I need to modify?
I'd really appreciate if someone can help me out here. Thanks!"JP" <[email protected]> wrote in message news:[email protected]..
Hi,
I'm looking for someone who has used the Lotus LDAP server for WLP7
authentication.
I connect my portal to the Domino LDAP, User and Groups are working
fine, but the membership of a user to a group is not.
I assume that it's related to the parameters I use (especially the
membership.filter ?):
"user.filter=(&(uid=%u)(objectclass=person));
user.dn=O=Apac;
membership.filter=(&(uniquemember=%M)(objectclass=groupOfNames));
group.filter=(&(cn=%g)(objectclass=groupOfNames));
server.host=jpgal01.apac.bea.com;
group.dn="
Any help would be appreciate, because I just don't where to look for.
Try setting the com.netscape.ldap.trace property.
\* When -D command line option is used, defining the property with
* no value will send the trace output to the standard error. If the
* value is defined, it is assumed to be the name of an output file.
* If the file name is prefixed with a '+' character, the file is
* opened in append mode.
This will create a ldap trace file of the requests that WLS is making on the
LDAP server. You can then see
where the filters are not returning the correct value for the group
membership. -
Changing user password in the external LDAP server from weblogic
Hi !
We have been successful in configuring the ldap security realm from weblogic 7.0.
We have also done the user authentication.
Now we want to allow the user himself to change his password from the application.Can
the user password which is stored in an iplanet directory server be changed from
application?If yes , then is there any extra configuration that needs to be doneI am not sure whether u got an answer for this..
But iplanet provides a web-link for end-users to change their LDAP password...u
can just give this link in ur app ..and iplanet will take care of the rest..
Krish Venkataraman
Bank Of America Corp.
Senior Analyst
"Mitali" <[email protected]> wrote:
>
Hi !
We have been successful in configuring the ldap security realm from weblogic
7.0.
We have also done the user authentication.
Now we want to allow the user himself to change his password from the
application.Can
the user password which is stored in an iplanet directory server be changed
from
application?If yes , then is there any extra configuration that needs
to be done -
Weblogic 10.3 ldap provider configuration
Hello, I am trying to configure Weblogic 10.3 to use an LDAP authentication provider. I can see my list of Users from the ldap server, but I can not see the list of Groups. Any help with my config would be appreciated. I turned on debug for DebugSecurity and ldap. I do not seem to have a recent error from trying to view the groups in the logs. I have been doing grep -i error on the log dir.
Ldap-auth Config
Weblogic 10.3 (Windows install)
IPlanetAuth Provider - 1.0
LDAP Server – Fedora Directory Server (fedora-ds-1.0.4-1.RHEL4)
LDAP Group DN
ou=fssys02,ou=Groups,dc=hns-net,dc=com
Groups under fssys02 – 4 cn=fs* groups that do not show up in Weblogic
Group objectClass - groupOfUniqueNames (structural)
Control flag - OPTIONAL
IPlanetAuth Provider - 1.0
Keep Alive Enabled – yes
User Name Attribute – uid
Propagate Cause for Login Exception – yes
Principal -
Host – ldap
User Object Class – person
All Users filter -
User Search Scope – subtree
All Groups filter –
Static Member DN Attribute – uniqueMember
Bind Anonymously on Referrals – yes
Group From Name Filter - (&(cn=%g)(objectclass=groupofUniqueNames))
Static Group DNs from Member DN Filter - (&(uniqueMember=%M)(objectclass=groupofUniqueNames))
Use Retrieved user Name as Principal –
Results Time Limit – 0
Cache TTL – 60
Dynamic Group Name Attribute –
Credential –
Confirm Credential –
Group Search Scope – subtree
Group Base DN - ou=fssys02,ou=Groups,dc=hns-net,dc=com
Dynamic Group Object Class – groupofURLs
User From Name Filter - (&(uid=%u)(objectclass=person))
Dynamic Member URL Attribute – memberURL
Cache Size – 32
SSLEnabled –
Cache Enabled – yes
Connection Retry Limit – 1
Connect Timeout – 0
Parallel Connect Delay – 0
User Dynamic Group DN Attribute – cn
Static Group Name Attribute – cn
User Base DN - ou=People, dc=hns-net,dc=com
Follow Referrals – yes
Port – 389
Ignore Duplicate Membership –
Static Group Object Class –
Group Membersip Searching – unlimited
Max Group Membership Search Level – 15Hi To View the LDAP Groups and the users
Groups and users has to been under one OU (organizational Unit) Check the Below Format
and in the Properties files you have to enable the LDAPGroup Proprties to true.
This is for iplanet
User path
ou=groups,dc=xxx,dc=xxxsoft,dc=com
Group path
ou=groups,dc=xxx,dc=xxxsoft,dc=com
Search filter
(objectclass=person)
for ADS Group base DN and user base Dn should be same (for example:-ou=test)
Group Base DN - ou=fssys02,ou=Groups,dc=hns-net,dc=com
User Base DN - ou=People, dc=hns-net,dc=com
Check it out.This Should work. -
Configuring Apache HTTP Server with Oracle Weblogic Server plugin
Hello friends,
I have a scenario of OIM 9.1.0.2 on Oracle Application Server 11g and Weblogic Server Apache HTTP Server.
Oracle WebLogic Server is configured in cluster (node1 and node2), also use the Oracle Weblogic Server plugin for integration with Apache.
One of the tests is to lose one of the nodes for the apache plugin redirects the node that has less overhead.
When the mode is node1 and node2 stop start mode and try to access the management console of Oracle Identity Manager, the plugin sometimes redirects to the other active node, and on another occasion shows the oracle management console identity manager without the colors of the basic look and feel.
Deputy of the Apache HTTP Server log, do you expect your comments to solve this case?
*************************************************log****************************************************
Server Details are:
OrigHostInfo [192.168.1.200]
isOrigHostInfoDNS [0]
Host [192.168.1.200]
Port [7002]
SecurePort [7004]
Mon Jan 30 22:10:43 2012 <2600713279794431> Initializing lastIndex=0 for a list of length=1
Mon Jan 30 22:10:43 2012 <2600713279794431> initJVMID: Trying to locate Primary or Secondary using SrvrInfo with JVMID [-872106207]
Mon Jan 30 22:10:43 2012 <2600713279794431> initJVMID: Found Primary 192.168.1.200:7002:7004
Mon Jan 30 22:10:43 2012 <2600713279794431> INFO: Closing SSL context
Mon Jan 30 22:10:43 2012 <2600713279794431> .....internal request /bea_wls_internal/WLDummyInitJVMIDs.....processed
Mon Jan 30 22:10:43 2012 <2600713279794431> getPreferredFromCookie: Found 1 servers
Mon Jan 30 22:10:43 2012 <2600713279794431> attempt #0 out of a max of 5
Mon Jan 30 22:10:43 2012 <2600713279794431> trying connect to PRIMARY '192.168.1.200'/7002/7004
Mon Jan 30 22:10:43 2012 <2600713279794431> getPooledConn: No more connections in the pool for Host[192.168.1.200] Port[7002] SecurePort[7004]
Mon Jan 30 22:10:43 2012 <2600713279794431> New SSL URL: match = 0 oid = 22
Mon Jan 30 22:10:43 2012 <2600713279794431> Connect returns -1, and error no set to 150, msg 'Operation now in progress'
Mon Jan 30 22:10:43 2012 <2600713279794431> EINPROGRESS in connect() - selecting
Mon Jan 30 22:10:43 2012 <2600713279794431> Setting peerID for new SSL connection
Mon Jan 30 22:10:43 2012 <2600713279794431> 0ae2 0436 0000 1b5c ...6...\
Mon Jan 30 22:10:43 2012 <2600713279794431> Local Port of the socket is 39186
Mon Jan 30 22:10:43 2012 <2600713279794431> Remote Host 192.168.1.200 Remote Port 7004
Mon Jan 30 22:10:43 2012 <2600713279794431> created a new connection to preferred server '192.168.1.200/7004' for '/xlWebApp/images/spacer.gif', Local port:39186
Mon Jan 30 22:10:43 2012 <2600713279794431> INFO: CA certificate missing basicConstraints, validation failed
Mon Jan 30 22:10:43 2012 <2600713279794431> ERROR: SSLWrite failed
Mon Jan 30 22:10:43 2012 <2600713279794431> SEND failed (ret=-1) at 793 of file ../nsapi/URL.cpp
Mon Jan 30 22:10:43 2012 <2600713279794431> *******Exception type [WRITE_ERROR_TO_SERVER] raised at line 794 of ../nsapi/URL.cpp
Mon Jan 30 22:10:43 2012 <2600713279794431> Marking 192.168.1.200:7004 as bad
Mon Jan 30 22:10:43 2012 <2600713279794431> got exception in sendRequest phase: WRITE_ERROR_TO_SERVER [os error=0, line 794 of ../nsapi/URL.cpp]: at line 3160
Mon Jan 30 22:10:43 2012 <2600713279794431> INFO: Closing SSL context
Mon Jan 30 22:10:43 2012 <2598413279794431>
================New Request: [GET /images/cab.gif HTTP/1.1] =================
Mon Jan 30 22:10:43 2012 <2598413279794431> INFO: SSL is configured
Mon Jan 30 22:10:43 2012 <2598413279794431> SSL Main Context not set. Calling InitSSL
Mon Jan 30 22:10:43 2012 <2598413279794431> INFO: SSL configured successfully
Mon Jan 30 22:10:43 2012 <2598413279794431> Using Uri /images/cab.gif
Mon Jan 30 22:10:43 2012 <2598413279794431> After trimming path: '/images/cab.gif'
Mon Jan 30 22:10:43 2012 <2598413279794431> adding prepend path: /xlWebApp/
Mon Jan 30 22:10:43 2012 <2598413279794431> The final request string is '/xlWebApp/images/cab.gif'
Mon Jan 30 22:10:43 2012 <2598413279794431> Host extracted from serverlist is [192.168.1.100]
Mon Jan 30 22:10:43 2012 <2598413279794431> Host extracted from serverlist is [192.168.1.200]
Mon Jan 30 22:10:43 2012 <2598413279794431> Initializing lastIndex=0 for a list of length=2
Mon Jan 30 22:10:43 2012 <2598413279794431> getListNode: created a new server node: id='192.168.1.100:7004,192.168.1.200:7004' server_name='OIMSERVER', port='443'
Mon Jan 30 22:10:43 2012 <2598413279794431> getPreferred: availcookie=[JSESSIONID=6RGCPnbTFRG7LBrTRpFnv1QLnQHkxkqr4pjGhhGJyrJWJ1rv86NK!-872106207!NONE]
Mon Jan 30 22:10:43 2012 <2598413279794431> Found cookie from cookie header: JSESSIONID=6RGCPnbTFRG7LBrTRpFnv1QLnQHkxkqr4pjGhhGJyrJWJ1rv86NK!-872106207!NONE
Mon Jan 30 22:10:43 2012 <2598413279794431> Parsing cookie JSESSIONID=6RGCPnbTFRG7LBrTRpFnv1QLnQHkxkqr4pjGhhGJyrJWJ1rv86NK!-872106207!NONE
Mon Jan 30 22:10:43 2012 <2598413279794431> getpreferredServersFromCookie: [-872106207!NONE]
Mon Jan 30 22:10:43 2012 <2598413279794431> primaryJVMID: [-872106207]
secondaryJVMID: [NONE]
Mon Jan 30 22:10:43 2012 <2598413279794431> No of JVMIDs found in cookie: 1
Mon Jan 30 22:10:43 2012 <2598413279794431> getPreferredFromCookie: Start Position is 0, listLen is 2
Mon Jan 30 22:10:43 2012 <2598413279794431> getPreferredFromCookie: Either JVMIDs not set or they are stale. Will try to get JVMIDs from WLS
Mon Jan 30 22:10:43 2012 <2598413279794431> initJVMID: Iterating SrvrList from position 0
Mon Jan 30 22:10:43 2012 <2598413279794431> ======internal request /bea_wls_internal/WLDummyInitJVMIDs======
initJVMID: Trying Host[192.168.1.100] Port[7004] SecurePort[7004] useSSL [1] ioTimeout [30] socketTimeout [2]
Mon Jan 30 22:10:43 2012 <2598413279794431> New SSL URL: match = 0 oid = 0
Mon Jan 30 22:10:43 2012 <2598413279794431> Connect returns -1, and error no set to 146, msg 'Connection refused'
Mon Jan 30 22:10:43 2012 <2598413279794431> Error connecting to host 192.168.1.100:7004
Mon Jan 30 22:10:43 2012 <2598413279794431> *******Exception type [CONNECTION_REFUSED] (Error connecting to host 192.168.1.100:7004 errno = 146) raised at line 1723 of ../nsapi/URL.cpp
Mon Jan 30 22:10:43 2012 <2598413279794431> initJVMID: Failed to retrieved JVMID for 192.168.1.100:7004:7004
Mon Jan 30 22:10:43 2012 <2598413279794431> initJVMID: Marked server as BAD
Mon Jan 30 22:10:43 2012 <2598413279794431> INFO: Closing SSL context
Mon Jan 30 22:10:43 2012 <2598413279794431> .....internal request /bea_wls_internal/WLDummyInitJVMIDs.....processed
Mon Jan 30 22:10:43 2012 <2598413279794431> ======internal request /bea_wls_internal/WLDummyInitJVMIDs======
initJVMID: Trying Host[192.168.1.200] Port[7004] SecurePort[7004] useSSL [1] ioTimeout [30] socketTimeout [2]
Mon Jan 30 22:10:43 2012 <2598413279794431> New SSL URL: match = 0 oid = 0
Mon Jan 30 22:10:43 2012 <2598413279794431> Connect returns -1, and error no set to 150, msg 'Operation now in progress'
Mon Jan 30 22:10:43 2012 <2598413279794431> EINPROGRESS in connect() - selecting
Mon Jan 30 22:10:43 2012 <2598413279794431> Setting peerID for new SSL connection
Mon Jan 30 22:10:43 2012 <2598413279794431> 0ae2 0436 0000 1b5c ...6...\
Mon Jan 30 22:10:43 2012 <2598413279794431> Local Port of the socket is 39188
Mon Jan 30 22:10:43 2012 <2598413279794431> Remote Host 192.168.1.200 Remote Port 7004
Mon Jan 30 22:10:43 2012 <2598413279794431> INFO: Certificate validation succeeded
Mon Jan 30 22:10:43 2012 <2598413279794431> INFO: Negotiated to cipher: 3
Mon Jan 30 22:10:43 2012 <2598413279794431> SSLWrite sent 171
Mon Jan 30 22:10:43 2012 <2598413279794431> SSLWrite completed, sent 171
Mon Jan 30 22:10:43 2012 <2598413279794431> Reader::fill() SSLRead returned: 0 290
Mon Jan 30 22:10:43 2012 <2598413279794431> URL::parseHeaders: CompleteStatusLine set to [HTTP/1.1 404 Not Found]
Mon Jan 30 22:10:43 2012 <2598413279794431> URL::parseHeaders: StatusLine set to [404 Not Found]
Mon Jan 30 22:10:43 2012 <2598413279794431> parsed all headers OK
Mon Jan 30 22:10:43 2012 <2598413279794431> Parsing cluster list: -872106207!182584374!7002!7004
Mon Jan 30 22:10:43 2012 <2598413279794431> parseJVMID: Parsing JVMID '-872106207!182584374!7002!7004'
Mon Jan 30 22:10:43 2012 <2598413279794431> parseJVMID: Actually parsing '-872106207!182584374!7002!7004'
Mon Jan 30 22:10:43 2012 <2598413279794431> ServerInfo struct for JVMID '-872106207' populated
Server Details are:
OrigHostInfo [192.168.1.200]
isOrigHostInfoDNS [0]
Host [192.168.1.200]
Port [7002]
SecurePort [7004]
Mon Jan 30 22:10:43 2012 <2598413279794431> Initializing lastIndex=0 for a list of length=1
Mon Jan 30 22:10:43 2012 <2598413279794431> initJVMID: Trying to locate Primary or Secondary using SrvrInfo with JVMID [-872106207]
Mon Jan 30 22:10:43 2012 <2598413279794431> initJVMID: Found Primary 192.168.1.200:7002:7004
Mon Jan 30 22:10:43 2012 <2598413279794431> INFO: Closing SSL context
Mon Jan 30 22:10:43 2012 <2598413279794431> .....internal request /bea_wls_internal/WLDummyInitJVMIDs.....processed
Mon Jan 30 22:10:43 2012 <2598413279794431> getPreferredFromCookie: Found 1 servers
Mon Jan 30 22:10:43 2012 <2598413279794431> attempt #0 out of a max of 5
Mon Jan 30 22:10:43 2012 <2598413279794431> trying connect to PRIMARY '192.168.1.200'/7002/7004
Mon Jan 30 22:10:43 2012 <2598413279794431> getPooledConn: No more connections in the pool for Host[192.168.1.200] Port[7002] SecurePort[7004]
Mon Jan 30 22:10:43 2012 <2598413279794431> New SSL URL: match = 0 oid = 22
Mon Jan 30 22:10:43 2012 <2598413279794431> Connect returns -1, and error no set to 150, msg 'Operation now in progress'
Mon Jan 30 22:10:43 2012 <2598413279794431> EINPROGRESS in connect() - selecting
Mon Jan 30 22:10:43 2012 <2598413279794431> Setting peerID for new SSL connection
Mon Jan 30 22:10:43 2012 <2598413279794431> 0ae2 0436 0000 1b5c ...6...\
Mon Jan 30 22:10:43 2012 <2598413279794431> Local Port of the socket is 39189
Mon Jan 30 22:10:43 2012 <2598413279794431> Remote Host 192.168.1.200 Remote Port 7004
Mon Jan 30 22:10:43 2012 <2598413279794431> created a new connection to preferred server '192.168.1.200/7004' for '/xlWebApp/images/cab.gif', Local port:39189
Mon Jan 30 22:10:43 2012 <2598413279794431> INFO: CA certificate missing basicConstraints, validation failed
Mon Jan 30 22:10:43 2012 <2598413279794431> ERROR: SSLWrite failed
Mon Jan 30 22:10:43 2012 <2598413279794431> SEND failed (ret=-1) at 793 of file ../nsapi/URL.cpp
Mon Jan 30 22:10:43 2012 <2598413279794431> *******Exception type [WRITE_ERROR_TO_SERVER] raised at line 794 of ../nsapi/URL.cpp
Mon Jan 30 22:10:43 2012 <2598413279794431> Marking 192.168.1.200:7004 as bad
Mon Jan 30 22:10:43 2012 <2598413279794431> got exception in sendRequest phase: WRITE_ERROR_TO_SERVER [os error=0, line 794 of ../nsapi/URL.cpp]: at line 3160
Mon Jan 30 22:10:43 2012 <2598413279794431> INFO: Closing SSL context
Thanks"One of the tests is to lose one of the nodes for the apache plugin redirects the node that has less overhead."
Note that the plug-in does a round robin load balancing, for example, in the case of three server (1,2,3) it does 1-2-3-1-2-3-1...
with server 3 going down it does 1-2-1-2-1...
An example configuration (with SSL off) looks as follows:
LoadModule weblogic_module "/home/oracle/weblogic12.1.1/apache/modules/mod_wl.so"
<IfModule weblogic_module>
ConnectTimeoutSecs 10
ConnectRetrySecs 2
DebugConfigInfo ON
WLSocketTimeoutSecs 2
WLIOTimeoutSecs 300
Idempotent ON
FileCaching ON
KeepAliveSecs 20
KeepAliveEnabled ON
DynamicServerList ON
WLProxySSL OFF
</IfModule>
<Location /LoadTest6>
SetHandler weblogic-handler
WebLogicCluster 172.31.0.175:7002,172.31.0.113:7003
</Location>Also see the complete example here: http://middlewaremagic.com/weblogic/?p=7795
"the plugin sometimes redirects to the other active node"
This is somewhat strange, do you have session binding turned off?
"and on another occasion shows the oracle management console identity manager without the colors of the basic look and feel."
This could happen due to mime types (not really sure just a hunch). Here is a general story on this concept: https://developer.mozilla.org/en/Properly_Configuring_Server_MIME_Types
and the apache module: http://httpd.apache.org/docs/2.2/mod/mod_mime.html -
Help: which LDAP server should I use with weblogic 5.1
Hi:
I try to use LDAP for user profile management. I am free to use any LDAP
server as long as it is easy to work with weblogic 5.1 or 6.0.
Any suggestions?
Thank you.
liThis is what I did for my DS settings
1. select Oracle JDBC Driver
2. set Classes12.jar in Websphre classpath - (Oracle thin driver)
3. create DS with option User defined JDBC provider
means I have added Thin driver provided by Oracle , instead of deprecated Thin driver from IBM. -
When I goto web server administration in users and group tab it alway show me Unable to initialize LDAP (No LDAP server is configured) Is it cause the effect to use web server because I use iWS with ias .
If it cause some effect ,Please let me know how to configured LDAP server.Run this Command from the Exchange Server
Net time \\ADServerName /Set
and confirm the action,
and then you need to restart the service
Microsoft Exchange Active Directory Topology Service
and confirm you are not getting the Error 4001 in the event Viewer.
Thank you, it resolved my issue after being sweating looking for solution.
How can I prevent this from happening? I cannot restart services on each server reboot nor lose 5 years of my life!!!
Sokratis Laskaridis MCP, MCTS, MCITP, Small Business Specialist Netapp ASAP, Symantec STS -
Weblogic 8.1 & Embedded LDAP server
Hi,
Is it possible to store user attributes alongwith username & password in the Weblogic 8.1 Embedded LDAP Server?.
We have about 6 user profile attributes along with the username & password. Does weblogic's embedded LDAP Server
support this feature.
Any help will be appreciated.
thanx,
VishwaHi Vishwap,
Did you ever found out how to manipulate additional information in the embedded LDAP server?
I am in critical need to do the same.
Thanks in advance for your comments.
Zi -
Issues when configure LDAP server in OBIEE
Hi,
I have a big issue, I configure LDAP server for authentication of users, and everything looks fine, but my problem is when I log in Interactive Dashbaords, I enter without any problem, but some parameters and some filters and some functions are NOT working, for example:
-In a parameter I have this condition for Default value: SELECT YEAR(Tiempo.Dia) FROM Finanzas WHERE Tiempo.dia = CURRENT_DATE, and returns me a null value, but if I change to this SELECT YEAR(Tiempo.Dia) FROM Finanzas WHERE Tiempo.dia = CURRENT_DATE-1, returns me "2010"
I have similar behaviors in other parameters, and some filters and some functions.
Everything happen in Development instance. I configure LDAP server in Development instance.
In Production instance nothing of this is happen, but I do not configure LDAP server yet.
What do anyone think is happen here? This happens because I configure LDAP server? What do you think that mades this behavior for my parameters, filters and functions?
Do you think is a better practice to clone Production instance to Development instance? If so, how can I do a clone instance, only for OBIEE?
Regards,
Arnulfo
Edited by: ArnulfoPA on 25-may-2010 15:35The date returned by CURRENT_DATE is determined by the system in which the Oracle BI Server is running. So, does CURRENT_DATE returns an equal values on prom and dev instances in your case?
Maybe you are looking for
-
Installation problem - from CS4 to Creative Cloud CS6
Re: http://forums.adobe.com/message/4403515#4403515 THE TWO PROBLEMS (1) I am a licensed CS4 user who has recently upgraded to Creative Cloud CS6 (that's not a problem, that's just background). The problem is when I attempt to open files through Brid
-
Several mysterious problems with Solaris 11 x86 install
Hi folks, I've recently installed Solaris 11 x86 as a replacement for Solaris 9 SPARC on an Ultra 2 machine. I like the operating system, but I've promptly acquired some mysterious problems. The computer is a Fujitsu Siemens Esprimo E2500 with a Pent
-
How to make a form using a wizard when the table has no primary key ?
Hi, I want to make a form to update, delete a table. The table has no primary key. The problem is that the Wizard ask for a primary key. How to avoid using a primary key ? i mean I don't want to create a primary key if is is possible. I would like to
-
How can I get some of my actions in photoshop cs4 from my old computer to photoshop cs5 on my new co
Sofar I have tryed to find the actions on my computer but without succes. There are not in the presets/action folder. That folder is empty. If I try to save the actions from the actions window in photoshop I cannot manage because the "save action" f
-
Airport Express on iTunes 5 - Couldn't connect to AE
Here is my problem. Hope someone might be able to help. I have setup Airport Express Successfully, config it to joint as a client to the existing wireless network. Using DHCP for getting it's IP address. I am a windows user. I have used the AE admin