LDAP String for OAM???

Similar Messages

• How to use two different LDAP authentication for my Apex application login

  Hi,
  I have 2 user groups defined in the LDAP directory and I provided the DN string for apex authentication something like the below
  cn=%LDAP_USER%,ou=usergrp1,dc=oracle,dc=com
  cn=%LDAP_USER%,ou=usergrp2,dc=oracle,dc=com
  The problem is I couln't pointout both the groups in DN string, I am trying to allow both usergroups to access the application.
  Does anyone know how to define both the group in LDAP DN String ?.
  Thanx in advance
  Vijay.

  Vijay,
  I don't think you'll be able to use the built-in LDAP authentication scheme. Just create a new authentication scheme that has its own authentication function. In that function code your calls to dbms_ldap however you need. Search the forum for dbms_ldap.simple_bind_s to find examples.
  Scott

• Error while doing the Ldap sync for UDFs

  Hi All,
  I am doing LDAP sync for UDFs,
  Created users in OID.
  assigned to orclIDXPerson object modified the ldapconfig.props and created the input file.
  Now I am running the ldapsyncudf.sh then I getting the below error.
  Exception in thread "main" java.lang.NullPointerException
  at oracle.ods.virtualization.schema.AttributeTypeDefinition.getOID(AttributeTypeDefinition.java:117)
  at oracle.ods.virtualization.jndi.OVDSchemaContext.convertAttrDefnToJNDIAttrs(OVDSchemaContext.java:655)
  at oracle.ods.virtualization.jndi.OVDSchemaContext.getAttributes(OVDSchemaContext.java:137)
  at oracle.ods.virtualization.jndi.OVDSchemaContext.getAttributes(OVDSchemaContext.java:109)
  at oracle.iam.configservice.impl.LDAPUDFSyncImpl.isAttrExistsInLDAP(LDAPUDFSyncImpl.java:555)
  at oracle.iam.configservice.impl.LDAPUDFSyncImpl.validateOVDSchema(LDAPUDFSyncImpl.java:519)
  at oracle.iam.configservice.impl.LDAPUDFSyncImpl.addUDFwithLDAP(LDAPUDFSyncImpl.java:1082)
  at oracle.iam.configservice.api.LDAPUDFSyncEJB.addUDFwithLDAPx(Unknown Source)
  at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
  at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at com.bea.core.repackaged.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:310)
  at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182)
  at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149)
  at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
  at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
  at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
  at com.bea.core.repackaged.springframework.jee.spi.MethodInvocationVisitorImpl.visit(MethodInvocationVisitorImpl.java:37)
  at weblogic.ejb.container.injection.EnvironmentInterceptorCallbackImpl.callback(EnvironmentInterceptorCallbackImpl.java:54)
  at com.bea.core.repackaged.springframework.jee.spi.EnvironmentInterceptor.invoke(EnvironmentInterceptor.java:50)
  at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
  at com.bea.core.repackaged.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:89)
  at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
  at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
  at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
  at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
  at com.bea.core.repackaged.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
  at $Proxy631.addUDFwithLDAPx(Unknown Source)
  can anyone please unblock me.
  Thanks,
  Valli

  Hi,
  Please see if these help (for 11gR2)
  Export the LDAPUser.xml file from MDS using weblogicExportMetatdata.bat. This xml contains the attributes mapping between OIM and OID for LDAP synchronization.
  Include the entry for OIM attribute (if entry does not exist for the attribute in the XML) under entity-attributes node. For e.g. use the following xml snippet to add the entry for ISD Code for Phone attribute
  <entity-attributes><attribute name=”ISD Code for Phone”> <type>string</type> <required>false</required> <attribute-group>Extended </attribute-group> <searchable>true</searchable> </attribute> </entity-attributes>
  Include the entry for OID attribute under target-fields node. For e.g. use the following xml snippet to add the entry for CountryCode
  <target-fields><field name=”CountryCode”><type>String</type> <required>false</required> </target-fields>
  Now map the OIM attribute with the OID attribute using the following xml snippet under attribute-maps node
  <attribute-maps><attribute-map> <entity-attribute> ISD Code for Phone </entity-attribute> <target-field>CountryCode</target-field> </attribute-map></attribute-maps>
  Save the changes and import the file back into MDS using WebLogic import utilities.

• Ldap auth for db app working, same config for websheet not working

  Hi forum-
  I'm running the following:
  Apex version 4.2.1
  Listener version 2.0.1
  RDBMS version 11.2.0.3
  RHEL Linux version 2.6.18-238.5.1.el5
  We've been using apex for quite a while (version 3.something) and have been successfully authenticating application logins w/ our corporate LDAP service. I've recently installed the latest version of apex and have been exploring the websheet application (very cool). Using parameters similar to our 3.0 installation, I was able to create a test database application and was able to successfully authenticate w/ our ldap service. Using the same settings (listed below) I'm NOT able to successfully authenticate a websheet login. Here are the (sanitized) settings for the database application:
  host: ldap.company.com
  port: 389
  use ssl: no sll
  distinguished name string: CN=%LDAP_USER%,OU=All Users,DC=ad,DC=company,DC=com
  use exact distinguished name: yes
  ldap username edit function: return ldap_validate (p_username => :USERNAME);
  username escaping: standard
  and the settings for the websheet application:
  logout url: ws?p=102:home (default)
  ldap host: ldap.company.com
  ldap port: 389
  use ssl: no sll
  use exact distinguished name: yes
  ldap string: CN=%LDAP_USER%,OU=All Users,DC=ad,DC=company,DC=com
  ldap username edit function: return ldap_validate (p_username => :USERNAME);
  ldap username escaping: standard
  cookie name:
  cookie path:
  cookie domain:
  secure: no
  Additional info
  - the ldap username edit function (ldap_validate) take a login ID and returns the ldap-friendly version via an ldap search
  Questions:
  1) is there any additional configuration that is necessary for a websheet to use ldap authentication (acls, for example)?
  2) is there any useful logging where i determine why the login is failing?
  3) has anyone gotten this working and can share their config with me?
  Many thanks-
  -josh

  Any thoughts?

• User store for OAM

  I am setting OID as default User store for OAM 11gR2. And shall continue to use the internal UserIdentityStore1 as Security Store.
  Is this ok? What is best practice.

  This should be fine and is recommended way.
  When trying to set this up. I would recommend keep few things in mind. i.e. Make sure that you are having a new LDAP Authentication Module created for default User Identity Store. You don't want to create a mess out of your Authentication Modules and Authentication scheme configurations. Few of the OOTB Authentication Schemes use LDAP Authentication Module. If you change the User IdentityStore for it. Then your system store would be UserIdentityStore1 whereas the OAMConsoleScheme and other Authentication Schemes will be using LDAP Module which will be pointing to your OID's User Identity Store instead of your System Store.
  ~Yagnesh

• User can't see some OID entry from 3rd party ldap browser but OAM?

  Hi All,
  after tried to applied access control to some OID entry, user then can't see that entry from 3rd party ldap browster, and this is a expected behavior, but why the same user can see that entry from user management interface of OAM?
  Regards,
  Makson

  Hi Makson,
  OAM's Identity Server binds to OID as a single user* (typically an OID admin, even orcladmin) and applies only those acl's that have been defined within OAM. So when you login to OAM as end-user X, the Identity Server (eg orcladmin) checks to see what rights within OAM have been defined for User X - but in this scenario any rights defined within OID are not applied to user X. By default, OAM end-users have no access to information in ldap (although the OAM Admins have full access by default).
  Regards,
  Colin
  *Depending on how you are accessing OAM, you may see extra binds in the OID logs when the end-users actually login to OAM.                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   

• [svn:bz-trunk] 11030: Tweak the deserialization of ASObjects to treat an empty string for the type of an object as null .

  Revision: 11030
  Author:   [email protected]
  Date:     2009-10-20 11:35:02 -0700 (Tue, 20 Oct 2009)
  Log Message:
  Tweak the deserialization of ASObjects to treat an empty string for the type of an object as null. It appears that there is some logic in the LC remoting code that relies on a non-null class name to always exist. This change reverts to the old behavior of not allowing empty string as a value for the ASObject.namedType.
  This should fix bug 2448442 and its duplicates caused by the recent serialization changes.
  I don't think this is the perfect fix. Pending further investigation, a better fix would be either:
  a. If it's OK to assume that empty string should always mean null for the type of the ASObject, the code that enforces it should be in the setter/getter inside ASObject and not in the deserializer.
  b. ASObject doesn't guarantee that a named type exists or is valid. In that sense an empty string is as bad as some random characters that cannot be a valid class name in java, so depending on how disruptive it may be, the fix should be in any logic that uses ASObject.getType().
  Modified Paths:
      blazeds/trunk/modules/core/src/flex/messaging/io/amf/AbstractAmfInput.java

  Hi Pavan,
  "In your payload there is no namespace prefix for the elements under PayloadHeader element."
  Yes, you are right - but this message is standard AQ Adapter Header message - it's not defined by me. I just used message which was automatically added to my project when I have defined AQ Adapter.
  "In your process is the default namespace is same as namespace value of tns ??"
  Do you mean targetNamespace? If yes it's different as it points to process "targetNamespace="http://xmlns.oracle.com/PF_SOA_jws/PF_APPS/APPS_PROCESS" (names of application and process have changed as I try different ways to do that)
  ns1 is: xmlns:ns1="http://xmlns.oracle.com/pcbpel/adapter/aq/PF_SOA/PF_APPS/PO_AQ"
  "another thing is tns and ns1 should have same values.."
  When I create a variable of header type, namespace ns1 is automatically created for it. I set it as property of receive activity. When process is instantiated on the serwer I get the error in which you can see that namespace is tns.
  Maybe I'm doing something wrong but I don't see how I could fix this in my process.
  You can see that the message I get on the server has nothing in common with the application/project/process names. Is it possible to define such variable?
  Regards
  Pawel
  PS:
  In Transformation xsl file, both variables (source and target) has tns namespace for Header and PayloadHeader, and no namespace for subfields.
  Edited by: pawel.fidelus on 2010-01-05 02:37

• How to dynamically set connection string for report in C# code?

  Hi,
  I have installed CRVS2010. I have created new Crystal Report WPF Application and new report. I would like to set connection string for report in code dynamically.
  Is this possible?
  Thanks
  Ivana

  Lots of posts in this forum on how to set database connections. WPF should not be a consideration as it's just a viewer. The report engine is still the same. Search these forums. Use the search box at the top right corner of this page. Look at samples here:
  https://wiki.sdn.sap.com/wiki/display/BOBJ/CrystalReportsfor.NETSDK+Samples
  Note that none of the samples above are using WPF, but like I said, the WPF is just a different viewer and will not impact how the report engine logs on to a database. (I think of it as a gray car vs. a red car. Same engine, just the color is different)
  Ludek
  Follow us on Twitter http://twitter.com/SAPCRNetSup
  Got Enhancement ideas? Try the [SAP Idea Place|https://ideas.sap.com/community/products_and_solutions/crystalreports]

• How to use multiple VCI strings for lap 1300 and 1200 (option 60) in one pool?

  Hi All,
  Hope to you a very happy new year,
  I have two differnt LAP 1300 and 1200 in my network and I need to add theme to the WLC,
  I successed to add one of theme by the option 60 in the DHCP pool at the Core SW,
  So my quetion is below:
  How to use multiple VCI strings for lap 1300 and 1200 (option 60) in one pool?
  Thanks in Advanced,
  Ahmed,

  To add to Scott's post.  Option 60 would be useful if you needed to put certain types of AP on specific controllers.  Otherwise, no real need to use it for the most part.
  Though, I do recall an issue a few years ago that some windows machines had issues getting DHCP if option 43 is being returned.
  Now, on an IOS switch, you can only configure one option 60 per DHCP scope
  HTH,
  Steve
  Please remember to rate useful posts, and mark questions as answered

• Creation of input string for SHA-1 in hash total calculation

  In order to create an input string for the SHA-1 algorithm based on the REGUH table I am searching for the ABAP source code which can be used in the user exit of transaction of transaction F110 (Payment Run).
  Can anybody provide me the source code or is there a BAPI or something ?
  Please help. The problem is urgent and my ABAP engineer did not succeed so far developing the solution.
  Best regards, Edwin

  And this will get a base64 encoded hash
  select utl_raw.cast_to_varchar2( utl_encode.base64_encode( dbms_crypto.hash(utl_raw.cast_to_raw('mypass'),3) ) )
  from dual;

• [svn] 3519: Fix typo in error string for situations where there are advanced messaging configuration settings from LCDS used in the configuration files but no AdvancedMessagingSupport service .

  Revision: 3519
  Author: [email protected]
  Date: 2008-10-08 04:17:40 -0700 (Wed, 08 Oct 2008)
  Log Message:
  Fix typo in error string for situations where there are advanced messaging configuration settings from LCDS used in the configuration files but no AdvancedMessagingSupport service. The error string said that there was no flex.messaging.services.AdvancedMessagingService registered but it is the flex.messaging.services.AdvancedMessagingSupport service that needs to be registered.
  Add configuration test that starts the server with a destination that has the reliable property set which is an advanced messaging feature but there is no AdvancedMessagingSupport service registered.
  Modified Paths:
  blazeds/trunk/modules/common/src/flex/messaging/errors.properties
  Added Paths:
  blazeds/trunk/qa/apps/qa-regress/testsuites/config/tests/messagingService/ReliableDestina tionWithNoAdvancedMessagingSupport/
  blazeds/trunk/qa/apps/qa-regress/testsuites/config/tests/messagingService/ReliableDestina tionWithNoAdvancedMessagingSupport/error.txt
  blazeds/trunk/qa/apps/qa-regress/testsuites/config/tests/messagingService/ReliableDestina tionWithNoAdvancedMessagingSupport/services-config.xml

  Hi,
  Unfortunately I already tried all kinds of re-installs (the full list is in my original message). The only one remaining is the reinstall of Windows 8 itself, which I would really like to avoid.
  What I find really strange is the time it takes for the above error message to appear. It's like one hour or even more (never measured exactly, I left the computer running).
  What kind of a timeout is that? I would expect that, if ports are really used by some other application, I get the message in less than a minute (seconds, actually). To me this looks like the emulator itself for some reason believes there's a problem with
  some port while in reality there isn't.
  I'll eventually contact Microsoft Support, thanks for the suggestion.
  ▼
  ▲

• Define Search String for EBS in SAP 4.6c

  Hi All,
  I have some question for search string for EBS in SAP 4.6c. I have already done this thing in ECC 6 and work well with "target field" as account number. but in 4.6c target field account number doesn't exist. Please suggest me, if there is a same way like account number target field in 4.6c?
  Thanks in advance
  Glenn

  Hi Shanumonu,
  Thx for the answer, you save my life!
  But I have another issued. I already implement SE11 instruction, but item with wrong note to payee number from MT940 keep cleared. Do you have suggestion for me?
  Thanks,
  Glenn

• Show Error string for all the components in a form at a time

  How do I show all the error strings for all the components in the form when the submit button is clicked?

  This code answers your question:
  <?xml version="1.0"?>
  <mx:Application xmlns:mx="http://www.adobe.com/2006/mxml">
    <mx:Script>
      <![CDATA[
        import mx.events.ValidationResultEvent;
        import mx.validators.ZipCodeValidator;
        import flash.events.MouseEvent;
        public var v:ZipCodeValidator = new ZipCodeValidator();
        public var vResult:ValidationResultEvent;
        public function performValidation():void {
          v.domain = "US or Canada";
          v.listener=myZip;
          vResult = v.validate(myZip.text);
          if (vResult.type==ValidationResultEvent.INVALID) {
            myZip.dispatchEvent(new MouseEvent(MouseEvent.MOUSE_OUT));            
            myZip.dispatchEvent(new MouseEvent(MouseEvent.MOUSE_OVER));
      ]]>
    </mx:Script>
    <mx:TextInput id="myZip"/>
    <mx:Button label="Submit" click="performValidation();"/>
  </mx:Application>
  If this post answers your question or helps, please mark it as such. Thanks!
  http://www.stardustsystems.com
  http://www.stardustsystems.com/blog
  Adobe Flex Development and Support Services

• Save Query - An error occurred while creating connection strings for the query

  A workbook trying to edit and reload I get the following error "Save Query - An error occurred while creating connection strings for the query" No Power Pivot data model or anything.

  I am getting the same error when editing a Power Query in an Excel spreadsheet. It happens when I change a Group By step to do a Sum instead of Count Rows.

• VISA and Scan string for tokens

  Hi there,
  I am currently developing a piece of software which needs to take in data from an Arduino board via the serial port and parse the input accordingly.
  I have the 2 pieces of code working perfectly well separately, but I can not seem to figure out why they are not functioning properly together.
  Just now, the input is being retrieved fine and passed into the Scan string for tokens method, but it is not being split on the tokens, it is just outputting the string as a whole.
  The input is in the form of 1:0 2:0 3:1 etc. so I am trying to split it on any spaces found.  If I attach a string to the Scan strings for tokens it works fine, just not when I am attaching the data from the serial port to it.
  Any help would be appreciated.
  Attachments:
  input manipulation.vi ‏16 KB

  Hi,
  In the output which you are getting from the serial port, is there space between 1:0 and 2:0 and 3:1? If there is no space between them, then it wont be able to scan for tokens and will output the whole string. I don't have the hardware here and so don't know what exactly is the output which you are receiving. Try to see in the read buffer indicator whether the tokens are seperated by a space or not.
  I have attached your vi after adding a small part in it. If the problem is with the spacing then this will work fine for 1:0 2:0 3:1.
  Regards,
  Nitzz
  (Give kudos to good Answers , Mark it as a Solution if your problem is Solved) 
  Attachments:
  input manipulation.vi ‏18 KB