OAM modules
Hi ,
What modules is OAM Dashboard is so helpful to you or you "care" to browse/check the most?
Please select top 5 or more:
ADMINISTRATION
System Configuration
=============
Hosts
AutoConfig
License Manager
Application Services
============
Generic Services
Request Processing Managers
Transaction Managers
Workflow
======
Home
Work Item Metrics
Agent Activity
Background Engines
Notification Mailer
Service Components
Purge
Concurrent Requests
=============
Submit New
Pending
Running
Completed (Last Hour)
Service Fulfillment Manager
================
Service Fulfillment Manager
Others
====
Applications Manager LogMONITORING
Availability
======
Hosts
Database
Web Components
Internal Concurrent Manager
Request Processing Managers
Transaction Managers
Forms
Workflow
Business Flows
Performance
========
SQL Activity
Jserv Usage
Forms Sessions
Forms Runtime Processes
Concurrent Processing Reports
Concurrent Processing Charts
Concurrent Request Runaways
Workflow
Current Activity
=========
System Alerts
Database Sessions
Invalid Objects
Forms Runaway Processes
Forms Sessions
Forms Runtime Processes
Application Services
Activity Monitors
Concurrent Requests
Critical Activities
Logs
System Configuration
=============
Overview
Database Init.ora Setting
Applications Context
Site-level Profiles
Usage
====
Applications Usage Reports
Concurrent Processing Reports
Custom Reporting Utilities
================
SQL ExtensionsThanks a lot
Ms KK
Edited by: user_unlimited on May 7, 2010 4:23 AM
Hi Msk;
There is no specific answer or document for your question. It depends what you need and when you need. For instance i am suing License manager when i need to add module or i am using Workflow when i need to setup and monitor it or i am using OAM Dashboard to understand mainly what is happening on my instance
Regard
Helios
Similar Messages
-
Hi All,
Console Exception
Message The server encountered an unexpected condition which prevented it from fulfilling the request.
Error opening /com/bea/alsb/console/oam/module/Module.jpf.
An unexpected error occurred.
Error opening /com/bea/alsb/console/oam/module/Module.jpf.
An unexpected error occurred.
Console Exception
Message The server encountered an unexpected condition which prevented it from fulfilling the request.
Console Exception
Message The server encountered an unexpected condition which prevented it from fulfilling the request.
Console Exception
Message The server encountered an unexpected condition which prevented it from fulfilling the request.
I couldn't start the OSB console. Please suggest for any solution.
Thanks!!I restart the server and found the below error in log file:
<Jun 17, 2014 6:01:01 PM MDT> <Notice> <StdErr> <BEA-000000> <[ERROR] DefaultExceptionsHandler - Throwable com.bea.alsb.console.common.base.SBConsoleAccessException unhandled by the current page flow (and any shared flow)
Throwable: com.bea.alsb.console.common.base.SBConsoleAccessException: The current login role is not authorized to use the console action: "/sbModules"
Stack Trace:
com.bea.alsb.console.common.base.SBConsoleAccessException: The current login role is not authorized to use the console action: "/sbModules"
<Jun 17, 2014 6:01:02 PM MDT> <Error> <ALSB Console> <BEA-494002> <Internal error occured in OSBConsole : The current login role is not authorized to use the console action: "/ViewChangeCenter"
com.bea.alsb.console.common.base.SBConsoleAccessException: The current login role is not authorized to use the console action: "/ViewChangeCenter"
<Jun 17, 2014 6:01:02 PM MDT> <Error> <netuix> <BEA-423405> <An exception [javax.servlet.ServletException: com.bea.alsb.console.common.base.SBConsoleAccessException: The current login role is not authorized to use the console action: "/sbSubModules"] was thrown while rendering the content at [/com/bea/alsb/console/oam/module/Module.jpf].
com.bea.portlet.adapter.scopedcontent.ActionLookupFailedException: javax.servlet.ServletException: com.bea.alsb.console.common.base.SBConsoleAccessException: The current login role is not authorized to use the console action: "/sbSubModules"
<Jun 17, 2014 6:01:02 PM MDT> <Error> <netuix> <BEA-423137> <There was an error loading the requested URI /com/bea/alsb/console/oam/module/Module.jpf.>
<Jun 17, 2014 6:01:02 PM MDT> <Error> <netuix> <BEA-423223> <There was an error while running a lifecycle stage :: Lifecycle: UIControl.render :: for the control :: null ::.
com.bea.netuix.nf.UIControlException: com.bea.portlet.adapter.scopedcontent.ActionLookupFailedException: javax.servlet.ServletException: com.bea.alsb.console.common.base.SBConsoleAccessException: The current login role is not authorized to use the console action: "/sbSubModules"
Thanks,
Aman -
Hello All
I have a problem I have been trying to research for a while. Basically, as part of a form-based login, I want to perform some checks for the user to see if they have signed an acceptable use agreement and make sure their current signature is valid. I have had a few suggestions to just do this via OAM using header variables to the acceptable use page, but this would add another step in the login process whereby all users would be redirected back to the page, then sent to their original page. Given I have a large population of users, I think this would be pretty inefficient and would like to do it as part of the login process. I am writing an authentication plugin dll to use as part of the form-based authentication module, but wanted to see if anyone had any opinions on better options.
Also, in terms of process flow, one question I do have is based on the processing of the plugin. If I send the uid of the user to the plugin, it checks it, and I send back a success/failure, can I program results in the plugin process based on the success/failure. for example, if the plugin returns a failure, then the user is redirected to the AUP page, if it is successful, they just go on to the original resource requested?
Any help you can give would be appreciated.
Thanks
NickHi Nick,
Is this application specific or overall SSO. What you can do is add an boolean attribute for inetorgperson class in ldap for UAP and pass that attribute through OAM to the passthrough script. If you use OVD, you can also attach the attribute with an adapter to the App DB. This will be faster and mostly OOTB to be supportable and maintainable. We do not see any performance degradation compared to the Oracle OOTB Scripts such as SecurID which does post processing using a perl script.
If you are passing the attribute in the SSO session to the post processing script, you just need to check if the value is enabled/disabled and can redirect the user to the initial URL. If the UAP is application specific, more design is needed to skip UAP check for Application Users who are not required to agree with UAP.
Thanks
Ramesh GK -
OAM Authentication Modules for 11g
Is it possible to have OAM 11g do a second authentication with either RSA or a Radius server? We want the user to login with the user name and password and then do a second auth with a physical token before allowing access.
Thanks.Hi!
I had exactly the same requirment. Besides user and password, I needed to validate
RSA token. We started a Service Request to ask for it, because it was posible
in 10g but not in 11g.
We had two options:
1. Wait for the new release
2. Develop a custom plugin
We went for option 2. We created a custom authentication login which called
a WebService for validating RSA token. That plugin was added as
a final step after user identification and user authentication. This option will be
temporary, but it saved my job and the reputation of Oracle Access Manager, jajajja
You can find more information on how to develop a custom plugin at
[http://docs.oracle.com/cd/E21764_01/doc.1111/e12491/authnapi.htm]
Best regards,
from Mexico city
Jesús García -
Unable to authenticate users using Custom plugins in OAM 11g
We are working on a requirement in which we have to write a custom authentication plugin in OAM 11g.
we were able to import and activate the plugin
we created a new authentication module with steps in the following order
1)UserIdentificationPlugin
2)UserAuthenticationPlugin
3)Our custom plugin to create custom responses(We just created the class with mandatory methods and process method returning success)
but finally when we try to authenticate,authentication fails resulting in OAM-2 error.We had entered valid credentials
Can somebody please help me on resolving this issue.
The plugin code,manifest file and Metadata XML is shared below.
Plugin Code
public class NewPlugin extends AbstractAuthenticationPlugIn {
private static final String CLASS_NAME = "FirstTestClass";
public ExecutionStatus initialize (PluginConfig config){
super.initialize(config);
if(LOGGER.isLoggable(Level.FINE)){
LOGGER.logp(Level.FINE,CLASS_NAME,"initialize","Entering initialize");
return ExecutionStatus.SUCCESS;
@Override
public String getDescription() {
// TODO Auto-generated method stub
return null;
@Override
public Map<String, MonitoringData> getMonitoringData() {
// TODO Auto-generated method stub
return null;
@Override
public String getPluginName() {
// TODO Auto-generated method stub
return null;
@Override
public int getRevision() {
// TODO Auto-generated method stub
return 0;
@Override
public ExecutionStatus process(AuthenticationContext context)
throws AuthenticationException {
if(LOGGER.isLoggable(Level.FINE)){
LOGGER.logp(Level.FINE,CLASS_NAME,"initialize","Entering process");
return ExecutionStatus.SUCCESS;
@Override
public void setMonitoringStatus(boolean arg0) {
// TODO Auto-generated method stub
@Override
public boolean getMonitoringStatus() {
// TODO Auto-generated method stub
return false;
MANIFEST.MF
Manifest-Version: 1.0
Bundle-ManifestVersion: 2
Bundle-Name: NewPlugin Plug-in
Bundle-SymbolicName: NewPlugin
Bundle-Version: 1.0.0
ImportPackage:org.osgi.framework;version="1.3.0",oracle.security.am.plugin,oracle.security.am.plugin.authn,oracle.security.am.plugin.api,oracle.security.am.common.utilities.principal,oracle.security.idm,javax.naming,javax.sql,javax.security.auth
Bundle-RequiredExecutionEnvironment: JavaSE-1.6
METADATA XML
<?xml version="1.0" encoding="UTF-8" ?>
<Plugin name="NewPlugin" type="Authentication">
<author>me</author>
<email>[email protected]</email>
<creationDate>11:40:20,2012-13-02</creationDate>
<version>1</version>
<description>Custom User Authentication Plugin</description>
<interface>oracle.security.am.plugin.authn.AbstractAuthenticationPlugIn</interface>
<implementation>newplugin.NewPlugin</implementation>
<configuration>
<AttributeValuePair>
<Attribute type="String" length="20">DataSource</Attribute>
<mandatory>true</mandatory>
<instanceOverride>false</instanceOverride>
<globalUIOverride>true</globalUIOverride>
<value>jdbc/CISCO</value>
</AttributeValuePair>
</configuration>
</Plugin>Your search results show that the user "collini" was not found (nentries=0). This could be caused by a number of reasons.
1) The user doesn't exist under "ou=people,dc=our,dc=domain"
2) The user doesn't contain the posixAccount objectclass
3) The user account that performed the search doesn't have access rights to read/search that user account
What user account was used to BIND on the connection that the search was done on?
Try performing the same exact search with an account you know can retrieve the entry. For example:
ldapsearch -D "cn=Directory Manager" -w - -b ou=people,dc=our,dc=domain -s one "(&(objectClass=posixAccount)(uid=collini))"
If the entry doesn't return as a result of the search then either #1 or #2 above is the problem. If the entry does return then #3 is your problem. -
Error when trying to access OAM 11g Admin console
I am getting an error when I try to access the OAM admin console, the page appears after I enter http://hostname:14100/oam but the login box has the following message in it:
System error. Please re-try your action. If you continue to get this error, please contact the Administrator.
I tried entering http://hostname:14100/oam_console but get a 404 error
The log file outputs the following:
[oracle@core bin]$ startManagedWebLogic.sh oam_server1
JAVA Memory arguments: -Xms256m -Xmx512m -XX:MaxPermSize=512m
WLS Start Mode=Production
CLASSPATH=/opt/oracle/product/Middleware/oracle_common/modules/oracle.jdbc_11.1.1/ojdbc6dms.jar::/opt/oracle/product/Middleware/Oracle_IDM1/oam/server/policy/sts-policies.jar:/opt/oracle/product/Middleware/patch_wls1035/profiles/default/sys_manifest_classpath/weblogic_patch.jar:/opt/oracle/product/Middleware/patch_ocp360/profiles/default/sys_manifest_classpath/weblogic_patch.jar:/opt/oracle/product/Middleware/jdk/lib/tools.jar:/opt/oracle/product/Middleware/wlserver_10.3/server/lib/weblogic_sp.jar:/opt/oracle/product/Middleware/wlserver_10.3/server/lib/weblogic.jar:/opt/oracle/product/Middleware/modules/features/weblogic.server.modules_10.3.5.0.jar:/opt/oracle/product/Middleware/wlserver_10.3/server/lib/webservices.jar:/opt/oracle/product/Middleware/modules/org.apache.ant_1.7.1/lib/ant-all.jar:/opt/oracle/product/Middleware/modules/net.sf.antcontrib_1.1.0.0_1-0b2/lib/ant-contrib.jar:/opt/oracle/product/Middleware/oracle_common/soa/modules/commons-cli-1.1.jar:/opt/oracle/product/Middleware/oracle_common/soa/modules/oracle.soa.mgmt_11.1.1/soa-infra-mgmt.jar:/opt/oracle/product/Middleware/Oracle_IDM1/oam/agent/modules/oracle.oam.wlsagent_11.1.1/oam-wlsagent.jar:/opt/oracle/product/Middleware/oracle_common/modules/oracle.jrf_11.1.1/jrf.jar:/opt/oracle/product/Middleware/wlserver_10.3/common/derby/lib/derbyclient.jar:/opt/oracle/product/Middleware/wlserver_10.3/server/lib/xqrl.jar
PATH=/opt/oracle/product/Middleware/wlserver_10.3/server/bin:/opt/oracle/product/Middleware/modules/org.apache.ant_1.7.1/bin:/opt/oracle/product/Middleware/jdk/jre/bin:/opt/oracle/product/Middleware/jdk/bin:/usr/kerberos/bin:/usr/local/bin:/usr/bin:/bin:/usr/X11R6/bin:/opt/Oracle/bin:/opt/oracle/product/Middleware/user_projects/domains/iam/bin:/opt/oracle/product/Middleware/OPatch:/opt/oracle/product/11.2.0/dbhome_1/bin
* To start WebLogic Server, use a username and *
* password assigned to an admin-level user. For *
* server administration, use the WebLogic Server *
* console at http://hostname:port/console *
starting weblogic with Java version:
java version "1.6.0_24"
Java(TM) SE Runtime Environment (build 1.6.0_24-b07)
Oracle JRockit(R) (build R28.1.3-11-141760-1.6.0_24-20110301-1432-linux-x86_64, compiled mode)
Starting WLS with line:
/opt/oracle/product/Middleware/jdk/bin/java -server -Xms256m -Xmx512m -XX:MaxPermSize=512m -Dweblogic.Name=oam_server1 -Djava.security.policy=/opt/oracle/product/Middleware/wlserver_10.3/server/lib/weblogic.policy -Dweblogic.ProductionModeEnabled=true -Dweblogic.security.SSL.trustedCAKeyStore=/opt/oracle/product/Middleware/wlserver_10.3/server/lib/cacerts -da -Dplatform.home=/opt/oracle/product/Middleware/wlserver_10.3 -Dwls.home=/opt/oracle/product/Middleware/wlserver_10.3/server -Dweblogic.home=/opt/oracle/product/Middleware/wlserver_10.3/server -Dcommon.components.home=/opt/oracle/product/Middleware/oracle_common -Djrf.version=11.1.1 -Dorg.apache.commons.logging.Log=org.apache.commons.logging.impl.Jdk14Logger -Ddomain.home=/opt/oracle/product/Middleware/user_projects/domains/iam -Djrockit.optfile=/opt/oracle/product/Middleware/oracle_common/modules/oracle.jrf_11.1.1/jrocket_optfile.txt -Doracle.server.config.dir=/opt/oracle/product/Middleware/user_projects/domains/iam/config/fmwconfig/servers/oam_server1 -Doracle.domain.config.dir=/opt/oracle/product/Middleware/user_projects/domains/iam/config/fmwconfig -Digf.arisidbeans.carmlloc=/opt/oracle/product/Middleware/user_projects/domains/iam/config/fmwconfig/carml -Digf.arisidstack.home=/opt/oracle/product/Middleware/user_projects/domains/iam/config/fmwconfig/arisidprovider -Doracle.security.jps.config=/opt/oracle/product/Middleware/user_projects/domains/iam/config/fmwconfig/jps-config.xml -Doracle.deployed.app.dir=/opt/oracle/product/Middleware/user_projects/domains/iam/servers/oam_server1/tmp/_WL_user -Doracle.deployed.app.ext=/- -Dweblogic.alternateTypesDirectory=/opt/oracle/product/Middleware/Oracle_IDM1/oam/agent/modules/oracle.oam.wlsagent_11.1.1,/opt/oracle/product/Middleware/oracle_common/modules/oracle.ossoiap_11.1.1,/opt/oracle/product/Middleware/oracle_common/modules/oracle.oamprovider_11.1.1 -Djava.protocol.handler.pkgs=oracle.mds.net.protocol -Dweblogic.jdbc.remoteEnabled=false -DOAM_POLICY_FILE=/opt/oracle/product/Middleware/user_projects/domains/iam/config/fmwconfig/oam-policy.xml -DOAM_CONFIG_FILE=/opt/oracle/product/Middleware/user_projects/domains/iam/config/fmwconfig/oam-config.xml -DOAM_ORACLE_HOME=/opt/oracle/product/Middleware/Oracle_IDM1/oam -Doracle.security.am.SERVER_INSTNCE_NAME=oam_server1 -Does.jars.home=/opt/oracle/product/Middleware/Oracle_IDM1/oam/server/lib/oes-d8 -Does.integration.path=/opt/oracle/product/Middleware/Oracle_IDM1/oam/server/lib/oeslib/oes-integration.jar -Does.enabled=true -Djavax.xml.soap.SOAPConnectionFactory=weblogic.wsee.saaj.SOAPConnectionFactoryImpl -Djavax.xml.soap.MessageFactory=oracle.j2ee.ws.saaj.soap.MessageFactoryImpl -Djavax.xml.soap.SOAPFactory=oracle.j2ee.ws.saaj.soap.SOAPFactoryImpl -Doracle.oaam.home=/opt/oracle/product/Middleware/Oracle_IDM1/oaam/ -Doracle.oaam.home=/opt/oracle/product/Middleware/Oracle_IDM1/oaam/ -Doracle.oaam.home=/opt/oracle/product/Middleware/Oracle_IDM1/oaam/ -Djava.awt.headless=true -Dem.oracle.home=/opt/oracle/product/Middleware/oracle_common -Djava.awt.headless=true -Dweblogic.management.discover=false -Dweblogic.management.server=http://core.apteclabs.edu:7001 -Dwlw.iterativeDev=false -Dwlw.testConsole=false -Dwlw.logErrorsToConsole=false -Dweblogic.ext.dirs=/opt/oracle/product/Middleware/patch_wls1035/profiles/default/sysext_manifest_classpath:/opt/oracle/product/Middleware/patch_ocp360/profiles/default/sysext_manifest_classpath weblogic.Server
[WARN ][jrockit] MaxPermSize=512m ignored: Not a valid option for JRockit
[WARN ] Use of -Djrockit.optfile is deprecated and discouraged.
<Aug 16, 2011 9:34:29 AM EDT> <Info> <Security> <BEA-090905> <Disabling CryptoJ JCE Provider self-integrity check for better startup performance. To enable this check, specify -Dweblogic.security.allowCryptoJDefaultJCEVerification=true>
<Aug 16, 2011 9:34:36 AM EDT> <Info> <Security> <BEA-090906> <Changing the default Random Number Generator in RSA CryptoJ from ECDRBG to FIPS186PRNG. To disable this change, specify -Dweblogic.security.allowCryptoJDefaultPRNG=true>
<Aug 16, 2011 9:34:37 AM EDT> <Info> <WebLogicServer> <BEA-000377> <Starting WebLogic Server with Oracle JRockit(R) Version R28.1.3-11-141760-1.6.0_24-20110301-1432-linux-x86_64 from Oracle Corporation>
<Aug 16, 2011 9:34:45 AM EDT> <Info> <Security> <BEA-090065> <Getting boot identity from user.>
Enter username to boot WebLogic server:weblogic
Enter password to boot WebLogic server:
<Aug 16, 2011 9:34:54 AM EDT> <Info> <Management> <BEA-141107> <Version: WebLogic Server 10.3.5.0 Fri Apr 1 20:20:06 PDT 2011 1398638 >
<Aug 16, 2011 9:37:45 AM EDT> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to STARTING>
<Aug 16, 2011 9:37:45 AM EDT> <Info> <WorkManager> <BEA-002900> <Initializing self-tuning thread pool>
<Aug 16, 2011 9:38:02 AM EDT> <Notice> <Log Management> <BEA-170019> <The server log file /opt/oracle/product/Middleware/user_projects/domains/iam/servers/oam_server1/logs/oam_server1.log is opened. All server side log events will be written to this file.>
Aug 16, 2011 9:38:25 AM oracle.security.am.common.nap.util.NAPLogger log
SEVERE: Failed to communicate with any of configured Access Server, ensure that it is up and running.
<Aug 16, 2011 9:38:27 AM EDT> <Notice> <Security> <BEA-090082> <Security initializing using security realm myrealm.>
<Aug 16, 2011 9:38:52 AM EDT> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to STANDBY>
<Aug 16, 2011 9:38:52 AM EDT> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to STARTING>
<Aug 16, 2011 9:39:28 AM EDT> <Warning> <Munger> <BEA-2156203> <A version attribute was not found in element web-app in the deployment descriptor in /opt/oracle/product/Middleware/Oracle_IDM1/oam/agent/apps/oam-wlsagent-logout.war/WEB-INF/web.xml. A version attribute is required, but this version of the Weblogic Server will assume that the JEE5 is used. Future versions of the Weblogic Server will reject descriptors that do not specify the JEE version.>
<Aug 16, 2011 9:39:46 AM EDT> <Warning> <Coherence> <BEA-000000> <2011-08-16 09:39:46.790/320.434 Oracle Coherence GE 3.5.3/465p2 <Warning> (thread=DistributedCache, member=3): Assigned 257 orphaned primary partitions>
[EL Info]: 2011-08-16 09:39:47.585--ServerSession(474132858)--EclipseLink, version: Eclipse Persistence Services - 1.1.0.r3634
[EL Info]: 2011-08-16 09:39:48.526--ServerSession(474132858)--file:/opt/oracle/product/Middleware/Oracle_IDM1/oam/server/lib/oes-d8/jps-internal.jar-JpsDBDataManager login successful
<Aug 16, 2011 9:40:01 AM EDT> <Notice> <Log Management> <BEA-170027> <The Server has established connection with the Domain level Diagnostic Service successfully.>
<Aug 16, 2011 9:40:01 AM EDT> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to ADMIN>
<Aug 16, 2011 9:40:01 AM EDT> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to RESUMING>
<Aug 16, 2011 9:40:02 AM EDT> <Notice> <Server> <BEA-002613> <Channel "Default" is now listening on 192.168.184.128:14100 for protocols iiop, t3, ldap, snmp, http.>
<Aug 16, 2011 9:40:02 AM EDT> <Notice> <Server> <BEA-002613> <Channel "Default[1]" is now listening on fe80:0:0:0:20c:29ff:fe26:71ec:14100 for protocols iiop, t3, ldap, snmp, http.>
<Aug 16, 2011 9:40:02 AM EDT> <Notice> <Server> <BEA-002613> <Channel "Default[2]" is now listening on 127.0.0.1:14100 for protocols iiop, t3, ldap, snmp, http.>
<Aug 16, 2011 9:40:02 AM EDT> <Notice> <Server> <BEA-002613> <Channel "Default[3]" is now listening on 0:0:0:0:0:0:0:1:14100 for protocols iiop, t3, ldap, snmp, http.>
<Aug 16, 2011 9:40:02 AM EDT> <Notice> <WebLogicServer> <BEA-000330> <Started WebLogic Managed Server "oam_server1" for domain "iam" running in Production Mode>
<Aug 16, 2011 9:40:04 AM EDT> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to RUNNING>
<Aug 16, 2011 9:40:04 AM EDT> <Notice> <WebLogicServer> <BEA-000360> <Server started in RUNNING mode>
<Aug 16, 2011 9:43:32 AM EDT> <Error> <HTTP> <BEA-101017> <[ServletContext@477181353[app:oam_server module:oam path:/oam spec-version:2.5]] Root cause of ServletException.
weblogic.servlet.jsp.CompilationException: Failed to compile JSP /index.jsp
index.jsp:2:4: No tag library could be found with this URI. Possible causes could be that the URI is incorrect, or that there were errors during parsing of the .tld file.
<%@taglib uri="http://beehive.apache.org/netui/tags-html-1.0" prefix="netui"%>
^----^
index.jsp:2:4: No tag library could be found with this URI. Possible causes could be that the URI is incorrect, or that there were errors during parsing of the .tld file.
<%@taglib uri="http://beehive.apache.org/netui/tags-html-1.0" prefix="netui"%>
^----^
index.jsp:3:4: No tag library could be found with this URI. Possible causes could be that the URI is incorrect, or that there were errors during parsing of the .tld file.
<%@taglib uri="http://beehive.apache.org/netui/tags-databinding-1.0" prefix="netui-data"%>
^----^
index.jsp:3:4: No tag library could be found with this URI. Possible causes could be that the URI is incorrect, or that there were errors during parsing of the .tld file.
<%@taglib uri="http://beehive.apache.org/netui/tags-databinding-1.0" prefix="netui-data"%>
^----^
index.jsp:4:4: No tag library could be found with this URI. Possible causes could be that the URI is incorrect, or that there were errors during parsing of the .tld file.
<%@taglib uri="http://beehive.apache.org/netui/tags-template-1.0" prefix="netui-template"%>
^----^
index.jsp:4:4: No tag library could be found with this URI. Possible causes could be that the URI is incorrect, or that there were errors during parsing of the .tld file.
<%@taglib uri="http://beehive.apache.org/netui/tags-template-1.0" prefix="netui-template"%>
^----^
at weblogic.servlet.jsp.JavelinxJSPStub.reportCompilationErrorIfNeccessary(JavelinxJSPStub.java:226)
at weblogic.servlet.jsp.JavelinxJSPStub.compilePage(JavelinxJSPStub.java:162)
at weblogic.servlet.jsp.JspStub.prepareServlet(JspStub.java:256)
at weblogic.servlet.jsp.JspStub.prepareServlet(JspStub.java:216)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:243)
Truncated. see log file for complete stacktrace
>
<Aug 16, 2011 9:43:32 AM EDT> <Notice> <Diagnostics> <BEA-320068> <Watch 'UncheckedException' with severity 'Notice' on server 'oam_server1' has triggered at Aug 16, 2011 9:43:32 AM EDT. Notification details:
WatchRuleType: Log
WatchRule: (SEVERITY = 'Error') AND ((MSGID = 'WL-101020') OR (MSGID = 'WL-101017') OR (MSGID = 'WL-000802') OR (MSGID = 'BEA-101020') OR (MSGID = 'BEA-101017') OR (MSGID = 'BEA-000802'))
WatchData: DATE = Aug 16, 2011 9:43:32 AM EDT SERVER = oam_server1 MESSAGE = [ServletContext@477181353[app:oam_server module:oam path:/oam spec-version:2.5]] Root cause of ServletException.
weblogic.servlet.jsp.CompilationException: Failed to compile JSP /index.jsp
index.jsp:2:4: No tag library could be found with this URI. Possible causes could be that the URI is incorrect, or that there were errors during parsing of the .tld file.
<%@taglib uri="http://beehive.apache.org/netui/tags-html-1.0" prefix="netui"%>
^----^
index.jsp:2:4: No tag library could be found with this URI. Possible causes could be that the URI is incorrect, or that there were errors during parsing of the .tld file.
<%@taglib uri="http://beehive.apache.org/netui/tags-html-1.0" prefix="netui"%>
^----^
index.jsp:3:4: No tag library could be found with this URI. Possible causes could be that the URI is incorrect, or that there were errors during parsing of the .tld file.
<%@taglib uri="http://beehive.apache.org/netui/tags-databinding-1.0" prefix="netui-data"%>
^----^
index.jsp:3:4: No tag library could be found with this URI. Possible causes could be that the URI is incorrect, or that there were errors during parsing of the .tld file.
<%@taglib uri="http://beehive.apache.org/netui/tags-databinding-1.0" prefix="netui-data"%>
^----^
index.jsp:4:4: No tag library could be found with this URI. Possible causes could be that the URI is incorrect, or that there were errors during parsing of the .tld file.
<%@taglib uri="http://beehive.apache.org/netui/tags-template-1.0" prefix="netui-template"%>
^----^
index.jsp:4:4: No tag library could be found with this URI. Possible causes could be that the URI is incorrect, or that there were errors during parsing of the .tld file.
<%@taglib uri="http://beehive.apache.org/netui/tags-template-1.0" prefix="netui-template"%>
^----^
at weblogic.servlet.jsp.JavelinxJSPStub.reportCompilationErrorIfNeccessary(JavelinxJSPStub.java:226)
at weblogic.servlet.jsp.JavelinxJSPStub.compilePage(JavelinxJSPStub.java:162)
at weblogic.servlet.jsp.JspStub.prepareServlet(JspStub.java:256)
at weblogic.servlet.jsp.JspStub.prepareServlet(JspStub.java:216)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:243)
at weblogic.servlet.internal.ServletStubImpl.onAddToMapException(ServletStubImpl.java:416)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:326)
at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
at oracle.security.am.agent.wls.filters.OAMServletAuthenticationFilter.doFilter(OAMServletAuthenticationFilter.java:265)
at oracle.security.am.agent.wls.filters.OAMValidationSystemFilter.doFilter(OAMValidationSystemFilter.java:133)
at oracle.security.wls.oamagent.OAMAgentWrapperFilter.doFilter(OAMAgentWrapperFilter.java:120)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:111)
at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:313)
at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUtil.java:413)
at oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.java:94)
at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:161)
at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:71)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
at oracle.dms.servlet.DMSServletFilter.doFilter(DMSServletFilter.java:136)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.wrapRun(WebAppServletContext.java:3715)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3681)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:120)
at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2277)
at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2183)
at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1454)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:178)
SUBSYSTEM = HTTP USERID = <WLS Kernel> SEVERITY = Error THREAD = [ACTIVE] ExecuteThread: '5' for queue: 'weblogic.kernel.Default (self-tuning)' MSGID = BEA-101017 MACHINE = core.apteclabs.edu TXID = CONTEXTID = 11d1def534ea1be0:7f0631a0:131d2d0d910:-8000-0000000000000020 TIMESTAMP = 1313502212548
WatchAlarmType: AutomaticReset
WatchAlarmResetPeriod: 30000
>
<Aug 16, 2011 9:43:51 AM EDT> <Alert> <Diagnostics> <BEA-320016> <Creating diagnostic image in /opt/oracle/product/Middleware/user_projects/domains/iam/servers/oam_server1/adr/diag/ofm/iam/oam_server1/incident/incdir_8 with a lockout minute period of 1.>
Any ideas?Hi,
Another way to "find" the URL for the oamconsole, that I use if I'm not familiar with the configuration I'm working on is to first log into the Adminserver WL Console, then go to "Deployments".
Then, find "oamconsole" in the Deployments listed (on the right).
Click on that, then on the next page, look for the "Testing" tab. Click on the "Testing" tab, which which show the /oamconsole app.
Click on the "+" to expand the tree, and you should see a bunch of different URLs on the right, e.g., if you have OAM console deployed to managed servers, etc., there'll be different URLs for those, etc., and you can just click on the links to open up OAM Console in your browser.
Jim -
OAM SSO integration question:How can I get a user identity from ObSSOCookie
We are building an OAM SSO solution. The App server is both on OAS and WLS. My question is that, after I get the ObSSOCookie from httprequest.
I need to verify whether the ObSSOCookie is a valid one, and I also need to get user identity from the cookie and pass it to login module to populate user principal
Of course, one way of doing that is to install access manager SDK and go from there. But we support multiple OS, it's a pain to add Access manager SDK to different installer for different OS.
I am trying to use IdentityXML Functions which is a SOAP based webservice so that I don't need to worry about the OS platform. But I can't find a webService which returns user identity based on a valid ObSSOCookie. It seems that I can invoke webService with valide ObSSOCookie, but there is no way to get the user identity back. Am I missing something?
Hope someone can help me out.
Thanks.
-WeiOk. Sounds like you are a vendor trying to play well in an SSO environment.
Here is what I tell OAM customers when they are evaluating software to see if it will cooperate with a system like OAM.
Can the software's native authentication scheme be explicitly turned off (usually a configuration in a file)?
Can the software be configured to accept a token of identity in the form of a Cookie or HeaderVar (also configurable in a file)?
If the answer to both is yes, then the system is capable of 'third party trust' for authentication.
From your perspective, your logic for login should be something like:
Is my native authN turned off?
If yes, can I find the cookie or header that I should be looking for?
If yes, take the value and proceed to create user session for this identity per usual (except that you never evaluated the authN - you trust that it was done).
If no, present the native AuthN scheme anyway.
If you follow this pattern, you are in the good company of folks like PeopleSoft and Plumtree who had these types of integrations working long ago.
Yes, there are other ways to do this but, in my humble opinion, this remains the most stable and effective pattern we see.
What you ask for as the identity token value is up to you. It is often the login ID value that you would have used in your own authN procedure. There's nothing particularly sensitive about having a webgate set headers - they are only available to the server and not to the client. Cookie of course could be seen but can't be spoofed as the webgate has the final word on it's content.
Mark -
Hi All,
I recently installed OAM 11g using following Steps:
1. Installed 11g DB
2. RCU utility for creating OAM repositories
3. Installed WebLogic 11g
4. Added OAM instances to the Weblogic Domain
5. Launch Weblogic
5.1 Weblogic ADMIN console coming up without any issues: http://oam:7001/console
5.2 When I try to Launch OAM App from Weblogic console or CMD prompt (using command: startManagedWeblogic.cmd oam_server1 t3://oam:14001) I get the following error: OAM is not coming up:
============================================================
####<Nov 1, 2010 11:38:30 AM GMT-04:00> <Info> <Management> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625910745> <BEA-141187> <Java system properties are defined as follows:
CSS_TOOLKIT_LOC = C:\Oracle\Middleware\Oracle_IDM1\oam\server\lib\csslib
OAM_CONFIG_FILE = C:\Oracle\MIDDLE~1\USER_P~1\domains\oam\config\fmwconfig\oam-config.xml
OAM_ORACLE_HOME = C:\Oracle\Middleware\Oracle_IDM1\oam
OAM_POLICY_FILE = C:\Oracle\MIDDLE~1\USER_P~1\domains\oam\config\fmwconfig\oam-policy.xml
OAM_PROXY_LOG = C:\Oracle\MIDDLE~1\USER_P~1\domains\oam\config\fmwconfig\oam_proxy_logging.properties
awt.toolkit = sun.awt.windows.WToolkit
common.components.home = C:\Oracle\MIDDLE~1\ORACLE~1
domain.home = C:\Oracle\MIDDLE~1\USER_P~1\domains\oam
em.oracle.home = C:\Oracle\Middleware\oracle_common
file.encoding = Cp1252
file.encoding.pkg = sun.io
file.separator = \
igf.arisidbeans.carmlloc = C:\Oracle\MIDDLE~1\USER_P~1\domains\oam\config\FMWCON~1\carml
igf.arisidstack.home = C:\Oracle\MIDDLE~1\USER_P~1\domains\oam\config\FMWCON~1\arisidprovider
java.awt.graphicsenv = sun.awt.Win32GraphicsEnvironment
java.awt.headless = true
java.awt.printerjob = sun.awt.windows.WPrinterJob
java.class.path = C:\Oracle\MIDDLE~1\WLSERV~1.3\server\ext\jdbc\oracle\11g\ojdbc6dms.jar;C:\Oracle\MIDDLE~1\patch_wls1033\profiles\default\sys_manifest_classpath\weblogic_patch.jar;C:\Oracle\MIDDLE~1\JROCKI~1.0-6\lib\tools.jar;C:\Oracle\MIDDLE~1\WLSERV~1.3\server\lib\weblogic_sp.jar;C:\Oracle\MIDDLE~1\WLSERV~1.3\server\lib\weblogic.jar;C:\Oracle\MIDDLE~1\modules\features\weblogic.server.modules_10.3.3.0.jar;C:\Oracle\MIDDLE~1\WLSERV~1.3\server\lib\webservices.jar;C:\Oracle\MIDDLE~1\modules\ORGAPA~1.1/lib/ant-all.jar;C:\Oracle\MIDDLE~1\modules\NETSFA~1.0_1/lib/ant-contrib.jar;C:\Oracle\MIDDLE~1\ORACLE~1\soa\modules\commons-cli-1.1.jar;C:\Oracle\MIDDLE~1\ORACLE~1\soa\modules\oracle.soa.mgmt_11.1.1\soa-infra-mgmt.jar;C:\Oracle\Middleware\Oracle_IDM1\oam\agent\modules\oracle.oam.wlsagent_11.1.1\oam-wlsagent.jar;C:\Oracle\MIDDLE~1\ORACLE~1\modules\oracle.jrf_11.1.1\jrf.jar;C:\Oracle\MIDDLE~1\WLSERV~1.3\common\derby\lib\derbyclient.jar;C:\Oracle\MIDDLE~1\WLSERV~1.3\server\lib\xqrl.jar
java.class.version = 50.0
java.endorsed.dirs = C:\Oracle\MIDDLE~1\JROCKI~1.0-6\jre\lib\endorsed
java.ext.dirs = C:\Oracle\MIDDLE~1\JROCKI~1.0-6\jre\lib\ext
java.home = C:\Oracle\MIDDLE~1\JROCKI~1.0-6\jre
java.io.tmpdir = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\
java.library.path = C:\Oracle\MIDDLE~1\JROCKI~1.0-6\bin;.;C:\WINDOWS\system32;C:\WINDOWS;C:\Oracle\MIDDLE~1\patch_wls1033\profiles\default\native;C:\Oracle\MIDDLE~1\WLSERV~1.3\server\native\win\32;C:\Oracle\MIDDLE~1\WLSERV~1.3\server\bin;C:\Oracle\MIDDLE~1\modules\ORGAPA~1.1\bin;C:\Oracle\MIDDLE~1\JROCKI~1.0-6\jre\bin;C:\Oracle\MIDDLE~1\JROCKI~1.0-6\bin;c:\app\Administrator\product\11.2.0\dbhome_1\bin;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\Oracle\MIDDLE~1\WLSERV~1.3\server\native\win\32\oci920_8
java.naming.factory.initial = weblogic.jndi.WLInitialContextFactory
java.naming.factory.url.pkgs = weblogic.jndi.factories:weblogic.corba.j2ee.naming.url:weblogic.jndi.factories:weblogic.corba.j2ee.naming.url
java.protocol.handler.pkgs = oracle.mds.net.protocol|weblogic.net
java.runtime.name = Java(TM) SE Runtime Environment
java.runtime.version = 1.6.0_17-b04
java.security.policy = C:\Oracle\MIDDLE~1\WLSERV~1.3\server\lib\weblogic.policy
java.specification.name = Java Platform API Specification
java.specification.vendor = Sun Microsystems Inc.
java.specification.version = 1.6
java.vendor = Oracle Corporation
java.vendor.url = http://www.oracle.com/
java.vendor.url.bug = http://download.oracle.com/docs/cd/E15289_01/go2troubleshooting.html
java.version = 1.6.0_17
java.vm.info = compiled mode
java.vm.name = Oracle JRockit(R)
java.vm.specification.name = Java Virtual Machine Specification
java.vm.specification.vendor = Sun Microsystems Inc.
java.vm.specification.version = 1.0
java.vm.vendor = Oracle Corporation
java.vm.vendor.url = http://www.oracle.com/
java.vm.vendor.url.bug = http://download.oracle.com/docs/cd/E15289_01/go2troubleshooting.html
java.vm.version = R28.0.0-679-130297-1.6.0_17-20100312-2123-windows-ia32
javax.management.builder.initial = weblogic.management.jmx.mbeanserver.WLSMBeanServerBuilder
javax.rmi.CORBA.PortableRemoteObjectClass = weblogic.iiop.PortableRemoteObjectDelegateImpl
javax.rmi.CORBA.UtilClass = weblogic.iiop.UtilDelegateImpl
javax.xml.rpc.ServiceFactory = weblogic.webservice.core.rpc.ServiceFactoryImpl
javax.xml.soap.MessageFactory = weblogic.webservice.core.soap.MessageFactoryImpl
jrf.version = 11.1.1
jrockit.optfile = C:\Oracle\MIDDLE~1\ORACLE~1\modules\oracle.jrf_11.1.1\jrocket_optfile.txt
kernel.download.enabled = false
oes.enabled = true
oes.integration.path = C:\Oracle\Middleware\Oracle_IDM1\oam\server\lib\oeslib\oes-integration.jar
oes.jars.home = C:\Oracle\Middleware\Oracle_IDM1\oam\server\lib\oes-d8
oracle.core.ojdl.logging.applicationcontextprovider = oracle.core.ojdl.weblogic.ApplicationContextImpl
oracle.core.ojdl.logging.componentId = oam_server1
oracle.core.ojdl.logging.usercontextprovider = oracle.core.ojdl.weblogic.UserContextImpl
oracle.domain.config.dir = C:\Oracle\MIDDLE~1\USER_P~1\domains\oam\config\FMWCON~1
oracle.oaam.home = C:\Oracle\Middleware\Oracle_IDM1\oaam\
oracle.security.am.SERVER_INSTNCE_NAME = oam_server1
oracle.security.jps.config = C:\Oracle\MIDDLE~1\USER_P~1\domains\oam\config\fmwconfig\jps-config.xml
oracle.server.config.dir = C:\Oracle\MIDDLE~1\USER_P~1\domains\oam\config\FMWCON~1\servers\oam_server1
org.apache.commons.logging.Log = org.apache.commons.logging.impl.Jdk14Logger
org.omg.CORBA.ORBClass = weblogic.corba.orb.ORB
org.omg.CORBA.ORBSingletonClass = weblogic.corba.orb.ORB
org.xml.sax.driver = weblogic.xml.jaxp.RegistryXMLReader
org.xml.sax.parser = weblogic.xml.jaxp.RegistryParser
os.arch = x86
os.name = Windows 2003
os.version = 5.2
path.separator = ;
platform.home = C:\Oracle\MIDDLE~1\WLSERV~1.3
sun.arch.data.model = 32
sun.boot.class.path = C:\Oracle\MIDDLE~1\JROCKI~1.0-6\jre\lib\resources.jar;C:\Oracle\MIDDLE~1\JROCKI~1.0-6\jre\lib\rt.jar;C:\Oracle\MIDDLE~1\JROCKI~1.0-6\jre\lib\sunrsasign.jar;C:\Oracle\MIDDLE~1\JROCKI~1.0-6\jre\lib\jsse.jar;C:\Oracle\MIDDLE~1\JROCKI~1.0-6\jre\lib\jce.jar;C:\Oracle\MIDDLE~1\JROCKI~1.0-6\jre\lib\charsets.jar;C:\Oracle\MIDDLE~1\JROCKI~1.0-6\jre\classes
sun.boot.library.path = C:\Oracle\MIDDLE~1\JROCKI~1.0-6\jre\bin
sun.cpu.endian = little
sun.cpu.isalist = pentium_pro+mmx pentium_pro pentium+mmx pentium i486 i386 i86
sun.desktop = windows
sun.io.unicode.encoding = UnicodeLittle
sun.java.launcher = SUN_STANDARD
sun.jnu.encoding = Cp1252
sun.management.compiler = Oracle JRockit(R) Optimizing Compiler
sun.os.patch.level = Service Pack 2
user.country = US
user.dir = C:\Oracle\Middleware\user_projects\domains\oam
user.home = C:\Documents and Settings\Administrator
user.language = en
user.name = Administrator
user.timezone = GMT-04:00
vde.home = C:\Oracle\Middleware\user_projects\domains\oam\servers\oam_server1\data\ldap
weblogic.Name = oam_server1
weblogic.ProductionModeEnabled = true
weblogic.alternateTypesDirectory = C:\Oracle\Middleware\Oracle_IDM1\oam\agent\modules\oracle.oam.wlsagent_11.1.1,C:\Oracle\MIDDLE~1\ORACLE~1\modules\oracle.ossoiap_11.1.1,C:\Oracle\MIDDLE~1\ORACLE~1\modules\oracle.oamprovider_11.1.1
weblogic.classloader.preprocessor = weblogic.diagnostics.instrumentation.DiagnosticClassPreProcessor
weblogic.ext.dirs = C:\Oracle\MIDDLE~1\patch_wls1033\profiles\default\sysext_manifest_classpath
weblogic.home = C:\Oracle\MIDDLE~1\WLSERV~1.3\server
weblogic.jdbc.remoteEnabled = false
weblogic.management.discover = false
weblogic.management.server = t3://oam:14001
weblogic.security.SSL.trustedCAKeyStore = C:\Oracle\Middleware\wlserver_10.3\server\lib\cacerts
wls.home = C:\Oracle\MIDDLE~1\WLSERV~1.3\server
wlw.iterativeDev = false
wlw.logErrorsToConsole = false
wlw.testConsole = false
>
####<Nov 1, 2010 11:38:36 AM GMT-04:00> <Notice> <WebLogicServer> <OAM> <oam_server1> <Main Thread> <<WLS Kernel>> <> <> <1288625916703> <BEA-000365> <Server state changed to STANDBY>
####<Nov 1, 2010 11:38:36 AM GMT-04:00> <Notice> <WebLogicServer> <OAM> <oam_server1> <Main Thread> <<WLS Kernel>> <> <> <1288625916703> <BEA-000365> <Server state changed to STARTING>
####<Nov 1, 2010 11:38:36 AM GMT-04:00> <Info> <SAFService> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625916783> <BEA-281003> <SAF Service has been initialized.>
####<Nov 1, 2010 11:38:36 AM GMT-04:00> <Info> <SAFService> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625916813> <BEA-281002> <SAF Service has been started.>
####<Nov 1, 2010 11:38:36 AM GMT-04:00> <Info> <WseeCore> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625916823> <BEA-220502> <The Wsee Service is starting>
####<Nov 1, 2010 11:38:36 AM GMT-04:00> <Info> <Deployer> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625916853> <BEA-149209> <Resuming.>
####<Nov 1, 2010 11:38:39 AM GMT-04:00> <Info> <JDBC> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625919237> <BEA-001177> <Creating Connection Pool named oamDS, URL = jdbc:oracle:thin:@localhost:1521/oimdb, Properties = user=DEV_OAM;oracle.net.CONNECT_TIMEOUT=10000;.>
####<Nov 1, 2010 11:38:39 AM GMT-04:00> <Info> <Common> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625919287> <BEA-000626> <Free resources in pool "oamDS" will be tested every "300" seconds.>
####<Nov 1, 2010 11:38:40 AM GMT-04:00> <Info> <JDBC> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625920068> <BEA-001124> <Created Connection Pool named oamDS.>
####<Nov 1, 2010 11:38:40 AM GMT-04:00> <Info> <JDBC> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625920128> <BEA-001174> <Creating Data Source named oamDS, JNDI Name = jdbc/oamds.>
####<Nov 1, 2010 11:38:40 AM GMT-04:00> <Info> <JDBC> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625920298> <BEA-001512> <Data Source oamDS has been successfully created.>
####<Nov 1, 2010 11:38:40 AM GMT-04:00> <Info> <Diagnostics> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625920399> <BEA-320114> <Initializing the Diagnostics Harvester.>
####<Nov 1, 2010 11:38:40 AM GMT-04:00> <Info> <Diagnostics> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625920409> <BEA-320117> <The Harvester is being disabled because there are no Harvestable types configured specified.>
####<Nov 1, 2010 11:38:40 AM GMT-04:00> <Info> <Diagnostics> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625920419> <BEA-320119> <The Harvester is now in a inactive state.>
####<Nov 1, 2010 11:38:41 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625921761> <BEA-160151> <Registered library Extension-Name: UIX, Specification-Version: 11, Implementation-Version: 11.1.1.1.0 (WAR).>
####<Nov 1, 2010 11:38:42 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625922572> <BEA-160151> <Registered library Extension-Name: adf.oracle.domain, Specification-Version: 1, Implementation-Version: 11.1.1.2.0 (EAR).>
####<Nov 1, 2010 11:38:48 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625928370> <BEA-160151> <Registered library Extension-Name: adf.oracle.domain.webapp, Specification-Version: 1, Implementation-Version: 11.1.1.2.0 (WAR).>
####<Nov 1, 2010 11:38:48 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625928620> <BEA-160151> <Registered library Extension-Name: jsf, Specification-Version: 1.2, Implementation-Version: 1.2.9.0 (WAR).>
####<Nov 1, 2010 11:38:48 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625928691> <BEA-160151> <Registered library Extension-Name: jstl, Specification-Version: 1.2, Implementation-Version: 1.2.0.1 (WAR).>
####<Nov 1, 2010 11:38:48 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625928841> <BEA-160151> <Registered library Extension-Name: ohw-rcf, Specification-Version: 5, Implementation-Version: 5.0 (WAR).>
####<Nov 1, 2010 11:38:48 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625928961> <BEA-160151> <Registered library Extension-Name: ohw-uix, Specification-Version: 5, Implementation-Version: 5.0 (WAR).>
####<Nov 1, 2010 11:38:49 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625929111> <BEA-160151> <Registered library Extension-Name: oracle.adf.dconfigbeans, Specification-Version: 1, Implementation-Version: 11.1.1.2.0 (JAR).>
####<Nov 1, 2010 11:38:49 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625929251> <BEA-160151> <Registered library Extension-Name: oracle.adf.management, Specification-Version: 1, Implementation-Version: 11.1.1.2.0 (WAR).>
####<Nov 1, 2010 11:38:49 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625929281> <BEA-160151> <Registered library Extension-Name: oracle.dconfig-infra, Specification-Version: 11, Implementation-Version: 11.1.1.1.0 (JAR).>
####<Nov 1, 2010 11:38:49 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625929351> <BEA-160151> <Registered library Extension-Name: oracle.jrf.system.filter (WAR).>
####<Nov 1, 2010 11:38:49 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625929572> <BEA-160151> <Registered library Extension-Name: oracle.jsp.next, Specification-Version: 11.1.1, Implementation-Version: 11.1.1 (JAR).>
####<Nov 1, 2010 11:38:49 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625929592> <BEA-160151> <Registered library Extension-Name: oracle.pwdgen, Specification-Version: 11.1.1, Implementation-Version: 11.1.1.2.0 (JAR).>
####<Nov 1, 2010 11:38:49 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625929622> <BEA-160151> <Registered library Extension-Name: oracle.wsm.seedpolicies, Specification-Version: 11.1.1, Implementation-Version: 11.1.1 (JAR).>
####<Nov 1, 2010 11:38:49 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625929642> <BEA-160151> <Registered library Extension-Name: orai18n-adf, Specification-Version: 11, Implementation-Version: 11.1.1.1.0 (JAR).>
####<Nov 1, 2010 11:38:50 AM GMT-04:00> <Error> <Deployer> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625930613> <BEA-149205> <Failed to initialize the application 'oracle.idm.uishell [LibSpecVersion=11.1.1,LibImplVersion=11.1.1]' due to error weblogic.management.DeploymentException: Exception occured while downloading files.
weblogic.management.DeploymentException: Exception occured while downloading files
at weblogic.deploy.internal.targetserver.datamanagement.AppDataUpdate.doDownload(AppDataUpdate.java:43)
at weblogic.deploy.internal.targetserver.datamanagement.DataUpdate.download(DataUpdate.java:56)
at weblogic.deploy.internal.targetserver.datamanagement.Data.prepareDataUpdate(Data.java:97)
at weblogic.deploy.internal.targetserver.BasicDeployment.prepareDataUpdate(BasicDeployment.java:683)
at weblogic.deploy.internal.targetserver.BasicDeployment.stageFilesForStatic(BasicDeployment.java:725)
at weblogic.deploy.internal.targetserver.AppDeployment.prepare(AppDeployment.java:104)
at weblogic.management.deploy.internal.DeploymentAdapter$1.doPrepare(DeploymentAdapter.java:40)
at weblogic.management.deploy.internal.DeploymentAdapter.prepare(DeploymentAdapter.java:191)
at weblogic.management.deploy.internal.AppTransition$1.transitionApp(AppTransition.java:22)
at weblogic.management.deploy.internal.ConfiguredDeployments.transitionApps(ConfiguredDeployments.java:240)
at weblogic.management.deploy.internal.ConfiguredDeployments.prepare(ConfiguredDeployments.java:166)
at weblogic.management.deploy.internal.ConfiguredDeployments.deploy(ConfiguredDeployments.java:122)
at weblogic.management.deploy.internal.DeploymentServerService.resume(DeploymentServerService.java:181)
at weblogic.management.deploy.internal.DeploymentServerService.start(DeploymentServerService.java:97)
at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
at weblogic.work.SelfTuningWorkManagerImpl$WorkAdapterImpl.run(SelfTuningWorkManagerImpl.java:528)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
Caused By: java.net.ConnectException: Tried all: '1' addresses, but could not connect over HTTP to server: 'oam', port: '14001'
at weblogic.net.http.HttpClient.openServer(HttpClient.java:327)
at weblogic.net.http.HttpClient.openServer(HttpClient.java:419)
at weblogic.net.http.HttpClient.New(HttpClient.java:246)
at weblogic.net.http.HttpURLConnection.connect(HttpURLConnection.java:176)
at weblogic.deploy.service.datatransferhandlers.HttpDataTransferHandler.getDataAsStream(HttpDataTransferHandler.java:75)
at weblogic.deploy.service.datatransferhandlers.DataHandlerManager$RemoteDataTransferHandler.getDataAsStream(DataHandlerManager.java:153)
at weblogic.deploy.internal.targetserver.datamanagement.AppDataUpdate.doDownload(AppDataUpdate.java:39)
at weblogic.deploy.internal.targetserver.datamanagement.DataUpdate.download(DataUpdate.java:57)
at weblogic.deploy.internal.targetserver.datamanagement.Data.prepareDataUpdate(Data.java:97)
at weblogic.deploy.internal.targetserver.BasicDeployment.prepareDataUpdate(BasicDeployment.java:683)
at weblogic.deploy.internal.targetserver.BasicDeployment.stageFilesForStatic(BasicDeployment.java:725)
at weblogic.deploy.internal.targetserver.AppDeployment.prepare(AppDeployment.java:104)
at weblogic.management.deploy.internal.DeploymentAdapter$1.doPrepare(DeploymentAdapter.java:40)
at weblogic.management.deploy.internal.DeploymentAdapter.prepare(DeploymentAdapter.java:191)
at weblogic.management.deploy.internal.AppTransition$1.transitionApp(AppTransition.java:22)
at weblogic.management.deploy.internal.ConfiguredDeployments.transitionApps(ConfiguredDeployments.java:240)
at weblogic.management.deploy.internal.ConfiguredDeployments.prepare(ConfiguredDeployments.java:166)
at weblogic.management.deploy.internal.ConfiguredDeployments.deploy(ConfiguredDeployments.java:122)
at weblogic.management.deploy.internal.DeploymentServerService.resume(DeploymentServerService.java:181)
at weblogic.management.deploy.internal.DeploymentServerService.start(DeploymentServerService.java:97)
at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
at weblogic.work.SelfTuningWorkManagerImpl$WorkAdapterImpl.run(SelfTuningWorkManagerImpl.java:528)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
>
####<Nov 1, 2010 11:38:51 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625931064> <BEA-160151> <Registered library Extension-Name: oracle.webcenter.composer, Specification-Version: 11.1.1, Implementation-Version: 11.1.1 (WAR).>
####<Nov 1, 2010 11:38:52 AM GMT-04:00> <Error> <Deployer> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625932005> <BEA-149205> <Failed to initialize the application 'oracle.oaam.libs [LibSpecVersion=11.1.1.3.0,LibImplVersion=11.1.1.3.0]' due to error weblogic.management.DeploymentException: Exception occured while downloading files.
weblogic.management.DeploymentException: Exception occured while downloading files
at weblogic.deploy.internal.targetserver.datamanagement.AppDataUpdate.doDownload(AppDataUpdate.java:43)
at weblogic.deploy.internal.targetserver.datamanagement.DataUpdate.download(DataUpdate.java:56)
at weblogic.deploy.internal.targetserver.datamanagement.Data.prepareDataUpdate(Data.java:97)
at weblogic.deploy.internal.targetserver.BasicDeployment.prepareDataUpdate(BasicDeployment.java:683)
at weblogic.deploy.internal.targetserver.BasicDeployment.stageFilesForStatic(BasicDeployment.java:725)
at weblogic.deploy.internal.targetserver.AppDeployment.prepare(AppDeployment.java:104)
at weblogic.management.deploy.internal.DeploymentAdapter$1.doPrepare(DeploymentAdapter.java:40)
at weblogic.management.deploy.internal.DeploymentAdapter.prepare(DeploymentAdapter.java:191)
at weblogic.management.deploy.internal.AppTransition$1.transitionApp(AppTransition.java:22)
at weblogic.management.deploy.internal.ConfiguredDeployments.transitionApps(ConfiguredDeployments.java:240)
at weblogic.management.deploy.internal.ConfiguredDeployments.prepare(ConfiguredDeployments.java:166)
at weblogic.management.deploy.internal.ConfiguredDeployments.deploy(ConfiguredDeployments.java:122)
at weblogic.management.deploy.internal.DeploymentServerService.resume(DeploymentServerService.java:181)
at weblogic.management.deploy.internal.DeploymentServerService.start(DeploymentServerService.java:97)
at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
at weblogic.work.SelfTuningWorkManagerImpl$WorkAdapterImpl.run(SelfTuningWorkManagerImpl.java:528)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
Caused By: java.net.ConnectException: Tried all: '1' addresses, but could not connect over HTTP to server: 'oam', port: '14001'
at weblogic.net.http.HttpClient.openServer(HttpClient.java:327)
at weblogic.net.http.HttpClient.openServer(HttpClient.java:419)
at weblogic.net.http.HttpClient.New(HttpClient.java:246)
at weblogic.net.http.HttpURLConnection.connect(HttpURLConnection.java:176)
at weblogic.deploy.service.datatransferhandlers.HttpDataTransferHandler.getDataAsStream(HttpDataTransferHandler.java:75)
at weblogic.deploy.service.datatransferhandlers.DataHandlerManager$RemoteDataTransferHandler.getDataAsStream(DataHandlerManager.java:153)
at weblogic.deploy.internal.targetserver.datamanagement.AppDataUpdate.doDownload(AppDataUpdate.java:39)
at weblogic.deploy.internal.targetserver.datamanagement.DataUpdate.download(DataUpdate.java:57)
at weblogic.deploy.internal.targetserver.datamanagement.Data.prepareDataUpdate(Data.java:97)
at weblogic.deploy.internal.targetserver.BasicDeployment.prepareDataUpdate(BasicDeployment.java:683)
at weblogic.deploy.internal.targetserver.BasicDeployment.stageFilesForStatic(BasicDeployment.java:725)
at weblogic.deploy.internal.targetserver.AppDeployment.prepare(AppDeployment.java:104)
at weblogic.management.deploy.internal.DeploymentAdapter$1.doPrepare(DeploymentAdapter.java:40)
at weblogic.management.deploy.internal.DeploymentAdapter.prepare(DeploymentAdapter.java:191)
at weblogic.management.deploy.internal.AppTransition$1.transitionApp(AppTransition.java:22)
at weblogic.management.deploy.internal.ConfiguredDeployments.transitionApps(ConfiguredDeployments.java:240)
at weblogic.management.deploy.internal.ConfiguredDeployments.prepare(ConfiguredDeployments.java:166)
at weblogic.management.deploy.internal.ConfiguredDeployments.deploy(ConfiguredDeployments.java:122)
at weblogic.management.deploy.internal.DeploymentServerService.resume(DeploymentServerService.java:181)
at weblogic.management.deploy.internal.DeploymentServerService.start(DeploymentServerService.java:97)
at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
at weblogic.work.SelfTuningWorkManagerImpl$WorkAdapterImpl.run(SelfTuningWorkManagerImpl.java:528)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
>
####<Nov 1, 2010 11:38:52 AM GMT-04:00> <Info> <Deployer> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625932025> <BEA-149059> <Module dms.war of application DMS Application [Version=11.1.1.1.0] is transitioning from STATE_NEW to STATE_PREPARED on server oam_server1.>
####<Nov 1, 2010 11:38:58 AM GMT-04:00> <Info> <Deployer> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <>
============================================================
Any suggestiongs on as to what might be causing this error?
Did I miss a step in OAM installation?
Thanks for your help in advanceI changed the port as per the doc 1384844.1 and I still get the same problem.
-
OAM 11g BP02 with Kerberos is not working on AIX
Hi,
We are trying to configure OAM 11g with Kerberos on AIX with no success..
Resource is protected according to OAM documentation guide but the oam logs shows the following:
[2012-08-28T00:03:22.305-05:00] [oam_server1] [TRACE] [] [oracle.oam.engine.authn] [tid: [ACTIVE].ExecuteThread:
'2' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000J_fbCuS9h^k5kzWByZ1GF532
00000G,0] [APP: oam_server] [SRC_METHOD: log] [SRC_CLASS: oracle.security.am.engines.common.adapters.OAMLoggerImp
l] Authentication Failed.[[
javax.security.auth.login.LoginException: Bad JAAS configuration: bad URL /home/oracle/oam.keytab
Error java.net.MalformedURLException: no protocol: /home/oracle/oam.keytab
at com.ibm.security.jgss.i18n.I18NException.throwLoginException(I18NException.java:5)
at com.ibm.security.auth.module.Krb5LoginModule.j(Krb5LoginModule.java:537)
at com.ibm.security.auth.module.Krb5LoginModule.b(Krb5LoginModule.java:146)
at com.ibm.security.auth.module.Krb5LoginModule.login(Krb5LoginModule.java:274)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37)
at java.lang.reflect.Method.invoke(Method.java:611)
we are using OAM 11g BP 02.
oam-config.xml is configured as follow:
<Setting Name="KerberosModules" Type="htf:map">
<Setting Name="6DBSE52C" Type="htf:map">
<Setting Name="keytabfile" Type="xsd:string">/home/oracle/oam.keytab</Setting>
<Setting Name="krbconfigfile" Type="xsd:string">/etc/krb5/krb5.conf</Setting>
<Setting Name="name" Type="xsd:string">Kerberos</Setting>
<Setting Name="principal" Type="xsd:string">HTTP/myssoserver@mydomain</Setting>
</Setting>
</Setting>
Please let me know how to get this resolved. Thanks in advance.
Regards.David,
Your Principal name should be the SSO LB URL.(ie :sso.mycomany.com)
ktpass -princ HTTP/sso.mycomany.com@DOMAIN -pass XXXXXXX mapuser DOMAIN\user -out oam.keytab.
Also make sure sso.mycomany.com has a reverse DNS configured correctly.
you can check using dig command
ping sso.mycomany.com
What ever the ip-address
dig -x <IP-ADDRESS>
Check in the reverse DNS section there should be 1 record.
;; ANSWER SECTION:
1.1.1.1.in-addr.arpa. 3600 IN PTR sso.mycomany.com.
Let me know if you have more questions.
Thanks
Saurabh -
Unable to login using OAM Custom Authentication Plugin
Hi,
I have a problem with OAM Custom Authentication Plugin, My Plugin is Activate successfully. When try to login from Access Manager SSO login page, it is unable to login. I am getting followiing message in the log file.
I am return ExecutionStatus.SUCCESS from my Java code and I have only one step where I have attached Plugin and my Steps Orchestration is
On Success -> Success
On Failure -> Failure
On Error -> Failure
Jun 12, 2013 9:06:22 AM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: processing Event:process_creds.
Jun 12, 2013 9:06:22 AM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: Event processing finished :process_creds with status fail.
Jun 12, 2013 9:06:22 AM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: processing Event:is_resource_protected.
Jun 12, 2013 9:06:22 AM oracle.security.am.engines.enginecontroller.AuthzEngineController processEvent
INFO: Processing Event is_resource_protected
Jun 12, 2013 9:06:22 AM oracle.security.am.engines.enginecontroller.AuthzEngineController processEvent
INFO: Is Resource Protected status : success
Jun 12, 2013 9:06:22 AM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: Event processing finished :is_resource_protected with status success.
Jun 12, 2013 9:06:22 AM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: processing Event:check_valid_session.
Jun 12, 2013 9:06:22 AM oracle.security.am.engines.enginecontroller.sso.SSOEngineController processEvent
INFO: Processing Event check_valid_session
Jun 12, 2013 9:06:22 AM oracle.security.am.engines.enginecontroller.sso.SSOEngineController processEvent
INFO: Processing Event check_valid_session
Jun 12, 2013 9:06:22 AM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: Event processing finished :check_valid_session with status fail.
Jun 12, 2013 9:06:22 AM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: processing Event:process_creds.
Jun 12, 2013 9:06:22 AM oracle.security.am.engines.enginecontroller.credcollect.CredCollectEngineController handleProcessCredentials
INFO: Successfully validated the submitted credentials.
Jun 12, 2013 9:06:22 AM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: Event processing finished :process_creds with status success.
Jun 12, 2013 9:06:22 AM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: processing Event:validate_creds.
Jun 12, 2013 9:06:22 AM oracle.security.am.engines.enginecontroller.AuthnEngineController processEvent
INFO: Processing Event validate_creds
Jun 12, 2013 9:06:22 AM oracle.security.am.engines.enginecontroller.authn processEvent
INFO: Policy ID : DB User Authentication Scheme
Jun 12, 2013 9:06:22 AM oracle.security.am.engine.authn.internal.controller.AuthenticationEngineControllerImpl validateUser
INFO: Authentication Scheme Id: DB User Authentication Scheme.
Jun 12, 2013 9:06:22 AM oracle.security.am.engine.authn.internal.controller.AuthenticationEngineControllerImpl validateUser
INFO: Runtime Authentication Scheme: Scheme name: = DB User Authentication Scheme
Scheme Challenge URL: = http://idmlab.tigerit.com:14100/oam/server/
Scheme Challenge Mec: = FORM
Scheme Challenge Par: = {contextType=default, username=string, contextValue=OAM, password=sercure_string, challenge_url=/pages/login.jsp}
Authentication Module Name: = DB Authentication module
Jun 12, 2013 9:06:22 AM oracle.security.am.engine.authn.internal.executor.AuthenticationSchemeExecutor execute
INFO: Authentication Module Factory Class: DB Authentication module.
Jun 12, 2013 9:06:22 AM oracle.security.am.common.diagnostic.DiagnosticUtil getDynamicPath
INFO: DiagnosticUtil: enetered getDynamicPath
Jun 12, 2013 9:06:22 AM oracle.security.am.engines.common.adapters.OAMLoggerImpl info
INFO: Registering collector at runtime.
Jun 12, 2013 9:06:22 AM oracle.security.am.common.diagnostic.impl.MetricHierarchy getOrCreateCollector
INFO: Collector already exists, reusing existing.
Jun 12, 2013 9:06:22 AM oracle.security.am.common.diagnostic.DiagnosticUtil getDynamicPath
INFO: DiagnosticUtil: enetered getDynamicPath
Jun 12, 2013 9:06:22 AM oracle.security.am.engines.common.adapters.OAMLoggerImpl info
INFO: Registering collector at runtime.
Jun 12, 2013 9:06:22 AM oracle.security.am.common.diagnostic.impl.MetricHierarchy getOrCreateCollector
INFO: Collector: ["PluginPhaseEvent.oracle.security.am.plugin.diagnostic.PluginPhaseEvent@6d6a08fb":" Collector : OAMS/OAM/Plugin/AUTHN/Plugin_SamplePlugin/PluginLocate
Type : PHASE_EVENT
Metrics : 511
LogLevel : OFF
EnableRate : false EnablePersistence : false"], registered at runtime.
Jun 12, 2013 9:06:22 AM oracle.security.am.engines.common.adapters.OAMLoggerImpl info
INFO: Registering collector at runtime.
Jun 12, 2013 9:06:22 AM oracle.security.am.common.diagnostic.impl.MetricHierarchy getOrCreateCollector
INFO: Collector already exists, reusing existing.
User Name: test and Password : test
Authentication Successfull return ExecutionStatus.SUCCESS
Jun 12, 2013 9:06:22 AM oracle.security.am.engine.authn.internal.controller.AuthenticationEngineControllerImpl validateUser
INFO: Result of Authentication Scheme Execution: false.
Jun 12, 2013 9:06:22 AM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: Event processing finished :validate_creds with status fail.
Jun 12, 2013 9:06:22 AM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: processing Event:check_authn_retry.
Jun 12, 2013 9:06:22 AM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: Event processing finished :check_authn_retry with status success.
Jun 12, 2013 9:06:22 AM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: processing Event:cred_collect.
Jun 12, 2013 9:06:22 AM oracle.security.am.engines.enginecontroller.credcollect.CredCollectEngineController handleCollectCredentials
INFO: Processing Event cred_collect
Jun 12, 2013 9:06:22 AM oracle.security.am.engines.enginecontroller.credcollect.CredCollectEngineController handleCollectCredentials
INFO: Credential collection process success.
Jun 12, 2013 9:06:22 AM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: Event processing finished :cred_collect with status success.
Jun 12, 2013 9:06:22 AM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: processing Event:PBL_return.
Jun 12, 2013 9:06:22 AM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: Event processing finished :PBL_return with status success.
Can anyone help me regarding this issue.
Thanks
Tamim KhanHi,
Little update about authentication plugin, please see the log file below, Result of Authentication Scheme Execution:true, now but, still the cookie is LOGGEDOUTCONTINUE and still I am unable to login.
Jun 19, 2013 1:51:44 PM oracle.security.am.common.controller.util.BasicCacheHandler sync
INFO: Cache data sync:InProcess for request -414941018507193158;
Jun 19, 2013 1:51:44 PM oracle.security.am.common.controller.util.BasicCacheHandler sync
INFO: Cache data sync:Success for request -414941018507193158;
Jun 19, 2013 1:51:44 PM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: processing Event:process_creds.
Jun 19, 2013 1:51:44 PM oracle.security.am.engines.enginecontroller.credcollect.CredCollectEngineController handleProcessCredentials
INFO: Successfully validated the submitted credentials.
Jun 19, 2013 1:51:44 PM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: Event processing finished :process_creds with status success.
Jun 19, 2013 1:51:44 PM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: processing Event:validate_creds.
Jun 19, 2013 1:51:44 PM oracle.security.am.engines.enginecontroller.AuthnEngineController processEvent
INFO: Processing Event validate_creds
Jun 19, 2013 1:51:44 PM oracle.security.am.engines.enginecontroller.authn processEvent
INFO: Policy ID : DB Authentication Scheme
Jun 19, 2013 1:51:44 PM oracle.security.am.engine.authn.internal.controller.AuthenticationEngineControllerImpl validateUser
INFO: Authentication Scheme Id: DB Authentication Scheme.
Jun 19, 2013 1:51:44 PM oracle.security.am.engine.authn.internal.controller.AuthenticationEngineControllerImpl validateUser
INFO: Runtime Authentication Scheme: Scheme name: = DB Authentication Scheme
Scheme Challenge URL: = http://idmlab.tigerit.com:14100/oam/server/
Scheme Challenge Mec: = FORM
Scheme Challenge Par: = {contextType=external, username=string, contextValue=/oam, password=sercure_string, challenge_url=http://192.168.1.220:14100/ssologin/ssologin.jsp}
Authentication Module Name: = DB Authentication Module
Jun 19, 2013 1:51:44 PM oracle.security.am.engine.authn.internal.executor.AuthenticationSchemeExecutor execute
INFO: Authentication Module Factory Class: DB Authentication Module.
Jun 19, 2013 1:51:44 PM oracle.security.am.common.diagnostic.DiagnosticUtil getDynamicPath
INFO: DiagnosticUtil: enetered getDynamicPath
Jun 19, 2013 1:51:44 PM oracle.security.am.engines.common.adapters.OAMLoggerImpl info
INFO: Registering collector at runtime.
Jun 19, 2013 1:51:44 PM oracle.security.am.common.diagnostic.impl.MetricHierarchy getOrCreateCollector
INFO: Collector already exists, reusing existing.
Jun 19, 2013 1:51:44 PM oracle.security.am.common.diagnostic.DiagnosticUtil getDynamicPath
INFO: DiagnosticUtil: enetered getDynamicPath
Jun 19, 2013 1:51:44 PM oracle.security.am.engines.common.adapters.OAMLoggerImpl info
INFO: Registering collector at runtime.
Jun 19, 2013 1:51:44 PM oracle.security.am.common.diagnostic.impl.MetricHierarchy getOrCreateCollector
INFO: Collector already exists, reusing existing.
User Name: test and Password : test
Set 1st Responce
Set 2nd Responce
Set 3rd Responce
Setting cookie
Authentication Successfull return ExecutionStatus.SUCCESS
Jun 19, 2013 1:51:44 PM oracle.security.am.common.diagnostic.DiagnosticUtil getDynamicPath
INFO: DiagnosticUtil: enetered getDynamicPath
Jun 19, 2013 1:51:44 PM oracle.security.am.engines.common.adapters.OAMLoggerImpl info
INFO: Registering collector at runtime.
Jun 19, 2013 1:51:44 PM oracle.security.am.common.diagnostic.impl.MetricHierarchy getOrCreateCollector
INFO: Collector already exists, reusing existing.
Jun 19, 2013 1:51:44 PM oracle.security.am.engine.authn.internal.controller.AuthenticationEngineControllerImpl validateUser
INFO: Result of Authentication Scheme Execution: true.
Jun 19, 2013 1:51:44 PM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: Event processing finished :validate_creds with status fail.
Jun 19, 2013 1:51:44 PM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: processing Event:check_authn_retry.
Jun 19, 2013 1:51:44 PM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: Event processing finished :check_authn_retry with status success.
Jun 19, 2013 1:51:44 PM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: processing Event:cred_collect.
Jun 19, 2013 1:51:44 PM oracle.security.am.engines.enginecontroller.credcollect.CredCollectEngineController handleCollectCredentials
INFO: Processing Event cred_collect
Jun 19, 2013 1:51:44 PM oracle.security.am.engines.enginecontroller.credcollect.CredCollectEngineController handleCollectCredentials
INFO: Credential collection process success.
Jun 19, 2013 1:51:44 PM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: Event processing finished :cred_collect with status success.
Jun 19, 2013 1:51:44 PM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: processing Event:PBL_return.
Jun 19, 2013 1:51:44 PM oracle.security.am.controller.MasterController processEvent
INFO: Master Controller: Event processing finished :PBL_return with status success.
Jun 19, 2013 1:51:44 PM oracle.security.am.common.controller.util.BasicCacheHandler sync
INFO: Cache data sync:InProcess for request -414941018507193158;
Jun 19, 2013 1:51:44 PM oracle.security.am.common.controller.util.BasicCacheHandler sync
INFO: Cache data sync:Success for request -414941018507193158;
Can anyone help me please.
Thanks
Tamim Khan -
Can anyone explain what "multi-tenant" means with respect to OAM and OIF?
Hi,
I noticed that OAM 11gR2 has several additional authentication modules and schemes out-of-the-box for "MT" or multi-tenant. I've actually tried them, but am not clear exactly what their purpose is?
As a test, I configured the FederationMT module and FederationMTScheme to protect a test resource in OAM, and then when I access the resource, I first get a page with one field for username and a "Sign In" button. After I enter a user name, it goes to a form login page and I can log into the OIF IdP, and that's about it. I guess that I don't see what this accomplishes?
If anyone is familiar with this, please advise.
Thanks,
JimHi,
Thanks for the metalink article. I've read that, and I can understand what the article is describing, but I'm not 100% clear how that relates to the configuration parameters in the FederationMTPlugin. The article talks about a mapping file, but I don't see something like that for configuring the TenantDismbiguationPlugin?
The first step in FederationMTScheme plugin is a TenantDisambiguationPlugin, which takes two parameters:
KEY_IDENTITY_STORE_REF
KEY_FEDERATED_TENANTS (a comma-separated list of "some things")
The steps/orchestration for the FederationMTPlugin has:
Initial Step: FedUserAuthenticationPlugin
TenantDisambiguationPlugin OnSuccess: FedAuthenticationPlugin OnFailure: UserIdentificationPlugin
UserIdentificationPlugin OnSuccess: UserAuthenticationPlugin OnFailure: failure
UserAuthenticationPlugin OnSuccess: success OnFailure: failure
FedAuthnRequestPlugin OnSuccess: success OnFailure: FedUserAuthentication
FedUserAuthenticationPlugin OnSuccess: success OnFailure: TenantAmbiguationPlugin
[The OnError results for all steps are failure, so I haven't shown them.]
So, the first step is the FedUserAuthenticationPlugin (AssertionProcessing), and if that fails, the next step is the TenantDisambiguationPlugin.
I guess all of my questions are around what that TenantAmbiguationPlugin does, and how it works?
I'm guessing that what you enter on the 1st webpage, which asks for a Tenant, is matched against the comma-separated list that is in the plugins "KEY_FEDERATED_TENANTS" parameter.
Is that correct?
But:
a) What happens if there is a match of what you entered vs. what's in the "KEY_FEDERATED_TENANTS" list?
b) What happens if there is NOT a match of what you entered vs. what's in the "KEY_FEDERATED_TENANTS" list?
That article you mentioned calls for a mapping file, that maps what is entered (the tenant) to a user identity store, but where is that in the TenantDisambiguationPlugin's parameters? The only other parameter for that plugin is the "KEY_IDENTITY_STORE_REF" parameter.
Having said that, I described the steps and step orchestration in the FederationMTPlugin above. If the TenantDisambiguationPlugin is suppose to somehow map what's entered to a user identity store name, then, with respect to the FederationMTPlugin, is that mapped user identity store used for the UI and UA steps (i.e., as the "KEY_IDENTITY_STORE_REF" for the UI and UA steps)?
Thanks for your help with this. Oracle's documentation certainly merits some improvement :(...
Jim -
Problem with using OID as Identity Store for OAM
I have oam11.1.1.5.1 and oid 11.1.1.5.
I switched the embedded ldap to OID as the default as well as the system identity store followed the doc http://docs.oracle.com/cd/E21764_01/doc.1111/e15478/datasrc.htm#BHCJEDJA
In the oid I have created the group Administrators and added the users to: weblogic, weblogicoi, oamtester and more.
Only weblogic can sign into the oam console by one login :
http://<host>:/oamconsole , redirected to the page having oam port 14100 with the login wizard, get in with weblogic account credential.
and for the others have to have two logins:
http://<host>:/oamconsole , redirected to the page having oam port 14100 with the login wizard,
After keyed in the user credential, got redirected to back to the page having port 7001 with the login wizard, keyed in the user credential again and got in.
All the passords are using in the oid's, that confirms the oid is the oam's identity store.
Seems weblogic is the seed account. Could I miss something for granting privs for the others? if so what did I miss? Do I have to create an authentication provider with the oid(ldap) in WLS' security domain? If so, is that a mandatory?
Edited by: gadba on Jan 14, 2012 7:06 AMHi,
Did you set the Authentication Module to use your newly created User Identity Store? Or is it still pointing to your default UserIdentityStore1. If not, you will have to modify these configuration in your Access Manager Settings. Also, make sure that your new User Identity store is set as default store as well as system store.
~Yagnesh -
Can SiteMinder and OAM co-exist (SMSession and ObSSOCookie)?
Hi folks,
We currently have SiteMinder in place, but we're migrating to OAM 10.1.4.3.0. At some point, we'll need to have SiteMinder and OAM to co-exist and stand in parallel, so that we can gradually phase out Siteminder, and start protecting all of our resources with OAM. With this in mind, is there a way for the two of these access systems to co-exist? Can they share some common data, so that once user has been authenticated with SM, a cookie is created (similar to SMSession) which would then be understood by the OAM, or vice versa. This way, when the same customer accesses a subsequent resource protected in turn by OAM, the OAM (instead of authenticate and authorize user for the second time) would then read a session cookie, created by the SM and grant access. This scenario should be reversible, and also work the other way around with OAM as an entry point.
Has anyone faced the same issue?
Thank you,
RomanFor apps already protected by SiteMinder:
User get authenticated by SiteMinder; gets SMSession cookie and comes to app protected by OAM
OAM can read the cookie value and treat it as Credentials. For this you need to evaluate how to make OAM understand the SMSession cookie value.
More Info: http://download.oracle.com/docs/cd/E15217_01/doc.1014/e12488/v2authen.htm#BABEAHEB
For apps protected by OAM:
User get authenticated by OAM; gets ObSSOCookie and comes to app protected by OAM
Well, I'm not sure if this is supported by SiteMinder, but there should be some way to read the ObSSOCookie value also. Otherwise, you need to develop your own module.
If you have considerable number of applications, it will be practical if applications are migrated from SM to OAM step by step. I might be wrong with these ideas, but it will be a good experience to involve in such type of discussions. Lets see what the experts have to say on this. -
OAM 11gR2 Authentication using username/password/additional ldap field
I want to add additional credential parameter along with username and password to be validated against LDAP.
Is there any out of the box solution for authentication using username/password/additional ldap field in OAM 11gR2?
This solutions exist in 10g and could not find any OOB feature in 11g.Do you need to accept additional parameter from user via login form & then use it in credential mapping step
Not sure if %% syntax would work .. havent tried it. next option is to develop custom authentication plugin
Additional ldap attribute against static value
If you need to add additional ldap attribute (check against static value) that you can specify in LDAP search filter in "User Identification plugin" configuration
Take a look at "MTLDAPPlugin" under custom authentication modules
Hope this helps -
OAM process takes 100% CPU (strange SQL in it)
Hi!
I have noticed on our PROD that on eprocess is taking more then 7 hours with 100% CPU load. Here is brief detail about it:
03:08:12 apps@PROD> @si 547
Current SQL....have result if session is active....
SQL_FULLTEXT
Select count(distinct(R.Request_ID)) From Fnd_Concurrent_Programs_vl CP, Fnd_User U, Fnd_Concurr
ent_Requests R, Fnd_Responsibility_Tl RES, Fnd_Application_vl A
Elapsed: 00:00:00.06
SID_SERIAL STATE OSUSER TERMINAL LOGON SEC_WAIT LAST_CALL
547,42977 WAITED SHO prod unknown 12.01 12:50:54 26423 26425
RT TIME
Elapsed: 00:00:00.01
SID_SERIAL AUDSID DBPID APPPID USERNAME MODULE ACTION STATUS STATE
547,42977 11087548 10585 1344 APPS OAM ACTIVE WAITED SHO
RT TIME
Elapsed: 00:00:00.01
03:15:41 apps@PROD> As you can see, SQL is prety strange and it's plan is several Gigs(!!!) Because module is OAM I have no guts to kill it just like that. Is there any way to see what is this really and could it be killed (Do I have to restart concurrent) or what?
THX in front.
Damir Vadas
Edited by: Funky on Jan 13, 2009 3:15 AMAfter some KGB approaches, one user with System Administrator responsibility has admit that he has run by mistake u query!
So be aware whom do you expose System Administrator responsibility!
Case closed!
Maybe you are looking for
-
Need help in defining the Transaction Variant using MM02
Hi Experts, I had a requirement that I need to disable the <b>Purchase order Text</b> tab in MM02 T-code,I tried using Transaction Variant(SHDO) ,but I unable to disable the PO text Custom Control.Iff you have any info Please share it with me on [em
-
Hello, I just have a couple of high-level questions here. We've got a tool called RoboHelp that generates, among other things, a .chm file. I spent a couple of hours trying to get that darn .chm file to work from withing the client of our J2EE applic
-
How to make a page that slides in
Hi, I am new and i'm trying to add a page that slides in from the right. I'm gonna be adding this to a dynamic flash template that i bought. I've managed to make the page slide then stop, as i know how to make a simple motion tweed. However, how do i
-
Using the Run feature to open Thunderbird - my husband and I have separate email accounts here...... but after doing a spyware/malware clean up - the Run command that was saved is gone and I don't know what it was to go find our emails........
-
Implementing BAdI XSS_REM_INTERFACE.
Dear. I need implement the BAdI XSS_REM_INTERFACE. I understand the have that use the method PROVIDE_FILTERED_RGDIR. The system in this method get the information in the table im_in_rgdir[]. I need that filter this information having in count if exis