OAM/WLS 10.3
Has anyone integrated OAM 10.1.4.2 and wls10.3? After completing the integration, I log in using the weblogic user. This web logic user and password is also in LDAP that OAM is authenticating against and it is the same password used for wls console. Now after the integration, I'm able to start the WLS server however, it seems that I'm no longer an administrator. I cannot make any changes via the console. Has anyone experienced this, any ideas?
-Vinay
hi...
i'm new at wls and oam, but i need to integrated it for our project...
i use wls 10.3, can you tell me where the tutorial for do integration...
i used tutorial from here
[ http://download.oracle.com/docs/cd/E10761_01/doc/oam.1014/e10356/weblogic.htm#BHCHDCDD]
but it's look for wls version 9.2 and below
if i can use the tutorial to integrate wls and oam, what i have to do so i can complete the integration for wls 10.3
do i need additional plug in, additional step or something to do the integration..
if i read Vinay and mahendra successfull do integration....
so i'm will be very gratefull if you can help me...
thx for your concern....
-van-
Similar Messages
-
Error importing policies in OAM
Hi Experts,
I am getting following error while importing in OAM:-
wls:/internal_iam_domain/serverConfig> importPolicy(pathTempOAMPolicyFile='/oracle/app/deploy/staging/sec-oam/oam_policy_internal.xml')
Jan 3, 2013 4:29:49 PM oracle.security.am.wlst.WLSTWrapper execute
SEVERE: Unable to execute the WLST Command
javax.management.RuntimeMBeanException: javax.management.RuntimeMBeanException: Error occurred during initialization.
at weblogic.rjvm.ResponseImpl.unmarshalReturn(ResponseImpl.java:234)
at weblogic.rmi.internal.BasicRemoteRef.invoke(BasicRemoteRef.java:223)
at javax.management.remote.rmi.RMIConnectionImpl_1035_WLStub.invoke(Unknown Source)
at weblogic.management.remote.common.RMIConnectionWrapper$16.run(ClientProviderBase.java:919)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:146)
at weblogic.security.Security.runAs(Security.java:61)
at weblogic.management.remote.common.RMIConnectionWrapper.invoke(ClientProviderBase.java:917)
at javax.management.remote.rmi.RMIConnector$RemoteMBeanServerConnection.invoke(RMIConnector.java:993)
at oracle.security.am.wlst.util.WLSTT2PUtil.executeCommand(WLSTT2PUtil.java:116)
at oracle.security.am.wlst.WLSTWrapper.executeCommand(WLSTWrapper.java:135)
at oracle.security.am.wlst.WLSTWrapper.execute(WLSTWrapper.java:92)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at org.python.core.PyReflectedFunction.__call__(Unknown Source)
at org.python.core.PyReflectedFunction.__call__(Unknown Source)
at org.python.core.PyObject.__call__(Unknown Source)
at org.python.core.PyObject.invoke(Unknown Source)
at org.python.pycode._pyx47.importPolicy$26(/oracle/app/product/fmw_iam/int/11.1.1.5/iam/common/wlst/oamWlstCmd.py:798)
at org.python.pycode._pyx47.call_function(/oracle/app/product/fmw_iam/int/11.1.1.5/iam/common/wlst/oamWlstCmd.py)
at org.python.core.PyTableCode.call(Unknown Source)
at org.python.core.PyTableCode.call(Unknown Source)
at org.python.core.PyFunction.__call__(Unknown Source)
at org.python.pycode._pyx679.f$0(<console>:1)
at org.python.pycode._pyx679.call_function(<console>)
at org.python.core.PyTableCode.call(Unknown Source)
at org.python.core.PyCode.call(Unknown Source)
at org.python.core.Py.runCode(Unknown Source)
at org.python.core.Py.exec(Unknown Source)
at org.python.util.PythonInterpreter.exec(Unknown Source)
at org.python.util.InteractiveInterpreter.runcode(Unknown Source)
at org.python.util.InteractiveInterpreter.runsource(Unknown Source)
at org.python.util.InteractiveInterpreter.runsource(Unknown Source)
at weblogic.management.scripting.WLST.main(WLST.java:173)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at weblogic.WLST.main(WLST.java:29)
Caused by: javax.management.RuntimeMBeanException: Error occurred during initialization.
at oracle.as.jmx.framework.standardmbeans.spi.OracleStandardEmitterMBean.doInvoke(OracleStandardEmitterMBean.java:981)
at oracle.adf.mbean.share.AdfMBeanInterceptor.internalInvoke(AdfMBeanInterceptor.java:104)
at oracle.as.jmx.framework.generic.spi.interceptors.AbstractMBeanInterceptor.doInvoke(AbstractMBeanInterceptor.java:252)
at oracle.as.jmx.framework.generic.spi.security.AbstractMBeanSecurityInterceptor.internalInvoke(AbstractMBeanSecurityInterceptor.java:190)
at oracle.as.jmx.framework.generic.spi.interceptors.AbstractMBeanInterceptor.doInvoke(AbstractMBeanInterceptor.java:252)
at oracle.security.jps.ee.jmx.JpsJmxInterceptor$2.run(JpsJmxInterceptor.java:344)
at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:313)
at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUtil.java:413)
at oracle.security.jps.ee.jmx.JpsJmxInterceptor.internalInvoke(JpsJmxInterceptor.java:360)
at oracle.as.jmx.framework.generic.spi.interceptors.AbstractMBeanInterceptor.doInvoke(AbstractMBeanInterceptor.java:252)
at oracle.as.jmx.framework.generic.spi.interceptors.ContextClassLoaderMBeanInterceptor.internalInvoke(ContextClassLoaderMBeanInterceptor.java:103)
at oracle.as.jmx.framework.generic.spi.interceptors.AbstractMBeanInterceptor.doInvoke(AbstractMBeanInterceptor.java:252)
at oracle.as.jmx.framework.generic.spi.interceptors.MBeanRestartInterceptor.internalInvoke(MBeanRestartInterceptor.java:116)
at oracle.as.jmx.framework.generic.spi.interceptors.AbstractMBeanInterceptor.doInvoke(AbstractMBeanInterceptor.java:252)
at oracle.as.jmx.framework.generic.spi.interceptors.LoggingMBeanInterceptor.internalInvoke(LoggingMBeanInterceptor.java:524)
at oracle.as.jmx.framework.generic.spi.interceptors.AbstractMBeanInterceptor.doInvoke(AbstractMBeanInterceptor.java:252)
at oracle.as.jmx.framework.standardmbeans.spi.OracleStandardEmitterMBean.invoke(OracleStandardEmitterMBean.java:887)
at com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.invoke(DefaultMBeanServerInterceptor.java:836)
at com.sun.jmx.mbeanserver.JmxMBeanServer.invoke(JmxMBeanServer.java:761)
at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase$16.run(WLSMBeanServerInterceptorBase.java:449)
at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase.invoke(WLSMBeanServerInterceptorBase.java:447)
at weblogic.management.mbeanservers.internal.JMXContextInterceptor.invoke(JMXContextInterceptor.java:263)
at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase$16.run(WLSMBeanServerInterceptorBase.java:449)
at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase.invoke(WLSMBeanServerInterceptorBase.java:447)
at weblogic.management.mbeanservers.internal.SecurityInterceptor.invoke(SecurityInterceptor.java:444)
at weblogic.management.jmx.mbeanserver.WLSMBeanServer.invoke(WLSMBeanServer.java:323)
at weblogic.management.mbeanservers.internal.JMXConnectorSubjectForwarder$11$1.run(JMXConnectorSubjectForwarder.java:663)
at weblogic.management.mbeanservers.internal.JMXConnectorSubjectForwarder$11.run(JMXConnectorSubjectForwarder.java:661)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
at weblogic.management.mbeanservers.internal.JMXConnectorSubjectForwarder.invoke(JMXConnectorSubjectForwarder.java:654)
at javax.management.remote.rmi.RMIConnectionImpl.doOperation(RMIConnectionImpl.java:1427)
at javax.management.remote.rmi.RMIConnectionImpl.access$200(RMIConnectionImpl.java:72)
at javax.management.remote.rmi.RMIConnectionImpl$PrivilegedOperation.run(RMIConnectionImpl.java:1265)
at javax.management.remote.rmi.RMIConnectionImpl.doPrivilegedOperation(RMIConnectionImpl.java:1367)
at javax.management.remote.rmi.RMIConnectionImpl.invoke(RMIConnectionImpl.java:788)
at javax.management.remote.rmi.RMIConnectionImpl_WLSkel.invoke(Unknown Source)
at weblogic.rmi.internal.BasicServerRef.invoke(BasicServerRef.java:668)
at weblogic.rmi.internal.BasicServerRef$1.run(BasicServerRef.java:523)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:146)
at weblogic.rmi.internal.BasicServerRef.handleRequest(BasicServerRef.java:518)
at weblogic.rmi.internal.wls.WLSExecuteRequest.run(WLSExecuteRequest.java:119)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:178)
Caused by: java.lang.RuntimeException: Error occurred during initialization.
at oracle.security.am.t2p.MigrationMXBeanImpl.applyPolicyConfiguration(MigrationMXBeanImpl.java:529)
at sun.reflect.GeneratedMethodAccessor2051.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at oracle.as.jmx.framework.standardmbeans.spi.OracleStandardEmitterMBean.doInvoke(OracleStandardEmitterMBean.java:973)
... 42 more
Caused by: oracle.security.am.common.policy.admin.store.PolicyStoreException: OAMSSA-06078: Error while creating Constraint of type: "{0}", class: "{1}".
at oracle.security.am.common.policy.admin.provider.xml.PolicyAdminStore.createAbstractConstraintFromJaxB(PolicyAdminStore.java:410)
at oracle.security.am.common.policy.admin.provider.xml.PolicyStoreImpl.createAuthzPolicyInstance(PolicyStoreImpl.java:1272)
at oracle.security.am.common.policy.admin.provider.xml.PolicyStoreImpl.getAllAuthzPolicies(PolicyStoreImpl.java:945)
at oracle.security.am.common.policy.admin.impl.PolicyManagerImpl.loadSharedMaps(PolicyManagerImpl.java:165)
at oracle.security.am.common.policy.admin.impl.PolicyManagerImpl.<init>(PolicyManagerImpl.java:136)
at oracle.security.am.common.policy.admin.impl.ApplicationDomainManagerImpl.createManagers(ApplicationDomainManagerImpl.java:563)
at oracle.security.am.common.policy.admin.impl.ApplicationDomainManagerImpl.loadSharedMaps(ApplicationDomainManagerImpl.java:130)
at oracle.security.am.common.policy.admin.impl.ApplicationDomainManagerImpl.<init>(ApplicationDomainManagerImpl.java:103)
at oracle.security.am.common.policy.admin.impl.PolicyAdminImpl.createManagers(PolicyAdminImpl.java:277)
at oracle.security.am.common.policy.admin.impl.PolicyAdminImpl.<init>(PolicyAdminImpl.java:109)
at oracle.security.am.common.policy.admin.PolicyAdminFactory.init(PolicyAdminFactory.java:182)
at oracle.security.am.common.policy.admin.PolicyAdminFactory.getPolicyAdmin(PolicyAdminFactory.java:425)
at oracle.security.am.t2p.MigrationMXBeanImpl.init(MigrationMXBeanImpl.java:637)
at oracle.security.am.t2p.MigrationMXBeanImpl.applyPolicyConfiguration(MigrationMXBeanImpl.java:525)
... 46 more
Caused by: java.lang.NullPointerException: Name is null
at java.lang.Enum.valueOf(Enum.java:195)
at oracle.security.am.common.policy.admin.model.Identity$IDENTITY_TYPE.valueOf(Identity.java:82)
at oracle.security.am.common.policy.admin.provider.xml.PolicyAdminStore.createAbstractConstraintFromJaxB(PolicyAdminStore.java:347)
... 59 more
Unable to execute the commandjavax.management.RuntimeMBeanException: Error occurred during initialization
Thanks
HarpreetYou should execute wlst command from ORACLE_HOME/common/bin. Once you are connected to domain you should see wls:/base_domain/serverConfig but not wls:/internal_iam_domain/serverConfig
-
OVM 3.0.3: Please wait while system is initializing issue
Hello,
after logging in to OVM 3.0.3 I cannot do anything anymore. I see the states of the vms and the servers but when I want to modify anything I simply get the current time and the errror Please wait while system is initializing.
And the system really isn't initializing anymore, unless it takes a few days... I'm using a 11g SE database. I used to have a problem to login which I resolved by manually restarting the DB/listener and OVMM again. But now I get this weird issue when I'm logged in, I see all but I cannot use anything.
Seems like the OVM isn't in sync anymore with the real database items.
Does anyone know what to do next? I wonder how I can resync the manager with the database commandline?
Kind regards,
JAvi,
nothing really noticeable, does this provide any insight for you?:
####<Feb 16, 2012 2:08:30 PM CET> <Trace> <com.bea.weblogic.kernel> <ovmmgr-local.test.xxxxxxx.be> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<anonymous>> <> <0000JM6HjvIFS8YVLqINOA1FFFyi000002> <1329397710977> <BEA-000000> <OAM WLS Agent - Trying to instantiate WLS Agent System Filter...>
####<Feb 16, 2012 2:08:30 PM CET> <Debug> <com.bea.weblogic.kernel> <ovmmgr-local.test.xxxxxxx.be> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<anonymous>> <> <0000JM6HjvIFS8YVLqINOA1FFFyi000002> <1329397710978> <BEA-000000> <OAM WLS Agent - Wrapper agent filter is disabled because OAM WLS Agent could not be found>
####<Feb 16, 2012 2:08:30 PM CET> <Debug> <com.bea.weblogic.kernel> <ovmmgr-local.test.xxxxxxx.be> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<anonymous>> <> <0000JM6HjvIFS8YVLqINOA1FFFyi000002> <1329397710985> <BEA-000000> <SSOFilter: Filter Status=true>
####<Feb 16, 2012 2:08:30 PM CET> <Debug> <com.bea.weblogic.kernel> <ovmmgr-local.test.xxxxxxx.be> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<anonymous>> <> <0000JM6HjvIFS8YVLqINOA1FFFyi000002> <1329397710985> <BEA-000000> <SSOFilter: isSSOAssetersConfigured()>
####<Feb 16, 2012 2:08:30 PM CET> <Debug> <com.bea.weblogic.kernel> <ovmmgr-local.test.xxxxxxx.be> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<anonymous>> <> <0000JM6HjvIFS8YVLqINOA1FFFyi000002> <1329397710991> <BEA-000000> <SSOFilter: Got MbeanServer= oracle.as.jmx.framework.wls.spi.security.PrivilegedMBeanServerInterceptor@36b5b257>
####<Feb 16, 2012 2:08:31 PM CET> <Debug> <com.bea.weblogic.kernel> <ovmmgr-local.test.xxxxxxx.be> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<anonymous>> <> <0000JM6HjvIFS8YVLqINOA1FFFyi000002> <1329397711002> <BEA-000000> <SSOFilter Instance: DefaultAuthenticator, class: weblogic.security.providers.authentication.DefaultAuthenticatorMBeanImpl, BeanName: DefaultAuthenticatorMBeanImpl>
####<Feb 16, 2012 2:08:31 PM CET> <Debug> <com.bea.weblogic.kernel> <ovmmgr-local.test.xxxxxxx.be> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<anonymous>> <> <0000JM6HjvIFS8YVLqINOA1FFFyi000002> <1329397711004> <BEA-000000> <SSOFilter Instance: DefaultIdentityAsserter, class: weblogic.security.providers.authentication.DefaultIdentityAsserterMBeanImpl, BeanName: DefaultIdentityAsserterMBeanImpl>
####<Feb 16, 2012 2:08:31 PM CET> <Debug> <com.bea.weblogic.kernel> <ovmmgr-local.test.xxxxxxx.be> <AdminServer> <[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<anonymous>> <> <0000JM6HjvIFS8YVLqINOA1FFFyi000002> <1329397711004> <BEA-000000> <SSOFilter: Asserter Config Status= false>
Thanks,
J -
Query regarding the Node manager configuration(WLS and OAM Managed server)
Query regarding the Node manager configuration(WLS and OAM Managed server):
1) In the nodemanager.properties I have added the ListenAddress:myMachineName and ListenPort: 5556
My setup : One physical Linux machine(myMachineName) has : WLS admin server, managed server(OAM 11G) and nodemanager.No clustered environment.
2) nodemanager.log has the following exception when I start the oam_server1 using EM(Enterprise Manager11g):
Mar 23 2012 1:39:55 AM> <SEVERE> <Fatal error in node manager server>
java.net.BindException: Address already in use
at java.net.PlainSocketImpl.socketBind(Native Method)
at java.net.AbstractPlainSocketImpl.bind(AbstractPlainSocketImpl.java:336)
at java.net.ServerSocket.bind(ServerSocket.java:336)
at javax.net.ssl.impl.SSLServerSocketImpl.bind(Unknown Source)
at java.net.ServerSocket.<init>(ServerSocket.java:202)
at javax.net.ssl.SSLServerSocket.<init>(SSLServerSocket.java:125)
at javax.net.ssl.impl.SSLServerSocketImpl.<init>(Unknown Source)
at javax.net.ssl.impl.SSLServerSocketFactoryImpl.createServerSocket(Unknown Source)
Default port on which node manager listen for requests is localhost:5556.I have changed it to point to my machine. The port should be of WLS admin server or it should be the managed server port?
3) I have started the NodeManager using the startNodeManager.sh script.
4) The admin server port is 7001 and the oam managed server port is 14100.
Any inputs on what might be wrong in the setup will be helpful.Thanks !By using netstat -anp|grep 5556 you can check which process on your machine is using the 5556 port.
-
Can Multiple Webgate/OAM/IdentityStores access one multitenant WLS domain?
Can multiple access points ( web tier + OAM + Identity store) access one application?
The objective here is to have one multi-tenant ADF application accessed by users who are authenthicated by their own enterprise sso and identity store. Authenthicated session should pass the context with list of all enterprise roles that user belongs to which would be used for authorization by the multitenant application. It is assumed here that naming convention for relevant roles is followed by all participating identity stores.
Can Webgate/OAM and accessed WebLogic domain be configured to accomplish this?OAM can pass as header variables all of the things you mention. For example, you get these by default:
OAM_REMOTE_USER containing the userid of the logged in user (eg "jsmith")
HTTP_OAM_IDENTITY_DOMAIN containing the name of the Identity Store that the logged in user belongs to, as known to the OAM admin console (eg "SunLDAP")
additionally you can define a headervar that contains the user's ldap group membership, and one that contains the user's full DN (or any other attribute and other information).
Of course, any receiving app would need to be configured to consume this information.
Regards,
Colin -
Authenticating test applcation in OAM is not working
Hello OAM experts, can you please help to figure out why my test application is not getting authenticated by OAM.
I have installed IDM for fusion application and SSO login is working for all admin consoles such as WLS, EM, OAM, OIM. I have deployed test application to OAM server itself to test the authentication of protected resources.
Host identifier is already there which was create while configuring my IDM for fusion applications. I created new application domain , created resource for /text/*, created authentication policy and used LDAPScheme for authentication, created authorization policy and defined constraints by adding a group OAMAdministrators ( just for testing purpose). I also added response in the authentication policy.
Then I have configured admin.conf of OHS server to redirect http://webhost1:7777/test to oam server host and port. It is getting redicted but not to the SSO login page. The URL still shows http://webhost1:7777/test and executes the test page and displays test application. It should have been redirected to SSO login page though OAM.
At this stage I have no clue what did I miss. As I said, when I login to wls console, it gets redicted to SSO login through OAM login page and then while accessing OIM, it directly takes me to OIM application since the user has privileges and also OAM page without logging in again.
But why my test application is not redirected to OAM authentication page ?
Any help is grately appreciated.
thanks
Edited by: Jyothi on May 3, 2012 3:25 AMHi, I am having the same issue. I am new to all this OAM stuff. I am using OAM 11g with a 11g Webgate configured. When I try to access the OAM Console the SSO setup does work and kicks-in and redirects me to the OAM server's integrated login page. But my test application that lives on an app server installed on a separate machine is never challenged for their credentials. As the documentation says I have CLIENT-CERT defined as the auth-method in my login-config inside my applications web.xml file.
I think I am not using the right providers. What I want is Identity Assertion and also OAM authentication (if Identity Assertion fails Authentication should kick-in and redirect to challenge login page). So I have an OAMIdentityAsserter and an OAMAUthenticator set-up in addition to the Default Weblogic Identity Asserter and Default Weblogic Authenticator.
I have tried everything but, the login redirect never happens. If I use the DefaultAuthenticator along with OAMAuthenticator (no OAMIdentityAsserter) and define BASIC in my login-config in web.xml then the Default Weblogic Authenticator pops up a dialog box which does let me enter credentials and when I do it does make the trip to the OAM server and works flawlessly. But I don't want basic authentication and I don't want a dialogue box to pop-up. I want the OAM server to redirect me to it's built-in login page just like it does for the OAMConsole itself which is being protected by the out of the box 10g IAMSuiteAgent Webgate. Which, as you know, comes pre-installed.
Please let me know your configuration and the providers you have set up and how you were able to make the OAM server challenge you for credentials when trying to access a protected resource/application.
Thank You. -
How to protect an application running on weblogic through OAM
I have a requirement where in I need to protect an application (URL/root) deployed on weblogic through Oracle Access Manager.
Here's what I did:
Installed webgate on the Host where the application is deployed.
Configured the webgate on Access System Console.
Configured the policy domain -
a) Mentioned the Resource type and URL to be protected
b) Authentication Type (Basic)
c) Autherization Rules (Anyone can acess)
Issue: When I try to access the application http://<hostname>:7001/myapp
I expect the webgate/OAM to intercept this request and challenge the user with the basic authentication
but the request is carried through and the Home page of myapp is displayed.
Do I need to do some configurations in the webserver (httpd.conf) or deployment descriptors in the application server to get the authentication?
The application above can also be substituted with Oracle Identity Manager, where I'm getting the same result. I'm able to view OIM Home page without prior authentication. I tried protecting with the following pattern <host variation>/xlWebApp
I am new to Oracle Access Manager and looking for some guidance.
ThanksHi Joe,
1. Please elaborate step2 or guide me to a link where I can configure reverse proxy from Apache Webserver to weblogic. I think here's where I'm going wrong.
For more details on proxy refer to these links:
http://download-llnw.oracle.com/docs/cd/E13222_01/wls/docs90/plugins/apache.html#119517
OHS to Weblogic Reverse Proxy configuration Problem
After this configuration, won't I be able to access the application /myapp running on weblogic through port 7001 and will I have access to it only on port 80 (web s erver default port)?
You will be able to access the application through 7001, but the request will not be intercepted by OAM. The request will be processed directly by your myApp.
2. I did some reading and found some instructions on using weblogic SSPI plugin. Is this required at all? When is this used?
You can use SSPI Connector if you want to protect the weblogic port. i.e., OAM intercepts the request when you access the application on 7001 port.
Hope this helps
Hrushi -
Error when trying to access OAM 11g Admin console
I am getting an error when I try to access the OAM admin console, the page appears after I enter http://hostname:14100/oam but the login box has the following message in it:
System error. Please re-try your action. If you continue to get this error, please contact the Administrator.
I tried entering http://hostname:14100/oam_console but get a 404 error
The log file outputs the following:
[oracle@core bin]$ startManagedWebLogic.sh oam_server1
JAVA Memory arguments: -Xms256m -Xmx512m -XX:MaxPermSize=512m
WLS Start Mode=Production
CLASSPATH=/opt/oracle/product/Middleware/oracle_common/modules/oracle.jdbc_11.1.1/ojdbc6dms.jar::/opt/oracle/product/Middleware/Oracle_IDM1/oam/server/policy/sts-policies.jar:/opt/oracle/product/Middleware/patch_wls1035/profiles/default/sys_manifest_classpath/weblogic_patch.jar:/opt/oracle/product/Middleware/patch_ocp360/profiles/default/sys_manifest_classpath/weblogic_patch.jar:/opt/oracle/product/Middleware/jdk/lib/tools.jar:/opt/oracle/product/Middleware/wlserver_10.3/server/lib/weblogic_sp.jar:/opt/oracle/product/Middleware/wlserver_10.3/server/lib/weblogic.jar:/opt/oracle/product/Middleware/modules/features/weblogic.server.modules_10.3.5.0.jar:/opt/oracle/product/Middleware/wlserver_10.3/server/lib/webservices.jar:/opt/oracle/product/Middleware/modules/org.apache.ant_1.7.1/lib/ant-all.jar:/opt/oracle/product/Middleware/modules/net.sf.antcontrib_1.1.0.0_1-0b2/lib/ant-contrib.jar:/opt/oracle/product/Middleware/oracle_common/soa/modules/commons-cli-1.1.jar:/opt/oracle/product/Middleware/oracle_common/soa/modules/oracle.soa.mgmt_11.1.1/soa-infra-mgmt.jar:/opt/oracle/product/Middleware/Oracle_IDM1/oam/agent/modules/oracle.oam.wlsagent_11.1.1/oam-wlsagent.jar:/opt/oracle/product/Middleware/oracle_common/modules/oracle.jrf_11.1.1/jrf.jar:/opt/oracle/product/Middleware/wlserver_10.3/common/derby/lib/derbyclient.jar:/opt/oracle/product/Middleware/wlserver_10.3/server/lib/xqrl.jar
PATH=/opt/oracle/product/Middleware/wlserver_10.3/server/bin:/opt/oracle/product/Middleware/modules/org.apache.ant_1.7.1/bin:/opt/oracle/product/Middleware/jdk/jre/bin:/opt/oracle/product/Middleware/jdk/bin:/usr/kerberos/bin:/usr/local/bin:/usr/bin:/bin:/usr/X11R6/bin:/opt/Oracle/bin:/opt/oracle/product/Middleware/user_projects/domains/iam/bin:/opt/oracle/product/Middleware/OPatch:/opt/oracle/product/11.2.0/dbhome_1/bin
* To start WebLogic Server, use a username and *
* password assigned to an admin-level user. For *
* server administration, use the WebLogic Server *
* console at http://hostname:port/console *
starting weblogic with Java version:
java version "1.6.0_24"
Java(TM) SE Runtime Environment (build 1.6.0_24-b07)
Oracle JRockit(R) (build R28.1.3-11-141760-1.6.0_24-20110301-1432-linux-x86_64, compiled mode)
Starting WLS with line:
/opt/oracle/product/Middleware/jdk/bin/java -server -Xms256m -Xmx512m -XX:MaxPermSize=512m -Dweblogic.Name=oam_server1 -Djava.security.policy=/opt/oracle/product/Middleware/wlserver_10.3/server/lib/weblogic.policy -Dweblogic.ProductionModeEnabled=true -Dweblogic.security.SSL.trustedCAKeyStore=/opt/oracle/product/Middleware/wlserver_10.3/server/lib/cacerts -da -Dplatform.home=/opt/oracle/product/Middleware/wlserver_10.3 -Dwls.home=/opt/oracle/product/Middleware/wlserver_10.3/server -Dweblogic.home=/opt/oracle/product/Middleware/wlserver_10.3/server -Dcommon.components.home=/opt/oracle/product/Middleware/oracle_common -Djrf.version=11.1.1 -Dorg.apache.commons.logging.Log=org.apache.commons.logging.impl.Jdk14Logger -Ddomain.home=/opt/oracle/product/Middleware/user_projects/domains/iam -Djrockit.optfile=/opt/oracle/product/Middleware/oracle_common/modules/oracle.jrf_11.1.1/jrocket_optfile.txt -Doracle.server.config.dir=/opt/oracle/product/Middleware/user_projects/domains/iam/config/fmwconfig/servers/oam_server1 -Doracle.domain.config.dir=/opt/oracle/product/Middleware/user_projects/domains/iam/config/fmwconfig -Digf.arisidbeans.carmlloc=/opt/oracle/product/Middleware/user_projects/domains/iam/config/fmwconfig/carml -Digf.arisidstack.home=/opt/oracle/product/Middleware/user_projects/domains/iam/config/fmwconfig/arisidprovider -Doracle.security.jps.config=/opt/oracle/product/Middleware/user_projects/domains/iam/config/fmwconfig/jps-config.xml -Doracle.deployed.app.dir=/opt/oracle/product/Middleware/user_projects/domains/iam/servers/oam_server1/tmp/_WL_user -Doracle.deployed.app.ext=/- -Dweblogic.alternateTypesDirectory=/opt/oracle/product/Middleware/Oracle_IDM1/oam/agent/modules/oracle.oam.wlsagent_11.1.1,/opt/oracle/product/Middleware/oracle_common/modules/oracle.ossoiap_11.1.1,/opt/oracle/product/Middleware/oracle_common/modules/oracle.oamprovider_11.1.1 -Djava.protocol.handler.pkgs=oracle.mds.net.protocol -Dweblogic.jdbc.remoteEnabled=false -DOAM_POLICY_FILE=/opt/oracle/product/Middleware/user_projects/domains/iam/config/fmwconfig/oam-policy.xml -DOAM_CONFIG_FILE=/opt/oracle/product/Middleware/user_projects/domains/iam/config/fmwconfig/oam-config.xml -DOAM_ORACLE_HOME=/opt/oracle/product/Middleware/Oracle_IDM1/oam -Doracle.security.am.SERVER_INSTNCE_NAME=oam_server1 -Does.jars.home=/opt/oracle/product/Middleware/Oracle_IDM1/oam/server/lib/oes-d8 -Does.integration.path=/opt/oracle/product/Middleware/Oracle_IDM1/oam/server/lib/oeslib/oes-integration.jar -Does.enabled=true -Djavax.xml.soap.SOAPConnectionFactory=weblogic.wsee.saaj.SOAPConnectionFactoryImpl -Djavax.xml.soap.MessageFactory=oracle.j2ee.ws.saaj.soap.MessageFactoryImpl -Djavax.xml.soap.SOAPFactory=oracle.j2ee.ws.saaj.soap.SOAPFactoryImpl -Doracle.oaam.home=/opt/oracle/product/Middleware/Oracle_IDM1/oaam/ -Doracle.oaam.home=/opt/oracle/product/Middleware/Oracle_IDM1/oaam/ -Doracle.oaam.home=/opt/oracle/product/Middleware/Oracle_IDM1/oaam/ -Djava.awt.headless=true -Dem.oracle.home=/opt/oracle/product/Middleware/oracle_common -Djava.awt.headless=true -Dweblogic.management.discover=false -Dweblogic.management.server=http://core.apteclabs.edu:7001 -Dwlw.iterativeDev=false -Dwlw.testConsole=false -Dwlw.logErrorsToConsole=false -Dweblogic.ext.dirs=/opt/oracle/product/Middleware/patch_wls1035/profiles/default/sysext_manifest_classpath:/opt/oracle/product/Middleware/patch_ocp360/profiles/default/sysext_manifest_classpath weblogic.Server
[WARN ][jrockit] MaxPermSize=512m ignored: Not a valid option for JRockit
[WARN ] Use of -Djrockit.optfile is deprecated and discouraged.
<Aug 16, 2011 9:34:29 AM EDT> <Info> <Security> <BEA-090905> <Disabling CryptoJ JCE Provider self-integrity check for better startup performance. To enable this check, specify -Dweblogic.security.allowCryptoJDefaultJCEVerification=true>
<Aug 16, 2011 9:34:36 AM EDT> <Info> <Security> <BEA-090906> <Changing the default Random Number Generator in RSA CryptoJ from ECDRBG to FIPS186PRNG. To disable this change, specify -Dweblogic.security.allowCryptoJDefaultPRNG=true>
<Aug 16, 2011 9:34:37 AM EDT> <Info> <WebLogicServer> <BEA-000377> <Starting WebLogic Server with Oracle JRockit(R) Version R28.1.3-11-141760-1.6.0_24-20110301-1432-linux-x86_64 from Oracle Corporation>
<Aug 16, 2011 9:34:45 AM EDT> <Info> <Security> <BEA-090065> <Getting boot identity from user.>
Enter username to boot WebLogic server:weblogic
Enter password to boot WebLogic server:
<Aug 16, 2011 9:34:54 AM EDT> <Info> <Management> <BEA-141107> <Version: WebLogic Server 10.3.5.0 Fri Apr 1 20:20:06 PDT 2011 1398638 >
<Aug 16, 2011 9:37:45 AM EDT> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to STARTING>
<Aug 16, 2011 9:37:45 AM EDT> <Info> <WorkManager> <BEA-002900> <Initializing self-tuning thread pool>
<Aug 16, 2011 9:38:02 AM EDT> <Notice> <Log Management> <BEA-170019> <The server log file /opt/oracle/product/Middleware/user_projects/domains/iam/servers/oam_server1/logs/oam_server1.log is opened. All server side log events will be written to this file.>
Aug 16, 2011 9:38:25 AM oracle.security.am.common.nap.util.NAPLogger log
SEVERE: Failed to communicate with any of configured Access Server, ensure that it is up and running.
<Aug 16, 2011 9:38:27 AM EDT> <Notice> <Security> <BEA-090082> <Security initializing using security realm myrealm.>
<Aug 16, 2011 9:38:52 AM EDT> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to STANDBY>
<Aug 16, 2011 9:38:52 AM EDT> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to STARTING>
<Aug 16, 2011 9:39:28 AM EDT> <Warning> <Munger> <BEA-2156203> <A version attribute was not found in element web-app in the deployment descriptor in /opt/oracle/product/Middleware/Oracle_IDM1/oam/agent/apps/oam-wlsagent-logout.war/WEB-INF/web.xml. A version attribute is required, but this version of the Weblogic Server will assume that the JEE5 is used. Future versions of the Weblogic Server will reject descriptors that do not specify the JEE version.>
<Aug 16, 2011 9:39:46 AM EDT> <Warning> <Coherence> <BEA-000000> <2011-08-16 09:39:46.790/320.434 Oracle Coherence GE 3.5.3/465p2 <Warning> (thread=DistributedCache, member=3): Assigned 257 orphaned primary partitions>
[EL Info]: 2011-08-16 09:39:47.585--ServerSession(474132858)--EclipseLink, version: Eclipse Persistence Services - 1.1.0.r3634
[EL Info]: 2011-08-16 09:39:48.526--ServerSession(474132858)--file:/opt/oracle/product/Middleware/Oracle_IDM1/oam/server/lib/oes-d8/jps-internal.jar-JpsDBDataManager login successful
<Aug 16, 2011 9:40:01 AM EDT> <Notice> <Log Management> <BEA-170027> <The Server has established connection with the Domain level Diagnostic Service successfully.>
<Aug 16, 2011 9:40:01 AM EDT> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to ADMIN>
<Aug 16, 2011 9:40:01 AM EDT> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to RESUMING>
<Aug 16, 2011 9:40:02 AM EDT> <Notice> <Server> <BEA-002613> <Channel "Default" is now listening on 192.168.184.128:14100 for protocols iiop, t3, ldap, snmp, http.>
<Aug 16, 2011 9:40:02 AM EDT> <Notice> <Server> <BEA-002613> <Channel "Default[1]" is now listening on fe80:0:0:0:20c:29ff:fe26:71ec:14100 for protocols iiop, t3, ldap, snmp, http.>
<Aug 16, 2011 9:40:02 AM EDT> <Notice> <Server> <BEA-002613> <Channel "Default[2]" is now listening on 127.0.0.1:14100 for protocols iiop, t3, ldap, snmp, http.>
<Aug 16, 2011 9:40:02 AM EDT> <Notice> <Server> <BEA-002613> <Channel "Default[3]" is now listening on 0:0:0:0:0:0:0:1:14100 for protocols iiop, t3, ldap, snmp, http.>
<Aug 16, 2011 9:40:02 AM EDT> <Notice> <WebLogicServer> <BEA-000330> <Started WebLogic Managed Server "oam_server1" for domain "iam" running in Production Mode>
<Aug 16, 2011 9:40:04 AM EDT> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to RUNNING>
<Aug 16, 2011 9:40:04 AM EDT> <Notice> <WebLogicServer> <BEA-000360> <Server started in RUNNING mode>
<Aug 16, 2011 9:43:32 AM EDT> <Error> <HTTP> <BEA-101017> <[ServletContext@477181353[app:oam_server module:oam path:/oam spec-version:2.5]] Root cause of ServletException.
weblogic.servlet.jsp.CompilationException: Failed to compile JSP /index.jsp
index.jsp:2:4: No tag library could be found with this URI. Possible causes could be that the URI is incorrect, or that there were errors during parsing of the .tld file.
<%@taglib uri="http://beehive.apache.org/netui/tags-html-1.0" prefix="netui"%>
^----^
index.jsp:2:4: No tag library could be found with this URI. Possible causes could be that the URI is incorrect, or that there were errors during parsing of the .tld file.
<%@taglib uri="http://beehive.apache.org/netui/tags-html-1.0" prefix="netui"%>
^----^
index.jsp:3:4: No tag library could be found with this URI. Possible causes could be that the URI is incorrect, or that there were errors during parsing of the .tld file.
<%@taglib uri="http://beehive.apache.org/netui/tags-databinding-1.0" prefix="netui-data"%>
^----^
index.jsp:3:4: No tag library could be found with this URI. Possible causes could be that the URI is incorrect, or that there were errors during parsing of the .tld file.
<%@taglib uri="http://beehive.apache.org/netui/tags-databinding-1.0" prefix="netui-data"%>
^----^
index.jsp:4:4: No tag library could be found with this URI. Possible causes could be that the URI is incorrect, or that there were errors during parsing of the .tld file.
<%@taglib uri="http://beehive.apache.org/netui/tags-template-1.0" prefix="netui-template"%>
^----^
index.jsp:4:4: No tag library could be found with this URI. Possible causes could be that the URI is incorrect, or that there were errors during parsing of the .tld file.
<%@taglib uri="http://beehive.apache.org/netui/tags-template-1.0" prefix="netui-template"%>
^----^
at weblogic.servlet.jsp.JavelinxJSPStub.reportCompilationErrorIfNeccessary(JavelinxJSPStub.java:226)
at weblogic.servlet.jsp.JavelinxJSPStub.compilePage(JavelinxJSPStub.java:162)
at weblogic.servlet.jsp.JspStub.prepareServlet(JspStub.java:256)
at weblogic.servlet.jsp.JspStub.prepareServlet(JspStub.java:216)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:243)
Truncated. see log file for complete stacktrace
>
<Aug 16, 2011 9:43:32 AM EDT> <Notice> <Diagnostics> <BEA-320068> <Watch 'UncheckedException' with severity 'Notice' on server 'oam_server1' has triggered at Aug 16, 2011 9:43:32 AM EDT. Notification details:
WatchRuleType: Log
WatchRule: (SEVERITY = 'Error') AND ((MSGID = 'WL-101020') OR (MSGID = 'WL-101017') OR (MSGID = 'WL-000802') OR (MSGID = 'BEA-101020') OR (MSGID = 'BEA-101017') OR (MSGID = 'BEA-000802'))
WatchData: DATE = Aug 16, 2011 9:43:32 AM EDT SERVER = oam_server1 MESSAGE = [ServletContext@477181353[app:oam_server module:oam path:/oam spec-version:2.5]] Root cause of ServletException.
weblogic.servlet.jsp.CompilationException: Failed to compile JSP /index.jsp
index.jsp:2:4: No tag library could be found with this URI. Possible causes could be that the URI is incorrect, or that there were errors during parsing of the .tld file.
<%@taglib uri="http://beehive.apache.org/netui/tags-html-1.0" prefix="netui"%>
^----^
index.jsp:2:4: No tag library could be found with this URI. Possible causes could be that the URI is incorrect, or that there were errors during parsing of the .tld file.
<%@taglib uri="http://beehive.apache.org/netui/tags-html-1.0" prefix="netui"%>
^----^
index.jsp:3:4: No tag library could be found with this URI. Possible causes could be that the URI is incorrect, or that there were errors during parsing of the .tld file.
<%@taglib uri="http://beehive.apache.org/netui/tags-databinding-1.0" prefix="netui-data"%>
^----^
index.jsp:3:4: No tag library could be found with this URI. Possible causes could be that the URI is incorrect, or that there were errors during parsing of the .tld file.
<%@taglib uri="http://beehive.apache.org/netui/tags-databinding-1.0" prefix="netui-data"%>
^----^
index.jsp:4:4: No tag library could be found with this URI. Possible causes could be that the URI is incorrect, or that there were errors during parsing of the .tld file.
<%@taglib uri="http://beehive.apache.org/netui/tags-template-1.0" prefix="netui-template"%>
^----^
index.jsp:4:4: No tag library could be found with this URI. Possible causes could be that the URI is incorrect, or that there were errors during parsing of the .tld file.
<%@taglib uri="http://beehive.apache.org/netui/tags-template-1.0" prefix="netui-template"%>
^----^
at weblogic.servlet.jsp.JavelinxJSPStub.reportCompilationErrorIfNeccessary(JavelinxJSPStub.java:226)
at weblogic.servlet.jsp.JavelinxJSPStub.compilePage(JavelinxJSPStub.java:162)
at weblogic.servlet.jsp.JspStub.prepareServlet(JspStub.java:256)
at weblogic.servlet.jsp.JspStub.prepareServlet(JspStub.java:216)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:243)
at weblogic.servlet.internal.ServletStubImpl.onAddToMapException(ServletStubImpl.java:416)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:326)
at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
at oracle.security.am.agent.wls.filters.OAMServletAuthenticationFilter.doFilter(OAMServletAuthenticationFilter.java:265)
at oracle.security.am.agent.wls.filters.OAMValidationSystemFilter.doFilter(OAMValidationSystemFilter.java:133)
at oracle.security.wls.oamagent.OAMAgentWrapperFilter.doFilter(OAMAgentWrapperFilter.java:120)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:111)
at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:313)
at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUtil.java:413)
at oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.java:94)
at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:161)
at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:71)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
at oracle.dms.servlet.DMSServletFilter.doFilter(DMSServletFilter.java:136)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.wrapRun(WebAppServletContext.java:3715)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3681)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:120)
at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2277)
at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2183)
at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1454)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:178)
SUBSYSTEM = HTTP USERID = <WLS Kernel> SEVERITY = Error THREAD = [ACTIVE] ExecuteThread: '5' for queue: 'weblogic.kernel.Default (self-tuning)' MSGID = BEA-101017 MACHINE = core.apteclabs.edu TXID = CONTEXTID = 11d1def534ea1be0:7f0631a0:131d2d0d910:-8000-0000000000000020 TIMESTAMP = 1313502212548
WatchAlarmType: AutomaticReset
WatchAlarmResetPeriod: 30000
>
<Aug 16, 2011 9:43:51 AM EDT> <Alert> <Diagnostics> <BEA-320016> <Creating diagnostic image in /opt/oracle/product/Middleware/user_projects/domains/iam/servers/oam_server1/adr/diag/ofm/iam/oam_server1/incident/incdir_8 with a lockout minute period of 1.>
Any ideas?Hi,
Another way to "find" the URL for the oamconsole, that I use if I'm not familiar with the configuration I'm working on is to first log into the Adminserver WL Console, then go to "Deployments".
Then, find "oamconsole" in the Deployments listed (on the right).
Click on that, then on the next page, look for the "Testing" tab. Click on the "Testing" tab, which which show the /oamconsole app.
Click on the "+" to expand the tree, and you should see a bunch of different URLs on the right, e.g., if you have OAM console deployed to managed servers, etc., there'll be different URLs for those, etc., and you can just click on the links to open up OAM Console in your browser.
Jim -
How to configure ADF application to use OAM Identity Assertion ? web.xml
We have a web application developed using ADF (application development framework) and deployed on WebCenter 11.1.1.2 (weblogic 10.3.2)
OID Authentication and OAM identity assertion is configured in WebLogic 10.3.2 .
How to configure security in ADF application (web.xml or weblogic.xml) so that it uses OAM identity assertion (already configured as authentication providers in weblogic server)
Any pointers or documentation so that application (developed using ADF) check for identity tocken and verifies it with one of identity assertion providers.John,
I have to concur. With OAM you don't need this. OAM intercepts the calls and inserts a cookie for WLS to get user information from.
I strongly advise to go through the above mention OFM Security Guide. Esp. Chapter 10 tells you in every detail how to implement OAM SSO with WLS (with or without OHS as a proxy).
Reading this chapter saves you time and turnarounds on this topic...
--olaf -
OAM SSO integration question:How can I get a user identity from ObSSOCookie
We are building an OAM SSO solution. The App server is both on OAS and WLS. My question is that, after I get the ObSSOCookie from httprequest.
I need to verify whether the ObSSOCookie is a valid one, and I also need to get user identity from the cookie and pass it to login module to populate user principal
Of course, one way of doing that is to install access manager SDK and go from there. But we support multiple OS, it's a pain to add Access manager SDK to different installer for different OS.
I am trying to use IdentityXML Functions which is a SOAP based webservice so that I don't need to worry about the OS platform. But I can't find a webService which returns user identity based on a valid ObSSOCookie. It seems that I can invoke webService with valide ObSSOCookie, but there is no way to get the user identity back. Am I missing something?
Hope someone can help me out.
Thanks.
-WeiOk. Sounds like you are a vendor trying to play well in an SSO environment.
Here is what I tell OAM customers when they are evaluating software to see if it will cooperate with a system like OAM.
Can the software's native authentication scheme be explicitly turned off (usually a configuration in a file)?
Can the software be configured to accept a token of identity in the form of a Cookie or HeaderVar (also configurable in a file)?
If the answer to both is yes, then the system is capable of 'third party trust' for authentication.
From your perspective, your logic for login should be something like:
Is my native authN turned off?
If yes, can I find the cookie or header that I should be looking for?
If yes, take the value and proceed to create user session for this identity per usual (except that you never evaluated the authN - you trust that it was done).
If no, present the native AuthN scheme anyway.
If you follow this pattern, you are in the good company of folks like PeopleSoft and Plumtree who had these types of integrations working long ago.
Yes, there are other ways to do this but, in my humble opinion, this remains the most stable and effective pattern we see.
What you ask for as the identity token value is up to you. It is often the login ID value that you would have used in your own authN procedure. There's nothing particularly sensitive about having a webgate set headers - they are only available to the server and not to the client. Cookie of course could be seen but can't be spoofed as the webgate has the final word on it's content.
Mark -
Hi All,
I recently installed OAM 11g using following Steps:
1. Installed 11g DB
2. RCU utility for creating OAM repositories
3. Installed WebLogic 11g
4. Added OAM instances to the Weblogic Domain
5. Launch Weblogic
5.1 Weblogic ADMIN console coming up without any issues: http://oam:7001/console
5.2 When I try to Launch OAM App from Weblogic console or CMD prompt (using command: startManagedWeblogic.cmd oam_server1 t3://oam:14001) I get the following error: OAM is not coming up:
============================================================
####<Nov 1, 2010 11:38:30 AM GMT-04:00> <Info> <Management> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625910745> <BEA-141187> <Java system properties are defined as follows:
CSS_TOOLKIT_LOC = C:\Oracle\Middleware\Oracle_IDM1\oam\server\lib\csslib
OAM_CONFIG_FILE = C:\Oracle\MIDDLE~1\USER_P~1\domains\oam\config\fmwconfig\oam-config.xml
OAM_ORACLE_HOME = C:\Oracle\Middleware\Oracle_IDM1\oam
OAM_POLICY_FILE = C:\Oracle\MIDDLE~1\USER_P~1\domains\oam\config\fmwconfig\oam-policy.xml
OAM_PROXY_LOG = C:\Oracle\MIDDLE~1\USER_P~1\domains\oam\config\fmwconfig\oam_proxy_logging.properties
awt.toolkit = sun.awt.windows.WToolkit
common.components.home = C:\Oracle\MIDDLE~1\ORACLE~1
domain.home = C:\Oracle\MIDDLE~1\USER_P~1\domains\oam
em.oracle.home = C:\Oracle\Middleware\oracle_common
file.encoding = Cp1252
file.encoding.pkg = sun.io
file.separator = \
igf.arisidbeans.carmlloc = C:\Oracle\MIDDLE~1\USER_P~1\domains\oam\config\FMWCON~1\carml
igf.arisidstack.home = C:\Oracle\MIDDLE~1\USER_P~1\domains\oam\config\FMWCON~1\arisidprovider
java.awt.graphicsenv = sun.awt.Win32GraphicsEnvironment
java.awt.headless = true
java.awt.printerjob = sun.awt.windows.WPrinterJob
java.class.path = C:\Oracle\MIDDLE~1\WLSERV~1.3\server\ext\jdbc\oracle\11g\ojdbc6dms.jar;C:\Oracle\MIDDLE~1\patch_wls1033\profiles\default\sys_manifest_classpath\weblogic_patch.jar;C:\Oracle\MIDDLE~1\JROCKI~1.0-6\lib\tools.jar;C:\Oracle\MIDDLE~1\WLSERV~1.3\server\lib\weblogic_sp.jar;C:\Oracle\MIDDLE~1\WLSERV~1.3\server\lib\weblogic.jar;C:\Oracle\MIDDLE~1\modules\features\weblogic.server.modules_10.3.3.0.jar;C:\Oracle\MIDDLE~1\WLSERV~1.3\server\lib\webservices.jar;C:\Oracle\MIDDLE~1\modules\ORGAPA~1.1/lib/ant-all.jar;C:\Oracle\MIDDLE~1\modules\NETSFA~1.0_1/lib/ant-contrib.jar;C:\Oracle\MIDDLE~1\ORACLE~1\soa\modules\commons-cli-1.1.jar;C:\Oracle\MIDDLE~1\ORACLE~1\soa\modules\oracle.soa.mgmt_11.1.1\soa-infra-mgmt.jar;C:\Oracle\Middleware\Oracle_IDM1\oam\agent\modules\oracle.oam.wlsagent_11.1.1\oam-wlsagent.jar;C:\Oracle\MIDDLE~1\ORACLE~1\modules\oracle.jrf_11.1.1\jrf.jar;C:\Oracle\MIDDLE~1\WLSERV~1.3\common\derby\lib\derbyclient.jar;C:\Oracle\MIDDLE~1\WLSERV~1.3\server\lib\xqrl.jar
java.class.version = 50.0
java.endorsed.dirs = C:\Oracle\MIDDLE~1\JROCKI~1.0-6\jre\lib\endorsed
java.ext.dirs = C:\Oracle\MIDDLE~1\JROCKI~1.0-6\jre\lib\ext
java.home = C:\Oracle\MIDDLE~1\JROCKI~1.0-6\jre
java.io.tmpdir = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\
java.library.path = C:\Oracle\MIDDLE~1\JROCKI~1.0-6\bin;.;C:\WINDOWS\system32;C:\WINDOWS;C:\Oracle\MIDDLE~1\patch_wls1033\profiles\default\native;C:\Oracle\MIDDLE~1\WLSERV~1.3\server\native\win\32;C:\Oracle\MIDDLE~1\WLSERV~1.3\server\bin;C:\Oracle\MIDDLE~1\modules\ORGAPA~1.1\bin;C:\Oracle\MIDDLE~1\JROCKI~1.0-6\jre\bin;C:\Oracle\MIDDLE~1\JROCKI~1.0-6\bin;c:\app\Administrator\product\11.2.0\dbhome_1\bin;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\Oracle\MIDDLE~1\WLSERV~1.3\server\native\win\32\oci920_8
java.naming.factory.initial = weblogic.jndi.WLInitialContextFactory
java.naming.factory.url.pkgs = weblogic.jndi.factories:weblogic.corba.j2ee.naming.url:weblogic.jndi.factories:weblogic.corba.j2ee.naming.url
java.protocol.handler.pkgs = oracle.mds.net.protocol|weblogic.net
java.runtime.name = Java(TM) SE Runtime Environment
java.runtime.version = 1.6.0_17-b04
java.security.policy = C:\Oracle\MIDDLE~1\WLSERV~1.3\server\lib\weblogic.policy
java.specification.name = Java Platform API Specification
java.specification.vendor = Sun Microsystems Inc.
java.specification.version = 1.6
java.vendor = Oracle Corporation
java.vendor.url = http://www.oracle.com/
java.vendor.url.bug = http://download.oracle.com/docs/cd/E15289_01/go2troubleshooting.html
java.version = 1.6.0_17
java.vm.info = compiled mode
java.vm.name = Oracle JRockit(R)
java.vm.specification.name = Java Virtual Machine Specification
java.vm.specification.vendor = Sun Microsystems Inc.
java.vm.specification.version = 1.0
java.vm.vendor = Oracle Corporation
java.vm.vendor.url = http://www.oracle.com/
java.vm.vendor.url.bug = http://download.oracle.com/docs/cd/E15289_01/go2troubleshooting.html
java.vm.version = R28.0.0-679-130297-1.6.0_17-20100312-2123-windows-ia32
javax.management.builder.initial = weblogic.management.jmx.mbeanserver.WLSMBeanServerBuilder
javax.rmi.CORBA.PortableRemoteObjectClass = weblogic.iiop.PortableRemoteObjectDelegateImpl
javax.rmi.CORBA.UtilClass = weblogic.iiop.UtilDelegateImpl
javax.xml.rpc.ServiceFactory = weblogic.webservice.core.rpc.ServiceFactoryImpl
javax.xml.soap.MessageFactory = weblogic.webservice.core.soap.MessageFactoryImpl
jrf.version = 11.1.1
jrockit.optfile = C:\Oracle\MIDDLE~1\ORACLE~1\modules\oracle.jrf_11.1.1\jrocket_optfile.txt
kernel.download.enabled = false
oes.enabled = true
oes.integration.path = C:\Oracle\Middleware\Oracle_IDM1\oam\server\lib\oeslib\oes-integration.jar
oes.jars.home = C:\Oracle\Middleware\Oracle_IDM1\oam\server\lib\oes-d8
oracle.core.ojdl.logging.applicationcontextprovider = oracle.core.ojdl.weblogic.ApplicationContextImpl
oracle.core.ojdl.logging.componentId = oam_server1
oracle.core.ojdl.logging.usercontextprovider = oracle.core.ojdl.weblogic.UserContextImpl
oracle.domain.config.dir = C:\Oracle\MIDDLE~1\USER_P~1\domains\oam\config\FMWCON~1
oracle.oaam.home = C:\Oracle\Middleware\Oracle_IDM1\oaam\
oracle.security.am.SERVER_INSTNCE_NAME = oam_server1
oracle.security.jps.config = C:\Oracle\MIDDLE~1\USER_P~1\domains\oam\config\fmwconfig\jps-config.xml
oracle.server.config.dir = C:\Oracle\MIDDLE~1\USER_P~1\domains\oam\config\FMWCON~1\servers\oam_server1
org.apache.commons.logging.Log = org.apache.commons.logging.impl.Jdk14Logger
org.omg.CORBA.ORBClass = weblogic.corba.orb.ORB
org.omg.CORBA.ORBSingletonClass = weblogic.corba.orb.ORB
org.xml.sax.driver = weblogic.xml.jaxp.RegistryXMLReader
org.xml.sax.parser = weblogic.xml.jaxp.RegistryParser
os.arch = x86
os.name = Windows 2003
os.version = 5.2
path.separator = ;
platform.home = C:\Oracle\MIDDLE~1\WLSERV~1.3
sun.arch.data.model = 32
sun.boot.class.path = C:\Oracle\MIDDLE~1\JROCKI~1.0-6\jre\lib\resources.jar;C:\Oracle\MIDDLE~1\JROCKI~1.0-6\jre\lib\rt.jar;C:\Oracle\MIDDLE~1\JROCKI~1.0-6\jre\lib\sunrsasign.jar;C:\Oracle\MIDDLE~1\JROCKI~1.0-6\jre\lib\jsse.jar;C:\Oracle\MIDDLE~1\JROCKI~1.0-6\jre\lib\jce.jar;C:\Oracle\MIDDLE~1\JROCKI~1.0-6\jre\lib\charsets.jar;C:\Oracle\MIDDLE~1\JROCKI~1.0-6\jre\classes
sun.boot.library.path = C:\Oracle\MIDDLE~1\JROCKI~1.0-6\jre\bin
sun.cpu.endian = little
sun.cpu.isalist = pentium_pro+mmx pentium_pro pentium+mmx pentium i486 i386 i86
sun.desktop = windows
sun.io.unicode.encoding = UnicodeLittle
sun.java.launcher = SUN_STANDARD
sun.jnu.encoding = Cp1252
sun.management.compiler = Oracle JRockit(R) Optimizing Compiler
sun.os.patch.level = Service Pack 2
user.country = US
user.dir = C:\Oracle\Middleware\user_projects\domains\oam
user.home = C:\Documents and Settings\Administrator
user.language = en
user.name = Administrator
user.timezone = GMT-04:00
vde.home = C:\Oracle\Middleware\user_projects\domains\oam\servers\oam_server1\data\ldap
weblogic.Name = oam_server1
weblogic.ProductionModeEnabled = true
weblogic.alternateTypesDirectory = C:\Oracle\Middleware\Oracle_IDM1\oam\agent\modules\oracle.oam.wlsagent_11.1.1,C:\Oracle\MIDDLE~1\ORACLE~1\modules\oracle.ossoiap_11.1.1,C:\Oracle\MIDDLE~1\ORACLE~1\modules\oracle.oamprovider_11.1.1
weblogic.classloader.preprocessor = weblogic.diagnostics.instrumentation.DiagnosticClassPreProcessor
weblogic.ext.dirs = C:\Oracle\MIDDLE~1\patch_wls1033\profiles\default\sysext_manifest_classpath
weblogic.home = C:\Oracle\MIDDLE~1\WLSERV~1.3\server
weblogic.jdbc.remoteEnabled = false
weblogic.management.discover = false
weblogic.management.server = t3://oam:14001
weblogic.security.SSL.trustedCAKeyStore = C:\Oracle\Middleware\wlserver_10.3\server\lib\cacerts
wls.home = C:\Oracle\MIDDLE~1\WLSERV~1.3\server
wlw.iterativeDev = false
wlw.logErrorsToConsole = false
wlw.testConsole = false
>
####<Nov 1, 2010 11:38:36 AM GMT-04:00> <Notice> <WebLogicServer> <OAM> <oam_server1> <Main Thread> <<WLS Kernel>> <> <> <1288625916703> <BEA-000365> <Server state changed to STANDBY>
####<Nov 1, 2010 11:38:36 AM GMT-04:00> <Notice> <WebLogicServer> <OAM> <oam_server1> <Main Thread> <<WLS Kernel>> <> <> <1288625916703> <BEA-000365> <Server state changed to STARTING>
####<Nov 1, 2010 11:38:36 AM GMT-04:00> <Info> <SAFService> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625916783> <BEA-281003> <SAF Service has been initialized.>
####<Nov 1, 2010 11:38:36 AM GMT-04:00> <Info> <SAFService> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625916813> <BEA-281002> <SAF Service has been started.>
####<Nov 1, 2010 11:38:36 AM GMT-04:00> <Info> <WseeCore> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625916823> <BEA-220502> <The Wsee Service is starting>
####<Nov 1, 2010 11:38:36 AM GMT-04:00> <Info> <Deployer> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625916853> <BEA-149209> <Resuming.>
####<Nov 1, 2010 11:38:39 AM GMT-04:00> <Info> <JDBC> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625919237> <BEA-001177> <Creating Connection Pool named oamDS, URL = jdbc:oracle:thin:@localhost:1521/oimdb, Properties = user=DEV_OAM;oracle.net.CONNECT_TIMEOUT=10000;.>
####<Nov 1, 2010 11:38:39 AM GMT-04:00> <Info> <Common> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625919287> <BEA-000626> <Free resources in pool "oamDS" will be tested every "300" seconds.>
####<Nov 1, 2010 11:38:40 AM GMT-04:00> <Info> <JDBC> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625920068> <BEA-001124> <Created Connection Pool named oamDS.>
####<Nov 1, 2010 11:38:40 AM GMT-04:00> <Info> <JDBC> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625920128> <BEA-001174> <Creating Data Source named oamDS, JNDI Name = jdbc/oamds.>
####<Nov 1, 2010 11:38:40 AM GMT-04:00> <Info> <JDBC> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625920298> <BEA-001512> <Data Source oamDS has been successfully created.>
####<Nov 1, 2010 11:38:40 AM GMT-04:00> <Info> <Diagnostics> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625920399> <BEA-320114> <Initializing the Diagnostics Harvester.>
####<Nov 1, 2010 11:38:40 AM GMT-04:00> <Info> <Diagnostics> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625920409> <BEA-320117> <The Harvester is being disabled because there are no Harvestable types configured specified.>
####<Nov 1, 2010 11:38:40 AM GMT-04:00> <Info> <Diagnostics> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625920419> <BEA-320119> <The Harvester is now in a inactive state.>
####<Nov 1, 2010 11:38:41 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625921761> <BEA-160151> <Registered library Extension-Name: UIX, Specification-Version: 11, Implementation-Version: 11.1.1.1.0 (WAR).>
####<Nov 1, 2010 11:38:42 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625922572> <BEA-160151> <Registered library Extension-Name: adf.oracle.domain, Specification-Version: 1, Implementation-Version: 11.1.1.2.0 (EAR).>
####<Nov 1, 2010 11:38:48 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625928370> <BEA-160151> <Registered library Extension-Name: adf.oracle.domain.webapp, Specification-Version: 1, Implementation-Version: 11.1.1.2.0 (WAR).>
####<Nov 1, 2010 11:38:48 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625928620> <BEA-160151> <Registered library Extension-Name: jsf, Specification-Version: 1.2, Implementation-Version: 1.2.9.0 (WAR).>
####<Nov 1, 2010 11:38:48 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625928691> <BEA-160151> <Registered library Extension-Name: jstl, Specification-Version: 1.2, Implementation-Version: 1.2.0.1 (WAR).>
####<Nov 1, 2010 11:38:48 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625928841> <BEA-160151> <Registered library Extension-Name: ohw-rcf, Specification-Version: 5, Implementation-Version: 5.0 (WAR).>
####<Nov 1, 2010 11:38:48 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625928961> <BEA-160151> <Registered library Extension-Name: ohw-uix, Specification-Version: 5, Implementation-Version: 5.0 (WAR).>
####<Nov 1, 2010 11:38:49 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625929111> <BEA-160151> <Registered library Extension-Name: oracle.adf.dconfigbeans, Specification-Version: 1, Implementation-Version: 11.1.1.2.0 (JAR).>
####<Nov 1, 2010 11:38:49 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625929251> <BEA-160151> <Registered library Extension-Name: oracle.adf.management, Specification-Version: 1, Implementation-Version: 11.1.1.2.0 (WAR).>
####<Nov 1, 2010 11:38:49 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625929281> <BEA-160151> <Registered library Extension-Name: oracle.dconfig-infra, Specification-Version: 11, Implementation-Version: 11.1.1.1.0 (JAR).>
####<Nov 1, 2010 11:38:49 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625929351> <BEA-160151> <Registered library Extension-Name: oracle.jrf.system.filter (WAR).>
####<Nov 1, 2010 11:38:49 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625929572> <BEA-160151> <Registered library Extension-Name: oracle.jsp.next, Specification-Version: 11.1.1, Implementation-Version: 11.1.1 (JAR).>
####<Nov 1, 2010 11:38:49 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625929592> <BEA-160151> <Registered library Extension-Name: oracle.pwdgen, Specification-Version: 11.1.1, Implementation-Version: 11.1.1.2.0 (JAR).>
####<Nov 1, 2010 11:38:49 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625929622> <BEA-160151> <Registered library Extension-Name: oracle.wsm.seedpolicies, Specification-Version: 11.1.1, Implementation-Version: 11.1.1 (JAR).>
####<Nov 1, 2010 11:38:49 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625929642> <BEA-160151> <Registered library Extension-Name: orai18n-adf, Specification-Version: 11, Implementation-Version: 11.1.1.1.0 (JAR).>
####<Nov 1, 2010 11:38:50 AM GMT-04:00> <Error> <Deployer> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625930613> <BEA-149205> <Failed to initialize the application 'oracle.idm.uishell [LibSpecVersion=11.1.1,LibImplVersion=11.1.1]' due to error weblogic.management.DeploymentException: Exception occured while downloading files.
weblogic.management.DeploymentException: Exception occured while downloading files
at weblogic.deploy.internal.targetserver.datamanagement.AppDataUpdate.doDownload(AppDataUpdate.java:43)
at weblogic.deploy.internal.targetserver.datamanagement.DataUpdate.download(DataUpdate.java:56)
at weblogic.deploy.internal.targetserver.datamanagement.Data.prepareDataUpdate(Data.java:97)
at weblogic.deploy.internal.targetserver.BasicDeployment.prepareDataUpdate(BasicDeployment.java:683)
at weblogic.deploy.internal.targetserver.BasicDeployment.stageFilesForStatic(BasicDeployment.java:725)
at weblogic.deploy.internal.targetserver.AppDeployment.prepare(AppDeployment.java:104)
at weblogic.management.deploy.internal.DeploymentAdapter$1.doPrepare(DeploymentAdapter.java:40)
at weblogic.management.deploy.internal.DeploymentAdapter.prepare(DeploymentAdapter.java:191)
at weblogic.management.deploy.internal.AppTransition$1.transitionApp(AppTransition.java:22)
at weblogic.management.deploy.internal.ConfiguredDeployments.transitionApps(ConfiguredDeployments.java:240)
at weblogic.management.deploy.internal.ConfiguredDeployments.prepare(ConfiguredDeployments.java:166)
at weblogic.management.deploy.internal.ConfiguredDeployments.deploy(ConfiguredDeployments.java:122)
at weblogic.management.deploy.internal.DeploymentServerService.resume(DeploymentServerService.java:181)
at weblogic.management.deploy.internal.DeploymentServerService.start(DeploymentServerService.java:97)
at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
at weblogic.work.SelfTuningWorkManagerImpl$WorkAdapterImpl.run(SelfTuningWorkManagerImpl.java:528)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
Caused By: java.net.ConnectException: Tried all: '1' addresses, but could not connect over HTTP to server: 'oam', port: '14001'
at weblogic.net.http.HttpClient.openServer(HttpClient.java:327)
at weblogic.net.http.HttpClient.openServer(HttpClient.java:419)
at weblogic.net.http.HttpClient.New(HttpClient.java:246)
at weblogic.net.http.HttpURLConnection.connect(HttpURLConnection.java:176)
at weblogic.deploy.service.datatransferhandlers.HttpDataTransferHandler.getDataAsStream(HttpDataTransferHandler.java:75)
at weblogic.deploy.service.datatransferhandlers.DataHandlerManager$RemoteDataTransferHandler.getDataAsStream(DataHandlerManager.java:153)
at weblogic.deploy.internal.targetserver.datamanagement.AppDataUpdate.doDownload(AppDataUpdate.java:39)
at weblogic.deploy.internal.targetserver.datamanagement.DataUpdate.download(DataUpdate.java:57)
at weblogic.deploy.internal.targetserver.datamanagement.Data.prepareDataUpdate(Data.java:97)
at weblogic.deploy.internal.targetserver.BasicDeployment.prepareDataUpdate(BasicDeployment.java:683)
at weblogic.deploy.internal.targetserver.BasicDeployment.stageFilesForStatic(BasicDeployment.java:725)
at weblogic.deploy.internal.targetserver.AppDeployment.prepare(AppDeployment.java:104)
at weblogic.management.deploy.internal.DeploymentAdapter$1.doPrepare(DeploymentAdapter.java:40)
at weblogic.management.deploy.internal.DeploymentAdapter.prepare(DeploymentAdapter.java:191)
at weblogic.management.deploy.internal.AppTransition$1.transitionApp(AppTransition.java:22)
at weblogic.management.deploy.internal.ConfiguredDeployments.transitionApps(ConfiguredDeployments.java:240)
at weblogic.management.deploy.internal.ConfiguredDeployments.prepare(ConfiguredDeployments.java:166)
at weblogic.management.deploy.internal.ConfiguredDeployments.deploy(ConfiguredDeployments.java:122)
at weblogic.management.deploy.internal.DeploymentServerService.resume(DeploymentServerService.java:181)
at weblogic.management.deploy.internal.DeploymentServerService.start(DeploymentServerService.java:97)
at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
at weblogic.work.SelfTuningWorkManagerImpl$WorkAdapterImpl.run(SelfTuningWorkManagerImpl.java:528)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
>
####<Nov 1, 2010 11:38:51 AM GMT-04:00> <Info> <J2EE> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625931064> <BEA-160151> <Registered library Extension-Name: oracle.webcenter.composer, Specification-Version: 11.1.1, Implementation-Version: 11.1.1 (WAR).>
####<Nov 1, 2010 11:38:52 AM GMT-04:00> <Error> <Deployer> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625932005> <BEA-149205> <Failed to initialize the application 'oracle.oaam.libs [LibSpecVersion=11.1.1.3.0,LibImplVersion=11.1.1.3.0]' due to error weblogic.management.DeploymentException: Exception occured while downloading files.
weblogic.management.DeploymentException: Exception occured while downloading files
at weblogic.deploy.internal.targetserver.datamanagement.AppDataUpdate.doDownload(AppDataUpdate.java:43)
at weblogic.deploy.internal.targetserver.datamanagement.DataUpdate.download(DataUpdate.java:56)
at weblogic.deploy.internal.targetserver.datamanagement.Data.prepareDataUpdate(Data.java:97)
at weblogic.deploy.internal.targetserver.BasicDeployment.prepareDataUpdate(BasicDeployment.java:683)
at weblogic.deploy.internal.targetserver.BasicDeployment.stageFilesForStatic(BasicDeployment.java:725)
at weblogic.deploy.internal.targetserver.AppDeployment.prepare(AppDeployment.java:104)
at weblogic.management.deploy.internal.DeploymentAdapter$1.doPrepare(DeploymentAdapter.java:40)
at weblogic.management.deploy.internal.DeploymentAdapter.prepare(DeploymentAdapter.java:191)
at weblogic.management.deploy.internal.AppTransition$1.transitionApp(AppTransition.java:22)
at weblogic.management.deploy.internal.ConfiguredDeployments.transitionApps(ConfiguredDeployments.java:240)
at weblogic.management.deploy.internal.ConfiguredDeployments.prepare(ConfiguredDeployments.java:166)
at weblogic.management.deploy.internal.ConfiguredDeployments.deploy(ConfiguredDeployments.java:122)
at weblogic.management.deploy.internal.DeploymentServerService.resume(DeploymentServerService.java:181)
at weblogic.management.deploy.internal.DeploymentServerService.start(DeploymentServerService.java:97)
at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
at weblogic.work.SelfTuningWorkManagerImpl$WorkAdapterImpl.run(SelfTuningWorkManagerImpl.java:528)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
Caused By: java.net.ConnectException: Tried all: '1' addresses, but could not connect over HTTP to server: 'oam', port: '14001'
at weblogic.net.http.HttpClient.openServer(HttpClient.java:327)
at weblogic.net.http.HttpClient.openServer(HttpClient.java:419)
at weblogic.net.http.HttpClient.New(HttpClient.java:246)
at weblogic.net.http.HttpURLConnection.connect(HttpURLConnection.java:176)
at weblogic.deploy.service.datatransferhandlers.HttpDataTransferHandler.getDataAsStream(HttpDataTransferHandler.java:75)
at weblogic.deploy.service.datatransferhandlers.DataHandlerManager$RemoteDataTransferHandler.getDataAsStream(DataHandlerManager.java:153)
at weblogic.deploy.internal.targetserver.datamanagement.AppDataUpdate.doDownload(AppDataUpdate.java:39)
at weblogic.deploy.internal.targetserver.datamanagement.DataUpdate.download(DataUpdate.java:57)
at weblogic.deploy.internal.targetserver.datamanagement.Data.prepareDataUpdate(Data.java:97)
at weblogic.deploy.internal.targetserver.BasicDeployment.prepareDataUpdate(BasicDeployment.java:683)
at weblogic.deploy.internal.targetserver.BasicDeployment.stageFilesForStatic(BasicDeployment.java:725)
at weblogic.deploy.internal.targetserver.AppDeployment.prepare(AppDeployment.java:104)
at weblogic.management.deploy.internal.DeploymentAdapter$1.doPrepare(DeploymentAdapter.java:40)
at weblogic.management.deploy.internal.DeploymentAdapter.prepare(DeploymentAdapter.java:191)
at weblogic.management.deploy.internal.AppTransition$1.transitionApp(AppTransition.java:22)
at weblogic.management.deploy.internal.ConfiguredDeployments.transitionApps(ConfiguredDeployments.java:240)
at weblogic.management.deploy.internal.ConfiguredDeployments.prepare(ConfiguredDeployments.java:166)
at weblogic.management.deploy.internal.ConfiguredDeployments.deploy(ConfiguredDeployments.java:122)
at weblogic.management.deploy.internal.DeploymentServerService.resume(DeploymentServerService.java:181)
at weblogic.management.deploy.internal.DeploymentServerService.start(DeploymentServerService.java:97)
at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
at weblogic.work.SelfTuningWorkManagerImpl$WorkAdapterImpl.run(SelfTuningWorkManagerImpl.java:528)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
>
####<Nov 1, 2010 11:38:52 AM GMT-04:00> <Info> <Deployer> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1288625932025> <BEA-149059> <Module dms.war of application DMS Application [Version=11.1.1.1.0] is transitioning from STATE_NEW to STATE_PREPARED on server oam_server1.>
####<Nov 1, 2010 11:38:58 AM GMT-04:00> <Info> <Deployer> <OAM> <oam_server1> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <>
============================================================
Any suggestiongs on as to what might be causing this error?
Did I miss a step in OAM installation?
Thanks for your help in advanceI changed the port as per the doc 1384844.1 and I still get the same problem.
-
OAM (10.1.4.3) Integration with WebLogic App Server (10.3.0 or below)
Hi All,
Can I use OAM 10.1.4.3 (Authentication Provider & Identity Asserter) to implement SSO with weblogic App Server 10.3.0 or below?
OAM 10.1.4.3 Authentication Provider & Identity Asserter is the recommended way to configure SSO with Web Logic App server 10.3.1 ( Oracle Middleware 11g).
And
OAM 10.1.4.2 uses WebLogic SSPI to configure SSO between OAM 10g and WebLogic App Server 10.3.0 or below.Hi,
This is how the integration goes with different versions of WLS and OAM.
There is oamAuthnProvider.jar available with OAM 10.1.4.3 downloads. So it provides the assertion functionality.
Can I use OAM 10.1.4.3 (Authentication Provider & Identity Asserter) to implement SSO with weblogic App Server 10.3.0 or below?
Mahendra: Yes
OAM 10.1.4.3 Authentication Provider & Identity Asserter is the recommended way to configure SSO with Web Logic App server 10.3.1 ( Oracle Middleware 11g).
Mahendra: Yes, this is the recommended and easy approach.
OAM 10.1.4.2 uses WebLogic SSPI to configure SSO between OAM 10g and WebLogic App Server 10.3.0 or below.
Mahendra: Yes, older version of OAM uses SSPI connector installation.
HTH.
Mahendra. -
OAM Identity Asserter Provider Error:Unable to create the AccessGate entry
Hi All,
I have installed Oracle Access Manager and trying to protect an application deployed on weblogic application server.
I have added the jar oamAuthnProvider in weblogic server lib mbeantypes and configured an OAM Identity Asserter Provider in myrealm. When I restart the weblogic server, I encounter the following error:
<Error> <> <BEA-000000> <OAMAP-60516:Unableto create the AccessGate entry for identity assertion/authentication.>
<Error> <Security> <BEA-090870> <The realm "myrealm" failed to be loaded: weblogic.security.service.SecurityServiceException
: com.bea.common.engine.ServiceInitializationException: java.lang.RuntimeException.weblogic.security.service.SecurityServiceException: com.bea.common.engine.ServiceInitializationException: java.lang.RuntimeException
When I remove the following section from config.xml, the server starts fine:
<sec:authentication-provider xmlns:ext="http://www.bea.com/ns/weblogic/90/security/extension" xsi:type="ext:oam-identity-asserterType">
<n1:name xmlns:n1="http://www.bea.com/ns/weblogic/90/security">OAMID</n1:name>
<n2:control-flag xmlns:n2="http://www.bea.com/ns/weblogic/90/security">REQUIRED</n2:control-flag>
<ext:access-gate-name>MYAPP</ext:access-gate-name>
<ext:primary-access-server>AccessServer</ext:primary-access-server>
<ext:application-domain>MYDOMAIN.com</ext:application-domain>
<ext:access-gate-password-encrypted>{AES}P3UIYbQpYupPs=</ext:access-gate-password-encrypted>
</sec:authentication-provider>
Has anyone come across this error before? Please suggest a workaround..
Software versions being used:
OAM 10.1.4.3
Weblogic: 10.3.2
Thanks
JoeI am having the same problem on my WLS 10.3.4. running OSB 11g. I get the following error:
tuning)'> <<WLS Kernel>> <> <> <1296595010528> <BEA-000000> <OAMAP-60516:Unable to create the AccessGate entry for identity assertion/authentication.>
####<Feb 1, 2011 1:16:50 PM PST> <Info> <Security> <WD-OR14P5A5W624> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1296595010528> <BEA-090511> <The following exception has occurred:
com.bea.common.engine.ServiceInitializationException: java.lang.RuntimeException
at com.bea.common.engine.internal.ServiceEngineImpl.findOrStartService(ServiceEngineImpl.java:365)
at com.bea.common.engine.internal.ServiceEngineImpl.findOrStartService(ServiceEngineImpl.java:315)
at com.bea.common.engine.internal.ServiceEngineImpl.lookupService(ServiceEngineImpl.java:257)
at com.bea.common.engine.internal.ServicesImpl.getService(ServicesImpl.java:72)
at weblogic.security.service.internal.WLSIdentityServiceImpl.initialize(WLSIdentityServiceImpl.java:47)
at weblogic.security.service.CSSWLSDelegateImpl.initializeServiceEngine(CSSWLSDelegateImpl.java:300)
at weblogic.security.service.CSSWLSDelegateImpl.initialize(CSSWLSDelegateImpl.java:222)
at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.InitializeServiceEngine(CommonSecurityServiceManagerDelegateImpl.java:1784)
at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.initializeRealm(CommonSecurityServiceManagerDelegateImpl.java:445)
at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.loadRealm(CommonSecurityServiceManagerDelegateImpl.java:840)
at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.initializeRealms(CommonSecurityServiceManagerDelegateImpl.java:870)
at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.initialize(CommonSecurityServiceManagerDelegateImpl.java:1030)
at weblogic.security.service.SecurityServiceManager.initialize(SecurityServiceManager.java:881)
at weblogic.security.SecurityService.start(SecurityService.java:142)
at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
I looked the error number up and it says:
OAMAP-60516: Unable to create the AccessGate entry for identity assertion/authentication.
Cause: AccessGate instance creation failed.
Action: See the Identity Asserter/Authenticator log for details.
Level: 1
Type: ERROR
Impact: Configuration
This seems to indication my identity assertion is incorrect. My oam authentication provider is pretty simple.
I am using OPEN transport security so the provider config is pretty simple. I provided an AccessGate pwd, primary and secondary access gate servers and Access Gate name provided by my administrator.
I'm not sure about what the Application Domain field refers to. Can someone provide guidance on that? -
Need information on OAM 11gR2 protecting OIM 11gR2
Hi All,
I need to implement a solution wherein I have to protect OIM 11gR2 application using OAM 11g2.
So in this case the identity store for OIM is the normal Oracle database and we have used the generic LDAP connector to provision the users to a LDAP directory which is the identity store for OAM.
I have gone through the OIM integration with OAM and it talks about a lot of steps involving extension of the identity store for both OIM and OAM,(Integrating Access Manager and Oracle Identity Manager - 11g Release 2 (11.1.2))
In my case I don't need the features like centralized password management functionality...we only want to protect the OIM application.
So is it possible to enable SSO without
1)Externalizing the identity store of OIM to the LDAP directory which is the identity store for OAM,and hence not running the LDAP sync utility
Also can you please guide me to a document that specifies the steps.
ThanksHi Thiago,
Thanks for your replies.
Yes, I followed certification matrix and tried to install 11.1.1.6 only on wlserver 10.3.6.
Can you please eloborate on the below points? Or If there are any urls for detailed steps, please provide them.
-What you have to do:
+2.1-On Application Server Navigator you can create types of connection:+
+2.2-Integrated WLS option+
+2.3-Standalone WLS option+
+2.4-This first option you can install a local standalone WLS 10.3.6 server on your environment, then create a separate "integrated WLS" connection to the standalone server.+
+2.5-Then go to your Application's properties through the Application menu -> Application Properties -> Run -> Bind to Integration Application Server option you can the brand new option created WLS server connection to work with your application.+
+3.0- Don't forget that you need to install the ADF Runtimes for the server to be able to work with ADF applications+ -
OAM WebLogic integration issue
Hi
I have integrated portal application hosted on WebLogic with OAM using SSPI.
The integration is successful and the application is working fine but we see following Error message in the weblogic logs whenever user hits the Portal home page.
<Dec 2, 2008 1:39:20 AM PST> <Error> <NetPointSecurityProviders> <700012> <Access system authorization failed for resource. Type [wl_authen], Name [Authen/Basic], Operation [LOGIN]. Reason - User's authentication level is insufficient for a requested resource.>
We see this message only when user is not authenticated before and hits Portal home page which also has Login portlet. Once user is authenticated and access any resource on the portal application, we do not see such error messages.
Has anyone faced this issue before? And what could be wrong with the integration?
Thanks
Kiran ThakkarHi kiran,
U hve said tht u r successfull in integrating weblogic application server with OAM using SSPI
The same oly v are also trying to do but we are facing some issues:
I'm using BEA weblogic8.1sp3,OAM10.1.4.0.1 and SSPI10.1.4.0.1
During instillation of SSPI i have selected the advanced instillation so the policies are automatically getting deployed in my OAM but after tht my weblogic is not able to start.
In the log file it is showing the following errors:
####<Jan 28, 2009 12:37:02 PM IST> <Debug> <NetPointSecurityProviders> <wipro-67b4e0638> <myserver> <main> <<WLS Kernel>> <000000> <ObUserSession ctor from username, password failed
com.oblix.access.ObAccessException: Unprotected resource LOGIN wl_authen:/Authen/Basic used in an ObAuthenticationScheme or ObUserSession constructor.
at com.oblix.access.ObUserSession.initCppSideAuthenticate(Native Method)
at com.oblix.access.ObUserSession.<init>(ObUserSession.java:243)
at com.oblix.weblogic.internal.OblixDatabase.login(OblixDatabase.java:192)
at com.oblix.weblogic.security.providers.authentication.OblixLoginModuleImpl.login(OblixLoginModuleImpl.java:193)
at weblogic.security.service.DelegateLoginModuleImpl.login(DelegateLoginModuleImpl.java:71)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:324)
at javax.security.auth.login.LoginContext.invoke(LoginContext.java:675)
at javax.security.auth.login.LoginContext.access$000(LoginContext.java:129)
at javax.security.auth.login.LoginContext$4.run(LoginContext.java:610)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.login.LoginContext.invokeModule(LoginContext.java:607)
at javax.security.auth.login.LoginContext.login(LoginContext.java:534)
at weblogic.security.service.PrincipalAuthenticator.authInternal(PrincipalAuthenticator.java:326)
at weblogic.security.service.PrincipalAuthenticator.authenticate(PrincipalAuthenticator.java:279)
at weblogic.security.service.SecurityServiceManagerDelegateImpl.doBootAuthorization(SecurityServiceManagerDelegateImpl.java:786)
at weblogic.security.service.SecurityServiceManagerDelegateImpl.initialize(SecurityServiceManagerDelegateImpl.java:886)
at weblogic.security.service.SecurityServiceManager.initialize(SecurityServiceManager.java:717)
at weblogic.t3.srvr.T3Srvr.initializeHere(T3Srvr.java:822)
at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:670)
at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:344)
at weblogic.Server.main(Server.java:32)
####<Jan 28, 2009 12:37:02 PM IST> <Debug> <NetPointSecurityProviders> <wipro-67b4e0638> <myserver> <main> <<WLS Kernel>> <000000> <Entering OblixLoginModuleImpl.abort>
####<Jan 28, 2009 12:37:02 PM IST> <Critical> <Security> <wipro-67b4e0638> <myserver> <main> <<WLS Kernel>> <BEA-090402> <Authentication denied: Boot identity not valid; The user name and/or password from the boot identity file (boot.properties) is not valid. The boot identity may have been changed since the boot identity file was created. Please edit and update the boot identity file with the proper values of username and password. The first time the updated boot identity file is used to start the server, these new values are encrypted.>
Can you please help me to solve this problem.
Thanks in advance.
Maybe you are looking for
-
My iTunes wont sync from my phone to my new laptop.
I purchased a new macbook pro but my iPhone 5s won't allow me to copy over all my music. Purchased items will copy and i can access my music when its plugged in through the on this phone tab, yet i can't copy it over entirely to my laptop. Also i hav
-
Download runtime version of rule used and create in bpm process
Dear experts, does anybody know, if there is a possibility of updating used brm rules used in a bpm process? There seems to be a way, when you create a separate brm project: Importing an Updated Project into the Rules Composer - Working with the Rule
-
Newly placed images not showing up and Text Styles not previewing correctly
I was playing around with defining new text styles and they looked OK in Dreamweaver but when previewed in browser everything was in Times. I deleted all the pre-set styles trying to fix the problem out why when I realized now newly placed images don
-
FCP help! Please? Lines in my picture
Hi. Please help me if you can. I am exporting a Quicktime movie from FCP for DVD Studio Pro 4. I chose the MPEG 4 option in the compression, make it best quality and bounce it. But when I look at the self-contained mov file, every time a person walks
-
How to Trigger an Alert from a Process Chain
Hi BW-Experts, i have implementated a custom process type. Then i choose my alert and activate the process chain. After this i make a double click on my process type, there is always a standard alert deposited (RNIF_ALERTS), but not my alert. What is