ODSM unable to connect to OVD SSL admin port

Similar Messages

• Not able to connect iPlanet Proxy on ADMIN port with windows 2003

  I have configured iPlanet 3.6 on Windows 2003 server with admin port as 10000 and Client connection on port 8000.
  I m Able to use client port thru 8000 but when i goto particular URL i.e http:\\I.P:10000 it do ask for admin user name aND password.. and after that it show "page cannot be displayed" .. where as if i try on same server to connect to admin panel thru netscape . once it ask the user name password for iPlanet and after that is keeps asking user name password in WINDOWS STYLE.. liek some time it ask for IIS .. i dont know why and overall i am not able to connect to it on admin port ..
  pls provide some solution if any one have faced similar problem..

  I would strongly advise you to consider 4.0.2 version of proxy, 3.6 is not ofiicially supported on windows 2003, see http://docs.sun.com/source/819-3619-10/relnotes36sp8_win.html#wp19243
  Speaking of possible workarounds for your issue with 3.6, I've seen admin console acting weird when it is configured with 5 digit port. Changing it to 4 digits might be worth a shot.

• Unable to connect to OVD using the odsm

  Hi All,
  I was unable to connect to the OVD 11.1.1.3.0 installed using the ODSM, while i was able to connect to the OID happily.
  I tried to connect to the OVD using the adminssl port (8899), non-ssl port (6501), ssl port (7501). I have the user id as cn=orcladmin. i was redirected to some Certificate Trust Validation pop-window and then it was throwing the error to check the log.
  I cant figure out what might be the issue. please help me. i'm copying the content of the log file below.
  [2012-04-16T22:10:42.891+05:30] [wls_ods1] [WARNING] [] [org.apache.myfaces.trinidadinternal.context.RequestContextImpl] [tid: [ACTIVE].ExecuteThread: '3' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000JQw1lFf4io95nf5EiZ1FZ42L00005z,0] [APP: odsm#11.1.1.2.0] Could not find partial trigger viewerId from UIHierarchyViewer[UIXFacesBeanImpl, id=hv1] with the supported partialTriggers syntax. The partial trigger was found with the deprecated syntax. Please use the supported syntax.
  [2012-04-16T22:10:42.906+05:30] [wls_ods1] [WARNING] [] [org.apache.myfaces.trinidadinternal.context.RequestContextImpl] [tid: [ACTIVE].ExecuteThread: '3' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000JQw1lFf4io95nf5EiZ1FZ42L00005z,0] [APP: odsm#11.1.1.2.0] Could not find partial trigger cmdb1 from UIHierarchyViewer[UIXFacesBeanImpl, id=hv1] with the supported partialTriggers syntax. The partial trigger was found with the deprecated syntax. Please use the supported syntax.
  [2012-04-16T22:10:43.625+05:30] [wls_ods1] [ERROR] [] [oracle.adfinternal.view.faces.config.rich.RegistrationConfigurator] [tid: [ACTIVE].ExecuteThread: '3' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 0000JQw1lFf4io95nf5EiZ1FZ42L00005z,0] [APP: odsm#11.1.1.2.0] Server Exception during PPR, #56[[
  javax.servlet.ServletException: com/octetstring/vde/admin/services/client/VDEAdminServiceSoapBindingStub
       at javax.faces.webapp.FacesServlet.service(FacesServlet.java:277)
       at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
       at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
       at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:300)
       at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:27)
       at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
       at oracle.help.web.rich.OHWFilter.doFilter(Unknown Source)
       at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
       at oracle.adfinternal.view.faces.webapp.rich.RegistrationFilter.doFilter(RegistrationFilter.java:97)
       at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterListChain.doFilter(TrinidadFilterImpl.java:421)
       at oracle.adfinternal.view.faces.activedata.AdsFilter.doFilter(AdsFilter.java:60)
       at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterListChain.doFilter(TrinidadFilterImpl.java:421)
       at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl._doFilterImpl(TrinidadFilterImpl.java:247)
       at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl.doFilter(TrinidadFilterImpl.java:157)
       at org.apache.myfaces.trinidad.webapp.TrinidadFilter.doFilter(TrinidadFilter.java:92)
       at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
       at oracle.dms.wls.DMSServletFilter.doFilter(DMSServletFilter.java:326)
       at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
       at weblogic.servlet.internal.RequestEventsFilter.doFilter(RequestEventsFilter.java:27)
       at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:57)
       at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.doIt(WebAppServletContext.java:3684)
       at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3650)
       at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
       at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:121)
       at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2268)
       at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2174)
       at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1446)
       at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
       at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
  Caused by: java.lang.NoClassDefFoundError: com/octetstring/vde/admin/services/client/VDEAdminServiceSoapBindingStub
       at com.octetstring.vde.admin.services.client.ServerMgrServiceLocator.getVDEAdminService(ServerMgrServiceLocator.java:58)
       at oracle.ldap.odsm.model.ovd.APServerProxy.connect(APServerProxy.java:248)
       at oracle.ldap.odsm.model.ovd.APServerProxy.authenticateAs(APServerProxy.java:684)
       at oracle.ldap.odsm.model.ovd.APServerProxy.authenticate(APServerProxy.java:286)
       at oracle.ldap.odsm.model.ovd.APServerProxy.init(APServerProxy.java:216)
       at oracle.ldap.odsm.model.ovd.APServerProxy.<init>(APServerProxy.java:198)
       at oracle.ldap.odsm.model.ovd.OVDRoot.connectOVD(OVDRoot.java:185)
       at oracle.ldap.odsm.ui.common.Connection.connect(Connection.java:120)
       at oracle.ldap.odsm.ui.common.Visit.createConnection(Visit.java:663)
       at oracle.ldap.odsm.ui.common.PopupItem._createConnection(PopupItem.java:1815)
       at oracle.ldap.odsm.ui.common.PopupItem.alwaysAction(PopupItem.java:1763)
       at sun.reflect.GeneratedMethodAccessor316.invoke(Unknown Source)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
       at java.lang.reflect.Method.invoke(Method.java:597)
       at com.sun.el.parser.AstValue.invoke(AstValue.java:157)
       at com.sun.el.MethodExpressionImpl.invoke(MethodExpressionImpl.java:283)
       at org.apache.myfaces.trinidadinternal.taglib.util.MethodExpressionMethodBinding.invoke(MethodExpressionMethodBinding.java:53)
       at org.apache.myfaces.trinidad.component.UIXComponentBase.broadcastToMethodBinding(UIXComponentBase.java:1245)
       at org.apache.myfaces.trinidad.component.UIXCommand.broadcast(UIXCommand.java:183)
       at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl.broadcastEvents(LifecycleImpl.java:812)
       at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl._executePhase(LifecycleImpl.java:292)
       at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl.execute(LifecycleImpl.java:177)
       at javax.faces.webapp.FacesServlet.service(FacesServlet.java:265)
       at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
       at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
       at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:300)
       at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
       at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
       at oracle.help.web.rich.OHWFilter.doFilter(Unknown Source)
       at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
       at oracle.adfinternal.view.faces.webapp.rich.RegistrationFilter.doFilter(RegistrationFilter.java:97)
       at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterListChain.doFilter(TrinidadFilterImpl.java:420)
       at oracle.adfinternal.view.faces.activedata.AdsFilter.doFilter(AdsFilter.java:60)
       at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterListChain.doFilter(TrinidadFilterImpl.java:420)
       at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl._doFilterImpl(TrinidadFilterImpl.java:247)
       at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl.doFilter(TrinidadFilterImpl.java:157)
       at org.apache.myfaces.trinidad.webapp.TrinidadFilter.doFilter(TrinidadFilter.java:92)
       at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
       at oracle.dms.wls.DMSServletFilter.doFilter(DMSServletFilter.java:326)
       at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
       at weblogic.servlet.internal.RequestEventsFilter.doFilter(RequestEventsFilter.java:27)
       at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
       ... 9 more
  [2012-04-16T22:11:49.094+05:30] [wls_ods1] [NOTIFICATION] [DIP-10580] [oracle.dip] [tid: UpdateThread] [userId: <anonymous>] [ecid: 0000JQvv94D4io95nf5EiZ1FZ42L000036,0] [APP: DIP#11.1.1.2.0] [arg: (&(changenumber>=11222)(|(targetdn=*cn=Profiles,cn=Provisioning,cn=Directory Integration Platform,cn=Products,cn=OracleContext)(targetdn=*cn=event definitions,cn=directory integration platform,cn=products,cn=oraclecontext)(targetdn=*cn=object definitions,cn=directory integration platform,cn=products,cn=oraclecontext)))] changelog filter : (&(changenumber>=11222)(|(targetdn=*cn=Profiles,cn=Provisioning,cn=Directory Integration Platform,cn=Products,cn=OracleContext)(targetdn=*cn=event definitions,cn=directory integration platform,cn=products,cn=oraclecontext)(targetdn=*cn=object definitions,cn=directory integration platform,cn=products,cn=oraclecontext)))

  you need java connector

• JDeveloper fails to connect after enabling SSL Listen Port

  Hi,
  When I activate SSL on port 8002 (SSL Listen Port Enabled) for my soa_server in weblogic console, JDeveloper fails to connect to the server when deploying.
  Soa server lookup takes a long time an ends in an error failed to connect to <server>:8002
  When I turn off SSL JDev can find the SOA server again.
  I use JDeveloper 11.1.1.4 and SOA Suite 11.1.1.4
  What can I do about this?
  Groeten,
  HJH

  Here's the top 3 causes for this:
  (1) make sure the database listener is running on the server with the database.
  (2) make sure the connection information that JDeveloper is using is correct.
  (3) remember that JDeveloper uses the SID and not the service name.
  Rob
  Team JDev

• Unable to connect to internal SSL sites with unknown CA's after 36.0 update.

  Last week my browser auto-updated to version 36.0 and I am now no longer able to connect to certain internal corporate websites. These sites either have self-signed certs, or certs signed by an internal CA. They do not use certs signed by publicly known "trusted" CA's.
  For example, one of the errors that I receive is below:
  Secure Connection Failed
  An error occurred during a connection to [HOST]:[PORT]. SSL peer rejected a handshake message for unacceptable content. (Error code: ssl_error_illegal_parameter_alert)
  Although a warning message is received in IE or Chrome we are given the option to proceed and the site opens correctly, despite those browsers also indicating that the servers cert is not trusted.
  I have added the internal CA's cert to the Authorities tab in the Firefox Certificate Manager, but am still not able to connect to the internal site.
  Firefox allows me to accept some incorrect certs (or at least it did in the past), why is this not the default behavior with *all* certificate related problems? I realize that there are malicious sites out there, but there are also internal ones that are being blocked as well. Is there a config option that can be set so a user is prompted for all cert errors and they can decide to proceed if desired instead of just being blocked from the site? I understand blocking by default, but there also needs to be a way to proceed for advanced users.
  Are there any configuration options to loosen the cert standards for sites? All other sites seem to load properly and otherwise there are no problems with the browser.
  Sorry if this is the wrong place to post, I wasn't sure where to.
  Thanks for any assistance!
  -Beaty

  First, sorry for the delay in responding, things have been crazy here lately.
  Secondly, here is the output from openSSL for connecting to the server:
  OpenSSL> s_client -connect qrsa01.qnao.net:443
  Loading 'screen' into random state - done
  CONNECTED(00000180)
  depth=1 CN = RSA root CA for qrsa01.qnao.net, serialNumber = 15702a01a563d5b8f2b
  a65250ad81947eef537554eae2320efed2159a8193bd5
  verify error:num=19:self signed certificate in certificate chain
  Certificate chain
  0 s:/CN=qrsa01.qnao.net/serialNumber=3b444eeb8355fb2b5b686d03ce1c0a61cd3552a184
  001b9564700f7cebcbe9f0
  i:/CN=RSA root CA for qrsa01.qnao.net/serialNumber=15702a01a563d5b8f2ba65250a
  d81947eef537554eae2320efed2159a8193bd5
  1 s:/CN=RSA root CA for qrsa01.qnao.net/serialNumber=15702a01a563d5b8f2ba65250a
  d81947eef537554eae2320efed2159a8193bd5
  i:/CN=RSA root CA for qrsa01.qnao.net/serialNumber=15702a01a563d5b8f2ba65250a
  d81947eef537554eae2320efed2159a8193bd5
  Server certificate
  -----BEGIN CERTIFICATE-----
  MIIDdDCCAlygAwIBAgIQYNRTnyH83tfcpTKMxP2kbTANBgkqhkiG9w0BAQUFADB1
  MSgwJgYDVQQDDB9SU0Egcm9vdCBDQSBmb3IgcXJzYTAxLnFuYW8ubmV0MUkwRwYD
  VQQFE0AxNTcwMmEwMWE1NjNkNWI4ZjJiYTY1MjUwYWQ4MTk0N2VlZjUzNzU1NGVh
  ZTIzMjBlZmVkMjE1OWE4MTkzYmQ1MB4XDTEzMTExMTIxMTcwMloXDTMzMTExMjIx
  MTcwMlowZTEYMBYGA1UEAwwPcXJzYTAxLnFuYW8ubmV0MUkwRwYDVQQFE0AzYjQ0
  NGVlYjgzNTVmYjJiNWI2ODZkMDNjZTFjMGE2MWNkMzU1MmExODQwMDFiOTU2NDcw
  MGY3Y2ViY2JlOWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwgkK
  Lx1fAgNJsejbev9HP/j6I1quZH3oH4mQ5sy/Hx/F2yWXnf0vUFjclP8swte3OFA+
  +okNqESCUDTZYHA4b3GCJDbzLKTWXOZ9GuZ8f2xAGbTYNEVdzTD2io0HBVwvd0O/
  XGYn1vF1J+PghKJq40fQgdvVSJ2ZKeFc8U1yBRrEbL7/9XG7cgQxMkyzwdaWUg8k
  9aGWn7ajSduJqYAb0NFbycZyY9JqKLRaI+L4bUyZZSUiDNV08dzPca7zDlA/G26K
  mVfxdnQDp5sX6x7LMUDfo25gJVHOB7bp25/XCSASWBKG0BQx+Snl/mPmiY+00B6l
  PTjyV4h3j2e4o255rQIDAQABoxAwDjAMBgNVHRMBAf8EAjAAMA0GCSqGSIb3DQEB
  BQUAA4IBAQCdUBdHPPmMzArZ8w5+FLoOo6VFA1gNDtOa+YDpt1H5K/ki0lO49W2v
  vKDPC6J60gTnvwtNe7zT2l6QIEf/k1Ene+ZvWFmOW1Eco2cWnXaxEmbb3L1uxvid
  6vMCWscKvbo0LRLrskAWhzionoziGazkt8XqM7prmlroH7n9keLyIFRFhbzSYKhp
  q3Zd2Ys/7AFzwIGymTe8MncU1bYw5vYl5hvy8KR8t+qqz/DNBXDCQ2FPpEK9SWrT
  7LF7iPrrCi0Zd8gSFkcCWWojCcOpk+FKU3Lo3geURvNypNZMihenuWPoTSn+PCE/
  vJZCWnp7n2DDeDOBmNvaV2K2R5w81+xN
  -----END CERTIFICATE-----
  subject=/CN=qrsa01.qnao.net/serialNumber=3b444eeb8355fb2b5b686d03ce1c0a61cd3552a
  184001b9564700f7cebcbe9f0
  issuer=/CN=RSA root CA for qrsa01.qnao.net/serialNumber=15702a01a563d5b8f2ba6525
  0ad81947eef537554eae2320efed2159a8193bd5
  No client certificate CA names sent
  SSL handshake has read 1948 bytes and written 675 bytes
  New, TLSv1/SSLv3, Cipher is RC4-SHA
  Server public key is 2048 bit
  Secure Renegotiation IS supported
  Compression: NONE
  Expansion: NONE
  No ALPN negotiated
  SSL-Session:
  Protocol : TLSv1.2
  Cipher : RC4-SHA
  Session-ID: 550194FCFA9BE4A1060430A13EBA67B9EBD793485253412053534C4A20202020
  Session-ID-ctx:
  Master-Key: F1FD3AB4846FBC14D35EB7BBAFF8704821940DDE5A0549519A0AFF2EC8CAF245
  08DCAA6D4F9FB1D125664FC7BFE87E95
  Key-Arg : None
  PSK identity: None
  PSK identity hint: None
  SRP username: None
  Start Time: 1426167036
  Timeout : 300 (sec)
  Verify return code: 19 (self signed certificate in certificate chain)
  read:errno=0
  OpenSSL>
  I had already set the tls.security.version.min to 0, so would have expected to be able to connect.
  At this point it seems like the problem is that we are using an internal CA to sign the cert for this server, but Firefox won't allow me to proceed despite this. Is there an option that I can set to have firefox prompt on all certificate issues and give me the option to proceed anyways?
  Any other thoughts/suggestions?

• Computer unable to connect to servers over certain ports through AEBS

  Despite being a die hard windows user, I love my AEBS. Unfortunately, I have recently experienced an issue which has forced me back to my old LinkSys router.
  With my computer which runs Windows Vista, when I try and connect to Age of Conan (a game which requires communication over port 7025) the computer is unable to establish a connection through the AEBS and the game hangs. However, the game also requires a connection on a variety of other ports (e.g. 7000) and these ports connect just fine.
  - What is most frustrating is that this /used/ to work - I played the game regularly before going on hiatus for a couple of months and just recently came back.
  - When I connected previously, it was before the firmware upgrade to 7.3.2. This is just anecdotal, as I'm not sure this is the cause. I've tried backing out to 7.3.1 and 7.2.1 but neither worked.
  - I've tried creating a port mapping rule which will route all 7025 traffic to my static IP, no dice
  - My wife's computer which runs XP64 is able to connect just fine
  The only thing I can think of is a possible relation to IPv6 which Vista supports but XP doesn't. IPv6 has always been set to link-local only. Is there any way to completely disable it?
  Any suggestions are welcome. Thanks.

  Yes you are right once the router is configured then you can use the desktop wirelessly ,  if you have the wireless adapter on the desktop .. However before that you need to connect your computer with the router with a ethernet cable and configure the router first and that can be done by using the CD or manully as well.

• Satellite P750 - Unable to connect external screen via VGA port

  Hello All,
  My problem is following:
  I have been trying to connect my P750 (running on W7 x-64) to an external screen using the VGA port/cable. Unfortunately the external devices does not recognize my laptop. Laptop does recognise the external screen, you can see it in the graphic settings as additional display, but the screen says "no signal".
  The computer always identifies the screen correctly, so it looks like there is communication from the screen to the PC, but not the other way round.
  This has been checked with 3 separate screens and a TV - always the same. All the screens work properly with different PC's.
  I already did:
  - try to play with FN+F5 / "windows"+P buttons - no change
  - install the latest BIOS and Video drivers from Toshiba website - no change
  Any suggestions how to make it work? Is it possible that the VGA port is faulty?
  Thank you in advance.

  Hello and thank you for the tips,
  I did try the options you suggested unfortunately with no success.
  I actually got myself HDMI cable and this connection is working perfectly well. Luckily the very screen I want to attach my laptop to does have HDMI port. It is just a bit annoying to know that the d-sub port seems to be useless.
  The lady from Toshiba tech support call centre suggested either OS re-install or sending it to Toshiba for repair/check as it is still under warranty. None of this options suites me at the moment, so I will probably stick to the HDMI. Still, I have a feeling it is a software rather than hardware problem.
  Cheers

• Unable to connect to Arch VM through port forward.

  I'm attempting to run Arch as a web server through VMware, everything appears to be working. The guest can connect to everything with some edits through the network editor, I can type my hosts IP in and it'll connect perfectly to the ArchVM.
  So everything seems to be working through my internal network, I just can't port forward the connection so that I can access my server over my internet IP. All my ports seem to be correct and opened like they need to be, I just can't see why I can access it perfectly fine on my internal network just not my external one.
  Could it be an issue with VMware not allowing port forwarding to it's internal guests(It doesn't make sense)? Any ideas/stats I can give you guys to help me out.
  Thanks
  ~Compulsed.
  Last edited by Compulsed (2012-01-04 04:20:05)

  Is your router configured to forward the necessary ports to the host ?
  Do you have a firewall/iptables running at the host ?
  if so, try connecting while iptables is stopped

• Unable to connect to Planning URL after new instal & configuration 11.1.2

  I have installed 11.1.2 on Windows 64 bit environment and configured.
  Here is my environment:
  Box 1. FS, Essbase, Weblogic, Oracle HTTP. Configured successfully and working great no issues (I have not configured web server in FS yet)
  Box 2. Planning. Installation and configuration was successful.
  Issue: however unable to connect to URL http://servername:8300/hyperionplanning/logon.jsp and http://servername:19000/hyperionplanning/logon.jsp (I am not expecting 19000 will connect)
  Trobleshooting:
  Upon running netstat, 8300 is not running on this box.
  Also configured "Manage Planning Cluster" with no luck.
  Weblogic (11g) server indicated planning state is unknown.
  Diagnostic indicates: 1. system-jazn-data.xml file does not exist 2. web app for planning failed due to Error: java.net.ConnectException: Connection refused: connect
  I have stopped and restarted Planning app service several time runs without any issue but unable to connect to URL and no port is running.
  Planning log does not reveal any error messages.
  EPM system log indicates ServletContainerAdapter manager not initialized correctly
  There is no error in start-HyS9Planning-out.log.
  start-HyS9Planning-error.log indicates The requested service has already been started.
  There is an error in validation log:
  [2010-10-06T10:18:23.171-04:00] [EPMVLD] [ERROR] [EPMVLD-02017] [oracle.EPMVLD] [tid: 25] [ecid: 0000Ii1u3V8EcLPMyeU^MG1Cf8KW00000E,0] [SRC_CLASS: com.hyperion.cis.validation.checkers.impl.AppServerChecker] Error checking response code: [[
  java.lang.Exception: java.net.ConnectException: Connection refused: connect
       at com.hyperion.cis.utils.HttpUtils.checkResponseCodeGood(HttpUtils.java:153)
       at com.hyperion.cis.utils.HttpUtils.checkResponseCodeGood(HttpUtils.java:66)
       at com.hyperion.cis.validation.checkers.impl.AppServerChecker.checkWebApplication(AppServerChecker.java:159)
       at com.hyperion.cis.validation.checkers.impl.AppServerChecker.checkWebApplications(AppServerChecker.java:119)
       at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
       at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
       at java.lang.reflect.Method.invoke(Method.java:597)
       at org.mozilla.javascript.MemberBox.invoke(MemberBox.java:160)
       at org.mozilla.javascript.NativeJavaMethod.call(NativeJavaMethod.java:243)
       at org.mozilla.javascript.optimizer.OptRuntime.callProp0(OptRuntime.java:119)
       at org.mozilla.javascript.gen.c14._c0(./scripts/webappcheck.js:2)
       at org.mozilla.javascript.gen.c14.call(./scripts/webappcheck.js)
       at org.mozilla.javascript.ContextFactory.doTopCall(ContextFactory.java:401)
       at org.mozilla.javascript.ScriptRuntime.doTopCall(ScriptRuntime.java:3003)
       at org.mozilla.javascript.gen.c14.call(./scripts/webappcheck.js)
       at org.mozilla.javascript.gen.c14.exec(./scripts/webappcheck.js)
       at org.mozilla.javascript.Context.evaluateReader(Context.java:1119)
       at com.hyperion.cis.validation.RunningEnviroment.processSource(RunningEnviroment.java:222)
       at com.hyperion.cis.validation.RunningEnviroment.runScript(RunningEnviroment.java:279)
       at com.hyperion.cis.validation.RunningEnviroment.access$000(RunningEnviroment.java:40)
       at com.hyperion.cis.validation.RunningEnviroment$1.run(RunningEnviroment.java:132)
  Caused by: java.net.ConnectException: Connection refused: connect
       at java.net.PlainSocketImpl.socketConnect(Native Method)
       at java.net.PlainSocketImpl.doConnect(PlainSocketImpl.java:333)
       at java.net.PlainSocketImpl.connectToAddress(PlainSocketImpl.java:195)
       at java.net.PlainSocketImpl.connect(PlainSocketImpl.java:182)
       at java.net.SocksSocketImpl.connect(SocksSocketImpl.java:366)
       at java.net.Socket.connect(Socket.java:519)
       at sun.net.NetworkClient.doConnect(NetworkClient.java:158)
       at sun.net.www.http.HttpClient.openServer(HttpClient.java:394)
       at sun.net.www.http.HttpClient.openServer(HttpClient.java:529)
       at sun.net.www.http.HttpClient.<init>(HttpClient.java:233)
       at sun.net.www.http.HttpClient.New(HttpClient.java:306)
       at sun.net.www.http.HttpClient.New(HttpClient.java:323)
       at sun.net.www.protocol.http.HttpURLConnection.getNewHttpClient(HttpURLConnection.java:852)
       at sun.net.www.protocol.http.HttpURLConnection.plainConnect(HttpURLConnection.java:793)
       at sun.net.www.protocol.http.HttpURLConnection.connect(HttpURLConnection.java:718)
       at com.hyperion.cis.utils.HttpUtils.checkResponseCodeGood(HttpUtils.java:111)
       ... 21 more
  What am I not doing?
  Thanks for your help in advance!
  Edited by: VenuRamini on Oct 6, 2010 7:25 AM
  Edited by: VenuRamini on Oct 6, 2010 7:35 AM

  John, thanks for quick response!
  I have restarted Planning and looked at the log file.
  HyS9Planning-sysout.log indicated
  <Oct 6, 2010 11:58:59 AM EDT> <Critical> <Security> <BEA-090518> <Could not decrypt the username attribute value of {AES}xxxxxxxxxxxxxxx= from the file E:\Oracle\Middleware\user_projects\domains\EPMSystem\servers\Planning1\security\boot.properties. If you have copied an encrypted attribute from boot.properties from another domain into E:\Oracle\Middleware\user_projects\domains\EPMSystem\servers\Planning1\security\boot.properties, change the encrypted attribute to its cleartext value then reboot the server. The attribute will be re-encrypted. Otherwise, change all encrypted attributes to their cleartext values, then reboot the server. All encryptable attributes will be re-encrypted. The decryption failed with the exception weblogic.security.internal.encryption.EncryptionServiceException: com.rsa.jsafe.JSAFE_PaddingException: Could not perform unpadding: invalid pad byte..>
  Prior to this after reading epm_1112000_readme.pdf file on page 9 (issue 9180347, 8841004) there is known issue of not copying the file to destination location. Followed instruction and that did indicate that userid and pwd was not encrypted.
  Here is the log when I change boot.properities files base on known issue stated above:
  <Oct 6, 2010 12:34:56 PM EDT> <Critical> <Security> <BEA-090402> <Authentication denied: Boot identity not valid; The user name and/or password from the boot identity file (boot.properties) is not valid. The boot identity may have been changed since the boot identity file was created. Please edit and update the boot identity file with the proper values of username and password. The first time the updated boot identity file is used to start the server, these new values are encrypted.>
  <Oct 6, 2010 12:34:56 PM EDT> <Critical> <WebLogicServer> <BEA-000386> <Server subsystem failed. Reason: weblogic.security.SecurityInitializationException: Authentication denied: Boot identity not valid; The user name and/or password from the boot identity file (boot.properties) is not valid. The boot identity may have been changed since the boot identity file was created. Please edit and update the boot identity file with the proper values of username and password. The first time the updated boot identity file is used to start the server, these new values are encrypted.
  weblogic.security.SecurityInitializationException: Authentication denied: Boot identity not valid; The user name and/or password from the boot identity file (boot.properties) is not valid. The boot identity may have been changed since the boot identity file was created. Please edit and update the boot identity file with the proper values of username and password. The first time the updated boot identity file is used to start the server, these new values are encrypted.
       at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.doBootAuthorization(CommonSecurityServiceManagerDelegateImpl.java:959)
       at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.initialize(CommonSecurityServiceManagerDelegateImpl.java:1050)
       at weblogic.security.service.SecurityServiceManager.initialize(SecurityServiceManager.java:875)
       at weblogic.security.SecurityService.start(SecurityService.java:141)
       at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
       Truncated. see log file for complete stacktrace
  Caused By: javax.security.auth.login.FailedLoginException: [Security:090304]Authentication Failed: User admin javax.security.auth.login.FailedLoginException: [Security:090302]Authentication Failed: User admin denied
       at weblogic.security.providers.authentication.LDAPAtnLoginModuleImpl.login(LDAPAtnLoginModuleImpl.java:250)
       at com.bea.common.security.internal.service.LoginModuleWrapper$1.run(LoginModuleWrapper.java:110)
       at com.bea.common.security.internal.service.LoginModuleWrapper.login(LoginModuleWrapper.java:106)
       at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
       at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
       Truncated. see log file for complete stacktrace
  >
  <Oct 6, 2010 12:34:56 PM EDT> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to FAILED>
  <Oct 6, 2010 12:34:56 PM EDT> <Error> <WebLogicServer> <BEA-000383> <A critical service failed. The server will shut itself down>
  <Oct 6, 2010 12:34:56 PM EDT> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to FORCE_SHUTTING_DOWN>
  HyS9Planning-syserr.log has no info.
  Edited by: VenuRamini on Oct 6, 2010 9:51 AM

• Enter SSL Administration Port [-1] {" " goes back, "!" exits}  Problem

  Hi all,
  I installed JES2 and selected AM, Directory Service.
  when installer configure web server, at
  Enter SSL Administration Port [-1] {"<" goes back, "!" exits}I can't changed it to be 8989 or other ports.
  Enter SSL Administration Port [-1] {"<" goes back, "!" exits}: 8989
  Error: The SSL Admin Port could not be validated. Please specify a different
  Port.
     Enter SSL Administration Port [8989] {"<" goes back, "!" exits}: 1000
  Error: The SSL Admin Port could not be validated. Please specify a different
  Port.
     Enter SSL Administration Port [1000] {"<" goes back, "!" exits}: 100001
  Error: The SSL Admin Port specified is out of range. Please enter a valid Port.
     Enter SSL Administration Port [100001] {"<" goes back, "!" exits}: 10002
  Error: The SSL Admin Port could not be validated. Please specify a different
  Port.Anybody help me plz.

  try the following
  ssl-server 90 vip address 10.1.2.136
  ssl-server 90 urlrewrite 1 10.1.2.136
  ssl-server 90 rsacert xxxxcert
  ssl-server 90 rsakey xxxxkey
  ssl-server 90 cipher rsa-export-with-rc4-40-md5 10.1.2.136 4443
  service esl0011-4443
  ip address 10.1.1.120
  port 4443
  keepalive type http
  keepalive uri "/"
  active
  content HTTP-4443
  vip address 10.1.2.136
  port 4443
  protocol tcp
  add service esl0011-4443
  active
  BTW, I also corrected your urlrewrite command as it was incorrect. You need to specify the host. So not http or https in front.
  Gilles.

• Admin Studio 90a unable to connect to ZCM server

  What I have:
  ZCM 10.1 setup on Windows 2003 server - running smoothly. Able to login and function as Administrator using password x
  URL used to connect to this is https://10.10.1.68/zenworks/jsp/Login.jsp
  Admin Studio SE 90 Zenworks Edition.
  Issue:
  I am unable to connect to the said ZCM server using these credentials:
  Attachment 4112
  see attached screenshot
  here they are out of the image:
  Server URL:
  https://10.10.1.68/zenworks
  Username:
  Administrator
  Password:
  x
  I am getting logon failed every time.
  I can logon from this machine (running admin studio) through the web browser into ZCM.

  Another thought then,
  When I go to login to the ZCM web interface I use:
  http://
  and during the login process it switches over to https://
  Does this mean that somewhere in ZCM or on that server do I need to allow Admin Studio to connect using the unsecure http?
  Also I found this in the help files on the Admin Studio machine. It does say that I could use https
  Not sure if this is a typo in the help or not --- Anyways, I just need to get connected, I'm not picky as to how it happens.
  Here is the help file:
  2. Click Next to continue. The Login panel opens.
  3. On the Login panel, enter the following login information for the ZENworks Configuration Management server that you are connecting to:
  User Name / Password
  Enter a valid User Name and Password for the ZENworks Configuration Management server you are connecting to.
  Server URL
  Enter the server URL, machine name, or IP address of the ZENworks Configuration Management server using the following format:
  http://111.22.333.44
  If you need to specify a specific port number, append the port number to the end of the URL, such as:
  example
  If you are using SSL and you want a secure connection, change the http prefix to https. For example:
  https://www.servername.com
  Any suggestions?

• RV320 SSL VPN web service unable to connect port 56000 56001...

  I have recently installed a RV320 dual WAN small business router in order to use the SSL VPN functionality to allow secure access to our intranet pages which are hosted on a server inside our network. I have the latest firmware installed on the router.
  With the firewall feature of the RV320 disabled - After logging in to the router remotely via the HTTPS interface, I am able to use the web-based services such as SSH and NetworkPls. However, when using the HTTP and HTTPS services I receive a web browser unable to connect error on port 56000, 1, 2, 3 ... This is regardless of whether I enter a URL or IP address on the network behind the router or on the internet.
  Enabling the firewall feature of the RV320 gives a different result - when any IP or URL is entered into the box in the second image below, the router log-in page is loaded instead of the required site. I have pasted an extract from the log at the bottom of this post although it doesn't seem to contain any relevant information. As a separate issue, you will also notice that users connecting to the router brings up [HACK] SynFlooding Attack in error.
  Can anyone explain why this is happening? Alternatively, does anyone have a guide for setting up a IPSec VPN with this router? There seems to be very little literature available for this model.
  Thanks in advance for your help.
  Log extract
  2013-11-02, 11:36:19
  Connection Accepted
  IN=eth1 OUT=eth0 SRC=178.239.83.183 DST=192.168.10.100  DMAC=e0:2f:6d:75:35:7d SMAC=d4:ca:6d:98:3e:55 LEN=60 TOS=0x00 PREC=0x00  TTL=54 ID=57573 DF PROTO=TCP SPT=54925 DPT=993 WINDOW=5840 RES=0x00 SYN  URGP=0
  2013-11-02, 11:36:19
  [HACK] SynFlooding Attack
  IN=eth1 OUT=eth0 SRC=178.239.83.183 DST=192.168.10.100  DMAC=e0:2f:6d:75:35:7d SMAC=d4:ca:6d:98:3e:55 LEN=60 TOS=0x00 PREC=0x00  TTL=54 ID=57573 DF PROTO=TCP SPT=54925 DPT=993 WINDOW=5840 RES=0x00 SYN  URGP=0
  2013-11-02, 11:31:53
  Connection Accepted
  IN=eth1 OUT=eth0 SRC=178.239.83.156 DST=192.168.10.100  DMAC=e0:2f:6d:75:35:7d SMAC=d4:ca:6d:98:3e:55 LEN=60 TOS=0x00 PREC=0x00  TTL=53 ID=50721 DF PROTO=TCP SPT=55634 DPT=993 WINDOW=5840 RES=0x00 SYN  URGP=0
  2013-11-02, 11:31:53
  [HACK] SynFlooding Attack
  IN=eth1 OUT=eth0 SRC=178.239.83.156 DST=192.168.10.100  DMAC=e0:2f:6d:75:35:7d SMAC=d4:ca:6d:98:3e:55 LEN=60 TOS=0x00 PREC=0x00  TTL=53 ID=50721 DF PROTO=TCP SPT=55634 DPT=993 WINDOW=5840 RES=0x00 SYN  URGP=0
  2013-11-02, 11:31:38
  User Log
  User cisco login success from 221.142.25.181
  2013-11-02, 11:31:38
  User Log
  User cisco login success from 221.142.25.181
  2013-11-02, 11:29:49
  Kernel
  kernel: upnp idx=83, ip=192.168.10.220, eport=59725, iport=59725
  2013-11-02, 11:29:49
  Kernel
  kernel: wrong ip[0],not_list[0]
  2013-11-02, 11:29:43
  Connection Accepted
  IN=eth1 OUT=eth0 SRC=176.251.102.32 DST=192.168.10.100  DMAC=e0:2f:6d:75:35:7d SMAC=d4:ca:6d:98:3e:55 LEN=64 TOS=0x00 PREC=0x00  TTL=52 ID=44670 DF PROTO=TCP SPT=49423 DPT=143 WINDOW=65535 RES=0x00 SYN  URGP=0
  2013-11-02, 11:29:43
  [HACK] SynFlooding Attack
  IN=eth1 OUT=eth0 SRC=176.251.102.32 DST=192.168.10.100  DMAC=e0:2f:6d:75:35:7d SMAC=d4:ca:6d:98:3e:55 LEN=64 TOS=0x00 PREC=0x00  TTL=52 ID=44670 DF PROTO=TCP SPT=49423 DPT=143 WINDOW=65535 RES=0x00 SYN  URGP=0
  2013-11-02, 11:29:12
  Kernel
  kernel: upnp idx=83, ip=192.168.10.220, eport=59725, iport=59725
  2013-11-02, 11:29:12
  Kernel
  kernel: wrong ip[0],not_list[0]
  2013-11-02, 11:29:12
  SSL Log
  User ben login success from 221.142.25.181

  After lots of trial and error, I was able to eliminate this problem.  What I wound up doing is defining the XE service again in the listener.ora file:
  SID_LIST_LISTENER =
    (SID_LIST =
      (SID_DESC =
        (SID_NAME = XE)
        (ORACLE_HOME = C:\ProgramData\oraclexe\app\oracle\product\11.2.0\server)
  I know that typically you should not have to do this, especially since I already had defined DEFAULT_SERIVCE_LISTENER = (XE) at the bottom of the listener.ora file.  Explicitly defining the XE service in the listener.ora file allows the listener to find it while the system is running under the Cisco AnyConnect VPN.  The only hiccup I found by doing this is that the XE service is discovered twice by the listener when the system is NOT running under the Cisco AnyConnect VPN.  It still works OK.  The listener just seems to ignore the repeated definition of the XE service (see output below):
  C:\ProgramData\oraclexe\app\oracle\product\11.2.0\server\bin>lsnrctl service
  LSNRCTL for 32-bit Windows: Version 11.2.0.2.0 - Production on 13-JUN-2013 10:03:15
  .......(omitted output).......
  Service "XE" has 2 instance(s).
    Instance "XE", status UNKNOWN, has 1 handler(s) for this service...
      Handler(s):
        "DEDICATED" established:0 refused:0
           LOCAL SERVER
    Instance "xe", status READY, has 1 handler(s) for this service...
      Handler(s):
        "DEDICATED" established:0 refused:0 state:ready
           LOCAL SERVER
  Service "XEXDB" has 1 instance(s).
    Instance "xe", status READY, has 1 handler(s) for this service...
      Handler(s):
        "D000" established:0 refused:0 current:0 max:1022 state:ready
           DISPATCHER <machine: DEV-M-137GF, pid: 5544>
  (ADDRESS=(PROTOCOL=tcp)(HOST=DEV-M-137GF.paychex.com)(PORT=58257))
  The command completed successfully
  If anyone has a cleaner solution for this problem, please let me know.  Otherwise, I am moving forward with what I did.
  Thanks.....Paul

• Unable to connect Oracle Application Database using Discoverer Admin 10g

  Hi,
  I have installed oracle Admin 10g on my machine and trying to connect oracle application database but every time i am getting error like "Unable to connect to: user@hostname Failed to connect to database Unable to connect to Oracle Application Database. Invalid username/password".
  Installed BI Discoverer Admin 10.1.2.1
  Discoverer Admin Client 10.1.2.48.18
  Database 9i
  I have done following steps:
  1. Selected radio button for Connect to Application EUL's.
  2.Gateway User ID (GWYUID)/Password :APPLSYSPUB/PUB
  3.FNDNAME:APPS
  I able to connect discoverer plus.
  Thanks
  Ravi

  Hi Ravi
  Glad to hear you solved this. It is very gratifying when one solves it alone, don't you think?
  Best wishes
  Michael

• Application cannot proceed. Internal error occured. Contact your administrator. Error msg: Unable to connect to the database. Please make sure the database information specified in admin/includes/config.php are correct.

  After clicking in email link, I get the following message on Firefox page : " The application cannot proceed!
  An internal error occured. Please contact your administrator and describe the steps you took before you encounter this error message.Error msg: Unable to connect to the database. Please make sure the database information specified in admin/includes/config.php are correct."
  The email asked to install the latest Adobe Flashplayer version to have it working. I installed it, also updated my plug-ins and checked in safe mode that the extensions were not the problem. I also deleted the cookies an cache. Nothing seems to be working so far. I have the lastest version of Firefox 8.0.1 as well as Roboform 7. I noticed that the latest Firefox version has (x86) tagged to it. Does it refers to an 86 bits because my computer uses 32 or 64 bits only. I tried also different browsers and the message kept appearing. How do I resolve this problem?

  Clear the cache and the cookies from sites that cause problems.
  "Clear the Cache":
  * Tools > Options > Advanced > Network > Offline Storage (Cache): "Clear Now"
  "Remove Cookies" from sites causing problems:
  * Tools > Options > Privacy > Cookies: "Show Cookies"

• Configure the ADMIN and CLUSTER service connections to be SSL

  Can you configure the ADMIN and CLUSTER service connections to be SSL
  rather than tcp?
  I was wondering about the present or future ability to secure other
  connection services with SSL. Can you now or are there future plans
  to configure the ADMIN and CLUSTER service connections to be SSL
  rather than tcp? I suppose I should add the PORTMAPPER to that list.
  My primary interest is for an SSLCLUSTER service in the case where
  two brokers are connected over a non-trusted network. It may
  not be too difficult to secure all the services the same way, but
  perhaps that is on the TODO list.
  A related question is if there are plans to add SSL with client
  authentication as a stronger authentication mechanism than 'simple'
  username and password. I believe you could get the username from
  the client certificate's DN and continue to use the same LDAP user
  repository for access control. I think this is similar to the way
  that BEA's Weblogic server does it.
  Finally should it be possible to deploy the HTTP tunnel servlet to
  a webserver (such as iPlanet Web Server) configured to do SSL with
  client authentication as a work-around to get stronger authentication
  with the current release of the product? Or am I perhaps missing some
  obvious and important detail? :) I guess I would like to know it's been
  done already or is at least possible before I try and do it myself.

  3 scenarios involving SSL are:
  1: JMS client <------- SSL -------> iMQ broker
  2: iMQ admin <------- SSL -------> iMQ broker
  3: iMQ broker <------- SSL -------> iMQ broker (i.e clusters)
  (1) is currently supported in iMQ 2.0
  (2) and (3) is not supported in iMQ 2.0. No concrete plans yet to support
  it in the near future but we'll definitely consider doing it if we
  hear a lot of demand for it.
  ]A related question is if there are plans to add SSL with client
  ]authentication as a stronger authentication mechanism than 'simple'
  ]username and password. I believe you could get the username from
  ]the client certificate's DN and continue to use the same LDAP user
  ]repository for access control. I think this is similar to the way
  ]that BEA's Weblogic server does it.
  This is on our todo list, but due to other more pressing issues we
  have not been able to address it. We will continue to keep it
  on our potential list of new features.
  Sorry if I sound pretty wishy-washy in my responses above, but the fact
  is that the things you mentioned above had to take a backseat
  to other more critical features. That and the usual time/resource
  constraints caused them not to be implemented.
  ]Finally should it be possible to deploy the HTTP tunnel servlet to
  ]a webserver (such as iPlanet Web Server) configured to do SSL with
  ]client authentication as a work-around to get stronger authentication
  ]with the current release of the product? Or am I perhaps missing some
  ]obvious and important detail? :) I guess I would like to know it's been
  ]done already or is at least possible before I try and do it myself.
  Yes, this should be possible (although I don't believe we've tried it here).
  The client authentication here is really only between the JMS client and the
  web server (not between the tunnel servlet and the iMQ broker) and should
  be similar in setup to any other java application talking to iPlanet Web
  Server.