OIM resource permission configuration

Hello,
We are required to configure a user groups that should be able to modify user profile and resource A while restricting modifications on resource B.
If a member of this group makes a modification to the user attribute that would trigger access policy and subsequently changes child table in resource B, OIM fails to update the user since the user has no pinsert ermission for resource B (Error evaluating access policy)..
Is there a solution for this problem?
Thanks

Access policies are mostly for provisioning, you're talking about delegated administration where the delegated admin is allowed to manage resource A but not resource B. This requires customization in both 9.1 and 11g. In 11g there's an authorization policy concept that can be used along with organizations but it's still not a good fit for what you're trying to do. Anyway you can implement this by checking the user's permissions against your own (custom) authorization model. Search the forum, this has come up before.

Similar Messages

  • OIM 11g Server Configuration Wizard Error - Cannot Connect to Oracle DB

    I appreciate any and all suggestions or thoughts on how to best continue troubleshooting this error that I am describing below.
    I am attempting to install Oracle Identity and Access Management Suite 11g on a Windows 7 machine…in following the installation guides I have successfully installed the following Oracle Components
    - Oracle Database 11.2.0.1.0
    - Created Schemas using RCU 11.1.1.3.3
    - Oracle WebLogic Server 10.3.3.0
    - Oracle SOA 11.1.1.2.0
    - Oracle SOA 11.1.1.3.0 (Patch Set)
    - Oracle IAM SUITE 11.1.1.3.0
    Following the above installations, I created a new WebLogic Domain and as the next step am running the OIM Configuration Wizard to configure the OIM Server, however I am unable to setup a connection to the Oracle DB via the OIM Configuration Wizard. I am getting an error message when attempting to setup the connection to the Oracle Database using the OIM 11g Server Configuration Wizard:
    ERROR:*
    INST:6102 Unable to connect to the database with the given credentials.
    *+[DETAILS] Check the values. Make sure the Database is up and running and connect string, user name, and password are correct.+*
    INST:6102 Unable to connect to the database with the given credentials.
    *+[DETAILS] Check the values. Make sure the Database is up and running and connect string, user name, and password are correct.+*
    When installing the Oracle Database 11gR2 I used the following install configuration:
    Oracle base: C:\MyApps\Oracle
    Software location: C:\MyApps\Oracle\DB_HOME\11.2.0\dbhome_1
    Database file location: C:\MyApps\Oracle\DB_HOME\oradata
    Database Edition: Personal Edition (3.27 GB)
    Character Set: Unicode (AL32UTF8)
    Global database name: orcl.dev.com
    Administrative Password: Password1
    Confirm Password: Password1
    When creating my Schemas using RCU 11.1.1.3.3 I used the following Database Connection Details
    DB TYPE: Oracle Database
    HOST NAME: localhost
    PORT: 1521
    SERVICE NAME: orcl.dev.com
    USERNAME: sys
    PASSWORD: Password1
    ROLE: SYSDBA
    I used a Prefix of “DEV” when creating the schemas so Schema Owners DEV_OIM and DEV_MDS where created. Also, I configured to use the same password for all Schemas: “Password1″. So the password for DEV_OIM and DEV_MDS should be the same, “Password1″.
    REPRODUCING THE ERROR
    To reproduce the error, when I launch the Oracle Identity Management 11g Configuration Wizard I am first brought to the “Welcome” Screen. I click the [Next>] button.
    Next, I am on the “Components to Configure” screen where I select OIM Server and OIM Design Console and click the [Next>] button. (NOTE I have also tested by simply selecting only the OIM Server)
    Next, I am on the “Database” screen where I enter the connection information
    Connection String: localhost:1521:orcl.dev.com
    (NOTE I have also tested using localhost:1521:orcl)
    OIM Schema User Name: DEV_OIM
    OIM Schema Password: Password1
    MDS Schema User Name: DEV_MDS
    MDS Schema Password: Password1
    When I click the [Next>] button after entering the Database Connection details I encounter the following two errors (1 error for each logon DEV_OIM and DEV_MDS)
    INST:6102 Unable to connect to the database with the given credentials.
    INST:6102 Unable to connect to the database with the given credentials.
    TROUBLESHOOTING
    NOTE: I can successfully start the Oracle DB Services and connect via the Enterprise Console, SQL Plus, and JDBCTest Java Client…I just cannot get past this connection error in the OIM Server Configuration Wizard.
    JDBCTest.java TEST CLIENT
    NOTE: THIS IS THE JAVA TEST CLIENT THAT I AM USING TO TEST DATABASE CONNECTIVITY THRU A SPECIFIED JDBC URL AND DRIVER THAT WORKS SUCCESSFULLY.*
    import java.sql.Connection;
    import java.sql.DatabaseMetaData;
    import java.sql.DriverManager;
    import java.sql.ResultSet;
    public class JDBCTest {
    public static void main(String[] args) throws Exception {
    String url = "jdbc:oracle:thin:@localhost:1521:orcl";
    String driver = "oracle.jdbc.OracleDriver";
    String user = "DEV_OIM";
    String password = "Password1";
    try {
    Class.forName(driver);
    Connection conn = DriverManager.getConnection(url, user, password);
    // Get the MetaData
    DatabaseMetaData metaData = conn.getMetaData();
    // Get driver information
    System.out.println("");
    System.out.println("#########################################");
    System.out.println("# ***DRIVER INFORMATION***");
    System.out.println("#");
    System.out.println("# Driver Name = " + metaData.getDriverName());
    System.out.println("# Driver Version = " + metaData.getDriverVersion());
    System.out.println("#");
    System.out.println("#########################################");
    System.out.println("");
    System.out.println("");
    // Get database information
    System.out.println("#########################################");
    System.out.println("# ***DATABASE INFORMATION***");
    System.out.println("#");
    System.out.println("# Database Product Name = " + metaData.getDatabaseProductName());
    System.out.println("# Database Product Version = " + metaData.getDatabaseProductVersion());
    System.out.println("#");
    System.out.println("#########################################");
    System.out.println("");
    System.out.println("");
    // Get schema information
    ResultSet schemas = metaData.getSchemas();
    System.out.println("#########################################");
    System.out.println("# ***SCHEMA INFORMATION***");
    System.out.println("#");
    System.out.println("# Schemas:");
    while (schemas.next()) {
    System.out.println("# " + schemas.getString(1));
    System.out.println("#########################################");
    System.out.println("");
    System.out.println("");
    // Get table information
    System.out.println("Tables");
    ResultSet tables = metaData.getTables("", "", "", null);
    while (tables.next()) {
    System.out.println(tables.getString(3));
    conn.close();
    } catch (Exception ex) {
    ex.printStackTrace();
    *"lsnrctl status" COMMAND TEST SUCCESSFUL*
    When the Listener Service is on I get the following output using lsnrctl status command
    C:\> lsnrctl status
    LSNRCTL for 32-bit Windows: Version 11.2.0.1.0 - Production on 21-SEP-2010 15:59:43
    Copyright (c) 1991, 2010 Oracle. All rights reserved.
    STATUS of the LISTENER
    Alias LISTENER
    Version TNSLSNR for 32-bit Windows:Version 11.2.0.1.0 - Production
    Start Date 21-SEP-2010 14:43:57
    Uptime 0 days 1 hr. 15 min. 46 sec
    Trace Level off
    Security ON: Local OS Authentication
    SNMP OFF
    Listener Parameter File C:\MyApps\Oracle\DB_HOME\11.2.0\dbhome_1\NETWORK\ADMIN\listener.ora
    Listener Log File c:\myapps\oracle\diag\tnslsnr\\listener\alert\log.xml
    Listening Endpoints Summary…
    (DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=127.0.0.1)(PORT=1521)))
    Services Summary…
    Service “CLRExtProc” has 1 instance(s).
    Instance “CLRExtProc”, status UNKNOWN, has 1 handler(s) for this service…
    Service “orcl.dev.com” has 1 instance(s).
    Instance “orcl”, status READY, has 1 handler(s) for this service….
    Service “orclXDB.dev.com” has 1 instance(s).
    Instance “orcl” status READY, has 1 handler(s) for this service…
    The command completed successfully

    Whenever installing oracle databases, i install the software only first. Then i setup the listener. Then i create a database instance using the dbca tool. This way all the information is added to the pre-existing listener configurations rather than trying to create the listener afterwards. Also, during the dbca database creation, i supply a full service name such as orcl.hostname and use the service name in future configurations where it asked. This usually solves any issues of the listener or database not being found correctly.
    -Kevin

  • Resource Permission stored in DB

    Hi Everyone
    My customer is using a forms application that he needs to migrate to ADF.
    The new application should reuse the existing tables, PL/SQL APIs to such an extent that the old forms application should be available at the same time with the new ADF application as the existing forms will be gradually migrated to ADF over a longer period of time.
    In this application there is one menu which is unique. Customer has a table AUTHORISATION to store the permissions on some menu entries (submenu or executable) . Each executable menu entry has a form (fmb) and some columns (with possible values 0 or 1) for the actions allowed on that form:
    VIEW - 1 if view action is allowed, 0 if not
    CREATE - the same
    UPDATE - the same
    DELETE - the same
    Although he is aware that this is not a very strong security model as users can connect to sqlplus and update the table manually, customer would like to keep this table and to continue using that even in ADF, and not to use Weblogic security provider to manage roles (using SQLAuthenticator for example) in the application as this would be too tedious for him. To make the problem more complicated users can login to the application and then choose the DB they wish to connect to, so this AUTHORISATION table is specific to each DB instance. So there are multiple AUTHORISATION tables (one table in each DB instance), but the user_id/username is the same in all of these tables.
    In the ADF application, each form will be equivalent to a taskflow where the same operations would be allowed in page fragments. For example in the taskflow there will be a page fragment to display a list of records, another to display a detail of a record, another that allows to create a new record and so on. The access to the taskflow and within the taskflow needs to be driven by the same table. One taskflow will appear in the menu only once, that is for sure.
    I have considered using a resource permission to define a logical entity on a menu entry, and then using expressions such as
    #{securityContext.userGrantedResource
    ['resourceName=myPanel1;
    resourceType=myLayoutPanel;
    action=myAction']}
    to control the access/navigation in the application. However I find it quite hard to adapt is to the current situation. I have build the necessary components so I can extract all the contents of this table and wrap it inside a sessionScope managed bean so that the access to these permissions to be available from anywhere within the user session.I can code the hard way in the application to control access and navigation(by example creating a generic pageFlow managed bean for each taskflow that will have boolean properties for each operation and this managed bean will be initialized at the beginning of the taskflow, then use this managed bean in EL expressions to control the permissions to the actions). There will be a team of developers that willl build each taskflow and there are many taskflows which follows exactly the same pattern (list of records->details/create/delete).I need to make sure there is a easy way to encapsulate all this using security EL if possible so that each developer should work in a consistent manner based on a taskflow template for example that they need to follow/implement.
    I am using JDev version 11.1.2.2
    Not sure if my approach is the right one, or anyone has better ideas. Please advise.
    Thank you in advance
    Edited by: Dan Cretu on 31 oct. 2012 23:46

    Hi
    Thanks Peter for the helpful hints. I am also using one page, main.jsf (in fact there is a taskflow with several method calls to perform some initialization after login and at the end user end up in the same page). I am also using dynamic tabs pattern to show all the taskflows in regions. I have not yet begun the design of the templates ( this is next on my list once I finish designing the security/permission layer), but your experience is really helpful as it very much ressembles what I have. This should help me a lot to design these CRUD taskflows in the same manner as forms.
    For view permission and navigation I plan to implement this in the custom NavigationHandler class specified in faces-config.xml. As for the CRUD operations within the taskflow or I plan on using a router activity or a method call activity that would act like a router in order to encapsulate more complex logic if necessary (Haven't decided yet). The real challenge is when the CRUD operations are called from another taskflow opened in another tab. For example, from Departments taskflow to try and add a new employee which is in another taskflow. I guess the employee taskflow will need to have a parameter in order to define the operations to be performed in this taskflow (and use this parameter in a router activity for example) and if the operation is allowed the proper page/fragment for the creation would be shown in the new tab. Still a lot of ideas to put in practice and I need to think ahead of some potential problems in order to make everyone's life easier afterwards :-)
    Kind regards

  • OIM Resource Bundles

    Hi
    We tried to put HTML tags inside the OIM resource bundles to customize the Self Registration Confirmation page but the page displayed with the HTML tags and didn't show the translated HTML tags.
    How can we embed HTML tags in the resources properties files for OIM and make it working properly ?
    Thanks

    If you want to have default values, I would suggest using ResourceBundles and just sending in a Locale with the variant of the company. That way if your application ever needs to be localized it won't take much to change it. Your properties files would be named baseName_languageCode_CountryCode_Variant.properties.
    It has been a great advantage for the program that I am developing.

  • Resource permission to view himself only in resource center

    Hi All,
    I have a query regarding resource permission. My scenario is how a resource can view/edit only his attributes in the resource center.
    I have given Team Member permission and what other permission i need to apply to execute this scenario.
    Thanks
    Abbas Khan

    Hello,
    Depending on what category you have added to the Team Member group, lets assume "My Tasks". For the My Tasks category ensure that in the resources section you select "Only include the selected resources:" then "The User is the resource" on the
    category. Make sure the category gives them access to at least one resource center view. Now on the Team Member group, select the My Task category (or the category you are using) in the categories section. In the permissions that become enabled ensure "Edit
    Enterprise Resource Data" and "View Enterprise Resource Data" are enabled. That should be it.
    Paul
    Paul Mather | Twitter |
    http://pwmather.wordpress.com | CPS

  • OIM 11g import configurations are failing

    Hi All,
    I have exported the OIM Resources + children + dependencies from source OIM 11g env. I have verified through OIM console for importing the same XML (exported) and there are no dependency errors. So while trying to import using java code, I am getting the below exception:
    SEVERE: OIMObjects - Import Operation FAILED. Exception -
    com.thortech.xl.ddm.exception.DDMException: Unable to save dataobject for SDH
    at weblogic.rjvm.ResponseImpl.unmarshalReturn(ResponseImpl.java:234)
    at weblogic.rmi.internal.BasicRemoteRef.invoke(BasicRemoteRef.java:223)
    at Thor.API.Operations.tcImportOperationsIntf_uawk3z_tcImportOperationsIntfRemoteImpl_1035_WLStub.performImportx(Unknown Source)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:597)
    at weblogic.ejb.container.internal.RemoteBusinessIntfProxy.invoke(RemoteBusinessIntfProxy.java:85)
    at $Proxy2.performImportx(Unknown Source)
    Caused by: com.thortech.xl.ddm.exception.DDMException: Unable to save dataobject for SDH
    at com.thortech.xl.ddm.repositories.rdbms.datatypes.data.TableInstance.finishDataObject(TableInstance.java:841)
    at com.thortech.xl.ddm.repositories.rdbms.impl.RDBMSRepository.finishdataObject(RDBMSRepository.java:956)
    at com.thortech.xl.ddm.engine.visitor.ImportVisitor.dataDependencyVisitComplete(ImportVisitor.java:612)
    at com.thortech.xl.ddm.repositories.rdbms.impl.RDBMSRepository.handleDataBaseDependencies(RDBMSRepository.java:687)
    at com.thortech.xl.ddm.engine.data.datatypes.SchemaInstance.traverse(SchemaInstance.java:274)
    at com.thortech.xl.ddm.engine.data.datatypes.SchemaInstance.visitChildren(SchemaInstance.java:358)
    Can somebody throw light on this?
    Thanks
    Mahendra.

    SDH is the parent to child relationship for forms.
    I would suggest you create a new version of the child form, make it active. Create a new version of the parent form, and on the child form tab, add/update the child table associated with it. Make the parent form active. Now export your object again.
    -Kevin

  • How to get users provisioned / enabled with all OIM Resources.

    Looking for help on java / sql query on how to get all the users in OIM (9102 BP 13) provisioned/enabled status only,
    with all OIM Resources available in System.
    Edited by: 907571 on Apr 18, 2012 4:12 AM

    select usr.usr_login, usr.usr_status, obj.obj_name, ost.ost_status, act.act_name
    from oiu, usr, ost, obj, usg, act
    where oiu.usr_key=usr.usr_key
    and oiu.ost_key=ost.ost_key
    and ost.obj_key=obj.obj_key
    and usr.act_key=act.act_key
    --and obj.obj_name in ('Resource Name')
    --and usr.usr_status = 'Active'
    and ost.ost_status in ('Enabled','Provisioned')
    -Kevin

  • External Resource JAR configuration in BPM Enterprise

    I have External resource(a JAR file) in my BPM Studio. This External JAR calls some web service and gets data. Everything is working fine when I run from BPM Studio with its in bulit Derby engine and all.
    The same BPM project I exported by using the 3rd option(Include Versionable libraries only - Recommended for publishing with Enterprise).
    I have configured BPM enterprise by using weblogic server and Oracle express as engine also. Deployed newly exported project. Everything works fine except getting following error while calling JAR which in turn call web services.
    I am getting following error in Engine.
    ===================================================================================
    The task could not be successfully executed. Reason: 'java.lang.NoClassDefFoundError: org/alfresco/sample/webservice/ContentReadAndWrite'. Caused by: org/alfresco/sample/webservice/ContentReadAndWrite fuego.lang.ComponentExecutionException: The task could not be successfully executed. Reason: 'java.lang.NoClassDefFoundError: org/alfresco/sample/webservice/ContentReadAndWrite'. at fuego.server.execution.EngineExecutionContext.invokeMethodAsCil(EngineExecutionContext.java:1094) at fuego.server.execution.EngineExecutionContext.runCil(EngineExecutionContext.java:1280) at fuego.server.execution.microactivity.ComponentExecutionMicroActivity.runCil(ComponentExecutionMicroActivity.java:126) at fuego.server.execution.microactivity.ComponentExecutionMicroActivity.execute(ComponentExecutionMicroActivity.java:84) at fuego.server.execution.microactivity.MicroActivityEngineExecutionHandler.executeActivity(MicroActivityEngineExecutionHandler.java:57) at fuego.server.execution.ImmediateActivity.execute(ImmediateActivity.java:42) at fuego.server.execution.DefaultEngineExecution$AtomicExecutionTA.runTransaction(DefaultEngineExecution.java:304) at fuego.transaction.TransactionAction.startNestedTransaction(TransactionAction.java:527) at fuego.transaction.TransactionAction.startTransaction(TransactionAction.java:548) at fuego.transaction.TransactionAction.start(TransactionAction.java:212) at fuego.server.execution.DefaultEngineExecution.executeImmediate(DefaultEngineExecution.java:123) at fuego.server.execution.DefaultEngineExecution.executeAutomaticWork(DefaultEngineExecution.java:62) at fuego.server.execution.EngineExecution.executeAutomaticWork(EngineExecution.java:42) at fuego.server.execution.ToDoItem.executeAutomaticWork(ToDoItem.java:251) at fuego.ejbengine.ItemExecutionBean$1.execute(ItemExecutionBean.java:212) at fuego.server.execution.DefaultEngineExecution$AtomicExecutionTA.runTransaction(DefaultEngineExecution.java:304) at fuego.transaction.TransactionAction.startBaseTransaction(TransactionAction.java:470) at fuego.transaction.TransactionAction.startTransaction(TransactionAction.java:551) at fuego.transaction.TransactionAction.start(TransactionAction.java:212) at fuego.server.execution.DefaultEngineExecution.executeImmediate(DefaultEngineExecution.java:123) at fuego.server.execution.EngineExecution.executeImmediate(EngineExecution.java:66) at fuego.ejbengine.ItemExecutionBean.processMessage(ItemExecutionBean.java:198) at fuego.ejbengine.ItemExecutionBean.onMessage(ItemExecutionBean.java:110) at weblogic.ejb.container.internal.MDListener.execute(MDListener.java:466) at weblogic.ejb.container.internal.MDListener.transactionalOnMessage(MDListener.java:371) at weblogic.ejb.container.internal.MDListener.onMessage(MDListener.java:327) at weblogic.jms.client.JMSSession.onMessage(JMSSession.java:4547) at weblogic.jms.client.JMSSession.execute(JMSSession.java:4233) at weblogic.jms.client.JMSSession.executeMessage(JMSSession.java:3709) at weblogic.jms.client.JMSSession.access$000(JMSSession.java:114) at weblogic.jms.client.JMSSession$UseForRunnable.run(JMSSession.java:5058) at weblogic.work.SelfTuningWorkManagerImpl$WorkAdapterImpl.run(SelfTuningWorkManagerImpl.java:516) at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201) at weblogic.work.ExecuteThread.run(ExecuteThread.java:173) Caused by: java.lang.NoClassDefFoundError: org/alfresco/sample/webservice/ContentReadAndWrite at oracle.ExpenseReport.Default_1_0.Instance.CIL_checkCompanyPolicy1(Instance.xcdl) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) at java.lang.reflect.Method.invoke(Method.java:597) at fuego.server.execution.EngineExecutionContext.invokeMethodAsCil(EngineExecutionContext.java:1085) ... 33 more
    ==================================================================================
    Did I missed configuring something in Enterprise? Any other ideas?

    Hi,
    You could either try marking the External Resource(s) with the Jar files as versionable or copy the Jar files to these directories:
    <Enterprise Home Directory>/enterprise/webapps/webconsole/WEB-INF/lib
    <Enterprise Home Directory>/enterprise/ext
    Dan

  • Sap wm task and resource management configuration

    Hello Experts,
    Can somebody give me configuration steps of "Task and Resource Mangement", Its urgent.
    Thanks in anticipation.
    Regards,
    Hari.

    Hi Hari Krishna,
    I am also in need of the configuration steps of "Task and Resource Management", Will plz arrange.
    Thanks in advance
    Sai Krishna

  • OIM 11g Installation : Configure OIM server failed

    Hi,
    I'm facing problem in configuring the OIM server and Design console.
    Configure OIM Server
    Error
    Exception occured while encrypting the configuration and database
    Step Configure OIM Server failed
    Here is the description of the error from the log file.
    [2012-06-27T07:46:07.015-07:00] [as] [TRACE:16] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003,0] [SRC_CLASS: EncryptDataBase] [SRC_METHOD: encryptDBContent] ENTRY
    [2012-06-27T07:46:07.015-07:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003,0] [[
    [OIM_CONFIG] Crypto Provider set to SUNJCE
    [2012-06-27T07:46:07.015-07:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003,0] Load the provider class
    [2012-06-27T07:46:07.015-07:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003,0] Get the instance of KeyStore
    [2012-06-27T07:46:07.015-07:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003,0] Generate the key
    [2012-06-27T07:46:07.046-07:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003,0] Store the keystore to .xlDatabasekey
    [2012-06-27T07:46:07.046-07:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003,0] Create the Database connection
    [2012-06-27T07:46:07.046-07:00] [as] [TRACE:16] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003,0] [SRC_CLASS: EncryptDataBase] [SRC_METHOD: setDBEncrypted] ENTRY
    [2012-06-27T07:46:07.078-07:00] [as] [ERROR] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003,0] ORA-00001: unique constraint (DEV_OIM.UK_MLS_LOCALE_MLS_LOCALE_CODE) violated[[
    java.sql.SQLIntegrityConstraintViolationException: ORA-00001: unique constraint (DEV_OIM.UK_MLS_LOCALE_MLS_LOCALE_CODE) violated
         at oracle.jdbc.driver.SQLStateMapping.newSQLException(SQLStateMapping.java:89)
         at oracle.jdbc.driver.DatabaseError.newSQLException(DatabaseError.java:135)
         at oracle.jdbc.driver.DatabaseError.throwSqlException(DatabaseError.java:210)
         at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:473)
         at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:423)
         at oracle.jdbc.driver.T4C8Oall.receive(T4C8Oall.java:1094)
         at oracle.jdbc.driver.T4CPreparedStatement.doOall8(T4CPreparedStatement.java:205)
         at oracle.jdbc.driver.T4CPreparedStatement.executeForRows(T4CPreparedStatement.java:1040)
         at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:1352)
         at oracle.jdbc.driver.OraclePreparedStatement.executeInternal(OraclePreparedStatement.java:3566)
         at oracle.jdbc.driver.OraclePreparedStatement.executeUpdate(OraclePreparedStatement.java:3692)
         at oracle.jdbc.driver.OraclePreparedStatementWrapper.executeUpdate(OraclePreparedStatementWrapper.java:1508)
         at oracle.as.install.oim.config.util.EncryptDataBase.updateMLSLocale(EncryptDataBase.java:289)
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDBContent(EncryptDataBase.java:124)
         at oracle.as.install.oim.config.util.EncryptConfigurationAndDB.encryptConfigurationAndDatbase(EncryptConfigurationAndDB.java:208)
         at oracle.as.install.oim.config.OIMConfigManager.configureOIM(OIMConfigManager.java:966)
         at oracle.as.install.oim.config.OIMConfigManager.doExecute(OIMConfigManager.java:538)
         at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
         at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
         at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
         at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
         at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
         at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:83)
         at java.lang.Thread.run(Thread.java:662)
    [2012-06-27T07:46:07.078-07:00] [as] [ERROR] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003,0] Exception occured in updateMLSLocale method while updating Locale to OIM DB [[
    java.lang.Exception: Exception occured in updateMLSLocale method while updating Locale to OIM DB
         at oracle.as.install.oim.config.util.EncryptDataBase.updateMLSLocale(EncryptDataBase.java:297)
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDBContent(EncryptDataBase.java:124)
         at oracle.as.install.oim.config.util.EncryptConfigurationAndDB.encryptConfigurationAndDatbase(EncryptConfigurationAndDB.java:208)
         at oracle.as.install.oim.config.OIMConfigManager.configureOIM(OIMConfigManager.java:966)
         at oracle.as.install.oim.config.OIMConfigManager.doExecute(OIMConfigManager.java:538)
         at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
         at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
         at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
         at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
         at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
         at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:83)
         at java.lang.Thread.run(Thread.java:662)
    Caused by: java.sql.SQLIntegrityConstraintViolationException: ORA-00001: unique constraint (DEV_OIM.UK_MLS_LOCALE_MLS_LOCALE_CODE) violated
         at oracle.jdbc.driver.SQLStateMapping.newSQLException(SQLStateMapping.java:89)
         at oracle.jdbc.driver.DatabaseError.newSQLException(DatabaseError.java:135)
         at oracle.jdbc.driver.DatabaseError.throwSqlException(DatabaseError.java:210)
         at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:473)
         at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:423)
         at oracle.jdbc.driver.T4C8Oall.receive(T4C8Oall.java:1094)
         at oracle.jdbc.driver.T4CPreparedStatement.doOall8(T4CPreparedStatement.java:205)
         at oracle.jdbc.driver.T4CPreparedStatement.executeForRows(T4CPreparedStatement.java:1040)
         at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:1352)
         at oracle.jdbc.driver.OraclePreparedStatement.executeInternal(OraclePreparedStatement.java:3566)
         at oracle.jdbc.driver.OraclePreparedStatement.executeUpdate(OraclePreparedStatement.java:3692)
         at oracle.jdbc.driver.OraclePreparedStatementWrapper.executeUpdate(OraclePreparedStatementWrapper.java:1508)
         at oracle.as.install.oim.config.util.EncryptDataBase.updateMLSLocale(EncryptDataBase.java:289)
         ... 13 more
    [2012-06-27T07:46:07.078-07:00] [as] [ERROR] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003,0] Exception occured while encrypting the database [[
    java.lang.Exception: Exception occured while encrypting the database
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDBContent(EncryptDataBase.java:138)
         at oracle.as.install.oim.config.util.EncryptConfigurationAndDB.encryptConfigurationAndDatbase(EncryptConfigurationAndDB.java:208)
         at oracle.as.install.oim.config.OIMConfigManager.configureOIM(OIMConfigManager.java:966)
         at oracle.as.install.oim.config.OIMConfigManager.doExecute(OIMConfigManager.java:538)
         at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
         at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
         at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
         at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
         at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
         at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:83)
         at java.lang.Thread.run(Thread.java:662)
    Caused by: java.lang.Exception: Exception occured in updateMLSLocale method while updating Locale to OIM DB
         at oracle.as.install.oim.config.util.EncryptDataBase.updateMLSLocale(EncryptDataBase.java:297)
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDBContent(EncryptDataBase.java:124)
         ... 12 more
    Caused by: java.sql.SQLIntegrityConstraintViolationException: ORA-00001: unique constraint (DEV_OIM.UK_MLS_LOCALE_MLS_LOCALE_CODE) violated
         at oracle.jdbc.driver.SQLStateMapping.newSQLException(SQLStateMapping.java:89)
         at oracle.jdbc.driver.DatabaseError.newSQLException(DatabaseError.java:135)
         at oracle.jdbc.driver.DatabaseError.throwSqlException(DatabaseError.java:210)
         at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:473)
         at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:423)
         at oracle.jdbc.driver.T4C8Oall.receive(T4C8Oall.java:1094)
         at oracle.jdbc.driver.T4CPreparedStatement.doOall8(T4CPreparedStatement.java:205)
         at oracle.jdbc.driver.T4CPreparedStatement.executeForRows(T4CPreparedStatement.java:1040)
         at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:1352)
         at oracle.jdbc.driver.OraclePreparedStatement.executeInternal(OraclePreparedStatement.java:3566)
         at oracle.jdbc.driver.OraclePreparedStatement.executeUpdate(OraclePreparedStatement.java:3692)
         at oracle.jdbc.driver.OraclePreparedStatementWrapper.executeUpdate(OraclePreparedStatementWrapper.java:1508)
         at oracle.as.install.oim.config.util.EncryptDataBase.updateMLSLocale(EncryptDataBase.java:289)
         ... 13 more
    [2012-06-27T07:46:07.078-07:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003,0] [[
    [OIM_CONFIG] Database Encrytion failed.
    [2012-06-27T07:46:07.078-07:00] [as] [ERROR] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003,0] Exception[[
    java.lang.Exception: Exception occured while encrypting the configuration and database
         at oracle.as.install.oim.config.util.EncryptConfigurationAndDB.encryptConfigurationAndDatbase(EncryptConfigurationAndDB.java:213)
         at oracle.as.install.oim.config.OIMConfigManager.configureOIM(OIMConfigManager.java:966)
         at oracle.as.install.oim.config.OIMConfigManager.doExecute(OIMConfigManager.java:538)
         at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
         at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
         at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
         at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
         at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
         at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:83)
         at java.lang.Thread.run(Thread.java:662)
    Caused by: java.lang.Exception: Exception occured while encrypting the database
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDBContent(EncryptDataBase.java:138)
         at oracle.as.install.oim.config.util.EncryptConfigurationAndDB.encryptConfigurationAndDatbase(EncryptConfigurationAndDB.java:208)
         ... 11 more
    Caused by: java.lang.Exception: Exception occured in updateMLSLocale method while updating Locale to OIM DB
         at oracle.as.install.oim.config.util.EncryptDataBase.updateMLSLocale(EncryptDataBase.java:297)
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDBContent(EncryptDataBase.java:124)
         ... 12 more
    Caused by: java.sql.SQLIntegrityConstraintViolationException: ORA-00001: unique constraint (DEV_OIM.UK_MLS_LOCALE_MLS_LOCALE_CODE) violated
         at oracle.jdbc.driver.SQLStateMapping.newSQLException(SQLStateMapping.java:89)
         at oracle.jdbc.driver.DatabaseError.newSQLException(DatabaseError.java:135)
         at oracle.jdbc.driver.DatabaseError.throwSqlException(DatabaseError.java:210)
         at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:473)
         at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:423)
         at oracle.jdbc.driver.T4C8Oall.receive(T4C8Oall.java:1094)
         at oracle.jdbc.driver.T4CPreparedStatement.doOall8(T4CPreparedStatement.java:205)
         at oracle.jdbc.driver.T4CPreparedStatement.executeForRows(T4CPreparedStatement.java:1040)
         at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:1352)
         at oracle.jdbc.driver.OraclePreparedStatement.executeInternal(OraclePreparedStatement.java:3566)
         at oracle.jdbc.driver.OraclePreparedStatement.executeUpdate(OraclePreparedStatement.java:3692)
         at oracle.jdbc.driver.OraclePreparedStatementWrapper.executeUpdate(OraclePreparedStatementWrapper.java:1508)
         at oracle.as.install.oim.config.util.EncryptDataBase.updateMLSLocale(EncryptDataBase.java:289)
         ... 13 more
    Thanks in advance for help.
    Regards,
    Prasad

    Hi Thiago Leoncio and Kerry,
    Thanks guys for the quick reply. I tried it out but it didnt work. The error repeats itself and the configuration fails. I tried both of your methods. This is what i have from the log file.
    Here is the description of the exception :
    [2012-06-29T04:26:23.609-07:00] [as] [TRACE:16] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWrzSA8Fs1WFLz7U8A1FvOzU000003,0] [SRC_CLASS: EncryptDataBase] [SRC_METHOD: encryptTableColumn] ENTRY
    [2012-06-29T04:26:23.609-07:00] [as] [TRACE:16] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWrzSA8Fs1WFLz7U8A1FvOzU000003,0] [SRC_CLASS: EncryptDataBase] [SRC_METHOD: encryptTableColumn] ENTRY
    [2012-06-29T04:26:23.625-07:00] [as] [TRACE:16] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWrzSA8Fs1WFLz7U8A1FvOzU000003,0] [SRC_CLASS: EncryptDataBase] [SRC_METHOD: encryptTableColumn] ENTRY
    [2012-06-29T04:26:24.218-07:00] [as] [ERROR] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWrzSA8Fs1WFLz7U8A1FvOzU000003,0] KeyStore File : C:\Oracle\Middleware\user_projects\domains\oimdomain\config\fmwconfig\.xldatabasekey missing.[[
    com.thortech.xl.crypto.tcCryptoException: KeyStore File : C:\Oracle\Middleware\user_projects\domains\oimdomain\config\fmwconfig\.xldatabasekey missing.
         at com.thortech.xl.crypto.tcCryptoHelper.loadKeyStore(tcCryptoHelper.java:96)
         at com.thortech.xl.crypto.tcDefaultDBEncryptionImpl.initKeyStore(tcDefaultDBEncryptionImpl.java:67)
         at com.thortech.xl.crypto.tcDefaultDBEncryptionImpl.getCipher(tcDefaultDBEncryptionImpl.java:96)
         at com.thortech.xl.crypto.tcDefaultDBEncryptionImpl.encrypt(tcDefaultDBEncryptionImpl.java:193)
         at com.thortech.xl.crypto.tcCryptoUtil.encrypt(tcCryptoUtil.java:118)
         at com.thortech.xl.crypto.tcCryptoUtil.encrypt(tcCryptoUtil.java:184)
         at com.thortech.xl.crypto.tcCryptoUtil.encrypt(tcCryptoUtil.java:172)
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptTableColumn(EncryptDataBase.java:499)
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDB(EncryptDataBase.java:345)
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDBContent(EncryptDataBase.java:132)
         at oracle.as.install.oim.config.util.EncryptConfigurationAndDB.encryptConfigurationAndDatbase(EncryptConfigurationAndDB.java:208)
         at oracle.as.install.oim.config.OIMConfigManager.configureOIM(OIMConfigManager.java:966)
         at oracle.as.install.oim.config.OIMConfigManager.doExecute(OIMConfigManager.java:538)
         at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
         at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
         at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
         at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
         at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
         at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:83)
         at java.lang.Thread.run(Thread.java:662)
    [2012-06-29T04:26:24.218-07:00] [as] [TRACE:16] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWrzSA8Fs1WFLz7U8A1FvOzU000003,0] [SRC_CLASS: EncryptDataBase] [SRC_METHOD: encryptTableColumn] ENTRY
    [2012-06-29T04:26:24.218-07:00] [as] [TRACE:16] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWrzSA8Fs1WFLz7U8A1FvOzU000003,0] [SRC_CLASS: EncryptDataBase] [SRC_METHOD: encryptTableColumn] ENTRY
    [2012-06-29T04:26:24.234-07:00] [as] [ERROR] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWrzSA8Fs1WFLz7U8A1FvOzU000003,0] KeyStore File : C:\Oracle\Middleware\user_projects\domains\oimdomain\config\fmwconfig\.xldatabasekey missing.[[
    com.thortech.xl.crypto.tcCryptoException: KeyStore File : C:\Oracle\Middleware\user_projects\domains\oimdomain\config\fmwconfig\.xldatabasekey missing.
         at com.thortech.xl.crypto.tcCryptoHelper.loadKeyStore(tcCryptoHelper.java:96)
         at com.thortech.xl.crypto.tcDefaultDBEncryptionImpl.initKeyStore(tcDefaultDBEncryptionImpl.java:67)
         at com.thortech.xl.crypto.tcDefaultDBEncryptionImpl.getCipher(tcDefaultDBEncryptionImpl.java:96)
         at com.thortech.xl.crypto.tcDefaultDBEncryptionImpl.encrypt(tcDefaultDBEncryptionImpl.java:193)
         at com.thortech.xl.crypto.tcCryptoUtil.encrypt(tcCryptoUtil.java:118)
         at com.thortech.xl.crypto.tcCryptoUtil.encrypt(tcCryptoUtil.java:184)
         at com.thortech.xl.crypto.tcCryptoUtil.encrypt(tcCryptoUtil.java:172)
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptTableColumn(EncryptDataBase.java:499)
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDB(EncryptDataBase.java:345)
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDBContent(EncryptDataBase.java:132)
         at oracle.as.install.oim.config.util.EncryptConfigurationAndDB.encryptConfigurationAndDatbase(EncryptConfigurationAndDB.java:208)
         at oracle.as.install.oim.config.OIMConfigManager.configureOIM(OIMConfigManager.java:966)
         at oracle.as.install.oim.config.OIMConfigManager.doExecute(OIMConfigManager.java:538)
         at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
         at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
         at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
         at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
         at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
         at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:83)
         at java.lang.Thread.run(Thread.java:662)
    [2012-06-29T04:26:24.234-07:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWrzSA8Fs1WFLz7U8A1FvOzU000003,0] [[
    [OIM_CONFIG] *** Field OSI.OSI_CHILD_OLD_VALUE is being skipped because it is not a Varchar or Char column.
    [2012-06-29T04:26:24.359-07:00] [as] [TRACE:16] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWrzSA8Fs1WFLz7U8A1FvOzU000003,0] [SRC_CLASS: EncryptDataBase] [SRC_METHOD: encryptTableColumn] ENTRY
    [2012-06-29T04:26:24.359-07:00] [as] [ERROR] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWrzSA8Fs1WFLz7U8A1FvOzU000003,0] KeyStore File : C:\Oracle\Middleware\user_projects\domains\oimdomain\config\fmwconfig\.xldatabasekey missing.[[
    com.thortech.xl.crypto.tcCryptoException: KeyStore File : C:\Oracle\Middleware\user_projects\domains\oimdomain\config\fmwconfig\.xldatabasekey missing.
         at com.thortech.xl.crypto.tcCryptoHelper.loadKeyStore(tcCryptoHelper.java:96)
         at com.thortech.xl.crypto.tcDefaultDBEncryptionImpl.initKeyStore(tcDefaultDBEncryptionImpl.java:67)
         at com.thortech.xl.crypto.tcDefaultDBEncryptionImpl.getCipher(tcDefaultDBEncryptionImpl.java:96)
         at com.thortech.xl.crypto.tcDefaultDBEncryptionImpl.encrypt(tcDefaultDBEncryptionImpl.java:193)
         at com.thortech.xl.crypto.tcCryptoUtil.encrypt(tcCryptoUtil.java:118)
         at com.thortech.xl.crypto.tcCryptoUtil.encrypt(tcCryptoUtil.java:184)
         at com.thortech.xl.crypto.tcCryptoUtil.encrypt(tcCryptoUtil.java:172)
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptTableColumn(EncryptDataBase.java:499)
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDB(EncryptDataBase.java:345)
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDBContent(EncryptDataBase.java:132)
         at oracle.as.install.oim.config.util.EncryptConfigurationAndDB.encryptConfigurationAndDatbase(EncryptConfigurationAndDB.java:208)
         at oracle.as.install.oim.config.OIMConfigManager.configureOIM(OIMConfigManager.java:966)
         at oracle.as.install.oim.config.OIMConfigManager.doExecute(OIMConfigManager.java:538)
         at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
         at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
         at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
         at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
         at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
         at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:83)
         at java.lang.Thread.run(Thread.java:662)
    [2012-06-29T04:26:24.359-07:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWrzSA8Fs1WFLz7U8A1FvOzU000003,0] [[
    [OIM_CONFIG] Get all the columns to encrypt from the SDC table
    [2012-06-29T04:26:24.359-07:00] [as] [ERROR] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWrzSA8Fs1WFLz7U8A1FvOzU000003,0] KeyStore File : C:\Oracle\Middleware\user_projects\domains\oimdomain\config\fmwconfig\.xldatabasekey missing.[[
    com.thortech.xl.crypto.tcCryptoException: KeyStore File : C:\Oracle\Middleware\user_projects\domains\oimdomain\config\fmwconfig\.xldatabasekey missing.
         at com.thortech.xl.crypto.tcCryptoHelper.loadKeyStore(tcCryptoHelper.java:96)
         at com.thortech.xl.crypto.tcDefaultDBEncryptionImpl.initKeyStore(tcDefaultDBEncryptionImpl.java:67)
         at com.thortech.xl.crypto.tcDefaultDBEncryptionImpl.getCipher(tcDefaultDBEncryptionImpl.java:96)
         at com.thortech.xl.crypto.tcDefaultDBEncryptionImpl.encrypt(tcDefaultDBEncryptionImpl.java:193)
         at com.thortech.xl.crypto.tcCryptoUtil.encrypt(tcCryptoUtil.java:118)
         at com.thortech.xl.crypto.tcCryptoUtil.encrypt(tcCryptoUtil.java:184)
         at com.thortech.xl.crypto.tcCryptoUtil.encrypt(tcCryptoUtil.java:172)
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDB(EncryptDataBase.java:390)
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDBContent(EncryptDataBase.java:132)
         at oracle.as.install.oim.config.util.EncryptConfigurationAndDB.encryptConfigurationAndDatbase(EncryptConfigurationAndDB.java:208)
         at oracle.as.install.oim.config.OIMConfigManager.configureOIM(OIMConfigManager.java:966)
         at oracle.as.install.oim.config.OIMConfigManager.doExecute(OIMConfigManager.java:538)
         at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
         at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
         at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
         at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
         at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
         at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:83)
         at java.lang.Thread.run(Thread.java:662)
    [2012-06-29T04:26:24.359-07:00] [as] [ERROR] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWrzSA8Fs1WFLz7U8A1FvOzU000003,0] Exception occured in encryptDB method while encrypting the database [[
    java.lang.Exception: Exception occured in encryptDB method while encrypting the database
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDB(EncryptDataBase.java:411)
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDBContent(EncryptDataBase.java:132)
         at oracle.as.install.oim.config.util.EncryptConfigurationAndDB.encryptConfigurationAndDatbase(EncryptConfigurationAndDB.java:208)
         at oracle.as.install.oim.config.OIMConfigManager.configureOIM(OIMConfigManager.java:966)
         at oracle.as.install.oim.config.OIMConfigManager.doExecute(OIMConfigManager.java:538)
         at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
         at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
         at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
         at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
         at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
         at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:83)
         at java.lang.Thread.run(Thread.java:662)
    Caused by: com.thortech.xl.crypto.tcCryptoException: KeyStore File : C:\Oracle\Middleware\user_projects\domains\oimdomain\config\fmwconfig\.xldatabasekey missing.
         at com.thortech.xl.crypto.tcCryptoHelper.loadKeyStore(tcCryptoHelper.java:96)
         at com.thortech.xl.crypto.tcDefaultDBEncryptionImpl.initKeyStore(tcDefaultDBEncryptionImpl.java:67)
         at com.thortech.xl.crypto.tcDefaultDBEncryptionImpl.getCipher(tcDefaultDBEncryptionImpl.java:96)
         at com.thortech.xl.crypto.tcDefaultDBEncryptionImpl.encrypt(tcDefaultDBEncryptionImpl.java:193)
         at com.thortech.xl.crypto.tcCryptoUtil.encrypt(tcCryptoUtil.java:118)
         at com.thortech.xl.crypto.tcCryptoUtil.encrypt(tcCryptoUtil.java:184)
         at com.thortech.xl.crypto.tcCryptoUtil.encrypt(tcCryptoUtil.java:172)
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDB(EncryptDataBase.java:390)
         ... 13 more
    [2012-06-29T04:26:24.359-07:00] [as] [ERROR] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWrzSA8Fs1WFLz7U8A1FvOzU000003,0] Exception occured while encrypting the database [[
    java.lang.Exception: Exception occured while encrypting the database
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDBContent(EncryptDataBase.java:138)
         at oracle.as.install.oim.config.util.EncryptConfigurationAndDB.encryptConfigurationAndDatbase(EncryptConfigurationAndDB.java:208)
         at oracle.as.install.oim.config.OIMConfigManager.configureOIM(OIMConfigManager.java:966)
         at oracle.as.install.oim.config.OIMConfigManager.doExecute(OIMConfigManager.java:538)
         at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
         at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
         at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
         at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
         at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
         at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:83)
         at java.lang.Thread.run(Thread.java:662)
    Caused by: java.lang.Exception: Exception occured in encryptDB method while encrypting the database
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDB(EncryptDataBase.java:411)
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDBContent(EncryptDataBase.java:132)
         ... 12 more
    Caused by: com.thortech.xl.crypto.tcCryptoException: KeyStore File : C:\Oracle\Middleware\user_projects\domains\oimdomain\config\fmwconfig\.xldatabasekey missing.
         at com.thortech.xl.crypto.tcCryptoHelper.loadKeyStore(tcCryptoHelper.java:96)
         at com.thortech.xl.crypto.tcDefaultDBEncryptionImpl.initKeyStore(tcDefaultDBEncryptionImpl.java:67)
         at com.thortech.xl.crypto.tcDefaultDBEncryptionImpl.getCipher(tcDefaultDBEncryptionImpl.java:96)
         at com.thortech.xl.crypto.tcDefaultDBEncryptionImpl.encrypt(tcDefaultDBEncryptionImpl.java:193)
         at com.thortech.xl.crypto.tcCryptoUtil.encrypt(tcCryptoUtil.java:118)
         at com.thortech.xl.crypto.tcCryptoUtil.encrypt(tcCryptoUtil.java:184)
         at com.thortech.xl.crypto.tcCryptoUtil.encrypt(tcCryptoUtil.java:172)
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDB(EncryptDataBase.java:390)
         ... 13 more
    [2012-06-29T04:26:24.359-07:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWrzSA8Fs1WFLz7U8A1FvOzU000003,0] [[
    [OIM_CONFIG] Database Encrytion failed.
    [2012-06-29T04:26:24.359-07:00] [as] [ERROR] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWrzSA8Fs1WFLz7U8A1FvOzU000003,0] Exception[[
    java.lang.Exception: Exception occured while encrypting the configuration and database
         at oracle.as.install.oim.config.util.EncryptConfigurationAndDB.encryptConfigurationAndDatbase(EncryptConfigurationAndDB.java:213)
         at oracle.as.install.oim.config.OIMConfigManager.configureOIM(OIMConfigManager.java:966)
         at oracle.as.install.oim.config.OIMConfigManager.doExecute(OIMConfigManager.java:538)
         at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
         at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
         at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
         at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
         at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
         at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
         at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:83)
         at java.lang.Thread.run(Thread.java:662)
    Caused by: java.lang.Exception: Exception occured while encrypting the database
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDBContent(EncryptDataBase.java:138)
         at oracle.as.install.oim.config.util.EncryptConfigurationAndDB.encryptConfigurationAndDatbase(EncryptConfigurationAndDB.java:208)
         ... 11 more
    Caused by: java.lang.Exception: Exception occured in encryptDB method while encrypting the database
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDB(EncryptDataBase.java:411)
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDBContent(EncryptDataBase.java:132)
         ... 12 more
    Caused by: com.thortech.xl.crypto.tcCryptoException: KeyStore File : C:\Oracle\Middleware\user_projects\domains\oimdomain\config\fmwconfig\.xldatabasekey missing.
         at com.thortech.xl.crypto.tcCryptoHelper.loadKeyStore(tcCryptoHelper.java:96)
         at com.thortech.xl.crypto.tcDefaultDBEncryptionImpl.initKeyStore(tcDefaultDBEncryptionImpl.java:67)
         at com.thortech.xl.crypto.tcDefaultDBEncryptionImpl.getCipher(tcDefaultDBEncryptionImpl.java:96)
         at com.thortech.xl.crypto.tcDefaultDBEncryptionImpl.encrypt(tcDefaultDBEncryptionImpl.java:193)
         at com.thortech.xl.crypto.tcCryptoUtil.encrypt(tcCryptoUtil.java:118)
         at com.thortech.xl.crypto.tcCryptoUtil.encrypt(tcCryptoUtil.java:184)
         at com.thortech.xl.crypto.tcCryptoUtil.encrypt(tcCryptoUtil.java:172)
         at oracle.as.install.oim.config.util.EncryptDataBase.encryptDB(EncryptDataBase.java:390)
         ... 13 more
    ]]

  • 11.2.0.2 resources dependencies configuration.

    Hi all,
    I'm trying to configure an Oracle 10.2.05 db and a listener (10.2 version) as 11.2.0.2 GI cluster resources as if they were merely applications with an start/stop/check script. My goal is to define the dependencies so that these two resources, and in general all resources I need (I could add more apps dependant on the db), run together at the same time on the same node and are managed only through db resource with commands like crsctl start res my.db, crsctl stop res my.db, crsctl relocate. That is, the db start starts all the apps in a defined order, the db stop stops all the apps and the same for db relocating, and that the apps that are not tje db can be started and stopped separately without affecting the db. Is this possible? the documentation I find very confusing and my tests do not work as expected.
    The closer I have got is this configuration:
    Listener conf:
    START_DEPENDENCIES=attraction(my.db)
    STOP_DEPENDENCIES=hard(my.db)
    Database conf:
    START_DEPENDENCIES=weak(my.listener)
    STOP_DEPENDENCIES=
    The problem with this conf is that when stopping db (crsctl stop res my.db) stops the listener but starts it immediately on the other node, and then stops the db. I don't understand this.
    Can you help me please?
    Thanks.

    Question not clear.

  • OIM resource granularity question

    Hi,
    I just touch OIM since last week. I see OIM resouce type includes RDBMS and EJB. But I wonner know more detail about protecting such resources.
    1. RDBMS Resources: ADD, DELETE, and UPDATE
    Does it grant privileges to a whole table or to discriminated records in the table according to some setting, e.g. key column value?
    Secnario: when request employee salary info, the request url and table is the same, but manager can see all his men's but individual employee can only see his own.
    2. Where does OIM store resouce metadata in the policy domain?
    To store table name in LDAP or somewhere else?
    3. Is there any AccessPort provided for JBoss app server? if is, which is the url to download it?
    Thanks in advance
    Justin

    The out of the box provisioning adapter does not support multi domain provisioing. You would have to build a custom connector to support this.
    In general option 1 is the lower effort solution. I have done it a number of times over the past few years and it generally works well (the approach is tested right now in this thread: How to create multiple AD instances
    Option two can sometimes fit better with your requirements and can therefor sometimes be of interest.
    It all depends on how your customer views AD access. If the existance of multiple domains is business driven then in general option one aligns closer with your business reqs. If the multiple domains is due to legacy (another company was integrated into your customer and the other company came with it's own Ad domain) then option two might be worth considering.
    Good luck
    /Martin

  • Cross Forrest Resources Permission Issue

    Hi, I am facing an odd issue before I describe the issue here is the structure:
    we have two forests with two domains. Domain A is in forest A and domain B is forest B. two way trust is established between both forests. we recently upgraded forest A to 2008R2 functional level forest B we have added 2008R2 domain controller but its still
    on 2003R2 functional level. after the upgrade the recourses some of the resources on some servers of domain A was not accessable by domain B as it would give 'you might not have permission, there is no logon server available' error. but this was only to some
    server shares while some other were just being accessed fine. sometimes if you restart the server the issue is being resolved  for maybe another 24 hours the shares are accessible just fine but then after a day or two the issue appears again. 
    Can anyone please assist in resolving this issue and finding what is causing this ??? 

    Here are the hotfixes.
    DNS Server service does not use root hints to resolve external names in Windows Server 2008 R2
    Post Windows 2008 R2 SP1 HOTFIX available.
    APPLIES TO •Windows 2008 R2 Datacenter •Windows 2008 R2 Ent •Windows 2008 R2 Std.
    Requires a restart.
    http://support.microsoft.com/kb/2616776
    DNS Server service does not resolve some external DNS names after it works for a while in Windows Server 2008 R2
    Hotfix release - (released 4/15/2011)
    http://support.microsoft.com/kb/2508835
    Windows 2008 -
    DNS queries for external domains are not resolved when you use Conditional Forwarding in Windows Server 2008
    Post Windows 2008 SP2 Hotfix available
    Requires a restart.
    http://support.microsoft.com/kb/2625735/
    DNS server stops responding to DNS queries from client computers in in Windows Server 2003, in Windows Server 2008 or in Windows Server 2008 R2 - Post Service Pack Hotfix available.
    Does not require a restart.
    http://support.microsoft.com/kb/2655960
    As for your link, cguan provided your answer. I added some info, too.
    Ace Fekay
    MVP, MCT, MCSE 2012, MCITP EA & MCTS Windows 2008/R2, Exchange 2013, 2010 EA & 2007, MCSE & MCSA 2003/2000, MCSA Messaging 2003
    Microsoft Certified Trainer
    Microsoft MVP - Directory Services
    Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php
    This posting is provided AS-IS with no warranties or guarantees and confers no rights.

  • [OIM] Resources search takes more than 10 minutes

    Hi everyone,
    I have several resources (more than 6,000), and I have the following problem:
    1) I go to Request -> Resources
    2) select a user.
    3) in the notification screen, I left the send notification checked and click on next.
    After the last next, the resources screen should appear. It takes more than 10 minutes. I am uploading more resources and I see that as I add more, the time of searching the resources increases linearly with the ammount of resources.
    Is there a way of putting some filter for this search so it takes less time, or I have to make a custom app for requesting resources?
    Thanks!

    I think the application does too much validations in these kind of searches. I noticed that until 9.1.0, the Organization lookup in the Users -> Create User showed all possible results, but in 9.1.0.2 you will see that it shows nothing, you have to enter a search filter so organizations appears. Perhaps it's the solution to these problems, that all sarches show nothing at the first time and then you filter the results.
    I opened the war, but the code for searching appears to be generic to all search pages, so I think it's very dangerous to change the OIM core.

  • Resource not configured properly

    Hi,
    I had created a generic resource say ResourceX. Now when I disable a user who has been granted this resource X, I get following exception:
    DOBJ.RESOURCE_NOTCONFIGURED_PROPERLYOne or more provisioned resource is not configured properly
    I am using OID connector to provision into LDAP. This is making changes in orclisenabled attribute, but not in status attribute.
    But when I try to simply disable a user without granting him this resource, its working fine.
    What can teh problem be?
    N.B. I havent defined any delete or disable task in the resource.

    Re: ADCS Enable User is not getiing Initiated

Maybe you are looking for

  • Musish - a dynamic and extensible music library organizer (in CLI!)

    Note: this program is deprecated and has been superseeded by Demlo. Musish organizes your music library automatically and dynamically. It runs a user-defined script using variable such as tags and file properties. This way it yields virtually unlimit

  • Strange audio problem

    I've created hundreds of DVD's with my current set-up (iDVD 4.0 on a G5 with OS 10.3.9). Suddenly I encountered a very strange problem. The audio sounds fine in iMovie or when I play the .mov file. The volume seems fine--just like any project that I

  • Problems with editing movies...

    So I have some movies that I'm trying to edit with Quicktime Pro. I'm running it on Windows XP. When I use the selection markers, I can select one part of the movie, but when I go to Edit>Delete, it automatically deletes everything in the movie after

  • Silverlight crashing, all browsers

    My mac pro hung this morning after an app apparently exhausted all memory. After rebooting, Silverlight now crashes on startup in any browser. I have removed Silverlight and reinstalled, including removing just about every trace I could find and rein

  • Automatic restart services in 10gR2

    Hello all, I'm more familiar with services in 11g using "srvctl add" command to add services to start istener, database, asm, crs, etc  automatically. I was researching the web and found that in 10g, some guys are creating a script in /etc/init.d to