PeopleTools - LDAP (MSAD) integration

I'm tooling around with creating a process to create a shell/disabled Active Directory (AD) account when a new person is hired in the HR database. I've already successfully utilized the LDAP_SEARCH and LDAP_MODIFY business interlinks to read from and update the AD accounts that are linked with a PS Operator, so I know the server and search configurations are correct. We are also using LDAP authentication with these same servers in production.
Today I thought I'd try the LDAP_ADD Business Interlink so I loaded and executed the BI after pulling individual attributes from my own AD account. I added a "9" to the sn attribute and did a replace of the sn portion of the DN to make it unique, and appended the same "9" to the sAMAccountName to make it unique also. Then I added the attributes :
sn, givenName, displayName, department, company, name, employeeID, and sAMAccountName
to the Business Interlink and performed the Execute().
The BI returned with return status 65 and return status message “Object class violation”.
Someone suggested leaving the DN blank and allowing AD to format it itself, so I did that. That time the BI returned with status 64 and status message ‘Naming violation’.
I'm not an LDAP or AD expert (in fact don't even have access to AD), so keep it simple. Any suggestions ?
TIA!

Lots of views, but no responses. Is there any interest out there in LDAP integration ?
I've resolved this issue, I had not been giving the full object path to the new user I was adding to AD.
&inAttrDoc = &inAddDirectoryEntries.AddDoc("Attribute");
&biReturn = &inAttrDoc.AddValue("Attribute_Name", "objectclass");
&biReturn = &inAttrDoc.AddValue("Value", "top");
&biReturn = &inAttrDoc.AddValue("Value", "person");
&biReturn = &inAttrDoc.AddValue("Value", "organizationalPerson");
&biReturn = &inAttrDoc.AddValue("Value", "user");
Originally I had been givning only the user value not the top>person>organizationalPerson>user values. When that was added, I was in business.
Edited by: user632288 on Jul 15, 2009 9:34 AM

Similar Messages

  • Webcenter dicussion forum - Ldap Group Integration with JSSO

    Hi,
    We want to implement LDAP Group integration for the authorization purposes in
    webcenter Jive Disucussions deployed in our IAS 10.1.3.2 application server.
    Though jive provides support for the same, yet the JIve documentation says
    that we need to implement the JIve's LDAP User authentication steps in order
    to leverage LDAP Groups integration. In case of Webcenter if we use Java SSO
    for the authentication purpose, we need opt for the 'Default' in the Jive
    Admin's authentication page instead of LDAP settings. Opting for 'Default'
    scheme doesn't allow us to configure the LDAP group settings. We are not able
    find any documentation for LDAP Group Integration along with Java SSO. Could
    provide us the steps required for the same? Or has anyone tried the same?
    Thanks and Regards,
    ABhijit

    Hi Abhijit,
    You can ignore 'Default', and implement your own user authentication mechanism, which can include LDAP group settings. You will have to follow:
    - OC4J security documentation for using Java SSO in your own implementation (I think this is the right link - confirm the version numbers - http://download.oracle.com/docs/cd/B32110_01/web.1013/b28957/javasso.htm#BABEJFDI)
    - Jive documentation for implementing user authentication
    Navneet.

  • Webcenter dicussion forum - Ldap Group Integration issue

    Hi All,
    I am trying to implement LDAP Group integration in our jive forums 5.1.0 installed in an Oracle IAS 10.1.3.2 server.
    I have followed the steps mentioned in the LDAP documentation and setup the following system properties:
    ldap.groupNameField cn
    ldap.groupMemberField uniquemember
    ldap.groupDescriptionField description
    ldap.groupSearchFilter (cn={0})
    I just restarted the server after setting up these , but the forums instance is not coming up in the server. Throwing the following error:
    08/01/21 14:52:33.550 jiveforums: http://CompressingFilter/1.4.4 CompressingFilter has initialized
    08/01/21 15:23:04.597 jiveforums: Servlet error
    java.io.IOException: An established connection was aborted by the software in your host machine
    at sun.nio.ch.SocketDispatcher.write0(Native Method)
    at sun.nio.ch.SocketDispatcher.write(SocketDispatcher.java:33)
    at sun.nio.ch.IOUtil.writeFromNativeBuffer(IOUtil.java:104)
    at sun.nio.ch.IOUtil.write(IOUtil.java:75)
    at sun.nio.ch.SocketChannelImpl.write(SocketChannelImpl.java:302)
    at java.nio.channels.Channels.write(Channels.java:60)
    at java.nio.channels.Channels.access$000(Channels.java:47)
    at java.nio.channels.Channels$1.write(Channels.java:134)
    at com.evermind.server.http.AJPOutputStream.endRequest(AJPOutputStream.java:117)
    at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:309)
    at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:190)
    at oracle.oc4j.network.ServerSocketReadHandler$SafeRunnable.run(ServerSocketReadHandler.java:260)
    at com.evermind.util.ReleasableResourcePooledExecutor$MyWorker.run(ReleasableResourcePooledExecutor.java:303)
    at java.lang.Thread.run(Thread.java:595)
    08/01/21 15:25:59.956 jiveforums: Exception thrown during contextDestroyed
    java.lang.ExceptionInInitializerError
    at com.jivesoftware.forum.database.DbForumFactory.getAttachmentManager(DbForumFactory.java:798)
    at com.jivesoftware.forum.database.DbForumFactory.destroy(DbForumFactory.java:410)
    at com.jivesoftware.forum.database.DbForumFactory.shutdown(DbForumFactory.java:381)
    at com.jivesoftware.forum.util.ForumsLifeCycleListener.contextDestroyed(ForumsLifeCycleListener.java:88)
    at com.evermind.server.http.HttpApplication.destroyContextListeners(HttpApplication.java:5877)
    at com.evermind.server.http.HttpApplication.destroy(HttpApplication.java:5843)
    at com.evermind.server.http.HttpSite.destroy(HttpSite.java:877)
    at com.evermind.server.http.HttpServer.destroy(HttpServer.java:548)
    at com.evermind.server.ApplicationServer.destroy(ApplicationServer.java:2030)
    at com.evermind.server.ApplicationServerShutdownHandler.run(ApplicationServerShutdownHandler.java:93)
    at java.lang.Thread.run(Thread.java:595)
    Caused by: java.lang.IllegalStateException: Timer already cancelled.
    at java.util.Timer.sched(Timer.java:354)
    at java.util.Timer.scheduleAtFixedRate(Timer.java:296)
    at com.jivesoftware.util.TaskEngine.scheduleTask(TaskEngine.java:218)
    at com.jivesoftware.util.TaskEngine.scheduleTask(TaskEngine.java:202)
    at com.jivesoftware.forum.database.DbAttachmentManager.<init>(DbAttachmentManager.java:160)
    at com.jivesoftware.forum.database.DbAttachmentManager.<clinit>(DbAttachmentManager.java:48)
    Can anyone please throw a light?
    Thanks and regards,
    ABhijit

    Hi Guneet,
    We are using jive 5.5.9 instead of 5.1.0 that comes with webcenter.
    Also we are just trying to validate the JIve's authorization scheme so didn't integrate the Java SSO part. Jive forum is just a standalone OC4J instance in the IAS server and we are using the LDAP configuration in the User,Groups Authentication page instead or default which is required for Java SSO.
    Thanks,
    ABhijit

  • Steps for portal and Microsoft LDAP server integration

    Hi,
    Could any one guide me steps for portal and Microsoft LDAP server integration. Need it urgently.
    Thanks in advance.
    Regards,
    Niraj

    Please don't cross post in multiple forums..

  • MSAD Integration Error

    Hi All,
    I integrated my shared services with MSAD. MSAD integration is succeeded. I can able to view all the users in MSAD. Using MSAD users, i can able to login in shared services.
    If i trying to login to Planning, it throws the errors as "*Failed to sync with user provisioning*". I checked the logs, it throwing the error as "*Single Sign on External Authentication is Disabled*"
    If i trying to acces EAS, it throwing the erros "Error: 1051293: Login fails due to invalid login credentials"
    Please guide me in this situtation.
    Thanks,
    PC
    Edited by: dwhpc on Aug 27, 2009 1:00 PM
    Edited by: dwhpc on Aug 27, 2009 1:01 PM

    Hi AmalDott,
    This is my log while performing the ProvisionUsers.sh
    *[Thu Aug 27 14:07:28 GMT+03:00 2009] Starting synchronization.*
    Query Failed: SQL_GET_SYSTEMCFG: null
    *java.sql.SQLException: [Hyperion][Oracle JDBC Driver][Oracle]ORA-00942: table or view does not exist*
    *     at hyperion.jdbc.base.BaseExceptions.createException(Unknown Source)*
    *     at hyperion.jdbc.base.BaseExceptions.getException(Unknown Source)*
    *     at hyperion.jdbc.oracle.OracleImplStatement.execute(Unknown Source)*
    *     at hyperion.jdbc.base.BaseStatement.commonExecute(Unknown Source)*
    *     at hyperion.jdbc.base.BaseStatement.executeQueryInternal(Unknown Source)*
    *     at hyperion.jdbc.base.BasePreparedStatement.executeQuery(Unknown Source)*
    *     at com.hyperion.planning.sql.HspSQLImpl.executeQuery(Unknown Source)*
    *     at com.hyperion.planning.sql.HspSQLImpl.executeQuery(Unknown Source)*
    *     at com.hyperion.planning.sql.JDBCCacheLoader.loadObjects(Unknown Source)*
    *     at com.hyperion.planning.sql.GenericCache.loadCache(Unknown Source)*
    *     at com.hyperion.planning.sql.GenericCache.getCache(Unknown Source)*
    *     at com.hyperion.planning.sql.GenericCache.getUnfilteredCache(Unknown Source)*
    *     at com.hyperion.planning.HspJSImpl.loadSystemCfg(Unknown Source)*
    *     at com.hyperion.planning.HspJSImpl.<init>(Unknown Source)*
    *     at com.hyperion.planning.HspJSHomeImpl.createHspJS(Unknown Source)*
    *     at com.hyperion.planning.HspJSHomeImpl.getHspJSByApp(Unknown Source)*
    *     at com.hyperion.planning.utils.HspUserProvisioningUtility.main(Unknown Source)*
    *java.sql.SQLException: [Hyperion][Oracle JDBC Driver][Oracle]ORA-00942: table or view does not exist*
    *     at hyperion.jdbc.base.BaseExceptions.createException(Unknown Source)*
    *     at hyperion.jdbc.base.BaseExceptions.getException(Unknown Source)*
    *     at hyperion.jdbc.oracle.OracleImplStatement.execute(Unknown Source)*
    *     at hyperion.jdbc.base.BaseStatement.commonExecute(Unknown Source)*
    *     at hyperion.jdbc.base.BaseStatement.executeQueryInternal(Unknown Source)*
    *     at hyperion.jdbc.base.BasePreparedStatement.executeQuery(Unknown Source)*
    *     at com.hyperion.planning.sql.HspSQLImpl.executeQuery(Unknown Source)*
    *     at com.hyperion.planning.sql.HspSQLImpl.executeQuery(Unknown Source)*
    *     at com.hyperion.planning.sql.JDBCCacheLoader.loadObjects(Unknown Source)*
    *     at com.hyperion.planning.sql.GenericCache.loadCache(Unknown Source)*
    *     at com.hyperion.planning.sql.GenericCache.getCache(Unknown Source)*
    *     at com.hyperion.planning.sql.GenericCache.getUnfilteredCache(Unknown Source)*
    *     at com.hyperion.planning.HspJSImpl.loadSystemCfg(Unknown Source)*
    *     at com.hyperion.planning.HspJSImpl.<init>(Unknown Source)*
    *     at com.hyperion.planning.HspJSHomeImpl.createHspJS(Unknown Source)*
    *     at com.hyperion.planning.HspJSHomeImpl.getHspJSByApp(Unknown Source)*
    *     at com.hyperion.planning.utils.HspUserProvisioningUtility.main(Unknown Source)*
    *java.lang.RuntimeException: Error loading objects from data source: java.sql.SQLException: [Hyperion][Oracle JDBC Driver][Oracle]ORA-00942: table or view does not exist*
    *     at com.hyperion.planning.sql.GenericCache.loadCache(Unknown Source)*
    *     at com.hyperion.planning.sql.GenericCache.getCache(Unknown Source)*
    *     at com.hyperion.planning.sql.GenericCache.getUnfilteredCache(Unknown Source)*
    *     at com.hyperion.planning.HspJSImpl.loadSystemCfg(Unknown Source)*
    *     at com.hyperion.planning.HspJSImpl.<init>(Unknown Source)*
    *     at com.hyperion.planning.HspJSHomeImpl.createHspJS(Unknown Source)*
    *     at com.hyperion.planning.HspJSHomeImpl.getHspJSByApp(Unknown Source)*
    *     at com.hyperion.planning.utils.HspUserProvisioningUtility.main(Unknown Source)*
    Skipping unrecognized application: CBO_BUD
    Error occurred: java.lang.UnsatisfiedLinkError: no HspEssbaseEnv in java.library.path
    Here My application name is BUDGET not CBO_BUD. I deleted the CBO_BUD
    Thanks,
    PC
    Edited by: dwhpc on Aug 27, 2009 3:44 PM

  • UCM 6.1 LDAP Directory Integration

    What happen if I enable, and then disable the LDAP Directory Integration?
    Do I loose all the users?
    I ask because will see how many users there maybe will bee inactive.

    the new directory sync takes a copy of the directory into the server, so all the users will still be in the directory
    you can find more here:
    LDAP Directory Integration
    http://www.cisco.com/en/US/docs/voice_ip_comm/cucm/srnd/6x/directry.html
    HTH
    javalenc
    if this helps, please rate

  • Portal and Netscape LDAP server integration

    Hi,
    I am trying to integrate Netscape LDAP server (6.0) with portal server 7, but
    having lots of trouble doing that.
    I've followed the instructions in the developer guide and completed the following
    steps:
    1. added a CustomRealm named defaultLDAPRealmForNetscapeDirectoryServer in config.xml
    and modified the entries to fit my environment.
    2. Deployed ldapprofile.jar and customized the env variables.
    After these two steps, nothing happened. Then I did the third step:
    3. added a iPlanet Authenticator to the realm CompatibilityRealm, which is my
    default realm for the server.
    However, after step 3, I wasn't able to boot weblogic server. Please note I have
    create two users, system and weblogic in my LDAP server.
    I copied the stack trace below. Any suggestions will be greatly appreciated.
    Weiguo
    C:\prog\bea\user_projects\portalDemoDomain>"C:\prog\bea\jdk131_03\bin\java" -hotspot
    -Xms128m -Xmx128m -XX:MaxPermSize=128m -Dcommerce.properties="C:\prog\bea\weblogic700\portal\weblogiccommerce.properties"
    -Dweblogic.Name=portalDemoServer
    -Dbea.home="C:\prog\bea" -Dweblogic.management.username= -Dweblogic.management.p
    assword= -Dweblogic.ProductionModeEnabled=true -Dweblogic.management.discover=fa
    lse -Djava.security.policy=="C:\prog\bea\weblogic700\server\lib\weblogic.policy"
    weblogic.Server
    <Nov 4, 2002 1:18:45 PM EST> <Info> <Security> <090065> <Getting boot identity
    from user.>
    Enter username to boot WebLogic server:weblogic
    Enter password to boot WebLogic server:
    Starting WebLogic Server...
    <Nov 4, 2002 1:19:06 PM EST> <Notice> <Management> <140005> <Loading configuration
    C:\prog\bea\user_projects\portalDemoDomain\.\config.xml>
    <Nov 4, 2002 1:19:21 PM EST> <Notice> <Security> <090093> <No configuration data
    was found on server portalDemoServer for realm CompatibilityRealm.>
    <Nov 4, 2002 1:19:21 PM EST> <Notice> <Security> <090082> <Security initializing
    using realm CompatibilityRealm.>
    <Nov 4, 2002 1:19:21 PM EST> <Critical> <WebLogicServer> <000364> <Server failed
    during initialization. Exception:java.lang.SecurityException: Authentication for
    user weblogic denied
    java.lang.SecurityException: Authentication for user weblogic denied at
    weblogic.security.service.SecurityServiceManager.doBootAuthorization(
    SecurityServiceManager.java:1028)
    at weblogic.security.service.SecurityServiceManager.initialize(SecurityS
    erviceManager.java:1166)
    at weblogic.t3.srvr.T3Srvr.initialize1(T3Srvr.java:697)
    at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:589)
    at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:277)
    at weblogic.Server.main(Server.java:32)
    >
    <Nov 4, 2002 1:19:21 PM EST> <Emergency> <WebLogicServer> <000342> <Unable to
    in
    itialize the server: Fatal initialization exception
    Throwable: java.lang.SecurityException: Authentication for user weblogic denied
    java.lang.SecurityException: Authentication for user weblogic denied
    at weblogic.security.service.SecurityServiceManager.doBootAuthorization(
    SecurityServiceManager.java:1028)
    at weblogic.security.service.SecurityServiceManager.initialize(SecurityS
    erviceManager.java:1166)
    at weblogic.t3.srvr.T3Srvr.initialize1(T3Srvr.java:697)
    at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:589)
    at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:277)
    at weblogic.Server.main(Server.java:32)
    >
    The WebLogic Server did not start up properly.
    Exception raised:
    java.lang.SecurityException: Authentication for user weblogic denied
    at weblogic.security.service.SecurityServiceManager.doBootAuthorization(
    SecurityServiceManager.java:1028)
    at weblogic.security.service.SecurityServiceManager.initialize(SecurityS
    erviceManager.java:1166)
    at weblogic.t3.srvr.T3Srvr.initialize1(T3Srvr.java:697)
    at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:589)
    at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:277)
    at weblogic.Server.main(Server.java:32)
    Reason: Fatal initialization exception
    Throwable: java.lang.SecurityException: Authentication for user weblogic denied
    java.lang.SecurityException: Authentication for user weblogic denied
    at weblogic.security.service.SecurityServiceManager.doBootAuthorization(
    SecurityServiceManager.java:1028)
    at weblogic.security.service.SecurityServiceManager.initialize(SecurityS
    erviceManager.java:1166)
    at weblogic.t3.srvr.T3Srvr.initialize1(T3Srvr.java:697)
    at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:589)
    at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:277)
    at weblogic.Server.main(Server.java:32)

    Thanks a lot Scott. I followed your instructions and got it working to a certain
    degree. I am pretty happy about the results.
    There are still a few issues:
    1. I had to create groups and users in my directory server in order to boot up
    and logon to the server. This is expected, but is it possible to export these
    user/group settings from the embedded LDAP server so that I can import them into
    my directory server? Currently, the only way is manual and it's error prone. A
    lot of trial and error has to happen to get there.
    2. It seems that using Netscape LDAP server only allows read-only access. This
    means we have to create new users/groups outside of the portal server and one
    other side effect is self-registration is impossible, unless we use custom security
    providers. Is this assessment correct? Since LDAP integration is so important,
    wouldn't it be nice if BEA have that built-in and all we need to do is to switch
    to and configure it?
    3. I got duplicate users and groups in compatibility security. Obviously, one
    set is from my LDAP server and the other is from the embedded one. I tried to
    remove to embedded LDAP authenticator, but the duplicates are still there. How
    can I get rid of the duplicates - I only want the ones from my LDAP server?
    Thanks again Scott.
    Weiguo
    Scott Dunbar <[email protected]> wrote:
    Weiguo,
    WLP 7.0 uses a compatibility realm only and will not work with the
    custom realm that you created for the Netscape directory server.
    Configuring an LDAP compatibility realm isn't too bad and its
    configuration is much like 4.0. However, it can be hard to configure
    initially from the console. One way is to shut your server down and
    modify config.xml directly - but make sure you make a backup copy first!
    Then add something like:
    <CachingRealm BasicRealm="myRealm" CacheCaseSensitive="true"
    Name="wlcsCachingRealm"/>
    <CustomRealm
    ConfigurationData="user.filter=(&(uid=%u)(objectclass=person));
    user.dn=ou=people,dc=beasys,dc=com;
    server.principal=uid=dirmanager,ou=people,dc=beasys,dc=com;
    membership.filter=(&(uniquemember=%M)(objectclass=groupofuniquenames));
    group.filter=(&(cn=%g)(objectclass=groupofuniquenames));
    server.host=somehost.beasys.com;
    group.dn=ou=groups,dc=beasys,dc=com"
    Name="myRealm" Password="your_password_here"
    RealmClassName="weblogic.security.ldaprealmv2.LDAPRealm"/>
    will enable your LDAP server. After this is setup it will be much
    easier to configure via the console. Obviously you'll need to update
    the parameters above for your configuration.
    Weiguo Wang wrote:
    Hi,
    I am trying to integrate Netscape LDAP server (6.0) with portal server7, but
    having lots of trouble doing that.
    I've followed the instructions in the developer guide and completedthe following
    steps:
    1. added a CustomRealm named defaultLDAPRealmForNetscapeDirectoryServerin config.xml
    and modified the entries to fit my environment.
    2. Deployed ldapprofile.jar and customized the env variables.
    After these two steps, nothing happened. Then I did the third step:
    3. added a iPlanet Authenticator to the realm CompatibilityRealm, whichis my
    default realm for the server.
    However, after step 3, I wasn't able to boot weblogic server. Pleasenote I have
    create two users, system and weblogic in my LDAP server.
    I copied the stack trace below. Any suggestions will be greatly appreciated.
    Weiguo
    C:\prog\bea\user_projects\portalDemoDomain>"C:\prog\bea\jdk131_03\bin\java"-hotspot
    -Xms128m -Xmx128m -XX:MaxPermSize=128m -Dcommerce.properties="C:\prog\bea\weblogic700\portal\weblogiccommerce.properties"
    -Dweblogic.Name=portalDemoServer
    -Dbea.home="C:\prog\bea" -Dweblogic.management.username= -Dweblogic.management.p
    assword= -Dweblogic.ProductionModeEnabled=true -Dweblogic.management.discover=fa
    lse -Djava.security.policy=="C:\prog\bea\weblogic700\server\lib\weblogic.policy"
    weblogic.Server
    <Nov 4, 2002 1:18:45 PM EST> <Info> <Security> <090065> <Getting bootidentity
    from user.>
    Enter username to boot WebLogic server:weblogic
    Enter password to boot WebLogic server:
    Starting WebLogic Server...
    <Nov 4, 2002 1:19:06 PM EST> <Notice> <Management> <140005> <Loadingconfiguration
    C:\prog\bea\user_projects\portalDemoDomain\.\config.xml>
    <Nov 4, 2002 1:19:21 PM EST> <Notice> <Security> <090093> <No configurationdata
    was found on server portalDemoServer for realm CompatibilityRealm.>
    <Nov 4, 2002 1:19:21 PM EST> <Notice> <Security> <090082> <Securityinitializing
    using realm CompatibilityRealm.>
    <Nov 4, 2002 1:19:21 PM EST> <Critical> <WebLogicServer> <000364> <Serverfailed
    during initialization. Exception:java.lang.SecurityException: Authenticationfor
    user weblogic denied
    java.lang.SecurityException: Authentication for user weblogic deniedat
    weblogic.security.service.SecurityServiceManager.doBootAuthorization(
    SecurityServiceManager.java:1028)
    at weblogic.security.service.SecurityServiceManager.initialize(SecurityS
    erviceManager.java:1166)
    at weblogic.t3.srvr.T3Srvr.initialize1(T3Srvr.java:697)
    at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:589)
    at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:277)
    at weblogic.Server.main(Server.java:32)
    <Nov 4, 2002 1:19:21 PM EST> <Emergency> <WebLogicServer> <000342><Unable to
    in
    itialize the server: Fatal initialization exception
    Throwable: java.lang.SecurityException: Authentication for user weblogicdenied
    java.lang.SecurityException: Authentication for user weblogic denied
    at weblogic.security.service.SecurityServiceManager.doBootAuthorization(
    SecurityServiceManager.java:1028)
    at weblogic.security.service.SecurityServiceManager.initialize(SecurityS
    erviceManager.java:1166)
    at weblogic.t3.srvr.T3Srvr.initialize1(T3Srvr.java:697)
    at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:589)
    at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:277)
    at weblogic.Server.main(Server.java:32)
    The WebLogic Server did not start up properly.
    Exception raised:
    java.lang.SecurityException: Authentication for user weblogic denied
    at weblogic.security.service.SecurityServiceManager.doBootAuthorization(
    SecurityServiceManager.java:1028)
    at weblogic.security.service.SecurityServiceManager.initialize(SecurityS
    erviceManager.java:1166)
    at weblogic.t3.srvr.T3Srvr.initialize1(T3Srvr.java:697)
    at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:589)
    at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:277)
    at weblogic.Server.main(Server.java:32)
    Reason: Fatal initialization exception
    Throwable: java.lang.SecurityException: Authentication for user weblogicdenied
    java.lang.SecurityException: Authentication for user weblogic denied
    at weblogic.security.service.SecurityServiceManager.doBootAuthorization(
    SecurityServiceManager.java:1028)
    at weblogic.security.service.SecurityServiceManager.initialize(SecurityS
    erviceManager.java:1166)
    at weblogic.t3.srvr.T3Srvr.initialize1(T3Srvr.java:697)
    at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:589)
    at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:277)
    at weblogic.Server.main(Server.java:32)
    scott dunbar bea systems,
    inc.
    [email protected] boulder, co
    303 998 2125 usa

  • Siebel new LDAP adapter integration with BI Publisher

    Hi All!!
    We have configured our Siebel (8.1.1.3) security adapter with LDAP. BI Publisher is using Siebel security model.
    We had to clone our AOM (fins_esn which is using the security adapter LDAP) to finsxx_esn because we are migrating the AD 2000 to 2008 (we are also changing the domain). The roll out will last 2 month, users will be migrated by branch, it wont be a big bang.
    We have to generate a new LDAP security adapter to authenticate users who are logging to finsxx_esn to the AD 2008 (AD 2008 is on a diferent domain than AD 2000. This is working for application autehtication, no problems found here)
    On a standalone environment report generation is working. But for a distributed environment (1 AOM, 1 NAOM, 1 Web Server) is not working.
    Does anyone knows how to integrate to BI Publisher when you have two LDAP security adapters on Siebel Application? Or is there any authentication method to use instead of "Siebel Security" so as to achieve this?
    Regards

    We actually ran into a similar problem where I work. I created a support web ticket for our issue and the response is that BIP 11G is not supported for integration with Siebel 8.1, or any other version for that matter. Oracle is currently working on a fix to integrated the latest version of Siebel with BIP.
    There advice to me was to downgrade to BIP 10G for the time being.

  • Outlook IMAP client authen to CUCMBE-UC with LDAP/AD integration

    I have a CUCME 7.1(3). instlallation which is integrated into AD's LDAP for user population and authentication.  Users can log into the UC PCA (/ciscopca)
    and authenticate their username/password against AD successfully.
    I'm trying to setup Outlook clients but I cannot authenticate my client when testing the connection to UC. My username's SMTP address is [email protected]
    and when I set-up my IMAP outlook client I am using an email address of [email protected], server information for IMAP has incoming and outgoing server address 10.1.1.1 (10.1.1.1 is my CUCMBE-UC address). I am using my username and password which works for ciscopca access (via AD authen). But when I test my connection it just kicks back the test that the log in failed.
    Is there a problem with authentication IMAP clients to UC-IMAP when AD auth/integration is used in Business Edition or am I missing something.
    THANKS!!

    So, there is one portion of the document that I sent you I'd like to focus in on and ask if you've tried this and, if not,
    please do:
    Configure the corporate email address of each user  as an SMTP proxy address for the user. When setting up the Connection  IMAP account on user workstations, use the corporate email address of  the user, rather than the Connection-specific email address, in the IMAP  settings. In this way, users do not need to know an extra set of email  addresses for addressing voice messages in the email client, and are  insulated from changes to the Connection-specific addresses if the  Connection SMTP domain is changed.
    In other words, you would have the following:
    AD User = jdoe
    CUC User = jdoe (synced from AD)
    Corporate SMTP/Email Address = [email protected]
    CUC SMTP/Email Address = [email protected]
    For jdoe's CUC user account, configure the SMTP proxy address to be the corporate email address ([email protected]).
    When you set the IMAP connection in Outlook, specify the SMTP Proxy Address as the connection name NOT the CUC SMTP address.  You would also provide your AD password just like you do with PCA.
    Have you tried to see if that yields different results?
    Hailey

  • LDAP / ASP integration

    How should i setup LDAP integration with ASP in Dreamweaver
    CS3.

    Kingpin112 wrote:
    >
    quote:
    Originally posted by:
    Newsgroup User
    > Kingpin112 wrote:
    > > How should i setup LDAP integration with ASP in
    Dreamweaver CS3.
    >
    > What are you trying to achieve?
    >
    > Dooza
    > ------------------------------------------------------
    >
    > We want to get information from a user configuration out
    of the active
    > directory.
    Its not easy doing it in ASP, and I can't find any extensions
    for
    Dreamweaver either. When I was attempting this myself I found
    the
    shortage of information online very frustrating.
    In the end I went for a slightly different solution. Using MS
    SQL I
    extracted the Active Directory information into a table on a
    daily
    basis, this allowed me to query the table at any time without
    any delays.
    This is what we used in a view:
    SELECT TOP 100 PERCENT givenname AS [First Name], SN AS [Last
    Name],
    mail AS Email, telephoneNumber AS Telephone, Mobile,
    CASE WHEN IPPhone IS NULL THEN ' ' ELSE
    IPPhone END AS Extension, physicalDeliveryOfficeName AS
    Office,
    Department, Title
    FROM OPENQUERY(ADSI,
    'SELECT givenname, SN, telephoneNumber, mail,
    physicalDeliveryOfficeName, IPPhone, Department, Mobile,
    Title
    FROM ''LDAP://DC=aclighting,DC=com''
    WHERE objectCategory = ''Person'' AND
    objectClass = ''user''')
    AS derivedtbl_1
    WHERE (telephoneNumber <> '') AND (givenname <>
    '') AND
    (telephoneNumber <> 'N/A')
    All I can say is good luck, it took me weeks to get what I
    needed out of
    the Active Directory.
    Dooza
    Posting Guidelines
    http://www.adobe.com/support/forums/guidelines.html
    How To Ask Smart Questions
    http://www.catb.org/esr/faqs/smart-questions.html

  • Can´t create a datasource in workspace in MSAD integrated environment

    We are instaled Hyperion 11.1.1.3, with sql server 2005 and with MSAD autentication.
    In that environment, autenticate in the database is doing using MSAD not sql user login.
    When we configre the database we specifiy parameter to indicate that use MSAD autentication, and test all conection and was ok, and the configuration finish witout errors
    When we finish, we configure Shared Services and give permission to the MSAD user (using admin user). After that we login in workspace with the same user that we use to configure the database before.
    When we try to create a application, first we must create a datasource. For tha use Navigate->Administer->Classic Application Administration -> Planning Administration. And after, select Manage Data Source.
    In that point we introduce de parameters and test de datasource and appear a message  indicating that the connection is not possible and is not posssible create the data source (the essbase data source was ok) ._
    The database was created before, and the user used to test the datasource, is the dbo in the database (and in the other database of shared services)
    To inspect the problem we do the following task
    - We create a datasource in windows to test the user and was ok too.
    - We test with the database indicated for Shared Services and test again and not work.
    - We copy the data direct dll to windows/system 32 and test agian and not work.
    - We restart the machine and don´t work.
    Someone had idea how to solve this problem?
    Thanks a lot for your help.
    Edited by: user1044125 on 31/08/2009 07:52 AM

    You maybe right, did you follow all of the post installation instructions?
    Check out page 27 of the installation guide, this maybe the case I'm not sure ...
    Locate the line containing PlsqlNLSLanguage.
    The PlsqlNLSLanguage setting determines the language setting of the DAD.
    The character set portion of the PlsqlNLSLanguage value must be set to
    AL32UTF8, regardless of whether or not the database character set is AL32UTF8.
    For example:
    PlsqlNLSLanguage AMERICAN_AMERICA.AL32UTF8

  • LDAP (OID) integration with java appilcation

    OID issue Urgent
    Currently we are using the OID-LDAP as the repository for storing username, passwds
    and other attributes. All applications that need authentication will essentially
    be using the OID.
    In our effort to do the same we are encountering the following problems
    - Creation of an identity corresponding the application
    - Giving this identity certain LDAP authorizations (Which authorizations are these)
    We have been successful creating LDAP entries for users and getting the initial
    JNDI contexts to do the lookups.
    When we are creating the user lookup from java code using oracle.ldap.util.User pakage ,
    at the run time it's throwing error(no classfound oracle/net/config/ConfigException ).
    why and where this is needed and how to resolve that. is that because we haven't added
    the application in oid and configured authorizations for it.
    Need an urgent answer to this since all applications will be using LDAP(OID).
    here is code of java which tries to connect to OID.
    ================================================================================================
    import oracle.ldap.util.*;
    import oracle.ldap.util.jndi.*;
    import java.io.*;
    import java.util.*;
    import javax.naming.*;
    import java.Exception.*;
    import javax.naming.directory.*;
    public class hello {
    public static void main(String argv[])
    throws NamingException {
    // Create InitialDirContext
         System.out.println("INSIDE SERVLET");
    InitialDirContext ctx = ConnectionUtil.getDefaultDirCtx( "hire11.kmfl.kg","4032","cn=orcladmin", "ias123" );
    // Create Subscriber object
         System.out.println("GOT CONTEXT" +ctx);
    Subscriber mysub = null;
    /* commented for time being -----------------------------
    try {
    // Creation using DN
    System.out.println("CREATING subscriber");
         mysub = new Subscriber( ctx, Util.IDTYPE_DN, "o=oracle,dc=com", false
         System.out.println("GOT subscriber");
    catch (UtilException e) {
              System.out.println("error");
    // Create User Objects
    User myuser = null, myuser1 = null;
    try {
    // Create User using a subscriber DN and the User DN
         System.out.println("CREATING USERl");
    myuser = new User ( ctx,Util.IDTYPE_DN,           "cn=abhishek,cn=users,dc=kmfl,dc=kg",Util.IDTYPE_DN,"dc=kmfl,dc=kg", true );
         System.out.println("GOT USER");
    // Create User using a subscriber object and the User
    // simple name
    // commented for time being -----------------------------
    myuser1 = new User ( ctx, Util.IDTYPE_SIMPLE, "abhishek", mysub, true );
    catch ( UtilException e ) {
    System.out.println("COUDN'T GET USER"+e.toString());
    // Authenticate User
    try {
         System.out.println("gOING FOR AUTHENTICATION");     
    myuser.authenticateUser(ctx,User.CREDTYPE_PASSWD,"abhi123");
         System.out.println("AUTHENTICATION SuccessFull");
         System.out.println("AUTHENTICATION SUCCESSfULL");
         System.out.println("AUTHENTICATION sUCCESSfULL");
    catch ( UtilException e ) {
    System.out.println("AUTHENTICATION FAILED");
    // Perform User operations
    /* commented for time being -----------------------------
    try {
    PropertySetCollection result = null;
    // Get telephonenumber of user
    String[] userAttrList = {"telephonenumber"};
    result = myuser1.getProperties(ctx,userAttrList);
    Util.printResults(result);
    // Set telephonenumber of user
    // Create JNDI ModificationItem
    ModificationItem[] mods = new ModificationItem[1];
    mods[0] = new ModificationItem(DirContext.REPLACE_ATTRIBUTE,
    new BasicAttribute("telephonenumber", "444-6789"));
    // Perform modification using User object
    myuser.setProperties(ctx, mods);
    catch ( UtilException e ) {
    } // End of SampleUser.java
    ==============================================================================================================

    What about SSL or LDAPS !
    Can't seem to find any java examples which would support services of type:
    ldapbind -U 1,2 for java API !

  • LDAP (OID) integration with java appilcation( Urgent imp.)

    Currently we are using the OID-LDAP as the repository for storing username, passwds
    and other attributes. All applications that need authentication will essentially
    be using the OID.
    In our effort to do the same we are encountering the following problems
    - Creation of an identity corresponding the application
    - Giving this identity certain LDAP authorizations (Which authorizations are these)
    We have been successful creating LDAP entries for users and getting the initial
    JNDI contexts to do the lookups.
    When we are creating the user lookup from java code using oracle.ldap.util.User pakage ,
    at the run time it's throwing error(no classfound oracle/net/config/ConfigException ).
    why and where this is needed and how to resolve that. is that because we haven't added
    the application in oid and configured authorizations for it.
    Need an urgent answer to this since all applications will be using LDAP(OID).
    here is code of java which tries to connect to OID.
    ================================================================================================
    import oracle.ldap.util.*;
    import oracle.ldap.util.jndi.*;
    import java.io.*;
    import java.util.*;
    import javax.naming.*;
    import java.Exception.*;
    import javax.naming.directory.*;
    public class hello {
    public static void main(String argv[])
    throws NamingException {
    // Create InitialDirContext
    System.out.println("INSIDE SERVLET");
    InitialDirContext ctx = ConnectionUtil.getDefaultDirCtx( "hire11.kmfl.kg","4032","cn=orcladmin", "ias123" );
    // Create Subscriber object
    System.out.println("GOT CONTEXT" +ctx);
    Subscriber mysub = null;
    /* commented for time being -----------------------------
    try {
    // Creation using DN
    System.out.println("CREATING subscriber");
    mysub = new Subscriber( ctx, Util.IDTYPE_DN, "o=oracle,dc=com", false
    System.out.println("GOT subscriber");
    catch (UtilException e) {
    System.out.println("error");
    // Create User Objects
    User myuser = null, myuser1 = null;
    try {
    // Create User using a subscriber DN and the User DN
    System.out.println("CREATING USERl");
    myuser = new User ( ctx,Util.IDTYPE_DN, "cn=abhishek,cn=users,dc=kmfl,dc=kg",Util.IDTYPE_DN,"dc=kmfl,dc=kg", true );
    System.out.println("GOT USER");
    // Create User using a subscriber object and the User
    // simple name
    // commented for time being -----------------------------
    myuser1 = new User ( ctx, Util.IDTYPE_SIMPLE, "abhishek", mysub, true );
    catch ( UtilException e ) {
    System.out.println("COUDN'T GET USER"+e.toString());
    // Authenticate User
    try {
    System.out.println("gOING FOR AUTHENTICATION");
    myuser.authenticateUser(ctx,User.CREDTYPE_PASSWD,"abhi123");
    System.out.println("AUTHENTICATION SuccessFull");
    System.out.println("AUTHENTICATION SUCCESSfULL");
    System.out.println("AUTHENTICATION sUCCESSfULL");
    catch ( UtilException e ) {
    System.out.println("AUTHENTICATION FAILED");
    // Perform User operations
    /* commented for time being -----------------------------
    try {
    PropertySetCollection result = null;
    // Get telephonenumber of user
    String[] userAttrList = {"telephonenumber"};
    result = myuser1.getProperties(ctx,userAttrList);
    Util.printResults(result);
    // Set telephonenumber of user
    // Create JNDI ModificationItem
    ModificationItem[] mods = new ModificationItem[1];
    mods[0] = new ModificationItem(DirContext.REPLACE_ATTRIBUTE,
    new BasicAttribute("telephonenumber", "444-6789"));
    // Perform modification using User object
    myuser.setProperties(ctx, mods);
    catch ( UtilException e ) {
    } // End of SampleUser.java
    ==============================================================================================================

    Hi,
    Make sure you have the netcfg.jar in the same directory as that of ldapjclnt9.jar (in $ORACLE_HOME/jlib).
    Regards
    Radhika

  • LDAP Security Integration to JSF

    I would like to integrate a security system that we use to the JSF project I'm developing. The setting is as follows:
    We have a centralized single signon authentication system (OBLIX) that present the user with a login screen. Once the user logs in successfully, the system will direct the user to a url of my choice. The login information, such as user id, will be stored in the request as parameters.
    I'm new to JSF. So far I have not have to use any servlets in jsf. All I have done in my application with JSF are backing beans and control beans. The business logic resides in the control beans which invoke the backend model programs (which deals with database etc.).
    The question is how to integrate this OBLIX security nicely into my application. Can I have OBLIX direct a successful login to a jsp that triggers a control bean automatically? I need to read off the request parameters to find out who the login user is.
    Is this something that should be done with JSF listeners?
    Thanks in advance. I hope to hear from you experts soon.

    Hi Gary,
    maybe get in contact with Scott Spendolini from Sumner Technologies (http://sumnertechnologies.com/), I think these guys have some experience integrating APEX with eBusiness Suite.
    Patrick
    My APEX Blog: http://inside-apex.blogspot.com
    The ApexLib Framework: http://apexlib.sourceforge.net
    The APEX Builder Plugin: http://sourceforge.net/projects/apexplugin/

  • SAP HR to LDAP Server Integration

    Dear Experts,
    We are trying to integrate HR data from SAP ECC to an LDAP server using the built in LDAP connector settings in ECC.
    It is working well with the exception that the KEY field from HR is being populated into one of the spare fields on Activie Directory. Is there anyway to prevent this. It is required in the LDAP Mapping synchronization but is not required in LDAP server.
    We have tried the various combinations of import and export parameters but nothing works.
    Many thanks in advance.
    Mark

    Hello Mark,
    Check this link
    http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/06187a32-0a01-0010-709b-e664a61eab08?QuickLink=index&overridelayout=true
    Also have a look at OSS notes
    - 718383 - NetWeaver: Supported UME Data Sources and Change.
    - 352295 - Microsoft Windows Single Sign-On options
    regards,

Maybe you are looking for

  • Can I use standard Quicktime or anything else?  (for making dvd's)

    Please forgive me if this issue has been discussed, but I didn't find any answers in my searching so here goes: How can I make a DVD that will play in TV set DVD players? Do I need any alternate programs or possibly an upgrade to Quicktime Pro? Heres

  • Using automator to fill out shipping labels?

    hey, ok so i need to be able to take my address book, either all entries o one selected group and get them transfered onto labels. how would i do this, is automator even the right app for this and if not what should i look into -matt

  • Compositing stills and avi's to a DVD

    I have still images from a show that someone created awhile ago but also 4 animations in AVI format.  The problem is the stills were moved to powerpoint to show on a TV but then the AVI's wouldn't run on the built in DVD play for the TV.  So they tri

  • To Find Table

    Hi, I am having a Structure COMT_PARTNER_TO_DISPLAY, now i have to find those tables which include this structure in it. how i can made this? Urgent. Regards, jackie

  • Backup archivelog all delete all input

    RMAN> backup archivelog all delete all input; i have backed up all my archivelogs using the above command, but after the backup archivelogs are not deleted from its default location .ie my default archive location is '/oracle/archive' . After executi