Replacement of Custom Identity Service in 11g

Hi,
I have several BPEL processes (10.1.2) with workflow and have been using Custom Identity Service (configuring is_config.xml) which talks to my database for user and groups etc. What is the mechanism for this in 11g now that is_config.xml is gone?
Any documentation will be great.
Thanks in advance.
Bipul.

I have been able to successfully implement a custom identity service (pulls users from an Oracle DB). I can select it from the SOA Worklist Application realm drop down and log in with my users.
I'm wondering, however, if there is a way to mimic this behavior from the BPEL Console and/or from a Java program that utilizes the Worklist APIs. From the BPEL Console, I can initiate my process with no problem but in the Audit trail, it complains about the task not being assigned to a user in the "jazn.com" realm. (That's because the user is defined in my Custom Realm.)
In my Java application, although I created a workflowContext by passing in the name of my custom realm, I get the same error mentioned above.
I ended up having to change the default realm in my local server's is_config.xml from jazn to my Custom Realm. Is there a way to specify what realm to use for each process without having to change the default each time?

Similar Messages

  • Custom Identity Service configuration in SOA Suite 11g

    Has anyone been successfull in using custom identity service (available in 10.1.3.X) as a identity store in soa suite 11g human workflow component? If yes, please guide me.

    Can you make sure your helloworld is using adf bindings as mentioned in thread Re: Urgent :: 11g Invoking Composite from Java/From Webservice Proxy

  • Issue in setting custom identity service for soa 11.1.1.4

    Hello,
    I am facing issue in setting custom identity service for soa 11.1.1.4
    It is not picking up the implemented UserManager (in custom IDM) implemented via ServiceProvider and IdentityStoreService.
    This is configured in jps-config.xml
    The same setup was working in soa 11.1.1.2
    I believe there is a change done in JpsProvider in bpm-service.jar to authenticate via default login context from oracle.security.jps.internal.jaas.module.authentication.JpsUserAuthenticationLoginModule
    If my uderstanding is correct,
    Please guide me in implementing custom identity store and services for bpm services for soa 11.1.1.4
    Tried various work arounds but no luck.
    Thanks
    Bala

    Hi...
    Can u tell me how did u set up custom identity service for 11.1.1.2 ?
    Thanks

  • Integration of custom identity services with JDeveloper BPEL designer

    Hi,
    I'd like to know if a custom user repository plugin will cause the 'Identity Lookup Dialog' (Step 6 of Human Workflow Wizard to generate a user task) to utilize the list of users and groups from a third party provider, when used as the Custom Identity Service provider.
    I'd like to have the custom list of users and groups at 'design time' of the BPEL process itself, as well as process runtime. Is this possible?
    This is with respect to both BPEL PM v10.2.0.2 and v 10.1.3.1.0.
    Regards,
    Vineet

    ok, thank you for the reply.
    But the installation of the Oracle BPEL Process Manger for Developers which includes the JDeveloper and the BPEL Designer doesn't come with 10.1.3.1.0?
    I have to install the JDeveloper and the BPEL Process Manager seperate?
    Thx

  • User Task: Custom Identity Service

    Hi my friends
    Have anyone tried to use a custom Identity Service with BPEL User Tasks (I meam other than LDAP or JAZN)? Problems? Issues? Limitations?
    I know I have to implement a set of interfaces (BPMIdentityService interface and others)...
    Thanks.
    Message was edited by:
    mmenezes

    Pablo;
    I just read your post and hearing that you have the basic methods working has me very interested - I implemented all the Interfaces (BPMIdentityService, BPMProvider, BPMUser, BPMRole, BPMGroup) and changed the is_config.xml file. My realm showed up, and the connection pool I'm using seemed to work just fine, but when I tried to setup a Human Workflow using the new realm, I get an error on my searchUsers method (just hardcoded).
    I read that you need to add your classes to the application.xml file and that makes sense - but when I add them, no realms show up at all - one step backward - AND the method still doesn't work.
    Could you spare a desperate developer some advice on how you got yours working - a brief description of how to register your classes, if there's more than adding them to application.xml would be wonderful!
    Cheers -

  • Simple Custom Identity Service running on windows OK, but not on linux, y?

    In <Oracle® BPEL Process Manager Developer's Guide 10g Release 2 (10.1.2)
    B14448-03>,
    Part III, 16<Oracle BPEL Process Manager Workflow
    Services, Identity Service, Creating a Custom Identity Service Plug-in>
    My pc, OS:windows 2003+BPEL PM Server10.1.2
    Server, OS:linux+ias+OC4J_BPEL, i can't make sure the version, may be:10.1.2
    In the Developer's Guide say:
    Identity Service has 3 provider:
    1, JAZN Provider
    2,Third-party LDAP Directories
    3,CUSTOM Repository LDAP-Based Plug-ins
    so i like the third one.
    1, i compile the project in Oracle_Home\integration\orabpel\samples\hw\isplugin\db.
    Then it create a jar file(IS-DBPlugin.jar) in Oracle_Home\integration\orabpel\system\services\lib
    2,Modify the provider config file: is_config.xml
    modify the config file: application.xml
    restart the Oracle BPEL server
    3,run the sql files it provider int the polsql.cmd
    OK, now the Identity Service work on Oracle lite database, it's my needs.
    add a user into the tables
    use the url:http://localhost:9700/integration/worklistapp/Login
    i can login the worklist service use my custom user and password.
    when the Identity Service use the JAZN Provider(XML), it's default choice.i add a user into the xml files, i mast restart my server if i want use the user login.
    use the database plugin,when i insert a user name into the tables,i can login the service use the username immediately.
    So i think it's easy to move it to my server(linux os). but when i copy the jar file to the folder,modify the config files,run ths sql files in the oracle database.
    but when i open the url :http://server_ip:port/integration/worklistapp/Login
    it can not work with a simple error message:Worklist service Identity Service error.
    in the log files i find some message like this :
    SOAP-ENV:Server.Exception
    BPEL-10551 can not load the Custom Identity Service Class:
    "IdentityServiceCustomPlugin.CustomIdentityService"
    it has wasted me one week time. and i can't find the reason now.
    who can help me ?
    thanks
    cnboy

    clemens,thanks.
    i'm sorry that my English is poor.so i can't understand you mean completely.
    you say it might be a linux jvm reason, can the metter be resolved?
    and you say extract the jar file .which files i would extract,can you say particular?
    thx!

  • Custom Identity Service for BPEL

    Hi
    Has anyone created a Custom Identity Service for BPEL workflow authentication.
    Please reply back.
    Thanks
    Mudassar

    Is there a document somewhere that actually describes how to add the plugin to the Process Manager Identity Service? More specifically, requirements for packaging up the plugin module, which folder to place the module in, ALL of the configuration files that need to be updated, etc.?
    So far documents such as the BPEL Developers Guide, BPEL Process Manager Administrator's Guide, and various online sources have been moderately helpful but it seems like there are a lot of missing details as to actually getting a custom Identity Service plugin module working.

  • Custom Identity Service - E-Business Suite

    Hi
    Just wondering if anyone has looked into creating a custom BPEL Identity Service Plug-in for E-Business Suite?
    I'm not sure if we need to do this yet for a client, but if anyone had tried it would be great to here about any issues you came across or whether you got it to work....
    Any help greatly appreciated.
    Chris

    The easiest integration with DB repository is to use Oracle Virtual Directory ( OVD) database adapter.
    You can write custom Plug-ins code using IdentityService APIs for 10.1.2 and 10.1.3 releases.
    But we deprecated the approach and recommend to use OVD for customization for 11 release.
    I have tested OVD with BPEL IdentityService LDAP provider. It works well even for 10.1. release.
    That approach simplifies the mapping between LDAP inetOrgPerson and groupOfUnuiqueNames objectClasses and DB schema.
    I can help you with OVD configuration.

  • Java.sql.SQLException: Closed Connection from Custom Identity Service

    Hi,
    Here is an issue I am trying to resolve:
    Platform: Oracle BPEL 10.1.2
    OS: Red Hat Enterprise Linux ES release 4 (Nahant Update 4)
    Please note that the whole thing has been working in other same type of installations (e.g. RedHat, Windows, Developer BPEL on Windows & Linux) but this seems to be something special on this server. Any help will be appreciated:
    This actually work for sometime (2-3 hours) and then suddenly stops working even if we don't do any transaction on it.
    Thanks,
    Bipul Dutta.
    Error stack:
    09/08/17 12:45:25 CustomIdentityService::authenticateUser():: begin
    ############# inside authenticateUser
    09/08/17 12:45:25 CustomIdentityService::user authenticated
    ############# inside getUser()
    09/08/17 12:45:25 java.sql.SQLException: Closed Connection
    09/08/17 12:45:25      at oracle.jdbc.driver.DatabaseError.throwSqlException(DatabaseError.java:137)
    09/08/17 12:45:25      at oracle.jdbc.driver.DatabaseError.throwSqlException(DatabaseError.java:174)
    09/08/17 12:45:25      at oracle.jdbc.driver.DatabaseError.throwSqlException(DatabaseError.java:239)
    09/08/17 12:45:25      at oracle.jdbc.driver.PhysicalConnection.prepareStatement(PhysicalConnection.java:930)
    09/08/17 12:45:25      at oracle.jdbc.driver.PhysicalConnection.prepareStatement(PhysicalConnection.java:826)
    09/08/17 12:45:25      at oracle.tip.pc.services.identity.FAMDBProvider.getUser(FAMDBProvider.java:418)
    09/08/17 12:45:25      at oracle.tip.pc.services.identity.FAMCustomIdentityService.lookupUser(FAMCustomIdentityService.java:101)
    09/08/17 12:45:25      at oracle.tip.pc.services.hw.worklist.WorklistService.authenticateUser(WorklistService.java:333)
    09/08/17 12:45:25      at com.famis.web.service.core.humanworkflow.service.AbstractTaskWebService.getBpelContext(AbstractTaskWebService.java:20)
    09/08/17 12:45:25      at com.famis.web.service.core.humanworkflow.service.GetTasksWebServiceImpl.process(GetTasksWebServiceImpl.java:51)
    09/08/17 12:45:25      at com.famis.web.service.core.humanworkflow.service.TaskWebServiceImpl.process(TaskWebServiceImpl.java:68)
    09/08/17 12:45:25      at sun.reflect.GeneratedMethodAccessor9.invoke(Unknown Source)
    09/08/17 12:45:25      at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    09/08/17 12:45:25      at java.lang.reflect.Method.invoke(Method.java:324)
    09/08/17 12:45:25      at org.apache.axis.providers.java.MsgProvider.processMessage(MsgProvider.java:141)
    09/08/17 12:45:25      at org.apache.axis.providers.java.JavaProvider.invoke(JavaProvider.java:323)
    09/08/17 12:45:25      at org.apache.axis.strategies.InvocationStrategy.visit(InvocationStrategy.java:32)
    09/08/17 12:45:25      at org.apache.axis.SimpleChain.doVisiting(SimpleChain.java:118)
    09/08/17 12:45:25      at org.apache.axis.SimpleChain.invoke(SimpleChain.java:83)
    09/08/17 12:45:25      at org.apache.axis.handlers.soap.SOAPService.invoke(SOAPService.java:454)
    09/08/17 12:45:25      at org.apache.axis.server.AxisServer.invoke(AxisServer.java:281)
    09/08/17 12:45:25      at org.apache.axis.transport.http.AxisServlet.doPost(AxisServlet.java:699)
    09/08/17 12:45:25      at javax.servlet.http.HttpServlet.service(HttpServlet.java:760)
    09/08/17 12:45:25      at org.apache.axis.transport.http.AxisServletBase.service(AxisServletBase.java:327)
    09/08/17 12:45:25      at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
    09/08/17 12:45:25      at com.evermind.server.http.ServletRequestDispatcher.invoke(ServletRequestDispatcher.java:835)
    09/08/17 12:45:25      at com.evermind.server.http.ServletRequestDispatcher.forwardInternal(ServletRequestDispatcher.java:341)
    09/08/17 12:45:25      at com.evermind.server.http.HttpRequestHandler.processRequest(HttpRequestHandler.java:816)
    09/08/17 12:45:25      at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:231)
    09/08/17 12:45:25      at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:136)
    09/08/17 12:45:25      at com.evermind.util.ReleasableResourcePooledExecutor$MyWorker.run(ReleasableResourcePooledExecutor.java:192)
    09/08/17 12:45:25      at java.lang.Thread.run(Thread.java:534)
    <2009-08-17 12:45:25,877> <ERROR> <tmobilet.collaxa.cube.services> <PCException::<init>> User is not found.
    <2009-08-17 12:45:25,877> <ERROR> <tmobilet.collaxa.cube.services> <PCException::<init>> User "BSAUNDE4" is not found in realm "tmobilet".
    <2009-08-17 12:45:25,877> <ERROR> <tmobilet.collaxa.cube.services> <PCException::<init>> Check the error stack and fix the cause of the error. Contact
    Edited by: user11798418 on Aug 17, 2009 10:30 AM

    >
    I have my application jar on the server, and launch this JFrame application from the browser. ><zen question>
    Which particular 'the browser'? What version of what browser running on what OS?
    </zen question>
    The reason I ask is that it is up to the browser to call an applet's stop()/destroy() methods and if they do not do so - there is almost nothing we as developers can do about it.
    If you need such reliable shut down behaviour, it would be best to launch the applet or frame using Java Web Start.

  • LDAP Identity Service

    Hi
    Another question. Is an LDAP version of the Identity service on the way? Is it possible to integrate a custom Identity service into the BPEL Designer/PM?
    Best wishes
    John Prince

    Hi John,
    Yes the BPEL PM 10.1.2 does support LDAP for Human Workflow as well as Engine. The documentation for the same is under construction. Please Send me a mail on collaxa_support_us.oracle.com, and I will reply as soon as the documentation is available.
    Dhaval

  • [Urget Help] [BPEL 11g] How to use Database 11g as Identity Service source?

    Dear all,
    My customer is using BPEL 11g for current project. They have a legacy user database (Oracle DB 11g) which store all accounts info.
    Now we want to connect BPEL with this database as identity service and pick up the users and groups as approver. I saw following graph from below link, but I don't know how to implement it. It seems a huge change in BPEL 11g.
    Can you give me an idea on it? Any suggestions are welcome.
    http://download.oracle.com/docs/cd/E12839_01/integration.1111/e10224/bp_workflow.htm#BABEIHDD
    Thanks in advance.

    repost

  • Changing the Demo identity to custom identity

    Hi All,
    I am configuring an Oracle Business Process Management (11.1.1.4.0) environment to be used for production within our organisation. Out-of-the-box the domain successfully starts, with a soa, bam and AdminServer. However, when I change the certificates (from the demo identity) to certificates from a trusted CA I start seeing errors in the log file. Also, BPM composer does not behave correctly... it only shows the Help menu item instead of 'Open a Project', 'Create New Project' etc.
    I have replaced the Demo identity for the AdminServer and the 2 managed servers (soa_server, bam_server) through the WLS Console. Servers -> server -> Keystores -> Custom Identity and standard trust
    and setting the SSL information in Servers -> server -> SSL.
    Error message:
    peh = oracle.bpm.composer.beans.editor.process.DefaultProcessEditorHost@907a1c
    <Mar 1, 2011 5:25:47 PM NZDT> <Warning> <oracle.adfinternal.view.faces.renderkit.rich.NavigationPaneRenderer> <BEA-000000> <Warning: There are no items to render for this level>
    Mds Config File URL = MdsInstanceType{instanceName='obpm', configFile='/mds-config.xml'}
    Mds SOA Config File URL = MdsInstanceType{instanceName='SOAINFRA_MDS', configFile='/mds-soa-config.xml'}
    ====== Using DB MDS ======
    java.io.IOException: Invalid keystore format
    at sun.security.provider.JavaKeyStore.engineLoad(JavaKeyStore.java:633)
    at sun.security.provider.JavaKeyStore$JKS.engineLoad(JavaKeyStore.java:38)
    at java.security.KeyStore.load(KeyStore.java:1185)
    at com.sun.net.ssl.internal.ssl.TrustManagerFactoryImpl.getCacertsKeyStore(TrustManagerFactoryImpl.java:202)
    at com.sun.net.ssl.internal.ssl.DefaultSSLContextImpl.getDefaultTrustManager(DefaultSSLContextImpl.java:70)
    at com.sun.net.ssl.internal.ssl.DefaultSSLContextImpl.<init>(DefaultSSLContextImpl.java:40)
    at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
    at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:39)
    at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:27)
    at java.lang.reflect.Constructor.newInstance(Constructor.java:513)
    at java.lang.Class.newInstance0(Class.java:355)
    at java.lang.Class.newInstance(Class.java:308)
    at java.security.Provider$Service.newInstance(Provider.java:1221)
    at sun.security.jca.GetInstance.getInstance(GetInstance.java:220)
    at sun.security.jca.GetInstance.getInstance(GetInstance.java:147)
    at javax.net.ssl.SSLContext.getInstance(SSLContext.java:125)
    at javax.net.ssl.SSLContext.getDefault(SSLContext.java:68)
    at javax.net.ssl.SSLSocketFactory.getDefault(SSLSocketFactory.java:102)
    at HTTPClient.JsseSSL.<init>(JsseSSL.java:48)
    at HTTPClient.HTTPClientSSLFactory.mk(HTTPClientSSLFactory.java:98)
    at HTTPClient.HTTPConnection$15.run(HTTPConnection.java:4571)
    at HTTPClient.HTTPConnection$15.run(HTTPConnection.java:4553)
    at HTTPClient.HttpClientConfiguration.doAction(HttpClientConfiguration.java:708)
    at HTTPClient.HTTPConnection.doAction(HTTPConnection.java:5379)
    at HTTPClient.HTTPConnection.getSSL(HTTPConnection.java:4553)
    at HTTPClient.HTTPConnection$19.run(HTTPConnection.java:4652)
    at HTTPClient.HTTPConnection$19.run(HTTPConnection.java:4650)
    at HTTPClient.HttpClientConfiguration.doAction(HttpClientConfiguration.java:666)
    at HTTPClient.HTTPConnection.doAction(HTTPConnection.java:5401)
    at HTTPClient.HTTPConnection.getSSLSocket(HTTPConnection.java:4650)
    at HTTPClient.HTTPConnection.doConnect(HTTPConnection.java:4378)
    at HTTPClient.HTTPConnection.sendRequest(HTTPConnection.java:3358)
    at HTTPClient.HttpOutputStream.closeImpl(HttpOutputStream.java:461)
    at HTTPClient.HttpOutputStream.access$000(HttpOutputStream.java:99)
    at HTTPClient.HttpOutputStream$1.run(HttpOutputStream.java:417)
    at HTTPClient.HttpClientConfiguration.doAction(HttpClientConfiguration.java:666)
    at HTTPClient.HttpOutputStream.close(HttpOutputStream.java:415)
    at oracle.j2ee.ws.saaj.client.p2p.HttpSOAPConnection.sendMessage(HttpSOAPConnection.java:1059)
    at oracle.j2ee.ws.saaj.client.p2p.HttpSOAPConnection.post2(HttpSOAPConnection.java:495)
    at oracle.j2ee.ws.saaj.client.p2p.HttpSOAPConnection$PrivilegedPost.run(HttpSOAPConnection.java:1261)
    at java.security.AccessController.doPrivileged(Native Method)
    at oracle.j2ee.ws.saaj.client.p2p.HttpSOAPConnection.call2(HttpSOAPConnection.java:229)
    at oracle.j2ee.ws.saaj.client.p2p.HttpSOAPConnection.call(HttpSOAPConnection.java:138)
    at oracle.j2ee.ws.saaj.client.p2p.HttpSOAPConnection.call(HttpSOAPConnection.java:131)
    at oracle.bpel.services.identity.client.IdentityServiceSOAPClient.invoke(IdentityServiceSOAPClient.java:212)
    at oracle.bpel.services.identity.client.IdentityServiceSOAPClient.getGrantedRolesToUser(IdentityServiceSOAPClient.java:518)
    at oracle.bpel.services.identity.client.AbstractIdentityServiceClient.getGrantedRolesToUser(AbstractIdentityServiceClient.java:788)
    at oracle.bpm.composer.authentication.MetadaServiceFactory.getUserAbstractRoles(MetadaServiceFactory.java:127)
    at oracle.bpm.composer.authentication.MetadaServiceFactory.getDBService(MetadaServiceFactory.java:75)
    at oracle.bpm.composer.authentication.ComposerPrincipal.initDBMetadataService(ComposerPrincipal.java:192)
    at oracle.bpm.composer.authentication.ComposerPrincipal.init(ComposerPrincipal.java:152)
    at oracle.bpm.composer.authentication.ComposerPrincipal.<init>(ComposerPrincipal.java:71)
    at oracle.bpm.composer.authentication.ComposerPrincipal.<init>(ComposerPrincipal.java:62)
    at oracle.bpm.composer.authentication.ComposerPrincipal.wlsPrincipal(ComposerPrincipal.java:79)
    at oracle.bpm.composer.beans.security.ComposerLoginBean.initPrincipal(ComposerLoginBean.java:128)
    at oracle.bpm.web.security.LoginBean.initPrincipal(LoginBean.java:393)
    at oracle.bpm.web.security.LoginBean.login(LoginBean.java:182)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:597)
    at com.sun.el.parser.AstValue.invoke(Unknown Source)
    at com.sun.el.MethodExpressionImpl.invoke(Unknown Source)
    at org.apache.myfaces.trinidadinternal.taglib.util.MethodExpressionMethodBinding.invoke(MethodExpressionMethodBinding.java:53)
    at org.apache.myfaces.trinidad.component.UIXComponentBase.broadcastToMethodBinding(UIXComponentBase.java:1256)
    at org.apache.myfaces.trinidad.component.UIXCommand.broadcast(UIXCommand.java:183)
    at oracle.adf.view.rich.component.fragment.UIXInclude.broadcast(UIXInclude.java:102)
    at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent$1.run(ContextSwitchingComponent.java:92)
    at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent._processPhase(ContextSwitchingComponent.java:361)
    at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent.broadcast(ContextSwitchingComponent.java:96)
    at oracle.adf.view.rich.component.fragment.UIXInclude.broadcast(UIXInclude.java:96)
    at javax.faces.component.UIViewRoot.broadcastEvents(UIViewRoot.java:475)
    at javax.faces.component.UIViewRoot.processApplication(UIViewRoot.java:756)
    at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl._invokeApplication(LifecycleImpl.java:765)
    at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl._executePhase(LifecycleImpl.java:305)
    at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl.execute(LifecycleImpl.java:185)
    at javax.faces.webapp.FacesServlet.service(FacesServlet.java:265)
    at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
    at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
    at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:300)
    at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at oracle.help.web.rich.OHWFilter.doFilter(Unknown Source)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at oracle.bpm.web.security.filter.SessionTimeoutFilter.doFilter(SessionTimeoutFilter.java:56)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at oracle.adf.model.servlet.ADFBindingFilter.doFilter(ADFBindingFilter.java:205)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at oracle.adfinternal.view.faces.webapp.rich.RegistrationFilter.doFilter(RegistrationFilter.java:106)
    at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterListChain.doFilter(TrinidadFilterImpl.java:446)
    at oracle.adfinternal.view.faces.activedata.AdsFilter.doFilter(AdsFilter.java:60)
    at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterListChain.doFilter(TrinidadFilterImpl.java:446)
    at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl._doFilterImpl(TrinidadFilterImpl.java:271)
    at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl.doFilter(TrinidadFilterImpl.java:177)
    at org.apache.myfaces.trinidad.webapp.TrinidadFilter.doFilter(TrinidadFilter.java:92)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at oracle.bpm.composer.filter.MdsInitializationFilter.doFilter(MdsInitializationFilter.java:50)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at oracle.adf.library.webapp.LibraryFilter.doFilter(LibraryFilter.java:175)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at oracle.bpm.composer.filter.UrlHandlerFilter.doFilter(UrlHandlerFilter.java:40)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at oracle.adfinternal.view.faces.caching.filter.AdfFacesCachingFilter.doFilter(AdfFacesCachingFilter.java:135)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:111)
    at java.security.AccessController.doPrivileged(Native Method)
    at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:313)
    at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUtil.java:413)
    at oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.java:94)
    at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:161)
    at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:71)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:111)
    at java.security.AccessController.doPrivileged(Native Method)
    at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:313)
    at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUtil.java:413)
    at oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.java:94)
    at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:161)
    at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:71)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at oracle.dms.servlet.DMSServletFilter.doFilter(DMSServletFilter.java:136)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:111)
    at java.security.AccessController.doPrivileged(Native Method)
    at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:313)
    at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUtil.java:413)
    at oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.java:94)
    at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:161)
    at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:71)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at weblogic.servlet.internal.RequestEventsFilter.doFilter(RequestEventsFilter.java:27)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.wrapRun(WebAppServletContext.java:3715)
    at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3681)
    at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
    at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:120)
    at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2277)
    at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2183)
    at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1454)
    at weblogic.work.ExecuteThread.execute(ExecuteThread.java:207)
    at weblogic.work.ExecuteThread.run(ExecuteThread.java:176)
    -------------- soa.oracle.home = /apps/oracle/middleware/Oracle_SOA
    This also appears in the logs a lot:
    INFO: SSLSocketFactoryManagerImpl.getKeystoreLocation Expected SOA Keystore location: /apps/domains/Domain/config/fmwconfig/default-keystore.jks
    INFO: SSLSocketFactoryManagerImpl.getKeystorePassword Obtained null or empty keystore password
    INFO: SSLSocketFactoryManagerImpl.getKeyPassword Obtained null or empty key password
    INFO: SSLSocketFactoryManagerImpl.getSSLSocketFactory Could not obtain keystore location or password
    So far I have
    * copied our identity keystore to the default-keystore.jks file.
    * edited the setDomainEnv.sh script to use the default-keystore.jks as the -Djavax.net.ssl.trustStore java property
    * removed references to the keystore in the jps configation files.
    * Java Standard Trust Keystore: /apps/oracle/middleware/jdk160_21/jre/lib/security/cacerts
    Does any one have experience in replacing the Demo certificates successfully? What are the steps in doing so?
    Many thanks

    Hi there
    That is something called a Favicon. WebHelp has a few of them. If you want all of them to reflect your company logo you should consider replacing all the seed icons with yours. You will typically find the seed icons in the following location:
    <RoboHelp Installation Folder>\RoboHTML\WebHelp5Ext\template_skin
    <RoboHelp Installation Folder>\RoboHTML\WildFireExt\template_stock
    Replace the ico files with yours. Just use the same names Adobe does and your icons should populate right into any WebHelp or FlashHelp output.
    I did find others, so just to be on the safe side you may need to  perform a search mission to locate all instances and replace them with yours.
    Cheers... Rick
    Helpful and Handy Links
    RoboHelp Wish Form/Bug Reporting Form
    Begin learning RoboHelp HTML 7 or 8 within the day - $24.95!
    Adobe Certified RoboHelp HTML Training
    SorcerStone Blog
    RoboHelp eBooks

  • Cisco Identity Services Engine (ISE) Version 1.2: What's New in Features and Troubleshooting Options

    With Ali Mohammed
    Welcome to the Cisco Support Community Ask the Expert conversation. This is an opportunity to learn and ask questions about what’s new in Cisco Identity Services Engine (ISE) Version 1.2 and to understand the new features and enhanced troubleshooting options with Cisco expert Ali Mohammed.
    Cisco ISE can be deployed as an appliance or virtual machine to enforce security policy on all devices that attempt to gain access to network infrastructure. ISE 1.2 provides feature enrichment in terms of mobile device management, BYOD enhancements, and so on. It also performs noise suppression in log collection so customers have greater ability to store and analyze logs for a longer period.
    Ali Mohammed is an escalation engineer with the Security Access and Mobility Product Group (SAMPG), providing support to all Cisco NAC and Cisco ISE installed base. Ali works on complicated recreations of customer issues and helps customers in resolving configuration, deployment, setup, and integration issues involving Cisco NAC and Cisco ISE products. Ali works on enhancing tools available in ISE/NAC that are required to help troubleshoot the product setup in customer environments. Ali has six and a half years of experience at Cisco and is CCIE certified in security (number 24130).
    Remember to use the rating system to let Ali know if you have received an adequate response.
    Because of the volume expected during this event, Ali might not be able to answer each question. Remember that you can continue the conversation on the Security community, sub-community shortly after the event. This event lasts through September 6, 2013. Visit this forum often to view responses to your questions and the questions of other community members.

    Hi Ali,
    We currently have a two-node deployment running 1.1.3.124, as depicted in diagram:
    http://www.cisco.com/en/US/docs/security/ise/1.2/upgrade_guide/b_ise_upgrade_guide_chapter_010.html#ID89
    Question 1:
    After step 1 is done, node B becomes the new primary node.
    What's the license impact at that stage, when the license is mainly tied to node A, the previous primary PAN?
    Step 3 says to obtain a new license that's tied to both node A & node B, as if it's implying an issue would arise, if we leave node B as the primary PAN, instead of reverting back to node A.
    =========
    Question 2:
    When step 1 is completed, node B runs 1.2, while node A runs 1.1.3.124.
    Do both nodes still function as PSN nodes, and can service end users at that point? (before we proceed to step 2)
    Both nodes are behind our ACE load balancer, and I'm trying to confirm the behavior during the upgrade, to determine when to take each node out of the load balancing serverfarm, to keep the service up and avoid an outage.
    ===========
    Question 3:
    According to the upgrade guide, we're supposed to perform a config backup from PAN & MnT nodes.
    Is the config backup used only when we need to rollback from 1.2 to 1.1.3, or can it be used to restore config on 1.2?
    It also says to record customizations & alert settings because after  the upgrade to 1.2, these settings would change, and we would need to  re-configure them.
    Is this correct? That's a lot of screen shots we'll need to take; is there any way to avoid this?
    It says: "
    Disable services such as Guest, Profiler, Device Onboarding, and so on before upgrade and enable them after upgrade. Otherwise, you must add the guest users who are lost, and devices must be profiled and onboarded again."
    Exactly how do you disable services? Disable all the authorization policies?
    http://www.cisco.com/en/US/docs/security/ise/1.2/upgrade_guide/b_ise_upgrade_guide_chapter_01.html#reference_4EFE5E15B9854A648C9EF18D492B9105
    ==================
    Question 4:
    The 1.1 user guide says the maximum number of nodes in a node group was 4.
    The 1.2 guide now says the maximum is 10.
    Is there a hard limit on how many nodes can be in a node group?
    We currently don't use node group, due to the lack of multicast support on the ACE-20.
    Is it a big deal not to have one?
    http://www.cisco.com/en/US/customer/docs/security/ise/1.2/user_guide/ise_dis_deploy.html#wp1230118
    thanks,
    Kevin

  • Building a custom worklist client in 11g R1 fails to authenticate [Solved]

    Release: 11gR1
    Hi,
    We're trying to build a custom worklist client using the APIs exposed by the workflow service described here:
    http://download.oracle.com/docs/cd/E12839_01/integration.1111/e10224/bp_worklistcust.htm#BHAHBHID
    I created an ADF/webcenter application.
    Created a page and added ADF security to the page which in turn authenticates via OID - this works.
    However when I try to use the workflow API to retrieve the workflow context I receive this exception:
    ========= get tasks =========
    admin user : weblogic
    admin pw : weblogic1
    realm : myrealm
    user : harry
    exception : ORABPEL-30501
    Error in authenticating user.
    Error in authenticating and creating a workflow context for user myrealm/weblogic.
    Verify that the user credentials and identity service configurations are correct.
    message : Error in authenticating user.
    Error in authenticating and creating a workflow context for user myrealm/weblogic.
    Verify that the user credentials and identity service configurations are correct.
    ORABPEL-30501
    Error in authenticating user.
    Error in authenticating and creating a workflow context for user myrealm/weblogic.
    Verify that the user credentials and identity service configurations are correct.
    at weblogic.rjvm.ResponseImpl.unmarshalReturn(ResponseImpl.java:234)
    at weblogic.rmi.cluster.ClusterableRemoteRef.invoke(ClusterableRemoteRef.java:348)
    at weblogic.rmi.cluster.ClusterableRemoteRef.invoke(ClusterableRemoteRef.java:259)
    at oracle.bpel.services.workflow.query.ejb.TaskQueryService_oz1ipg_EOImpl_1031_WLStub.authenticate(Unknown Source)
    at oracle.bpel.services.workflow.query.client.TaskQueryServiceRemoteClient.authenticate(TaskQueryServiceRemoteClient.java:103)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:597)
    at oracle.bpel.services.workflow.client.WFClientRetryInvocationHandler.invokeTarget(WFClientRetryInvocationHandler.java:121)
    at oracle.bpel.services.workflow.client.WFClientRetryInvocationHandler.invoke(WFClientRetryInvocationHandler.java:67)
    at $Proxy138.authenticate(Unknown Source)
    at view.services.worklistService.getTasks(worklistService.java:46)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:597)
    at javax.el.BeanELResolver.getValue(BeanELResolver.java:261)
    at javax.el.CompositeELResolver.getValue(CompositeELResolver.java:143)
    at com.sun.faces.el.FacesCompositeELResolver.getValue(FacesCompositeELResolver.java:72)
    at com.sun.el.parser.AstValue.getValue(AstValue.java:118)
    at com.sun.el.ValueExpressionImpl.getValue(ValueExpressionImpl.java:192)
    at org.apache.myfaces.trinidad.bean.FacesBeanImpl.getProperty(FacesBeanImpl.java:68)
    at oracle.adfinternal.view.faces.renderkit.rich.ValueRenderer.getValue(ValueRenderer.java:184)
    at oracle.adfinternal.view.faces.renderkit.rich.ValueRenderer.getConvertedString(ValueRenderer.java:145)
    at oracle.adfinternal.view.faces.renderkit.rich.OutputTextRenderer.encodeAll(OutputTextRenderer.java:108)
    at oracle.adf.view.rich.render.RichRenderer.encodeAll(RichRenderer.java:1187)
    at org.apache.myfaces.trinidad.render.CoreRenderer.encodeEnd(CoreRenderer.java:335)
    at org.apache.myfaces.trinidad.component.UIXComponentBase.encodeEnd(UIXComponentBase.java:751)
    at org.apache.myfaces.trinidad.render.CoreRenderer.encodeChild(CoreRenderer.java:415)
    at oracle.adfinternal.view.faces.renderkit.rich.PanelGroupLayoutRenderer._encodeChild(PanelGroupLayoutRenderer.java:392)
    at oracle.adfinternal.view.faces.renderkit.rich.PanelGroupLayoutRenderer.access$300(PanelGroupLayoutRenderer.java:30)
    at oracle.adfinternal.view.faces.renderkit.rich.PanelGroupLayoutRenderer$EncoderCallback.processComponent(PanelGroupLayoutRenderer.ja
    at oracle.adfinternal.view.faces.renderkit.rich.PanelGroupLayoutRenderer$EncoderCallback.processComponent(PanelGroupLayoutRenderer.ja
    at org.apache.myfaces.trinidad.component.UIXComponent.processFlattenedChildren(UIXComponent.java:125)
    at org.apache.myfaces.trinidad.component.UIXComponent.processFlattenedChildren(UIXComponent.java:201)
    at org.apache.myfaces.trinidad.component.UIXComponent.processFlattenedChildren(UIXComponent.java:167)
    at oracle.adfinternal.view.faces.renderkit.rich.PanelGroupLayoutRenderer.encodeAll(PanelGroupLayoutRenderer.java:317)
    at oracle.adf.view.rich.render.RichRenderer.encodeAll(RichRenderer.java:1187)
    at org.apache.myfaces.trinidad.render.CoreRenderer.encodeEnd(CoreRenderer.java:335)
    at org.apache.myfaces.trinidad.component.UIXComponentBase.encodeEnd(UIXComponentBase.java:751)
    at org.apache.myfaces.trinidad.render.CoreRenderer.encodeChild(CoreRenderer.java:415)
    at oracle.adf.view.rich.render.RichRenderer.encodeStretchedChild(RichRenderer.java:1523)
    at oracle.adfinternal.view.faces.renderkit.rich.PanelSplitterRenderer._renderPane(PanelSplitterRenderer.java:925)
    at oracle.adfinternal.view.faces.renderkit.rich.PanelSplitterRenderer._renderSecondPane(PanelSplitterRenderer.java:831)
    at oracle.adfinternal.view.faces.renderkit.rich.PanelSplitterRenderer.encodeAll(PanelSplitterRenderer.java:166)
    at oracle.adf.view.rich.render.RichRenderer.encodeAll(RichRenderer.java:1187)
    at org.apache.myfaces.trinidad.render.CoreRenderer.encodeEnd(CoreRenderer.java:335)
    at org.apache.myfaces.trinidad.component.UIXComponentBase.encodeEnd(UIXComponentBase.java:751)
    at org.apache.myfaces.trinidad.render.CoreRenderer.encodeChild(CoreRenderer.java:415)
    at org.apache.myfaces.trinidad.render.CoreRenderer.encodeAllChildren(CoreRenderer.java:432)
    at oracle.adfinternal.view.faces.renderkit.rich.FormRenderer.encodeAll(FormRenderer.java:221)
    at oracle.adf.view.rich.render.RichRenderer.encodeAll(RichRenderer.java:1187)
    at org.apache.myfaces.trinidad.render.CoreRenderer.encodeEnd(CoreRenderer.java:335)
    at org.apache.myfaces.trinidad.component.UIXComponentBase.encodeEnd(UIXComponentBase.java:751)
    at org.apache.myfaces.trinidad.render.CoreRenderer.encodeChild(CoreRenderer.java:415)
    at org.apache.myfaces.trinidad.render.CoreRenderer.encodeAllChildren(CoreRenderer.java:432)
    at oracle.adfinternal.view.faces.renderkit.rich.DocumentRenderer.encodeAll(DocumentRenderer.java:820)
    at oracle.adf.view.rich.render.RichRenderer.encodeAll(RichRenderer.java:1187)
    at org.apache.myfaces.trinidad.render.CoreRenderer.encodeEnd(CoreRenderer.java:335)
    at org.apache.myfaces.trinidad.component.UIXComponentBase.encodeEnd(UIXComponentBase.java:751)
    at org.apache.myfaces.trinidad.component.UIXComponentBase.__encodeRecursive(UIXComponentBase.java:1494)
    at org.apache.myfaces.trinidad.component.UIXComponentBase.encodeAll(UIXComponentBase.java:771)
    at javax.faces.component.UIComponent.encodeAll(UIComponent.java:942)
    at com.sun.faces.application.ViewHandlerImpl.doRenderView(ViewHandlerImpl.java:271)
    at com.sun.faces.application.ViewHandlerImpl.renderView(ViewHandlerImpl.java:202)
    at javax.faces.application.ViewHandlerWrapper.renderView(ViewHandlerWrapper.java:189)
    at org.apache.myfaces.trinidadinternal.application.ViewHandlerImpl.renderView(ViewHandlerImpl.java:193)
    at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl._renderResponse(LifecycleImpl.java:685)
    at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl._executePhase(LifecycleImpl.java:261)
    at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl.render(LifecycleImpl.java:193)
    at javax.faces.webapp.FacesServlet.service(FacesServlet.java:266)
    at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
    at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
    at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:292)
    at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at oracle.adf.model.servlet.ADFBindingFilter.doFilter(ADFBindingFilter.java:191)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at oracle.adfinternal.view.faces.webapp.rich.RegistrationFilter.doFilter(RegistrationFilter.java:85)
    at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterListChain.doFilter(TrinidadFilterImpl.java:420)
    at oracle.adfinternal.view.faces.activedata.AdsFilter.doFilter(AdsFilter.java:54)
    at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterListChain.doFilter(TrinidadFilterImpl.java:420)
    at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl._doFilterImpl(TrinidadFilterImpl.java:247)
    at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl.doFilter(TrinidadFilterImpl.java:157)
    at org.apache.myfaces.trinidad.webapp.TrinidadFilter.doFilter(TrinidadFilter.java:92)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at oracle.security.jps.wls.JpsWlsFilter$1.run(JpsWlsFilter.java:96)
    at java.security.AccessController.doPrivileged(Native Method)
    at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:313)
    at oracle.security.jps.wls.util.JpsWlsUtil.runJaasMode(JpsWlsUtil.java:146)
    at oracle.security.jps.wls.JpsWlsFilter.doFilter(JpsWlsFilter.java:140)
    at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:70)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at oracle.adf.library.webapp.LibraryFilter.doFilter(LibraryFilter.java:159)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at oracle.dms.wls.DMSServletFilter.doFilter(DMSServletFilter.java:202)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at weblogic.servlet.internal.RequestEventsFilter.doFilter(RequestEventsFilter.java:27)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
    at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3588)
    at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
    at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:121)
    at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2200)
    at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2106)
    at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1428)
    at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
    at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
    Caused by: java.lang.NoClassDefFoundError: Could not initialize class oracle.tip.pc.infra.exception.PCRuntimeException
    at oracle.tip.pc.services.common.ServiceFactory.getAuthenticationServiceInstance(ServiceFactory.java:166)
    at oracle.bpel.services.workflow.verification.impl.VerificationService.getAuthenticationService(VerificationService.java:3688)
    at oracle.bpel.services.workflow.verification.impl.VerificationService.authenticateUser(VerificationService.java:620)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:597)
    at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:296)
    at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:177)
    at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:144)
    at oracle.bpel.services.workflow.common.WorkflowServiceCacheEventAdvice.invoke(WorkflowServiceCacheEventAdvice.java:85)
    at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:166)
    at oracle.bpel.services.common.dms.MethodPhaseEventAspect.invoke(MethodPhaseEventAspect.java:82)
    at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:166)
    at oracle.bpel.services.common.dms.MethodEventAspect.invoke(MethodEventAspect.java:70)
    at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:166)
    at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
    at $Proxy154.authenticateUser(Unknown Source)
    at oracle.bpel.services.workflow.query.impl.TaskQueryService.authenticate(TaskQueryService.java:394)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:597)
    at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:296)
    at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:177)
    at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:144)
    at oracle.bpel.services.workflow.common.WorkflowServiceCacheEventAdvice.invoke(WorkflowServiceCacheEventAdvice.java:85)
    at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:166)
    at oracle.bpel.services.workflow.test.workflow.ExceptionTestCaseBuilder.invoke(ExceptionTestCaseBuilder.java:155)
    at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:166)
    at oracle.bpel.services.common.dms.MethodEventAspect.invoke(MethodEventAspect.java:70)
    at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:166)
    at oracle.bpel.services.common.dms.MethodPhaseEventAspect.invoke(MethodPhaseEventAspect.java:82)
    at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:166)
    at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
    at $Proxy162.authenticate(Unknown Source)
    at oracle.bpel.services.workflow.query.ejb.TaskQueryServiceBean.authenticate(TaskQueryServiceBean.java:80)
    at oracle.bpel.services.workflow.query.ejb.TaskQueryService_oz1ipg_EOImpl.authenticate(TaskQueryService_oz1ipg_EOImpl.java:733)
    at oracle.bpel.services.workflow.query.ejb.TaskQueryService_oz1ipg_EOImpl_WLSkel.invoke(Unknown Source)
    at weblogic.rmi.internal.BasicServerRef.invoke(BasicServerRef.java:589)
    at weblogic.rmi.cluster.ClusterableServerRef.invoke(ClusterableServerRef.java:230)
    at weblogic.rmi.internal.BasicServerRef$1.run(BasicServerRef.java:477)
    at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
    at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:147)
    at weblogic.rmi.internal.BasicServerRef.handleRequest(BasicServerRef.java:473)
    at weblogic.rmi.internal.wls.WLSExecuteRequest.run(WLSExecuteRequest.java:118)
    ... 2 more
    The Code Fragment that causes the exception:
    public class worklistService {
    String adminUser = "weblogic";
    String adminPassword = "weblogic1";
    String realm = "myrealm";
    public List getTasks() throws WorkflowException, StaleObjectException {
    System.out.println("========= get tasks =========");
    List tasks = null;
    String user = ADFContext.getCurrent().getSecurityContext().getUserName();
    try {
    IWorkflowServiceClient iWorkflowServiceClient = WorkflowServiceClientFactory.getWorkflowServiceClient(WorkflowServiceClientFactory.REMOTE_CLIENT);
    ITaskQueryService iTaskQueryService = iWorkflowServiceClient.getTaskQueryService();
    System.out.println("admin user : " + adminUser);
    System.out.println("admin pw : " + adminPassword);
    System.out.println("realm : " + realm);
    System.out.println("user : " + user);
    IWorkflowContext adminContext = iTaskQueryService.authenticate(adminUser, adminPassword.toCharArray(), realm); *<-- EXCEPTION HERE*
    System.out.println("------ adminContext : " + adminContext);
    IWorkflowContext userContext = iTaskQueryService.authenticateOnBehalfOf(adminContext,user);
    System.out.println("------ userContext : " + userContext);
    My wf_client_config.xml file:
    <workflowServicesClientConfiguration xmlns="http://xmlns.oracle.com/bpel/services/client">
         <server name="default" default="true">
              <localClient>
                   <participateInClientTransaction>false</participateInClientTransaction>
              </localClient>
              <remoteClient>
                   <serverURL>t3://localhost:8001</serverURL>
                   *<userName>weblogic</userName>*
                   *<password>weblogic1</password>*
                   <initialContextFactory>weblogic.jndi.WLInitialContextFactory</initialContextFactory>
                   <participateInClientTransaction>false</participateInClientTransaction>
              </remoteClient>
              <soapClient>
                   <rootEndPointURL>http://localhost:8001</rootEndPointURL>
                   <identityPropagation mode="dynamic" type="saml">
                        <policy-references>
                             <policy-reference enabled="true" category="security" uri="oracle/wss10_saml_token_client_policy"/>
                        </policy-references>
                   </identityPropagation>
              </soapClient>
         </server>
    </workflowServicesClientConfiguration>
    Further Notes:
    The out-of-the-box worklistapp included with BPEL authenticates correctly through the same OID instance.
    The above was when I used REMOTE_CLIENT, I get a similar error when I use SOAP_CLIENT.
    Any help is greatly appreciated.
    Thanks
    Bud
    Edited by: user1330597 on Jul 15, 2009 8:54 AM

    Hi Guys,
    Thank you for taking the time to answer my questions, from your replies I gathered that I was barking up the wrong tree.
    I'll comment on my solution below for the curious.
    thx
    Bud
    I left my wf_client_config.xml file as is. (shown in the original comment above - I have this file in the ViewController project's src directory - not the global src directory)
    I reverted my workflow-identity-config.xml file to its original state (ie removed the multiple configurations and defaulted to the jazn.com realm):
    <?xml version = '1.0' encoding = 'UTF-8'?>
    <ISConfiguration xmlns="http://www.oracle.com/pcbpel/identityservice/isconfig" >
    <configurations>
    <configuration realmName="jazn.com">
    <provider providerType="JPS" name="JpsProvider" service="Identity">
    <property name="jpsContextName" value="default" />
    </provider>
    </configuration>
    </configurations>
    <property name="caseSensitive" value="false"/>
    </ISConfiguration>
    It seemed to me that the worklist client service (API) always uses jazn.com as the realm, even though I added users to myrealm (weblogic's default realm) via oid.
    When I browse for users in a HumanTask.task file in JDeveloper for instance the users I had added to myrealm show up in the jazn.com realm - which is okay since they're all in there.
    Since this is a client and we don't really know the password of a user logging in I used the authenticateOnBehalfOf() method to get the IWorkflowContext of the user after getting the IWorkflowContext of an Administrator.
    In order to get an administrator IWorkflowContext you need to authenticate against a user who is in the 'Administrators' group.
    The code I used is below:
    public class worklistService {
    String adminUser = "harry";
    String adminPassword = "welcome1";
    String realm = "jazn.com";
    public List getTasks() throws WorkflowException, StaleObjectException {
    String user = ADFContext.getCurrent().getSecurityContext().getUserName();
    try {
    IWorkflowServiceClient iWorkflowServiceClient = WorkflowServiceClientFactory.getWorkflowServiceClient(WorkflowServiceClientFactory.REMOTE_CLIENT);
    ITaskQueryService iTaskQueryService = iWorkflowServiceClient.getTaskQueryService();
    System.out.println("admin user : " + adminUser);
    System.out.println("admin pw : " + adminPassword);
    System.out.println("realm : " + realm);
    System.out.println("user : " + user);
    IWorkflowContext directUserContext = iTaskQueryService.authenticate("ben", adminPassword.toCharArray(), realm);
    System.out.println("------ directUserContext : " + directUserContext);
    IWorkflowContext adminContext = iTaskQueryService.authenticate(adminUser, adminPassword.toCharArray(), realm);
    System.out.println("------ adminContext : " + adminContext);
    IWorkflowContext userContext = iTaskQueryService.authenticateOnBehalfOf(adminContext,user);
    System.out.println("------ userContext : " + userContext);
    Hope this helps someone else ...

  • Ask the Expert: BYOD with Identity Services Engine

    with Cisco Expert Bernardo Gaspar
    Welcome to the Cisco Support Community Ask the Expert conversation. This is an opportunity to learn and ask questions about Identity Services Engine (ISE) and its various usage scenarios and integrations such as BYOD, Active Directory, profiling, posture and radius authentication with Cisco subject matter expert Bernardo Gaspar.
    Bernardo Gaspar is Customer Support Engineer at the Technical Assistance Center at Cisco Europe especialized in wireless and authentication, authorization, and accounting (AAA). He has been troubleshooting wireless networks, wireless management tools, and security products, including Cisco Secure Access Control Server, NAC and Identity Services Engine as part of the escalation TAC team since 2007. He also focuses on filing technical and documentation bugs. Bernardo Gaspar holds a degree from the University of Porto.
    Remember to use the rating system to let Bernardo know if you have received an adequate response.
    Bernardo might not be able to answer each question due to the volume expected during this event. Remember that you can continue the conversation on the Security sub-community, AAA, Identity and NAC discussion forum shortly after the event.
    This event last through Friday July 12, 2013. Visit the community often to view responses to youe questions of other community members.

    My customer is limited in his VM space. Although he would like to have a active/standby for his administration node, he doesn't need this for his logging. Is it recommended to roll this in production. With a limited HDD space, what would be the recommended space (300 GB?)
    administration  
    monitoring  
    policy service  
    Machine VM     
    primary    
    Not enabled 
    enabled 
    Machine HW     
    secondary 
    primary    
    enabled 

Maybe you are looking for