Running MI-Webconsole in a Portal with SSO?

Similar Messages

• Apex With SSO not working

  When running htmldb 2.0.00.29 with SSO , we receive
  ORA-06550: line 2, column 1: PLS-00201: identifier 'WWSEC_SSO_ENABLER_PRIVATE.GENERATE_REDIRECT'
  must be declared ORA-06550: line 1, column 45: PL/SQL: Statement ignored
  Error Unable to run portal_sso_redirect procedure as schema: PL_USER with partner app name: people finder:mercator.hq.ccw.gov.uk:7779.
  During debugging the issue we found out that the ssosdk could not be installed into FLOWS_020000 correctly
  ( error like:
  @loadsdk.sql
  create table wwsec_enabler_config_info$ OF sec_enabler_config_type
  ORA-00955: name is already used by an existing object
  CREATE sequence wwsec_log_pk_seq increment BY 1
  ORA-00955: name is already used by an existing object
  and as followup error in regapp.sql
  ERROR: Error in registration. Please try again
  ORA-06508: PL/SQL: could not find program unit being called
  Now we created in a separate schema the ssosdk and run next steps of
  Note:353023.1 CONFIGURING AN APEX (HTMLDB) APPLICATION TO USE SSO:
  But bow same error like on starting up the issue.
  Question:
  Is it possible to install ssosdk in a separate schema and not into FLOWS_02xxx
  If yes, what are the steps differennt to the Note:353023.1
  thanks

  Hi Scot,
  Thank you for your response.
  This is what I did for the migration by following the thread in
  How can I recovery APEX application from a full database export?
  - Create new empty database with APEX installed.
  - Disable foreign key constraints in the FLOWS_030100 Schema
  - Truncate all tables in the FLOWS_030100 Schema
  - Perform user level imports of tables only with IGNORE = Y for FLOWS_030100 Schema
  - Enable the constraints.
  (everything seems intact including SSO SDK objects)
  To register with SSO, this is what I did;
  1. Load SSO SDK in FLOWS_030100 Schema anyway
  2. Register APEX as Partner in SSO
  ID: 1B914F48
  Token: F76K433U1B914F48
  Encryption Key: F76K433U1B914F48
  Login URL: http://<hotsname>:7777/pls/orasso/orasso.wwsso_app_admin.ls_login
  Single Sign-Off URL: http://<hotsname>:7777/pls/orasso/orasso.wwsso_app_admin.ls_logout
  Login URL : http://<hotsname>:7778/pls/apex
  Success URL : http://<hotsname>:778/pls/apex/wwv_flow_custom_auth_sso.process_success
  Logout URL : http://<hotsname>:7778/pls/apex
  3. Run regapp.sql as FLOWS_030100
  SQL> @regapp.sql
  Partner Application Configuration
  4.
  Enter value for listener_token: HTML_DB:<hostname>:7778
  Enter value for site_id: 1B914F48
  Enter value for site_token: F76K433U1B914F48
  Enter value for login_url: http://<hostname>:7777/pls/orasso/orasso.wwsso_app_admin.ls_login
  Enter value for encryption_key: C5EB92724C7C98B8
  Enter value for IP check : N
  4. Ensure wwv_flow_custom_auth_sso compile successfully and grant it to Public
  When I tested it, I did get the page of SSO login. But after logging in, it will just go to Page not found. Initially, I thought there's someting wrong with
  wwv_flow_custom_auth_sso.process_success but it did compile successfully and I have granted it to Public.
  Yong

• Oracle9iAS R2 - Virtual Hosts with Portal and SSO with OIDDAS application

  Hi!
  I have installed a the machine with name minsk.discover.local. The machine have installed Infrastructure and Portal. The instalation is sucessfull and i work fine. But i have publish Portal to WEB with name intranet.discover.com.br. The Oracle describe:
  1 - Create the virtual hosts in SSO and PORTAL - OK
  2 - run ptlasst to create SSO Partners Applications - OK
  After this steps iwork fine with Portal and SSO, but when i click in portlet to create user to access the application OIDDAS, the Portal redirect to login page of SSO in address mct.com.br, the internal name, when then name not responde in the internet.
  I need a help!!!!
  Marcio Mesti

  I just spoke to the Oracle App server admins, the two servers in question are clustered.
  So my question changes slightly to:
  What is the best way to install and configure a webgate for clustered Oracle App servers with mulitple virtual hosts, that are residing behind a load balancer (Traffic Manager)?
  Thanks,
  Andy

• Running Discoverer reports into portal using SSO portal login - help

  Hi,
  I am trying to run disco reports into oracle portal using discoverer portlet providers -list of worksheet. What I want to achieve is as follows
  1) login to portal using SSO userid /pwd - Done
  2) Enable discoverer for SSO - Done
  *3) Use discoverer list of worksheets to show reports into portal but want to filter the list of worksheet to currently logged in portal user. This so that users looged in only sees the reports to which they have access in discoverer - Need Help*
  *4) Once user runs this report then I want to filter the discoverer data based on users login or portal group - Help*
  Can someone please help with issue no 3/4 urgently.
  Mant thanks
  Ganesh

  Hi Michael,
  Assuming I have created the private connections using CAPI I still have my doubts as follows
  Do I have to then login as each portal user and add the list of worksheet portlet for each user and selecting
  "check the box called Display a different list of worksheets by allowing users to customize database connection and then check Show a default list of worksheets using connection, changing the connection to user's connection."
  Considering we have 500+ users this will be huge cumbersom task for me.
  Also when I tried to do this before loggin as each portal user when I logged in as second portal user I could see the list of worksheet portalet added by the first user which means I have to edit it but even that was not possible because it would not let me edit as only the page own whi created the portlet was allowed to edit (that is the first user)
  OR
  Do you have to give portal user permission to edit the page so that they can log on themselve to add the list of worksheet portlet on the page by selecting their private connection and selecting
  "check the box called Display a different list of worksheets by allowing users to customize database connection and then check Show a default list of worksheets using connection, changing the connection to user's connection."
  Finally I know someone has made it work using URL links and it works as follows
  1) Map the portal and disco user into a table
  2) Create disco private connections
  3) when portal user loggs in and click on "Show my discoverer report" it then runs a PL/SQL package which in turn identifies the private connection details and creates a URL out of it as follows
  [http://portal.ccm.ac.uk/discoverer/app/partialConnect?password=IRTIMUDV123_=qplus=VDUMITRI=browser_selected=connect=RELATIONAL=QPRIS=viewer]
  clicking on this link open discoverer with private list of workbook/worksheet.
  Please advise which way should I follow.
  Thanks
  Ganesh

• Portal 11g Upgrade (11.1.1.6) with SSO (10.1.4.3)

  I have just performed a Portal upgrade from 10g to 11g which is integrated with SSO (10.1.4.3) which is hosted on a separate host from portal.
  All components start sucessfully but I am getting the following error in my SSO Apache error_log when I attempt to login.
  [OSSO] E21: Communication with the SSO server failed. Unable to decrypt url parameter value.
  I have raised an SR but I was hoping that someone may have encountered a similar issue.
  Upgrade was as follows
  In the process of upgrading Oracle Portal to 11g from Portal 10g (10.1.4.2.0).
  Current configuration before upgrade is as follows
  Infra structure stack
  DB- 10.2.0.5 (GITO enabled, GITO version v1.0)
  OID / DIP 11.1.1.6
  SSO - 10.1.4.3
  Mid tier stack
  Portal - 10.1.4.2.0
  Step 1 - Upgraded Mid tier stack to 11g
  Tested all components, SSO login successful.
  Step 2 - Upgrade Infra Structure portal schema, upgrade was successful.
  Tested all components, now unable to login via SSO, only error detected in error_log of 10.1.4.3 SSO stack.
  500 Internal Server Error displayed for address
  https;//hostname:port/osso_login_success?urlc=v1.4....
  [OSSO] E21: Communication with the SSO server failed. Unable to decrypt url parameter value.
  Any help most welcome.
  Andrew
  Edited by: user9954853 on 22-Feb-2013 06:33

  Andrew,
  Check out this article on Oracle Support:
  Server 500 error Logging into Portal that has been rewired to use an external Webtier [ID 1285901.1]
  This article fixed my issue.
  It has to do with the fact that the Osso Cookies are encrypted.
  If you add this Apache directive to your httpd.conf it's solved:
  OssoSecureCookies off
  Kind regards,
  Rob

• Anyone running Portal with NOARCHIVELOG mode in the Oracle DB?

  Although we have several high-volume SQL Server customers running their DB in simple recovery mode (no transaction logging) with success, I am trying to determine if anyone is doing the equivalent with Oracle DB.
  Even if you aren't using NOARCHIVELOG mode, please let me know your thoughts on performance, especially since the perception exists that the Portal is less performant on Oracle DB than on SQL Server. If that perception has any basis in reality, there should be an even greater potential for performance gain using Oracle DB, through intelligent tuning.
  The cons of NOARCHIVELOG were pointed out to me by an excellent DBA:
  1. Lose the ability to do hot online physically backup, (both RMAN and Manual)
  2. Lose the ability to do point in time recovery of your database (irrelevant to the Portal)
  3. When something bad happens to your DB, you are guaranteed to lose some data, because you can only recover to last good backup. (This is either acceptable to the business or not. Usually it is.)
  Thanks for your thoughts!

  There are no dumb questions. 'Better' or 'worse' can mean different things from different angles. I won't recommend something to a customer that I saw in an article somewhere, or gained knowledge via hearsay. I have to have tried it successfully with a customer, usually though iterative tuning, testing and monitoring cycles.
  With that said, I see nothing wrong with using NOARCHIVELOG mode for the portal, and am looking to find someone with experience using it with the portal; and I don't mean a portal with four communities and a scant thousand users. I am looking for something more on the scale of our mutual customer who had about 15 front end portal servers, and about 15,000 hits per hour. Who, incidentally, is happily using SQL Server in simple recovery mode, and was game to try it out in the first place.

• Running reports through the web with SSO enabled

  Hey,
  I am trying to run several reports through the web by calling a direct url, but for some reason every time I am prompted to sign into Portal because SSO is enabled. What can I do to avoid the sign in page and run the report directly?
  Thanks

  Hello,
  Add authid=username/password in the URL where username/password is a valid account in the oid
  http://www.oracle.com/webapps/online-help/reports/10.1.2/topics/htmlhelp_rwbuild_hs/rwrefex/cmdline/common/cla_authid.htm
  Regards

• Integration of SAP Portal with Shibboleth based CUA?

  We are running SAP Portal NetWeaver EhP1 on LINUX RH-EL 5 with ORACLE 10.2.0.4. We are interested in integrating authentication to the SAP Portal with our web single sign-on system, which is based on Internet2's Shibboleth software. We would like to use our Shibboleth CUA to authenticate users and give them access to our SAP Enterprise Portal as well as to the SAP ABAP systems.
  Has anyone done something similar and if so, what were the results or limitations encountered?
  What is the underlying web server / product on which the Portal is based? Specifically, is it Apache httpd? If so, which version?
  Can it support the use of third party Apache modules, e.g. the Shibboleth Service Provider (SP) Apache module for authentication?
  If not, is it possible to run the portal fronted by Apache httpd? (Note that the Shibboleth SP software requires the use of Apache httpd on Linux servers.)
  Can the portal be configured to honor the REMOTE_USER setting passed by the web server/container for authentication, instead of requiring a username/password to be entered?
  If the portal cannot support the use of the Shibboleth Service Provider software for authentication, what are the other possible configuration options for authentication (besides username/password)?
  What support, if any, is there for SAML-based authentication?
  Will the portal interoperate with a Shibboleth Identity Provider (IdP)? Can you point us at documentation for this?
  Thank-you,
  Deb Nugent

  Hi,
  interesting questions. Portal is running on top of Netweaver platform (Java stack). Hence no Apache web server. I doubt that it supports any Apache modules. You can use Apache as reversed proxy in front of SAP portal. Check note 480520 with attached configuration guide. I don't know answer for your question regarding REMOTE_USER setting.
  SAP portal supports all standard [authentication methods|http://help.sap.com/saphelp_nw70/helpdata/en/8a/cb136e68592f478266d19bb2b89766/frameset.htm] supported by Netweaver. Probably the only possible way is to use [SAML|http://help.sap.com/saphelp_nw70/helpdata/en/94/695b3ebd564644e10000000a114084/frameset.htm]. [Here|http://www.ibm.com/developerworks/tivoli/library/t-cssosap/index.html] is a how-to guide how to set up SSO based on SAML between Tivoli and Netweaver applicaiton server.
  Also search on net. I found links to interesting presentations (e.g. [this one|http://www.switch.ch/aai/support/presentations/ws-sap-2010/ETHZ_AAI_SAP_SAML_Artifact.pdf]).
  Cheers

• Apex application registered with sso as partner application

  We have 1 apex app registered with sso and working properly.
  I just registered a new apex application with sso. when i authenticate through sso, it directs me to the originally registered application.
  I went in through the portal administrator app and verified my settings all pointed to the new application. I verified that my dad is set up correctly.
  Any ideas?
  APEX 2.0

  i did register and obtain the keys through portal admin.
  to ensure i used the proper keys (i guess there is a possibility i used the keys from db1 registration) i re-ran regapp with the right keys but recieved the following output:
  SQL> @regapp
  Partner Application Configuration
  Enter value for listener_token: HTML_DB:050iasphttp.xxx.na.xxx.com:7777
  Enter value for site_id: EFBE3E14
  Enter value for site_token: MSMXURH1EFBE3E14
  Enter value for login_url: https://050iaspdb.xxx.na.xxx.com:4443/pls/orasso/orasso.wwsso_app_admin.ls_login
  Enter value for encryption_key: 2EBDD126A3A40606
  Enter value for ip_check: N
  ERROR: Error in registration. Please try again
  User-Defined Exception
  Registration successful.
  Listener token: HTML_DB:050iasphttp.xxx.na.xxx.com:7777
  Site id : EFBE3E14
  Site token : MSMXURH1EFBE3E14
  Encryption key: 2EBDD126A3A40606
  Login URL :
  https://050iaspdb.xxx.na.xxx.com:4443/pls/orasso/orasso.wwsso_app_admi
  n.ls_login
  Logout URL :
  https://050iaspdb.xxx.na.xxx.com:4443/pls/orasso/orasso.wwsso_app_admi
  n.ls_logout
  IP check : N
  PL/SQL procedure successfully completed.
  Commit complete.
  No errors.
  SQL>
  ...in spite of the error, i aske the app developer to try and use sso for db2. he now recieves:
  User-Defined Exception
  Error Error in wwv_flow_custom_auth_sso.process_success:l_sso_user_name:l_sess_id:: Please contact administrator.
  OK
  any ideas?

• Cannot deploy BPEL process with SSO to BPELConsole activated

  I cannot deploy BPEL process with SSO to BPELConsole activated. Here is the error I get from JDeveloper (sorry for the french error message):
  Problème détecté lors de la connexion au serveur "ssdvoiagu.dev.local.csst.qc.ca" sur le port "7781" : java.security.AccessControlException: access denied (com.collaxa.security.DomainPermission generique read)
  at java.security.AccessControlContext.checkPermission(AccessControlContext.java:264)
  at java.security.AccessController.checkPermission(AccessController.java:427)
  at com.collaxa.security.OC4JSecurityService.checkAccess(OC4JSecurityService.java:16)
  at com.collaxa.security.SecurityService.checkDomainAccess(SecurityService.java:26)
  at com.collaxa.cube.fe.util.ServletUtils.getLocatorWithoutUrlRewrite(ServletUtils.java:162)
  at deployHttpClientProcess.jspService(_deployHttpClientProcess.java:332)
  at com.orionserver.http.OrionHttpJspPage.service(OrionHttpJspPage.java:59)
  at oracle.jsp.runtimev2.JspPageTable.service(JspPageTable.java:462)
  at oracle.jsp.runtimev2.JspServlet.internalService(JspServlet.java:594)
  at oracle.jsp.runtimev2.JspServlet.service(JspServlet.java:518)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:856)
  at com.evermind.server.http.ResourceFilterChain.doFilter(ResourceFilterChain.java:65)
  at oracle.security.jazn.oc4j.JAZNFilter$1.run(JAZNFilter.java:396)
  at java.security.AccessController.doPrivileged(Native Method)
  at javax.security.auth.Subject.doAsPrivileged(Subject.java:517)
  at oracle.security.jazn.oc4j.JAZNFilter.doFilter(JAZNFilter.java:410)
  at com.evermind.server.http.ServletRequestDispatcher.invoke(ServletRequestDispatcher.java:623)
  at com.evermind.server.http.ServletRequestDispatcher.forwardInternal(ServletRequestDispatcher.java:370)
  at com.evermind.server.http.HttpRequestHandler.doProcessRequest(HttpRequestHandler.java:871)
  at com.evermind.server.http.HttpRequestHandler.processRequest(HttpRequestHandler.java:453)
  at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:302)
  at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:190)
  at oracle.oc4j.network.ServerSocketReadHandler$SafeRunnable.run(ServerSocketReadHandler.java:260)
  at com.evermind.util.ReleasableResourcePooledExecutor$MyWorker.run(ReleasableResourcePooledExecutor.java:303)
  at java.lang.Thread.run(Thread.java:595)
  Target BPEL process manager runs under SOA 10.1.3.3. When the SSO to BPELConsole is disabled, the deployment works just fine. Is there any way to make it work with SSO?

  Please check:
  http://blog.jpoot.com/category/oracle-appserver/oid-ldap/
  We had some issues with SSO and SSL but everything is running now.
  Marc

• Apex Configuration with SSO on Database 11g

  Hi All,
  I am trying to configure Application Express with SSO on 11g and I have followed all the steps mentioned in http://www.oracle.com/technology/products/database/application_express/howtos/sso_partner_app.html
  My partner app configuration is
  Site ID: 0F32F8E1
  Site Token: JC54XU4Q0F32F8E1
  Encryption Key: 61443A93398DC472
  Single Sign-On URL: https://login-stage.oracle.com/pls/orasso/orasso.wwsso_app_admin.ls_login
  Single Sign-Off URL: https://login-stage.oracle.com/pls/orasso/orasso.wwsso_app_admin.ls_logout
  Application Name: Insight Knowledge Manager on New Server
  Application Home URL: http://orclinsight.oraclecorp.com
  Application Success URL: http://orclinsight.oraclecorp.com/pls/apex/wwv_flow_custom_auth_sso.process_success
  Application Logout URL: http://orclinsight.oraclecorp.com
  After running the @custom_auth_sso.sql and @custom_auth_sso.plb and doing grant execute on wwv_flow_custom_auth_sso to public; I have also created an authentication scheme in APEX based on the pre-configured scheme on Apex as partner app
  this is the URL of the app.... http://orclinsight.oraclecorp.com/pls/apex/f?p=100:1
  if I type this URL, I get redirected to the SSO authentication page...however once I have filled the credentials.. it shows me the following error message
  *"The requested URL /pls/apex/wwv_flow_custom_auth_sso.process_success was not found on this server."*
  The result of this query select lsnr_token||':'||site_token||':'||site_id||':'||urlcookie_version||':'||encryption_key||':'||url_cookie_ip_check||':'||ls_login_url from wwsec_enabler_config_info$
  is
  'HTML_DB:orclinsight.oraclecorp.com:80:JC54XU4Q0F32F8E1:0F32F8E1:v1.2:61443A93398DC472:Y:https://login-stage.oracle.com/pls/orasso/orasso.wwsso_app_admin.ls_login'
  and the result of begin owa_util.print_cgi_env; end; query in APEX - SQL Workshop is
  PLSQL_GATEWAY = WebDb
  GATEWAY_IVERSION = 2
  SERVER_SOFTWARE = Oracle-Application-Server-10g/10.1.3.5.0 Oracle-HTTP-Server
  GATEWAY_INTERFACE = CGI/1.1
  SERVER_PORT = 80
  SERVER_NAME = orclinsight.oraclecorp.com
  REQUEST_METHOD = POST
  PATH_INFO = /wwv_flow.show
  SCRIPT_NAME = /pls/apex
  REMOTE_ADDR = 141.144.152.146
  SERVER_PROTOCOL = HTTP/1.1
  REQUEST_PROTOCOL = HTTP
  REMOTE_USER = APEX_PUBLIC_USER
  HTTP_CONTENT_LENGTH = 291
  HTTP_CONTENT_TYPE = application/x-www-form-urlencoded; charset=UTF-8
  HTTP_USER_AGENT = Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)
  HTTP_HOST = orclinsight.oraclecorp.com
  HTTP_ACCEPT = text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
  HTTP_ACCEPT_ENCODING = gzip,deflate
  HTTP_ACCEPT_LANGUAGE = en-us,en;q=0.5
  HTTP_ACCEPT_CHARSET = ISO-8859-1,utf-8;q=0.7,*;q=0.7
  HTTP_REFERER = http://orclinsight.oraclecorp.com/pls/apex/f?p=4500:1003:1510257042232818::NO:::
  HTTP_ORACLE_ECID = 1258784987:64.181.227.33:7900:4328:22,0
  WEB_AUTHENT_PREFIX =
  DAD_NAME = apex
  DOC_ACCESS_PATH = docs
  DOCUMENT_TABLE = wwv_flow_file_objects$
  PATH_ALIAS =
  REQUEST_CHARSET = AL32UTF8
  REQUEST_IANA_CHARSET = UTF-8
  SCRIPT_PREFIX = /pls
  HTTP_COOKIE = [email protected]:insight_workspace; ORA_WWV_USER=BE50DD5881201806; IdcLocale=English-US; IntradocAuth=Internet; oracle.uix=0^^GMT+5:30^p; IntradocLoginState=1; IdcTimeZone=America/Chicago
  Please advise what should I do next or where I may be going wrong?
  Warm Regards,
  Anand

  Hi All,
  I am trying to configure Application Express with SSO on 11g and I have followed all the steps mentioned in http://www.oracle.com/technology/products/database/application_express/howtos/sso_partner_app.html
  My partner app configuration is
  Site ID: 0F32F8E1
  Site Token: JC54XU4Q0F32F8E1
  Encryption Key: 61443A93398DC472
  Single Sign-On URL: https://login-stage.oracle.com/pls/orasso/orasso.wwsso_app_admin.ls_login
  Single Sign-Off URL: https://login-stage.oracle.com/pls/orasso/orasso.wwsso_app_admin.ls_logout
  Application Name: Insight Knowledge Manager on New Server
  Application Home URL: http://orclinsight.oraclecorp.com
  Application Success URL: http://orclinsight.oraclecorp.com/pls/apex/wwv_flow_custom_auth_sso.process_success
  Application Logout URL: http://orclinsight.oraclecorp.com
  After running the @custom_auth_sso.sql and @custom_auth_sso.plb and doing grant execute on wwv_flow_custom_auth_sso to public; I have also created an authentication scheme in APEX based on the pre-configured scheme on Apex as partner app
  this is the URL of the app.... http://orclinsight.oraclecorp.com/pls/apex/f?p=100:1
  if I type this URL, I get redirected to the SSO authentication page...however once I have filled the credentials.. it shows me the following error message
  *"The requested URL /pls/apex/wwv_flow_custom_auth_sso.process_success was not found on this server."*
  The result of this query select lsnr_token||':'||site_token||':'||site_id||':'||urlcookie_version||':'||encryption_key||':'||url_cookie_ip_check||':'||ls_login_url from wwsec_enabler_config_info$
  is
  'HTML_DB:orclinsight.oraclecorp.com:80:JC54XU4Q0F32F8E1:0F32F8E1:v1.2:61443A93398DC472:Y:https://login-stage.oracle.com/pls/orasso/orasso.wwsso_app_admin.ls_login'
  and the result of begin owa_util.print_cgi_env; end; query in APEX - SQL Workshop is
  PLSQL_GATEWAY = WebDb
  GATEWAY_IVERSION = 2
  SERVER_SOFTWARE = Oracle-Application-Server-10g/10.1.3.5.0 Oracle-HTTP-Server
  GATEWAY_INTERFACE = CGI/1.1
  SERVER_PORT = 80
  SERVER_NAME = orclinsight.oraclecorp.com
  REQUEST_METHOD = POST
  PATH_INFO = /wwv_flow.show
  SCRIPT_NAME = /pls/apex
  REMOTE_ADDR = 141.144.152.146
  SERVER_PROTOCOL = HTTP/1.1
  REQUEST_PROTOCOL = HTTP
  REMOTE_USER = APEX_PUBLIC_USER
  HTTP_CONTENT_LENGTH = 291
  HTTP_CONTENT_TYPE = application/x-www-form-urlencoded; charset=UTF-8
  HTTP_USER_AGENT = Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)
  HTTP_HOST = orclinsight.oraclecorp.com
  HTTP_ACCEPT = text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
  HTTP_ACCEPT_ENCODING = gzip,deflate
  HTTP_ACCEPT_LANGUAGE = en-us,en;q=0.5
  HTTP_ACCEPT_CHARSET = ISO-8859-1,utf-8;q=0.7,*;q=0.7
  HTTP_REFERER = http://orclinsight.oraclecorp.com/pls/apex/f?p=4500:1003:1510257042232818::NO:::
  HTTP_ORACLE_ECID = 1258784987:64.181.227.33:7900:4328:22,0
  WEB_AUTHENT_PREFIX =
  DAD_NAME = apex
  DOC_ACCESS_PATH = docs
  DOCUMENT_TABLE = wwv_flow_file_objects$
  PATH_ALIAS =
  REQUEST_CHARSET = AL32UTF8
  REQUEST_IANA_CHARSET = UTF-8
  SCRIPT_PREFIX = /pls
  HTTP_COOKIE = [email protected]:insight_workspace; ORA_WWV_USER=BE50DD5881201806; IdcLocale=English-US; IntradocAuth=Internet; oracle.uix=0^^GMT+5:30^p; IntradocLoginState=1; IdcTimeZone=America/Chicago
  Please advise what should I do next or where I may be going wrong?
  Warm Regards,
  Anand

• Integrating Application Express with SSO

  Hi,
  What's the difference between integrating Apex with SSO as a partner application, and integrating it as an external application. Are there any benefits / drawbacks to either? and in what situation would you use one or the other?
  Thanks,
  Lee

  Hi, I have one more question related to this.
  We are currently considering implementing the following:
  We are designing a system where the majority of users will have read only access to data. The read only users will NOT have to sign into the system in order to use the system at this privilege level. Other users will have to sign in and once they have done so will then be able to edit and access other functions of the system that are not available to regular read only users. Login links will be available on a number of different screens and once logged in they will be returned to the screen from which they logged in.
  We understand that we can use SSO or even Apex's own authentication to acheive this.
  There is also another system built using portal, forms and SSO. Once a user signs into the portal there is a main menu where various links to different applications are available/hidden depending on the OID groups that the user is a part of.
  Ideally we want to be able to provide a link from the portal system to the apex system from the portal main menu. If a user is signed into the portal then they should be able to enter the apex system without the requirement to sign in again, assuming that they have edit privileges for the apex system. However if the user is signed into the portal but they do not have edit privileges we want to be able to display the apex system in read only mode as we would for anybody else who is not an edit user complete with login links.
  Would this be possible using SSO bearing in mind that we do not want to have to create users for the read only users?
  Any help would be greatly appreciated.
  Thanks,
  Lee

• Portal with a URL using a Web browser in java stack

  Dear all,
  I can access the portal with our URL using a Web browser from your client machines .
  i got the following option :
  SAP Library
  SAP Library contains the complete documentation for SAP Web Application Server.
  Web Services Navigator
  Web Services Navigator is a tool that gives you a short overview of a specific Web service based on its WSDL, and enables you to test your Web service by creating and sending a client request to the real end point.
  System Information
  System information provides administrators with an overview of the system configuration and its state. It shows all of the system's instances and processes, their current state and important parameters (such as ports) that may be required for support cases, as well as the versions of the components installed.
  UDDI Client
  The UDDI client provides query and publishing functions for different Web service entities (tModels, business services) to any UDDI compliant registry.
  User Management
  The user management administration console provides administrators with the functions they need to manage users, groups, roles, and user-related data in the User Management Engine (UME). Users without administrator permissions can use it to change their user profile.
  Web Dynpro
  Web Dynpro is a User Interface technology available within the SAP NetWeaver Developer Studio.
  Various Web Dynpro tools provide administrators and application developers with performance measurement and application administration capabilities. The Web Dynpro runtime is already deployed.
  SAP NetWeaver Administrator
  A tool for administration and monitoring, offering a central entry point to the whole SAP NetWeaver system landscape. The SAP NetWeaver Administrator can be used in a central scenario where it is capable of operating an entire system landscape containing ABAP and Java systems as the application platform of SAP NetWeaver.
  J2EE Engine Examples
  This section contains several J2EE application examples that run on the J2EE Engine. The examples show some of the functions of both Java and the J2EE Engine. They can be easily deployed and tested by simply clicking on a button. The full source code of the examples is also available.
  when i click System Information:
  it ask user name () J2EE_ADMINand password (Installtion master password) ,after entered , i got below error .
  You are not authorized to view the requested resource.
    Details:   No details available
  Kindly suggest .

  Hello
  It means what it sais, your J2EE_ADMIN user doesn't have enough authorization.
  Chech if the appropriate authorization is assigned in your abap stack which belongs to the java stack you logon to:
  Role SAP_J2EE_ADMIN should be assigned to user J2EE_ADMIN.
  Kind regards
  Tom
  Edited by: Tom Cenens on Dec 17, 2010 2:55 PM

• Problem with Individual Registration of HTMLDB app schema with SSO

  I have successfully registered HTML DB instance as partner application to SSO and it works well.
  Then, I also want to try with Individual registration of partner application schemas on the same HTML DB instance.
  I have followed every steps in 'How-To' but keep getting this following error message:
  Error Unable to run parse_url_cookie procedure as schema ICONNFNB with partner app name ICONNFNB_WORKSPACE
  ORA-06550: line 1, column 7: PLS-00306: wrong number or types of arguments in call to 'PARSE_URL_COOKIE' ORA-06550: line 1, column 7: PL/SQL: Statement ignored
  Anyone knows how to deal with this error ?
  Thanks in advance for any help.
  -Gary

  To add more info to my previous question, my HTML DB version is 1.6.0.00.87
  I have successfully registered HTML DB instance as
  partner application to SSO and it works well.
  Then, I also want to try with Individual registration
  of partner application schemas on the same HTML DB
  instance.
  I have followed every steps in 'How-To' but keep
  getting this following error message:
  Error Unable to run parse_url_cookie procedure as
  schema ICONNFNB with partner app name
  ICONNFNB_WORKSPACE
  ORA-06550: line 1, column 7: PLS-00306: wrong number
  or types of arguments in call to 'PARSE_URL_COOKIE'
  ORA-06550: line 1, column 7: PL/SQL: Statement
  ignored
  Anyone knows how to deal with this error ?
  Thanks in advance for any help.
  -Gary

• How to Sync the session timeout of Portal with CMS Server

  Hi Experts,
  We have a custom application build on our portal which will launch the reports of InfoView. It works fine untill the portal session timeout. Whenever the session timeout occurs and reloads it I am unable to launch the reports and getting the below exception.
  com.crystaldecisions.sdk.exception.SDKException$OCAFramework: Unable to reconnect to the CMS server_ip:6400. The session has been logged off or has expired. (FWM 01002)
  Portal is configured with SSO. Please adviese how to set the settings of session timeout in such way that Portal sync  session timeout with CMS server.
  Thanks in Advance,
  Chinaa.

  Hi ,
  There is no such option to sync Portal timout with CMS server.
  To resolve your problem you have only option to set your CMS server timout to MAX value.
  Thanks
  Anil