Running MI-Webconsole in a Portal with SSO?
Hi,
we want to do mobile Administration from a SAP Portal.
How can i integrate the MI-Webconsole with SSO in a portal?
I created a URL-IView for webconsole,but i get the webconsole login screen in the Portal.
Is there are solution how to do Single-Sign-On to MI-Webconsole from a portal?
Hello Marco,
you can realize a portal SSO to webconsole with user mapping by doing following steps:
1. Create a HTTP-System in the system configuration of your portal.You need this HTTP-System for the User-Mapping of Webconsole login.
2. Create an URL iview to "webconsole/checklogin" for example: "http://yoursystem.domain:port/me/WebConsole/checklogin"
3. Select your created Http-System as system in the URL-iview!!
4. Set the following values in the url-parameter table of the Iview:
user = select mappedUser from dropdownlistbox
pwd = select mappedPasswort from dorpdownlistbox
system=your system
client=your client
language=EN
systemnumber=00
(Enter here the login-values from input fields of webconsole login screen)
5. Assign the iview to a page/workset/role(you have still done that)
6. Do the User Mapping for the created Http-System in the Personalisation.
That's it.
Then you can logon to MI-Webconsole via Portal without having a seperate webconsole login.
Regards and please don't forget to reward with some christmas-points;-)
Frank Brackmann
Message was edited by: Frank Brackmann
Similar Messages
-
When running htmldb 2.0.00.29 with SSO , we receive
ORA-06550: line 2, column 1: PLS-00201: identifier 'WWSEC_SSO_ENABLER_PRIVATE.GENERATE_REDIRECT'
must be declared ORA-06550: line 1, column 45: PL/SQL: Statement ignored
Error Unable to run portal_sso_redirect procedure as schema: PL_USER with partner app name: people finder:mercator.hq.ccw.gov.uk:7779.
During debugging the issue we found out that the ssosdk could not be installed into FLOWS_020000 correctly
( error like:
@loadsdk.sql
create table wwsec_enabler_config_info$ OF sec_enabler_config_type
ORA-00955: name is already used by an existing object
CREATE sequence wwsec_log_pk_seq increment BY 1
ORA-00955: name is already used by an existing object
and as followup error in regapp.sql
ERROR: Error in registration. Please try again
ORA-06508: PL/SQL: could not find program unit being called
Now we created in a separate schema the ssosdk and run next steps of
Note:353023.1 CONFIGURING AN APEX (HTMLDB) APPLICATION TO USE SSO:
But bow same error like on starting up the issue.
Question:
Is it possible to install ssosdk in a separate schema and not into FLOWS_02xxx
If yes, what are the steps differennt to the Note:353023.1
thanksHi Scot,
Thank you for your response.
This is what I did for the migration by following the thread in
How can I recovery APEX application from a full database export?
- Create new empty database with APEX installed.
- Disable foreign key constraints in the FLOWS_030100 Schema
- Truncate all tables in the FLOWS_030100 Schema
- Perform user level imports of tables only with IGNORE = Y for FLOWS_030100 Schema
- Enable the constraints.
(everything seems intact including SSO SDK objects)
To register with SSO, this is what I did;
1. Load SSO SDK in FLOWS_030100 Schema anyway
2. Register APEX as Partner in SSO
ID: 1B914F48
Token: F76K433U1B914F48
Encryption Key: F76K433U1B914F48
Login URL: http://<hotsname>:7777/pls/orasso/orasso.wwsso_app_admin.ls_login
Single Sign-Off URL: http://<hotsname>:7777/pls/orasso/orasso.wwsso_app_admin.ls_logout
Login URL : http://<hotsname>:7778/pls/apex
Success URL : http://<hotsname>:778/pls/apex/wwv_flow_custom_auth_sso.process_success
Logout URL : http://<hotsname>:7778/pls/apex
3. Run regapp.sql as FLOWS_030100
SQL> @regapp.sql
Partner Application Configuration
4.
Enter value for listener_token: HTML_DB:<hostname>:7778
Enter value for site_id: 1B914F48
Enter value for site_token: F76K433U1B914F48
Enter value for login_url: http://<hostname>:7777/pls/orasso/orasso.wwsso_app_admin.ls_login
Enter value for encryption_key: C5EB92724C7C98B8
Enter value for IP check : N
4. Ensure wwv_flow_custom_auth_sso compile successfully and grant it to Public
When I tested it, I did get the page of SSO login. But after logging in, it will just go to Page not found. Initially, I thought there's someting wrong with
wwv_flow_custom_auth_sso.process_success but it did compile successfully and I have granted it to Public.
Yong -
Oracle9iAS R2 - Virtual Hosts with Portal and SSO with OIDDAS application
Hi!
I have installed a the machine with name minsk.discover.local. The machine have installed Infrastructure and Portal. The instalation is sucessfull and i work fine. But i have publish Portal to WEB with name intranet.discover.com.br. The Oracle describe:
1 - Create the virtual hosts in SSO and PORTAL - OK
2 - run ptlasst to create SSO Partners Applications - OK
After this steps iwork fine with Portal and SSO, but when i click in portlet to create user to access the application OIDDAS, the Portal redirect to login page of SSO in address mct.com.br, the internal name, when then name not responde in the internet.
I need a help!!!!
Marcio MestiI just spoke to the Oracle App server admins, the two servers in question are clustered.
So my question changes slightly to:
What is the best way to install and configure a webgate for clustered Oracle App servers with mulitple virtual hosts, that are residing behind a load balancer (Traffic Manager)?
Thanks,
Andy -
Running Discoverer reports into portal using SSO portal login - help
Hi,
I am trying to run disco reports into oracle portal using discoverer portlet providers -list of worksheet. What I want to achieve is as follows
1) login to portal using SSO userid /pwd - Done
2) Enable discoverer for SSO - Done
*3) Use discoverer list of worksheets to show reports into portal but want to filter the list of worksheet to currently logged in portal user. This so that users looged in only sees the reports to which they have access in discoverer - Need Help*
*4) Once user runs this report then I want to filter the discoverer data based on users login or portal group - Help*
Can someone please help with issue no 3/4 urgently.
Mant thanks
GaneshHi Michael,
Assuming I have created the private connections using CAPI I still have my doubts as follows
Do I have to then login as each portal user and add the list of worksheet portlet for each user and selecting
"check the box called Display a different list of worksheets by allowing users to customize database connection and then check Show a default list of worksheets using connection, changing the connection to user's connection."
Considering we have 500+ users this will be huge cumbersom task for me.
Also when I tried to do this before loggin as each portal user when I logged in as second portal user I could see the list of worksheet portalet added by the first user which means I have to edit it but even that was not possible because it would not let me edit as only the page own whi created the portlet was allowed to edit (that is the first user)
OR
Do you have to give portal user permission to edit the page so that they can log on themselve to add the list of worksheet portlet on the page by selecting their private connection and selecting
"check the box called Display a different list of worksheets by allowing users to customize database connection and then check Show a default list of worksheets using connection, changing the connection to user's connection."
Finally I know someone has made it work using URL links and it works as follows
1) Map the portal and disco user into a table
2) Create disco private connections
3) when portal user loggs in and click on "Show my discoverer report" it then runs a PL/SQL package which in turn identifies the private connection details and creates a URL out of it as follows
[http://portal.ccm.ac.uk/discoverer/app/partialConnect?password=IRTIMUDV123_=qplus=VDUMITRI=browser_selected=connect=RELATIONAL=QPRIS=viewer]
clicking on this link open discoverer with private list of workbook/worksheet.
Please advise which way should I follow.
Thanks
Ganesh -
I have just performed a Portal upgrade from 10g to 11g which is integrated with SSO (10.1.4.3) which is hosted on a separate host from portal.
All components start sucessfully but I am getting the following error in my SSO Apache error_log when I attempt to login.
[OSSO] E21: Communication with the SSO server failed. Unable to decrypt url parameter value.
I have raised an SR but I was hoping that someone may have encountered a similar issue.
Upgrade was as follows
In the process of upgrading Oracle Portal to 11g from Portal 10g (10.1.4.2.0).
Current configuration before upgrade is as follows
Infra structure stack
DB- 10.2.0.5 (GITO enabled, GITO version v1.0)
OID / DIP 11.1.1.6
SSO - 10.1.4.3
Mid tier stack
Portal - 10.1.4.2.0
Step 1 - Upgraded Mid tier stack to 11g
Tested all components, SSO login successful.
Step 2 - Upgrade Infra Structure portal schema, upgrade was successful.
Tested all components, now unable to login via SSO, only error detected in error_log of 10.1.4.3 SSO stack.
500 Internal Server Error displayed for address
https;//hostname:port/osso_login_success?urlc=v1.4....
[OSSO] E21: Communication with the SSO server failed. Unable to decrypt url parameter value.
Any help most welcome.
Andrew
Edited by: user9954853 on 22-Feb-2013 06:33Andrew,
Check out this article on Oracle Support:
Server 500 error Logging into Portal that has been rewired to use an external Webtier [ID 1285901.1]
This article fixed my issue.
It has to do with the fact that the Osso Cookies are encrypted.
If you add this Apache directive to your httpd.conf it's solved:
OssoSecureCookies off
Kind regards,
Rob -
Anyone running Portal with NOARCHIVELOG mode in the Oracle DB?
Although we have several high-volume SQL Server customers running their DB in simple recovery mode (no transaction logging) with success, I am trying to determine if anyone is doing the equivalent with Oracle DB.
Even if you aren't using NOARCHIVELOG mode, please let me know your thoughts on performance, especially since the perception exists that the Portal is less performant on Oracle DB than on SQL Server. If that perception has any basis in reality, there should be an even greater potential for performance gain using Oracle DB, through intelligent tuning.
The cons of NOARCHIVELOG were pointed out to me by an excellent DBA:
1. Lose the ability to do hot online physically backup, (both RMAN and Manual)
2. Lose the ability to do point in time recovery of your database (irrelevant to the Portal)
3. When something bad happens to your DB, you are guaranteed to lose some data, because you can only recover to last good backup. (This is either acceptable to the business or not. Usually it is.)
Thanks for your thoughts!There are no dumb questions. 'Better' or 'worse' can mean different things from different angles. I won't recommend something to a customer that I saw in an article somewhere, or gained knowledge via hearsay. I have to have tried it successfully with a customer, usually though iterative tuning, testing and monitoring cycles.
With that said, I see nothing wrong with using NOARCHIVELOG mode for the portal, and am looking to find someone with experience using it with the portal; and I don't mean a portal with four communities and a scant thousand users. I am looking for something more on the scale of our mutual customer who had about 15 front end portal servers, and about 15,000 hits per hour. Who, incidentally, is happily using SQL Server in simple recovery mode, and was game to try it out in the first place. -
Running reports through the web with SSO enabled
Hey,
I am trying to run several reports through the web by calling a direct url, but for some reason every time I am prompted to sign into Portal because SSO is enabled. What can I do to avoid the sign in page and run the report directly?
ThanksHello,
Add authid=username/password in the URL where username/password is a valid account in the oid
http://www.oracle.com/webapps/online-help/reports/10.1.2/topics/htmlhelp_rwbuild_hs/rwrefex/cmdline/common/cla_authid.htm
Regards -
Integration of SAP Portal with Shibboleth based CUA?
We are running SAP Portal NetWeaver EhP1 on LINUX RH-EL 5 with ORACLE 10.2.0.4. We are interested in integrating authentication to the SAP Portal with our web single sign-on system, which is based on Internet2's Shibboleth software. We would like to use our Shibboleth CUA to authenticate users and give them access to our SAP Enterprise Portal as well as to the SAP ABAP systems.
Has anyone done something similar and if so, what were the results or limitations encountered?
What is the underlying web server / product on which the Portal is based? Specifically, is it Apache httpd? If so, which version?
Can it support the use of third party Apache modules, e.g. the Shibboleth Service Provider (SP) Apache module for authentication?
If not, is it possible to run the portal fronted by Apache httpd? (Note that the Shibboleth SP software requires the use of Apache httpd on Linux servers.)
Can the portal be configured to honor the REMOTE_USER setting passed by the web server/container for authentication, instead of requiring a username/password to be entered?
If the portal cannot support the use of the Shibboleth Service Provider software for authentication, what are the other possible configuration options for authentication (besides username/password)?
What support, if any, is there for SAML-based authentication?
Will the portal interoperate with a Shibboleth Identity Provider (IdP)? Can you point us at documentation for this?
Thank-you,
Deb NugentHi,
interesting questions. Portal is running on top of Netweaver platform (Java stack). Hence no Apache web server. I doubt that it supports any Apache modules. You can use Apache as reversed proxy in front of SAP portal. Check note 480520 with attached configuration guide. I don't know answer for your question regarding REMOTE_USER setting.
SAP portal supports all standard [authentication methods|http://help.sap.com/saphelp_nw70/helpdata/en/8a/cb136e68592f478266d19bb2b89766/frameset.htm] supported by Netweaver. Probably the only possible way is to use [SAML|http://help.sap.com/saphelp_nw70/helpdata/en/94/695b3ebd564644e10000000a114084/frameset.htm]. [Here|http://www.ibm.com/developerworks/tivoli/library/t-cssosap/index.html] is a how-to guide how to set up SSO based on SAML between Tivoli and Netweaver applicaiton server.
Also search on net. I found links to interesting presentations (e.g. [this one|http://www.switch.ch/aai/support/presentations/ws-sap-2010/ETHZ_AAI_SAP_SAML_Artifact.pdf]).
Cheers -
Apex application registered with sso as partner application
We have 1 apex app registered with sso and working properly.
I just registered a new apex application with sso. when i authenticate through sso, it directs me to the originally registered application.
I went in through the portal administrator app and verified my settings all pointed to the new application. I verified that my dad is set up correctly.
Any ideas?
APEX 2.0i did register and obtain the keys through portal admin.
to ensure i used the proper keys (i guess there is a possibility i used the keys from db1 registration) i re-ran regapp with the right keys but recieved the following output:
SQL> @regapp
Partner Application Configuration
Enter value for listener_token: HTML_DB:050iasphttp.xxx.na.xxx.com:7777
Enter value for site_id: EFBE3E14
Enter value for site_token: MSMXURH1EFBE3E14
Enter value for login_url: https://050iaspdb.xxx.na.xxx.com:4443/pls/orasso/orasso.wwsso_app_admin.ls_login
Enter value for encryption_key: 2EBDD126A3A40606
Enter value for ip_check: N
ERROR: Error in registration. Please try again
User-Defined Exception
Registration successful.
Listener token: HTML_DB:050iasphttp.xxx.na.xxx.com:7777
Site id : EFBE3E14
Site token : MSMXURH1EFBE3E14
Encryption key: 2EBDD126A3A40606
Login URL :
https://050iaspdb.xxx.na.xxx.com:4443/pls/orasso/orasso.wwsso_app_admi
n.ls_login
Logout URL :
https://050iaspdb.xxx.na.xxx.com:4443/pls/orasso/orasso.wwsso_app_admi
n.ls_logout
IP check : N
PL/SQL procedure successfully completed.
Commit complete.
No errors.
SQL>
...in spite of the error, i aske the app developer to try and use sso for db2. he now recieves:
User-Defined Exception
Error Error in wwv_flow_custom_auth_sso.process_success:l_sso_user_name:l_sess_id:: Please contact administrator.
OK
any ideas? -
Cannot deploy BPEL process with SSO to BPELConsole activated
I cannot deploy BPEL process with SSO to BPELConsole activated. Here is the error I get from JDeveloper (sorry for the french error message):
Problème détecté lors de la connexion au serveur "ssdvoiagu.dev.local.csst.qc.ca" sur le port "7781" : java.security.AccessControlException: access denied (com.collaxa.security.DomainPermission generique read)
at java.security.AccessControlContext.checkPermission(AccessControlContext.java:264)
at java.security.AccessController.checkPermission(AccessController.java:427)
at com.collaxa.security.OC4JSecurityService.checkAccess(OC4JSecurityService.java:16)
at com.collaxa.security.SecurityService.checkDomainAccess(SecurityService.java:26)
at com.collaxa.cube.fe.util.ServletUtils.getLocatorWithoutUrlRewrite(ServletUtils.java:162)
at deployHttpClientProcess.jspService(_deployHttpClientProcess.java:332)
at com.orionserver.http.OrionHttpJspPage.service(OrionHttpJspPage.java:59)
at oracle.jsp.runtimev2.JspPageTable.service(JspPageTable.java:462)
at oracle.jsp.runtimev2.JspServlet.internalService(JspServlet.java:594)
at oracle.jsp.runtimev2.JspServlet.service(JspServlet.java:518)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:856)
at com.evermind.server.http.ResourceFilterChain.doFilter(ResourceFilterChain.java:65)
at oracle.security.jazn.oc4j.JAZNFilter$1.run(JAZNFilter.java:396)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.Subject.doAsPrivileged(Subject.java:517)
at oracle.security.jazn.oc4j.JAZNFilter.doFilter(JAZNFilter.java:410)
at com.evermind.server.http.ServletRequestDispatcher.invoke(ServletRequestDispatcher.java:623)
at com.evermind.server.http.ServletRequestDispatcher.forwardInternal(ServletRequestDispatcher.java:370)
at com.evermind.server.http.HttpRequestHandler.doProcessRequest(HttpRequestHandler.java:871)
at com.evermind.server.http.HttpRequestHandler.processRequest(HttpRequestHandler.java:453)
at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:302)
at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:190)
at oracle.oc4j.network.ServerSocketReadHandler$SafeRunnable.run(ServerSocketReadHandler.java:260)
at com.evermind.util.ReleasableResourcePooledExecutor$MyWorker.run(ReleasableResourcePooledExecutor.java:303)
at java.lang.Thread.run(Thread.java:595)
Target BPEL process manager runs under SOA 10.1.3.3. When the SSO to BPELConsole is disabled, the deployment works just fine. Is there any way to make it work with SSO?Please check:
http://blog.jpoot.com/category/oracle-appserver/oid-ldap/
We had some issues with SSO and SSL but everything is running now.
Marc -
Apex Configuration with SSO on Database 11g
Hi All,
I am trying to configure Application Express with SSO on 11g and I have followed all the steps mentioned in http://www.oracle.com/technology/products/database/application_express/howtos/sso_partner_app.html
My partner app configuration is
Site ID: 0F32F8E1
Site Token: JC54XU4Q0F32F8E1
Encryption Key: 61443A93398DC472
Single Sign-On URL: https://login-stage.oracle.com/pls/orasso/orasso.wwsso_app_admin.ls_login
Single Sign-Off URL: https://login-stage.oracle.com/pls/orasso/orasso.wwsso_app_admin.ls_logout
Application Name: Insight Knowledge Manager on New Server
Application Home URL: http://orclinsight.oraclecorp.com
Application Success URL: http://orclinsight.oraclecorp.com/pls/apex/wwv_flow_custom_auth_sso.process_success
Application Logout URL: http://orclinsight.oraclecorp.com
After running the @custom_auth_sso.sql and @custom_auth_sso.plb and doing grant execute on wwv_flow_custom_auth_sso to public; I have also created an authentication scheme in APEX based on the pre-configured scheme on Apex as partner app
this is the URL of the app.... http://orclinsight.oraclecorp.com/pls/apex/f?p=100:1
if I type this URL, I get redirected to the SSO authentication page...however once I have filled the credentials.. it shows me the following error message
*"The requested URL /pls/apex/wwv_flow_custom_auth_sso.process_success was not found on this server."*
The result of this query select lsnr_token||':'||site_token||':'||site_id||':'||urlcookie_version||':'||encryption_key||':'||url_cookie_ip_check||':'||ls_login_url from wwsec_enabler_config_info$
is
'HTML_DB:orclinsight.oraclecorp.com:80:JC54XU4Q0F32F8E1:0F32F8E1:v1.2:61443A93398DC472:Y:https://login-stage.oracle.com/pls/orasso/orasso.wwsso_app_admin.ls_login'
and the result of begin owa_util.print_cgi_env; end; query in APEX - SQL Workshop is
PLSQL_GATEWAY = WebDb
GATEWAY_IVERSION = 2
SERVER_SOFTWARE = Oracle-Application-Server-10g/10.1.3.5.0 Oracle-HTTP-Server
GATEWAY_INTERFACE = CGI/1.1
SERVER_PORT = 80
SERVER_NAME = orclinsight.oraclecorp.com
REQUEST_METHOD = POST
PATH_INFO = /wwv_flow.show
SCRIPT_NAME = /pls/apex
REMOTE_ADDR = 141.144.152.146
SERVER_PROTOCOL = HTTP/1.1
REQUEST_PROTOCOL = HTTP
REMOTE_USER = APEX_PUBLIC_USER
HTTP_CONTENT_LENGTH = 291
HTTP_CONTENT_TYPE = application/x-www-form-urlencoded; charset=UTF-8
HTTP_USER_AGENT = Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)
HTTP_HOST = orclinsight.oraclecorp.com
HTTP_ACCEPT = text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
HTTP_ACCEPT_ENCODING = gzip,deflate
HTTP_ACCEPT_LANGUAGE = en-us,en;q=0.5
HTTP_ACCEPT_CHARSET = ISO-8859-1,utf-8;q=0.7,*;q=0.7
HTTP_REFERER = http://orclinsight.oraclecorp.com/pls/apex/f?p=4500:1003:1510257042232818::NO:::
HTTP_ORACLE_ECID = 1258784987:64.181.227.33:7900:4328:22,0
WEB_AUTHENT_PREFIX =
DAD_NAME = apex
DOC_ACCESS_PATH = docs
DOCUMENT_TABLE = wwv_flow_file_objects$
PATH_ALIAS =
REQUEST_CHARSET = AL32UTF8
REQUEST_IANA_CHARSET = UTF-8
SCRIPT_PREFIX = /pls
HTTP_COOKIE = [email protected]:insight_workspace; ORA_WWV_USER=BE50DD5881201806; IdcLocale=English-US; IntradocAuth=Internet; oracle.uix=0^^GMT+5:30^p; IntradocLoginState=1; IdcTimeZone=America/Chicago
Please advise what should I do next or where I may be going wrong?
Warm Regards,
AnandHi All,
I am trying to configure Application Express with SSO on 11g and I have followed all the steps mentioned in http://www.oracle.com/technology/products/database/application_express/howtos/sso_partner_app.html
My partner app configuration is
Site ID: 0F32F8E1
Site Token: JC54XU4Q0F32F8E1
Encryption Key: 61443A93398DC472
Single Sign-On URL: https://login-stage.oracle.com/pls/orasso/orasso.wwsso_app_admin.ls_login
Single Sign-Off URL: https://login-stage.oracle.com/pls/orasso/orasso.wwsso_app_admin.ls_logout
Application Name: Insight Knowledge Manager on New Server
Application Home URL: http://orclinsight.oraclecorp.com
Application Success URL: http://orclinsight.oraclecorp.com/pls/apex/wwv_flow_custom_auth_sso.process_success
Application Logout URL: http://orclinsight.oraclecorp.com
After running the @custom_auth_sso.sql and @custom_auth_sso.plb and doing grant execute on wwv_flow_custom_auth_sso to public; I have also created an authentication scheme in APEX based on the pre-configured scheme on Apex as partner app
this is the URL of the app.... http://orclinsight.oraclecorp.com/pls/apex/f?p=100:1
if I type this URL, I get redirected to the SSO authentication page...however once I have filled the credentials.. it shows me the following error message
*"The requested URL /pls/apex/wwv_flow_custom_auth_sso.process_success was not found on this server."*
The result of this query select lsnr_token||':'||site_token||':'||site_id||':'||urlcookie_version||':'||encryption_key||':'||url_cookie_ip_check||':'||ls_login_url from wwsec_enabler_config_info$
is
'HTML_DB:orclinsight.oraclecorp.com:80:JC54XU4Q0F32F8E1:0F32F8E1:v1.2:61443A93398DC472:Y:https://login-stage.oracle.com/pls/orasso/orasso.wwsso_app_admin.ls_login'
and the result of begin owa_util.print_cgi_env; end; query in APEX - SQL Workshop is
PLSQL_GATEWAY = WebDb
GATEWAY_IVERSION = 2
SERVER_SOFTWARE = Oracle-Application-Server-10g/10.1.3.5.0 Oracle-HTTP-Server
GATEWAY_INTERFACE = CGI/1.1
SERVER_PORT = 80
SERVER_NAME = orclinsight.oraclecorp.com
REQUEST_METHOD = POST
PATH_INFO = /wwv_flow.show
SCRIPT_NAME = /pls/apex
REMOTE_ADDR = 141.144.152.146
SERVER_PROTOCOL = HTTP/1.1
REQUEST_PROTOCOL = HTTP
REMOTE_USER = APEX_PUBLIC_USER
HTTP_CONTENT_LENGTH = 291
HTTP_CONTENT_TYPE = application/x-www-form-urlencoded; charset=UTF-8
HTTP_USER_AGENT = Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.1.5) Gecko/20091102 Firefox/3.5.5 (.NET CLR 3.5.30729)
HTTP_HOST = orclinsight.oraclecorp.com
HTTP_ACCEPT = text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
HTTP_ACCEPT_ENCODING = gzip,deflate
HTTP_ACCEPT_LANGUAGE = en-us,en;q=0.5
HTTP_ACCEPT_CHARSET = ISO-8859-1,utf-8;q=0.7,*;q=0.7
HTTP_REFERER = http://orclinsight.oraclecorp.com/pls/apex/f?p=4500:1003:1510257042232818::NO:::
HTTP_ORACLE_ECID = 1258784987:64.181.227.33:7900:4328:22,0
WEB_AUTHENT_PREFIX =
DAD_NAME = apex
DOC_ACCESS_PATH = docs
DOCUMENT_TABLE = wwv_flow_file_objects$
PATH_ALIAS =
REQUEST_CHARSET = AL32UTF8
REQUEST_IANA_CHARSET = UTF-8
SCRIPT_PREFIX = /pls
HTTP_COOKIE = [email protected]:insight_workspace; ORA_WWV_USER=BE50DD5881201806; IdcLocale=English-US; IntradocAuth=Internet; oracle.uix=0^^GMT+5:30^p; IntradocLoginState=1; IdcTimeZone=America/Chicago
Please advise what should I do next or where I may be going wrong?
Warm Regards,
Anand -
Integrating Application Express with SSO
Hi,
What's the difference between integrating Apex with SSO as a partner application, and integrating it as an external application. Are there any benefits / drawbacks to either? and in what situation would you use one or the other?
Thanks,
LeeHi, I have one more question related to this.
We are currently considering implementing the following:
We are designing a system where the majority of users will have read only access to data. The read only users will NOT have to sign into the system in order to use the system at this privilege level. Other users will have to sign in and once they have done so will then be able to edit and access other functions of the system that are not available to regular read only users. Login links will be available on a number of different screens and once logged in they will be returned to the screen from which they logged in.
We understand that we can use SSO or even Apex's own authentication to acheive this.
There is also another system built using portal, forms and SSO. Once a user signs into the portal there is a main menu where various links to different applications are available/hidden depending on the OID groups that the user is a part of.
Ideally we want to be able to provide a link from the portal system to the apex system from the portal main menu. If a user is signed into the portal then they should be able to enter the apex system without the requirement to sign in again, assuming that they have edit privileges for the apex system. However if the user is signed into the portal but they do not have edit privileges we want to be able to display the apex system in read only mode as we would for anybody else who is not an edit user complete with login links.
Would this be possible using SSO bearing in mind that we do not want to have to create users for the read only users?
Any help would be greatly appreciated.
Thanks,
Lee -
Portal with a URL using a Web browser in java stack
Dear all,
I can access the portal with our URL using a Web browser from your client machines .
i got the following option :
SAP Library
SAP Library contains the complete documentation for SAP Web Application Server.
Web Services Navigator
Web Services Navigator is a tool that gives you a short overview of a specific Web service based on its WSDL, and enables you to test your Web service by creating and sending a client request to the real end point.
System Information
System information provides administrators with an overview of the system configuration and its state. It shows all of the system's instances and processes, their current state and important parameters (such as ports) that may be required for support cases, as well as the versions of the components installed.
UDDI Client
The UDDI client provides query and publishing functions for different Web service entities (tModels, business services) to any UDDI compliant registry.
User Management
The user management administration console provides administrators with the functions they need to manage users, groups, roles, and user-related data in the User Management Engine (UME). Users without administrator permissions can use it to change their user profile.
Web Dynpro
Web Dynpro is a User Interface technology available within the SAP NetWeaver Developer Studio.
Various Web Dynpro tools provide administrators and application developers with performance measurement and application administration capabilities. The Web Dynpro runtime is already deployed.
SAP NetWeaver Administrator
A tool for administration and monitoring, offering a central entry point to the whole SAP NetWeaver system landscape. The SAP NetWeaver Administrator can be used in a central scenario where it is capable of operating an entire system landscape containing ABAP and Java systems as the application platform of SAP NetWeaver.
J2EE Engine Examples
This section contains several J2EE application examples that run on the J2EE Engine. The examples show some of the functions of both Java and the J2EE Engine. They can be easily deployed and tested by simply clicking on a button. The full source code of the examples is also available.
when i click System Information:
it ask user name () J2EE_ADMINand password (Installtion master password) ,after entered , i got below error .
You are not authorized to view the requested resource.
Details: No details available
Kindly suggest .Hello
It means what it sais, your J2EE_ADMIN user doesn't have enough authorization.
Chech if the appropriate authorization is assigned in your abap stack which belongs to the java stack you logon to:
Role SAP_J2EE_ADMIN should be assigned to user J2EE_ADMIN.
Kind regards
Tom
Edited by: Tom Cenens on Dec 17, 2010 2:55 PM -
Problem with Individual Registration of HTMLDB app schema with SSO
I have successfully registered HTML DB instance as partner application to SSO and it works well.
Then, I also want to try with Individual registration of partner application schemas on the same HTML DB instance.
I have followed every steps in 'How-To' but keep getting this following error message:
Error Unable to run parse_url_cookie procedure as schema ICONNFNB with partner app name ICONNFNB_WORKSPACE
ORA-06550: line 1, column 7: PLS-00306: wrong number or types of arguments in call to 'PARSE_URL_COOKIE' ORA-06550: line 1, column 7: PL/SQL: Statement ignored
Anyone knows how to deal with this error ?
Thanks in advance for any help.
-GaryTo add more info to my previous question, my HTML DB version is 1.6.0.00.87
I have successfully registered HTML DB instance as
partner application to SSO and it works well.
Then, I also want to try with Individual registration
of partner application schemas on the same HTML DB
instance.
I have followed every steps in 'How-To' but keep
getting this following error message:
Error Unable to run parse_url_cookie procedure as
schema ICONNFNB with partner app name
ICONNFNB_WORKSPACE
ORA-06550: line 1, column 7: PLS-00306: wrong number
or types of arguments in call to 'PARSE_URL_COOKIE'
ORA-06550: line 1, column 7: PL/SQL: Statement
ignored
Anyone knows how to deal with this error ?
Thanks in advance for any help.
-Gary -
How to Sync the session timeout of Portal with CMS Server
Hi Experts,
We have a custom application build on our portal which will launch the reports of InfoView. It works fine untill the portal session timeout. Whenever the session timeout occurs and reloads it I am unable to launch the reports and getting the below exception.
com.crystaldecisions.sdk.exception.SDKException$OCAFramework: Unable to reconnect to the CMS server_ip:6400. The session has been logged off or has expired. (FWM 01002)
Portal is configured with SSO. Please adviese how to set the settings of session timeout in such way that Portal sync session timeout with CMS server.
Thanks in Advance,
Chinaa.Hi ,
There is no such option to sync Portal timout with CMS server.
To resolve your problem you have only option to set your CMS server timout to MAX value.
Thanks
Anil
Maybe you are looking for
-
IPC:bute in the field catalogue while processing configuration or pricing i
Hi, I get this error (Message Class: PRC_MESSAGES_EXT (Messages for Calling Public Pricing Modules), Message Type: E, Message Number 099, Message variables: Message variables 1-4: IPC:bute in the field catalogue while processing configuration or pric
-
I recently purchased a new iMac with an 1 Terrabyte external drive. I want to transfer my files from my old iMac to the external drive, but I'm afraid that doing that will compromise the use of the external drive on my new iMac. I have not download
-
How do i create a working Yahoo Messenger icon in my email signature?
I've managed to create working icons for Email Twitter LinkedIn Maven But for some reason, Yahoo Messenger doesn't work... Any ideas? Thanks, Pete...
-
White stripe on black printing OfficePro8500
Hi, I was printing my greetings cards, and an white stripe appears on the black printing. I Think that the printer have to be re calibrate, but how to do it. Thanks and happy new year Hubertus
-
Authorization issue with upload functionality
Hi, I have issue with authorization with upload functionality. we have country as authorization relavant field. if we are giving some country authorization to user it is giving authorization error at upload functionality. But if we give all country a