Security:090802 PKI Credential Mapper has got an LDAP exception
Weblogic Server 10.3, Oracle Service Bus, Red Hat Enterprise, AD integration, PKI infrastructure.
I have the small erorr message that somewhere exists LDAP error, but cant understand how to read full text of exception or another additional information.
OSB Security:387078Failed to bind key-pair credential for service key provider Troika.Domain.IC.ClientRegistry.Signature.20090521/IC.CR.WEbServiceUser.ServiceKeyProvider and purpose Encryption: Security:090802PKI Credential Mapper has got an LDAP exception.
This error appears when i tried to browse encryption key from my identity keystore to service key provider.
I had the exact same problem with an Oracle 10g Enterprise 10.2.0.1.0 database used as a security store under OSB 10.3.
Fixed it by dropping the table and recreate it with all VARCHAR256 fields set to VARCHAR2048.
In my case the CN and RN fields where probably the problem but I'll leave all fields to 2048 for now.
Similar Messages
-
PKI Credential mapper problem while migratinthe project from alsb2.5 to 2.6
We are migrating our project from alsb2.5 to alsb 2.6.
While doing this, it is giving conflict like " there should be only one PKI Credentail mapper is allowed'.
How to resolve this issue?
Thnx,
DBRSounds like you have more than one credential mapper configured on your 2.6 domain but ALSB only accept one.
For more details about credential mapper and the migration process, refer to WLS documentation:
http://e-docs.bea.com/wls/docs90/secmanage/providers.html#1205083
Gregory Haardt
ALSB Prg. Manager
[email protected] -
Exception when trying to view a PKI Credential Mapping Provider
Hi all,
I encounter the following issues right after I installed Weblogic 10.0 with ALSB 3.0:
1. I created a new ALSB domain and when I start it, right away I get the following exception:
<Alert> <ALSB Security> <BEA-387068> <There is no PKI credential mapper provider configured in your security realm. Service key provider management will be disabled. Configure a PKI credential mapper provider if you need service provider support. This is typically the case if you have AquaLogic Service Bus proxy services with web service security enabled or outbound 2-way SSL connections.>
2. I go to the WLS console and create a new PKI Credential Mapping Provider. Right after I create a new one, when I click on it to edit it, I get the following error messages:
-- in the web console:
The object that you were viewing has been deleted, either by you or another user. Please make another selection.
-- in the output logs:
<Error> <Console> <BEA-240003> <Console encountered the following error java.lang.ClassNotFoundException: [B
at weblogic.utils.classloaders.GenericClassLoader.findLocalClass(GenericClassLoader.java:286)
at weblogic.utils.classloaders.GenericClassLoader.findClass(GenericClassLoader.java:259)
at weblogic.utils.classloaders.ChangeAwareClassLoader.findClass(ChangeAwareClassLoader.java:54)
at java.lang.ClassLoader.loadClass(ClassLoader.java:306)
at java.lang.ClassLoader.loadClass(ClassLoader.java:251)
at weblogic.utils.classloaders.GenericClassLoader.loadClass(GenericClassLoader.java:179)
at weblogic.utils.classloaders.ChangeAwareClassLoader.loadClass(ChangeAwareClassLoader.java:35)
at org.apache.struts.util.RequestUtils.applicationClass(RequestUtils.java:117)
at com.bea.console.internal.ConsolePageFlowRequestProcessor.createSecondaryForm(ConsolePageFlowRequestProcessor.java:605)
at com.bea.console.internal.ConsolePageFlowRequestProcessor.processActionForm(ConsolePageFlowRequestProcessor.java:574)
at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:202)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.processInternal(PageFlowRequestProcessor.java:556)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.process(PageFlowRequestProcessor.java:853)
at org.apache.beehive.netui.pageflow.AutoRegisterActionServlet.process(AutoRegisterActionServlet.java:631)
at org.apache.beehive.netui.pageflow.PageFlowActionServlet.process(PageFlowActionServlet.java:158)
at com.bea.console.internal.ConsoleActionServlet.process(ConsoleActionServlet.java:241)
at org.apache.struts.action.ActionServlet.doGet(ActionServlet.java:414)
at com.bea.console.internal.ConsoleActionServlet.doGet(ConsoleActionServlet.java:130)
at org.apache.beehive.netui.pageflow.PageFlowUtils.strutsLookup(PageFlowUtils.java:1170)
at com.bea.portlet.adapter.scopedcontent.ScopedContentCommonSupport.executeAction(ScopedContentCommonSupport.java:686)
at com.bea.portlet.adapter.scopedcontent.ScopedContentCommonSupport.renderInternal(ScopedContentCommonSupport.java:266)
at com.bea.portlet.adapter.scopedcontent.StrutsStubImpl.render(StrutsStubImpl.java:107)
(etc)
Does anyone have an idea what's going on? Is there a workaround for this problem?
One other thing to mention is that we are locked into using the WLS 10.0 / ALSB 3.0 versions since we are setting up a staging environment that has to reproduce the production.
Many thanks in advance for any help or pointers!!
Nabres
Edited by: user9234821 on Jun 21, 2011 3:11 PMAs a workaround, you could export your domain configuration from production with wlst ( to create the .py scripts ).
-
SAML Credential Mapper does not support credential type
Has anybody any idea on what could be causing the message below, which is being logged several times?
<[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <1309285937475> <BEA-000000> <SAMLCredentialMapperV2: getCredentials(Subject): getCredentialInternal() called>
<[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <1309285937475> <BEA-000000> <SAMLCredentialMapperV2: getCredentialInternal(): **SAML Credential Mapper does not support credential type: weblogic.UserPassword, returns null**>
Best regards
Update: Forgot to mention this is SOA Suite 11G environment
Edited by: user9501748 on Jun 28, 2011 11:53 AMI've got the same issue too.
My setup is to have one domain acting as both Source and Destination.
For every 10 seconds, I'm seeing 4 of these logs, and the CPU consumption is 100% consistently.
####<2-Jun-2009 11:00:27 o'clock AM EDT> <Debug> <SecuritySAMLCredMap> <MYHOST> <AdminServer> <[ACTIVE] ExecuteThread: '18' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1243954827839> <BEA-000000> <SAMLCredentialMapperV2: getCredentials: Subject initiator>
####<2-Jun-2009 11:00:27 o'clock AM EDT> <Debug> <SecuritySAMLCredMap> <MYHOST> <AdminServer> <[ACTIVE] ExecuteThread: '18' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1243954827839> <BEA-000000> <SAMLCredentialMapperV2: getCredentials(Subject): getCredentialInternal() called>
####<2-Jun-2009 11:00:27 o'clock AM EDT> <Debug> <SecuritySAMLCredMap> <MYHOST> <AdminServer> <[ACTIVE] ExecuteThread: '18' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1243954827839> <BEA-000000> <SAMLCredentialMapperV2: getCredentialInternal(): SAML Credential Mapper does not support credential type: weblogic.UserPassword, returns null>
Does anyone know what's happening? I've got one of the Security Provider = Active Directory, and thus there's no password returning. Could it be the root cause of the problem? -
Null Pointer Exception while configuring SAML Credential Mapper
Hi,
I am trying to set up my customised SAML code for WLS 10.3. To test it , I have created a standalone suite with 2 applications,one as a source where the authentication will be through simple username and password and second as destination where the identity assertion will take place based on token generated in first app.
So to achieve this , I am using a default SAMLCredentialMapperV2 for credential mapping at source site. But While configuring it, the management tab of the credential mapper shows null pointer exception.
Can anyone point out whats wrong or if I am missing on anything?
Steps to create:-
1. Create a security realm
2.Goto security realm ->Provider ->Credential Mapping tab.
3.Create a credential mapper of type SAMLCredentialMapperV2 and with specifications as mentioned in http://www.oracle.com/technetwork/articles/entarch/sso-with-saml3-086457.html
4. Click on the newly created mapper and go to management tab. It throws null pointer exception which is visible on the screen.
Log Entries are as follows:-
<Error> <Console> <BEA-240003> <Console encountered the following error java.lang.NullPointerException
at com.bea.common.security.saml.registry.SAMLPartnerRegistry.<init>(SAMLPartnerRegistry.java:153)
at com.bea.common.security.saml.registry.SAMLRelyingPartyRegistry.<init>(SAMLRelyingPartyRegistry.java:26)
at weblogic.security.providers.saml.SAMLCredentialMapperV2Impl.init(SAMLCredentialMapperV2Impl.java:65)
at weblogic.security.providers.saml.SAMLCredentialMapperV2Impl.listRelyingParties(SAMLCredentialMapperV2Impl.java:81)
at weblogic.security.providers.saml.SAMLCredentialMapperV2MBeanImpl.listRelyingParties(SAMLCredentialMapperV2MBeanImpl.java:206)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at weblogic.management.jmx.modelmbean.WLSModelMBean.invoke(WLSModelMBean.java:437)
at com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.invoke(DefaultMBeanServerInterceptor.java:836)
at com.sun.jmx.mbeanserver.JmxMBeanServer.invoke(JmxMBeanServer.java:761)
at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase$16.run(WLSMBeanServerInterceptorBase.java:449)
at java.security.AccessController.doPrivileged(Native Method)
at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase.invoke(WLSMBeanServerInterceptorBase.java:447)
at weblogic.management.mbeanservers.internal.JMXContextInterceptor.invoke(JMXContextInterceptor.java:268)
at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase$16.run(WLSMBeanServerInterceptorBase.java:449)
at java.security.AccessController.doPrivileged(Native Method)
at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase.invoke(WLSMBeanServerInterceptorBase.java:447)
at weblogic.management.mbeanservers.internal.SecurityInterceptor.invoke(SecurityInterceptor.java:444)
at weblogic.management.jmx.mbeanserver.WLSMBeanServer.invoke(WLSMBeanServer.java:323)
at weblogic.management.mbeanservers.internal.JMXConnectorSubjectForwarder$11$1.run(JMXConnectorSubjectForwarder.java:663)
at java.security.AccessController.doPrivileged(Native Method)
at weblogic.management.mbeanservers.internal.JMXConnectorSubjectForwarder$11.run(JMXConnectorSubjectForwarder.java:661)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
at weblogic.management.mbeanservers.internal.JMXConnectorSubjectForwarder.invoke(JMXConnectorSubjectForwarder.java:654)
at javax.management.remote.rmi.RMIConnectionImpl.doOperation(RMIConnectionImpl.java:1426)
at javax.management.remote.rmi.RMIConnectionImpl.access$200(RMIConnectionImpl.java:72)
at javax.management.remote.rmi.RMIConnectionImpl$PrivilegedOperation.run(RMIConnectionImpl.java:1264)
at java.security.AccessController.doPrivileged(Native Method)
at javax.management.remote.rmi.RMIConnectionImpl.doPrivilegedOperation(RMIConnectionImpl.java:1366)
at javax.management.remote.rmi.RMIConnectionImpl.invoke(RMIConnectionImpl.java:788)
at javax.management.remote.rmi.RMIConnectionImpl_WLSkel.invoke(Unknown Source)
at weblogic.rmi.internal.ServerRequest.sendReceive(ServerRequest.java:174)
at weblogic.rmi.internal.BasicRemoteRef.invoke(BasicRemoteRef.java:222)
at javax.management.remote.rmi.RMIConnectionImpl_1033_WLStub.invoke(Unknown Source)
at javax.management.remote.rmi.RMIConnector$RemoteMBeanServerConnection.invoke(RMIConnector.java:993)
at weblogic.management.jmx.MBeanServerInvocationHandler.doInvoke(MBeanServerInvocationHandler.java:544)
at weblogic.management.jmx.MBeanServerInvocationHandler.invoke(MBeanServerInvocationHandler.java:380)
at $Proxy144.listRelyingParties(Unknown Source)
at com.bea.console.actions.security.providers.SAMLCredentialMapperV2ManagementPartnersTableAction.getSAMLCredentialMapperV2Partners(SAMLCredentialMapperV2ManagementPartnersTableAction.java:60)
at com.bea.console.actions.security.providers.SAMLCredentialMapperV2ManagementPartnersTableAction.getCollection(SAMLCredentialMapperV2ManagementPartnersTableAction.java:42)
at com.bea.console.actions.security.ManagementBaseTableAction.execute(ManagementBaseTableAction.java:82)
at org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:431)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.access$201(PageFlowRequestProcessor.java:97)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor$ActionRunner.execute(PageFlowRequestProcessor.java:2044)
at org.apache.beehive.netui.pageflow.interceptor.action.internal.ActionInterceptors.wrapAction(ActionInterceptors.java:91)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.processActionPerform(PageFlowRequestProcessor.java:2116)
at com.bea.console.internal.ConsolePageFlowRequestProcessor.processActionPerform(ConsolePageFlowRequestProcessor.java:261)
at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:236)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.processInternal(PageFlowRequestProcessor.java:556)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.process(PageFlowRequestProcessor.java:853)
at org.apache.beehive.netui.pageflow.AutoRegisterActionServlet.process(AutoRegisterActionServlet.java:631)
at org.apache.beehive.netui.pageflow.PageFlowActionServlet.process(PageFlowActionServlet.java:158)
at com.bea.console.internal.ConsoleActionServlet.process(ConsoleActionServlet.java:256)
at org.apache.struts.action.ActionServlet.doGet(ActionServlet.java:414)
at com.bea.console.internal.ConsoleActionServlet.doGet(ConsoleActionServlet.java:133)
at org.apache.beehive.netui.pageflow.PageFlowUtils.strutsLookup(PageFlowUtils.java:1199)
at com.bea.portlet.adapter.scopedcontent.ScopedContentCommonSupport.executeAction(ScopedContentCommonSupport.java:686)
at com.bea.portlet.adapter.scopedcontent.ScopedContentCommonSupport.renderInternal(ScopedContentCommonSupport.java:266)
at com.bea.portlet.adapter.scopedcontent.StrutsStubImpl.render(StrutsStubImpl.java:107)
at com.bea.netuix.servlets.controls.content.NetuiContent.preRender(NetuiContent.java:292)
at com.bea.netuix.nf.ControlLifecycle$6.visit(ControlLifecycle.java:428)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:727)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walk(ControlTreeWalker.java:146)
at com.bea.netuix.nf.Lifecycle.processLifecycles(Lifecycle.java:395)
at com.bea.netuix.nf.Lifecycle.processLifecycles(Lifecycle.java:361)
at com.bea.netuix.nf.Lifecycle.runOutbound(Lifecycle.java:208)
at com.bea.netuix.nf.Lifecycle.run(Lifecycle.java:162)
at com.bea.netuix.servlets.manager.UIServlet.runLifecycle(UIServlet.java:388)
at com.bea.netuix.servlets.manager.UIServlet.doPost(UIServlet.java:258)
at com.bea.netuix.servlets.manager.UIServlet.doGet(UIServlet.java:211)
at com.bea.netuix.servlets.manager.UIServlet.service(UIServlet.java:196)
at com.bea.netuix.servlets.manager.SingleFileServlet.service(SingleFileServlet.java:251)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
at com.bea.console.utils.MBeanUtilsInitSingleFileServlet.service(MBeanUtilsInitSingleFileServlet.java:47)
at weblogic.servlet.AsyncInitServlet.service(AsyncInitServlet.java:130)
at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:300)
at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
at weblogic.servlet.internal.RequestEventsFilter.doFilter(RequestEventsFilter.java:27)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.doIt(WebAppServletContext.java:3684)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3650)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:121)
at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2268)
at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2174)
at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1446)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)I've got the same issue too.
My setup is to have one domain acting as both Source and Destination.
For every 10 seconds, I'm seeing 4 of these logs, and the CPU consumption is 100% consistently.
####<2-Jun-2009 11:00:27 o'clock AM EDT> <Debug> <SecuritySAMLCredMap> <MYHOST> <AdminServer> <[ACTIVE] ExecuteThread: '18' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1243954827839> <BEA-000000> <SAMLCredentialMapperV2: getCredentials: Subject initiator>
####<2-Jun-2009 11:00:27 o'clock AM EDT> <Debug> <SecuritySAMLCredMap> <MYHOST> <AdminServer> <[ACTIVE] ExecuteThread: '18' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1243954827839> <BEA-000000> <SAMLCredentialMapperV2: getCredentials(Subject): getCredentialInternal() called>
####<2-Jun-2009 11:00:27 o'clock AM EDT> <Debug> <SecuritySAMLCredMap> <MYHOST> <AdminServer> <[ACTIVE] ExecuteThread: '18' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1243954827839> <BEA-000000> <SAMLCredentialMapperV2: getCredentialInternal(): SAML Credential Mapper does not support credential type: weblogic.UserPassword, returns null>
Does anyone know what's happening? I've got one of the Security Provider = Active Directory, and thus there's no password returning. Could it be the root cause of the problem? -
SAML Credential Mapper Relying Party "Post Form"
Hi,
Has anybody used Custom Post Form for SAML credential Mapper Relying Party.
If so can you pls tell the specs. It is saml V2
I am trying like this in a html
<input type="hidden" name="TARGET " value="ddddd" />
<input type="hidden" name="SAML_AssertionConsumerURL" value="ddddddd" />
<input type="hidden" name="SAML_AssertionConsumerParams" value="homogenousMap" />
<input type="hidden" name="SAML_ITSRequestParams" value="" />
But everytime it gives a Internal server error in the logs
####<Oct 13, 2008 2:16:19 PM PDT> <Debug> <SecuritySAMLService> <pd7000163> <AdminServer> <[ACTIVE] ExecuteThread: '3' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1223932579244> <BEA-000000> <SAMLServlet (samlits): doGet(): Unexpected throwable while handling request, returning INTERNAL_SERVER_ERROR: java.lang.NullPointerException>
I am also not finding any details about samlits servlet.
WEblogic front line support also does not know. No weblogic documentation on the actual implementation.
Thanks
VishnuVishnu, you should also try cross-posting in the WLS-Security forum.
WebLogic Server - Security -
Configuring Credential mapper using WLST script
Is it possible to use a wlst script to define a new credential mapper.i.e.to [perform the following steps:
Check Use cross-domain protocol.
And then fill in the the values of the attributes which follow like remote host remote user and remote password.
I tried using the wlst recording for the same.However got the following message.
A security change to a role, policy, user, group or credential mapping was made, but this change was not recorded.
I was wondering if we can access the security MBeans using WLST.
Please advise.
Thanks in advance.It is possible if you export the properties with:
connect(url='t3://localhost:7001',adminServerName='AdminServer',timeout=60000)
serverConfig()
cd('/')
currentDomainName=cmo.getName()
cd('serverConfig:/SecurityConfiguration/' + currentDomainName + '/Realms/myrealm/CredentialMappers/DefaultCredentialMapper')
prop=Properties()
cmo.exportData('DefaultCreds','/tmp/credentialmapper_properties.txt',prop)Edit them, then import them with:
cmo.importData('DefaultCreds','/tmp/credentialmapper_properties.txt',prop)You can list the Credential Mapper configuration with:
connect(url='t3://localhost:7441',adminServerName='AdminServer',timeout=60000)
serverConfig()
cd('/')
currentDomainName=cmo.getName()
cd('serverConfig:/SecurityConfiguration/' + currentDomainName + '/Realms/myrealm/CredentialMappers/DefaultCredentialMapper')
cursor=cmo.listMappingsByPattern('*',10)
while cmo.haveCurrent(cursor):
# A resource ID looks like: 'type=<remote>, protocol=cross-domain-protocol, remoteHost=testDomain'
current_mapping_resource_id=cmo.getCurrentMappingResourceID(cursor)
cmo.getRemoteUserName(current_mapping_resource_id,'cross-domain')
cmo.advance(cursor)
cmo.close(cursor)See also: [url http://download.oracle.com/docs/cd/E12839_01/web.1111/e13707/security_data_migration.htm]Securing WebLogic Server 11g Release 1 (10.3.1) - Migrating Security Data
Edited by: Mircea Vutcovici on Jun 22, 2011 3:49 PM -
"Please tell where I am wrong in configuring and calling credential mapper?????
I wanted to achieve single sign on using Credential mapping feature of weblogic server.It means using weblogic inner capability.
I thought of getting connected to pointbase server which can act as Enterprise Information System.
I did following steps to achieve single sign on using Weblogic Server Credential mapping feature.
Confuration Phase:
Step 1) I configured Examples as username and Examples as password in pointbase server which will act as my Enterprise information system.
Step 2) I wrote one connector class for connecting to pointbase server.
Step 3) I deploy that connector class.
Step 4) I configured Admin as username and Admin as password in my configured security realm which will act as Weblogic User.
Step 5) I did credential mapping in the connector class for mapping my Weblogic (Admin)
user to EIS(Examples) user.
Calling Phase:
Step 1) I deploy one application to call pointbase server using the connector class.
Step 2) I try to get the connection to pointbase server using the follwing code
getConnection("Admin","Admin");
Where Admin username is my weblogic user mapped to Examples user of point base server whose mapping is already done in the connector class.
I hope it to work for getting the connection."Please tell where I am wrong in configuring and calling credential mapper?????
I wanted to achieve single sign on using Credential mapping feature of weblogic server.It means using weblogic inner capability.
I thought of getting connected to pointbase server which can act as Enterprise Information System.
I did following steps to achieve single sign on using Weblogic Server Credential mapping feature.
Confuration Phase:
Step 1) I configured Examples as username and Examples as password in pointbase server which will act as my Enterprise information system.
Step 2) I wrote one connector class for connecting to pointbase server.
Step 3) I deploy that connector class.
Step 4) I configured Admin as username and Admin as password in my configured security realm which will act as Weblogic User.
Step 5) I did credential mapping in the connector class for mapping my Weblogic (Admin)
user to EIS(Examples) user.
Calling Phase:
Step 1) I deploy one application to call pointbase server using the connector class.
Step 2) I try to get the connection to pointbase server using the follwing code
getConnection("Admin","Admin");
Where Admin username is my weblogic user mapped to Examples user of point base server whose mapping is already done in the connector class.
I hope it to work for getting the connection. -
Security Plugin erro: an error has occurred in the plugin,
When I was using Report Design to connect to the repository (BusinessObjects Enterprise server), I've got an error message.
(Security Plugin erro: an error has occurred in the plugin, but the plugin is unable to return a detailed error message".
Client version: CR Professional, 11.5.8.826
Server: Central Mangement Server: 11.5.8.826
Any suggestion?Please re-post if this is still an issue or purchase a case and have a dedicated support engineer work with your directly
-
Jdev 11g: No credential mapper entry found for password indirection user
Hi,
Ive been trying to deploy an application as described in http://download.oracle.com/docs/cd/E12839_01/web.1111/b31974/bcextservices.htm#ADFFD542
When the application is installed into weblogic, I get the following error:
An error occurred during activation of changes, please see the log for details.
weblogic.application.ModuleException:
java.security.PrivilegedActionException: weblogic.common.ResourceException: java.security.PrivilegedActionException: weblogic.common.ResourceException: No credential mapper entry found for password indirection user=psa_dev for data source psa_devCheck out What does this message mean? thread
-
Whether the fields of a single row in an internal table has got value.
I am doing an archiving report in PS Module.
The table RPSCO has 12 fields which represent each month.The records in the table are based on OBJNR and YEAR
Now i need to check for the latest year which month has some value .If any of the month has got some value i need to take that month.
Sample table given below.
OBJNR year Month1 month2 month3 so on
1)PR00002409 2006 0.00 0.00 664.70- 0.00 0.00 0.00 0.00 0.00 0.00
0.00 0.00 0.00 0.00
2)PR00002409 2005 0.00 0.00 0.00 0.00 0.00 0.00 0.00 0.00 0.00 0.00 48.70 127.20 0.00
In this case the output should be Month3.Because the latest year is 2006 and Month is Month3.Hi Susmita,
You have to use DO VARYING option from field 3 onwards.
Below is the sample program to check whether the field has a value or not.
tables: rpsco.
data: it_rpsco like rpsco occurs 0 with header line.
data: v_wlp type rpsco-wlp00,
v_wtp type rpsco-wtp00,
v_pos type i.
select * from rpsco into table it_rpsco where gjahr = '2007'.
if lines( it_rpsco ) gt 0.
loop at it_rpsco.
clear v_pos.
do 16 times varying v_wlp from it_rpsco-wlp00 next it_rpsco-wlp01
varying v_wtp from it_rpsco-wtp00 next it_rpsco-wtp01.
v_pos = v_pos + 1.
if not v_wlp is initial.
write:/5 v_pos , 35 v_wlp, 70 v_wtp.
exit.
endif.
enddo.
endloop.
endif.
Regards,
Kumar Bandanadham
Edited by: Velangini Showry Maria Kumar Bandanadham on Jun 1, 2009 9:30 AM -
I can not purchase from the iTunes store because of the security question I am I do not know your security question and alternative mail has been hacked
You need to contact Apple. Click here, phone them, and ask for the Account Security team.
(87808) -
I had a USA itunes card in my account and now I have shifted to the UK, I would like to shift my account and change my itunes store to the UK based store but cant do it as itunes card has got some credit left about $1.30. Please help.
You can try contacting iTunes Support and ask them if they can remove the balance from your account so that you can change countries : http://www.apple.com/support/itunes/contact/ - click on Contact iTunes Store Support on the right-hand side of the page, then Purchases, Billing & Redemption
-
We use an add-on in one of our online solutions and we've identified a security vulnerability. The issue has been addressed in our latest add-ons and we would like to know how we may blocklist our previous player through a firefox update?
You can file a bug report to do that request.
http://developer.mozilla.org/en/docs/Bug_writing_guidelines -
Short dump while executing few queries , which has got created on Infoset.
Hi,
We went to BI7.0 upgrade from BW3.x now.
We are getting short dump short dump while executing few queries and work book, which has got created on Infoset.
When i was executing work book where i was geting popup message saying that "Erro ZSD_XST_F00121 is invalid".When i click that message it went to dump.
I was getting this error while executing query on infoset.
We are currently SP Stack 13(Patch level 15).
I found some note 1067918 as per the shortdum,where it is saying that you need to apply SP Stack14(patch level16).
Please some one who had earlier this kind of issue.
I appreciate your answer.Dear Krish,
Yes, It is the patch problem.
We too faced the same issue on Infosets.
Apply SP 15.
Regards,
Ram.
Maybe you are looking for
-
Blue screen on client/must kill session?
About all 3 or 4 month the following problem occurs: The application starts a simple update on a table with only one row, but without commit, to continue in one transaction. Just now the application crashes (without obvious reason) or the client (a P
-
Hi, I am running the BDC on t code FB05 and its running fine in foreground mode , but in background it throws the error Screen not Found. After passig the screen also , then it says that for line item 2 G?l is mandatory. Now how to select the second
-
it happens for both Adobe Acrobat and Foxit phantom.
-
IPhone 4s issues after upgrading to IOS 8
Have few issues after upgrading to iOS 8 - Phone hangs every few hours, reboots automatically - Bluetooth does not work properly (call does not get disconnected or even if disconnected on phone, the car bluetooth shows call is on) - Searching for con
-
PO change output not triggered after deletion of line item
Hello SAP experts, I have one issue with PO output I have created PO with output type & we are outputing through ME9F( 3- Send with application own transaction) Below is the sequence, 1.PO created & outputed thru ME9F 2.Now ,i added the line item in