Self Registration in EP6 on WAS 6.40
Hi all,
Can someone tell me if Self Registration is possible without the use of the "Companies" concept in EP6 on WAS 6.40? I'm certain custom code can be written but I'm just wondering what's available out of the box.
Any thoughts on the level of complexity for the custom solution is welcome as well.
Thanks,
Andrew
Hi,
After thinking more about this, I guess I could just set up the portal to use one Company for all users to enable the Self Registration and workflow. Are there any other side effects that I'm not thinking about by enabling companies?
Thanks,
Andrew
Similar Messages
-
OIM Self Registration without approval
Hi All,
I am very new to OIM, I need to know how to do self registration without an admin approval.
I just gave shot by adding those mandatory fields from the approval form to the self registration form by editing the
formmetadata.xml. but i get a bunch of exceptions and the request itself is not getting registered, i couldnt see any pending approval tasks in the admin screen for that particular self registration.
I went through this post
OIM - auto approval of self registration
From that i could get that i need to create a task adpater and populate the other mandatory fields
which aren't captured in the self registration screen.
But is it the only way of doing it??
Please let me know how to do it (any method).
or any pointers would be helpful.
Thanks in advance.HI Nitesh,
Thanks for the reply,
What i did is I added the mandatory fields to the self registration page, The probllem was with the value which i had passed during the self registration.
For user type, i gave it as "Full-Time Employee" , but the actual value is "Full-Time" when i gave the correct value
it worked.
To summarize, i just added the madatoy fields like org name, user type and role to the sefl registration page
and gave the correct values while registering and it worked.
i am sure i cant live with this for a long time, I have to start work on the adapters.
Thanks. -
CISCO ISE 1.2.0.899 - Self registration email address field Limit
Hi
I was wondering if someone out there can resolve an issue I am seeing, when a user goes to the self registration portal and enters an email address it only allows 24 characters to be entered, in the documentation it states that up to 48 characters can be entered. Is there a setting that i need to change to increase the character limit to above 24.
Thanks
JohnHi Anas
That is not true, I had the same problem with ISE in our Network.
We are running 1.2.0.899, after all the troubleshooting I decided to upgrade the Patch on the ISE.
As part of that I have deployed patch 5, which has resolved the issue.
So please just download patch 5 for the solution.
Regards
Sandy -
E-mail pattern for self registration screen
Hello,
We are using WAS version 7.01 SP3 .
We configured the UME to enable self registration.
The generated password sent via Email and everything working correct.
The only problem is that the user can use wrong E-mail pattern and the creation process will continue
(User will create in the system with wrong E-mail pattern for example - XYZ).
When we tried to create user with wrong E-mail pattern in the standard user creation program it raised error message.
We are using the default E-mail pattern on the Configtool.
Is there any way to stop the self registration process if the user enter wrong E-mail pattern?
Thanks for the help
NirHi,
You can try forcing the application to quit as described here:
+To force an application to close, follow these steps:+
+iPhone or iPod touch running iPhone OS 3.0 or later+
+Press and hold the Sleep/Wake button until the red slider appears. When the red slider appears, release the Sleep/Wake button.+
+Instead of dragging the red slider, press and hold the Home button for six seconds.+
+If the device does not return to the Home screen, see the steps below to restart.+
from: http://support.apple.com/kb/TS1445
If the issue persists, you should try restarting before trying to reset.
You can restart the iPhone by holding the Sleep/Wake button until the red slider appears> then slide to turn off> and turn the iPhone back on by pressing the Sleep/Wake again, as described on page 46 of the iPhone User Guide.
http://manuals.info.apple.com/en/iPhoneUserGuide.pdf
-Jason -
Self Registration error while installing BPC on windows 7
Hi all,
While I am installing BPC NW 7.0 client on my Windows 7(64 bit), I am getting following popup
Self Registration Error
1. C:\WINDOWS\SYSWOW64\asycfilt.dll
The Specified procedure could not be found
The same above is listed for following dll's.
2, msvcirt.dll
3. msvcp60.dll
4. msvcrt.dll
Along with above, it give me following error
5. C:\WINDOWS\SYSWOW64\oleuaut32.dll
Accessed Denied
6. C:\WINDOWS\SYSWOW64\stdole2.dll
Error accessing the OLE registry.
It installed successfully after pressing ok.
Have anyone faced/resolved this issue and what are the effect of above error with respect to functionality of the s/w?
Please help,
Diksha Chopra.Hi Scott,
Thanks for your answer. It was really helpful.
Can you do me a favor and look at my other post if possible.
Error Loading Rate data through Data Manger Pakage
Your help is appreciated.
Regards,
Diksha Chopra. -
OIM 11gR2 - Self Registration Locale and Timezone
Hi,
I would like to prepopulate locale (usr_locale) and timezone (usr_timezone) when a user registers using self registration. I created a PrePopulationAdapter, updated SelfCreateUserDataset.xml in MDS, registered the plugin containing the adapter, restarted OIM, purged cache.. but the adapter is not triggered.
I did the exact same thing for the Role field (which was already using a prepopulation adapter OOTB and I changed the adapter class) and it worked fine.
I'm wondering if those fields (usr_locale and usr_timezone) are not prepopulatable from self registration ?
Is there another way of setting their value automatically (I mean nor the end user, nor the approver filling the field) ?
SelfCreateUserDataset.xml :
<AttributeReference name="Role" attr-ref="Role" type="String" widget="dropdown" length="255" required="true" available-in-bulk="false" lookup-code="Lookup.Users.Role">
<PrePopulationAdapter name="XnetRolePrepopulateAdapter" classname="fr.xxx.XnetRolePrepopulateAdapter"/>
</AttributeReference>
<AttributeReference name="usr_locale" attr-ref="usr_locale" type="String" widget="text" length="80" required="false" available-in-bulk="false">
<PrePopulationAdapter name="XnetLocalePrepopulateAdapter" classname="fr.xxx.XnetLocalePrepopulateAdapter"/>
</AttributeReference>
<AttributeReference name="usr_timezone" attr-ref="usr_timezone" type="String" widget="text" length="100" required="false" available-in-bulk="false" mls="false">
<PrePopulationAdapter name="XnetTimezonePrepopulateAdapter" classname="fr.xxx.XnetTimezonePrepopulateAdapter"/>
</AttributeReference>
Thank you,
GaëlI think you can but that would definitely require a cutom UI using ADF. Following could be the possibility:
- As the user is not yet logged in, so there would be no way to identify as who the user is (patient or doctor) ?
- So you may have one field with drop-down type patient/doctor at the top, once the user selects that field, you can show different attributes there after
- As how to do it, refer to the OIM11G documentation for customizing UI -
Hi,
I am trying to develop a supplier self registration portal using SAP Sourcing (Wave 9). I am unable to edit the product categories on the supplier self registration portal.
How can this be done? Is it possible to add / remove product categories from the web-page?
Kind Regards,
AnshuHi Kushara,
Thanks for your answer but sadly this does not work. On the supplier self registration page, the product categories as a default appears as a check box (boolean type of field) instead of an object reference type of field.
Hence, when i try your suggested approach, it forms a new object reference field instead of adding the product category to the checkbox list.
Also, one strange behavior i noticed was, that i was trying to add translation to the product categories but even that is not being reflected. For instance, i provided a value 'Test' as a German translation to one of the existing product category on the supplier registration page, but when i open the supplier registration page in German, it does not show the value as 'Test' but instead shows the default value.
I am not sure why this is happening.
Could you kindly guide me on this?
Kind Regards,
Anshu -
Roles for user in supplier self-registration
Hello everyone,
I was checking the configuration guide for Strategic Sourcing and for Servece Procurement and I have a doubt.
For supplier self-registration is needed an anonymous user, but in the guide for Strategic Sourcing says that the roles for this user are SAP_EC_BBP_CREATEUSER and SAP_EC_BBP_CREATEVENDOR, however, in the guide for Service Procurement says that the roles are SAP_BC_BASIS_MONITORING and SAP_EC_SUS_ADMIN_VENDOR
What are the right ones?
Thanks,
IváHi,
The user should have the roles: SAP_EC_BBP_CREATEUSER & SAP_EC_BBP_CREATEVENDOR.
This user is maintainted in ROS client BSP service ROS_SELF_REG in Log on Data
with ROS client, user ID and password.
BR,
Disha.
Do reward points for useful answers. -
Activate Supplier Self Registration
Hi all,
I need to know how to activate the link to supplier self registration in portal.
I think i did already all the configuration needed, but the essential i don't know how to do it.
At this moment i have configurated the self registration link (ume_logon_selfreg) but it was a mistake, what i need is the supplier self registration link.
Thank you very much for your help.
Diana
Moved by moderator to the correct forum
Edited by: Hilit Fisch on May 25, 2009 1:54 PMhi,
Try this link:
Re: Supplier Registration, screening on SRM Server 5.0
Re: Supplier Registration Process
https://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/d0bebcc0-9916-2a10-dd92-bea4d034e99d
May its help u -
Self registration - who should I be logged in as when creating the ua access schema?
The documentation is not specific about this, I'm assuming you should login as portal30 or portal30_sso. Could someone please confirm. Thanks.
Step 1 says to start SQL*Plus and login to the database in which the Login Server is installed. From what I have learned, the Login Server is the same as Single Sign On (SSO) Server. So I logged in as portal30_sso to create the schema for portal30_sso_ua.
I am not an Oracle DBA and was not sure of how to create the schema. I learned that all you have to do is create a "portal30_sso_ua" user and the schema gets created automatically. That is what I did.
I was able to get the Self Registration working for Windows NT, but only after correcting 4 bugs with the selfreg.cmd that is run in step 8. So, if you doing this on Windows, reference the following discussion thread for the bug fixes to the script:
http://technet.oracle.com:89/ubb/Forum70/HTML/002208.html.
Good luck. -
Self registration error in OIM-OID-OAM 11g
Hi,
We are using OIM,OID,OAM 11G,in clustering mode.We are facing a problem on self registration process.
For every alternate self registration request,system is throwing an error.After the self register user request has got approveod,I have checked the request status in 'advanced' panel its saying ; " IAM-3051103:The create operation on user entity failed in action stage.:"
This is really a big mysterious thing to me,1st self registration was successful,2nd was throwing an error , again 3rd was success ,4th was failure , 5th was success and 6th was failure.
Below is the corresponding error message in log file for the failed request.
<Mar 21, 2011 2:22:30 PM CDT> <Error> <oracle.iam.identity.usermgmt.impl.handlers.create> <IAM-3051103> <The create operation on user entity failed in action stage.
oracle.iam.platform.entitymgr.MissingRequiredAttributeException: [act_key]
at oracle.iam.platform.entitymgr.impl.EntityManagerImpl.checkRequired(EntityManagerImpl.java:1448)
at oracle.iam.platform.entitymgr.impl.EntityManagerImpl.createEntity(EntityManagerImpl.java:261)
at oracle.iam.platform.entitymgr.impl.EntityManagerImpl.createEntity(EntityManagerImpl.java:237)
at oracle.iam.identity.usermgmt.impl.handlers.create.CreateUserActionHandler.execute(CreateUserActionHandler.java:141)
at oracle.iam.identity.usermgmt.impl.handlers.create.CreateUserActionHandler.execute(CreateUserActionHandler.java:68)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at oracle.iam.platform.kernel.impl.EventHandlerDynamicProxy.invoke(EventHandlerDynamicProxy.java:30)
at $Proxy235.execute(Unknown Source)
at oracle.iam.platform.kernel.impl.OrchProcessData.runActionEvents(OrchProcessData.java:1028)
at oracle.iam.platform.kernel.impl.OrchProcessData.runEvents(OrchProcessData.java:637)
at oracle.iam.platform.kernel.impl.OrchProcessData.executeEvents(OrchProcessData.java:220)
at oracle.iam.platform.kernel.impl.OrchestrationEngineImpl.resumeProcess(OrchestrationEngineImpl.java:669)
at oracle.iam.platform.kernel.impl.OrchestrationEngineImpl.resumeProcess(OrchestrationEngineImpl.java:716)
at oracle.iam.platform.kernel.impl.OrhestrationAsyncTask.execute(OrhestrationAsyncTask.java:108)
at oracle.iam.platform.async.impl.TaskExecutor.executeUnmanagedTask(TaskExecutor.java:100)
at oracle.iam.platform.async.impl.TaskExecutor.execute(TaskExecutor.java:70)
at oracle.iam.platform.async.messaging.MessageReceiver.onMessage(MessageReceiver.java:68)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at com.bea.core.repackaged.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:310)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149)
at com.bea.core.repackaged.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:89)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
at com.bea.core.repackaged.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
at $Proxy428.onMessage(Unknown Source)
at weblogic.ejb.container.internal.MDListener.execute(MDListener.java:466)
at weblogic.ejb.container.internal.MDListener.transactionalOnMessage(MDListener.java:371)
at weblogic.ejb.container.internal.MDListener.onMessage(MDListener.java:327)
at weblogic.jms.client.JMSSession.onMessage(JMSSession.java:4659)
at weblogic.jms.client.JMSSession.execute(JMSSession.java:4345)
at weblogic.jms.client.JMSSession.executeMessage(JMSSession.java:3821)
at weblogic.jms.client.JMSSession.access$000(JMSSession.java:115)
at weblogic.jms.client.JMSSession$UseForRunnable.run(JMSSession.java:5170)
at weblogic.work.SelfTuningWorkManagerImpl$WorkAdapterImpl.run(SelfTuningWorkManagerImpl.java:528)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
>
<Mar 21, 2011 2:22:30 PM CDT> <Error> <oracle.iam.platform.entitymgr.provider.ldap> <IAM-0042004> <An error occurred while un-reserving the user in LDAP, and the corresponding error is - java.lang.NullPointerException>
<Mar 21, 2011 2:22:30 PM CDT> <Warning> <oracle.iam.identity.usermgmt.impl.handlers.create> <BEA-000000> <null>
Any help would be really appreciated.
Thanks.Hi,
I am assuming in clustered environment you are having two instances running.
It must be an issue with a single server,,because the problem is intermittent.
To see which server is causing problem....just perform the following steps:
1) Stop server1 and keep running server2..and fire new registration request...
2) stop server 2..and keep running server1.....and fire new registration request.
Using above, atleast you can see which server is causing the problem...
Regards,
J
Edited by: J_IDM on Mar 21, 2011 10:52 PM -
Self-registration auto populate/save approver values
Hi,
From OOTB scenario for Self Registration in OIM 9.1.x, after submitting the user registration request, approver needs to provide ‘Organization Name’ (i.e., Xellerate Users) before approving.
We created an ‘Organizations.Organization Name’ field in Self registration form itself (i.e., in Form name="SelfRegistrationUserForm"> tag in FormMetaData.XML). Now in self-registration, this value is getting auto-populated into approver user profile page (<Form name="SelfRegistrationApprovalForm"> in FormMetaData.xml). But still approver needs to submit the values (i.e.,click on ‘update’ button) before approving. I think we need to set some task to complete, we checked in all provisioning/approval process tasks for self-registration, but not working.
Can anyone help us in suppressing the submit process (i.e.,click on ‘update’ button). Our requirement is the approver should only ‘approve/deny’, no other step is required?
- Kalyan Mutya.did you try updating the request with the organization name and the role after the request is submitted.
updateRegistrationUserDetails(long pnRequestKey, java.util.Map poAttributes)
Updates the request's data with the values passed.
you mentioned that you had added the org name and role name to the self reg form, and it didnt work with that. Was the org name and role getting displayed in the table when you went to the requestDetails Screen for that request? If yes, then all you need to do is, attach to the "Approve" task the adapter tcCompleteTask and you should no longer be prompted for any approval for self reg requests. -
Self-registration and the WWSSO_API_USER_ADMIN package
I am using the wwsso_api_user_admin package to build a self registration JPDK portlet for my client to be run on the Portal Welcome page and I have a few questions. Just so you know, I am using Oracle 8.1.7.1.1 and Oracle Portal 3.0.9.8.2 all running on Win 2000.
1. The package spec ssoumgt.pks is not clear as to which warning codes and exceptions can be returned or raise from create_user. All the other procedures in that package have explicit comments about which warnings and/or exceptions can possibly occur, but create_user does not. It makes sense that it would return OK_SO_FAR and DUP_USERNAME, but are there any other return codes and/or exceptions?
2. The package spec ssoumgt.pks also states that the create_user procedure "will raise an exception if a dupicate user is created." During my unit testing, I only recieve a DUP_USERNAME warning when I try to register a username twice. Is there a similar exception, and if so, what causes it to be raised? The phrase in the spec also makes it sound like the duplicate username is created anyway before the exception or warning is returned. I suspect that the package has change, but someone forgot to update the comments in the package spec. Can you clarify this?
3. In Portal, under Login Server Administration, I have set the Login Server configuration to disallow passwords to be the same as the user name and required passwords to contain at least one numeric digit and one character. However, these restrictions are not enforced by the create_user procedure in the wwsso_api_user_admin package. I can even supply a NULL password and the account is created in the login server. Is this a bug or am I not getting something?
Thanks,
Dennisare you working with 9iAS portals?
portal_sso (or portal30_sso) schema was used to be in the 9iAS system. in the 10g family, it was replaced by orasso which resides in the infrastructure db.
AMN -
Self registration with Approval
Hi,
I need to understand how this self registration with approval works. What we need in something on these lines
user self registers -> approver approves -> user gets access to portal
Can i create a user without any role assigned the him and when the approver approves, automatically some pre-designated role gets assgined to the user? I want my approver to just click on approve YES and not actually get into UME stuff.
Please help
-AlpanaThanks for the reply Michael.
Yes, i have already gone thru company based self registration. But it does not specify the role assignment part :(. What i read was ok ... you register then u get assigned to the portal as guest user and then if approver approves the request the user becomes a COMPANY user. But then when the approver approves the request, does he assign the company related roles to the user? Or can that be coded somewhere?
Please help.
-Regards,
Alpana -
Portal authentication failing intermittently post self registration
We are in the process of upgrading from EP6 to EP7 and have hit a critical authentication problem that is proving difficult to diagnose and resolve.
Our self registration process leads straight into user logon:
1) the user fills in the registration form with their user ID, password etc and selects Submit which creates the user ID in our R/3 user store
2) the user is presented with text informing them that their registration has been successful and a Proceed button which when selected authenticates them with the portal with their newly created user ID
Step 2) above is working intermittently in our EP7 system - sometimes the process works exactly as expected others an exception is raised (com.sap.security.core.logon.imp.UMELoginException: USER_AUTH_FAILED).
It seems as though the cause is that the user creation process has not completed fully before the logon step.
We tried implementing a wait step (10 seconds) following selection of the Proceed button which reduced the incidence rate of the problem but didn't cure it entirely.
A possible contributing factor is hardware performance as we are testing the upgrade on an impact analysis system which is not as efficient as our live portal landscape.
I've pasted the code which performs the authentication and extracts from the DIAGTOOL portal logs below which show the login module configuration (SAP standard I believe).
Any help/advice what to try next would be greatly appreciated as we are running out of ideas.
Thanks,
Alan
The following code performs the authentication and redirection to the portal user's home page:
public void onRedirect(Event event) throws PageException {
getBean();
//Get resource bundle
ResourceBundle rbSetup =
ResourceBundle.getBundle(
"setup",
((IPortalComponentRequest) this.getRequest()).getLocale());
ILogonAuthentication logonAuthentication =
UMFactory.getLogonAuthenticator();
HttpServletRequest req =
((IPortalComponentRequest) this.getRequest())
.getServletRequest();
HttpServletResponse res =
(IPortalComponentRequest) this
.getRequest())
.getServletResponse(
true);
req.setAttribute(
ILoginConstants.LOGON_UID_ALIAS,
SelfRegBean.getLogonUid());
req.setAttribute(
ILoginConstants.LOGON_PWD_ALIAS,
SelfRegBean.getPassword());
Subject subject = null;
try {
subject = logonAuthentication.logon(req, res, AUTHSCHEME);
if (null != subject) {
res.sendRedirect(rbSetup.getString("REDIRECT_URL"));
} catch (LoginException e) {
SelfRegBean.setError(rb.getString(LOGIN_FAILED));
} catch (IOException e) {
SelfRegBean.setError(rb.getString(REDIRECT_FAILED));
Full exception thrown when the authentication process fails:
com.sap.security.core.logon.imp.UMELoginException: USER_AUTH_FAILED at com.sap.security.core.logon.imp.SAPJ2EEAuthenticator.logon(SAPJ2EEAuthenticator.java:949) at uk.ac.ncl.SelfRegistration$SelfRegistrationDynPage.onRedirect(SelfRegistration.java:507) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) at java.lang.reflect.Method.invoke(Method.java:324) at com.sapportals.htmlb.page.DynPage.doProcessCurrentEvent(DynPage.java:172) at com.sapportals.htmlb.page.PageProcessor.handleRequest(PageProcessor.java:115) at com.sapportals.portal.htmlb.page.PageProcessorComponent.doContent(PageProcessorComponent.java:134) at com.sapportals.portal.prt.component.AbstractPortalComponent.serviceDeprecated(AbstractPortalComponent.java:209) at com.sapportals.portal.prt.component.AbstractPortalComponent.service(AbstractPortalComponent.java:114) at com.sapportals.portal.prt.core.PortalRequestManager.callPortalComponent(PortalRequestManager.java:328) at com.sapportals.portal.prt.core.PortalRequestManager.dispatchRequest(PortalRequestManager.java:136) at com.sapportals.portal.prt.core.PortalRequestManager.dispatchRequest(PortalRequestManager.java:189) at com.sapportals.portal.prt.component.PortalComponentResponse.include(PortalComponentResponse.java:215) at com.sapportals.portal.prt.pom.PortalNode.service(PortalNode.java:645) at com.sapportals.portal.prt.core.PortalRequestManager.callPortalComponent(PortalRequestManager.java:328) at com.sapportals.portal.prt.core.PortalRequestManager.dispatchRequest(PortalRequestManager.java:136) at com.sapportals.portal.prt.core.PortalRequestManager.dispatchRequest(PortalRequestManager.java:189) at com.sapportals.portal.prt.core.PortalRequestManager.runRequestCycle(PortalRequestManager.java:753) at com.sapportals.portal.prt.connection.ServletConnection.handleRequest(ServletConnection.java:240) at com.sapportals.portal.prt.dispatcher.Dispatcher$doService.run(Dispatcher.java:524) at java.security.AccessController.doPrivileged(Native Method) at com.sapportals.portal.prt.dispatcher.Dispatcher.service(Dispatcher.java:407) at javax.servlet.http.HttpServlet.service(HttpServlet.java:853) at com.sap.engine.services.servlets_jsp.server.servlet.InvokerServlet.service(InvokerServlet.java:156) at javax.servlet.http.HttpServlet.service(HttpServlet.java:853) at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:401) at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:266) at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:386) at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:364) at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:1039) at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:265) at com.sap.engine.services.httpserver.server.Client.handle(Client.java:95) at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:175) at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33) at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41) at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37) at java.security.AccessController.doPrivileged(Native Method) at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:102) at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:172) -
Key log extracts from DIAGTOOL:
Exception on login:
[EXCEPTION]
com.sap.security.core.server.userstore.UserstoreException: Could not refresh user postsp15p
Caused by: com.sap.security.api.NoSuchUserAccountException: USER_AUTH_FAILED: User account for logonid "postsp15p" not found!
LOGIN.FAILED
User: N/A
Authentication Stack: ticket
Login Module Flag Initialize Login Commit Abort Details
1. com.sap.security.core.server.jaas.EvaluateTicketLoginModule SUFFICIENT ok false true
#1 ume.configuration.active = true
2. com.sap.engine.services.security.server.jaas.BasicPasswordLoginModule REQUISITE ok exception true Authentication did not succeed.
3. com.sap.security.core.server.jaas.CreateTicketLoginModule OPTIONAL ok true
#1 ume.configuration.active = true
com.sap.security.core.logon.imp.UMELoginException:
ObjectID handed over is 'null'!
Guest | LOGIN.ERROR | null | | Login Method=[uidpwdlogon], UserID=[null], IP Address=[10.64.65.191], Reason=[Authentication did not succeed.]
USER_AUTH_FAILEDWe are in the process of upgrading from EP6 to EP7 and have hit a critical authentication problem that is proving difficult to diagnose and resolve.
Our self registration process leads straight into user logon:
1) the user fills in the registration form with their user ID, password etc and selects Submit which creates the user ID in our R/3 user store
2) the user is presented with text informing them that their registration has been successful and a Proceed button which when selected authenticates them with the portal with their newly created user ID
Step 2) above is working intermittently in our EP7 system - sometimes the process works exactly as expected others an exception is raised (com.sap.security.core.logon.imp.UMELoginException: USER_AUTH_FAILED).
It seems as though the cause is that the user creation process has not completed fully before the logon step.
We tried implementing a wait step (10 seconds) following selection of the Proceed button which reduced the incidence rate of the problem but didn't cure it entirely.
A possible contributing factor is hardware performance as we are testing the upgrade on an impact analysis system which is not as efficient as our live portal landscape.
I've pasted the code which performs the authentication and extracts from the DIAGTOOL portal logs below which show the login module configuration (SAP standard I believe).
Any help/advice what to try next would be greatly appreciated as we are running out of ideas.
Thanks,
Alan
The following code performs the authentication and redirection to the portal user's home page:
public void onRedirect(Event event) throws PageException {
getBean();
//Get resource bundle
ResourceBundle rbSetup =
ResourceBundle.getBundle(
"setup",
((IPortalComponentRequest) this.getRequest()).getLocale());
ILogonAuthentication logonAuthentication =
UMFactory.getLogonAuthenticator();
HttpServletRequest req =
((IPortalComponentRequest) this.getRequest())
.getServletRequest();
HttpServletResponse res =
(IPortalComponentRequest) this
.getRequest())
.getServletResponse(
true);
req.setAttribute(
ILoginConstants.LOGON_UID_ALIAS,
SelfRegBean.getLogonUid());
req.setAttribute(
ILoginConstants.LOGON_PWD_ALIAS,
SelfRegBean.getPassword());
Subject subject = null;
try {
subject = logonAuthentication.logon(req, res, AUTHSCHEME);
if (null != subject) {
res.sendRedirect(rbSetup.getString("REDIRECT_URL"));
} catch (LoginException e) {
SelfRegBean.setError(rb.getString(LOGIN_FAILED));
} catch (IOException e) {
SelfRegBean.setError(rb.getString(REDIRECT_FAILED));
Full exception thrown when the authentication process fails:
com.sap.security.core.logon.imp.UMELoginException: USER_AUTH_FAILED at com.sap.security.core.logon.imp.SAPJ2EEAuthenticator.logon(SAPJ2EEAuthenticator.java:949) at uk.ac.ncl.SelfRegistration$SelfRegistrationDynPage.onRedirect(SelfRegistration.java:507) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) at java.lang.reflect.Method.invoke(Method.java:324) at com.sapportals.htmlb.page.DynPage.doProcessCurrentEvent(DynPage.java:172) at com.sapportals.htmlb.page.PageProcessor.handleRequest(PageProcessor.java:115) at com.sapportals.portal.htmlb.page.PageProcessorComponent.doContent(PageProcessorComponent.java:134) at com.sapportals.portal.prt.component.AbstractPortalComponent.serviceDeprecated(AbstractPortalComponent.java:209) at com.sapportals.portal.prt.component.AbstractPortalComponent.service(AbstractPortalComponent.java:114) at com.sapportals.portal.prt.core.PortalRequestManager.callPortalComponent(PortalRequestManager.java:328) at com.sapportals.portal.prt.core.PortalRequestManager.dispatchRequest(PortalRequestManager.java:136) at com.sapportals.portal.prt.core.PortalRequestManager.dispatchRequest(PortalRequestManager.java:189) at com.sapportals.portal.prt.component.PortalComponentResponse.include(PortalComponentResponse.java:215) at com.sapportals.portal.prt.pom.PortalNode.service(PortalNode.java:645) at com.sapportals.portal.prt.core.PortalRequestManager.callPortalComponent(PortalRequestManager.java:328) at com.sapportals.portal.prt.core.PortalRequestManager.dispatchRequest(PortalRequestManager.java:136) at com.sapportals.portal.prt.core.PortalRequestManager.dispatchRequest(PortalRequestManager.java:189) at com.sapportals.portal.prt.core.PortalRequestManager.runRequestCycle(PortalRequestManager.java:753) at com.sapportals.portal.prt.connection.ServletConnection.handleRequest(ServletConnection.java:240) at com.sapportals.portal.prt.dispatcher.Dispatcher$doService.run(Dispatcher.java:524) at java.security.AccessController.doPrivileged(Native Method) at com.sapportals.portal.prt.dispatcher.Dispatcher.service(Dispatcher.java:407) at javax.servlet.http.HttpServlet.service(HttpServlet.java:853) at com.sap.engine.services.servlets_jsp.server.servlet.InvokerServlet.service(InvokerServlet.java:156) at javax.servlet.http.HttpServlet.service(HttpServlet.java:853) at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:401) at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:266) at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:386) at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:364) at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:1039) at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:265) at com.sap.engine.services.httpserver.server.Client.handle(Client.java:95) at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:175) at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33) at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41) at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37) at java.security.AccessController.doPrivileged(Native Method) at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:102) at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:172) -
Key log extracts from DIAGTOOL:
Exception on login:
[EXCEPTION]
com.sap.security.core.server.userstore.UserstoreException: Could not refresh user postsp15p
Caused by: com.sap.security.api.NoSuchUserAccountException: USER_AUTH_FAILED: User account for logonid "postsp15p" not found!
LOGIN.FAILED
User: N/A
Authentication Stack: ticket
Login Module Flag Initialize Login Commit Abort Details
1. com.sap.security.core.server.jaas.EvaluateTicketLoginModule SUFFICIENT ok false true
#1 ume.configuration.active = true
2. com.sap.engine.services.security.server.jaas.BasicPasswordLoginModule REQUISITE ok exception true Authentication did not succeed.
3. com.sap.security.core.server.jaas.CreateTicketLoginModule OPTIONAL ok true
#1 ume.configuration.active = true
com.sap.security.core.logon.imp.UMELoginException:
ObjectID handed over is 'null'!
Guest | LOGIN.ERROR | null | | Login Method=[uidpwdlogon], UserID=[null], IP Address=[10.64.65.191], Reason=[Authentication did not succeed.]
USER_AUTH_FAILED
Maybe you are looking for
-
I was trying to purchase something in an app that I am using but received the error, is this issue stemming from apple or the app? Or my payment option. The app is puzzles and dragons
-
How do you make report selection variant the default selection varaint?
Hello all, I know how to create a Selection Variant for reoprts and I know how to create a User Variable that defaullts field values for a specific user. But can anyone tell me how do you have a specific Report Selection Variant Default for everyone
-
Classpath Issue - but JAR file is in the classpath
I'm having an issue getting a JAVA Application Client to run and would welcome any suggestions or input to resolve this problem. I'm not a developer, just the builder/deployer of the applications. There are two developers looking at this problem too,
-
Dear Gurus We are working in Online Application, and certain peak time our database activity increases and more than 1100 users login. ( checked in view v$session and v$parameter ) Process parameter value = 1100 sessions paramter value = 1215 OS : Wi
-
SAP Fiori - Transports Dev to QA/Prod issues (Activate and Maintain Service)
Hi All, We have configured and activated Fiori - PO and PR scenarios in development environment using Central Hub Architecture (Gateway-Backend system). It is working great. However, we are facing an issue while transporting the configuration bet