Webcenter and standard LDAP connection

I am trying to create a webcenter application that used LDAP authentication.
I do not have much ADF experience so i really don't know were to start... i read some documentation but it is so overwhelming i don't know where to start.... THere is security in ADF, webcenter, weblogic server,... i really don't know were to configure what.
THis is what i curently have done (don't know if i'm on the right track...)
In the weblogic server i added an LDAP provider in de security realm. THis is working just fine. WHen i look at the users, the users from my ldap are listed and the groups are also their. Can i use these users to login from my webcenter application or do i have to link them in another way?

You can use those users to login to WebCenter. For Oracle Discussions you have to rerun the setup tool to have it running under the same LDAP.
For more details see [http://download.oracle.com/docs/cd/E12839_01/webcenter.1111/e12405/wcadm_security.htm#BGBGGJJF] .
Edited by: George Maggessy on Aug 24, 2009 1:19 PM

Similar Messages

I'm looking for some help connecting linksys IP Cameras to my home network to monitor my property when I'm travelling. I used to do this with linksys WAPS, but since I've discarded all my old linksys networking and standardized on airport, I can't get the

I'm looking for some help connecting linksys IP Cameras to my home network to monitor my property when I'm travelling. I used to do this with linksys WAPS, but since I've discarded all my old linksys networking and standardized on airport, I can't get these things working. I know that I have to identify my camera through the DHCP table and set up port forwarding and there is the problem.
My network consists of 4 base stations set up in a roaming network - same network name and passwords. I need to do it this way so I don't have to switch network when I move from one side of the house to the other, go to the cabana, or my shop in the barn. The network works pretty well since I went to a roaming set up. Good performance, yata, yata, yata.
However, the roaming network requires the AEBS's to be set up in bridge mode, rather than sharing an ip address. When the AEBS is set to bridge mode, you don't see a DCHP table or have the ability to identify your IP Cam through the AEBS - and hence, no port forwarding.
I am able to identify and set up my Linksys IP Cam by locating the ip address on my FIOS router, even though, it's plugged into an AEBS. I set it up, see the video, remove the ethernet cable from the IP Cam, restart - and I can't get to it from an AEBS. In researching this, it appears, I should be setting up the AEBS to "share an IP Address", going to the DHCP table and identifying the camera's IP address and setting up port forwarding. However, you don't see any of the DHCP or port forwarding options in Airport Network Utility when configuring in bridge mode.
I'm hoping I'm missing something here and that the solution isn't to set it up at the FIOS router level, but I'm beginning to think that's my only hope. What concerns me there is that I should be able to see the IP cam on the network without port forwarding since I'm not coming from outside, and I can't even do this unless it's connected hard wire.
I'd appreciate any insight into this that anyone might have. I've hit the wall with what I know.
Thanks.

In a roaming network, your "main" router is the device that would require port mapping/forwarding to be configured in order to access the IP camera from the Internet. This router is also the one that would be provide the private IP address for the camera which you will want to be a static one.
So as you described your network, the IP cameras should be getting an IP address or you assigned it a static one and this is the address that you would enter in the Private IP address (or equivalent depending on the router used) field when setting up port mapping.
If you are not able to access this camera from the local network, then this should be troubleshot first.

How to disable SSLv3 and keep only TLS for LDAP connection.

Hi,
I'm planning to keep only TLSv1.2 for LDAP connections.
I tried to set LDAP_OPT_SSL_INFO in LDAP Session Options using a SecPkgContext_ConnectionInfo Structure with dwProtocol SP_PROT_TLS1_2_CLIENT(as described here - https://social.msdn.microsoft.com/Forums/en-US/7544226d-97e1-4dae-a377-e382c2281e91/how-to-set-up-tls-in-ldap-connection?forum=vcgeneral),
but it returns LDAP_PARAM_ERROR.
I tried to call this function directly after ldap_sslinit/ldap_init and before ldap_connect() - without success, I tried to use other parameters with default values, I tried to initialize them by 0/other possible values - and also no success.
How I can do this?
Thanks for your advices.

LDAP_PARAM_ERROR
https://msdn.microsoft.com/en-us/library/aa367026(v=vs.85).aspx

Ldap connection with weblogic console and authentification with java

Hello,
I want that my web application use ldap authentification for users and that all parameters (host, port, base, ...) are configured by weblogic console.
I managed to do it by security-->realms-->.... , but now, I want to perform authentification in my java code.
I don't know how realized it because I don't know how use my ldap connection in java code without redefine parameters into my code...
can anyone help me please?
thanks a lot for your help.

Hey,
on a windows server system you have to put the target system CA Certificate in the local Trusted System Certificate Store of Microsoft Server. Then the connection should work.
On a Java System you have to put the CA in the Key Storage of the SAP System.
I think on Unix you could use the SAPCRYPTOLIB to place the CA in the abap system.
Kind regards,
Sven Walter

Webcenter and Web 2.0

What is the relationship between webcenter and Web 2.0?
How can I publish one rich text portlet.mean only after one will approave it's content will go live?

Web 2.0 is not a specific software or standard or something like that. It is just a brand for a new level of providing and using web based services. The end user will more and more take control over information and data. Think of blogs, wikis, forums, and platforms like youtube or myspace (just to name some examples, there are lot more). The service provider will offer services but consuming these services is up to the end user (Mash ups). With WebCenter Suite you are able to provide these services since specific solutions like Wiki, Forums, Presence & Chat and so on are part of the suite.
The question for RT Editing should be connected with the service you want to provide. Usually Content editing is a part of web content Management. It depends on the requirements whether to integrate a content store or full blown Web CMS. The RTE Portlet is just a sample portlet implementation and doesn't have much to do with a content integration.

No LDAP connection available

Hi,
We are developing a Webcenter portal application using Webcenter 11g along with UCM 11g.
We have integrated the Weblogic with external LDAP(i.e) we r not using the default LDAP comes with Weblogic
We have also integrated the whole set up with OAM. We are using RIDC APi to check-in/update/fetch the content from UCM. We are facing following issue,
1. We are able to login to UCM Admin console and check-in the content. But we are unable search and check-out the content via UCM Admin cosole . We are getting the below exception,
Caused by: oracle.stellent.ridc.protocol.ServiceException: Unable to retrieve search results. Unable to execute service method 'getPreferredLanguage'. oracle.security.idm.IMException: oracle.ods.virtualization.service.VirtualizationException: oracle.ods.virtualization.engine.util.DirectoryException: LDAP Error 1 : No LDAP connection available to process request for DN: cn=orcladmin.. oracle.ods.virtualization.service.VirtualizationException: oracle.ods.virtualization.engine.util.DirectoryException: LDAP Error 1 : No LDAP connection available to process request for DN: cn=orcladmin.. oracle.ods.virtualization.engine.util.DirectoryException: LDAP Error 1 : No LDAP connection available to process request for DN: cn=orcladmin.. javax.naming.NamingException: No LDAP connection available to process request for DN: cn=orcladmin..
2. Also we are getting the same exception when we try to check-in/update/fetch the content from the portal application via RIDC.
Is there any config is missing or else as external LDAP is configured is there any configuration required at UCM end as well as in RIDC end
Thanks in advance

Hi ,
I am getting the same exception.Have you got the solution for this.
Regards;
Vinay

Please Help - To keep LDAP connection alive

Hi,
I have used the below function to communicate with LDAP which I have taken and modified from one of the posts in this forum.
My issue is, each time the function opens a connection, search and closing the connection and its seriously affects the performance.
I hope we can resolve this by keeping the connection alive. As I am new to this concept, I am not sure how to do this.
It would be great, if some one help me to keep the connection alive for the below function. Thanks in advance.
create or replace FUNCTION <name> (loginname VARCHAR2)
RETURN NUMBER
IS
-- Adjust as necessary.
l_ldap_host VARCHAR2(256) := '';
l_ldap_port VARCHAR2(256) := '';
l_ldap_user VARCHAR2(256) := '';
l_ldap_passwd VARCHAR2(256) := '';
l_ldap_base VARCHAR2(256) := '';
l_retval PLS_INTEGER;
l_session DBMS_LDAP.session;
l_attrs DBMS_LDAP.string_collection;
l_message DBMS_LDAP.message;
l_filter varchar2(35):='xxxx='|| loginname;
l_count NUMBER:=0;
BEGIN
-- Choose to raise exceptions.
DBMS_LDAP.USE_EXCEPTION := TRUE;
-- Connect to the LDAP server.
l_session := DBMS_LDAP.init(hostname => l_ldap_host,portnum => l_ldap_port);
l_retval := DBMS_LDAP.simple_bind_s(ld => l_session,dn => l_ldap_user,passwd => l_ldap_passwd);
-- Get attribute
l_attrs(1) := 'xxxx';
l_retval := DBMS_LDAP.search_s(ld => l_session, base => l_ldap_base, scope => DBMS_LDAP.SCOPE_SUBTREE, filter => l_filter, attrs => l_attrs, attronly => 0, res => l_message);
l_count:=DBMS_LDAP.count_entries(ld => l_session, msg => l_message);
-- Disconnect from the LDAP server
l_retval := DBMS_LDAP.unbind_s(ld => l_session);
return l_count;
EXCEPTION
WHEN OTHERS THEN
dbms_output.put_line('Error :'||SQLERRM);
return 0;
END <fun name>;
Thanks,
Praveen
Edited by: 920577 on Mar 13, 2012 9:40 AM
Edited by: 920577 on Mar 13, 2012 9:41 AM

The basic template looks as follows:
SQL> create or replace package Foo as
2
3 procedure LdapLogoff;
4 function GetData( empName varchar2 ) return number;
5
6 end;
7 /
Package created.
SQL>
SQL> create or replace package body Foo as
2
3 isLoggedOn boolean;
4
5 procedure LdapLogon is
6 begin
7          DBMS_OUTPUT.put_line( '..running logon()' );
8          isLoggedOn := true;
9 end;
10
11 procedure LdapLogoff is
12 begin
13          DBMS_OUTPUT.put_line( '..running logoff()' );
14          isLoggedOn := false;
15 end;
16
17 function GetData( empName varchar2 ) return number is
18 begin
19          if not isLoggedOn then
20                  LdapLogon();
21          end if;
22
23          DBMS_OUTPUT.put_line( '..running GetData() for '||empName );
24          return(
25                  round(DBMS_RANDOM.Value(1,100))
26          );
27 end;
28
29
30 --// main()
31 begin
32          DBMS_OUTPUT.put_line( 'Package Foo loaded into memory' );
33          isLoggedOn := false;
34 end;
35 /
Package body created.
SQL>
SQL>
SQL> select empno, ename, Foo.GetData(ename) as ID from emp order by empno;
     EMPNO ENAME              ID
      7369 SMITH              23
      7499 ALLEN              47
      7521 WARD               88
      7566 JONES              71
      7654 MARTIN             91
      7698 BLAKE              28
      7782 CLARK              92
      7788 SCOTT              91
      7839 KING               48
      7844 TURNER             89
      7876 ADAMS              64
      7900 JAMES              16
      7902 FORD               18
      7934 MILLER             35
14 rows selected.
Package Foo loaded into memory
..running logon()
..running GetData() for SMITH
..running GetData() for ALLEN
..running GetData() for WARD
..running GetData() for JONES
..running GetData() for MARTIN
..running GetData() for BLAKE
..running GetData() for CLARK
..running GetData() for SCOTT
..running GetData() for KING
..running GetData() for TURNER
..running GetData() for ADAMS
..running GetData() for JAMES
..running GetData() for FORD
..running GetData() for MILLER
SQL>
SQL> select empno, ename, Foo.GetData(ename) as ID from emp where rownum = 1;
     EMPNO ENAME              ID
      7369 SMITH               9
..running GetData() for SMITH
SQL>
// call Foo.Logoff manually when done, or leave it to
// Oracle to close and release resources when the
// session terminates

IBM WPS: Error While Creating App and Int Server Connections in JDev 10g

Hi,
I have been struggling to create App Server and Int Server connections in JDeveloper 10.1.3.4 without any luck.
The JDeveloper is present on VM ware machine from which I'm trying to establish the connections to remote server where SOA Suite 10g is installed on IBM Websphere.
My Settings:
App Server:
Connection Type: Standalone OC4J 10.1.3
RMI: tried WC_defaulthost port, 6003, RMI default port (How do I get the actual value of RMI on IBM Websphere and does this really make a difference?)
Connection test fails with Mbean error. Ignored this error as documented in Installation guide.
Int Server:
Used the above App Server connection, gave the http port value of 9700 (also the WC_defaulthost on IBM Websphere)
Connection test fails for App Server, BPEL PM Server and ESB Server.
I have gone through other threads where different workarounds were suggested but none of them worked for me. The workaround of adding the property ipaddr with the value 0.0.0.0 in opmn.xml doesn't hold good here as IBM WPS doesn't have OPMN.
Please suggest a working solution for this issue.
Regards,
CC

The below message comes when you don't specify any default file for your webcenter portal application and this should not be any problem.
Target Portal.jpr is not runnable, using default target index.html.
Can you answer to my questions:
1. Did you just created a new wcp application in jdev and ran it with out doing any changes? If you have done what are the changes?
2. How did you ran your application? (right clicking a particular page or right clicking your portal project and selected "run" option?

Issue with LDAP Connection becuase of Network issue

Hello All,
We have some network issues going on which is causing the NIC (Network interface card) to failover to another NIC. Due to this failover SUN access manager's LDAP connection pool fills up and we see errors in logs "Directory is down". We have to restart the Access manager to resolve this issue which refresh the connection pool of LDAP.
Now we have set the setting as recommended in admin guide/tuning guide. Like
1. Set event connection idle timeout to less that firewall or loadbalancer idle timeout value.
2. event connection retry count and interval on perticular error code.
Despite of above settings its not working out. Is there other way to get all the stale connections back to the LDAP pool without restarting the server?
Or something which handles the network failover or failback?
Regards
Chetan Kulshrestha

The user search name is the value you should be looking at in the LDAP attributes, that's the one that it will send to LDAP on a logon attempt. If you changed this value after mapping a group, I'm not sure but you may have to remap the group to get the change.
So on the LDAP side verify the user search attribute = the username you expect to login with (i.e. cn, samaccountname, uid, etc)
Regards,
Tim

Mobile Devices (Android and iOS) cannot Connect to WS 2008 RRAS L2TP VPN with Pre-Shared Key

I have my Windows Server 2008 standard installed with RRAS service and configure with L2TP VPN with pre-shared key. Services such as Active Directory, DHCP and DNS are not installed. The Internet connection doesn't pass through a router to my server machine.
I have the Verizon fios Internet cable plugged in to the server machine directly.
PCs running Windows and Mac OS X can connect to the server without problem. When I tried to connect by using android or iOS mobiles and tablets, they cannot connect to the server. If I change the VPN type to PPTP, the mobile devices can connect successfully
but I would like to use IPSec/L2TP since it's more secure.
I tried so hard to look for the solution for this issue on Internet but I had no luck on that. Can anyone please provide me some help, please ?
Thanks,
CK

Hi CK,
I think we may need to create a policy in Network Policies. Please follow the steps below,
Right click Network Policies, Click New.
Enter the policy name, click Next.
Click Add, select the Day and Time Restrictions, click
Add.
In the Day and Time Restrictions, choose Permited for
all, click OK.
Click Next five times(leave everything default), click
Finish.
Move the policy to top and try to connect with your device.
If issue persists, please make sure that the Connection Requet Policies have been configured properly.
For detailed information about how to create a network policy, please refer to the link below,
Configuring NPS network policies
http://technet.microsoft.com/en-us/library/dd441006.aspx
Best Regards.
Steven Lee
TechNet Community Support

NullPointerException at com.sun.jndi.ldap.Connection.run(Connection.java:52

We are using the Sun jndi 1.2.1 files from a Java client to
access the IBM SecureWay Directory 3.2 server. Our test case is
retrieving entries using the ctx.getAttributes (String, String[])
method. Occasionally we are receiving the following error.
java.lang.NullPointerException
at com.sun.jndi.ldap.Connection.run(Connection.java:525)
at java.lang.Thread.run(Thread.java:481)
The java.lang.NullPointerException is coming from the Sun JNDI file.
Our program is not catching this exception.
Has anyone seen this problem before and have any ideas on how this can be resolved?

Download and use LDAP 1.2.3 or JDK 1.3.1.
The problem should go away.

Webcenter and ebs R12 integration

Hi,
We are having trouble with integration of WebCenter 11g PS3 with Oracle E-Business suite R12.1 in some of our ebs environments.
The step to set up E-Business suite portlet connection >WebCenter > Settings > Service Configuration > Portlet Producers > WRSP Producer failed with errors like :
Failed imports exist for producer /oracle/adf/portlet/E-Business Suite WSRP Producer_383c5156-9596-4eeb-a005-8b218dc41c33 which is currently not registered in this application.
A request to the producer URL "http://<host>:<port>/OA_HTML/portlets/WSRPServiceDescriptionService" resulted in a status 500 response with fault string "Internal Server Error (Caught exception while handling request: oracle.webdb.wsrp.server.ContainerRuntimeException: An internal error has occurred in method ConsumerRegistration.<init>())". The fault code given was "{http://schemas.xmlsoap.org/soap/envelope/}Server".
The attempt to register the producer with ID '{1}' for connection '/oracle/adf/portlet/E-Business Suite WSRP Producer_10ce66f7-704f-4512-be60-f297896a6eee' failed.
Also, tried with WLS command - same errors
wls:/ecm_domain/serverConfig> registerWSRPProducer('webcenter', 'E-Business Suite WSRP Producer', 'http://<host>:<port>/OA_HTML/portlets/WSRPBaseService?WSDL', timeout=100, server='WC_Spaces')
It basically timeout. If timeout increases, it takes longer to hit the same error.
This error is only occurring with setting connection to ebs running 2 apps nodes and on RAC database on 2 db servers. Anyone has integrated with ebs with RAC db and multiple apps servers successfully ? If so, what version of Webcenter and ebs ? I've logged an SR and has not progressed much in the last week or two.
I am not sure if this is the right forum, pls let me know if there are any other appropriate forum for this.
Thanks in adv,
Mary

Hi,
Were you able to resolve this issue?
Regards.

JAAS and JNDI (LDAP)

Hello,
I am using JAAS to connect to a Active Directory and login successfully (Authentication of the user). After the login, I want to get the users property like email address, phone number, ... from the Active Directory using JNDI. As I understand, to get connected to the AD with JNDI I have to use someting like:
env.put(Context.SECURITY_AUTHENTICATION,"simple");
env.put(Context.SECURITY_PRINCIPAL,ldapUserName);
env.put(Context.SECURITY_CREDENTIALS,ldapUserPassword);
My Problem is now, that I would like to take the user, which has connected to the AD with JASS for accessing the AD, but I do not have the ldapUserPassword from the JAAS Principal (the logged on user).
Is ther a way to use the current logged in user as LDAP (JNDI) user, or another way, to access the requested proeprties?
Thanks and Regards
Stefan

If had excatly the same problem.
In my my case I had a domain "testdomain.mycompany.com" and a domain controller "domaincontroller.mycompany.com" (maybe this is a misconfiguration?)
So I have set in the kerberos config file
[realms]
        TESTDOMAIN.MYCOMPANY.COM = {
                kdc = domaincontroller.mycompany.com
        }and the lpad connection url to "ldap://domaincontroller.mycompany.com/dc=testdomain,dc=mycompany,dc=com
This resulted in the error you have descibed.
Finally I put the following entry in the hosts file on my local PC
192.168.0.10 domaincontroller.testdomain.mycompany.com (192.168.0.10 is the ip address of the domain controller) and then it worked!

LDAP Connection exception: unable to retreive the specified realm(s).

I am using Embedded OC4J and I have a web form based authentication (j_security _check) and configured my orion-application.xml to use LDAP connection in this way:
<?xml version = '1.0' encoding = 'windows-1252'?>
<orion-application xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="http://xmlns.oracle.com/oracleas/schema/orion-application-10_0.xsd">
<jazn provider="LDAP" location="ldap://192.168.1.114:389"
default-realm="cn" jaas-mode="doAsPrivileged"/>
<jazn-loginconfig>
<application>
<name>ceads</name>
<login-modules>
<login-module>
<class>oracle.security.jazn.login.module.LDAPLoginModule</class>
<control-flag>required</control-flag>
<options>
<option>
<name>oracle.security.jaas.ldap.connect.pool.prefsize</name>
<value>10</value>
</option>
....... other LDAp parameters ...
When I try to log in, is always failed and I get this exception. I have no Idea what to do.
javax.security.auth.login.LoginException: oracle.security.jazn.JAZNException: The system is unable to retreive the specified realm(s).
at oracle.security.jazn.spi.ldap.LDAPRealmManager.searchRealms(LDAPRealmManager.java:1194)
at oracle.security.jazn.spi.ldap.LDAPRealmManager.getRealm(LDAPRealmManager.java:238)
at oracle.security.jazn.login.module.RealmLoginModule.getRealmFromUsername(RealmLoginModule.java:247)
at oracle.security.jazn.login.module.RealmLoginModule.getRealm(RealmLoginModule.java:219)
at oracle.security.jazn.login.module.RealmLoginModule.getRealmUser(RealmLoginModule.java:198)
at oracle.security.jazn.login.module.RealmLoginModule.authenticate(RealmLoginModule.java:111)
at oracle.security.jazn.login.module.RealmLoginModule.authenticate(RealmLoginModule.java:86)
at oracle.security.jazn.login.module.AbstractLoginModule.login(AbstractLoginModule.java:265)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:585)
at javax.security.auth.login.LoginContext.invoke(LoginContext.java:769)
at javax.security.auth.login.LoginContext.access$000(LoginContext.java:186)
at javax.security.auth.login.LoginContext$4.run(LoginContext.java:683)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:680)
at javax.security.auth.login.LoginContext.login(LoginContext.java:579)
at oracle.security.jazn.oc4j.OC4JUtil.doJAASLogin(OC4JUtil.java:241)
at oracle.security.jazn.oc4j.GenericUser$1.run(JAZNUserManager.java:818)
at oracle.security.jazn.oc4j.OC4JUtil.doWithJAZNClsLdr(OC4JUtil.java:173)
at oracle.security.jazn.oc4j.GenericUser.authenticate(JAZNUserManager.java:814)
at oracle.security.jazn.oc4j.FilterUser.authenticate(JAZNUserManager.java:1143)
at com.evermind.server.http.EvermindHttpServletRequest.checkAndSetRemoteUser(EvermindHttpServletRequest.java:3760)
at com.evermind.server.http.EvermindHttpServletRequest.getUserPrincipalInternal(EvermindHttpServletRequest.java:3727)
at com.evermind.server.http.HttpApplication.checkAuthenticationAndAuthorize(HttpApplication.java:6350)
at com.evermind.server.http.HttpApplication.getRequestDispatcher(HttpApplication.java:3030)
at com.evermind.server.http.HttpRequestHandler.doProcessRequest(HttpRequestHandler.java:738)
at com.evermind.server.http.HttpRequestHandler.processRequest(HttpRequestHandler.java:453)
at com.evermind.server.http.HttpRequestHandler.serveOneRequest(HttpRequestHandler.java:221)
at com.evermind.server.http.HttpRequestHandler.run(HttpRequestHandler.java:122)
at com.evermind.server.http.HttpRequestHandler.run(HttpRequestHandler.java:111)
at oracle.oc4j.network.ServerSocketReadHandler$SafeRunnable.run(ServerSocketReadHandler.java:260)
at oracle.oc4j.network.ServerSocketAcceptHandler.procClientSocket(ServerSocketAcceptHandler.java:234)
at oracle.oc4j.network.ServerSocketAcceptHandler.access$700(ServerSocketAcceptHandler.java:29)
at oracle.oc4j.network.ServerSocketAcceptHandler$AcceptHandlerHorse.run(ServerSocketAcceptHandler.java:879)
at com.evermind.util.ReleasableResourcePooledExecutor$MyWorker.run(ReleasableResourcePooledExecutor.java:303)
at java.lang.Thread.run(Thread.java:595)
Caused by: java.lang.IllegalStateException: LDAP properties not properly defined. Please check your JAZN configuration.
at oracle.security.jazn.spi.ldap.LDAPContext.getDirContext(LDAPContext.java:476)
at oracle.security.jazn.spi.ldap.LDAPContext.getDefaultDirContext(LDAPContext.java:246)
at oracle.security.jazn.spi.ldap.LDAPContext.getOrclRootCtxDN(LDAPContext.java:187)
at oracle.security.jazn.spi.ldap.LDAPContext.getSiteJAZNCtxDN(LDAPContext.java:222)
at oracle.security.jazn.spi.ldap.LDAPRealmManager.searchRealms(LDAPRealmManager.java:1087)
... 37 more
Edited by: user6112181 on 15-oct-2010 19:30
Edited by: user6112181 on 15-oct-2010 19:31

Hi,
Can you access the URL using a browser? Does it work with the credentials used for the RunAs account?
Strange error message though - are the account you are running the console with, present in the SCSM CMDB?
Regards
//Anders
Anders Asp | Lumagate | www.lumagate.com | Sweden | My blog: www.scsm.se

SQL Developer 4.0 EA2 -- Cannot use OpenLDAP with LDAP connect option

Hi,
I've got OpenLDAP setup to work with my Oracle clients, to serve up TNS connect strings, in lieu of having tnsnames.ora files scattered about hundreds of servers.
This is working fine with 10g/11g, both full and instant clients, no problem.
Now, I'm trying to configure SQL Developer 4.0 EA2 working with it, as well.
When I attempt to do so, I'm able to select the "LDAP" option in "Connection Type", and the "LDAP Server" drop down list is correctly populated with my LDAP server, from ldap.ora.
However, when I select it, I get the following error:
Status : Failure -[LDAP: error code 32 - No Such Object]
Now, I've done some research, and I monitored the slapd.log file, which shows me the following:
Sep 18 02:43:35 einstein slapd[2779]: conn=1034 fd=16 ACCEPT from IP=192.168.125.1:63781 (IP=0.0.0.0:389)
Sep 18 02:43:35 einstein slapd[2779]: conn=1034 op=0 BIND dn="" method=128
Sep 18 02:43:35 einstein slapd[2779]: conn=1034 op=0 RESULT tag=97 err=0 text=
Sep 18 02:43:35 einstein slapd[2779]: conn=1034 op=1 SRCH base="" scope=2 deref=0 filter="(objectClass=orclContext)"
Sep 18 02:43:35 einstein slapd[2779]: conn=1034 op=1 SEARCH RESULT tag=101 err=32 nentries=0 text=
Sep 18 02:43:35 einstein slapd[2779]: conn=1034 op=2 UNBIND
Sep 18 02:43:35 einstein slapd[2779]: conn=1034 fd=16 closed
Which is a lot more detail, but reflects the corresponding error code, (32 - No Such Object).
After doing some testing with ldapsearch, I've been able to replicate what SQL Developer is doing, and get the exact same error.
That ldapsearch command is:
ldapsearch -h einstein -p 389 -c -x -D "" -b "" "(objectClass=orclContext)"
Looking in the slapd.log file, I find an identical error to what is produced from SQL Developer.
Further, the query that SQL Developer wants to do can be successfully done with the following ldapsearch:
ldapsearch -h einstein -p 389 -c -x -D "" -b "dc=proquest,dc=com" "(objectClass=orclContext)"
So, it seems the problem is with the fact that SQL Developer is not supplying a search base.
I'm no LDAP expert, and I'm really not sure where to turn next....
Is there a SQL Developer option that allows me to set that search base? Is there a configuration I'm missing on the LDAP server configuration?
Thanks,
-Mark

Well, that didn't take long. I managed to find a solution to the problem.
It comes down to the fact that SQL Developer doesn't supply a search base, and my LDAP server didn't have a default search base defined.
When I edited slapd.conf (the OpenLDAP config file) and added a "defaultsearchbase" parameter, and bounced the LDAP server, everything started to work.
I now have a working configuration with OpenLDAP and SQL Developer.
I'll mark this discussion as closed.
-Mark

Webcenter and standard LDAP connection

Similar Messages

Maybe you are looking for