Weblog and Groups

I have the weblog up and running on our 10.4.8 server. I can log in to weblog with my short username and password.
So now I would like to create a group weblog so multiple users can make entries to a single blog. In WGM I created a group called "Technology" and added myself to the group. I go to http://server/weblog/ and type in the short name of the group... "Tech". That sends me to http://servername/weblog/Tech/?createUserID=Tech a page that appears as the Technology weblog with the Login option on the right side. So I click "Login", type in my short username and password (the very same one that worked to log in to the weblog before) and get: "The username or password you entered is incorrect".
A previous thread mentioned going in to Server Admin-> Settings --> Access and changing the Weblog settings. So I did. The default is "Allow all users and groups" which should logically include my newly created group. However, just to satisfy my curiosity, I changed to "Allow only users and groups below:" and added just the "Technology" group. While I could log into the blog by going straight in with my username... again, I could not log in to the "Tech" blog with the same username/password.
I'm out of ideas.
Xserve G5 Mac OS X (10.4.8)

Well... after moving the Weblogs directory to another hard drive and creating a new group, everything works as expected. I'm guessing permissions got whacked somewhere in the process of creating the first group.
Problem solved.

Similar Messages

Browsing users and groups on WebLogic 11g

I'm having a following "problem". I'm trying to programmatically list out all the users and groups that are currently on WebLogic. I need this because I'm building an SOA application that manages tasks for each user. Is there an API that adresses this problem?
Thanks for help! :)

http://download.oracle.com/docs/cd/E12840_01/wls/docs103/jmxinst/index.html
http://download.oracle.com/docs/cd/E12840_01/wls/docs103/jmx/accessWLS.html
http://download.oracle.com/docs/cd/E12840_01/wls/docs103/wlsmbeanref/core/index.html
I have not tried, but it should be possible getting those details via JMX Mbeans.
Manoj

How to create users and groups using WLST Offline with Weblogic 8.1.4

How to create users and groups using WLST Offline with Weblogic 8.1.4?
Any ideas?

Hi this is how i created a user using WLST Offline?
cd('/Security/' + domainName)
# Delete the default user name weblogic
# incase you want to remove the defualt user weblogic
delete('weblogic','User')
# Creating a new user defined
create(userName, 'User')
# Setting the password of the user you created.
cd ('/Security/' + domainName + '/User/' + userName)
cmo.setPassword(password)
Regards
Makenzo

How to pull groups from more than one OU using weblogic "All Groups Filter" from AD.

Hi,
Please help me for pulling groups from more than one OU using weblogic "All Groups Filter" from AD.
AD structure is:
c001639domain.local
       ||
       ||
    OU=Security_Groups
                  ||
                  ||
                  >> OU=CORP_ECM---> n number of group
                  >> OU=CORP_hodata--> n number of group
                  >> OU=CORP_citrix--> n number of group
                  >> OU=CORP_driver --> n number of group
                  >> OU=CORP_temp --> n number of group
Requirement is i want to filter groups from OU=CORP_ECM and OU=CORP_hodata.
Thanks,
Jagan.

I used below option but its not working getting zero groups.
(&(objectClass=group)(|(ou=CORP_ECM,dc=Domain,dc=com)(ou=CORP_hodata,dc=c001639domain,dc=local)))

LDAP Users and Groups

Hi,

I have configured an LDAP Authenticator for an external LDAP directory in the security realm of the samples portal. User Management is working, but when I try to access the Group Management for the LDAP Authenticator I get the following error:

com.bea.p13n.usermgmt.hierarchy.TreeNotBuiltException: State: UNINITIALIZED. Tree is uninitialized. Add provider GAAD to list of providers to build. Tree is uninitialized. Add provider GAAD to list of providers to build.


It seems that this needs to be setup. How do I do this?


Some general notes on LDAP:

I think that in a production environment it is of great value to manage users and groups in a LDAP directory. For instance we have a company directory which contains all users. It seems that users from LDAP can not been added to groups which are in the DB. LDAP also has the advantage of supporting dynamic groups.
As in previous weblogic releases the LDAP authenticator is read only. It would be great if the write functionality could be added as well. Actually managing LDAP users and groups in one place would be a tremendous improvement for us.

Another thing on my wishlist are examples for delegated administration and visitor entitlements. For the sample portal these are empty. But I think it would be nice to have some out of the box examples that show what is possible and help developers and business analysts to understand the concepts and create their own roles.

It would be interesting to read what Bea and other developer think about this.

Kind regards,

Kai


Marcus,
Yes, I am using 9.2 TP.
We are already using LDAP for user management with 8.1.
Now, I try to configure 9.2 as well. I am running 9.2 installations on different machines. When I click on Service Administration in the Admin Portal, I get the following error message for each installation:
java.lang.NullPointerException at com.bea.jsptools.serviceadmin.ads.ToolAdServiceBean.cloneFromAdServiceBean(ToolAdServiceBean.java:190) at com.bea.jsptools.serviceadmin.ServiceAdminTreeBuilder.buildAdContentProviderNodes(ServiceAdminTreeBuilder.java:769) at com.bea.jsptools.serviceadmin.ServiceAdminTreeBuilder.buildAdServiceBranch(ServiceAdminTreeBuilder.java:746) at com.bea.jsptools.serviceadmin.ServiceAdminTreeBuilder.createTreeElement(ServiceAdminTreeBuilder.java:184) at com.bea.jsptools.patterns.tree.TreeService$DefaultTreeServiceImpl.buildWholeTree(TreeService.java:234) at com.bea.jsptools.patterns.tree.TreeService$DefaultTreeServiceImpl.buildWholeTree(TreeService.java:235) at com.bea.jsptools.patterns.tree.TreeService$DefaultTreeServiceImpl.buildTree(TreeService.java:122) at util.tree.TreeController.constructTree(TreeController.java:142) at util.tree.TreeController.buildTree(TreeController.java:422) at jrockit.reflect.VirtualNativeMethodInvoker.invoke(Ljava.lang.Object;[Ljava.lang.Object;)Ljava.lang.Object;(Unknown Source) at java.lang.reflect.Method.invoke(Ljava.lang.Object;[Ljava.lang.Object;I)Ljava.lang.Object;(Unknown Source) at org.apache.beehive.netui.pageflow.FlowController.invokeActionMethod(FlowController.java:852) at org.apache.beehive.netui.pageflow.FlowController.getActionMethodForward(FlowController.java:782) at org.apache.beehive.netui.pageflow.FlowController.internalExecute(FlowController.java:456) at org.apache.beehive.netui.pageflow.PageFlowController.internalExecute(PageFlowController.java:285) at org.apache.beehive.netui.pageflow.FlowController.execute(FlowController.java:336) at org.apache.beehive.netui.pageflow.internal.FlowControllerAction.execute(FlowControllerAction.java:48) at org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:419) at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.access$201(PageFlowRequestProcessor.java:97) at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor$ActionRunner.execute(PageFlowRequestProcessor.java:1984) at org.apache.beehive.netui.pageflow.interceptor.action.internal.ActionInterceptors.wrapAction(ActionInterceptors.java:90) at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.processActionPerform(PageFlowRequestProcessor.java:2055) at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:224) at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.processInternal(PageFlowRequestProcessor.java:535) at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.process(PageFlowRequestProcessor.java:821) at org.apache.beehive.netui.pageflow.AutoRegisterActionServlet.process(AutoRegisterActionServlet.java:625) at org.apache.beehive.netui.pageflow.PageFlowActionServlet.process(PageFlowActionServlet.java:156) at org.apache.struts.action.ActionServlet.doGet(ActionServlet.java:414) at org.apache.beehive.netui.pageflow.PageFlowUtils.strutsLookup(PageFlowUtils.java:1178)
java.lang.NullPointerException
java.lang.NullPointerException
at com.bea.jsptools.serviceadmin.ads.ToolAdServiceBean.cloneFromAdServiceBean(ToolAdServiceBean.java:190)
at com.bea.jsptools.serviceadmin.ServiceAdminTreeBuilder.buildAdContentProviderNodes(ServiceAdminTreeBuilder.java:769)
at com.bea.jsptools.serviceadmin.ServiceAdminTreeBuilder.buildAdServiceBranch(ServiceAdminTreeBuilder.java:746)
at com.bea.jsptools.serviceadmin.ServiceAdminTreeBuilder.createTreeElement(ServiceAdminTreeBuilder.java:184)
at com.bea.jsptools.patterns.tree.TreeService$DefaultTreeServiceImpl.buildWholeTree(TreeService.java:234)
at com.bea.jsptools.patterns.tree.TreeService$DefaultTreeServiceImpl.buildWholeTree(TreeService.java:235)
at com.bea.jsptools.patterns.tree.TreeService$DefaultTreeServiceImpl.buildTree(TreeService.java:122)
at util.tree.TreeController.constructTree(TreeController.java:142)
at util.tree.TreeController.buildTree(TreeController.java:422)
at jrockit.reflect.VirtualNativeMethodInvoker.invoke(Ljava.lang.Object;[Ljava.lang.Object;)Ljava.lang.Object;(Unknown Source)
at java.lang.reflect.Method.invoke(Ljava.lang.Object;[Ljava.lang.Object;I)Ljava.lang.Object;(Unknown Source)
at org.apache.beehive.netui.pageflow.FlowController.invokeActionMethod(FlowController.java:852)
at org.apache.beehive.netui.pageflow.FlowController.getActionMethodForward(FlowController.java:782)
at org.apache.beehive.netui.pageflow.FlowController.internalExecute(FlowController.java:456)
at org.apache.beehive.netui.pageflow.PageFlowController.internalExecute(PageFlowController.java:285)
at org.apache.beehive.netui.pageflow.FlowController.execute(FlowController.java:336)
at org.apache.beehive.netui.pageflow.internal.FlowControllerAction.execute(FlowControllerAction.java:48)
at org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:419)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.access$201(PageFlowRequestProcessor.java:97)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor$ActionRunner.execute(PageFlowRequestProcessor.java:1984)
at org.apache.beehive.netui.pageflow.interceptor.action.internal.ActionInterceptors.wrapAction(ActionInterceptors.java:90)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.processActionPerform(PageFlowRequestProcessor.java:2055)
at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:224)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.processInternal(PageFlowRequestProcessor.java:535)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.process(PageFlowRequestProcessor.java:821)
at org.apache.beehive.netui.pageflow.AutoRegisterActionServlet.process(AutoRegisterActionServlet.java:625)
at org.apache.beehive.netui.pageflow.PageFlowActionServlet.process(PageFlowActionServlet.java:156)
at org.apache.struts.action.ActionServlet.doGet(ActionServlet.java:414)
at org.apache.beehive.netui.pageflow.PageFlowUtils.strutsLookup(PageFlowUtils.java:1178)

Example of creating a valid LDAP user and group in the Portal tree

I need to create (via bulk LDIP or API) fresh users AND groups into OID that can be used by Portal. In theory it sounds easy - just create an appropriate LDIF file.
What is the best way to achieve this?
I don't the know the structure that should be used in the LDIF file that would create the correct structure held for all the Portal users and groups in OID.
I've looked through the OID admin and dev guides but am still confused as to what exactly I have to do. It seems that Portal accounts are synchronised by a method called Provisioning.
All I want to do is bulk upload Portal compatible users into the repository.
Can somebody please assist.
Cheers,
John

I have below changes in files
1] In jps-config.xml
-- Added identity store and selected it from drop down in Security Context tab.
2] In weblogic-application.xml
In Security tab --> Role assignment mapped valid-users to principle name.
<security>
<realm-name>myrealm</realm-name>
<security-role-assignment>
<role-name>valid-users</role-name>
<principal-name>DERDev</principal-name>
</security-role-assignment>
</security>
3] Same thing done in weblogic.xml . I do not know the difference between weblogic-application.xml and weblogic.xml configuartion and which will work.
4] Added security role "DERDev" along with the default/automatically added role "valid users"
<security-role>
<role-name>DERDev</role-name>
</security-role>
Still no luck ...... i am missing again ? I referred many links but found not a single document mentioning all steps
Mukesh

Using users and groups from LDAP in ADF application

Hi there,
I'm using WebLogic Server 10.3.5.0 and JDev 11.1.2.3.0.
I configured my WL server to use the users and groups defined in my LDAP server (they display when I select the Users or Groups tab). So this works fine (I think).
Now I want to use 1 group, let's call the group ApplicationGroup, and all it's users to give them access to my ADF Application.
But I can't find proper/up-to-date info about how to do this.
I tried 2 major things:
1) I configured ADF Security to use Authentication and Authorization. Defined an Enterprise Role with the same name as in my WL server (so ApplicationGroup) then defined a
Application Role with a custom name and added the Enterprise Role to it. That Application Role I gave access to all my TF's and Web Pages. When I deploy this, It just doesn't work (Migrate Users and Groups is not checked).
2) Used the Authentication option in the ADF Security and the rest is the same as in 1). This works +-, I can login with all users so the role mapping isn't configured right I guess?
Any help or documentation that could help me?

Since we aren't using EM I had to find an other way. And I found it.
In web.xml ADF Security (I suppose) automaticly adds 'valid-users'. In my weblogic.xml I added my enterprise role as a principal to 'valid-users' and this works for me.
Thanks for the help.

RDBMS and Group Cache

We have noticed that when the group cache is reloaded, the
RDBMSDelegate.getGroup(String) method is called for each user that is
either logging into the system or doing some sort of role authentification
against the group cache.
This method in turn calls RDBMSDelegate.getGroupInternal(String, ResultSet),
which then parses the result set of the members of the group. So, if 5
members of the Employee group are logged into the server, the getGroup()
method is called 5 times concurrently. These concurrent method calls seem to
correspond with severe performance degradation since the method parses a
resultset of 3000 records each time its called.
We are using the example RDMBS security code and running WL6.0 sp1 on Win2K.
Is there any modified rdbms code out there that would improve the
performance of the group cache reload, or lock calls to the getGroups so
that the first call is the only one that parses the recordset and concurent
calls would be directed to the cache?
Thanks,
Pete

The philosophy behind the plan is when the group is first required you
just get any empty group object (sort of a wrapper class for a
Hashtable), then you call the database to find out if a user is in the
group only when you have to (this will lead to a lot more database
calls, but only retrieve the required lines, and them only one at a
time, as opposed to making one call which retrieves absolutely all of
the information.)
so RDBMSRealm.getGroup looks like this
public Group getGroup(String name){
RDBMSDelegate delegate = getDelegate();
try{
if (delegate.checkForGroup(name)){
return new RDBMSGroup(name,this,new Hashtable());
}else{
return null;
}catch (SQLException e){
delegate.close();
delegate = null;
throw new RDBMSException("caught SQL exception", e);
}finally{
returnDelegate(delegate);
Where RDMBSDelegate.checkForGroup just calls the database to see if
there is a group of the name given
And RDBMSGroup.isMember() looks like this
public boolean isMember(Principal member){
if (this.getName().equals("everyone")){
//everyone is in the 'everyone' group
return true;
}else{
try{
User user = (User)member;
//check if the member is in the Hashtable of known members
if (members.containsValue(user)){//user is a known member
return true;
}else{//check the database
if (realm.isMember(this,user)){//database says user is in this
group
//add member to known users list(use member's getName() rather
than User's to avoid deprecated API)
this.members.put(member.getName(),user);
return true;
}else{
return false;
}catch(ClassCastException e){//not castable to class User
return false;
Which is enough for the general operation of security.
If you wish to be able to view all members in the group you will need
something that resembles the original functionality
Hope this helps. terry
Hi,
What do you mean by "populate the group lazily with the
isMember() method" ? isMember()
takes a Principal as its argument - where do you get that Principal??
A code example would be highly appreciated!!!
regards,
Simen R.
THorner <[email protected]> wrote:
The RDBMSRealm provided (certainly with WLS5.1, but I think also 6.*)
really isn't meant to be used for production - it is just an example.
The matter of getGroup() is the major performance hit, and I advise you
to treat it differently - an architecture taht works for us is to make
getGroup just return the RDBMSGroup object, without calling the
database, and to populate the group lazily with the isMember() method.
so isMember looks like
if (hasAlreadyBeenCheckedForAndIsAMember){
return true;
}else if (wasntAlreadyCheckedForbutIsInTheDatabase){
addToListOfCheckedForMembers;
return true;
}else{
return false;
terry
-----Original Message-----
From: Jason Collins [mailto:[email protected]]
Posted At: Fri 17 August 2001 20:33
Posted To: weblogic.developer.interest.security
Conversation: RDBMS and Group Cache
Subject: Re: RDBMS and Group Cache
Was any solution to this found? We would like to avoid
writing the changes
to RDMSRealm, but the current performance is pretty bad.
Thanks,
j
"Pete Arvanitis" <[email protected]> wrote in message
news:[email protected]...
We have noticed that when the group cache is reloaded, the
RDBMSDelegate.getGroup(String) method is called for each user that is
either logging into the system or doing some sort of role authentification
against the group cache.
This method in turn calls RDBMSDelegate.getGroupInternal(String,ResultSet),
which then parses the result set of the members of the group. So, if 5
members of the Employee group are logged into the server, the getGroup()
method is called 5 times concurrently. These concurrent method calls seem
to
correspond with severe performance degradation since the method parses a
resultset of 3000 records each time its called.
We are using the example RDMBS security code and running WL6.0 sp1 on
Win2K.
Is there any modified rdbms code out there that would improve the
performance of the group cache reload, or lock calls to the getGroups so
that the first call is the only one that parses the recordset andconcurent
calls would be directed to the cache?
Thanks,
Pete

For particular display and group criteria, we are getting exception

Hi,
Please any one assist me on this.
Error report time: 2008-09-30 09:39:10
Description of activities in thread [Thread Group for Queue: 'weblogic.kernel.Default'].ExecuteThread: '14' for queue: 'weblogic.kernel.Default'
Original Stack Trace Info -- com.crystaldecisions.sdk.occa.report.lib.ReportDefControllerException:
           Message: A report object, section or area with this name already exists in the report.
           Code: 51412
com.crystaldecisions.sdk.occa.report.lib.ReportDefControllerException: A report object, section or area with this name already exists in the report.---- Error code:-2147213281 Error code name:objectAlreadyExists
           at com.crystaldecisions.sdk.occa.report.lib.ReportDefControllerException.throwReportDefControllerException(ILjava.lang.String;)V(Unknown Source)
           at com.crystaldecisions.sdk.occa.report.application.ReportSectionController.a(Lcom.crystaldecisions.sdk.occa.report.definition.IArea;Lcom.crystaldecisions.sdk.occa.report.definition.ISection;)V(Unknown Source)
           at com.crystaldecisions.sdk.occa.report.application.ReportSectionController.add(Lcom.crystaldecisions.sdk.occa.report.definition.ISection;Lcom.crystaldecisions.sdk.occa.report.definition.IArea;I)V(Unknown Source)
           at com.ntrs.nmr.util.ce.RASUtility.getSection(Lcom.crystaldecisions.sdk.occa.report.application.ReportClientDocument;Lcom.crystaldecisions.sdk.occa.report.definition.AreaSectionKind;II)Lcom.crystaldecisions.sdk.occa.report.definition.Section;(RASUtility.java:1631)
           at com.ntrs.nmr.util.ce.RASTemplateBuilder.buildAllColumns()V(RASTemplateBuilder.java:1102)
           at com.ntrs.nmr.util.ce.RASTemplateBuilder.buildTemplate()Lcom.crystaldecisions.sdk.occa.report.application.ReportClientDocument;(RASTemplateBuilder.java:76)
           at com.ntrs.nmr.busobj.report.CrystalReportV4.buildTemplateDisplayAndGroups(Lcom.crystaldecisions.sdk.occa.report.application.ReportClientDocument;[Lcom.ntrs.nmr.common.ReportDisplayInfo;[Lcom.ntrs.nmr.common.ReportGroupInfo;[Lcom.ntrs.nmr.common.ReportAvailableColumnInfo;)Lcom.crystaldecisions.sdk.occa.report.application.ReportClientDocument;(CrystalReportV4.java:932)
           at com.ntrs.nmr.busobj.report.CrystalReportV4.customizeTemplate(Lcom.crystaldecisions.sdk.occa.report.application.ReportClientDocument;)V(CrystalReportV4.java:96)
           at com.ntrs.nmr.busobj.report.AbstractCrystalReport.runCrystalEnterpriseReport(Lcom.ntrs.nmr.busobj.report.query.AbstractReportResultSet;Ljava.lang.String;Ljava.lang.String;[Ljava.lang.String;Ljava.util.Properties;[Ljava.lang.String;)V(AbstractCrystalReport.java:510)
           at com.ntrs.nmr.busobj.report.AbstractCrystalReport.runReport()Lcom.ntrs.nmr.common.ReportResultsInfo;(AbstractCrystalReport.java:274)
           at com.ntrs.nmr.busobj.report.CrystalReportV4.runReport()Lcom.ntrs.nmr.common.ReportResultsInfo;(CrystalReportV4.java:51)
           at com.ntrs.nmr.busobj.report.AbstractReport.runDirect()Lcom.ntrs.nmr.common.ReportResultsInfo;(AbstractReport.java:119)
           at com.ntrs.nmr.busobj.execution.ReportExecution.runReport(Lcom.ntrs.nmr.common.ReportExecutionRequestInfo;)Lcom.ntrs.nmr.common.ReportResultsInfo;(ReportExecution.java:644)
           at com.ntrs.nmr.busobj.execution.ReportExecution.runReport(Lcom.ntrs.nmr.common.ReportRequest;)Lcom.ntrs.nmr.common.ReportResultsInfo;(ReportExecution.java:505)
           at com.ntrs.nmr.session.report.ReportBean.runReport(Lcom.ntrs.nmr.common.ReportRequest;)Lcom.ntrs.nmr.common.ReportResultsInfo;(ReportBean.java:93)
           at com.ntrs.nmr.session.report.ReportController_br9wdw_EOImpl.runReport(Lcom.ntrs.nmr.common.ReportRequest;)Lcom.ntrs.nmr.common.ReportResultsInfo;(ReportController_br9wdw_EOImpl.java:100)
           at com.ntrs.nmr.envoy.ReportEnvoy.runReport(Lcom.ntrs.nmr.common.ReportRequest;)Lcom.ntrs.nmr.common.ReportResultsInfo;(ReportEnvoy.java:51)
           at com.ntrs.nmr.action.adh.ModifyRunAction.processRequest(Ljavax.servlet.http.HttpServletRequest;Ljavax.servlet.http.HttpServletResponse;)Lcom.ntrs.custody.cco.mvc.CCOActionError;(ModifyRunAction.java:426)
           at com.ntrs.custody.cco.mvc.CCOAction.doAction(Ljavax.servlet.http.HttpServletRequest;Ljavax.servlet.http.HttpServletResponse;)Lcom.ntrs.custody.cco.mvc.CCOActionError;(CCOAction.java:69)
           at com.ntrs.custody.cco.mvc.CCOActionServlet.service(Ljavax.servlet.http.HttpServletRequest;Ljavax.servlet.http.HttpServletResponse;)V(CCOActionServlet.java:104)
           at javax.servlet.http.HttpServlet.service(Ljavax.servlet.ServletRequest;Ljavax.servlet.ServletResponse;)V(HttpServlet.java:853)
           at weblogic.servlet.internal.ServletStubImpl$ServletInvocationAction.run()Ljava.lang.Object;(ServletStubImpl.java:996)
           at weblogic.servlet.internal.ServletStubImpl.invokeServlet(Ljavax.servlet.ServletRequest;Ljavax.servlet.ServletResponse;Lweblogic.servlet.internal.FilterChainImpl;)V(ServletStubImpl.java:419)
           at weblogic.servlet.internal.ServletStubImpl.invokeServlet(Ljavax.servlet.ServletRequest;Ljavax.servlet.ServletResponse;)V(ServletStubImpl.java:315)
           at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run()Ljava.lang.Object;(WebAppServletContext.java:6452)
           at weblogic.security.acl.internal.AuthenticatedSubject.doAs(Lweblogic.security.subject.AbstractSubject;Ljava.security.PrivilegedAction;)Ljava.lang.Object;(AuthenticatedSubject.java:321)
           at weblogic.security.service.SecurityManager.runAs(Lweblogic.security.acl.internal.AuthenticatedSubject;Lweblogic.security.acl.internal.AuthenticatedSubject;Ljava.security.PrivilegedAction;)Ljava.lang.Object;(SecurityManager.java:118)
           at weblogic.servlet.internal.WebAppServletContext.invokeServlet(Lweblogic.servlet.internal.ServletRequestImpl;Lweblogic.servlet.internal.ServletResponseImpl;)V(WebAppServletContext.java:3661)
           at weblogic.servlet.internal.ServletRequestImpl.execute(Lweblogic.kernel.ExecuteThread;)V(ServletRequestImpl.java:2630)
           at weblogic.kernel.ExecuteThread.execute(Lweblogic.kernel.ExecuteRequest;)V(ExecuteThread.java:219)
           at weblogic.kernel.ExecuteThread.run()V(ExecuteThread.java:178)
           at java.lang.Thread.startThreadFromVM(Ljava.lang.Thread;)V(Unknown Source)
           ManagementReportingException Stack Trace:
com.ntrs.nmr.util.ManagementReportingException: Error while template display and grouping: :com.crystaldecisions.sdk.occa.report.lib.ReportDefControllerExceptionA report object, section or area with this name already exists in the report.
           at com.ntrs.nmr.busobj.report.CrystalReportV4.customizeTemplate(Lcom.crystaldecisions.sdk.occa.report.application.ReportClientDocument;)V(CrystalReportV4.java:98)
           at com.ntrs.nmr.busobj.report.AbstractCrystalReport.runCrystalEnterpriseReport(Lcom.ntrs.nmr.busobj.report.query.AbstractReportResultSet;Ljava.lang.String;Ljava.lang.String;[Ljava.lang.String;Ljava.util.Properties;[Ljava.lang.String;)V(AbstractCrystalReport.java:510)
           at com.ntrs.nmr.busobj.report.AbstractCrystalReport.runReport()Lcom.ntrs.nmr.common.ReportResultsInfo;(AbstractCrystalReport.java:274)
           at com.ntrs.nmr.busobj.report.CrystalReportV4.runReport()Lcom.ntrs.nmr.common.ReportResultsInfo;(CrystalReportV4.java:51)
           at com.ntrs.nmr.busobj.report.AbstractReport.runDirect()Lcom.ntrs.nmr.common.ReportResultsInfo;(AbstractReport.java:119)
           at com.ntrs.nmr.busobj.execution.ReportExecution.runReport(Lcom.ntrs.nmr.common.ReportExecutionRequestInfo;)Lcom.ntrs.nmr.common.ReportResultsInfo;(ReportExecution.java:644)
           at com.ntrs.nmr.busobj.execution.ReportExecution.runReport(Lcom.ntrs.nmr.common.ReportRequest;)Lcom.ntrs.nmr.common.ReportResultsInfo;(ReportExecution.java:505)
           at com.ntrs.nmr.session.report.ReportBean.runReport(Lcom.ntrs.nmr.common.ReportRequest;)Lcom.ntrs.nmr.common.ReportResultsInfo;(ReportBean.java:93)
           at com.ntrs.nmr.session.report.ReportController_br9wdw_EOImpl.runReport(Lcom.ntrs.nmr.common.ReportRequest;)Lcom.ntrs.nmr.common.ReportResultsInfo;(ReportController_br9wdw_EOImpl.java:100)
           at com.ntrs.nmr.envoy.ReportEnvoy.runReport(Lcom.ntrs.nmr.common.ReportRequest;)Lcom.ntrs.nmr.common.ReportResultsInfo;(ReportEnvoy.java:51)
           at com.ntrs.nmr.action.adh.ModifyRunAction.processRequest(Ljavax.servlet.http.HttpServletRequest;Ljavax.servlet.http.HttpServletResponse;)Lcom.ntrs.custody.cco.mvc.CCOActionError;(ModifyRunAction.java:426)
           at com.ntrs.custody.cco.mvc.CCOAction.doAction(Ljavax.servlet.http.HttpServletRequest;Ljavax.servlet.http.HttpServletResponse;)Lcom.ntrs.custody.cco.mvc.CCOActionError;(CCOAction.java:69)
           at com.ntrs.custody.cco.mvc.CCOActionServlet.service(Ljavax.servlet.http.HttpServletRequest;Ljavax.servlet.http.HttpServletResponse;)V(CCOActionServlet.java:104)
           at javax.servlet.http.HttpServlet.service(Ljavax.servlet.ServletRequest;Ljavax.servlet.ServletResponse;)V(HttpServlet.java:853)
           at weblogic.servlet.internal.ServletStubImpl$ServletInvocationAction.run()Ljava.lang.Object;(ServletStubImpl.java:996)
           at weblogic.servlet.internal.ServletStubImpl.invokeServlet(Ljavax.servlet.ServletRequest;Ljavax.servlet.ServletResponse;Lweblogic.servlet.internal.FilterChainImpl;)V(ServletStubImpl.java:419)
           at weblogic.servlet.internal.ServletStubImpl.invokeServlet(Ljavax.servlet.ServletRequest;Ljavax.servlet.ServletResponse;)V(ServletStubImpl.java:315)
           at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run()Ljava.lang.Object;(WebAppServletContext.java:6452)
           at weblogic.security.acl.internal.AuthenticatedSubject.doAs(Lweblogic.security.subject.AbstractSubject;Ljava.security.PrivilegedAction;)Ljava.lang.Object;(AuthenticatedSubject.java:321)
           at weblogic.security.service.SecurityManager.runAs(Lweblogic.security.acl.internal.AuthenticatedSubject;Lweblogic.security.acl.internal.AuthenticatedSubject;Ljava.security.PrivilegedAction;)Ljava.lang.Object;(SecurityManager.java:118)
           at weblogic.servlet.internal.WebAppServletContext.invokeServlet(Lweblogic.servlet.internal.ServletRequestImpl;Lweblogic.servlet.internal.ServletResponseImpl;)V(WebAppServletContext.java:3661)
           at weblogic.servlet.internal.ServletRequestImpl.execute(Lweblogic.kernel.ExecuteThread;)V(ServletRequestImpl.java:2630)
           at weblogic.kernel.ExecuteThread.execute(Lweblogic.kernel.ExecuteRequest;)V(ExecuteThread.java:219)
           at weblogic.kernel.ExecuteThread.run()V(ExecuteThread.java:178)
           at java.lang.Thread.startThreadFromVM(Ljava.lang.Thread;)V(Unknown Source)
Description of activities in thread [Thread Group for Queue: 'weblogic.kernel.Default'].ExecuteThread: '14' for queue: 'weblogic.kernel.Default'
Work Unit: 552
           Marking Object: com.ntrs.nmr.action.adh.ModifyRunAction
           Marking Thread ID: [Thread Group for Queue: 'weblogic.kernel.Default'].ExecuteThread: '14' for queue: 'weblogic.kernel.Default'
           Initiating Thread ID: [Thread Group for Queue: 'weblogic.kernel.Default'].ExecuteThread: '14' for queue: 'weblogic.kernel.Default'
           Current Activity Label: ModifyRunAction
           Last Mark Time: 2008-09-30-09:38:57.00296
           Activity Messages Follow:
                      ModifyRunAction:begin
                      ReportExecution.runReport(ReportExecutionRequestInfo):begin
                      Oracle query execution:begin
                      Oracle query execution:end
           Marking object is not describable.
Work Unit: 553
           Marking Object: com.ntrs.nmr.busobj.execution.ReportExecution
           Marking Thread ID: [Thread Group for Queue: 'weblogic.kernel.Default'].ExecuteThread: '14' for queue: 'weblogic.kernel.Default'
           Initiating Thread ID: [Thread Group for Queue: 'weblogic.kernel.Default'].ExecuteThread: '14' for queue: 'weblogic.kernel.Default'
           Current Activity Label: ReportExecution.runReport(ReportExecutionRequestInfo)
           Last Mark Time: 2008-09-30-09:38:57.00921
           Activity Messages Follow:
                      ReportExecution.runReport(ReportExecutionRequestInfo):begin
                      Oracle query execution:begin
                      Oracle query execution:end
           Marking object is not describable.
Description of activities in thread [Thread Group for Queue: 'weblogic.kernel.Default'].ExecuteThread: '14' for queue: 'weblogic.kernel.Default'
Work Unit: 552
           Marking Object: com.ntrs.nmr.action.adh.ModifyRunAction
           Marking Thread ID: [Thread Group for Queue: 'weblogic.kernel.Default'].ExecuteThread: '14' for queue: 'weblogic.kernel.Default'
           Initiating Thread ID: [Thread Group for Queue: 'weblogic.kernel.Default'].ExecuteThread: '14' for queue: 'weblogic.kernel.Default'
           Current Activity Label: ModifyRunAction
           Last Mark Time: 2008-09-30-09:38:57.00296
           Activity Messages Follow:
                      ModifyRunAction:begin
                      ReportExecution.runReport(ReportExecutionRequestInfo):begin
                      Oracle query execution:begin
                      Oracle query execution:end
           Marking object is not describable.
Work Unit: 553
           Marking Object: com.ntrs.nmr.busobj.execution.ReportExecution
           Marking Thread ID: [Thread Group for Queue: 'weblogic.kernel.Default'].ExecuteThread: '14' for queue: 'weblogic.kernel.Default'
           Initiating Thread ID: [Thread Group for Queue: 'weblogic.kernel.Default'].ExecuteThread: '14' for queue: 'weblogic.kernel.Default'
           Current Activity Label: ReportExecution.runReport(ReportExecutionRequestInfo)
           Last Mark Time: 2008-09-30-09:38:57.00921
           Activity Messages Follow:
                      ReportExecution.runReport(ReportExecutionRequestInfo):begin
                      Oracle query execution:begin
                      Oracle query execution:end
           Marking object is not describable.

Thanks for your reply.
These are the display parameters i used to run a report, for this display criteria alone i am getting the exception.
displayParm =
1141    0       40      L
1271    0       16      L
1033    0       18      L
1404    0       18      L
1018    2       20      L
1000    1       30      L
1001    0       8       L
1029    1       40      L
1030    0       40      L
If you need more information means, please ask me what are things you are looking for.

Admin Console not displaying new Users and Groups from LDAP

We created a new Realm in WebLogic, which specifies the location of the Netscape
LDAP server. Our Weblogic application, called TGSLC, is able to find the ldap
server to use for authentication. My problem is this- the Admin Console is not
displaying the new users and groups from the LDAP server. Shouldn't the WebLogic
Admin Console display any users and groups specified in the ldap server, which
is referenced in the customized Realm?

Hi Andy,
I am not sure why you are unable to see the users and groups through the
console., you should be able to. Can you post the config.xml?
thanks,
-satya
Andy Levy <[email protected]> wrote in message
news:3b700c36$[email protected]..
>
We're running WLS 6.0 Sp2 on Windows 2000 Professional.
"Satya Ghattu" <[email protected]> wrote:
Andy,
Could you please tell us what Version of Weblogic you are running?
thanks,
-satya
Andy Levy <[email protected]> wrote in message
news:[email protected]..
We created a new Realm in WebLogic, which specifies the location ofthe
Netscape
LDAP server. Our Weblogic application, called TGSLC, is able to findthe
ldap
server to use for authentication. My problem is this- the Admin
Console
is not
displaying the new users and groups from the LDAP server. Shouldn'tthe
WebLogic
Admin Console display any users and groups specified in the ldap
server,
which
is referenced in the customized Realm?

User and Group management in ADF Application?

Hello,
I have successfully integrated my weblogic server with MS AD Ldap Server. I have all the users and groups from AD inside weblogic.
Now, I would like to create an ADF application with the ability to manage identity. For example, I could navigate to a page in my ADF application containing a list of users and groups from AD, and I could for instance create a new user, remove a group or change an attribute for the user (and all these changes reflect in the LDAP server).
Is this possible? Is there any documentation for this? I am using MS Active Directory, is there an API to integrate AD to ADF?
Thank you!
Joao Moreira

Hi,
if your LDAP server is MS Active Directory then you need to check for samples of how to access this directory server from Java. This code then would go into a managed bean to be used with the ADF application.
Frank

Webcenter spaces user and group and WLS security realm

I want to configure external ORACLE DB,
I configed the security realm in WLS, and I can see the user and group list in WLS page, But I cant find any of them in webcenter spaces,
and also can not login with those users.
I added a user with WLS, it works well.
do I need to do other configrations?

First you need to create a Administrator for this new identity stores. Weblogic user is not identified now because its not mapped by first authenticator. See Oracle WebCenter Admin Guide, section 28.4.1.1 Granting the WebCenter Spaces Administrator Role Using FusionMiddleware Control. Once you have done this step, do the same steps for other application user. For this you have to give Application role to other user so that they can login and use WebCenter Space.See Oracle WebCenter Admin Guide, Section 28.4.2.1 Granting Application Roles Using Fusion Middleware Control.
After doing above steps, restart WC_Spaces managed server.

Create worklist user and group's in 11G...

How to create worklist user's and group's in standart 11G instalation...
Thanks...

hI Raj,
It is very easy to create users,groups,roles in soa suite 11g manually .Just login to the weblogic console and you find a security realms tab click on that then next a page will open with my realms then click on it you will find a users and groups tab on top click on that then lock and edit the session and from there you can create users groups and also assign roles.You can also use external ldap if you want,Please let me know if this clarifies your doubt

Invalid WLS user and Group

Hello, i´ve some problems using task worker control.
Some times my application shows an Error, and sometimes, (without code or configuration
change) doesn´t. The user "prueba" belongs to "TaskCreators" group (is logged
at error time).
This is the error, all of it shown at same time:
<Oct 31, 2003 11:13:37 AM GMT-05:00> <Error> <WLI-Worklist> <BEA-610030> <The
parameter prueba is an Invalid WLS user and group.>
<Oct 31, 2003 11:13:37 AM GMT-05:00> <Error> <WLI-Worklist> <BEA-610030> <The
parameter prueba is an Invalid WLS user and group.>
<Oct 31, 2003 11:13:37 AM GMT-05:00> <Error> <WLI-Worklist> <BEA-610066> <You
must be in the worklist admin role or task owner or the task claimant or in the
assignee list to perform this operation.
<Oct 31, 2003 11:13:37 AM GMT-05:00> <Warning> <WLW> <000000> <Id=top-level; Method=common.control.Tareas.getTaskInfo();
Failure=com.bea.control.ControlException: Error in the worklist control[0]>
[cgr] Unhandled exception caught in Global.app:
java.rmi.RemoteException: EJB Exception: ; nested exception is:
com.bea.control.ControlException: Error in the worklist control[0]
at weblogic.ejb20.internal.EJBRuntimeUtils.throwRemoteException(EJBRuntimeUtils.java:103)
at weblogic.ejb20.internal.BaseEJBHome.handleSystemException(BaseEJBHome.java:295)
at weblogic.ejb20.internal.BaseEJBObject.postInvoke(BaseEJBObject.java:253)
at weblogic.ejb20.internal.StatelessEJBObject.postInvoke(StatelessEJBObject.java:141)
at com.bea.wlw.runtime.core.bean.SyncDispatcher_k1mrl8_EOImpl.invoke(SyncDispatcher_k1mrl8_EOImpl.java:110)
at com.bea.wlw.runtime.core.dispatcher.ServiceHandleImpl.invoke(ServiceHandleImpl.java:285)
at com.bea.wlw.runtime.core.dispatcher.WlwProxyImpl.invoke(WlwProxyImpl.java:240)
at $Proxy8.getTaskInfo(Unknown Source)
... 100 more
Caused by: java.lang.ArrayIndexOutOfBoundsException: 0
at com.bea.wli.worklist.control.TaskWorkerControlHelper.invoke(TaskWorkerControlHelper.java:645)
... 64 more

Has anybody got the solution for this problem? We have exactly the same problem.
Any suggestions to solve this problem will be appreciated.
thanks,
Jin,
"Leonardo Contreras" <[email protected]> wrote:
>
Hello, i´ve some problems using task worker control.
Some times my application shows an Error, and sometimes, (without code
or configuration
change) doesn´t. The user "prueba" belongs to "TaskCreators" group (is
logged
at error time).
This is the error, all of it shown at same time:
<Oct 31, 2003 11:13:37 AM GMT-05:00> <Error> <WLI-Worklist> <BEA-610030>
<The
parameter prueba is an Invalid WLS user and group.>
<Oct 31, 2003 11:13:37 AM GMT-05:00> <Error> <WLI-Worklist> <BEA-610030>
<The
parameter prueba is an Invalid WLS user and group.>
<Oct 31, 2003 11:13:37 AM GMT-05:00> <Error> <WLI-Worklist> <BEA-610066>
<You
must be in the worklist admin role or task owner or the task claimant
or in the
assignee list to perform this operation.
<Oct 31, 2003 11:13:37 AM GMT-05:00> <Warning> <WLW> <000000> <Id=top-level;
Method=common.control.Tareas.getTaskInfo();
Failure=com.bea.control.ControlException: Error in the worklist control[0]>
[cgr] Unhandled exception caught in Global.app:
java.rmi.RemoteException: EJB Exception: ; nested exception is:
com.bea.control.ControlException: Error in the worklist control[0]
at weblogic.ejb20.internal.EJBRuntimeUtils.throwRemoteException(EJBRuntimeUtils.java:103)
at weblogic.ejb20.internal.BaseEJBHome.handleSystemException(BaseEJBHome.java:295)
at weblogic.ejb20.internal.BaseEJBObject.postInvoke(BaseEJBObject.java:253)
at weblogic.ejb20.internal.StatelessEJBObject.postInvoke(StatelessEJBObject.java:141)
at com.bea.wlw.runtime.core.bean.SyncDispatcher_k1mrl8_EOImpl.invoke(SyncDispatcher_k1mrl8_EOImpl.java:110)
at com.bea.wlw.runtime.core.dispatcher.ServiceHandleImpl.invoke(ServiceHandleImpl.java:285)
at com.bea.wlw.runtime.core.dispatcher.WlwProxyImpl.invoke(WlwProxyImpl.java:240)
at $Proxy8.getTaskInfo(Unknown Source)
... 100 more
Caused by: java.lang.ArrayIndexOutOfBoundsException: 0
at com.bea.wli.worklist.control.TaskWorkerControlHelper.invoke(TaskWorkerControlHelper.java:645)
... 64 more

LDAP User and Group import

My client has OAM as SSO provider. They want the LDAP Agent to import only users and groups but not the group memberships.
What setting should I Use for LDAP authentication ?

I have below changes in files
1] In jps-config.xml
-- Added identity store and selected it from drop down in Security Context tab.
2] In weblogic-application.xml
In Security tab --> Role assignment mapped valid-users to principle name.
<security>
<realm-name>myrealm</realm-name>
<security-role-assignment>
<role-name>valid-users</role-name>
<principal-name>DERDev</principal-name>
</security-role-assignment>
</security>
3] Same thing done in weblogic.xml . I do not know the difference between weblogic-application.xml and weblogic.xml configuartion and which will work.
4] Added security role "DERDev" along with the default/automatically added role "valid users"
<security-role>
<role-name>DERDev</role-name>
</security-role>
Still no luck ...... i am missing again ? I referred many links but found not a single document mentioning all steps
Mukesh

Weblog and Groups

Similar Messages

Maybe you are looking for