Weblogic 10.3 ldap provider configuration

Similar Messages

• LDAP Server Configuration in Weblogic

  Hi,
  While configuring LDAP provider in the existing weblogic server, I am facing issue while importing the certificate [.cer files] into the weblogic server for installation.
  Could someone provide the sequential steps that need to be followed to setup LDAP?
  Thanks,
  Pratik.

  I'm not sure what you want to achieve, but I guess that you want to use the Oracle Internet Directory for authentication?
  Usually there would be some place in the Weblogic setup where you can configure this. Needed for the connectivity to the OID are usually the DN of the user that can connect (cn=orcladmin,dc=users,dc=acme,dc=com) and the hostname and port where the OID is running.
  cu
  Andreas

• Problem OIM OID Ldap Sync Configuration in 11g.

  Hi Team,
  I am doing OIM and OID LDAP Sync configuration There It is failed in "Configuration Process" Step.
  and also in weblogic OIM Maganaged server in ADMIN mode not in running mode.
  please find the both logs.
  *********************************Weblogic Logs**********************************************
  Enter username to boot WebLogic server:weblogic
  Enter password to boot WebLogic server:
  <28-Sep-2012 14:07:44 o'clock BST> <Info> <Management> <BEA-141107> <Version: We
  bLogic Server 10.3.5.0 Fri Apr 1 20:20:06 PDT 2011 1398638 >
  <28-Sep-2012 14:07:47 o'clock BST> <Notice> <WebLogicServer> <BEA-000365> <Serve
  r state changed to STARTING>
  <28-Sep-2012 14:07:47 o'clock BST> <Info> <WorkManager> <BEA-002900> <Initializi
  ng self-tuning thread pool>
  <28-Sep-2012 14:07:48 o'clock BST> <Notice> <Log Management> <BEA-170019> <The s
  erver log file E:\Oracle\Middleware\user_projects\domains\IAM_domain\servers\oim
  server1\logs\oimserver1.log is opened. All server side log events will be writ
  ten to this file.>
  28-Sep-2012 14:07:56 oracle.security.am.common.nap.util.NAPLogger log
  SEVERE: Failed to communicate with any of configured Access Server, ensure that
  it is up and running.
  <28-Sep-2012 14:07:57 o'clock BST> <Notice> <Security> <BEA-090082> <Security in
  itializing using security realm myrealm.>
  <28-Sep-2012 14:08:04 o'clock BST> <Notice> <WebLogicServer> <BEA-000365> <Serve
  r state changed to STANDBY>
  <28-Sep-2012 14:08:04 o'clock BST> <Notice> <WebLogicServer> <BEA-000365> <Serve
  r state changed to STARTING>
  <28-Sep-2012 14:08:20 o'clock BST> <Warning> <oracle.jps.upgrade> <JPS-06003> <C
  annot migrate credential folder/key ADF/anonymous#oimBpelCredKey.Reason oracle.s
  ecurity.jps.service.credstore.CredentialAlreadyExistsException: JPS-01007: The c
  redential with map ADF and key anonymous#oimBpelCredKey already exists..>
  <28-Sep-2012 14:08:21 o'clock BST> <Warning> <oracle.adf.share.ADFContext> <BEA-
  000000> <Automatically initializing a DefaultContext for getCurrent.
  Caller should ensure that a DefaultContext is proper for this use.
  Memory leaks and/or unexpected behaviour may occur if the automatic initializati
  on is performed improperly.
  This message may be avoided by performing initADFContext before using getCurrent
  To see the stack trace for thread that is initializing this, set the logging lev
  el of oracle.adf.share.ADFContext to FINEST>
  <28-Sep-2012 14:08:24 o'clock BST> <Error> <Deployer> <BEA-149205> <Failed to in
  itialize the application 'oim [Version=11.1.1.3.0]' due to error oracle.iam.plat
  form.utils.OIMAppInitializationException:
  OIM application intialization failed because of the following reasons:
  oim-config.xml was not found in MDS Repository.
  Unable to find keystore ".xldatabasekey" in <DOMAIN_HOME>/config/fmwconfig/.
  Password for OIMSchemaPassword is not seeded in CSF.
  Password for xell is not seeded in CSF.
  Password for DataBaseKey is not seeded in CSF.
  Password for JMSKey is not seeded in CSF.
  Password for .xldatabasekey is not seeded in CSF.
  Password for default-keystore.jks is not seeded in CSF.
  Password for SOAAdminPassword is not seeded in CSF.
  oracle.iam.platform.utils.OIMAppInitializationException:
  OIM application intialization failed because of the following reasons:
  oim-config.xml was not found in MDS Repository.
  Unable to find keystore ".xldatabasekey" in <DOMAIN_HOME>/config/fmwconfig/.
  Password for OIMSchemaPassword is not seeded in CSF.
  Password for xell is not seeded in CSF.
  Password for DataBaseKey is not seeded in CSF.
  Password for JMSKey is not seeded in CSF.
  Password for .xldatabasekey is not seeded in CSF.
  Password for default-keystore.jks is not seeded in CSF.
  Password for SOAAdminPassword is not seeded in CSF.
  at oracle.iam.platform.utils.OIMAppInitializationListener.preStart(OIMAp
  pInitializationListener.java:145)
  at weblogic.application.internal.flow.BaseLifecycleFlow$PreStartAction.r
  un(BaseLifecycleFlow.java:282)
  at weblogic.security.acl.internal.AuthenticatedSubject.doAs(Authenticate
  dSubject.java:321)
  at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:
  120)
  at weblogic.application.internal.flow.BaseLifecycleFlow$LifecycleListene
  rAction.invoke(BaseLifecycleFlow.java:199)
  Truncated. see log file for complete stacktrace
  Caused By: oracle.iam.platform.utils.OIMAppInitializationException:
  OIM application intialization failed because of the following reasons:
  oim-config.xml was not found in MDS Repository.
  Unable to find keystore ".xldatabasekey" in <DOMAIN_HOME>/config/fmwconfig/.
  Password for OIMSchemaPassword is not seeded in CSF.
  Password for xell is not seeded in CSF.
  Password for DataBaseKey is not seeded in CSF.
  Password for JMSKey is not seeded in CSF.
  Password for .xldatabasekey is not seeded in CSF.
  Password for default-keystore.jks is not seeded in CSF.
  Password for SOAAdminPassword is not seeded in CSF.
  at oracle.iam.platform.utils.OIMAppInitializationListener.preStart(OIMAp
  pInitializationListener.java:145)
  at weblogic.application.internal.flow.BaseLifecycleFlow$PreStartAction.r
  un(BaseLifecycleFlow.java:282)
  at weblogic.security.acl.internal.AuthenticatedSubject.doAs(Authenticate
  dSubject.java:321)
  at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:
  120)
  at weblogic.application.internal.flow.BaseLifecycleFlow$LifecycleListene
  rAction.invoke(BaseLifecycleFlow.java:199)
  Truncated. see log file for complete stacktrace
  >
  <28-Sep-2012 14:08:24 o'clock BST> <Warning> <Munger> <BEA-2156203> <A version a
  ttribute was not found in element application in the deployment descriptor in E:
  \Oracle\Middleware\Oracle_IDM1\server\apps\spml-xsd.ear/META-INF/application.xml
  . A version attribute is required, but this version of the Weblogic Server will
  assume that the JEE5 is used. Future versions of the Weblogic Server will reject
  descriptors that do not specify the JEE version.>
  <28-Sep-2012 14:08:24 o'clock BST> <Warning> <Munger> <BEA-2156203> <A version a
  ttribute was not found in element application in the deployment descriptor in E:
  \Oracle\Middleware\user_projects\domains\IAM_domain\servers\oim_server1\tmp\_WL_
  user\spml-xsd\s8d2b9/META-INF/application.xml. A version attribute is required,
  but this version of the Weblogic Server will assume that the JEE5 is used. Futur
  e versions of the Weblogic Server will reject descriptors that do not specify th
  e JEE version.>
  <28-Sep-2012 14:08:24 o'clock BST> <Emergency> <Deployer> <BEA-149259> <Server '
  oim_server1' in cluster 'OIM_Cluster' is being brought up in administration stat
  e due to failed deployments.>
  Loading xalan.jar for XPathAPI.
  14:08:30 INFO [[STANDBY] ExecuteThread: '2' for queue: 'weblogic.kernel.Default
  (self-tuning)'] -
  ----------------- NEXAWEB SERVER LICENSE ------------------
  - Customer ID : 122
  - License type : Enterprise
  - Max unique IPs : unlimited
  - Max XUL sessions : unlimited
  - Max CPUs/server : unlimited
  - Clustering allowed : true
  - Expiration date : none
  Nexaweb Technologies Inc.(C)2000-2004. All Rights Reserved.
  Nexaweb Technologies Inc.
  10 Canal Park
  Cambridge, MA 02141
  Tel: 617.577.8100. Email: [email protected]
  14:08:31 INFO [[STANDBY] ExecuteThread: '2' for queue: 'weblogic.kernel.Default
  (self-tuning)'] - Clustering is OFF.
  14:08:31 INFO [[STANDBY] ExecuteThread: '2' for queue: 'weblogic.kernel.Default
  (self-tuning)'] - Servlet Engine: WebLogic Server 10.3.5.0 Fri Apr 1 20:20:06 PD
  T 2011 1398638 Oracle WebLogic Server Module Dependencies 10.3 Thu Mar 3 14:37:5
  2 PST 2011 Oracle WebLogic Server on JRockit Virtual Edition Module Dependencies
  10.3 Thu Feb 3 16:30:47 EST 2011
  14:08:31 INFO [[STANDBY] ExecuteThread: '2' for queue: 'weblogic.kernel.Default
  (self-tuning)'] - Servlet API Version: 2.5
  14:08:31 INFO [[STANDBY] ExecuteThread: '2' for queue: 'weblogic.kernel.Default
  (self-tuning)'] - Nexaweb Server Info = Nexaweb Server 3.3.1072
  14:08:31 INFO [[STANDBY] ExecuteThread: '2' for queue: 'weblogic.kernel.Default
  (self-tuning)'] - Nexaweb Server initialized successfully.
  <28-Sep-2012 14:08:34 o'clock BST> <Notice> <Log Management> <BEA-170027> <The S
  erver has established connection with the Domain level Diagnostic Service succes
  sfully.>
  <28-Sep-2012 14:08:34 o'clock BST> <Notice> <Cluster> <BEA-000197> <Listening fo
  r announcements from cluster using unicast cluster messaging>
  <28-Sep-2012 14:08:34 o'clock BST> <Notice> <Cluster> <BEA-000133> <Waiting to s
  ynchronize with other running members of OIM_Cluster.>
  <28-Sep-2012 14:09:04 o'clock BST> <Notice> <Server> <BEA-002613> <Channel "Defa
  ult[2]" is now listening on 127.0.0.1:14000 for protocols iiop, t3, CLUSTER-BROA
  DCAST, ldap, snmp, http.>
  <28-Sep-2012 14:09:04 o'clock BST> <Notice> <Server> <BEA-002613> <Channel "Defa
  ult[3]" is now listening on 0:0:0:0:0:0:0:1:14000 for protocols iiop, t3, CLUSTE
  R-BROADCAST, ldap, snmp, http.>
  <28-Sep-2012 14:09:04 o'clock BST> <Notice> <Server> <BEA-002613> <Channel "Defa
  ult[1]" is now listening on fe80:0:0:0:0:5efe:a2f:f22a:14000 for protocols iiop,
  t3, CLUSTER-BROADCAST, ldap, snmp, http.>
  <28-Sep-2012 14:09:04 o'clock BST> <Warning> <Server> <BEA-002611> <Hostname "UK
  SHWTOAP03A.skandia.co.uk", maps to multiple IP addresses: 10.47.242.42, 0:0:0:0:
  0:0:0:1>
  <28-Sep-2012 14:09:04 o'clock BST> <Notice> <Server> <BEA-002613> <Channel "Defa
  ult" is now listening on 10.47.242.42:14000 for protocols iiop, t3, CLUSTER-BROA
  DCAST, ldap, snmp, http.>
  <28-Sep-2012 14:09:04 o'clock BST> <Notice> <WebLogicServer> <BEA-000330> <Start
  ed WebLogic Managed Server "oim_server1" for domain "IAM_domain" running in Prod
  uction Mode>
  <28-Sep-2012 14:09:04 o'clock BST> <Notice> <WebLogicServer> <BEA-000365> <Serve
  r state changed to ADMIN>
  <28-Sep-2012 14:09:04 o'clock BST> <Notice> <WebLogicServer> <BEA-000360> <Serve
  r started in ADMIN mode>
  **********************************OIM OID Ldap Sync Configuration Logs****************************
  [2012-09-28T14:49:11.171+01:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [[
  [OIM_CONFIG] Updating Ldap Sync Configuration
  [2012-09-28T14:49:11.171+01:00] [as] [TRACE:16] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [SRC_CLASS: LdapSync] [SRC_METHOD: configurationLdap] ENTRY
  [2012-09-28T14:49:11.171+01:00] [as] [TRACE] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [SRC_CLASS: oracle.as.install.oim.config.util.LdapSync] [SRC_METHOD: configurationLdap] Create the Database connection
  [2012-09-28T14:49:11.171+01:00] [as] [TRACE:16] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [SRC_CLASS: LdapSync] [SRC_METHOD: createDBConnection] ENTRY
  [2012-09-28T14:49:11.296+01:00] [as] [TRACE] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [SRC_CLASS: oracle.as.install.oim.config.util.LdapSync] [SRC_METHOD: configurationLdap] isLIBOVD:true
  [2012-09-28T14:49:11.312+01:00] [as] [TRACE:16] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [SRC_CLASS: LdapSync] [SRC_METHOD: closeDBConnection] ENTRY
  [2012-09-28T14:49:11.312+01:00] [as] [TRACE:16] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [SRC_CLASS: LdapSync] [SRC_METHOD: closeDBConnection] RETURN
  [2012-09-28T14:49:11.312+01:00] [as] [TRACE:16] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [SRC_CLASS: LdapSync] [SRC_METHOD: configurationLdap] RETURN
  [2012-09-28T14:49:11.312+01:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [[
  Updated LDAP Server Details in mds schema
  [2012-09-28T14:49:11.312+01:00] [as] [TRACE:16] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [SRC_CLASS: LdapSync] [SRC_METHOD: configurationLdap] RETURN
  [2012-09-28T14:49:11.812+01:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [OIM_CONFIG] Updated LDAPContainerRules.xml.
  [2012-09-28T14:49:11.812+01:00] [as] [TRACE:16] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [SRC_CLASS: mdsMetadata] [SRC_METHOD: loadEventhandler] RETURN
  [2012-09-28T14:49:14.687+01:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [[
  [OIM_CONFIG] Created jobs using seedSchedulerData. Log location C:\Program Files\Oracle\Inventory\logs
  [2012-09-28T14:49:14.687+01:00] [as] [ERROR] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] File not found[[
  java.io.FileNotFoundException: File not found
       at java.util.zip.ZipFile.open(Native Method)
       at java.util.zip.ZipFile.<init>(ZipFile.java:117)
       at java.util.jar.JarFile.<init>(JarFile.java:135)
       at java.util.jar.JarFile.<init>(JarFile.java:72)
       at oracle.as.install.oim.config.util.RoleSODJarUtil.updateFile(RoleSODJarUtil.java:32)
       at oracle.as.install.oim.config.OIMConfigManager.configureOIM(OIMConfigManager.java:783)
       at oracle.as.install.oim.config.OIMConfigManager.doExecute(OIMConfigManager.java:538)
       at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
       at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
       at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
       at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
       at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
       at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
       at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
       at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:83)
       at java.lang.Thread.run(Thread.java:662)
  [2012-09-28T14:49:14.687+01:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [[
  [OIM_CONFIG] Failed configuration step Configure OIM Server
  [2012-09-28T14:49:14.702+01:00] [as] [ERROR] [] [oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] One or More configurations failed. Exiting
  [2012-09-28T14:49:14.702+01:00] [as] [NOTIFICATION] [] [oracle.as.install.engine.modules.statistics] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] Install Adapter: Mark End for:CONFIG
  [2012-09-28T14:49:14.702+01:00] [as] [NOTIFICATION] [] [oracle.as.install.engine.modules.statistics] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] Install Adapter: Mark End for:INTERVIEW
  [2012-09-28T14:49:14.702+01:00] [as] [NOTIFICATION] [] [oracle.as.install.engine.modules.statistics] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] Install Adapter: Mark End for:INSTALL
  [2012-09-28T14:49:14.702+01:00] [as] [NOTIFICATION] [] [oracle.as.install.engine.modules.statistics] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] Install Adapter: Mark End for:COPY
  [2012-09-28T14:49:14.702+01:00] [as] [NOTIFICATION] [] [oracle.as.install.engine.modules.statistics] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] Install Adapter: Mark End for:LINK
  [2012-09-28T14:49:14.765+01:00] [as] [NOTIFICATION] [] [oracle.as.install.engine] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] Setting valueOf(IS CONFIGURATION SUCCESSFUL) to:false. Value obtained from:USER
  [2012-09-28T15:11:21.461+01:00] [as] [NOTIFICATION] [] [oracle.as.install.engine] [tid: 11] [ecid: 0000JcD2jfD9pYjpp0_AiY1GPQHh000002,0] Setting valueOf(IS CONFIGURATION SUCCESSFUL) to:false. Value obtained from:USER
  [2012-09-28T15:11:27.914+01:00] [as] [NOTIFICATION] [] [oracle.as.install.engine] [tid: 11] [ecid: 0000JcD2jfD9pYjpp0_AiY1GPQHh000002,0] Setting valueOf(IS CONFIGURATION SUCCESSFUL) to:false. Value obtained from:USER
  Regards,
  Ravi.

  Your log files too give some hint... Please verify whether following files like .xldatabasekey are present in your environment:-
  OIM application intialization failed because of the following reasons:
  oim-config.xml was not found in MDS Repository.
  Unable to find keystore ".xldatabasekey" in <DOMAIN_HOME>/config/fmwconfig/.
  Password for OIMSchemaPassword is not seeded in CSF.
  Password for xell is not seeded in CSF.
  Password for DataBaseKey is not seeded in CSF.
  Password for JMSKey is not seeded in CSF.
  Password for .xldatabasekey is not seeded in CSF.
  Password for default-keystore.jks is not seeded in CSF.
  Password for SOAAdminPassword is not seeded in CSF.
  I doubt whether OIM is properly installed in your environment otherwise .xldatabasekey would have been present in <DOMAIN_HOME>/config/fmwconfig..
  Also, as far as Weblogic starting in ADMIN mode is concerned, you may try to do the following...
  ps -eaf| grep AdminServer
  Kill the process
  Then remove the lok file. i.e. Lock files...
  rm -rf /home/oracle/Oracle/Middleware/user_projects/domains/oimdomain/servers/oim_server1/tmp/*oim_server1.lok*
  rm -rf /home/oracle/Oracle/Middleware/user_projects/domains/oimdomain/servers/soa_server1/tmp/*soa_server1.lok*
  rm -rf /home/oracle/Oracle/Middleware/user_projects/domains/oimdomain/servers/AdminServer/tmp/*AdminServer.lok*
  After that
  Take the backup of /home/oracle/Oracle/Middleware/user_projects/domains/<DOMAIN_HOME>/servers/AdminServer/data/ldap/ldapfiles (I mean CUT this folder and save it in Backup folder..
  Share the result with us....

• Open LDAP Authenticator Configuration on WLSSP5

  I have problems in the open LDAP authenticator configuration on Weblogic Server with Service Pack 5. I have users on OpenLDAP Server that do not belong to any group. My LDIF file contents are as given below.
  dn: dc=my-domain,dc=com
  dc: my-domain
  objectClass: dcObject
  objectClass: organization
  o: MYABC, Inc
  dn: cn=Manager, dc=my-domain,dc=com
  userPassword:: c2VjcmV0
  objectClass: person
  sn: Manager
  cn: Manager
  dn: cn=myabcsystem, dc=my-domain,dc=com
  userPassword:: dmVuZGF2b3N5c3RlbQ==
  objectClass: person
  sn: myabcsystem
  cn: myabcsystem
  dn: cn=Philippe, dc=my-domain,dc=com
  userPassword:: UGhpbGlwcGU=
  objectClass: person
  sn: Philippe
  cn: Philippe
  dn: cn=mlrick, dc=my-domain,dc=com
  userPassword:: bWxyaWNr
  objectClass: person
  sn: mlrick
  cn: mlrick
  All these users appear in the Users tab after configuration on the console only if LDAP Server is up. While I select group tab, I get errors indicating BAD SEARCH Filter.
  Inspite of me not having any groups in the ldap as indicated in ldif contents.
  While I try to login t the application with this LDAP configuration, I do not get any errors. LDAP authentication is not happening with just the LDAP authenticator in place. Even if I stop the LDAP server, I do nto get any exceptions while trying ot login. The config params for the Open LADP are as given below
  <weblogic.security.providers.authentication.OpenLDAPAuthenticator
  AllGroupsFilter="objectclass=*"
  Credential="{3DES}rGCpYmhaIorI99BjZ2u6Fg=="
  GroupBaseDN="dc=my-domain,dc=com"
  GroupFromNameFilter="(cn=%u)"
  Name="Security:Name=MYABCAuthenticationOpenLDAPAuthenticator"
  Principal="cn=myabcsystem,dc=my-domain,dc=com"
  Realm="Security:Name=MYABCAuthentication"
  StaticGroupDNsfromMemberDNFilter=""
  StaticGroupNameAttribute="" StaticGroupObjectClass=""
  StaticMemberDNAttribute="" UserBaseDN="dc=my-domain, dc=com"/>
  ####<Mar 3, 2006 4:21:34 PM IST> <Debug> <SecurityDebug> <hemalatha> <myserver> <ExecuteThread: '49' for queue: 'default'> <<WLS Kernel>> <> <000000> <LDAP ATN LoginModule initialized>
  ####<Mar 3, 2006 4:21:34 PM IST> <Debug> <SecurityDebug> <hemalatha> <myserver> <ExecuteThread: '49' for queue: 'default'> <<WLS Kernel>> <> <000000> <LDAP Atn Login>
  ####<Mar 3, 2006 4:21:34 PM IST> <Debug> <SecurityDebug> <hemalatha> <myserver> <ExecuteThread: '49' for queue: 'default'> <<WLS Kernel>> <> <000000> <LDAP Atn Login username: bob>
  ####<Mar 3, 2006 4:21:34 PM IST> <Debug> <SecurityDebug> <hemalatha> <myserver> <ExecuteThread: '49' for queue: 'default'> <<WLS Kernel>> <> <000000> <getConnection return conn:LDAPConnection { ldapVersion:2 bindDN:""}>
  ####<Mar 3, 2006 4:21:34 PM IST> <Debug> <SecurityDebug> <hemalatha> <myserver> <ExecuteThread: '49' for queue: 'default'> <<WLS Kernel>> <> <000000> <authenticate user:bob>
  ####<Mar 3, 2006 4:21:34 PM IST> <Debug> <SecurityDebug> <hemalatha> <myserver> <ExecuteThread: '49' for queue: 'default'> <<WLS Kernel>> <> <000000> <getDNForUser search("ou=people,ou=MYABCAuthentication,dc=myabc", "(&(uid=bob)(objectclass=person))", base DN & below)>
  ####<Mar 3, 2006 4:21:34 PM IST> <Debug> <SecurityDebug> <hemalatha> <myserver> <ExecuteThread: '49' for queue: 'default'> <<WLS Kernel>> <> <000000> <returnConnection conn:LDAPConnection { ldapVersion:2 bindDN:""}>
  CAN ANYONE HELP ME IDENTIFY WHAT IS THE ISSUE. Why is the authentication not happening?

  Hi Amol,
  I've seen this happen at least two times in 11.1.1.1 installs. You can safely restart and then add the service back again. Suggest you reboot after you re-add the service back or cycle all the Hyperion services.
  I was not aware you could install the service with that command.
  I used the below command instead:
  sc create OpenLDAP-slapd start= auto binPath= "D:\Hyperion\...\slapd.exe service" DisplayName= "Hyperion Shared Services OpenLAP"
  Regards,
  -John

• Does Weblogic server 9.2 provide support for CRL checking

  Does Weblogic server 9.2 provide support for CRL checking?

  No, but you can create a custom CertPath provider for your own implementation.
  Mike
  Weblogic/J2EE Security Blog: http://monduke.com

• Migrating ADF Security from file-based provider to LDAP provider

  We have deployed a small application using ADF Security with file-based provider in OAS and it works fine.
  Now we want to migrate to ADF Security using LDAP provider.
  In order to make this possible we followed the next steps:
  - Migrate all the roles and policies from the file to OID with JAZNMigrationtool.
  - In OAS we've changed the Application Security Provider to 'Oracle Identity Management'.
  - Reset the OC4J instance.
  But there was no success, the application continues working with the file-based provider.
  What more is necessary to configurate?

  Hi,
  if you use EM make sure you change the setting for the application, not the general OC4J setting.
  You can also deploy the provider settings with the orion-application.xml file added to your project
  Frank

• Providing configuration file for SQL 2012 Express installation which installing HPC 2012 R2

  Hi guys,
  I need to know if there is any way to provide configuration file for SQL 2012 Express installation which installing HPC 2012 R2?
  I am scripting installation on HPC 2012 R2 with default SQL 2012 Express edition but I am not able to find any option to provide a configuation file for SQL 2012 Express installaiton.
  Thanks,
  Vivs.

  Hi Vivs,
  As my understanding, you want to generate a configuration file and install SQL Server 2012 express edition using that configuration file.
  If that is the case, firstly, you could generate the configuration file following the steps below since express edition is run in AutoAdvance mode which skips "Ready to Install" page.
  1.Double-click SQL Server installation file in your local drive, you will see that the file will be extracted to a temporary folder. Please make a note of what directory it is extracted to. For example, it could be in c:\ followed by a folder name which
  will be a set of random letters and numbers "gy7h8hjhhj67rfs7".
  2.Cancel installation. Then click on the Start button on the task bar, click run, type the command cmd.exe, and go to that directory via cmd.
  3.Execute the following command: setup.exe /ACTION=INSTALL /UIMODE=Normal
  4.Follow the wizard through to the 'Ready to Install' page. The path to the configuration file is specified in the 'Ready to Install' page in the configuration file path section.
  5.Cancel the setup without actually completing the installation, to generate the INI file.
  Secondly, to install SQL Server using Command Prompt, go to the SQL Server installation media root (the temporary folder) from the command prompt and specify the ConfigurationFile.ini as a parameter as shown below.
  Setup.exe /ConfigurationFile=ConfigurationFile.INI
  For more information about the process, please refer to the article:
  http://www.mssqltips.com/sqlservertip/2511/standardize-sql-server-installations-with-configuration-files/
  Regards,
  Michelle Li

• Oracle WebLogic 10.3 Template Security Configuration

  The Oracle VM Template for WebLogic 10.3 has the WebLogic installed as root and configured to run as root. This is in conflict with the Oracle recommendations for hardening a WebLogic deployment. Is there a simple way to apply the Oracle security recommendations to the VM Template, Or should we undertake to develop a new template based on the recommendations of the Oracle guide?
  Reference: http://download.oracle.com/docs/cd/E12840_01/wls/docs103/pdf/lockdown.pdf

  Hi David,
  I talked to some security folks and they indicated that the principle reason for not running WLS as root is to protect the OS root account (versus protecting the WLS install). The idea is that if the WLS were compromised then at least the OS would not be compromised as well. In virtual use cases where VMs are often more like appliances than general OS containers for unrelated apps the security paradigms may need modification. That said, I am told that you should be able to go ahead and create a non-root account and then run WLS as that new user. Just remember to change ownership (or permissions) for directories and files as necessary. Your observation re: root is a good one and I will make sure the appropriate PMs are notified.

• Is the Sun JNDI LDAP provider thread safe?

  Hi,
  The JNDI documentation states that the Context implementation is not required to be thread safe although some providers provide thread safety. My question is whether the Sun JNDI LDAP provider is thread safe or do we have to synchronize on the Context instance?
  Thanks

  Read this: http://java.sun.com/j2se/1.3/docs/api/javax/naming/Context.html
  The answer, I think is no you need to synchronize accesses yourself. If you're using it from a servlet container, this should be OK, since each request is on a separate thread.

• Public Folder Hierarchy From 2003 - LDAP Provider Error

  I am in the process of moving the public folders.  Currently all data from within the folders has been migrated over and the old servers have been removed from replication.  My next step is to move the Hierarchy, when I drag the folder from the
  2003 Administrative group to the 2010 Administrative group I receive the following:
  Exchange System Manager
  The server is unwilling to process the request.
  Facility: LDAP Provider
  ID no: 80072035
  Exchange System Manager
  OK  
  I have gone through the permissions for the ADSI objects and folders.  According to them the user that is performing the action has the rights to do so.

  Hi,
  In order to troubleshoot the issue more efficiently, I need to clarify some information.
  1. Could you expand the public folder hierarchy in Exchange 2003?
  2. Is there any error messages in the application log?
  3. Could you please run EXBPA to check the health of the Exchange 2003? What's the result?
  Here is an article about migrating public folders from Exchange 2003 to Exchange 2010, could you please follow that to check the result?
  How to Move Public Folder from Exchange 2003 to Exchange 2010
  http://blogs.technet.com/b/agobbi/archive/2010/08/04/how-to-move-public-folder-from-exchange-2003-to-exchagne-2010.aspx
  If there is any update, please feel free to post here for further research.
  Best regards,
  Belinda
  Belinda Ma
  TechNet Community Support

• No trusted Service Provider configuration with name [localidp] found

  Hello Everyone, I just setup a local IDP by following the documentation here - https://help.hana.ondemand.com/help/frameset.htm?754818ea63874ea38843ab0ed1928765.html However, when I try to access HANA Cloud Portal Service from HANA cloud cockpit, I am getting a login screen following which, I am getting below error. I have defined 3 users and also their corresponding roles such as Administrator, Developer, and Manager. It looks like I missed something or did something wrong. Can anybody help me fix this?
  Error Page No trusted Service Provider configuration with name [localidp] found com.sap.security.saml2.cfg.exceptions.SAML2ConfigurationException: No trusted Service Provider configuration with name [localidp] found at com.sap.security.saml2.idp.api.AuthnRequestValidationService.ensureSAML2AuthnRequestIsValid(AuthnRequestValidationService.java:90) at com.sap.security.saml2.idp.api.SAML2IdPAPI.validateAuthnRequestHttpBody(SAML2IdPAPI.java:914) at com.sap.security.saml2.idp.api.SAML2IdPAPI.validateAuthnRequestHttpBody(SAML2IdPAPI.java:867) at com.sap.core.jpaas.security.saml2.localidp.SSOService.processSSORequest(SSOService.java:126) at com.sap.core.jpaas.security.saml2.localidp.SSOService.doGet(SSOService.java:67) at javax.servlet.http.HttpServlet.service(HttpServlet.java:735) at javax.servlet.http.HttpServlet.service(HttpServlet.java:848) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:303) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122) at org.eclipse.virgo.web.enterprise.security.valve.OpenEjbSecurityInitializationValve.invoke(OpenEjbSecurityInitializationValve.java:44) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501) at com.sap.security.auth.service.webcontainer.internal.Authenticator.invoke(Authenticator.java:192) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:170) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:98) at com.sap.core.tenant.valve.TenantValidationValve.invokeNextValve(TenantValidationValve.java:221) at com.sap.core.tenant.valve.TenantValidationValve.invoke(TenantValidationValve.java:103) at com.sap.js.statistics.tomcat.valve.RequestTracingValve.invoke(RequestTracingValve.java:25) at com.sap.core.js.monitoring.tomcat.valve.RequestTracingValve.invoke(RequestTracingValve.java:27) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408) at org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1040) at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:607) at org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:315) at java.util.concurrent.ThreadPoolExecutor.runWorker(Unknown Source) at java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source) at java.lang.Thread.run(Unknown Source)

  Hi All,
  I have managed to fix this error. I was not able to see folder "localidp" in the mentioned directory. However, folder was present, but it was not visible. So I manually navigated to server configuration in workspace and copied Metadata XML there and refreshed the folder structure in Eclipse, and I was able to see the folder.
  Now I can see a custom IDP being referred!
  Ameya

• RV220W LDAP Group Configuration

  During LDAP Group configuration LDAP Attributes are required. Can I handle any sample configuration for OpenLDAP or 389ds connectivity?
  I would like to use them for internal VPN. But my LDAP users are not correctly handled.
  Regards,
  Marcin

  Hi,
  Curious - which LDAP server are you using ? Which version
  of MQ are you using ?
  Did you create new group names or did you stick to group
  names that MQ already used (in the default file based
  user repository) - 'admin' and 'user' ? This would be the groups
  you created under:
  cn\=group1,ou\=imqgroups,o\=Groups, dc\=unimas,dc\=com
  Also, since you created new groups , you might want to read
  up on how to modify the accesscontrol.properties file:
  http://docs.sun.com/source/819-0066/security.html#wp47944
  Of interest is this entry from the above page:
  The default ACL properties file gives all users access
  to NORMAL connection services and gives users in the
  group admin access to ADMIN connection services:
  connection.NORMAL.allow.user=*
  connection.ADMIN.allow.group=admin
  If you are using a file-based user repository, the default
  group admin is created by imqusermgr. If you are using
  an LDAP user repository, you can do one of the following
  to use the default ACL properties file:
  * Define a group called admin in the LDAP directory.
  * Replace the name admin in the ACL properties file with
  the names of one or more groups that are defined in
  the LDAP directory.
  The default entries in the accesscontrol.properties file
  basically allow any user in the repository to log in,
  but only users in group 'admin' to do admin stuff.
  If you created a group called 'mygroup', you might want to
  create the following entry (or modify existing entries) to
  restrict only users in 'mygroup' to create normal JMS (ie not
  admin) connections:
  connection.NORMAL.allow.group=mygroup
  hope this helps,
  -isa
  http://www.sun.com/software/products/message_queue/index.xml

• Weblogic 8.1 JAAS login.configuration.provider from java.security does not seem to work?

  We configure a custom implementation of the JAAS
  javax.security.auth.login.Configuration class for our applications security
  framework in JRE_LIB/security/java.security using the entry
  login.configuration.provider=com.foo.SecurityConfiguration
  However, this does not seem get picked up and the configuration provider
  class instead seems to default to
  weblogic.security.service.ServerConfiguration
  instead.
  Has anyone else seen this?
  We're using the JDK bundled with Weblogic 8.1
  TIA for your help

  Thanks for all the posting re. this issue....
  I think the way Weblogic implemented "support" for JAAS in 8.1 totally
  blows. In fact, when I asked BEA support about this, they basically sent me
  an email saying that "Weblogic owns the JAAS configuration" so if you have a
  security framework that is application server agnostic, but leverages JAAS
  then you are screwed when deploying on Weblogic 8.1.
  I looked for a workaround and believe that instead of using an entry in
  java.security for your custom configuration class, if you set the JVM
  parameter
  -Dlogin.configuration.provider=com.foo.SecurityConfiguration
  then what happens is that the Weblogic custom class
  weblogic.security.service.ServerConfiguration is invoked by JAAS. It tries
  to load the login module configuration and if that fails, it delegates to
  com.foo.SecurityConfiguration. So this should enable both the weblogic
  security framework and a custom security framework that are both based on
  JAAS
  I'm currently testing this out
  "Lloyd Fernandes" <[email protected]> wrote in message
  news:[email protected]...
  >
  Robert Greig <[email protected]> wrote:
  Lloyd Fernandes wrote:
  "Lloyd Fernandes" <[email protected]> wrote:
  "Prashant Nayak" <[email protected]> wrote:
  We configure a custom implementation of the JAAS
  javax.security.auth.login.Configuration class for our applications
  security
  framework in JRE_LIB/security/java.security using the entry
  login.configuration.provider=com.foo.SecurityConfiguration
  However, this does not seem get picked up and the configuration
  provider
  class instead seems to default to
  weblogic.security.service.ServerConfiguration
  instead.
  Has anyone else seen this?
  We're using the JDK bundled with Weblogic 8.1
  TIA for your help
  As per documentation in the API JAVADOCS forjavax.security.auth.login.Configuration
  >>>>
  >>>>
  The default Configuration implementation can be changed by settingthe
  value of
  the "login.configuration.provider" security property (in the Java
  security
  properties
  file) to the fully qualified name of the desired Configurationimplementation
  class. The Java security properties file is located in the file named
  <JAVA_HOME>/lib/security/java.security,
  where <JAVA_HOME> refers to the directory where the JDK was installed.
  Have you tried to use a startup class to set the configuration providerusing
  javax.security.auth.login.setConfiguration(YourConfigClass);
  Weblogic probably uses this to set the configuration class to it'sown.
  You have to consider whether this is really something you want to do
  however. If you want to get WLS to use a custom authenticator use its
  SSPIs. You can configure the order etc. in the admin console.
  By overriding the configuration you override it for the server as a
  whole which can mean for example that you cannot login to the admin
  console. Having said this, from memory, I believe that the property is
  ignored in WLS. However you can still call
  Configuration.setConfiguration if you really want to.
  The fact that there is a "global static" in the Configuration class is
  a
  Bad Thing IMHO, that was never really designed for an app server
  environment.
  Robert
  If it is a bad thing to have a static how come Weblogic uses it instead ofthe
  standard way of modifying the property in java security file - it isbecause
  weblogic wants it's own way of implementing instead of using using the'plugable
  module' architecture of JAAS.
  When weblogic advertised that it will support JAAS the impression was thatWeblogic
  would provide a login module that will implement the security mechanism itwanted
  - instead it went it's own way.
  Also consider the following
  1. JAAS specifies a mechanism for multiple configurations based on a'application'.
  This is not possible in the current 'weblogic security mechanism'
  2. Weblogic says it supports JAAS but what it does not tell you is that inorder
  to use available login modules you have to write a whole bunch of code tosupport
  principal validators and authenticators. (I begin to wonder if write oncedeploy
  anywhere is not part of Sun's certification process anymore)

• Anyone configured OID with weblogic as external LDAP

  Hey,
  I need help from someone who configured Oracle Internet Directory with weblogic 7 or any version to us as external LDAP server.
  Your Help is greatly appreciated.
  Thanks & Best Regards,
  Nagendra

  I was able to use OID as external LDAP for my Weblogic. I was able to move the stuff from Weblogic Embedded LDAP to Oracle Internet Directory Server, I have done it by myself
  Thanks
  Nagendra

• Weblogic fails to start after Configuring Agent Authenticator Provider

  Hi
  I have installed the Sun One Policy Agent for Weblogic.After making changes to the Security Realm, the weblogic server does not start.Following is the stack trace seen on the console.
  The WebLogic Server did not start up properly.
  java.lang.ExceptionInInitializerError
  at com.sun.identity.agents.weblogic.AmAuthProvider.getRealmInstance(Unknown Source)
  at com.sun.identity.agents.weblogic.AmAuthProvider.initialize(Unknown Source)
  at weblogic.security.service.SecurityServiceManagerDelegateImpl.createSecurityProvider(SecurityServiceManagerDelegateImpl.java:242)
  at weblogic.security.service.SecurityServiceManager.createSecurityProvider(SecurityServiceManager.java:939)
  at weblogic.security.service.PrincipalAuthenticator.initialize(PrincipalAuthenticator.java:151)
  at weblogic.security.service.PrincipalAuthenticator.<init>(PrincipalAuthenticator.java:257)
  at weblogic.security.service.SecurityServiceManagerDelegateImpl.doATN(SecurityServiceManagerDelegateImpl.java:581)
  at weblogic.security.service.SecurityServiceManagerDelegateImpl.initializeRealm(SecurityServiceManagerDelegateImpl.java:420)
  at weblogic.security.service.SecurityServiceManagerDelegateImpl.loadRealm(SecurityServiceManagerDelegateImpl.java:698)
  at weblogic.security.service.SecurityServiceManagerDelegateImpl.initializeRealms(SecurityServiceManagerDelegateImpl.java:731)
  at weblogic.security.service.SecurityServiceManagerDelegateImpl.initialize(SecurityServiceManagerDelegateImpl.java:874)
  at weblogic.security.service.SecurityServiceManager.initialize(SecurityServiceManager.java:717)
  at weblogic.t3.srvr.T3Srvr.initializeHere(T3Srvr.java:822)
  at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:670)
  at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:344)
  at weblogic.Server.main(Server.java:32)
  Caused by: java.lang.RuntimeException: Exception caught in AmRealmManager initializer: AmRealm: Unable to create store connection
  at com.sun.identity.agents.realm.AmRealmManager.<clinit>(Unknown Source)
  Can anyone help regarding this.Its Urgent

  Hi all
  I am also getting the same error
  CLASSPATH=C:\bea\JDK141~1\lib\tools.jar;C:\bea\WEBLOG~1\server\lib\weblogic_sp.j
  ar;C:\bea\WEBLOG~1\server\lib\weblogic.jar;C:\bea\WEBLOG~1\server\lib\ojdbc14.ja
  r;C:\bea\WEBLOG~1\common\eval\pointbase\lib\pbserver44.jar;C:\bea\WEBLOG~1\commo
  n\eval\pointbase\lib\pbclient44.jar;C:\bea\JDK141~1\jre\lib\rt.jar;C:\bea\WEBLOG
  ~1\server\lib\webservices.jar;C:\Agent\IdentityServer\j2ee_agents\lib\agent_tool
  s_2_1.jar;C:\Agent\IdentityServer\j2ee_agents\config\C__bea_user_projects_domain
  s_NewFuelPricingDomain;C:\Agent\IdentityServer\j2ee_agents\locale;C:\Agent\Ident
  ityServer\j2ee_agents\lib\am_agent_sdk_2_1.jar;C:\Agent\IdentityServer\j2ee_agen
  ts\lib\am_agent_filter_2_1.jar;C:\Agent\IdentityServer\j2ee_agents\lib\am_sdk.ja
  r;C:\Agent\IdentityServer\j2ee_agents\lib\am_services.jar;C:\Agent\IdentityServe
  r\j2ee_agents\lib\am_sso_provider.jar;C:\Agent\IdentityServer\j2ee_agents\lib\am
  logging.jar;C:\Agent\IdentityServer\j2eeagents\lib\am_wl70_agent_2_1.jar;extli
  b\log4j-1.2.8.jar;C:\bea\appsettings;C:\projects\resources\terajdbc4.jar;C:\proj
  ects\resources\tdgssjava.jar;.\log4j.xml
  PATH=C:\bea\WEBLOG~1\server\bin;C:\bea\JDK141~1\jre\bin;C:\bea\JDK141~1\bin;C:\P
  rogram Files\NCR\Teradata Client\Bin;C:\Program Files\CA\Dcs\DMScripting\;C:\Pro
  gram Files\CA\DCS\CAWIN\;c:\reskit;c:\winnt;c:\winnt\system32;c:\winnt\system32\
  wbem;C:\Program Files\Common Files\OpSession\Shared;C:\Program Files\Common File
  s\OpSession\Viewer Shared;N:\;c:\orant\bin;C:\Program Files\CA\Unicenter Softwar
  e Delivery\BIN;C:\orant\bin;C:\Program Files\Hewlett-Packard\OpenView\service de
  sk 4.5\client\bin;C:\ant\bin;.;C:\j2sdk1.4.2_16\bin;C:\Documents and Settings\dp
  sdazk;C:\java\javasoft\java1.42\bin;C:\java\apache\jakarta-ant-1.5.1\bin;C:\Prog
  ram Files\NCR\TeraJDBC\bin;;C:\bea\WEBLOG~1\server\bin\oci920_8
  * To start WebLogic Server, use a username and *
  * password assigned to an admin-level user. For *
  * server administration, use the WebLogic Server *
  * console at http:\\[hostname]:[port]\console *
  Bad level value for property: com.iplanet.services.debug.level
  Bad level value for property: com.sun.identity.agents.logging.level
  Bad level value for property: com.sun.am.policy.amFilter.audit.level
  <Feb 13, 2008 1:34:09 PM EST> <Info> <WebLogicServer> <BEA-000377> <Starting Web
  Logic Server with Java HotSpot(TM) Client VM Version 1.4.1_05-b01 from Sun Micro
  systems Inc.>
  <Feb 13, 2008 1:34:09 PM EST> <Info> <Configuration Management> <BEA-150016> <Th
  is server is being started as the administration server.>
  <Feb 13, 2008 1:34:09 PM EST> <Info> <Management> <BEA-141107> <Version: WebLogi
  c Server 8.1 SP2 Fri Dec 5 15:01:51 PST 2003 316284
  WebLogic XMLX Module 8.1 SP2 Fri Dec 5 15:01:51 PST 2003 316284 >
  <Feb 13, 2008 1:34:09 PM EST> <Notice> <Management> <BEA-140005> <Loading domain
  configuration from configuration repository at C:\bea\user_projects\domains\New
  FuelPricingDomain\.\config.xml.>
  <Feb 13, 2008 1:34:12 PM EST> <Notice> <Log Management> <BEA-170019> <The server
  log file C:\bea\user_projects\domains\NewFuelPricingDomain\myserver\myserver.lo
  g is opened. All server side log events will be written to this file.>
  The WebLogic Server did not start up properly.
  java.lang.ExceptionInInitializerError
  at com.sun.identity.agents.weblogic.AmAuthProvider.getRealmInstance(Unkn
  own Source)
  at com.sun.identity.agents.weblogic.AmAuthProvider.initialize(Unknown So
  urce)
  at weblogic.security.service.SecurityServiceManagerDelegateImpl.createSe
  curityProvider(SecurityServiceManagerDelegateImpl.java:241)
  at weblogic.security.service.SecurityServiceManager.createSecurityProvid
  er(SecurityServiceManager.java:929)
  at weblogic.security.service.PrincipalAuthenticator.initialize(Principal
  Authenticator.java:151)
  at weblogic.security.service.PrincipalAuthenticator.<init>(PrincipalAuth
  enticator.java:257)
  at weblogic.security.service.SecurityServiceManagerDelegateImpl.doATN(Se
  curityServiceManagerDelegateImpl.java:580)
  at weblogic.security.service.SecurityServiceManagerDelegateImpl.initiali
  zeRealm(SecurityServiceManagerDelegateImpl.java:419)
  at weblogic.security.service.SecurityServiceManagerDelegateImpl.loadReal
  m(SecurityServiceManagerDelegateImpl.java:697)
  at weblogic.security.service.SecurityServiceManagerDelegateImpl.initiali
  zeRealms(SecurityServiceManagerDelegateImpl.java:730)
  at weblogic.security.service.SecurityServiceManagerDelegateImpl.initiali
  ze(SecurityServiceManagerDelegateImpl.java:873)
  at weblogic.security.service.SecurityServiceManager.initialize(SecurityS
  erviceManager.java:719)
  at weblogic.t3.srvr.T3Srvr.initializeHere(T3Srvr.java:820)
  at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:664)
  at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:342)
  at weblogic.Server.main(Server.java:32)
  Caused by: java.lang.RuntimeException: Exception caught in AmRealmManager initia
  lizer: AmRealm: Unable to create store connection
  at com.sun.identity.agents.realm.AmRealmManager.<clinit>(Unknown Source)
  ... 16 more
  Please help me to resolve this problem.
  Any help will be highly appreciated.