Weblogic 10.3 ldap provider configuration
Hello, I am trying to configure Weblogic 10.3 to use an LDAP authentication provider. I can see my list of Users from the ldap server, but I can not see the list of Groups. Any help with my config would be appreciated. I turned on debug for DebugSecurity and ldap. I do not seem to have a recent error from trying to view the groups in the logs. I have been doing grep -i error on the log dir.
Ldap-auth Config
Weblogic 10.3 (Windows install)
IPlanetAuth Provider - 1.0
LDAP Server – Fedora Directory Server (fedora-ds-1.0.4-1.RHEL4)
LDAP Group DN
ou=fssys02,ou=Groups,dc=hns-net,dc=com
Groups under fssys02 – 4 cn=fs* groups that do not show up in Weblogic
Group objectClass - groupOfUniqueNames (structural)
Control flag - OPTIONAL
IPlanetAuth Provider - 1.0
Keep Alive Enabled – yes
User Name Attribute – uid
Propagate Cause for Login Exception – yes
Principal -
Host – ldap
User Object Class – person
All Users filter -
User Search Scope – subtree
All Groups filter –
Static Member DN Attribute – uniqueMember
Bind Anonymously on Referrals – yes
Group From Name Filter - (&(cn=%g)(objectclass=groupofUniqueNames))
Static Group DNs from Member DN Filter - (&(uniqueMember=%M)(objectclass=groupofUniqueNames))
Use Retrieved user Name as Principal –
Results Time Limit – 0
Cache TTL – 60
Dynamic Group Name Attribute –
Credential –
Confirm Credential –
Group Search Scope – subtree
Group Base DN - ou=fssys02,ou=Groups,dc=hns-net,dc=com
Dynamic Group Object Class – groupofURLs
User From Name Filter - (&(uid=%u)(objectclass=person))
Dynamic Member URL Attribute – memberURL
Cache Size – 32
SSLEnabled –
Cache Enabled – yes
Connection Retry Limit – 1
Connect Timeout – 0
Parallel Connect Delay – 0
User Dynamic Group DN Attribute – cn
Static Group Name Attribute – cn
User Base DN - ou=People, dc=hns-net,dc=com
Follow Referrals – yes
Port – 389
Ignore Duplicate Membership –
Static Group Object Class –
Group Membersip Searching – unlimited
Max Group Membership Search Level – 15
Hi To View the LDAP Groups and the users
Groups and users has to been under one OU (organizational Unit) Check the Below Format
and in the Properties files you have to enable the LDAPGroup Proprties to true.
This is for iplanet
User path
ou=groups,dc=xxx,dc=xxxsoft,dc=com
Group path
ou=groups,dc=xxx,dc=xxxsoft,dc=com
Search filter
(objectclass=person)
for ADS Group base DN and user base Dn should be same (for example:-ou=test)
Group Base DN - ou=fssys02,ou=Groups,dc=hns-net,dc=com
User Base DN - ou=People, dc=hns-net,dc=com
Check it out.This Should work.
Similar Messages
-
LDAP Server Configuration in Weblogic
Hi,
While configuring LDAP provider in the existing weblogic server, I am facing issue while importing the certificate [.cer files] into the weblogic server for installation.
Could someone provide the sequential steps that need to be followed to setup LDAP?
Thanks,
Pratik.I'm not sure what you want to achieve, but I guess that you want to use the Oracle Internet Directory for authentication?
Usually there would be some place in the Weblogic setup where you can configure this. Needed for the connectivity to the OID are usually the DN of the user that can connect (cn=orcladmin,dc=users,dc=acme,dc=com) and the hostname and port where the OID is running.
cu
Andreas -
Problem OIM OID Ldap Sync Configuration in 11g.
Hi Team,
I am doing OIM and OID LDAP Sync configuration There It is failed in "Configuration Process" Step.
and also in weblogic OIM Maganaged server in ADMIN mode not in running mode.
please find the both logs.
*********************************Weblogic Logs**********************************************
Enter username to boot WebLogic server:weblogic
Enter password to boot WebLogic server:
<28-Sep-2012 14:07:44 o'clock BST> <Info> <Management> <BEA-141107> <Version: We
bLogic Server 10.3.5.0 Fri Apr 1 20:20:06 PDT 2011 1398638 >
<28-Sep-2012 14:07:47 o'clock BST> <Notice> <WebLogicServer> <BEA-000365> <Serve
r state changed to STARTING>
<28-Sep-2012 14:07:47 o'clock BST> <Info> <WorkManager> <BEA-002900> <Initializi
ng self-tuning thread pool>
<28-Sep-2012 14:07:48 o'clock BST> <Notice> <Log Management> <BEA-170019> <The s
erver log file E:\Oracle\Middleware\user_projects\domains\IAM_domain\servers\oim
server1\logs\oimserver1.log is opened. All server side log events will be writ
ten to this file.>
28-Sep-2012 14:07:56 oracle.security.am.common.nap.util.NAPLogger log
SEVERE: Failed to communicate with any of configured Access Server, ensure that
it is up and running.
<28-Sep-2012 14:07:57 o'clock BST> <Notice> <Security> <BEA-090082> <Security in
itializing using security realm myrealm.>
<28-Sep-2012 14:08:04 o'clock BST> <Notice> <WebLogicServer> <BEA-000365> <Serve
r state changed to STANDBY>
<28-Sep-2012 14:08:04 o'clock BST> <Notice> <WebLogicServer> <BEA-000365> <Serve
r state changed to STARTING>
<28-Sep-2012 14:08:20 o'clock BST> <Warning> <oracle.jps.upgrade> <JPS-06003> <C
annot migrate credential folder/key ADF/anonymous#oimBpelCredKey.Reason oracle.s
ecurity.jps.service.credstore.CredentialAlreadyExistsException: JPS-01007: The c
redential with map ADF and key anonymous#oimBpelCredKey already exists..>
<28-Sep-2012 14:08:21 o'clock BST> <Warning> <oracle.adf.share.ADFContext> <BEA-
000000> <Automatically initializing a DefaultContext for getCurrent.
Caller should ensure that a DefaultContext is proper for this use.
Memory leaks and/or unexpected behaviour may occur if the automatic initializati
on is performed improperly.
This message may be avoided by performing initADFContext before using getCurrent
To see the stack trace for thread that is initializing this, set the logging lev
el of oracle.adf.share.ADFContext to FINEST>
<28-Sep-2012 14:08:24 o'clock BST> <Error> <Deployer> <BEA-149205> <Failed to in
itialize the application 'oim [Version=11.1.1.3.0]' due to error oracle.iam.plat
form.utils.OIMAppInitializationException:
OIM application intialization failed because of the following reasons:
oim-config.xml was not found in MDS Repository.
Unable to find keystore ".xldatabasekey" in <DOMAIN_HOME>/config/fmwconfig/.
Password for OIMSchemaPassword is not seeded in CSF.
Password for xell is not seeded in CSF.
Password for DataBaseKey is not seeded in CSF.
Password for JMSKey is not seeded in CSF.
Password for .xldatabasekey is not seeded in CSF.
Password for default-keystore.jks is not seeded in CSF.
Password for SOAAdminPassword is not seeded in CSF.
oracle.iam.platform.utils.OIMAppInitializationException:
OIM application intialization failed because of the following reasons:
oim-config.xml was not found in MDS Repository.
Unable to find keystore ".xldatabasekey" in <DOMAIN_HOME>/config/fmwconfig/.
Password for OIMSchemaPassword is not seeded in CSF.
Password for xell is not seeded in CSF.
Password for DataBaseKey is not seeded in CSF.
Password for JMSKey is not seeded in CSF.
Password for .xldatabasekey is not seeded in CSF.
Password for default-keystore.jks is not seeded in CSF.
Password for SOAAdminPassword is not seeded in CSF.
at oracle.iam.platform.utils.OIMAppInitializationListener.preStart(OIMAp
pInitializationListener.java:145)
at weblogic.application.internal.flow.BaseLifecycleFlow$PreStartAction.r
un(BaseLifecycleFlow.java:282)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(Authenticate
dSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:
120)
at weblogic.application.internal.flow.BaseLifecycleFlow$LifecycleListene
rAction.invoke(BaseLifecycleFlow.java:199)
Truncated. see log file for complete stacktrace
Caused By: oracle.iam.platform.utils.OIMAppInitializationException:
OIM application intialization failed because of the following reasons:
oim-config.xml was not found in MDS Repository.
Unable to find keystore ".xldatabasekey" in <DOMAIN_HOME>/config/fmwconfig/.
Password for OIMSchemaPassword is not seeded in CSF.
Password for xell is not seeded in CSF.
Password for DataBaseKey is not seeded in CSF.
Password for JMSKey is not seeded in CSF.
Password for .xldatabasekey is not seeded in CSF.
Password for default-keystore.jks is not seeded in CSF.
Password for SOAAdminPassword is not seeded in CSF.
at oracle.iam.platform.utils.OIMAppInitializationListener.preStart(OIMAp
pInitializationListener.java:145)
at weblogic.application.internal.flow.BaseLifecycleFlow$PreStartAction.r
un(BaseLifecycleFlow.java:282)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(Authenticate
dSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:
120)
at weblogic.application.internal.flow.BaseLifecycleFlow$LifecycleListene
rAction.invoke(BaseLifecycleFlow.java:199)
Truncated. see log file for complete stacktrace
>
<28-Sep-2012 14:08:24 o'clock BST> <Warning> <Munger> <BEA-2156203> <A version a
ttribute was not found in element application in the deployment descriptor in E:
\Oracle\Middleware\Oracle_IDM1\server\apps\spml-xsd.ear/META-INF/application.xml
. A version attribute is required, but this version of the Weblogic Server will
assume that the JEE5 is used. Future versions of the Weblogic Server will reject
descriptors that do not specify the JEE version.>
<28-Sep-2012 14:08:24 o'clock BST> <Warning> <Munger> <BEA-2156203> <A version a
ttribute was not found in element application in the deployment descriptor in E:
\Oracle\Middleware\user_projects\domains\IAM_domain\servers\oim_server1\tmp\_WL_
user\spml-xsd\s8d2b9/META-INF/application.xml. A version attribute is required,
but this version of the Weblogic Server will assume that the JEE5 is used. Futur
e versions of the Weblogic Server will reject descriptors that do not specify th
e JEE version.>
<28-Sep-2012 14:08:24 o'clock BST> <Emergency> <Deployer> <BEA-149259> <Server '
oim_server1' in cluster 'OIM_Cluster' is being brought up in administration stat
e due to failed deployments.>
Loading xalan.jar for XPathAPI.
14:08:30 INFO [[STANDBY] ExecuteThread: '2' for queue: 'weblogic.kernel.Default
(self-tuning)'] -
----------------- NEXAWEB SERVER LICENSE ------------------
- Customer ID : 122
- License type : Enterprise
- Max unique IPs : unlimited
- Max XUL sessions : unlimited
- Max CPUs/server : unlimited
- Clustering allowed : true
- Expiration date : none
Nexaweb Technologies Inc.(C)2000-2004. All Rights Reserved.
Nexaweb Technologies Inc.
10 Canal Park
Cambridge, MA 02141
Tel: 617.577.8100. Email: [email protected]
14:08:31 INFO [[STANDBY] ExecuteThread: '2' for queue: 'weblogic.kernel.Default
(self-tuning)'] - Clustering is OFF.
14:08:31 INFO [[STANDBY] ExecuteThread: '2' for queue: 'weblogic.kernel.Default
(self-tuning)'] - Servlet Engine: WebLogic Server 10.3.5.0 Fri Apr 1 20:20:06 PD
T 2011 1398638 Oracle WebLogic Server Module Dependencies 10.3 Thu Mar 3 14:37:5
2 PST 2011 Oracle WebLogic Server on JRockit Virtual Edition Module Dependencies
10.3 Thu Feb 3 16:30:47 EST 2011
14:08:31 INFO [[STANDBY] ExecuteThread: '2' for queue: 'weblogic.kernel.Default
(self-tuning)'] - Servlet API Version: 2.5
14:08:31 INFO [[STANDBY] ExecuteThread: '2' for queue: 'weblogic.kernel.Default
(self-tuning)'] - Nexaweb Server Info = Nexaweb Server 3.3.1072
14:08:31 INFO [[STANDBY] ExecuteThread: '2' for queue: 'weblogic.kernel.Default
(self-tuning)'] - Nexaweb Server initialized successfully.
<28-Sep-2012 14:08:34 o'clock BST> <Notice> <Log Management> <BEA-170027> <The S
erver has established connection with the Domain level Diagnostic Service succes
sfully.>
<28-Sep-2012 14:08:34 o'clock BST> <Notice> <Cluster> <BEA-000197> <Listening fo
r announcements from cluster using unicast cluster messaging>
<28-Sep-2012 14:08:34 o'clock BST> <Notice> <Cluster> <BEA-000133> <Waiting to s
ynchronize with other running members of OIM_Cluster.>
<28-Sep-2012 14:09:04 o'clock BST> <Notice> <Server> <BEA-002613> <Channel "Defa
ult[2]" is now listening on 127.0.0.1:14000 for protocols iiop, t3, CLUSTER-BROA
DCAST, ldap, snmp, http.>
<28-Sep-2012 14:09:04 o'clock BST> <Notice> <Server> <BEA-002613> <Channel "Defa
ult[3]" is now listening on 0:0:0:0:0:0:0:1:14000 for protocols iiop, t3, CLUSTE
R-BROADCAST, ldap, snmp, http.>
<28-Sep-2012 14:09:04 o'clock BST> <Notice> <Server> <BEA-002613> <Channel "Defa
ult[1]" is now listening on fe80:0:0:0:0:5efe:a2f:f22a:14000 for protocols iiop,
t3, CLUSTER-BROADCAST, ldap, snmp, http.>
<28-Sep-2012 14:09:04 o'clock BST> <Warning> <Server> <BEA-002611> <Hostname "UK
SHWTOAP03A.skandia.co.uk", maps to multiple IP addresses: 10.47.242.42, 0:0:0:0:
0:0:0:1>
<28-Sep-2012 14:09:04 o'clock BST> <Notice> <Server> <BEA-002613> <Channel "Defa
ult" is now listening on 10.47.242.42:14000 for protocols iiop, t3, CLUSTER-BROA
DCAST, ldap, snmp, http.>
<28-Sep-2012 14:09:04 o'clock BST> <Notice> <WebLogicServer> <BEA-000330> <Start
ed WebLogic Managed Server "oim_server1" for domain "IAM_domain" running in Prod
uction Mode>
<28-Sep-2012 14:09:04 o'clock BST> <Notice> <WebLogicServer> <BEA-000365> <Serve
r state changed to ADMIN>
<28-Sep-2012 14:09:04 o'clock BST> <Notice> <WebLogicServer> <BEA-000360> <Serve
r started in ADMIN mode>
**********************************OIM OID Ldap Sync Configuration Logs****************************
[2012-09-28T14:49:11.171+01:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [[
[OIM_CONFIG] Updating Ldap Sync Configuration
[2012-09-28T14:49:11.171+01:00] [as] [TRACE:16] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [SRC_CLASS: LdapSync] [SRC_METHOD: configurationLdap] ENTRY
[2012-09-28T14:49:11.171+01:00] [as] [TRACE] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [SRC_CLASS: oracle.as.install.oim.config.util.LdapSync] [SRC_METHOD: configurationLdap] Create the Database connection
[2012-09-28T14:49:11.171+01:00] [as] [TRACE:16] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [SRC_CLASS: LdapSync] [SRC_METHOD: createDBConnection] ENTRY
[2012-09-28T14:49:11.296+01:00] [as] [TRACE] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [SRC_CLASS: oracle.as.install.oim.config.util.LdapSync] [SRC_METHOD: configurationLdap] isLIBOVD:true
[2012-09-28T14:49:11.312+01:00] [as] [TRACE:16] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [SRC_CLASS: LdapSync] [SRC_METHOD: closeDBConnection] ENTRY
[2012-09-28T14:49:11.312+01:00] [as] [TRACE:16] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [SRC_CLASS: LdapSync] [SRC_METHOD: closeDBConnection] RETURN
[2012-09-28T14:49:11.312+01:00] [as] [TRACE:16] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [SRC_CLASS: LdapSync] [SRC_METHOD: configurationLdap] RETURN
[2012-09-28T14:49:11.312+01:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [[
Updated LDAP Server Details in mds schema
[2012-09-28T14:49:11.312+01:00] [as] [TRACE:16] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [SRC_CLASS: LdapSync] [SRC_METHOD: configurationLdap] RETURN
[2012-09-28T14:49:11.812+01:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [OIM_CONFIG] Updated LDAPContainerRules.xml.
[2012-09-28T14:49:11.812+01:00] [as] [TRACE:16] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [SRC_CLASS: mdsMetadata] [SRC_METHOD: loadEventhandler] RETURN
[2012-09-28T14:49:14.687+01:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [[
[OIM_CONFIG] Created jobs using seedSchedulerData. Log location C:\Program Files\Oracle\Inventory\logs
[2012-09-28T14:49:14.687+01:00] [as] [ERROR] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] File not found[[
java.io.FileNotFoundException: File not found
at java.util.zip.ZipFile.open(Native Method)
at java.util.zip.ZipFile.<init>(ZipFile.java:117)
at java.util.jar.JarFile.<init>(JarFile.java:135)
at java.util.jar.JarFile.<init>(JarFile.java:72)
at oracle.as.install.oim.config.util.RoleSODJarUtil.updateFile(RoleSODJarUtil.java:32)
at oracle.as.install.oim.config.OIMConfigManager.configureOIM(OIMConfigManager.java:783)
at oracle.as.install.oim.config.OIMConfigManager.doExecute(OIMConfigManager.java:538)
at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:83)
at java.lang.Thread.run(Thread.java:662)
[2012-09-28T14:49:14.687+01:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] [[
[OIM_CONFIG] Failed configuration step Configure OIM Server
[2012-09-28T14:49:14.702+01:00] [as] [ERROR] [] [oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] One or More configurations failed. Exiting
[2012-09-28T14:49:14.702+01:00] [as] [NOTIFICATION] [] [oracle.as.install.engine.modules.statistics] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] Install Adapter: Mark End for:CONFIG
[2012-09-28T14:49:14.702+01:00] [as] [NOTIFICATION] [] [oracle.as.install.engine.modules.statistics] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] Install Adapter: Mark End for:INTERVIEW
[2012-09-28T14:49:14.702+01:00] [as] [NOTIFICATION] [] [oracle.as.install.engine.modules.statistics] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] Install Adapter: Mark End for:INSTALL
[2012-09-28T14:49:14.702+01:00] [as] [NOTIFICATION] [] [oracle.as.install.engine.modules.statistics] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] Install Adapter: Mark End for:COPY
[2012-09-28T14:49:14.702+01:00] [as] [NOTIFICATION] [] [oracle.as.install.engine.modules.statistics] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] Install Adapter: Mark End for:LINK
[2012-09-28T14:49:14.765+01:00] [as] [NOTIFICATION] [] [oracle.as.install.engine] [tid: 12] [ecid: 0000JcD8obD9pYjpp0_AiY1GPQHh000003,0] Setting valueOf(IS CONFIGURATION SUCCESSFUL) to:false. Value obtained from:USER
[2012-09-28T15:11:21.461+01:00] [as] [NOTIFICATION] [] [oracle.as.install.engine] [tid: 11] [ecid: 0000JcD2jfD9pYjpp0_AiY1GPQHh000002,0] Setting valueOf(IS CONFIGURATION SUCCESSFUL) to:false. Value obtained from:USER
[2012-09-28T15:11:27.914+01:00] [as] [NOTIFICATION] [] [oracle.as.install.engine] [tid: 11] [ecid: 0000JcD2jfD9pYjpp0_AiY1GPQHh000002,0] Setting valueOf(IS CONFIGURATION SUCCESSFUL) to:false. Value obtained from:USER
Regards,
Ravi.Your log files too give some hint... Please verify whether following files like .xldatabasekey are present in your environment:-
OIM application intialization failed because of the following reasons:
oim-config.xml was not found in MDS Repository.
Unable to find keystore ".xldatabasekey" in <DOMAIN_HOME>/config/fmwconfig/.
Password for OIMSchemaPassword is not seeded in CSF.
Password for xell is not seeded in CSF.
Password for DataBaseKey is not seeded in CSF.
Password for JMSKey is not seeded in CSF.
Password for .xldatabasekey is not seeded in CSF.
Password for default-keystore.jks is not seeded in CSF.
Password for SOAAdminPassword is not seeded in CSF.
I doubt whether OIM is properly installed in your environment otherwise .xldatabasekey would have been present in <DOMAIN_HOME>/config/fmwconfig..
Also, as far as Weblogic starting in ADMIN mode is concerned, you may try to do the following...
ps -eaf| grep AdminServer
Kill the process
Then remove the lok file. i.e. Lock files...
rm -rf /home/oracle/Oracle/Middleware/user_projects/domains/oimdomain/servers/oim_server1/tmp/*oim_server1.lok*
rm -rf /home/oracle/Oracle/Middleware/user_projects/domains/oimdomain/servers/soa_server1/tmp/*soa_server1.lok*
rm -rf /home/oracle/Oracle/Middleware/user_projects/domains/oimdomain/servers/AdminServer/tmp/*AdminServer.lok*
After that
Take the backup of /home/oracle/Oracle/Middleware/user_projects/domains/<DOMAIN_HOME>/servers/AdminServer/data/ldap/ldapfiles (I mean CUT this folder and save it in Backup folder..
Share the result with us.... -
Open LDAP Authenticator Configuration on WLSSP5
I have problems in the open LDAP authenticator configuration on Weblogic Server with Service Pack 5. I have users on OpenLDAP Server that do not belong to any group. My LDIF file contents are as given below.
dn: dc=my-domain,dc=com
dc: my-domain
objectClass: dcObject
objectClass: organization
o: MYABC, Inc
dn: cn=Manager, dc=my-domain,dc=com
userPassword:: c2VjcmV0
objectClass: person
sn: Manager
cn: Manager
dn: cn=myabcsystem, dc=my-domain,dc=com
userPassword:: dmVuZGF2b3N5c3RlbQ==
objectClass: person
sn: myabcsystem
cn: myabcsystem
dn: cn=Philippe, dc=my-domain,dc=com
userPassword:: UGhpbGlwcGU=
objectClass: person
sn: Philippe
cn: Philippe
dn: cn=mlrick, dc=my-domain,dc=com
userPassword:: bWxyaWNr
objectClass: person
sn: mlrick
cn: mlrick
All these users appear in the Users tab after configuration on the console only if LDAP Server is up. While I select group tab, I get errors indicating BAD SEARCH Filter.
Inspite of me not having any groups in the ldap as indicated in ldif contents.
While I try to login t the application with this LDAP configuration, I do not get any errors. LDAP authentication is not happening with just the LDAP authenticator in place. Even if I stop the LDAP server, I do nto get any exceptions while trying ot login. The config params for the Open LADP are as given below
<weblogic.security.providers.authentication.OpenLDAPAuthenticator
AllGroupsFilter="objectclass=*"
Credential="{3DES}rGCpYmhaIorI99BjZ2u6Fg=="
GroupBaseDN="dc=my-domain,dc=com"
GroupFromNameFilter="(cn=%u)"
Name="Security:Name=MYABCAuthenticationOpenLDAPAuthenticator"
Principal="cn=myabcsystem,dc=my-domain,dc=com"
Realm="Security:Name=MYABCAuthentication"
StaticGroupDNsfromMemberDNFilter=""
StaticGroupNameAttribute="" StaticGroupObjectClass=""
StaticMemberDNAttribute="" UserBaseDN="dc=my-domain, dc=com"/>
####<Mar 3, 2006 4:21:34 PM IST> <Debug> <SecurityDebug> <hemalatha> <myserver> <ExecuteThread: '49' for queue: 'default'> <<WLS Kernel>> <> <000000> <LDAP ATN LoginModule initialized>
####<Mar 3, 2006 4:21:34 PM IST> <Debug> <SecurityDebug> <hemalatha> <myserver> <ExecuteThread: '49' for queue: 'default'> <<WLS Kernel>> <> <000000> <LDAP Atn Login>
####<Mar 3, 2006 4:21:34 PM IST> <Debug> <SecurityDebug> <hemalatha> <myserver> <ExecuteThread: '49' for queue: 'default'> <<WLS Kernel>> <> <000000> <LDAP Atn Login username: bob>
####<Mar 3, 2006 4:21:34 PM IST> <Debug> <SecurityDebug> <hemalatha> <myserver> <ExecuteThread: '49' for queue: 'default'> <<WLS Kernel>> <> <000000> <getConnection return conn:LDAPConnection { ldapVersion:2 bindDN:""}>
####<Mar 3, 2006 4:21:34 PM IST> <Debug> <SecurityDebug> <hemalatha> <myserver> <ExecuteThread: '49' for queue: 'default'> <<WLS Kernel>> <> <000000> <authenticate user:bob>
####<Mar 3, 2006 4:21:34 PM IST> <Debug> <SecurityDebug> <hemalatha> <myserver> <ExecuteThread: '49' for queue: 'default'> <<WLS Kernel>> <> <000000> <getDNForUser search("ou=people,ou=MYABCAuthentication,dc=myabc", "(&(uid=bob)(objectclass=person))", base DN & below)>
####<Mar 3, 2006 4:21:34 PM IST> <Debug> <SecurityDebug> <hemalatha> <myserver> <ExecuteThread: '49' for queue: 'default'> <<WLS Kernel>> <> <000000> <returnConnection conn:LDAPConnection { ldapVersion:2 bindDN:""}>
CAN ANYONE HELP ME IDENTIFY WHAT IS THE ISSUE. Why is the authentication not happening?Hi Amol,
I've seen this happen at least two times in 11.1.1.1 installs. You can safely restart and then add the service back again. Suggest you reboot after you re-add the service back or cycle all the Hyperion services.
I was not aware you could install the service with that command.
I used the below command instead:
sc create OpenLDAP-slapd start= auto binPath= "D:\Hyperion\...\slapd.exe service" DisplayName= "Hyperion Shared Services OpenLAP"
Regards,
-John -
Does Weblogic server 9.2 provide support for CRL checking
Does Weblogic server 9.2 provide support for CRL checking?
No, but you can create a custom CertPath provider for your own implementation.
Mike
Weblogic/J2EE Security Blog: http://monduke.com -
Migrating ADF Security from file-based provider to LDAP provider
We have deployed a small application using ADF Security with file-based provider in OAS and it works fine.
Now we want to migrate to ADF Security using LDAP provider.
In order to make this possible we followed the next steps:
- Migrate all the roles and policies from the file to OID with JAZNMigrationtool.
- In OAS we've changed the Application Security Provider to 'Oracle Identity Management'.
- Reset the OC4J instance.
But there was no success, the application continues working with the file-based provider.
What more is necessary to configurate?Hi,
if you use EM make sure you change the setting for the application, not the general OC4J setting.
You can also deploy the provider settings with the orion-application.xml file added to your project
Frank -
Providing configuration file for SQL 2012 Express installation which installing HPC 2012 R2
Hi guys,
I need to know if there is any way to provide configuration file for SQL 2012 Express installation which installing HPC 2012 R2?
I am scripting installation on HPC 2012 R2 with default SQL 2012 Express edition but I am not able to find any option to provide a configuation file for SQL 2012 Express installaiton.
Thanks,
Vivs.Hi Vivs,
As my understanding, you want to generate a configuration file and install SQL Server 2012 express edition using that configuration file.
If that is the case, firstly, you could generate the configuration file following the steps below since express edition is run in AutoAdvance mode which skips "Ready to Install" page.
1.Double-click SQL Server installation file in your local drive, you will see that the file will be extracted to a temporary folder. Please make a note of what directory it is extracted to. For example, it could be in c:\ followed by a folder name which
will be a set of random letters and numbers "gy7h8hjhhj67rfs7".
2.Cancel installation. Then click on the Start button on the task bar, click run, type the command cmd.exe, and go to that directory via cmd.
3.Execute the following command: setup.exe /ACTION=INSTALL /UIMODE=Normal
4.Follow the wizard through to the 'Ready to Install' page. The path to the configuration file is specified in the 'Ready to Install' page in the configuration file path section.
5.Cancel the setup without actually completing the installation, to generate the INI file.
Secondly, to install SQL Server using Command Prompt, go to the SQL Server installation media root (the temporary folder) from the command prompt and specify the ConfigurationFile.ini as a parameter as shown below.
Setup.exe /ConfigurationFile=ConfigurationFile.INI
For more information about the process, please refer to the article:
http://www.mssqltips.com/sqlservertip/2511/standardize-sql-server-installations-with-configuration-files/
Regards,
Michelle Li -
Oracle WebLogic 10.3 Template Security Configuration
The Oracle VM Template for WebLogic 10.3 has the WebLogic installed as root and configured to run as root. This is in conflict with the Oracle recommendations for hardening a WebLogic deployment. Is there a simple way to apply the Oracle security recommendations to the VM Template, Or should we undertake to develop a new template based on the recommendations of the Oracle guide?
Reference: http://download.oracle.com/docs/cd/E12840_01/wls/docs103/pdf/lockdown.pdfHi David,
I talked to some security folks and they indicated that the principle reason for not running WLS as root is to protect the OS root account (versus protecting the WLS install). The idea is that if the WLS were compromised then at least the OS would not be compromised as well. In virtual use cases where VMs are often more like appliances than general OS containers for unrelated apps the security paradigms may need modification. That said, I am told that you should be able to go ahead and create a non-root account and then run WLS as that new user. Just remember to change ownership (or permissions) for directories and files as necessary. Your observation re: root is a good one and I will make sure the appropriate PMs are notified. -
Is the Sun JNDI LDAP provider thread safe?
Hi,
The JNDI documentation states that the Context implementation is not required to be thread safe although some providers provide thread safety. My question is whether the Sun JNDI LDAP provider is thread safe or do we have to synchronize on the Context instance?
ThanksRead this: http://java.sun.com/j2se/1.3/docs/api/javax/naming/Context.html
The answer, I think is no you need to synchronize accesses yourself. If you're using it from a servlet container, this should be OK, since each request is on a separate thread. -
Public Folder Hierarchy From 2003 - LDAP Provider Error
I am in the process of moving the public folders. Currently all data from within the folders has been migrated over and the old servers have been removed from replication. My next step is to move the Hierarchy, when I drag the folder from the
2003 Administrative group to the 2010 Administrative group I receive the following:
Exchange System Manager
The server is unwilling to process the request.
Facility: LDAP Provider
ID no: 80072035
Exchange System Manager
OK
I have gone through the permissions for the ADSI objects and folders. According to them the user that is performing the action has the rights to do so.Hi,
In order to troubleshoot the issue more efficiently, I need to clarify some information.
1. Could you expand the public folder hierarchy in Exchange 2003?
2. Is there any error messages in the application log?
3. Could you please run EXBPA to check the health of the Exchange 2003? What's the result?
Here is an article about migrating public folders from Exchange 2003 to Exchange 2010, could you please follow that to check the result?
How to Move Public Folder from Exchange 2003 to Exchange 2010
http://blogs.technet.com/b/agobbi/archive/2010/08/04/how-to-move-public-folder-from-exchange-2003-to-exchagne-2010.aspx
If there is any update, please feel free to post here for further research.
Best regards,
Belinda
Belinda Ma
TechNet Community Support -
No trusted Service Provider configuration with name [localidp] found
Hello Everyone, I just setup a local IDP by following the documentation here - https://help.hana.ondemand.com/help/frameset.htm?754818ea63874ea38843ab0ed1928765.html However, when I try to access HANA Cloud Portal Service from HANA cloud cockpit, I am getting a login screen following which, I am getting below error. I have defined 3 users and also their corresponding roles such as Administrator, Developer, and Manager. It looks like I missed something or did something wrong. Can anybody help me fix this?
Error Page No trusted Service Provider configuration with name [localidp] found com.sap.security.saml2.cfg.exceptions.SAML2ConfigurationException: No trusted Service Provider configuration with name [localidp] found at com.sap.security.saml2.idp.api.AuthnRequestValidationService.ensureSAML2AuthnRequestIsValid(AuthnRequestValidationService.java:90) at com.sap.security.saml2.idp.api.SAML2IdPAPI.validateAuthnRequestHttpBody(SAML2IdPAPI.java:914) at com.sap.security.saml2.idp.api.SAML2IdPAPI.validateAuthnRequestHttpBody(SAML2IdPAPI.java:867) at com.sap.core.jpaas.security.saml2.localidp.SSOService.processSSORequest(SSOService.java:126) at com.sap.core.jpaas.security.saml2.localidp.SSOService.doGet(SSOService.java:67) at javax.servlet.http.HttpServlet.service(HttpServlet.java:735) at javax.servlet.http.HttpServlet.service(HttpServlet.java:848) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:303) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122) at org.eclipse.virgo.web.enterprise.security.valve.OpenEjbSecurityInitializationValve.invoke(OpenEjbSecurityInitializationValve.java:44) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501) at com.sap.security.auth.service.webcontainer.internal.Authenticator.invoke(Authenticator.java:192) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:170) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:98) at com.sap.core.tenant.valve.TenantValidationValve.invokeNextValve(TenantValidationValve.java:221) at com.sap.core.tenant.valve.TenantValidationValve.invoke(TenantValidationValve.java:103) at com.sap.js.statistics.tomcat.valve.RequestTracingValve.invoke(RequestTracingValve.java:25) at com.sap.core.js.monitoring.tomcat.valve.RequestTracingValve.invoke(RequestTracingValve.java:27) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408) at org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1040) at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:607) at org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:315) at java.util.concurrent.ThreadPoolExecutor.runWorker(Unknown Source) at java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source) at java.lang.Thread.run(Unknown Source)Hi All,
I have managed to fix this error. I was not able to see folder "localidp" in the mentioned directory. However, folder was present, but it was not visible. So I manually navigated to server configuration in workspace and copied Metadata XML there and refreshed the folder structure in Eclipse, and I was able to see the folder.
Now I can see a custom IDP being referred!
Ameya -
RV220W LDAP Group Configuration
During LDAP Group configuration LDAP Attributes are required. Can I handle any sample configuration for OpenLDAP or 389ds connectivity?
I would like to use them for internal VPN. But my LDAP users are not correctly handled.
Regards,
MarcinHi,
Curious - which LDAP server are you using ? Which version
of MQ are you using ?
Did you create new group names or did you stick to group
names that MQ already used (in the default file based
user repository) - 'admin' and 'user' ? This would be the groups
you created under:
cn\=group1,ou\=imqgroups,o\=Groups, dc\=unimas,dc\=com
Also, since you created new groups , you might want to read
up on how to modify the accesscontrol.properties file:
http://docs.sun.com/source/819-0066/security.html#wp47944
Of interest is this entry from the above page:
The default ACL properties file gives all users access
to NORMAL connection services and gives users in the
group admin access to ADMIN connection services:
connection.NORMAL.allow.user=*
connection.ADMIN.allow.group=admin
If you are using a file-based user repository, the default
group admin is created by imqusermgr. If you are using
an LDAP user repository, you can do one of the following
to use the default ACL properties file:
* Define a group called admin in the LDAP directory.
* Replace the name admin in the ACL properties file with
the names of one or more groups that are defined in
the LDAP directory.
The default entries in the accesscontrol.properties file
basically allow any user in the repository to log in,
but only users in group 'admin' to do admin stuff.
If you created a group called 'mygroup', you might want to
create the following entry (or modify existing entries) to
restrict only users in 'mygroup' to create normal JMS (ie not
admin) connections:
connection.NORMAL.allow.group=mygroup
hope this helps,
-isa
http://www.sun.com/software/products/message_queue/index.xml -
We configure a custom implementation of the JAAS
javax.security.auth.login.Configuration class for our applications security
framework in JRE_LIB/security/java.security using the entry
login.configuration.provider=com.foo.SecurityConfiguration
However, this does not seem get picked up and the configuration provider
class instead seems to default to
weblogic.security.service.ServerConfiguration
instead.
Has anyone else seen this?
We're using the JDK bundled with Weblogic 8.1
TIA for your helpThanks for all the posting re. this issue....
I think the way Weblogic implemented "support" for JAAS in 8.1 totally
blows. In fact, when I asked BEA support about this, they basically sent me
an email saying that "Weblogic owns the JAAS configuration" so if you have a
security framework that is application server agnostic, but leverages JAAS
then you are screwed when deploying on Weblogic 8.1.
I looked for a workaround and believe that instead of using an entry in
java.security for your custom configuration class, if you set the JVM
parameter
-Dlogin.configuration.provider=com.foo.SecurityConfiguration
then what happens is that the Weblogic custom class
weblogic.security.service.ServerConfiguration is invoked by JAAS. It tries
to load the login module configuration and if that fails, it delegates to
com.foo.SecurityConfiguration. So this should enable both the weblogic
security framework and a custom security framework that are both based on
JAAS
I'm currently testing this out
"Lloyd Fernandes" <[email protected]> wrote in message
news:[email protected]...
>
Robert Greig <[email protected]> wrote:
Lloyd Fernandes wrote:
"Lloyd Fernandes" <[email protected]> wrote:
"Prashant Nayak" <[email protected]> wrote:
We configure a custom implementation of the JAAS
javax.security.auth.login.Configuration class for our applications
security
framework in JRE_LIB/security/java.security using the entry
login.configuration.provider=com.foo.SecurityConfiguration
However, this does not seem get picked up and the configuration
provider
class instead seems to default to
weblogic.security.service.ServerConfiguration
instead.
Has anyone else seen this?
We're using the JDK bundled with Weblogic 8.1
TIA for your help
As per documentation in the API JAVADOCS forjavax.security.auth.login.Configuration
>>>>
>>>>
The default Configuration implementation can be changed by settingthe
value of
the "login.configuration.provider" security property (in the Java
security
properties
file) to the fully qualified name of the desired Configurationimplementation
class. The Java security properties file is located in the file named
<JAVA_HOME>/lib/security/java.security,
where <JAVA_HOME> refers to the directory where the JDK was installed.
Have you tried to use a startup class to set the configuration providerusing
javax.security.auth.login.setConfiguration(YourConfigClass);
Weblogic probably uses this to set the configuration class to it'sown.
You have to consider whether this is really something you want to do
however. If you want to get WLS to use a custom authenticator use its
SSPIs. You can configure the order etc. in the admin console.
By overriding the configuration you override it for the server as a
whole which can mean for example that you cannot login to the admin
console. Having said this, from memory, I believe that the property is
ignored in WLS. However you can still call
Configuration.setConfiguration if you really want to.
The fact that there is a "global static" in the Configuration class is
a
Bad Thing IMHO, that was never really designed for an app server
environment.
Robert
If it is a bad thing to have a static how come Weblogic uses it instead ofthe
standard way of modifying the property in java security file - it isbecause
weblogic wants it's own way of implementing instead of using using the'plugable
module' architecture of JAAS.
When weblogic advertised that it will support JAAS the impression was thatWeblogic
would provide a login module that will implement the security mechanism itwanted
- instead it went it's own way.
Also consider the following
1. JAAS specifies a mechanism for multiple configurations based on a'application'.
This is not possible in the current 'weblogic security mechanism'
2. Weblogic says it supports JAAS but what it does not tell you is that inorder
to use available login modules you have to write a whole bunch of code tosupport
principal validators and authenticators. (I begin to wonder if write oncedeploy
anywhere is not part of Sun's certification process anymore) -
Anyone configured OID with weblogic as external LDAP
Hey,
I need help from someone who configured Oracle Internet Directory with weblogic 7 or any version to us as external LDAP server.
Your Help is greatly appreciated.
Thanks & Best Regards,
NagendraI was able to use OID as external LDAP for my Weblogic. I was able to move the stuff from Weblogic Embedded LDAP to Oracle Internet Directory Server, I have done it by myself
Thanks
Nagendra -
Weblogic fails to start after Configuring Agent Authenticator Provider
Hi
I have installed the Sun One Policy Agent for Weblogic.After making changes to the Security Realm, the weblogic server does not start.Following is the stack trace seen on the console.
The WebLogic Server did not start up properly.
java.lang.ExceptionInInitializerError
at com.sun.identity.agents.weblogic.AmAuthProvider.getRealmInstance(Unknown Source)
at com.sun.identity.agents.weblogic.AmAuthProvider.initialize(Unknown Source)
at weblogic.security.service.SecurityServiceManagerDelegateImpl.createSecurityProvider(SecurityServiceManagerDelegateImpl.java:242)
at weblogic.security.service.SecurityServiceManager.createSecurityProvider(SecurityServiceManager.java:939)
at weblogic.security.service.PrincipalAuthenticator.initialize(PrincipalAuthenticator.java:151)
at weblogic.security.service.PrincipalAuthenticator.<init>(PrincipalAuthenticator.java:257)
at weblogic.security.service.SecurityServiceManagerDelegateImpl.doATN(SecurityServiceManagerDelegateImpl.java:581)
at weblogic.security.service.SecurityServiceManagerDelegateImpl.initializeRealm(SecurityServiceManagerDelegateImpl.java:420)
at weblogic.security.service.SecurityServiceManagerDelegateImpl.loadRealm(SecurityServiceManagerDelegateImpl.java:698)
at weblogic.security.service.SecurityServiceManagerDelegateImpl.initializeRealms(SecurityServiceManagerDelegateImpl.java:731)
at weblogic.security.service.SecurityServiceManagerDelegateImpl.initialize(SecurityServiceManagerDelegateImpl.java:874)
at weblogic.security.service.SecurityServiceManager.initialize(SecurityServiceManager.java:717)
at weblogic.t3.srvr.T3Srvr.initializeHere(T3Srvr.java:822)
at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:670)
at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:344)
at weblogic.Server.main(Server.java:32)
Caused by: java.lang.RuntimeException: Exception caught in AmRealmManager initializer: AmRealm: Unable to create store connection
at com.sun.identity.agents.realm.AmRealmManager.<clinit>(Unknown Source)
Can anyone help regarding this.Its UrgentHi all
I am also getting the same error
CLASSPATH=C:\bea\JDK141~1\lib\tools.jar;C:\bea\WEBLOG~1\server\lib\weblogic_sp.j
ar;C:\bea\WEBLOG~1\server\lib\weblogic.jar;C:\bea\WEBLOG~1\server\lib\ojdbc14.ja
r;C:\bea\WEBLOG~1\common\eval\pointbase\lib\pbserver44.jar;C:\bea\WEBLOG~1\commo
n\eval\pointbase\lib\pbclient44.jar;C:\bea\JDK141~1\jre\lib\rt.jar;C:\bea\WEBLOG
~1\server\lib\webservices.jar;C:\Agent\IdentityServer\j2ee_agents\lib\agent_tool
s_2_1.jar;C:\Agent\IdentityServer\j2ee_agents\config\C__bea_user_projects_domain
s_NewFuelPricingDomain;C:\Agent\IdentityServer\j2ee_agents\locale;C:\Agent\Ident
ityServer\j2ee_agents\lib\am_agent_sdk_2_1.jar;C:\Agent\IdentityServer\j2ee_agen
ts\lib\am_agent_filter_2_1.jar;C:\Agent\IdentityServer\j2ee_agents\lib\am_sdk.ja
r;C:\Agent\IdentityServer\j2ee_agents\lib\am_services.jar;C:\Agent\IdentityServe
r\j2ee_agents\lib\am_sso_provider.jar;C:\Agent\IdentityServer\j2ee_agents\lib\am
logging.jar;C:\Agent\IdentityServer\j2eeagents\lib\am_wl70_agent_2_1.jar;extli
b\log4j-1.2.8.jar;C:\bea\appsettings;C:\projects\resources\terajdbc4.jar;C:\proj
ects\resources\tdgssjava.jar;.\log4j.xml
PATH=C:\bea\WEBLOG~1\server\bin;C:\bea\JDK141~1\jre\bin;C:\bea\JDK141~1\bin;C:\P
rogram Files\NCR\Teradata Client\Bin;C:\Program Files\CA\Dcs\DMScripting\;C:\Pro
gram Files\CA\DCS\CAWIN\;c:\reskit;c:\winnt;c:\winnt\system32;c:\winnt\system32\
wbem;C:\Program Files\Common Files\OpSession\Shared;C:\Program Files\Common File
s\OpSession\Viewer Shared;N:\;c:\orant\bin;C:\Program Files\CA\Unicenter Softwar
e Delivery\BIN;C:\orant\bin;C:\Program Files\Hewlett-Packard\OpenView\service de
sk 4.5\client\bin;C:\ant\bin;.;C:\j2sdk1.4.2_16\bin;C:\Documents and Settings\dp
sdazk;C:\java\javasoft\java1.42\bin;C:\java\apache\jakarta-ant-1.5.1\bin;C:\Prog
ram Files\NCR\TeraJDBC\bin;;C:\bea\WEBLOG~1\server\bin\oci920_8
* To start WebLogic Server, use a username and *
* password assigned to an admin-level user. For *
* server administration, use the WebLogic Server *
* console at http:\\[hostname]:[port]\console *
Bad level value for property: com.iplanet.services.debug.level
Bad level value for property: com.sun.identity.agents.logging.level
Bad level value for property: com.sun.am.policy.amFilter.audit.level
<Feb 13, 2008 1:34:09 PM EST> <Info> <WebLogicServer> <BEA-000377> <Starting Web
Logic Server with Java HotSpot(TM) Client VM Version 1.4.1_05-b01 from Sun Micro
systems Inc.>
<Feb 13, 2008 1:34:09 PM EST> <Info> <Configuration Management> <BEA-150016> <Th
is server is being started as the administration server.>
<Feb 13, 2008 1:34:09 PM EST> <Info> <Management> <BEA-141107> <Version: WebLogi
c Server 8.1 SP2 Fri Dec 5 15:01:51 PST 2003 316284
WebLogic XMLX Module 8.1 SP2 Fri Dec 5 15:01:51 PST 2003 316284 >
<Feb 13, 2008 1:34:09 PM EST> <Notice> <Management> <BEA-140005> <Loading domain
configuration from configuration repository at C:\bea\user_projects\domains\New
FuelPricingDomain\.\config.xml.>
<Feb 13, 2008 1:34:12 PM EST> <Notice> <Log Management> <BEA-170019> <The server
log file C:\bea\user_projects\domains\NewFuelPricingDomain\myserver\myserver.lo
g is opened. All server side log events will be written to this file.>
The WebLogic Server did not start up properly.
java.lang.ExceptionInInitializerError
at com.sun.identity.agents.weblogic.AmAuthProvider.getRealmInstance(Unkn
own Source)
at com.sun.identity.agents.weblogic.AmAuthProvider.initialize(Unknown So
urce)
at weblogic.security.service.SecurityServiceManagerDelegateImpl.createSe
curityProvider(SecurityServiceManagerDelegateImpl.java:241)
at weblogic.security.service.SecurityServiceManager.createSecurityProvid
er(SecurityServiceManager.java:929)
at weblogic.security.service.PrincipalAuthenticator.initialize(Principal
Authenticator.java:151)
at weblogic.security.service.PrincipalAuthenticator.<init>(PrincipalAuth
enticator.java:257)
at weblogic.security.service.SecurityServiceManagerDelegateImpl.doATN(Se
curityServiceManagerDelegateImpl.java:580)
at weblogic.security.service.SecurityServiceManagerDelegateImpl.initiali
zeRealm(SecurityServiceManagerDelegateImpl.java:419)
at weblogic.security.service.SecurityServiceManagerDelegateImpl.loadReal
m(SecurityServiceManagerDelegateImpl.java:697)
at weblogic.security.service.SecurityServiceManagerDelegateImpl.initiali
zeRealms(SecurityServiceManagerDelegateImpl.java:730)
at weblogic.security.service.SecurityServiceManagerDelegateImpl.initiali
ze(SecurityServiceManagerDelegateImpl.java:873)
at weblogic.security.service.SecurityServiceManager.initialize(SecurityS
erviceManager.java:719)
at weblogic.t3.srvr.T3Srvr.initializeHere(T3Srvr.java:820)
at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:664)
at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:342)
at weblogic.Server.main(Server.java:32)
Caused by: java.lang.RuntimeException: Exception caught in AmRealmManager initia
lizer: AmRealm: Unable to create store connection
at com.sun.identity.agents.realm.AmRealmManager.<clinit>(Unknown Source)
... 16 more
Please help me to resolve this problem.
Any help will be highly appreciated.
Maybe you are looking for
-
How do I transfer my ipod libray from one computer to another?
I had my library on another computer that I no longer have access to. How do I transfer what is on my ipod onto my itunes library? I don't want to lose my 600+ songs!!
-
How can I get contacts in a group 'Hotmail' on my friend's ipad onto icloud and a Mac?
She can't access these messages on her PC because she has forgotten both password and security question. I have persuaded her to migrate to an icloud account, but first she must let 100+ people know her new email. I thought if I could get the contact
-
Issue Loading Specific Web Pages Using the Airport Extreme Base Station
I see that several other members have had this same issue - has anyone resolved their problem? Here is my issue: It all started when my wife tried to load her favorite Web page at http://hpana.com - the site now takes well over 5 minutes to load. Thi
-
Facebook text msg not working ? on iphone 4s ?
why i dont get any text msg on my iphone 4s only notification ? and i had already nokia n8 was fine why only this ?help plz or there is problem in the phone ?
-
Upgrade question from FCP 3 to FC Studio
Hello all; I have FCP 3 and know I can upgrade to Final Cut Studio for $699. What I am planning on doing is wiping my system and installing fresh Tiger at the same time. WIll I be forced to try and re-install my old FCP 3 ? and THEN apply the studio