Weblogic server 9.2 security and administartion

hi all,
i have few questions in my mind can anybody answer for these.
1> in weblogic server 9.2 can existing infrastrcture allow to generate auto alert on going down the server instance or due to any erroe during running and that should be available to the adminstrator anywhere?if yes then how?
2>Can we administrator decide the previlieges/access to be given to the client by setting proxy with username and passoword?If yes how?
3>For security purpose as user logs out can we make provision to shut down the browser instead of just signing out?
4>If i need to deploye j2ee applciation on weblogic server that is created using by some another IDE,what is the steps/points to be considered as premigration study?
i will be thankful if anybody try to answer these questions.
with regards
santoh.r

Hello User,
You can find the application under below path
Domain_name - Expand "Environment" and Select " Deployments " - here your application will show which are deployed in this domain.
Please refer -http://docs.oracle.com/cd/E13222_01/wls/docs100/intro/console.html
Regards
Laksh

Similar Messages

Not able to download Weblogic Server 10.3.5 and ATG 10.3.2 for 64 bit window

Hi
For past two days I am trying to download Weblogic Server 10.3.5 and ATG 10.3.2 for 64 bit window but the download stops after downloading 30 or 40 MB and once I got network error. I dont know whats the issue. I even disabled my antivirus and firewall, still no luck. Any help is appreciated.
Thanks.

I hope you are using following link to download the Oracle WebLogic Server 10.3.5
http://www.oracle.com/technetwork/middleware/ias/downloads/wls-main-097127.html
Oracle recommends to use Download manager. Download Managers can help if you are having trouble connecting, completing a download, or wish to queue up several files for unattended downloading. While Oracle does not provide or certify the use of any Download Managers, we recommend choosing one that is rated for the file size you are downloading and ensuring that it allows cookies to be passed to the download server.
Or you can also request Oracle to ship DVDs, please use following MOS notes to follow the process.
My Oracle Support Doc ID 1071023.1 ‘Requesting Physical Shipment or Download URL for Software Media'.

Oracle WebLogic Server (WLS), Time Zones, and DayLight Saving Time (DST) Changes

Hello,
We are approaching this time of the year again...
I would like to redirect you to the Support Note 1370083.1 "Oracle WebLogic Server (WLS), Time Zones, and DayLight Saving Time (DST) Changes"
This note lists what is to be expected from WebLogic Server regarding this time change period, in terms of behavior, both for the engine and the applications deployed onto WLS.
Regards,
Patrick.

Probably this:
http://www.jdocs.com/castor/0.9.5.3/api/org/exolab/castor/xml/handlers/DateFieldHandler.html

Weblogic Server 10.3.0 and LDAP authentication Issue

Hi - I have configured my WebLogic Server 10.3.0 for LDAP authentication (OID = 10.1.4.3.0) and so far the authentication works fine but I am having issue in terms of authorization.
I am not able to access the default web logic administrator console app using any of the LDAP user, getting Forbiden message.
It appears to me that the Weblogic Server is not pulling out the proper groups from the LDAP where user belongs too.
Can anyone please point me towards the right direction to get this resolved.
Thanks,
STEPS
Here are my steps I have followed:
- Created a group called Administrators in OID.
- Created a test user call uid=myadmin in the OID and assigned the above group to this user.
- Added a new Authentication Provider to the Weblogic and configured it what is required to communicate with OID (the config.xml file snipet is below)
<sec:authentication-provider xsi:type="wls:ldap-authenticatorType">
<sec:name>OIDAuthentication</sec:name>
<sec:control-flag>SUFFICIENT</sec:control-flag>
<wls:propagate-cause-for-login-exception>false</wls:propagate-cause-for-login-exception>
<wls:host>pmpdeva-idm.ncr.pwgsc.gc.ca</wls:host>
<wls:port>1389</wls:port>
<wls:principal>cn=orcladmin</wls:principal>
<wls:user-base-dn>ou=AppAdmins, o=gc, c=ca</wls:user-base-dn>
<wls:credential-encrypted>removed from here</wls:credential-encrypted>
<wls:group-base-dn>ou=IDM, ou=ServiceAccounts, o=gc, c=ca</wls:group-base-dn>
</sec:authentication-provider>
- Marked the default authentication provider as sufficient as well.
- Re-ordered the authentication provide such that the OIDauthentication is first in the list and default one is the last.
- Looking at the log file I see there are no groups returned for this user and that is the problem in my opinion.
<LDAP Atn Login username: myadmin>
<getConnection return conn:LDAPConnection {ldaps://pmpdeva-idm.ncr.pwgsc.gc.ca:1389 ldapVersion:3 bindDN:"cn=orcladmin"}>
<authenticate user:myadmin>
<getDNForUser search("ou=AppAdmins, o=gc, c=ca", "(&(uid=myadmin)(objectclass=person))", base DN & below)>
<DN for user myadmin: uid=myadmin,ou=AppAdmins,o=gc,c=ca>
<authenticate user:myadmin with DN:uid=myadmin,ou=AppAdmins,o=gc,c=ca>
<authentication succeeded>
<returnConnection conn:LDAPConnection {ldaps://pmpdeva-idm.ncr.pwgsc.gc.ca:1389 ldapVersion:3 bindDN:"cn=orcladmin"}>
<LDAP Atn Authenticated User myadmin>
<List groups that member: myadmin belongs to>
<getConnection return conn:LDAPConnection {ldaps://pmpdeva-idm.ncr.pwgsc.gc.ca:1389 ldapVersion:3 bindDN:"cn=orcladmin"}>
<getDNForUser search("ou=AppAdmins, o=gc, c=ca", "(&(uid=myadmin)(objectclass=person))", base DN & below)>
<DN for user myadmin: uid=myadmin,ou=AppAdmins,o=gc,c=ca>
*<search("ou=IDM, ou=ServiceAccounts, o=gc, c=ca", "(&(uniquemember=uid=myadmin,ou=AppAdmins,o=gc,c=ca)(objectclass=groupofuniquenames))", base DN & below)>*
*<Result has more elements: false>*
<returnConnection conn:LDAPConnection {ldaps://pmpdeva-idm.ncr.pwgsc.gc.ca:1389 ldapVersion:3 bindDN:"cn=orcladmin"}>
<login succeeded for username myadmin>
- I see the XACML RoleMapper getRoles() only returning the Anonymous role as oppose to Admin (because the OID user is a part of Administrators group in OID then it should be returning Admin as fars I can tell. Here is the log entry that shows that:
<XACML RoleMapper getRoles(): returning roles Anonymous>
- I did a ldap search and I found no issues in getting the results back:
C:\>ldapsearch -h localhost -p 1389 -b"ou=IDM, ou=ServiceAccounts, o=gc, c=ca" -D cn=orcladmin -w "removed from here" (uniquemember=uid=myadmin,ou=AppAdmins,o=gc,c=ca)(objectclass=groupOfUniqueNames)
cn=Administrators,ou=IDM,ou=ServiceAccounts,o=gc,c=ca
objectclass=groupOfUniqueNames
objectclass=orclGroup
objectclass=top
END
Here are the log entries:
<1291668685624> <BEA-000000> <LDAP ATN LoginModule initialized>
<1291668685624> <BEA-000000> <com.bea.common.security.internal.service.LoginModuleWrapper.initialize delegated>
<1291668685624> <BEA-000000> <com.bea.common.security.internal.service.LoginModuleWrapper.login>
<1291668685624> <BEA-000000> <LDAP Atn Login>
<1291668685624> <BEA-000000> <com.bea.common.security.internal.service.CallbackHandlerWrapper.handle>
<1291668685624> <BEA-000000> <com.bea.common.security.internal.service.CallbackHandlerWrapper.handle callbcacks[0] will be delegated>
<1291668685624> <BEA-000000> <com.bea.common.security.internal.service.CallbackHandlerWrapper.handle callbcacks[0] will use NameCallback to retrieve name>
<1291668685624> <BEA-000000> <com.bea.common.security.internal.service.CallbackHandlerWrapper.handle callbcacks[1] will be delegated>
<1291668685624> <BEA-000000> <com.bea.common.security.internal.service.CallbackHandlerWrapper.handle will delegate all callbacks>
<1291668685624> <BEA-000000> <com.bea.common.security.internal.service.CallbackHandlerWrapper.handle delegated callbacks>
<1291668685624> <BEA-000000> <com.bea.common.security.internal.service.CallbackHandlerWrapper.handle got username from callbacks[0], UserName=myadmin>
<1291668685624> <BEA-000000> <LDAP Atn Login username: myadmin>
<1291668685624> <BEA-000000> <getConnection return conn:LDAPConnection { ldapVersion:2 bindDN:""}>
<1291668685624> <BEA-000000> <authenticate user:myadmin>
<1291668685624> <BEA-000000> <getDNForUser search("ou=people,ou=myrealm,dc=MBR_Domain", "(&(uid=myadmin)(objectclass=person))", base DN & below)>
<1291668685624> <BEA-000000> <getDNForUser search("ou=people,ou=myrealm,dc=MBR_Domain", "(&(uid=myadmin)(objectclass=person))", base DN & below)>
<1291668685624> <BEA-000000> <returnConnection conn:LDAPConnection { ldapVersion:2 bindDN:""}>
<1291668685624> <BEA-000000> <[Security:090302]Authentication Failed: User myadmin denied>
<1291668685624> <BEA-000000> <com.bea.common.security.internal.service.LoginModuleWrapper.initialize LoginModuleClassName=weblogic.security.providers.authentication.LDAPAtnLoginModuleImpl>
<1291668685624> <BEA-000000> <com.bea.common.security.internal.service.LoginModuleWrapper.initialize ClassLoader=java.net.URLClassLoader@facf0b>
<1291668685624> <BEA-000000> <com.bea.common.security.internal.service.LoginModuleWrapper.initialize created delegate login module>
<1291668685624> <BEA-000000> <LDAP ATN LoginModule initialized>
<1291668685624> <BEA-000000> <com.bea.common.security.internal.service.LoginModuleWrapper.initialize delegated>
<1291668685624> <BEA-000000> <com.bea.common.security.internal.service.LoginModuleWrapper.login>
<1291668685624> <BEA-000000> <LDAP Atn Login>
<1291668685624> <BEA-000000> <com.bea.common.security.internal.service.CallbackHandlerWrapper.handle>
<1291668685624> <BEA-000000> <com.bea.common.security.internal.service.CallbackHandlerWrapper.handle callbcacks[0] will be delegated>
<1291668685624> <BEA-000000> <com.bea.common.security.internal.service.CallbackHandlerWrapper.handle callbcacks[1] will be delegated>
<1291668685624> <BEA-000000> <com.bea.common.security.internal.service.CallbackHandlerWrapper.handle will delegate all callbacks>
<1291668685624> <BEA-000000> <com.bea.common.security.internal.service.CallbackHandlerWrapper.handle delegated callbacks>
<1291668685624> <BEA-000000> <com.bea.common.security.internal.service.CallbackHandlerWrapper.handle did not get username from a callback>
<1291668685624> <BEA-000000> <LDAP Atn Login username: myadmin>
<1291668685624> <BEA-000000> <getConnection return conn:LDAPConnection {ldaps://pmpdeva-idm.ncr.pwgsc.gc.ca:1389 ldapVersion:3 bindDN:"cn=orcladmin"}>
<1291668685624> <BEA-000000> <authenticate user:myadmin>
<1291668685624> <BEA-000000> <getDNForUser search("ou=AppAdmins, o=gc, c=ca", "(&(uid=myadmin)(objectclass=person))", base DN & below)>
<1291668685671> <BEA-000000> <DN for user myadmin: uid=myadmin,ou=AppAdmins,o=gc,c=ca>
<1291668685671> <BEA-000000> <authenticate user:myadmin with DN:uid=myadmin,ou=AppAdmins,o=gc,c=ca>
<1291668685671> <BEA-000000> <authentication succeeded>
<1291668685686> <BEA-000000> <returnConnection conn:LDAPConnection {ldaps://pmpdeva-idm.ncr.pwgsc.gc.ca:1389 ldapVersion:3 bindDN:"cn=orcladmin"}>
<1291668685686> <BEA-000000> <LDAP Atn Authenticated User myadmin>
<1291668685686> <BEA-000000> <List groups that member: myadmin belongs to>
<1291668685686> <BEA-000000> <getConnection return conn:LDAPConnection {ldaps://pmpdeva-idm.ncr.pwgsc.gc.ca:1389 ldapVersion:3 bindDN:"cn=orcladmin"}>
<1291668685686> <BEA-000000> <getDNForUser search("ou=AppAdmins, o=gc, c=ca", "(&(uid=myadmin)(objectclass=person))", base DN & below)>
<1291668685686> <BEA-000000> <DN for user myadmin: uid=myadmin,ou=AppAdmins,o=gc,c=ca>
<1291668685686> <BEA-000000> <search("ou=IDM, ou=ServiceAccounts, o=gc, c=ca", "(&(uniquemember=uid=myadmin,ou=AppAdmins,o=gc,c=ca)(objectclass=groupofuniquenames))", base DN & below)>
<1291668685686> <BEA-000000> <Result has more elements: false>
<1291668685686> <BEA-000000> <returnConnection conn:LDAPConnection {ldaps://pmpdeva-idm.ncr.pwgsc.gc.ca:1389 ldapVersion:3 bindDN:"cn=orcladmin"}>
<1291668685686> <BEA-000000> <login succeeded for username myadmin>
<1291668685686> <BEA-000000> <com.bea.common.security.internal.service.LoginModuleWrapper.login delegated, returning true>
<1291668685686> <BEA-000000> <com.bea.common.security.internal.service.LoginModuleWrapper.commit>
<1291668685686> <BEA-000000> <LDAP Atn Commit>
<1291668685686> <BEA-000000> <com.bea.common.security.internal.service.LoginModuleWrapper.commit delegated, returning false>
<1291668685686> <BEA-000000> <com.bea.common.security.internal.service.LoginModuleWrapper.commit>
<1291668685686> <BEA-000000> <LDAP Atn Commit>
<1291668685686> <BEA-000000> <LDAP Atn Principals Added>
<1291668685686> <BEA-000000> <com.bea.common.security.internal.service.LoginModuleWrapper.commit delegated, returning true>
<1291668685686> <BEA-000000> <com.bea.common.security.internal.service.JAASLoginServiceImpl.login logged in>
<1291668685686> <BEA-000000> <com.bea.common.security.internal.service.JAASLoginServiceImpl.login subject=Subject:
 Principal: myadmin
>
<1291668685686> <BEA-000000> <weblogic.security.service.internal.WLSIdentityServiceImpl.getIdentityFromSubject Subject: 1
 Principal = class weblogic.security.principal.WLSUserImpl("myadmin")
>
<1291668685686> <BEA-000000> <com.bea.common.security.internal.service.PrincipalValidationServiceImpl.sign(Principals)>
<1291668685686> <BEA-000000> <com.bea.common.security.internal.service.PrincipalValidationServiceImpl.sign(Principal) Principal=myadmin>
<1291668685686> <BEA-000000> <com.bea.common.security.internal.service.PrincipalValidationServiceImpl.sign(Principal) PrincipalClassName=weblogic.security.principal.WLSUserImpl>
<1291668685686> <BEA-000000> <com.bea.common.security.internal.service.PrincipalValidationServiceImpl.sign(Principal) trying PrincipalValidator for interface weblogic.security.principal.WLSPrincipal>
<1291668685686> <BEA-000000> <com.bea.common.security.internal.service.PrincipalValidationServiceImpl.sign(Principal) PrincipalValidator handles this PrincipalClass>
<1291668685686> <BEA-000000> <Signed WLS principal myadmin>
<1291668685686> <BEA-000000> <com.bea.common.security.internal.service.PrincipalValidationServiceImpl.sign(Principal) PrincipalValidator signed the principal>
<1291668685686> <BEA-000000> <com.bea.common.security.internal.service.PrincipalValidationServiceImpl.sign(Principal) All required PrincipalValidators signed this PrincipalClass, returning true>
<1291668685686> <BEA-000000> <com.bea.common.security.internal.service.JAASLoginServiceImpl.login identity=Subject: 1
 Principal = class weblogic.security.principal.WLSUserImpl("myadmin")
>
<1291668685686> <BEA-000000> <weblogic.security.service.internal.WLSJAASLoginServiceImpl$ServiceImpl.authenticate authenticate succeeded for user myadmin, Identity=Subject: 1
 Principal = class weblogic.security.principal.WLSUserImpl("myadmin")
>
<1291668685686> <BEA-000000> <weblogic.security.service.internal.UserLockoutServiceImpl$ServiceImpl.isLocked(myadmin)>
<1291668685686> <BEA-000000> <weblogic.security.service.internal.WLSJAASLoginServiceImpl$ServiceImpl.authenticate login succeeded and myadmin was not previously locked out>
<1291668685702> <BEA-000000> <Using Common RoleMappingService>
<1291668685702> <BEA-000000> <PrincipalAuthenticator.validateIdentity>
<1291668685702> <BEA-000000> <PrincipalAuthenticator.validateIdentity will use common security service>
<1291668685702> <BEA-000000> <com.bea.common.security.internal.service.PrincipalValidationServiceImpl.validate(Principals)>
<1291668685702> <BEA-000000> <com.bea.common.security.internal.service.PrincipalValidationServiceImpl.validate(Principal) Principal=myadmin>
<1291668685702> <BEA-000000> <com.bea.common.security.internal.service.PrincipalValidationServiceImpl.validate(Principal) PrincipalClassName=weblogic.security.principal.WLSUserImpl>
<1291668685702> <BEA-000000> <com.bea.common.security.internal.service.PrincipalValidationServiceImpl.validate(Principal) trying PrincipalValidator for interface weblogic.security.principal.WLSPrincipal>
<1291668685702> <BEA-000000> <com.bea.common.security.internal.service.PrincipalValidationServiceImpl.validate(Principal) PrincipalValidator handles this PrincipalClass>
<1291668685702> <BEA-000000> <Validate WLS principal myadmin returns true>
<1291668685702> <BEA-000000> <com.bea.common.security.internal.service.PrincipalValidationServiceImpl.validate(Principal) PrincipalValidator said the principal is valid>
<1291668685702> <BEA-000000> <com.bea.common.security.internal.service.PrincipalValidationServiceImpl.validate(Principal) One or more PrincipalValidators handled this PrincipalClass, returning true>
<1291668685702> <BEA-000000> <com.bea.common.security.internal.service.PrincipalValidationServiceImpl.validate(Principals) validated all principals>
<1291668685702> <BEA-000000> <com.bea.common.security.internal.service.RoleMappingServiceImpl.getRoles Identity=Subject: 1
 Principal = class weblogic.security.principal.WLSUserImpl("myadmin")
>
<1291668685702> <BEA-000000> <com.bea.common.security.internal.service.RoleMappingServiceImpl.getRoles Resource=type=<url>, application=consoleapp, contextPath=/console, uri=/index.jsp, httpMethod=GET>
<1291668685702> <BEA-000000> <XACML RoleMapper getRoles(): input arguments:>
<1291668685702> <BEA-000000> < Subject: 1
 Principal = weblogic.security.principal.WLSUserImpl("myadmin")
>
<1291668685702> <BEA-000000> < Resource: type=<url>, application=consoleapp, contextPath=/console, uri=/index.jsp, httpMethod=GET>
<1291668685702> <BEA-000000> < Parent: type=<url>, application=consoleapp, contextPath=/console, uri=/index.jsp>
<1291668685702> <BEA-000000> < Parent: type=<url>, application=consoleapp, contextPath=/console, uri=/index.jsp/*, httpMethod=GET>
<1291668685702> <BEA-000000> < Parent: type=<url>, application=consoleapp, contextPath=/console, uri=/index.jsp/*>
<1291668685702> <BEA-000000> < Parent: type=<url>, application=consoleapp, contextPath=/console, uri=/*, httpMethod=GET>
<1291668685702> <BEA-000000> < Parent: type=<url>, application=consoleapp, contextPath=/console, uri=/*>
<1291668685702> <BEA-000000> < Parent: type=<url>, application=consoleapp, contextPath=/console, uri=*.jsp, httpMethod=GET>
<1291668685702> <BEA-000000> < Parent: type=<url>, application=consoleapp, contextPath=/console, uri=*.jsp>
<1291668685702> <BEA-000000> < Parent: type=<url>, application=consoleapp, contextPath=/console, uri=/, httpMethod=GET>
<1291668685702> <BEA-000000> < Parent: type=<url>, application=consoleapp, contextPath=/console, uri=/>
<1291668685702> <BEA-000000> < Parent: type=<url>, application=consoleapp, contextPath=/console>
<1291668685702> <BEA-000000> < Parent: type=<url>, application=consoleapp>
<1291668685702> <BEA-000000> < Parent: type=<app>, application=consoleapp>
<1291668685702> <BEA-000000> < Parent: type=<url>>
<1291668685702> <BEA-000000> < Parent: null>
<1291668685702> <BEA-000000> < Context Handler: >
<1291668685702> <BEA-000000> <Accessed Subject: Id=urn:oasis:names:tc:xacml:2.0:subject:group, Value=[everyone,users]>
<1291668685702> <BEA-000000> <Evaluate urn:oasis:names:tc:xacml:1.0:function:string-is-in(AdminChannelUsers,[everyone,users]) -> false>
<1291668685702> <BEA-000000> <primary-rule evaluates to NotApplicable because of Condition>
<1291668685702> <BEA-000000> <urn:bea:xacml:2.0:entitlement:role:AdminChannelUser:, 1.0 evaluates to Deny>
<1291668685702> <BEA-000000> <XACML RoleMapper: accessing role AdminChannelUser: DENIED>
<1291668685702> <BEA-000000> <Accessed Subject: Id=urn:oasis:names:tc:xacml:2.0:subject:group, Value=[everyone,users]>
<1291668685702> <BEA-000000> <Evaluate urn:oasis:names:tc:xacml:1.0:function:string-is-in(AppTesters,[everyone,users]) -> false>
<1291668685702> <BEA-000000> <primary-rule evaluates to NotApplicable because of Condition>
<1291668685702> <BEA-000000> <urn:bea:xacml:2.0:entitlement:role:AppTester:, 1.0 evaluates to Deny>
<1291668685702> <BEA-000000> <XACML RoleMapper: accessing role AppTester: DENIED>
<1291668685702> <BEA-000000> <Accessed Subject: Id=urn:oasis:names:tc:xacml:2.0:subject:group, Value=[everyone,users]>
<1291668685702> <BEA-000000> <Evaluate urn:oasis:names:tc:xacml:1.0:function:string-is-in(everyone,[everyone,users]) -> true>
<1291668685702> <BEA-000000> <primary-rule evaluates to Permit>
<1291668685702> <BEA-000000> <urn:bea:xacml:2.0:entitlement:role:Anonymous:, 1.0 evaluates to Permit>
<1291668685702> <BEA-000000> <XACML RoleMapper: accessing role Anonymous: GRANTED>
<1291668685702> <BEA-000000> <Accessed Subject: Id=urn:oasis:names:tc:xacml:2.0:subject:group, Value=[everyone,users]>
<1291668685702> <BEA-000000> <Evaluate urn:oasis:names:tc:xacml:1.0:function:string-is-in(Monitors,[everyone,users]) -> false>
<1291668685702> <BEA-000000> <primary-rule evaluates to NotApplicable because of Condition>
<1291668685702> <BEA-000000> <urn:bea:xacml:2.0:entitlement:role:Monitor:, 1.0 evaluates to Deny>
<1291668685702> <BEA-000000> <XACML RoleMapper: accessing role Monitor: DENIED>
<1291668685702> <BEA-000000> <Accessed Subject: Id=urn:oasis:names:tc:xacml:2.0:subject:group, Value=[everyone,users]>
<1291668685702> <BEA-000000> <Evaluate urn:oasis:names:tc:xacml:1.0:function:string-is-in(Operators,[everyone,users]) -> false>
<1291668685702> <BEA-000000> <primary-rule evaluates to NotApplicable because of Condition>
<1291668685702> <BEA-000000> <urn:bea:xacml:2.0:entitlement:role:Operator:, 1.0 evaluates to Deny>
<1291668685702> <BEA-000000> <XACML RoleMapper: accessing role Operator: DENIED>
<1291668685702> <BEA-000000> <Accessed Subject: Id=urn:oasis:names:tc:xacml:2.0:subject:group, Value=[everyone,users]>
<1291668685702> <BEA-000000> <Evaluate urn:oasis:names:tc:xacml:1.0:function:string-is-in(CrossDomainConnectors,[everyone,users]) -> false>
<1291668685702> <BEA-000000> <primary-rule evaluates to NotApplicable because of Condition>
<1291668685702> <BEA-000000> <urn:bea:xacml:2.0:entitlement:role:CrossDomainConnector:, 1.0 evaluates to Deny>
<1291668685702> <BEA-000000> <XACML RoleMapper: accessing role CrossDomainConnector: DENIED>
<1291668685702> <BEA-000000> <Accessed Subject: Id=urn:oasis:names:tc:xacml:2.0:subject:group, Value=[everyone,users]>
<1291668685702> <BEA-000000> <Evaluate urn:oasis:names:tc:xacml:1.0:function:string-is-in(Deployers,[everyone,users]) -> false>
<1291668685702> <BEA-000000> <primary-rule evaluates to NotApplicable because of Condition>
<1291668685702> <BEA-000000> <urn:bea:xacml:2.0:entitlement:role:Deployer:, 1.0 evaluates to Deny>
<1291668685702> <BEA-000000> <XACML RoleMapper: accessing role Deployer: DENIED>
<1291668685702> <BEA-000000> <Accessed Subject: Id=urn:oasis:names:tc:xacml:2.0:subject:group, SC=null, Value=[everyone,users]>
<1291668685702> <BEA-000000> <Evaluate urn:oasis:names:tc:xacml:1.0:function:string-is-in(Administrators,[everyone,users]) -> false>
<1291668685702> <BEA-000000> <primary-rule evaluates to NotApplicable because of Condition>
<1291668685702> <BEA-000000> <urn:bea:xacml:2.0:entitlement:role:Admin:, 1.0 evaluates to Deny>
<1291668685702> <BEA-000000> <XACML RoleMapper: accessing role Admin: DENIED>
<1291668685702> <BEA-000000> <XACML RoleMapper getRoles(): returning roles Anonymous>
<1291668685702> <BEA-000000> <com.bea.common.security.internal.service.RoleMappingServiceImpl.getRoles returning [ "Anonymous" ]>
<1291668685702> <BEA-000000> <AuthorizationManager will use common security for ATZ>
<1291668685702> <BEA-000000> <weblogic.security.service.WLSAuthorizationServiceWrapper.isAccessAllowed>
<1291668685702> <BEA-000000> <com.bea.common.security.internal.service.AccessDecisionServiceImpl.isAccessAllowed Identity=Subject: 1
 Principal = class weblogic.security.principal.WLSUserImpl("myadmin")
>
<1291668685702> <BEA-000000> <com.bea.common.security.internal.service.AccessDecisionServiceImpl.isAccessAllowed Roles=[ "Anonymous" ]>
<1291668685702> <BEA-000000> <com.bea.common.security.internal.service.AccessDecisionServiceImpl.isAccessAllowed Resource=type=<url>, application=consoleapp, contextPath=/console, uri=/index.jsp, httpMethod=GET>
<1291668685702> <BEA-000000> <com.bea.common.security.internal.service.AccessDecisionServiceImpl.isAccessAllowed Direction=ONCE>
<1291668685702> <BEA-000000> <XACML Authorization isAccessAllowed(): input arguments:>
<1291668685702> <BEA-000000> < Subject: 1
 Principal = weblogic.security.principal.WLSUserImpl("myadmin")
>
<1291668685702> <BEA-000000> < Roles:Anonymous>
<1291668685702> <BEA-000000> < Resource: type=<url>, application=consoleapp, contextPath=/console, uri=/index.jsp, httpMethod=GET>
<1291668685702> <BEA-000000> < Direction: ONCE>
<1291668685702> <BEA-000000> < Context Handler: >
<1291668685702> <BEA-000000> <Accessed Subject: Id=urn:oasis:names:tc:xacml:2.0:subject:role, SC=null, Value=Anonymous>
<1291668685702> <BEA-000000> <Evaluate urn:oasis:names:tc:xacml:1.0:function:string-at-least-one-member-of([Admin,Operator,Deployer,Monitor],Anonymous) -> false>
<1291668685702> <BEA-000000> <primary-rule evaluates to NotApplicable because of Condition>
<1291668685702> <BEA-000000> <urn:bea:xacml:2.0:entitlement:resource:type@E@Furl@G@M@Oapplication@Econsoleapp@M@OcontextPath@E@Uconsole@M@Ouri@E@U, 1.0 evaluates to Deny>
<1291668685702> <BEA-000000> <XACML Authorization isAccessAllowed(): returning DENY>
<1291668685702> <BEA-000000> <com.bea.common.security.internal.service.AccessDecisionServiceImpl.isAccessAllowed AccessDecision returned DENY>
<1291668685702> <BEA-000000> <com.bea.common.security.internal.service.AdjudicationServiceImpl.adjudicate Results=[ DENY ]>
<1291668685702> <BEA-000000> <com.bea.common.security.internal.service.AdjudicationServiceImpl.adjudicate Resource=type=<url>, application=consoleapp, contextPath=/console, uri=/index.jsp, httpMethod=GET>
<1291668685702> <BEA-000000> <DefaultAdjudicatorImpl.adjudicate results: DENY >
<1291668685702> <BEA-000000> <com.bea.common.security.internal.service.AdjudicationServiceImpl.adjudicate Adjudictor returned false, returning that value>
<1291668685702> <BEA-000000> <com.bea.common.security.internal.service.AuthorizationServiceImpl.isAccessAllowed returning adjudicated: false>

Okay Finally the issue is resolved. Here is the findings to help others in case they ran into the same issue.
The OID version that we are using is not returning the groups the way Weblogic is building the ldapsearch command. We captured the ldap traffic to go deeper and noticed the filters and attributes list that wls was asking. For example, the filter was like:
"(&(uniquemember=uid=myadmin,ou=AppAdmins,o=gc,c=ca)(objectclass=groupofuniquenames))" cn
its was the "cn" attribute that was causing the result set to be empty.
from a command line we tried
"(&(uniquemember=uid=myadmin,ou=AppAdmins,o=gc,c=ca)(objectclass=groupofuniquenames))" uniquemember
and got the results back.
Then we start looking into OID configuration and one of my coworker pointed me towards the orclinmemfiltprocess attributes in cn=dsaconfig entry and told me that they had lot of issues in the past in relation to this attribute.
So as a test we removed the groupofuniquenames objectclass from the orclinmemfiltprocess attribute list and bingo it worked!
Since we needed the groupofuniquenames in this list for performance/other reasons and decided to use a different objectclass for our groups instead i.e. orclGroup.
Thanks everyone for showing interest on the problem and providing suggestions.

Weblogic server: how to send (and receive) mail directly

Hi everyone,
As the subject, I want to configure weblogic server to send ( and receive) notification message to user email address. Is it possible?
Any suggestion is appriciated.
Thanks.

Hi Mr. Nimphius,
I have created the mail session with the integrated weblogic server with the following properties:
mail.debug=false;
mail.smtp.password=xxxxx;
mail.smtp.starttls.enable=true;
mail.smtp.user=[email protected];
mail.smtp.host=smtp.gmail.com;
mail.smtp.auth=true;
mail.smtp.port=587;
mail.disable=false;
mail.verbose=true;
mail.transport.protocol=smtp;
and here is the result:
avax.mail.MessagingException: Can't send command to SMTP host;
nested exception is:
javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
Do you have any ideas to resolve this Exception?

Integrated ITS in a Separate App Server (DI) for Security and LoadBalancing

Hi Experts,
I have a specific requirement for ITS Configuration.
1. Production Server ( CI + DB ) -> Existing
[ ERP6.0 ]
OS : Solaris 10
DB : oracle 10.2.0.2
H/W: PRIMEPOWER650
Unicode Enabled
2. Application Server ( DI ) --> to be made ( and to be used exclusively for Web users)
OS : Windows2003 sv
H/W: RX200 S3
x64
MEM: 8GB
No. 1 is existing Production Server Environment.
The Customer Requirement.
The Customer wants to use the ITS . But he doesn't want the existing Production Server to be disturbed for the same for 2 reasons. [ Security and Load Balancing ]
We are planning to create a Separate Application Server (DI) to work as ITS.
As the Kernel is 700. The ITS is integrated into the Production Server by Default.
We have written to SAP and have asked whether the Production Server ITS can be disabled and the Separate DI's ITS be enabled so that the NEW ( No.2 ) Application Server will be used for ITS activities.
SAP has replied saying the Integrated ITS cannot be disabled at the Production Server. Instead as an alternative we can create a Logon Group (using transaction SMLG) and divert all the Web users to the Separated DI (No.2). We have decided to go according to SAP.
Now I have the following questions :
1. The Operating Systems of the Production Server (No.1) and the Separate AP (No. 2)
are different. ( Are there any complexities involved or must do points to be taken care. )
2. Brief / MUST DO tasks at the Production Server Environment and Must do tasks at the DI Environment.
I hope someone has already done some few installations on the above combination, if so, request to please share me your ideas.
Thanks in anticipation
Best Regards,
Paguras
PS :
my earlier discussion on the same topic on this community.
ITS Specific Requirement

Hi Markus,
Thanks for the Reply.
We have the following 2 plans :
Plan-01.
As you have advised, we will try to disable ITS of CI and enable ITS of DI.
Plan-02.
If Plan-01 could be worked out successfully, well implement as per SAP suggests. Creating a Logon Group and divert all the web users to the DI alone.
To deactivate ITS on CI, you have mentioned to make sure, that the system does not listen on the HTTP port (transaction SMICM) on the Servers
BTW, I have seen a parameter called ITSP/ENABLE. if we deactivate this parameter at CI & DB and then activate the same parameter at DI.
My questions to you :
1. Shall we go for Plan-01 ignoring what SAP OSS has said. ?
2. Disable ITSP/Enable Parameter -> CI & DB
Enable ITSP/Enable Parameter -> DI has to be implemented .
Thanks & best Regards,
Paguras
PS: Sorry for always pounding you with so many questions on the same topic.
SAP Help on ITSP / enable parameter
itsp/enable
You use this parameter to deactivate (0) or activate (1) the integrated ITS. Even if the integrated ITS is activated, it only accesses system resources when it is actually used. Nevertheless, it can make sense to deactivate it to prevent users from accessing the SAP system with SAP GUI for HTML via special application servers (such as batch or update instances). Since the conversion of SAP screens into HTML pages uses additional CPU time, it makes sense to reserve a number of dedicated application servers to be used with SAP GUI for HTML and to use a special logon group to balance the load between them.

OBIEE 11g installation - Weblogic server on one host and obiee on another

Hi
I am doing obiee11g installation with the following topology:
1. Weblogic on one Linux Host
2. OBIEE on another Linux server
I am able to successfully complete the weblogic installation and i started the obiee on the another machine. The installation fails at the following point:
Specify Installation Location :
Oracle Middleware Home: /u01/app/oracle(This is the where i have the question - This should be weblogic server location where you hosted on another machine. It should ask me for host name or ip address)
Oracle Home Directory
Any one did the installation with the above and how to overcome the above issue.. Should i share the drive using nfs mount or any other solutions. Your help is appreciated.
Thanks

Hi,
Can u clarify below questions?
Do u have both servers on the same network?
Thanks.

Admin training for WebLogic Server - just the Forms and Reports parts

We will be upgrading our Forms & Reports application from 10gR2 to 11g. Our customers (well their DBAs) will need to install and manage WebLogic Server. So I'm looking for a training course where they can learn how to do that. The WebLogic Server admin course is 5 days, and another 4 for Advanced System Admin, which seems a lot as they are only going to use the parts required for Forms and Reports.
I have read through the tutorial Using Oracle Enterprise Manager to Administer Forms Services. Is this the extent of what they need to know, or is there another chunk of the iceberg under the water? Can you recommend a training course please.

Hi,
After installing forms, the installer itself configures the WLS with the domains etc and also deploys the forms. Once after this, it is similar to that of 10g Application Server. All the maintenance of the forms is done using Enterprise Manager (EM Console). So, the section you mentioned should suffice.
-Arun

TopLink issues using Weblogic Server 8.1 SP3 and MAC OS X with Oracle 9i

Hi, I have successfully deployed my EJB (entity bean) on WLS 8.1 (the generic version) on Mac OS X. I also have installed Apple jdk 1.4.2 and everything seems to be ok. The server came up without any problem and can connect to my Oracle DB. I verify this from Weblogic console. However, when I try to access the bean (create/find), I got this AbstractMethodError exception. Can anyone help ?
Thanks for any help/pointer you can provide.
Regards,
Message = Could not create network. javax.ejb.TransactionRolledbackLocalExceptio
n: EJB Exception: : java.lang.AbstractMethodError: oracle.toplink.internal.ejb.c
mp.wls.Wls81BeanManager.localCreate(Lweblogic/ejb20/internal/InvocationWrapper;L
java/lang/reflect/Method;Ljava/lang/reflect/Method;[Ljava/lang/Object;)Ljavax/ej
b/EJBLocalObject;
at weblogic.ejb20.internal.EntityEJBLocalHome.create(EntityEJBLocalHome.
java:170)
at com.maranti.msm.server.objectRepository.Network_kmp5vn_LocalHomeImpl.
create(Network_kmp5vn_LocalHomeImpl.java:151)
at com.maranti.msm.server.topologyManagement.TopologyManagerEJB.createNe
tworkBean(TopologyManagerEJB.java:157)
at com.maranti.msm.server.topologyManagement.TopologyManagerEJB.getRootN
etwork(TopologyManagerEJB.java:347)
at com.maranti.msm.server.topologyManagement.TopologyManager_363sal_EOIm
pl.getRootNetwork(TopologyManager_363sal_EOImpl.java:1558)
at com.maranti.msm.server.topologyManagement.TopologyManager_363sal_EOIm
pl_WLSkel.invoke(Unknown Source)
at weblogic.rmi.internal.BasicServerRef.invoke(BasicServerRef.java:477)
at weblogic.rmi.cluster.ReplicaAwareServerRef.invoke(ReplicaAwareServerR
ef.java:108)
at weblogic.rmi.internal.BasicServerRef$1.run(BasicServerRef.java:420)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(Authenticate
dSubject.java:363)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:
144)
at weblogic.rmi.internal.BasicServerRef.handleRequest(BasicServerRef.jav
a:415)
at weblogic.rmi.internal.BasicExecuteRequest.execute(BasicExecuteRequest
.java:30)
at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:219)
at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:178)

Any idea, anyone ?

Weblogic server 7.0 security

When I start the server (it is a admin managed server in a domain), I got this message:
[java] <Oct 16, 2002 11:47:44 AM CDT> <Error> <Security> <090158> <The Server was unable to find the private key with alias demokey at location wlDefaultKeyStore.jks on server TracFoneSrv, realm myrealm. Make sure the KeyStore exists and contains the key entry under the specified alias.>
[java] java.lang.Exception: Cannot find the private key with alias demokey in the KeyStore at location wlDefaultKeyStore.jks
[java] <Oct 16, 2002 11:47:44 AM CDT> <Alert> <WebLogicServer> <000297> <Inconsistent security configuration, java.lang.Exception: Cannot find the private key
with alias demokey in the KeyStore at location wlDefaultKeyStore.jks>
How do I know whether the keystore contains a certain key or not? I see the demokey.pem and wlDefaultKeyStore.jks both exist in the same directory for that domain.
Thank you for your help,
Bin

Hi Bin,
You can use keytool to display the contents of the keystore.
The keytool utility comes with the JDK so set your path to
include $JAVA_HOME/bin directory. Use the following command
to list all the entries in the keystore.
keytool -list -keystore <key-store-name>
You will be prompted for the keystore password.
I hope that helps.
Regards,
Tom Hegadorn
Developer Relations Engineer
BEA Support
Bin <[email protected]> wrote:
When I start the server (it is a admin managed server in a domain), I
got this message:
[java] <Oct 16, 2002 11:47:44 AM CDT> <Error> <Security> <090158>
<The Server was unable to find the private key with alias demokey at
location wlDefaultKeyStore.jks on server TracFoneSrv, realm myrealm.
Make sure the KeyStore exists and contains the key entry under the specified
alias.>
[java] java.lang.Exception: Cannot find the private key with
alias demokey in the KeyStore at location wlDefaultKeyStore.jks
[java] <Oct 16, 2002 11:47:44 AM CDT> <Alert> <WebLogicServer> <000297>
<Inconsistent security configuration, java.lang.Exception: Cannot find
the private key
with alias demokey in the KeyStore at location wlDefaultKeyStore.jks>
How do I know whether the keystore contains a certain key or not? I
see the demokey.pem and wlDefaultKeyStore.jks both exist in the same
directory for that domain.
Thank you for your help,
Bin

Periodic Report genration in Weblogic server using Oracle database and EJB3

Hello All,
I have to generate reports periodically, when periodicity for report generation is inserted into database(Oracle 11g in my case) using EJB3 entity bean from application server(Weblogic 11g). Immediately on insertion i have to start generation reports in csv format and save these files into the application server directory. My application server and Database are running on different machine.

Okay, good luck with that. When you have an actual programming problem, feel free to come back and ask for help.

WebLogic Server - Firewall between proxy and cluster causes errors

 Product Name and Version, including Service Pack (if any):
 =============================================
 Weblogic 5.1 , SP8
 Platform (OS Version)
 =================
 Windows 2000 server,
 JDK Version (if applicable)
 =====================
 Jdk1.2
 Detailed Problem Description
 ======================
 We have 2 weblogic servers in a cluser on two windows 2000 Servers
 , NT01 and NT02.The webservers are in a DMZ behind the firewall
 and there is a second firewall between the webserver and the weblogic
 servers.The webserver is a Linux box , running Apache 1.3.9 with
 the weblogic Plugin(LIN01).The per server weblogic.properties file
 has the weblogic.system.DNSName=LIN01.
 We still get errors on the console when we run our jsp/Servlet
 application.The errors are listed below.Could you please help us
 identify the problem
 Thanks,
 Gigen Thomas
 Error Message/Stack Trace
 =====================
 ed Mar 21 16:38:50 PST 2001: <ServletContext-General> Generated
 java file: E:\weblogic_cluster\FIPBEA01\classfiles\jsp_servlet\_driveway\_driveway.java
 Wed Mar 21 16:38:52 PST 2001: <ServletContext-General> Generated
 java file: E:\weblogic_cluster\FIPBEA01\classfiles\jsp_servlet\_driveway\_driveway_45_leftframe.java
 Wed Mar 21 16:39:41 PST 2001: <Cluster> Adding server -255280969513470611S192.168.6.12:[7001,7001,7002,7002,7001,-1]
 to cluster view
 Wed Mar 21 16:39:41 PST 2001:<E> <Kernel> ExecuteRequest failed.
 java.io.NotSerializableException: com.sun.mail.imap.IMAPStore
 at java.io.ObjectOutputStream.outputObject(ObjectOutputStream.java:845)
 at java.io.ObjectOutputStream.writeObject(ObjectOutputStream.java:342)
 at java.util.Hashtable.writeObject(Hashtable.java:738)
 at java.lang.reflect.Method.invoke(Native Method)
 at java.io.ObjectOutputStream.invokeObjectWriter(ObjectOutputStream.java:1585)
 at java.io.ObjectOutputStream.outputObject(ObjectOutputStream.java:907)
 at java.io.ObjectOutputStream.writeObject(ObjectOutputStream.java:342)
 at weblogic.common.internal.WLObjectOutputStreamBase.writeObject(WLObjectOutputStreamBase.java:118)
 at weblogic.servlet.internal.session.ReplicatedSession.writeExternal(ReplicatedSession.java:74)
 at weblogic.common.internal.WLObjectOutputStreamBase.writePublicSerializable(WLObjectOutputStreamBase.java,
 Compiled Code)
 at weblogic.common.internal.WLObjectOutputStreamBase.writeObjectBody(WLObjectOutputStreamBase.java,
 Compiled Code)
 at weblogic.common.internal.WLObjectOutputStreamBase.writeObject(WLObjectOutputStreamBase.java,
 Compiled Code)
 at weblogic.common.internal.WLObjectOutputStreamBase.writeObjectWL(WLObjectOutputStreamBase.java,
 Compiled Code)
 at weblogic.rmi.extensions.AbstractOutputStream2.writeObject(AbstractOutputStream2.java:82)
 at weblogic.rmi.extensions.AbstractOutputStream.writeObject(AbstractOutputStream.java:83)
 at weblogic.cluster.replication.ReplicationManager_WLStub.create(ReplicationManager_WLStub.java:86)
 at weblogic.cluster.replication.ReplicationManager.createSecondary(ReplicationManager.java,
 Compiled Code)
 at weblogic.cluster.replication.ReplicationManager.checkHosts(ReplicationManager.java,
 Compiled Code)
 at weblogic.cluster.replication.ReplicationManager.clusterMembersChanged(ReplicationManager.java:582)
 at weblogic.cluster.MemberStash$ClusterMembersChangeDeliverer.execute(MemberStash.java:207)
 at weblogic.kernel.ExecuteThread.run(ExecuteThread.java, Compiled
 Code)
 --------------- nested within: ------------------
 weblogic.rmi.MarshalException: error marshalling arguments
 - with nested exception:
 [java.io.NotSerializableException: com.sun.mail.imap.IMAPStore]
 at weblogic.cluster.replication.ReplicationManager_WLStub.create(ReplicationManager_WLStub.java:90)
 at weblogic.cluster.replication.ReplicationManager.createSecondary(ReplicationManager.java,
 Compiled Code)
 at weblogic.cluster.replication.ReplicationManager.checkHosts(ReplicationManager.java,
 Compiled Code)
 at weblogic.cluster.replication.ReplicationManager.clusterMembersChanged(ReplicationManager.java:582)
 at weblogic.cluster.MemberStash$ClusterMembersChangeDeliverer.execute(MemberStash.java:207)
 at weblogic.kernel.ExecuteThread.run(ExecuteThread.java, Compiled
 Code)
 --------------- nested within: ------------------
 weblogic.rmi.extensions.RemoteRuntimeException: Undeclared checked
 exception - with nested exception:
 [weblogic.rmi.MarshalException: error marshalling arguments
 - with nested exception:
 [java.io.NotSerializableException: com.sun.mail.imap.IMAPStore]]
 at weblogic.cluster.replication.ReplicationManager_WLStub.create(ReplicationManager_WLStub.java:108)
 at weblogic.cluster.replication.ReplicationManager.createSecondary(ReplicationManager.java,
 Compiled Code)
 at weblogic.cluster.replication.ReplicationManager.checkHosts(ReplicationManager.java,
 Compiled Code)
 at weblogic.cluster.replication.ReplicationManager.clusterMembersChanged(ReplicationManager.java:582)
 at weblogic.cluster.MemberStash$ClusterMembersChangeDeliverer.execute(MemberStash.java:207)
 at weblogic.kernel.ExecuteThread.run(ExecuteThread.java, Compiled
 Code)
 Wed Mar 21 16:40:12 PST 2001: <ServletContext-General> Generated
 java file: E:\weblogic_cluster\FIPBEA01\classfiles\jsp_servlet\_partner\_partner.java
 Wed Mar 21 16:40:14 PST 2001: <ServletContext-General> Generated
 java file: E:\weblogic_cluster\FIPBEA01\classfiles\jsp_servlet\_partner\_partner_45_mainframe.java
 Wed Mar 21 16:40:14 PST 2001: <ServletContext-General> Generated
 java file: E:\weblogic_cluster\FIPBEA01\classfiles\jsp_servlet\_partner\_partner_45_leftframe.java
 Wed Mar 21 16:43:41 PST 2001: <RJVM> Signaling peer -255280969513470611S192.168.6.12:[7001,7001,7002,7002,7001,-1]
 gone: weblogic.rjvm.PeerGoneException:
 - with nested exception:
 [java.net.SocketException: Connection reset by peer]
 Wed Mar 21 16:44:28 PST 2001: <ServletContext-General> Generated
 java file: E:\weblogic_cluster\FIPBEA01\classfiles\jsp_servlet\_dtlogout.java


 Thanks Prasad.Your comments are very much appreciated !!!
 Prasad Peddada <[email protected]> wrote:
 >This has nothing to do with firewall.
 >
 >
 >You have a non serializable object com.sun.mail.imap.IMAPStore
 >in session.
 >
 >You cannot have non serializable objects in sessions when
 >you are using inmemory replication/file/jdbc persistence.
 >
 >-- Prasad
 >
 >Gigen Thomas wrote:
 >
 >> Product Name and Version, including Service Pack (if
 >any):
 >> =============================================
 >> Weblogic 5.1 , SP8
 >>
 >> Platform (OS Version)
 >> =================
 >> Windows 2000 server,
 >>
 >> JDK Version (if applicable)
 >> =====================
 >> Jdk1.2
 >>
 >> Detailed Problem Description
 >> ======================
 >> We have 2 weblogic servers in a cluser on two windows
 >2000 Servers
 >> , NT01 and NT02.The webservers are in a DMZ behind the
 >firewall
 >> and there is a second firewall between the webserver
 >and the weblogic
 >> servers.The webserver is a Linux box , running Apache
 >1.3.9 with
 >> the weblogic Plugin(LIN01).The per server weblogic.properties
 >file
 >> has the weblogic.system.DNSName=LIN01.
 >>
 >> We still get errors on the console when we run our jsp/Servlet
 >> application.The errors are listed below.Could you please
 >help us
 >> identify the problem
 >>
 >> Thanks,
 >> Gigen Thomas
 >>
 >> Error Message/Stack Trace
 >> =====================
 >> ed Mar 21 16:38:50 PST 2001: <ServletContext-General>
 >Generated
 >> java file: E:\weblogic_cluster\FIPBEA01\classfiles\jsp_servlet\_driveway\_driveway.java
 >> Wed Mar 21 16:38:52 PST 2001: <ServletContext-General>
 >Generated
 >> java file: E:\weblogic_cluster\FIPBEA01\classfiles\jsp_servlet\_driveway\_driveway_45_leftframe.java
 >> Wed Mar 21 16:39:41 PST 2001: <Cluster> Adding server
 >-255280969513470611S192.168.6.12:[7001,7001,7002,7002,7001,-1]
 >> to cluster view
 >> Wed Mar 21 16:39:41 PST 2001:<E> <Kernel> ExecuteRequest
 >failed.
 >> java.io.NotSerializableException: com.sun.mail.imap.IMAPStore
 >> at java.io.ObjectOutputStream.outputObject(ObjectOutputStream.java:845)
 >> at java.io.ObjectOutputStream.writeObject(ObjectOutputStream.java:342)
 >> at java.util.Hashtable.writeObject(Hashtable.java:738)
 >> at java.lang.reflect.Method.invoke(Native Method)
 >> at java.io.ObjectOutputStream.invokeObjectWriter(ObjectOutputStream.java:1585)
 >> at java.io.ObjectOutputStream.outputObject(ObjectOutputStream.java:907)
 >> at java.io.ObjectOutputStream.writeObject(ObjectOutputStream.java:342)
 >> at weblogic.common.internal.WLObjectOutputStreamBase.writeObject(WLObjectOutputStreamBase.java:118)
 >> at weblogic.servlet.internal.session.ReplicatedSession.writeExternal(ReplicatedSession.java:74)
 >> at weblogic.common.internal.WLObjectOutputStreamBase.writePublicSerializable(WLObjectOutputStreamBase.java,
 >> Compiled Code)
 >> at weblogic.common.internal.WLObjectOutputStreamBase.writeObjectBody(WLObjectOutputStreamBase.java,
 >> Compiled Code)
 >> at weblogic.common.internal.WLObjectOutputStreamBase.writeObject(WLObjectOutputStreamBase.java,
 >> Compiled Code)
 >> at weblogic.common.internal.WLObjectOutputStreamBase.writeObjectWL(WLObjectOutputStreamBase.java,
 >> Compiled Code)
 >> at weblogic.rmi.extensions.AbstractOutputStream2.writeObject(AbstractOutputStream2.java:82)
 >> at weblogic.rmi.extensions.AbstractOutputStream.writeObject(AbstractOutputStream.java:83)
 >> at weblogic.cluster.replication.ReplicationManager_WLStub.create(ReplicationManager_WLStub.java:86)
 >> at weblogic.cluster.replication.ReplicationManager.createSecondary(ReplicationManager.java,
 >> Compiled Code)
 >> at weblogic.cluster.replication.ReplicationManager.checkHosts(ReplicationManager.java,
 >> Compiled Code)
 >> at weblogic.cluster.replication.ReplicationManager.clusterMembersChanged(ReplicationManager.java:582)
 >> at weblogic.cluster.MemberStash$ClusterMembersChangeDeliverer.execute(MemberStash.java:207)
 >> at weblogic.kernel.ExecuteThread.run(ExecuteThread.java,
 >Compiled
 >> Code)
 >>
 >> --------------- nested within: ------------------
 >> weblogic.rmi.MarshalException: error marshalling arguments
 >> - with nested exception:
 >> [java.io.NotSerializableException: com.sun.mail.imap.IMAPStore]
 >> at weblogic.cluster.replication.ReplicationManager_WLStub.create(ReplicationManager_WLStub.java:90)
 >> at weblogic.cluster.replication.ReplicationManager.createSecondary(ReplicationManager.java,
 >> Compiled Code)
 >> at weblogic.cluster.replication.ReplicationManager.checkHosts(ReplicationManager.java,
 >> Compiled Code)
 >> at weblogic.cluster.replication.ReplicationManager.clusterMembersChanged(ReplicationManager.java:582)
 >> at weblogic.cluster.MemberStash$ClusterMembersChangeDeliverer.execute(MemberStash.java:207)
 >> at weblogic.kernel.ExecuteThread.run(ExecuteThread.java,
 >Compiled
 >> Code)
 >> --------------- nested within: ------------------
 >> weblogic.rmi.extensions.RemoteRuntimeException: Undeclared
 >checked
 >> exception - with nested exception:
 >> [weblogic.rmi.MarshalException: error marshalling arguments
 >> - with nested exception:
 >> [java.io.NotSerializableException: com.sun.mail.imap.IMAPStore]]
 >> at weblogic.cluster.replication.ReplicationManager_WLStub.create(ReplicationManager_WLStub.java:108)
 >> at weblogic.cluster.replication.ReplicationManager.createSecondary(ReplicationManager.java,
 >> Compiled Code)
 >> at weblogic.cluster.replication.ReplicationManager.checkHosts(ReplicationManager.java,
 >> Compiled Code)
 >> at weblogic.cluster.replication.ReplicationManager.clusterMembersChanged(ReplicationManager.java:582)
 >> at weblogic.cluster.MemberStash$ClusterMembersChangeDeliverer.execute(MemberStash.java:207)
 >> at weblogic.kernel.ExecuteThread.run(ExecuteThread.java,
 >Compiled
 >> Code)
 >>
 >> Wed Mar 21 16:40:12 PST 2001: <ServletContext-General>
 >Generated
 >> java file: E:\weblogic_cluster\FIPBEA01\classfiles\jsp_servlet\_partner\_partner.java
 >> Wed Mar 21 16:40:14 PST 2001: <ServletContext-General>
 >Generated
 >> java file: E:\weblogic_cluster\FIPBEA01\classfiles\jsp_servlet\_partner\_partner_45_mainframe.java
 >> Wed Mar 21 16:40:14 PST 2001: <ServletContext-General>
 >Generated
 >> java file: E:\weblogic_cluster\FIPBEA01\classfiles\jsp_servlet\_partner\_partner_45_leftframe.java
 >> Wed Mar 21 16:43:41 PST 2001: <RJVM> Signaling peer
 >-255280969513470611S192.168.6.12:[7001,7001,7002,7002,7001,-1]
 >> gone: weblogic.rjvm.PeerGoneException:
 >> - with nested exception:
 >> [java.net.SocketException: Connection reset by peer]
 >> Wed Mar 21 16:44:28 PST 2001: <ServletContext-General>
 >Generated
 >> java file: E:\weblogic_cluster\FIPBEA01\classfiles\jsp_servlet\_dtlogout.java
 >

Error 503 in WEBLogic Server 9.2- Production and Test Environment

Dear All,
since a few weeks (after deploy new Version) i got a lot of Error 503 in my Environment.
what i can/should do to identify what is wrong to solve the problem.
I cannot find Log entries who could explain what is wrong.
Have any one any Idea or suggestions for me?

Hello User,
You can find the application under below path
Domain_name - Expand "Environment" and Select " Deployments " - here your application will show which are deployed in this domain.
Please refer -http://docs.oracle.com/cd/E13222_01/wls/docs100/intro/console.html
Regards
Laksh

JHTML to JSP convertor for WebLogic Server 4.5.0 and above

Hallo,
For what kind of JHTML is that convertor ???
Can it convert Dynamo JHTML pages to JSP pages ???
Thanks
[email protected]
Dusan

The tool in the freeware downloads section of commerce.bea.com was a
tool that was originally targeted at converting pre-WLS 4.51 JHTML into
JSP 1.0 pages. It might be able to help you do the Dynamo conversion
but I would suspect that you will still need to do some work by hand to
make sure that everything is correctly converted...
Hope this helps,
Robert
Dusan Petrovic wrote:
Hallo,
For what kind of JHTML is that convertor ???
Can it convert Dynamo JHTML pages to JSP pages ???
Thanks
[email protected]
Dusan

Oracle Identity Server Authenticator as Security Provider for Weblogic 10.3

Hi,
I am getting the following exception on weblogic server 10.1.3 console when accessing users and groups in security realm. This can be reproduced using the following steps.
1. I have installed Oracle Identity Management 10.1.4 (Oracle SSO). I have installed Oracle SSO using the default port options. I tested accessing the Internet directory using orcladmin user and it is working with out any problems.
2. Installed Oracle weblogic Server 10.1.3 and then installed ADF runtime. I verified the installation by accessing the admin server console and did not find any issues.
3. Opened the Admin Console and then accessed the Security Realms and then selected myrealm. Then selected Providers and added Oracle Internet directory Authentication provider.
4. configured the provider specific parameters like the host name and port number (389).
Now when I select user and groups tab I am getting the following exception on weblogic adminserver command prompt console.
Am I missing any steps in configuring Oracle Internet directory authenitcaiton provider for weblogic 10.3.1
<Oct 13, 2009 8:33:21 PM EDT> <Error> <Console> <BEA-240003> <Console encountere
d the following error weblogic.security.providers.authentication.LDAPAtnDelegateException: [Security:090294]could not get connection
at weblogic.security.providers.authentication.LDAPAtnDelegate.getConnection(LDAPAtnDelegate.java:3224)
at weblogic.security.providers.authentication.LDAPAtnDelegate.listUsers(LDAPAtnDelegate.java:2248)
at weblogic.security.providers.authentication.LDAPAuthenticatorImpl.listUsers(LDAPAuthenticatorImpl.java:178)
at weblogic.security.providers.authentication.OracleInternetDirectoryAuthenticatorMBeanImpl.listUsers(OracleInternetDirectoryAuthenticatorMBeanImpl.java:221)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at weblogic.management.jmx.modelmbean.WLSModelMBean.invoke(WLSModelMBean.java:437)
at com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.invoke(DefaultMBeanServerInterceptor.java:836)
at com.sun.jmx.mbeanserver.JmxMBeanServer.invoke(JmxMBeanServer.java:761)
at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase$16.run(WLSMBeanServerInterceptorBase.java:449)
at java.security.AccessController.doPrivileged(Native Method)
at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase.invoke(WLSMBeanServerInterceptorBase.java:447)
at weblogic.management.mbeanservers.internal.JMXContextInterceptor.invoke(JMXContextInterceptor.java:268)
at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase$16.run(WLSMBeanServerInterceptorBase.java:449)
at java.security.AccessController.doPrivileged(Native Method)
at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase.invoke(WLSMBeanServerInterceptorBase.java:447)
at weblogic.management.mbeanservers.internal.SecurityInterceptor.invoke(SecurityInterceptor.java:443)
at weblogic.management.jmx.mbeanserver.WLSMBeanServer.invoke(WLSMBeanServer.java:314)
at weblogic.management.mbeanservers.internal.JMXConnectorSubjectForwarder$11$1.run(JMXConnectorSubjectForwarder.java:663)
at java.security.AccessController.doPrivileged(Native Method)
at weblogic.management.mbeanservers.internal.JMXConnectorSubjectForwarder$11.run(JMXConnectorSubjectForwarder.java:661)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
at weblogic.management.mbeanservers.internal.JMXConnectorSubjectForwarder.invoke(JMXConnectorSubjectForwarder.java:654)
at javax.management.remote.rmi.RMIConnectionImpl.doOperation(RMIConnectionImpl.java:1426)
at javax.management.remote.rmi.RMIConnectionImpl.access$200(RMIConnectionImpl.java:72)
at javax.management.remote.rmi.RMIConnectionImpl$PrivilegedOperation.run(RMIConnectionImpl.java:1264)
at java.security.AccessController.doPrivileged(Native Method)
at javax.management.remote.rmi.RMIConnectionImpl.doPrivilegedOperation(RMIConnectionImpl.java:1366)
at javax.management.remote.rmi.RMIConnectionImpl.invoke(RMIConnectionImpl.java:788)
at javax.management.remote.rmi.RMIConnectionImpl_WLSkel.invoke(Unknown Source)
at weblogic.rmi.internal.ServerRequest.sendReceive(ServerRequest.java:174)
at weblogic.rmi.internal.BasicRemoteRef.invoke(BasicRemoteRef.java:222)
at javax.management.remote.rmi.RMIConnectionImpl_1031_WLStub.invoke(Unknown Source)
at javax.management.remote.rmi.RMIConnector$RemoteMBeanServerConnection.invoke(RMIConnector.java:978)
at weblogic.management.jmx.MBeanServerInvocationHandler.doInvoke(MBeanServerInvocationHandler.java:544)
at weblogic.management.jmx.MBeanServerInvocationHandler.invoke(MBeanServerInvocationHandler.java:380)
at $Proxy106.listUsers(Unknown Source)
at com.bea.console.utils.security.UserUtils.getUsers(UserUtils.java:78)
at com.bea.console.actions.security.users.UserTableAction.getCollection(UserTableAction.java:100)
at com.bea.console.actions.security.ManagementBaseTableAction.execute(ManagementBaseTableAction.java:83)
at org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:431)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.access$201(PageFlowRequestProcessor.java:97)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor$ActionRunner.execute(PageFlowRequestProcessor.java:2044)
at org.apache.beehive.netui.pageflow.interceptor.action.internal.ActionInterceptors.wrapAction(ActionInterceptors.java:91)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.processActionPerform(PageFlowRequestProcessor.java:2116)
at com.bea.console.internal.ConsolePageFlowRequestProcessor.processActionPerform(ConsolePageFlowRequestProcessor.java:262)
at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:236)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.processInternal(PageFlowRequestProcessor.java:556)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.process(PageFlowRequestProcessor.java:853)
at org.apache.beehive.netui.pageflow.AutoRegisterActionServlet.process(AutoRegisterActionServlet.java:631)
at org.apache.beehive.netui.pageflow.PageFlowActionServlet.process(PageFlowActionServlet.java:158)
at com.bea.console.internal.ConsoleActionServlet.process(ConsoleActionServlet.java:256)
at org.apache.struts.action.ActionServlet.doGet(ActionServlet.java:414)
at com.bea.console.internal.ConsoleActionServlet.doGet(ConsoleActionServlet.java:133)
at org.apache.beehive.netui.pageflow.PageFlowUtils.strutsLookup(PageFlowUtils.java:1199)
at com.bea.portlet.adapter.scopedcontent.ScopedContentCommonSupport.executeAction(ScopedContentCommonSupport.java:686)
at com.bea.portlet.adapter.scopedcontent.ScopedContentCommonSupport.renderInternal(ScopedContentCommonSupport.java:266)
at com.bea.portlet.adapter.scopedcontent.StrutsStubImpl.render(StrutsStubImpl.java:107)
at com.bea.netuix.servlets.controls.content.NetuiContent.preRender(NetuiContent.java:292)
at com.bea.netuix.nf.ControlLifecycle$6.visit(ControlLifecycle.java:428)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:727)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walkRecursivePreRender(ControlTreeWalker.java:739)
at com.bea.netuix.nf.ControlTreeWalker.walk(ControlTreeWalker.java:146)
at com.bea.netuix.nf.Lifecycle.processLifecycles(Lifecycle.java:395)
at com.bea.netuix.nf.Lifecycle.processLifecycles(Lifecycle.java:361)
at com.bea.netuix.nf.Lifecycle.runOutbound(Lifecycle.java:208)
at com.bea.netuix.nf.Lifecycle.run(Lifecycle.java:162)
at com.bea.netuix.servlets.manager.UIServlet.runLifecycle(UIServlet.java:388)
at com.bea.netuix.servlets.manager.UIServlet.doPost(UIServlet.java:258)
at com.bea.netuix.servlets.manager.UIServlet.doGet(UIServlet.java:211)
at com.bea.netuix.servlets.manager.UIServlet.service(UIServlet.java:196)
at com.bea.netuix.servlets.manager.SingleFileServlet.service(SingleFileServlet.java:251)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
at com.bea.console.utils.MBeanUtilsInitSingleFileServlet.service(MBeanUtilsInitSingleFileServlet.java:47)
at weblogic.servlet.AsyncInitServlet.service(AsyncInitServlet.java:130)
at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:292)
at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
at weblogic.servlet.internal.RequestEventsFilter.doFilter(RequestEventsFilter.java:27)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3588)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:121)
at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2200)
at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2106)
at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1428)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
Caused by: java.lang.reflect.InvocationTargetException
at weblogic.security.providers.authentication.LDAPAtnDelegate$LDAPFactory.newInstance(LDAPAtnDelegate.java:3890)
at weblogic.security.utils.Pool.newInstance(Pool.java:37)
at weblogic.security.utils.Pool.getInstance(Pool.java:33)
at weblogic.security.providers.authentication.LDAPAtnDelegate.getConnection(LDAPAtnDelegate.java:3219)
... 119 more
Caused by: netscape.ldap.LDAPException: error result (49)
at netscape.ldap.LDAPConnection.checkMsg(LDAPConnection.java:4871)
at netscape.ldap.LDAPConnection.simpleBind(LDAPConnection.java:1766)
at netscape.ldap.LDAPConnection.authenticate(LDAPConnection.java:1264)
at netscape.ldap.LDAPConnection.authenticate(LDAPConnection.java:1273)
at netscape.ldap.LDAPConnection.bind(LDAPConnection.java:1562)
at weblogic.security.providers.authentication.LDAPAtnDelegate$LDAPFactory.newInstance(LDAPAtnDelegate.java:3860)
... 122 more
Thanks and Regards,
S R Prasad

The problem has been resolved after providing OID admin user creadential with cn=orcladmin instead of orcladmin. The Security:090294 is related to OID credentials.
Regards,
S R Prasad

Weblogic server 9.2 security and administartion

Similar Messages

Maybe you are looking for