Wrong Partner Application Site ID

Similar Messages

• Mod_osso partner application and webcache site to server mapping

  hi, need advice on the following.
  i have an app server container (only OC4J and no portal,forms etc) hostname abc.test.net installed with the option to registered to the sso server (http://mylogin.test.net), which is on a physically seperate machine.
  i have a java application deployed on a 10g app server container. the log in portion is handle by the login server using the mod_osso.conf file.
  thus when i type http://abc.test.net:7777/myapps, i will be prompted to login via the sso server.
  this is working fine.
  then i put a webcache to front this app server, so that users will use a sitename (http://myapps.abc.com) defined in the webcache (mapped to the app server) to access that application.
  so now when users type http://myapps.abc.com, they are still prompted the sso login screen. but after logging in, they are shown a red coloured bold text error message "ORASSO Failure-Unable to Process Request" page. this error page has the url of app server http://abc.test.net:7777/osso_login_successxxxx.
  if i manually replace the 'acb.test.net' to 'myapps.abc.com', my application will be displayed correctly, and i am logged in.
  how can i resolve this problem?
  question:
  1. do i need to re-register http://myapps.abc.com as a partner application?
  2. if so, do i perform the registration from the webcache, the app server or the login server itself?
  pls advice.
  thx.

  Follow the following notes:
  Note:250532.1 Configuring HTTP Server to Use SSL in Oracle Application Server 10g (9.0.4)
  ===> Note:250532.1 Configuring HTTP Server to Use SSL in Oracle Application Server 10g (9.0.4) <===

• HTMLDB -SSO- Partner application

  Hi,
  I have installed a database 10g/HTMLDB 1.5 and iAS 10g on two different boxes.
  Refered & successfully completed the steps from
  http://www.oracle.com/technology/products/database/htmldb/howtos/sso_partner_app.html
  to Configure an HTML DB Application as a Partner Application in Oracle AS Single Sign-On
  (TWICE From the Scratch)
  But, Getting error like
  "Error Error in portal_sso_redirect: missing application registration information:
  p_partner_app_name:g_listener_token:HTML_DB:indl097ba.idc.oracle.com:7777
  Please register this application as described in the installation guide."
  Please let me know what would be wrong in doing this.
  Feel free to ask for any further specific details or parameter values.
  As its @ customer's site, need to know the resolution very urgently.
  Thanks in advance.
  Regards,
  Nagadeep.

  Hi Scott,
  I am doing it from scratch now.
  Details are like this:
  C:\SSO_SDK\ssosdk307_032101\packages\oracle\security\sso>path
  PATH=D:\oracle\product\10.1.0\Db_1\BIN;D:\OraHomeOWB\bin;D:\OraHomeOWB\jre\1.4.2
  \bin\client;D:\OraHomeOWB\jre\1.4.2\bin;D:\oracle\product\10.1.0\Htmldb\bin;D:\o
  racle\product\10.1.0\Htmldb\jre\1.1.8\bin;D:\oracle\product\10.1.0\Htmldb\jre\1.
  4.2\bin\client;D:\oracle\product\10.1.0\Htmldb\jre\1.4.2\bin;D:\oracle\product\1
  0.1.0\Db_1\bin;D:\oracle\product\10.1.0\Db_1\jre\1.4.2\bin\client;D:\oracle\prod
  uct\10.1.0\Db_1\jre\1.4.2\bin;C:\WINNT\system32;C:\WINNT;C:\WINNT\System32\Wbem;
  C:\Program Files\Symantec\pcAnywhere\
  C:\SSO_SDK\ssosdk307_032101\packages\oracle\security\sso>loadjava -user FLOWS_01
  0500/welcome1@orcl SSOHash.class
  C:\SSO_SDK\ssosdk307_032101\packages\oracle\security\sso>
  @ the Database Schema:
  SQL*Plus: Release 10.1.0.2.0 - Production on Wed May 18 20:49:33 2005
  Copyright (c) 1982, 2004, Oracle. All rights reserved.
  Connected to:
  Oracle Database 10g Enterprise Edition Release 10.1.0.2.0 - Production
  With the Partitioning, OLAP and Data Mining options
  SQL> conn flows_010500/welcome1
  Connected.
  SQL> @C:\SSO_SDK\ssosdk307_032101\packages\loadsdk.sql
  Package created.
  No errors.
  Package body created.
  No errors.
  Type created.
  Table created.
  Sequence created.
  Sequence created.
  Table created.
  No errors.
  Procedure created.
  No errors.
  Package created.
  No errors.
  Package body created.
  No errors.
  Package created.
  No errors.
  Package created.
  No errors.
  Package body created.
  No errors.
  Package body created.
  No errors.
  Package created.
  No errors.
  Package body created.
  No errors.
  SQL>
  Now, at the iAS10g registering HTMLDB application as a partner application.
  Let me know whether I have to create any DAD to specify in HOME URL?
  Regards,
  Nagadeep.

• SSO requires double login for partner application

  I'm having some trouble with SSO partner applications, when I login to a SSO protected application, the login works fine, but when I try to navigate to another application I'm presented with the login page again, the sso cookie seems to be working since clicking on the login button without entering the user credentials works. For example, I log in to portal and from there I navigate to a forms application that is on the same server and the same port (portal: https://apps.mydomain.com:4444/pls/portal --> forms: https://apps.mydomain.com/forms/frmservlet?config=app) I am presented with the login page and after clicking on the login button without entering any information everything works fine. This is happening for all the middle tiers that are connected to the same OID. Any ideas on what can be wrong on my configuration?

  Hi Andrey,
  The problem sounds really wierd.
  Can you check your SSO settings for your Portal ECC system? I mean, please check the User Management/Administration properties in your System Adminstration of Portal System that points to ECC.
  Regards
  <i><b>Raja Sekhar</b></i>

• Partner application and web clipping.

  Hi All,
  I am trying to add an external application (say my.yahoo.com) to a webclipping and its throwing the below error in the application log.
  WC-517 : SSL handshake failed with the url ...
  I have checked the file ca-bundle.crt and the certificates are in place. Does anybody know how to go about debugging this problem as I am quite new to portals and at my wits end to solve it.
  Also I would be greatful if anybody can suggest me the steps on adding an Apex application configured as partner application with SSO authentication to a web clipping.There seems to be little or no-documentation at all in this regard(as far as my search goes).
  Thanks in advance
  -Venkat

  I finally got it working by VERY CAREFULLY reading the instructions in the install.txt document in the SSO SDK package. You have to set up the partner application with a new schema in the login server database, and run the regapp.sql script AFTER editing it to insert data from the Login Server Partner Application admin screen. After you register the partner app in Portal, it gives you some info (site token, listener token, encryption key, etc). You have to MANUALLY copy these and paste them into the regapp.sql script, then run the script in the partner app schema. Make sure you don't confuse capital I with numeral 1 (like I did, since Oracle so nicely uses a non-serif font where you can not tell the difference).
  Also make sure you copy the exact values for these parameters into your code when you use the SSOEnabler class. The listener token was very confusing since different documents appear to disagree on whether it should include the partner app name or not. It does require the partner app name:
  app-name:hostname:port
  hostname and port are for the web server that is handling http requests for the login server (usually your main portal web server).
  John H.

• SSO Partner Application not working

  Hi,
  I have OBIEE running on a different box. I need to enable SSO for OBIEE. I deployed the analytics.war file in the home oc4j container of Oracle Portal and manually registered it as a Partner Application, made following changes in mod_osso.conf inside ORACLE_PORTAL_HOME/Apache/Apache/conf and restarted the apache server. But when I access the application it does shows me the SSO login page but after entering the credentials it throws internal server error. I checked the log files but don't see any errors in there so wondering what could be wrong.
  Here is what I have added in the mod_osso.conf
  <Location /analytics>
    Header unset Pragma
    OssoSendCacheHeaders off
    AuthType Basic
    require valid-user
  </Location>Any help is appreciated.
  Thanks

  please check your $ORACLE_HOME/sso/log/ssoreg.err and $ORACLE_HOME/sso/log/ssoreg.log and see if you have errors in your sso-registration.
  thanks!
  AMN

• Apex application registered with sso as partner application

  We have 1 apex app registered with sso and working properly.
  I just registered a new apex application with sso. when i authenticate through sso, it directs me to the originally registered application.
  I went in through the portal administrator app and verified my settings all pointed to the new application. I verified that my dad is set up correctly.
  Any ideas?
  APEX 2.0

  i did register and obtain the keys through portal admin.
  to ensure i used the proper keys (i guess there is a possibility i used the keys from db1 registration) i re-ran regapp with the right keys but recieved the following output:
  SQL> @regapp
  Partner Application Configuration
  Enter value for listener_token: HTML_DB:050iasphttp.xxx.na.xxx.com:7777
  Enter value for site_id: EFBE3E14
  Enter value for site_token: MSMXURH1EFBE3E14
  Enter value for login_url: https://050iaspdb.xxx.na.xxx.com:4443/pls/orasso/orasso.wwsso_app_admin.ls_login
  Enter value for encryption_key: 2EBDD126A3A40606
  Enter value for ip_check: N
  ERROR: Error in registration. Please try again
  User-Defined Exception
  Registration successful.
  Listener token: HTML_DB:050iasphttp.xxx.na.xxx.com:7777
  Site id : EFBE3E14
  Site token : MSMXURH1EFBE3E14
  Encryption key: 2EBDD126A3A40606
  Login URL :
  https://050iaspdb.xxx.na.xxx.com:4443/pls/orasso/orasso.wwsso_app_admi
  n.ls_login
  Logout URL :
  https://050iaspdb.xxx.na.xxx.com:4443/pls/orasso/orasso.wwsso_app_admi
  n.ls_logout
  IP check : N
  PL/SQL procedure successfully completed.
  Commit complete.
  No errors.
  SQL>
  ...in spite of the error, i aske the app developer to try and use sso for db2. he now recieves:
  User-Defined Exception
  Error Error in wwv_flow_custom_auth_sso.process_success:l_sso_user_name:l_sess_id:: Please contact administrator.
  OK
  any ideas?

• Partner Application and Login Server

  I have created a partner application using the samples provided in the ssosdk. In the SSOSignServlet I am checking a table to determine if the user returned from the login server has access to the partner application. If the user has access, I set the cookie and the user is redirected to the application. If the user does not have access, am not sure how to handle it. I can use response.sendRedirect(response.encodeUrl(m_cancelUrl), yet would rather display a message indicating that dont have access and are being redirected. If I try to output a message in the SSOSignOnServlet, I get into a loop. ANy ideas?

  I finally got it working by VERY CAREFULLY reading the instructions in the install.txt document in the SSO SDK package. You have to set up the partner application with a new schema in the login server database, and run the regapp.sql script AFTER editing it to insert data from the Login Server Partner Application admin screen. After you register the partner app in Portal, it gives you some info (site token, listener token, encryption key, etc). You have to MANUALLY copy these and paste them into the regapp.sql script, then run the script in the partner app schema. Make sure you don't confuse capital I with numeral 1 (like I did, since Oracle so nicely uses a non-serif font where you can not tell the difference).
  Also make sure you copy the exact values for these parameters into your code when you use the SSOEnabler class. The listener token was very confusing since different documents appear to disagree on whether it should include the partner app name or not. It does require the partner app name:
  app-name:hostname:port
  hostname and port are for the web server that is handling http requests for the login server (usually your main portal web server).
  John H.

• Wwc- 41653 The partner application configuration is missing or expired.

  We have the following scenerio.
  Application server 9iR1, apache server, login server, portal3.0.9.8.4 on 9iR2 database on host A. There is another database in 9iR2 where portal3.0.9.8.4 installed on host B. I want to use this database for another website configuring apache on host A as virtual host. I want to use same login server on host A.
  The website on host A is working fine while the website on host B does not allow me to log into the login server.
  I have run ssodatan script for associating portal schema on host B. I have created partner application on host A portal for accessing portal on host B and run ssodatax script for associating partner application.
  when I try to log into the another web site created for host B, I get portal welcome page. when I click on login, I get sso page but i am unable to log into it, getting error The partner application configuration is missing or expired. Please contact the administrator. (WWC-41653)
  How to resolve this?

  Were you able to resolve the issue???
  Can you pls try Rerunning ssodatan/x with the correct data. The ssodatan script is located in the directory ORACLE_HOME/portal30/admin/plsql/ssodatan.
  Refer following link for more info on SSODATAN , SSODATAX and DIAGNOSTICS scripts in Portal 3.0.x:
  http://metalink.oracle.com/metalink/plsql/ml2_documents.showDocument?p_database_id=NOT&p_id=136138.1

• Registering a Partner application with Oracle SSO 10gR2

  Hi Everybody
  I'd like to ask a question around registering a partner application with Oracle SSO.
  I have entered my home_url, logout_url and cancel_url e.g. home_url is https://vevopuitest1.co.uk/vevo_test1 and so on for the other fields.
  When I save the details some information is automatically created e.g. Site Id, Site Token etc.
  The bit that I am particularly interested in are the fields Single Sign-On URL and Single Sign-Off URL.
  For my purposes these fields are respectively: https://cwassotest1.co.uk/pls/orasso/orasso.wwsso_app_admin.ls_login and https://cwassotest1.co.uk/pls/orasso/orasso.wwsso_app_admin.ls_logout
  My questions are:
  1. Where do these values come from?
  2. Can I view them anywhere, say, in Oracle Directory Manager or using ldif queries?
  I would like to be able to verify these values.
  Many Thanks
  Andy

  I'm afraid this won't answer your question completely, but AFAIK in principle it does not matter on which machine SSO is running, as long as it passes the user id and credentials properly through the HTTP Header. Even more: in practice it is very common to have SSO running on a different machine than where your app runs.
  So what I would do is find out how to use ADF Faces with SSO. Perhaps someone else can provide pointers on that.
  Jan Kettenis

• Java SSO Partner application

  Hello,
  I configured and deployed a Java Partner Application as specified in the demo (ssosdk902.zip). I created an OC4J container and deployed all beans and jsp pages. When I try to access papp.jsp page, it presents me with sso login page but when i try to access other jsp pages under the same container like (index.jsp), it does not ask present with a sso login page. I want to protect all JSP pages under that container. Should I change home url for the SSO Partner application?
  Any help is appreciated.
  Thanks.

  creating a partner application does not automatically secure the entire directory/application. it just sets a cookie for the Login Server and the Partner Application, indicating this user is authenticated.
  if you want to secure the entire directory, you need to:
  1. lock the directory down with MOD_OSSO in partnership with the Login Server
  2. put the session checking code from papp.jsp into every page you want to secure, ensuring you have a valid and current user
  3. create an application-specific security layer for the rest of your application that defers to the Oracle Security for user authentication.
  what i'm currently doing is number 3. i have my ssoHome, that ensures i have a valid Login Server user. then i create an application session around the SSO user and use that to secure the rest of my site. if that session info ever times out, i delegate back to my ssoHome to see if they're still valid according to Oracle, and if they're not, they get sent back to the Login Server.
  this model works very well for me, and is easy to manage.
  hope that helps,
  .rich

• Ssodatan and partner application

  Hello,
  I have configured successfully a java partner application.
  The problem is that each time I run ssodatan command all the
  records in the table WWSSO_PAPP_CONFIGURATION_INF_T are removed
  (the one for ny partner application too) and only portal30 and
  portal30_sso are recreated. So I loose all the parameter of the
  my partner application. It does't appears anymore in the partner
  application list...
  Can anyone help me?
  Thank you,
  Lorenzo.

  I didn't understand very well:
  we need to launch ssodatan necessary because the portal url and
  login server url changes often.
  After that, we loose the partner application configuration (of
  the java application), the portal is OK.
  You suggest me to run ssodatax command, but according with the
  comment in ssodatax script, I can't run it without creating
  manually the partner application (ssodatax needs: site id,
  Token, Encryption Key, ...).
  What I want to avoid is to create manually the partner
  application. Is possible to do this step in automatic way (using
  script or something else)?
  Thanks
  Lorenzo.

• ApEx 2.1.0.00.39 as Partner Application in Oracle AS Single Sign-On

  Hi,
  I've installed the last Application Express 2.1.0.00.39 (oracle-xe-10.2.0.1-1.0.i386.rpm and oracle-xe-univ-10.2.0.1-1.0.i386.rpm) but, when I try to "create an authentication scheme" for configure an ApEx application to use SSO under
  Home>Application Builder>Application xxx>Shared Components>Authentication Schemes>Create Authentication Scheme
  in the second step of the procedure I don't find the choice "Oracle Application Server Single Sign-On (Application Express engine as Partner App)".
  I found only these:
  - Show Built-In Login Page and Use Open Door Credentials
  - Show Login Page and Use Application Express Account Credentials
  - Show Login Page and Use Database Account Credentials
  - Show Login Page and Use LDAP Directory Credentials
  - No Authentication (using DAD)
  even if under the help voice "V Information" the others two are describes:
  Oracle Application Server Single Sign-On (Application Express engine as Partner App) delegates authentication to the Oracle Application Server Single Sign-On (SSO) Server. This Application Express site must have already been registered as a partner application with the SSO server. For more information, contact your administrator.
  Oracle Application Server Single Sign-On (My application as Partner App) delegates authentication to the SSO server. In this case, you must register an application with SSO as a partner application. See the next page for more details.
  Does Someone know how to resolve it?
  Thanks
  Emanuele

  Thanks for all your help Scott
  I've added the -PORTAL_SSO- .....
  After this I've had a new problem same to this: Re: SSO Authentication Not Working
  "get the error below and it then directs me to http://hostx/htmldb/f? and the "p=" is missing"
  But after a lot of tests I discovered where was the problem: "The apache configuration for the proxy!!"
  This an extract from the installation doc :
  SetEnv force-proxy-request-1.0 1
  ProxyPass /htmldb http://127.0.0.1:8080/htmldb
  ProxyPassReverse /htmldb http://127.0.0.1:8080/htmldb
  ProxyPass /i http://127.0.0.1:8080/i
  ProxyPassReverse /i http://127.0.0.1:8080/i
  ProxyPass /sys http://127.0.0.1:8080/sys
  ProxyPassReverse /sys http://127.0.0.1:8080/sys
  where you replace 127.0.0.1 with the name OR ip address of your XE installation. 8080 is the default http port of your XE installation. "
  Well, I used the IP ADDRESS and in the @regapp > listener_token the NAME!!! (HTML_DB:servername.domain:80)
  I changed the IP ADDRESS with the NAME, restarted the httpd service and now all works fine.
  Emanuele

• Configuring Lync Server 2013 to be a partner Application for Exchange 2013

  Hello Guys,
  I just want to share my experience while configuring Lync server 2013 to be a partner Application for exchange 2013 sever. 
  As mentioned on technet you need to run Configure-EnterprisePartnerApplication.ps1 script that ships with Exchange 2013. 
  But when I tried to run the script as described on the technet article, I found it always fails with " the accepted domain is not valid"
  I have checked my accepted domains many times and i found that there's no issues with my configured accepted domain. 
  So I started to review the script to find the issue and I found that the script was configured  as below 
  $acceptedDomains = Get-AcceptedDomain ;
    if ($acceptedDomains -eq $null)
      WriteError ("There is no accepted domain so user can not be created.")
    $acceptedDomain = $acceptedDomains[0].Name;
    if($UseDomainController -eq $true)
      $user = New-MailUser -Name $username -DomainController $DomainController -ExternalEmailAddress $username@$acceptedDomain;
  set-mailuser -Identity $user.Identity -HiddenFromAddressListsEnabled $true -DomainController $DomainController
    else
      $user = New-MailUser -Name $username -ExternalEmailAddress $username@$acceptedDomain;
  set-mailuser -Identity $user.Identity -HiddenFromAddressListsEnabled $true; 
  which is totally wrong as below: 
  firstly it makes $AcceptedDomain variable to equal the Name of the accepted domain. 
  Not all customers configure the name of the Accepted Domain to be the Domain Name.
  Secondly  it makes $AcceptedDomain variable to equal the name of the first Accepted Domain.
  The first domain may be not the default Accepted Domain. 
  So I have configured the script as below
  $acceptedDomains = Get-AcceptedDomain | ? {$_.Default -eq "True"}  ;
    if ($acceptedDomains -eq $null)
      WriteError ("There is no accepted domain so user can not be created.")
    $acceptedDomain = $acceptedDomains.DomainName;
    if($UseDomainController -eq $true)
      $user = New-MailUser -Name $username -DomainController $DomainController -ExternalEmailAddress $username@$acceptedDomain;
  set-mailuser -Identity $user.Identity -HiddenFromAddressListsEnabled $true -DomainController $DomainController
    else
      $user = New-MailUser -Name $username -ExternalEmailAddress $username@$acceptedDomain;
  set-mailuser -Identity $user.Identity -HiddenFromAddressListsEnabled $true; 
  I hope This help. 
  Thanks 
  Ahmed Fouad

  Hi,
  This is helpful, thanks for sharing.
  Best regards,
  Belinda Ma
  TechNet Community Support

• How can i use my custom login page in a custom partner application ?

  Dear All,
  I'm trying to customize a login page displayed other than the default sso login page
  by submiting my form to the regular pl/sql procedure : "PORTAL.wwptl_login.login_url"
  but i tried to type the requested partner application url in the browser i got the sso
  login page other than my custom login page. So, How can i use my custom login page in a custom partner application ?
  Regards,
  Mohammed Amin
  [email protected]

  I cannot begin to express my level of frustration. I have been trying to use the composition widget light box display for some time now. I drag the widget to my document. The default widget has three small trigger boxes and a large area made up of a forward and backward button, a background, a text box and a frame for your image.
  My steps have been …
  I click on the little trigger box.
  I click on the frame that holds the main image.
  I go to the fill menu and browse my computer for my image and then click OK.
  IT shows up on my screen. Yay
  I attempt to continue using the next two trigger boxes provided in the widget.
  After that, I add more by clicking on the little plus sign.
  This is where all heck breaks loose.
  Every single time I attempt to add thumbnails, something messes up. When I go to preview, either not all of my main images show up, or it starts with the wrong one, or some are missing. I have looked and looked for help on this and the only thing I can find is how easy it is to create a great portfolio lightbox display.  But as we know, that only works when your thumbnails are the same image as the images in your lightbox. If you want something different, you have to use the composition wizard. I am finding it extremely difficult and confusing to customize.
  Is there an exact sequence you need to use to add images to the slideshow? I am my wits end.