Skip to Main Content
Forums

Analytics Software

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Configured for LDAP authenication , still giving odbc error.

730219Nov 2 2009 — edited Nov 7 2009
Hi,
I have gone through several posts in forum.I did not find solution for my issue.

Here is what we have done

We are trying OBIEE authentication and authorization by LDAP (Nortell Directory Server).Here is what i did

-Impersonator User created and Credentials are added to Oracle BI Presentation Services Credential Store
We have following config in instanceconfig.xml

<Auth>
<SSO enabled="true">
<ParamList>
<!--IMPERSONATE param is used to get the authenticated user's
username and is required -->
<Param name="IMPERSONATE"
source="httpHeader"
nameInSource="Z-USERID"/>
</ParamList>
<LogoffUrl>http://IP/analytics/saw.dll?Logoff</LogoffUrl>
</SSO>
</Auth>

-Configured LDAP Server under Security Manager/LDAP Servers( set cn attribute in advanced tab for user name attribute).Tested connection It is successful.We are not importing users.

- In Variable manager created an intilization block named it 'Authentication' and mapped three System variables(USER,GROUP,WEBGROUPS) with LDAP atrributes( for groups and webgroups we provided an attribute under user DN). Tested by supplying a username and password it pulled the attribute values.

We log into a WebApplication and the webapplication redirect the request to along with header Z-USERID.
https://XXX.COM/analytics/saw.dll

Here is how it is working:

If supply username and password in two URL parameters nquser and nqpassword it works,i get Dasboard page and other links according to the configured groups in LDAP.

if i do not supply URL parameters nquser and nqpassword, i get "not logged in page."

the initblock that deals with authentication and autherization is working fine.
Single sign on is not working, it is reading the httpheader that we supply.I am not sure why it expecting password.
ssw Logs show following error
Odbc driver returned an error (SQLDriverConnectW).
State: 08004. Code: 10018. NQODBC SQL_STATE: 08004 nQSError: 10018 Access for the requested connection is refused.
nQSError: 43001 Authentication failed for loggedinIN_USERID in repository Star: invalid user/password. (08004)

I tried some of the suggestion on this site like change passwords to 8 characters of impersonator passphrase etc with no success.

It looks like it is trying databse authentication even though we configured initblock with LDAP settings.
Please help!.
Comments
Locked Post
New comments cannot be posted to this locked post.
Post Details
Locked on Dec 4 2009
Added on Nov 2 2009
#business-intelligence-applications
3 comments
2,006 views