Security Software

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

DCC Webgate configuration has failed with OUD as LDAP Store

CrackQuestionJun 9 2017 — edited Jun 12 2017

Dears,

I am trying to configure DDC webgate. And I am using OUD as ldap store. I just extended OUD schema with below command. While login through DCC Webgate login page. it shows

"System error. Please contact the System Administrator." Let me know if you have come across this issue earlier and have solution. Thanks in advance..

Command Used:

$cd /app/Middleware/Oracle_IDM1/oam/server/pswdservice/ldif/

$ ldapmodify -h identity.try.com -p 2389 -D"cn=Directory Manager" -w "PASSWORD" -f OUD_PWDPersonSchema.ldif

ERROR

Caused by: oracle.igf.ids.arisid.ArisIdSchemaException: Invalid attribute(s): entity=uid=XXUSER,ou=people,dc=example,dc=com op=modify mesg=   AdditionalInfo: LDAP Error 65 : [LDAP: error code 65 - Entry uid=XXUSER,ou=people,dc=example,dc=com cannot not be modified because the resulting entry would have violated the server schema: Entry uid=XXUSER,ou=people,dc=example,dc=com violates the Directory Server schema configuration because it includes attribute oblogintrycount which is not allowed by any of the objectclasses defined in that entry]
        at com.oracle.ovd.arisid.OvdIdsStackProvider.mapResultCode(OvdIdsStackProvider.java:673)
        at com.oracle.ovd.arisid.OvdIdsStackProvider.doModify(OvdIdsStackProvider.java:1520)
        at com.oracle.ovd.arisid.ArisIdStackProvider.doModify(ArisIdStackProvider.java:188)
        at org.openliberty.arisid.Interaction.doModify(Interaction.java:1489)
        at oracle.igf.ids.arisid.ArisIdServiceManager.modifyEntity(ArisIdServiceManager.java:2128)
        at oracle.igf.ids.Entity.modify(Entity.java:527)
        at oracle.security.am.engines.common.identity.provider.impl.ids.IDSUserProviderImpl.modifyUserAttributes(IDSUserProviderImpl.java:349)
        at oracle.security.am.engines.common.identity.provider.impl.IdentityProviderImpl.modifyUserAttributes(IdentityProviderImpl.java:886)
        at oracle.security.am.engines.common.identity.provider.impl.OracleUserIdentityProvider.modifyUserAttributes(OracleUserIdentityProvider.java:328)
        at oracle.security.am.pswdmgmt.impl.IDStoreUserRepository.saveUserInfo(IDStoreUserRepository.java:248)
        at oracle.security.am.pswdmgmt.impl.NonNativePasswordMgrServiceImpl.saveUserInfo(NonNativePasswordMgrServiceImpl.java:427)
        at oracle.security.am.pswdmgmt.impl.NonNativePasswordMgrServiceImpl.maintainUserAttributesHistory(NonNativePasswordMgrServiceImpl.java:335)
        at oracle.security.am.pswdmgmt.plugin.PasswordStatusDelegate.maintainUserStatusHistory(PasswordStatusDelegate.java:430)
        at oracle.security.am.pswdmgmt.plugin.PasswordStatusDelegate.handlePasswordStatus(PasswordStatusDelegate.java:109)
        at oracle.security.am.pswdmgmt.plugin.PswdPlugin.process(PswdPlugin.java:124)
        at oracle.security.am.engine.authn.internal.executor.PlugInExecutor.execute(PlugInExecutor.java:204)
        at oracle.security.am.engine.authn.internal.executor.AuthenticationSchemeExecutor.execute(AuthenticationSchemeExecutor.java:113)
        at oracle.security.am.engine.authn.internal.controller.AuthenticationEngineControllerImpl.validateUser(AuthenticationEngineControllerImpl.java:269)
        at oracle.security.am.engines.enginecontroller.AuthnEngineController.authenticateUser(AuthnEngineController.java:986)
        at oracle.security.am.engines.enginecontroller.AuthnEngineController.processEvent(AuthnEngineController.java:341)
        at oracle.security.am.controller.MasterController.processEvent(MasterController.java:596)
        at oracle.security.am.controller.MasterController.processRequest(MasterController.java:788)
        at oracle.security.am.proxy.oam.requesthandler.NGProvider.authenticate(NGProvider.java:780)
        at oracle.security.am.proxy.oam.requesthandler.NGProvider.getAuthenticateForDccResponse(NGProvider.java:535)
        at oracle.security.am.proxy.oam.requesthandler.NGProvider.getResponse(NGProvider.java:439)
        at oracle.security.am.proxy.oam.requesthandler.RequestHandler.handleRequest(RequestHandler.java:366)
        at oracle.security.am.proxy.oam.requesthandler.RequestHandler.handleMessage(RequestHandler.java:170)
        at oracle.security.am.proxy.oam.requesthandler.ControllerMessageBean.getResponseMessage(ControllerMessageBean.java:122)
        at oracle.security.am.proxy.oam.requesthandler.ControllerMessageBean_eo7ylc_MDOImpl.__WL_invoke(Unknown Source)
        at weblogic.ejb.container.internal.MDOMethodInvoker.invoke(MDOMethodInvoker.java:35)
        at oracle.security.am.proxy.oam.requesthandler.ControllerMessageBean_eo7ylc_MDOImpl.getResponseMessage(Unknown Source)
        at oracle.security.am.proxy.oam.mina.ObClientToProxyHandler.messageReceived(ObClientToProxyHandler.java:231)
        at org.apache.mina.common.DefaultIoFilterChain$TailFilter.messageReceived(DefaultIoFilterChain.java:743)
        at org.apache.mina.common.DefaultIoFilterChain.callNextMessageReceived(DefaultIoFilterChain.java:405)
        at org.apache.mina.common.DefaultIoFilterChain.access$1200(DefaultIoFilterChain.java:40)
        at org.apache.mina.common.DefaultIoFilterChain$EntryImpl$1.messageReceived(DefaultIoFilterChain.java:823)
        at org.apache.mina.common.IoFilterEvent.fire(IoFilterEvent.java:54)
        at org.apache.mina.common.IoEvent.run(IoEvent.java:62)
        at oracle.security.am.proxy.oam.mina.CommonJWorkImpl.run(CommonJWorkImpl.java:41)
        ... 3 more

]]

Locked Post

New comments cannot be posted to this locked post.

Locked on Jul 10 2017

Added on Jun 9 2017

#identity-management, #identity-manager

1 comment

238 views