Skip to Main Content
Forums

Security Software

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

WebGate error "The AccessGate is unable to contact any Access Servers"

Cuong PhamAug 9 2012 — edited Aug 10 2012
Hi everyone.
I'm configuring SSO for WebCenter Portal with instructions from this documentation: http://docs.oracle.com/cd/E23943_01/webcenter.1111/e12405/wcadm_security_sso.htm#CHDCCHFD

The trouble is occured when I start OHS: 
Message from syslogd@ at Thu Aug  9 17:48:55 2012 ...
www Oblix: 2012/08/09@10:48:55.26644	5558	5574	ACCESS_GATE	FATAL	0x00001520	/ade/aime_ngamac_935592/ngamac/src/palantir/webgate2/src/apache2entry_web_gate.cpp:591	"Exception thrown during WebGate initialization"	

Message from syslogd@ at Thu Aug  9 17:48:55 2012 ...
www Oblix: 2012/08/09@10:48:55.26856	5558	5574	ACCESS_GATE	FATAL	0x0000182C	/ade/aime_ngamac_935592/ngamac/src/palantir/webgate2/src/apache2entry_web_gate.cpp:592	"The AccessGate is unable to contact any Access Servers."	raw_code^301
Please review for me some configurations file bellow, I think some hostname/port informations has not incorrect on Host Identifier config, ObAccessClient.xml. These ports and hostnames cannot match with exist system. But it rendered with tool and instructions, so that I need a suggest to change it.
On first machine, hostname: app.tinhvan.vnet, I installed Oracle Identity and Access Manager 11.1.1.5.0 with configurations for: OAM, OAAM, without Oracle Identity Manager. So, on that machine, I have a IDM_Domain with these weblogic servers:

AdminServer(admin) app.tinhvan.vnet 7001
oaam_admin_server1 app.tinhvan.vnet 14200
oaam_server_server1 app.tinhvan.vnet 14300
oam_server1 app.tinhvan.vnet 14100

The OHS and WebGate has been installed on other machine, hostname www.tinhvan.vnet, with these configuration:
OHS port 7777
OHS configurations directory: /home/oracle/Oracle/Middleware/Oracle_WT1/instances/instance1/config/OHS/ohs1
On the WebGate instance directory "/home/oracle/Oracle/Middleware/Oracle_WT1/instances/instance1/config/OHS/ohs1/webgate/config", I have cwallet.sso and ObAccessClient.xml that created with RREG tool.

Contents of ObAccessClient.xml 
<?xml version="1.0" encoding="UTF-8" ?><CompoundList xmlns="http://www.oblix.com" ListName="ObAccessClient.tmp"><SimpleList><NameValPair ParamName="id" Value="www.tinhvan.vnet_webcenter" /></SimpleList><SimpleList><NameValPair ParamName="accessClientPasswd" Value="0c4fba6fd2e00635ca9f9128dd7959ad0c87a45b214e48abff3e19f37bc57f27" /></SimpleList><SimpleList><NameValPair ParamName="preferredHost" Value="www.tinhvan.vnet_webcenter" /></SimpleList><SimpleList><NameValPair ParamName="state" Value="Enabled" /></SimpleList><SimpleList><NameValPair ParamName="maxCacheElems" Value="100000" /></SimpleList><SimpleList><NameValPair ParamName="cacheTimeout" Value="1800" /></SimpleList><SimpleList><NameValPair ParamName="tokenValidityPeriod" Value="3600" /></SimpleList><SimpleList><NameValPair ParamName="maxConnections" Value="1" /></SimpleList><SimpleList><NameValPair ParamName="maxSessionTime" Value="3600" /></SimpleList><SimpleList><NameValPair ParamName="failoverThreshold" Value="1" /></SimpleList><SimpleList><NameValPair ParamName="aaaTimeoutThreshold" Value="-1" /></SimpleList><SimpleList><NameValPair ParamName="sleepFor" Value="60" /></SimpleList><SimpleList><NameValPair ParamName="debug" Value="false" /></SimpleList><SimpleList><NameValPair ParamName="security" Value="open" /></SimpleList><SimpleList><NameValPair ParamName="denyOnNotProtected" Value="1" /></SimpleList><SimpleList><NameValPair ParamName="AllowManagementOperations" Value="false" /></SimpleList><SimpleList><NameValPair ParamName="cachePragmaHeader" Value="no-cache" /></SimpleList><SimpleList><NameValPair ParamName="cacheControlHeader" Value="no-cache" /></SimpleList><SimpleList><NameValPair ParamName="ipValidation" Value="0" /></SimpleList><SimpleList><NameValPair ParamName="logoutRedirectUrl" Value="http://app.tinhvan.vnet:14100/oam/server/logout" /></SimpleList><SimpleList><NameValPair ParamName="logoutCallbackUrl" Value="/oam_logout_success" /></SimpleList><ValList xmlns="http://www.oblix.com" ListName="logOutUrls"><ValListMember Value="/oamsso/logout.html" /></ValList><ValList xmlns="http://www.oblix.com" ListName="primary_server_list"><ValListMember Value="app.tinhvan.vnet:5575" /></ValList><ValNameList xmlns="http://www.oblix.com" ListName="app.tinhvan.vnet:5575"><NameValPair ParamName="host" Value="app.tinhvan.vnet" /><NameValPair ParamName="port" Value="5575" /><NameValPair ParamName="numOfConnections" Value="1" /></ValNameList><ValList xmlns="http://www.oblix.com" ListName="secondary_server_list"></ValList><ValList xmlns="http://www.oblix.com" ListName="proxySSLHeaderVar"><ValListMember Value="IS_SSL" /></ValList><ValList xmlns="http://www.oblix.com" ListName="URLInUTF8Format"><ValListMember Value="true" /></ValList><ValList xmlns="http://www.oblix.com" ListName="client_request_retry_attempts"><ValListMember Value="1" /></ValList><ValList xmlns="http://www.oblix.com" ListName="inactiveReconfigPeriod"><ValListMember Value="10" /></ValList></CompoundList>
Some information from OAMconsole app.tinhvan.vnet:7001/oamconsole

- host identifier (from Policy Configuration tab) 
	name: www.tinhvan.vnet_webcenter
	hostname: www.tinhvan.vnet_webcenter
	port: blank
- OAM Agent from System Configuration tab 
	Name: www.tinhvan.vnet_webcenter
	prefered host: www.tinhvan.vnet_webcenter
	log out url: /oamsso/logout.html
	logout redirect url: http://app.tinhvan.vnet:14100/oam/server/logout
	primary server: oam_server1, hostname: app.tinhvan.vnet, port: 5575, max number connections: 1
- configurations from webgate.conf 
LoadFile "/home/oracle/Oracle/Middleware/Oracle_OAMWebGate1/webgate/ohs/lib/libgcc_s.so.1"
LoadFile "/home/oracle/Oracle/Middleware/Oracle_OAMWebGate1/webgate/ohs/lib/libstdc++.so.5"

LoadModule obWebgateModule "/home/oracle/Oracle/Middleware/Oracle_OAMWebGate1/webgate/ohs/lib/webgate.so"

WebGateInstalldir "/home/oracle/Oracle/Middleware/Oracle_OAMWebGate1/webgate/ohs"
WebGateInstancedir "${ORACLE_INSTANCE}/config/${COMPONENT_TYPE}/${COMPONENT_NAME}"

WebGateMode PEER

<Location /ohs/modules/webgate.cgi> 
SetHandler obwebgateerr 
</Location>

<Location "/oberr.cgi">
SetHandler obwebgateerr
</Location>

<LocationMatch "/*">
AuthType Oblix
require valid-user
</LocationMatch>
- configuration from mod_wl_ohs.conf 
LoadModule weblogic_module   "${ORACLE_HOME}/ohs/modules/mod_wl_ohs.so"

# This empty block is needed to save mod_wl related configuration from EM to this file when changes are made at the Base Virtual Host Level
<IfModule weblogic_module>
#      WebLogicHost <WEBLOGIC_HOST>
#      WebLogicPort <WEBLOGIC_PORT>
#      Debug ON
#      WLLogFile /tmp/weblogic.log
#      MatchExpression *.jsp
</IfModule>

# <Location /weblogic>
#      SetHandler weblogic-handler
#      PathTrim /weblogic
#      ErrorPage  http:/WEBLOGIC_HOME:WEBLOGIC_PORT/
#  </Location>
Please review and give me some instructions, any reply are appreciated
Comments
Locked Post
New comments cannot be posted to this locked post.
Post Details
Locked on Sep 7 2012
Added on Aug 9 2012
#access, #identity-management, #identity-manager, #oam, #oim, #server, #sso
5 comments
1,424 views