BI Publisher ldap

Similar Questions

• RAS attributes

  Community salvation.

  I have a problem during the creation of account LISTINGS. I have two domains connected to Q1IM and for a domain creating users works very well. But for the second domain not. I checked the mapping of attributes, and it seems OK. I also checked the permissions on AD. I see no difference in the configuration. So, where/what else should I check?

  The provider connection mode is the default.

  Access to the attributes of the RAS has been set to true.

  Access to the properties of terminals has been set to true.

  Task of treatment [854003] ADSAccount insertion failed.

  [997030] cannot not publish LDAP://MYSERVER:389 of the object / CN = My Commonname, OR = Users, OR = MyOU, OR = myOU, DC = mySubDomain, DC = MyDomain, DC = MyDomain (Message: unable to save settings of object LDAP://MYSERVER:389 RAS / CN = My Commonname, OU = Users, OR = MyOU, OR = myOU, DC = mySubDomain, DC = MyDomain, DC is mydomain.).

  [997021] unable to save settings of object LDAP://MYSERVER:389 RAS / CN = My Commonname, OU = users, OU = MyOU, OU = myOU, DC = mySubDomain, DC = MyDomain, DC = mydomain.

  Properties [System.Exception] RAS written not (error reading properties RAS of the account using the server MYSERVER my.commonname

  to StdioProcessor.StdioProcessor._Execute (employment)

  VI. JobService.JobComponents.ADSComponent.Activate (job chain)

  -Inner beginning of Exception-

  VI. JobService.JobComponents.ADSComponent.Activate (job chain)

  VI. JobService.JobComponents.ADSComponent._ADSACCOUNT_INSERT)

  VI. JobService.NSProvider.ADSProvider.PutObject)

  -Inner beginning of Exception-

  VI. JobService.NSProvider.ADSProvider.PutObject)

  -Inner beginning of Exception-

  VI. JobService.NSProvider.ADSProvider.PutObject)

  VI. JobService.NSProvider.RAS.SET (string ServerName, String UserName)

  Thanks for help.

  Best regards

  Evgen

  Hi Evgen,

  for access to properties NOT RAS connection in the settings of the task information is used (LDAPLogin and LDAPLoginPassword), BUT the account that is used for the Jobservice Q1IM:

  

  If your Jobservice is responsible for a domain, you must change this user.

  But it is not possible if ONE Jobservice is responsible for more than one area.

  In this case, you could find a way to allow the user of the 1st field in the 2nd field too.

  Or install a 2nd Jobservice.

  It is also possible on the same machine.

  I hope it helps.

  Kind regards

  Steffen

• LDAP in logical console web vs bi publisher admin screen

  Hello
  What is the advantage to establish the LDAP protocol in the weblogic admin
  Console from the bi publisher admin screen? Can move LDAP users in groups that I defined in the logical web administration console or the bi publisher admin screen?
  I don't know the built-in ldap but the ldap server that is part of the infrastructure, regardless of the oracle.
  Thanks for all the answers and a beautiful Easter break.
  
  Published by: metalray on 28.03.2013 09:03

  metalray wrote:
  Well well, happy that you have soemthing. Now, I'm trying to be more "correctly" to you :)

  Although you are looking for.

  LDAP users do not appear in my logical Web console. Is a feature available to LDAP users to the Oracle user groups in the logic of the web, or I expect too much?

  LDAP is that in your case, do you mean ActiveDirectory. ? or any other LDAP directory. ?

  You must configure that weblogic as one of authentication providers if you haven't done it yet, otherwise they can not magically appear in console WLS.

  So I guess you expect too much if you don't have configured air and trying to LDAP users. Let us know if you have already configured one, but difficult to manage these users.

  If the feature (LDAP users assignment groups) exists in the oracle web logic console

  Even if you configure LDAP users in WLS, impossible to assign LDAP users to LDAP WLS groups since you have to make in your LDAP not in WLS.

  Why this feature also in Oracle BI Publisher Admin screen?

  Oracle BI Publisher security is managed by Fusion middleware security model not Weblogic, to reach users LDAP BEEP you must integrate security OBIEE BI Publisher.

  I hope this helps. ! Select this option if she does.

  Thank you
  SVS

• Authentication LDAP BI publisher

  Hello
  
  I try to activate the AD for BI publisher authentication. I tried most of the possible LDAP configuration settings. But when I try to connect, it throws the following error.
  
  The server cannot be used because of a configuration error, please contact the administrator. If you are the administrator, please see the BI Publisher user guide for the correct configuration.
  Detail of the error
  
  Previous
  
  oracle.apps.xdo.security.ValidateException
  
  Should I create the roles of BI Publisher in the LDAP server for authentication LDAP for BI publisher.
  
  Kindly let me know if anyone have solution for the same.
  
  Thank you and best regards,
  Rajesh J
  
  Edited by: sj_rajesh may 18, 2010 16:49

  Here is an example of an LDAP with ADSI integration:
  http://gerardnico.com/wiki/dat/BIP/ldap_adsi

  And Yes, you must create the group in the LDAP directory. They are imported when the Beeping starts.

  See you soon
  Nico

• BI Server uses LDAP and BI Publisher uses BI server auth - can this work?

  Hello
  
  I've set up OBI EE BI Server to use our MS Active Directory LDAP repository for authentication purpose. It works perfectly.
  
  On the other hand BI Publisher is configured to use the BI server authentication. I can see that groups XMLP * here, but obviously there are has no users defined in the BI server to add their!
  
  The reason why I want to use this configuration is that it's another Department who is responsible for the maintenance of the AD and it would make things easier if we could maintain access BI Publisher ourselves, through the BI tool admin server.
  
  Something tells me that's not possible, but I was wondering if there is any workaround or tip for this problem?
  
  Thank you
  Luis

  With ADSI, you cannot import users and groups. You then create an initialization of variable session with an external table:

  See an example here:
  http://obieeblog.WordPress.com/2009/06/18/OBIEE-security-enforcement-%E2%80%93-external-database-table-authorization/

  See you soon
  Nico

• application of CRL through ldap on c2611

  I work with certificates on a 2611 router. Everything works very well in combination with a CA, except the polling stations for the revocation list.

  My CA publishes CRL to something like:

  LDAP:///CN=CA-server,CN=ServerName,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=subdomain,DC=domain,DC=int? CertificateRevocationList? base? objectClass = CRLDistributionPoint

  In het 2611 router config, I have the map "crypto ca trustpoint CA-SERVER", where I put

  CRL query ldap://IP ADRES OF CA-SERVER/CN=CA-SERVER,CN=servername,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=subdomain,DC=domain,DC=int?certificateRevocationList?base?objectClass=cRLDistributionPoint

  But enough wrong, it does not work. The router is not fetch a revocation list. I think that he's not even trying to connect (I do not see the ldap on the firewall traffic).

  Does anyone know a solution for this problem? Is it maybe possible to retrieve the CRL on HTTP?

  Thank you

  Angelo.

  Don't know what version of the code that you use, so I'll give you a little history of IOS.

  Before IOS 12.1 (5) CEP has been used with Microsoft case to retrieve the CRL. However the SCEP Protocol is not a very effective method for the extraction of CRLs, we added

  support to retrieve CRLs via ldap and http. IOS determines the actual certificate how extract CRL using the CDP. In the certificates

  you show, the CDP is indicated via LDAP, then the router will try to get by using this method (assuming that the code is later than the 12.1 (5).)

  However, the problem you are experiencing is due to the 'strange' the ldap URL format in certificates. Microsoft Enterprise certification authorities press file specifications in the ldap URL using multiple CommonNames (CN = a) and the? XXX construct. IOS dislikes the specifications of file name in the URL at this time.

  IOS works very well with a PPC that specify an http URL, or define an LDAP URL but not with all the CN stuff. The 'url of the request' in the config is ignored if the certificate contains a PPC with http:// or ldap: / / URL (without all the CN), however if it contains a LDAP URL in the format that you show, and then the "url of the request" command is used. IOS still does not all the ADS, etc., specifying if a "request url" command with all that won't work, as you've seen.

  You can change your MS CA server to put a URL HTTP or LDAP directly in the certificate, or make it available on an HTTP server somewhere your LRC and then add a "the request url" pointing directly at it. Because the router do not understand LDAP CRL in the cert, it will use the location "applications url" you specify and it should work for you.

• -Error 500 internal server when you use BI Publisher in OBIEE 11 g

  Hello!

  When you access a report created in Plubliser BI using LDAP users, you get the error message:

  Error 500 - Internal server error

  They know tell me if I need to configure anything on the Administration > Manager of BI Publisher?

  Thank you!

  Carina Mendes.

  Hi Felipe,.

  We have solved the problem,

  We had DefaultAuthenticator users and LDAP equal, it's contradictory authentication on BI Publisher.

  We have solved the duplicity of eliminndo of the problem and make a guide of refreshment.

  Thanks for the support!

  Carina Mendes.

• Unable to display all content BI Publisher

  Hello, I'm new to BI Publisher and has been responsible for the installation. I did install Enterprise with 2 servers as follows:

  1. install the database Oracle and RCU to create 2 diagrams BI Publisher (Oracle Linux 6.6, Oracle 11.2.0.4 database). Listener is implemented, database is in place, installation was successful.

  2 BI Publisher 11.1.1.7.0 on Oracle Linux 6.6 installed. We were told by Oracle which support this facility (5 separate files downloaded from delivery) already include Weblogic and JDK. If I do not have those before installing BI Publisher. Basically, it was 'clean' server with nothing on it. This facility went well, past all the prereqs. Checked to make sure that the ports are open between the application server and the database server. I can TCPTRACEROUTE since the application server on the server of db on port 1521. Large. At the end of this installation, I received a message ' browser by default not found. Please specify the default browser ". " I have nothing in the documentation to this topic and finally google that this can be ignored. The other thing is that during the installation of the BI Publisher application, on a first screen where it asks to select the location of the inventory, I have not selected 'continue the installation with the local inventory ', but instead asked our admin to run CreateCentralInventory.sh

  So the installation was successful, as far as I can tell. But I get "Page not found" for everything - xmlpserver, weblogic console, etc. So basically nothing works (I'm trying to access it via my browser on my local machine, NOT the application server). I'm on VPN if it makes a difference and be able to access the server app and db without any problem)

  I checked the following and ran into some issues (probably due to the lack of experience of Weblogic on my part). I've stopped and started WLS via the startWeblogic.sh script. I then stopped/started server managed through startManagedWeblogic.sh both started very well that I get (managed server):

  < 23 July 2015 11:17:33 CEST > < opinion > < WebLogicServer > < BEA-000330 > < started WebLogic Server managed by "bi_server1" for the domain "bifoundation_domain" running in Production Mode >

  < 23 July 2015 11:17:34 CEST > < opinion > < WebLogicServer > < BEA-000365 > < Server State has changed in the RACE >

  < 23 July 2015 11:17:34 CEST > < opinion > < WebLogicServer > < BEA-000360 > < server started operation >

  
  

  And then to WLS:

  < 23 July 2015 10:54:57 CEST > < opinion > < Server > < BEA-002613 > < Channel "Default" is now listening on xxxxxxx.206:7001 for iiop, t3, ldap, snmp, http protocols. >

  < 23 July 2015 10:54:57 CEST > < opinion > < WebLogicServer > < BEA-000329 > < started WebLogic Admin Server "AdminServer' field 'bifoundation_domain' running in Production Mode >

  < 23 July 2015 10:54:57 CEST > < opinion > < WebLogicServer > < BEA-000365 > < Server State has changed in the RACE >

  < 23 July 2015 10:54:57 CEST > < opinion > < WebLogicServer > < BEA-000360 > < server started operation >

  
  

  However, I always get Page not found. Also, if I CTRL-C of these separate windows Linux, both WLS and Managed Server would stop! Sorry for the long post, I don't know where to go from here. Don't know how a) operate and b) how can I keep WLS and Managed Server up?

  
  

  Thank you!!!

  
  

  P.S. The only other thing that jumped at me was (then) - Localhost corresponds to multiple IP addresses:

  
  

  <23 July 2015 10:54:57 CEST > < WARNING > < Server > < BEA-002611 > < host name "localhost", corresponds to multiple IP addresses: 127.0.0.1, 0:0:0:0:0:0:0:1 >

  < 23 July 2015 10:54:57 CEST > < opinion > < Server > < BEA-002613 > < channel 'by default [5]' now listen on fe80:0:0:0:250:56ff:fe8e:596 b: 7001 for iiop, t3, ldap, snmp, http protocols. >

  < 23 July 2015 10:54:57 CEST > < opinion > < Server > < BEA-002613 > < Channel "Default [4]" now listen on fe80:0:0:0:250:56ff:fe8e:9bb9:7001 for iiop, t3, ldap, snmp, http protocols. >

  < 23 July 2015 10:54:57 CEST > < opinion > < Server > < BEA-002613 > < Channel "Default [7]" now listen on 0:0:0:0:0:0:0:1:7001 for iiop, t3, ldap, snmp, http protocols. >

  < 23 July 2015 10:54:57 CEST > < opinion > < Server > < BEA-002613 > < Channel "Default [3]" now listen on fe80:0:0:0:250:56ff:fe8e:cf04:7001 for iiop, t3, ldap, snmp, http protocols. >

  < 23 July 2015 10:54:57 CEST > < opinion > < Server > < BEA-002613 > < Channel "Default [6]" now listen on 127.0.0.1:7001 for iiop, t3, ldap, snmp, http protocols. >

  < 23 July 2015 10:54:57 CEST > < opinion > < Server > < BEA-002613 > < Channel "[1] by default ' is now listening on 128.164.252.86:7001 for iiop, t3, ldap, snmp, http protocols. >

  < 23 July 2015 10:54:57 CEST > < opinion > < Server > < BEA-002613 > < Channel "Default [2]" is now listening on 10.240.4.27:7001 for iiop, t3, ldap, snmp, http protocols. >

  < 23 July 2015 10:54:57 CEST > < opinion > < Server > < BEA-002613 > < Channel "Default" is now listening on 128.164.11.206:7001 for iiop, t3, ldap, snmp, http protocols. >

  < 23 July 2015 10:54:57 CEST > < opinion > < WebLogicServer > < BEA-000329 > < started WebLogic Admin Server "AdminServer' field 'bifoundation_domain' running in Production Mode >

  HM

  any ideas about this behavior

  Maybe something or someone to do something

  I tried two addresses: http:/localhost:7001 and http://localhost:7001 / xmlserver.

  It is not correct

  Try

  http://localhost:7001 / xmlpserver

  try to repair your system and check

  http://XXXXevapp1.es.gwu.edu:7001 /xmlpserver

  http://: 7001 /xmlpserver

  http://localhost:7001 /xmlpserver

• LDAP users in the repository Identity Manager (Administration tool)

  I was connect LDAP server then I need to change the level of logging in the user
  but I can't see the domain users on the identity of the directors of Bi tool Manager
  
  Identity Manager of the Administration of BI tool - error was:
  
  [nQSError:43113] The message returned by OBIS.
  SecurityService::assertUserWithLanguage [OBI-SEC-00018]
  Identity found "domain_user_name_here", but could not assert
  
  Published by: user11957406 on June 5, 2013 13:48

  Try this, whatever your question
  Tools-> utilities-> options-> repository and set the logging level.

  Thank you
  http://cool-bi.com

• application role custom (added ldap group) still no connection possible

  Hello
  I created a BIConsumer_USA (using Oracle Enterprise Manager) role for consumers to report BI from the United States, who should have access only
  dashboards US (consisting of BI publisher reports). I added this new application role BIConsumer_USA
  the application role existing BIConsumer (so the permissions are defined) as well as the usersUSA of the LDAP group.
  However, even after doing all this. I can not connect with users who belong to this group and who have the role of BI_Consumer_USA.
  Why is this?

  Given that the LDAP protocol is an IBM Tivoli we should able to use OpenLDAP instead of OVD LDAP provider in the logic of the Web.

• LDAP create event failed: could not find orclpwdexpirationdate

  Hello
  
  When I try to create a user, I get the following error.
  
  
  IAM-2050243: process of Orchestration with id 333, failed with error 3010201-IAM: LDAP create event failed: could not find orclpwdexpirationdate in the list of mandatory or optional attributes...
  
  Query:
  1. I could create users connect to the OID even earlier. Y at - it no change of OID creating this issue?
  2. I could not find this OID attribute. What is a default setting available in OID?
  3. I could not find this attribute in IOM as well (fields of customer to manage users). I'm looking for this parameter in the IOM?
  
  Any help to solve this error?
  
  The complete stack trace is given below:
  
  [2013 01-28 T 20: 41:41.623 + 05:30] [oim_server1] [NOTIFICATION] [] [oracle.iam.conf.impl] [tid: [ASSETS].] [ExecuteThread: '4' for queue: "(self-adjusting) weblogic.kernel.Default"] [username: xelsysadm] [ecid: 583c10bfdbd326ba:-27ccd12:13c817229bb :-8000-0000000000000521,0] [APP: IOM #11.1.2.0.0] the system with keyword OIM property. There is no such thing as DiagnosticEnabled.
  [2013 01-28 T 20: 41:41.630 + 05:30] [oim_server1] [NOTIFICATION] [] [oracle.iam.platform.kernel.impl] [tid: [ASSETS].] [ExecuteThread: '4' for queue: "(self-adjusting) weblogic.kernel.Default"] [username: xelsysadm] [ecid: 583c10bfdbd326ba:-27ccd12:13c817229bb :-8000-0000000000000521,0] [APP: IOM #11.1.2.0.0] process Orchestration moved to doesn't have a stadium, and the error corresponding East - {0} []
  oracle.iam.platform.kernel.EventFailedException: IAM - 3010201:LDAP create an event failed: could not find orclpwdexpirationdate in the list of mandatory or optional attribute. : could not find orclpwdexpirationdate in the list of mandatory and optional attributes.
  at oracle.iam.ldapsync.impl.util.LDAPSyncUtil.createEventFailedException(LDAPSyncUtil.java:959)
  at oracle.iam.ldapsync.impl.util.LDAPSyncUtil.createEventFailedException(LDAPSyncUtil.java:975)
  at oracle.iam.ldapsync.impl.eventhandlers.user.UserCreateLDAPHandler.execute(UserCreateLDAPHandler.java:98)
  at oracle.iam.platform.kernel.impl.OrchProcessData.runPreProcessEvents(OrchProcessData.java:970)
  at oracle.iam.platform.kernel.impl.OrchProcessData.runEvents(OrchProcessData.java:706)
  at oracle.iam.platform.kernel.impl.OrchProcessData.executeEvents(OrchProcessData.java:268)
  at oracle.iam.platform.kernel.impl.OrchestrationEngineImpl.resumeProcess(OrchestrationEngineImpl.java:801)
  at oracle.iam.platform.kernel.impl.OrchestrationEngineImpl.process(OrchestrationEngineImpl.java:550)
  at oracle.iam.platform.kernel.impl.OrchestrationEngineImpl.orchestrate(OrchestrationEngineImpl.java:485)
  at oracle.iam.platform.kernel.impl.OrchestrationEngineImpl.orchestrate(OrchestrationEngineImpl.java:439)
  at sun.reflect.NativeMethodAccessorImpl.invoke0 (Native Method)
  at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:307)
  at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182)
  at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149)
  at oracle.iam.platform.utils.DMSMethodInterceptor.invoke(DMSMethodInterceptor.java:25)
  at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
  at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
  to $Proxy252.orchestrate (Unknown Source)
  at oracle.iam.request.impl.RequestEngine.startOrchestrationFromPreProcess(RequestEngine.java:5350)
  at oracle.iam.request.impl.RequestEngine.triggerOperation(RequestEngine.java:5297)
  at oracle.iam.request.impl.RequestEngine.doOperation(RequestEngine.java:5028)
  at oracle.iam.impl.OIMServiceImpl.doOperation(OIMServiceImpl.java:43)
  at sun.reflect.NativeMethodAccessorImpl.invoke0 (Native Method)
  at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:307)
  at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182)
  at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149)
  at oracle.iam.platform.utils.DMSMethodInterceptor.invoke(DMSMethodInterceptor.java:25)
  at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
  at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
  to $Proxy466.doOperation (Unknown Source)
  at oracle.iam.api.OIMServiceEJB.doOperationx (unknown Source)
  at sun.reflect.NativeMethodAccessorImpl.invoke0 (Native Method)
  at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at com.bea.core.repackaged.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:310)
  at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182)
  at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149)
  at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
  at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
  at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
  at com.oracle.pitchfork.spi.MethodInvocationVisitorImpl.visit(MethodInvocationVisitorImpl.java:34)
  at weblogic.ejb.container.injection.EnvironmentInterceptorCallbackImpl.callback(EnvironmentInterceptorCallbackImpl.java:54)
  at com.oracle.pitchfork.spi.EnvironmentInterceptor.invoke(EnvironmentInterceptor.java:42)
  at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
  at com.bea.core.repackaged.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:89)
  at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
  at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
  at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
  at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
  at com.bea.core.repackaged.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
  to $Proxy465.doOperationx (Unknown Source)
  at oracle.iam.api.OIMService_1soh89_OIMServiceRemoteImpl.__WL_invoke (unknown Source)
  at weblogic.ejb.container.internal.SessionRemoteMethodInvoker.invoke(SessionRemoteMethodInvoker.java:40)
  at oracle.iam.api.OIMService_1soh89_OIMServiceRemoteImpl.doOperationx (unknown Source)
  at oracle.iam.api.OIMService_1soh89_OIMServiceRemoteImpl_WLSkel.invoke (unknown Source)
  at weblogic.rmi.internal.ServerRequest.sendReceive(ServerRequest.java:174)
  at weblogic.rmi.cluster.ClusterableRemoteRef.invoke(ClusterableRemoteRef.java:345)
  at weblogic.rmi.cluster.ClusterableRemoteRef.invoke(ClusterableRemoteRef.java:259)
  at oracle.iam.api.OIMService_1soh89_OIMServiceRemoteImpl_1036_WLStub.doOperationx (unknown Source)
  at sun.reflect.NativeMethodAccessorImpl.invoke0 (Native Method)
  at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at weblogic.ejb.container.internal.RemoteBusinessIntfProxy.invoke(RemoteBusinessIntfProxy.java:85)
  to $Proxy464.doOperationx (Unknown Source)
  at oracle.iam.api.OIMServiceDelegate.doOperation (unknown Source)
  at oracle.iam.ui.catalog.model.am.CatalogAMImpl.doOperation(CatalogAMImpl.java:1316)
  at oracle.iam.ui.catalog.model.am.CatalogAMImpl.submitCatalog(CatalogAMImpl.java:1697)
  at sun.reflect.NativeMethodAccessorImpl.invoke0 (Native Method)
  at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at oracle.adf.model.binding.DCInvokeMethod.invokeMethod(DCInvokeMethod.java:657)
  at oracle.adf.model.binding.DCDataControl.invokeMethod(DCDataControl.java:2143)
  at oracle.adf.model.bc4j.DCJboDataControl.invokeMethod(DCJboDataControl.java:3114)
  at oracle.adf.model.binding.DCInvokeMethod.callMethod(DCInvokeMethod.java:261)
  at oracle.jbo.uicli.binding.JUCtrlActionBinding.doIt(JUCtrlActionBinding.java:1635)
  at oracle.adf.model.binding.DCDataControl.invokeOperation(DCDataControl.java:2150)
  at oracle.jbo.uicli.binding.JUCtrlActionBinding.invoke(JUCtrlActionBinding.java:740)
  at oracle.adf.controller.v2.lifecycle.PageLifecycleImpl.executeEvent(PageLifecycleImpl.java:402)
  at oracle.adfinternal.view.faces.model.binding.FacesCtrlActionBinding._execute(FacesCtrlActionBinding.java:252)
  at oracle.adfinternal.view.faces.model.binding.FacesCtrlActionBinding.execute(FacesCtrlActionBinding.java:210)
  at oracle.iam.ui.platform.utils.FacesUtils.executeOperationBinding(FacesUtils.java:165)
  at oracle.iam.ui.platform.utils.FacesUtils.executeOperationBindingFromActionListener(FacesUtils.java:112)
  at oracle.iam.ui.catalog.view.backing.CartReqBean.submitActionListener(CartReqBean.java:833)
  at sun.reflect.NativeMethodAccessorImpl.invoke0 (Native Method)
  at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at com.sun.el.parser.AstValue.invoke(AstValue.java:187)
  at com.sun.el.MethodExpressionImpl.invoke(MethodExpressionImpl.java:297)
  at org.apache.myfaces.trinidadinternal.taglib.util.MethodExpressionMethodBinding.invoke(MethodExpressionMethodBinding.java:53)
  at org.apache.myfaces.trinidad.component.UIXComponentBase.broadcastToMethodBinding(UIXComponentBase.java:1256)
  at org.apache.myfaces.trinidad.component.UIXCommand.broadcast(UIXCommand.java:183)
  at oracle.adf.view.rich.component.fragment.UIXRegion.broadcast(UIXRegion.java:148)
  at oracle.adf.view.rich.component.fragment.UIXInclude.broadcast(UIXInclude.java:102)
  to oracle.adf.view.rich.component.fragment.ContextSwitchingComponent$ 1.run(ContextSwitchingComponent.java:92)
  at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent._processPhase(ContextSwitchingComponent.java:361)
  at oracle.adf.view.rich.component.fragment.ContextSwitchingComponent.broadcast(ContextSwitchingComponent.java:96)
  at oracle.adf.view.rich.component.fragment.UIXInclude.broadcast(UIXInclude.java:96)
  at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl.broadcastEvents(LifecycleImpl.java:1018)
  at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl._executePhase(LifecycleImpl.java:386)
  at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl.execute(LifecycleImpl.java:194)
  at javax.faces.webapp.FacesServlet.service(FacesServlet.java:265)
  to weblogic.servlet.internal.StubSecurityHelper$ ServletServiceAction.run (StubSecurityHelper.java:227)
  at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
  at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:301)
  at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
  at oracle.adf.model.servlet.ADFBindingFilter.doFilter(ADFBindingFilter.java:205)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
  at oracle.adf.view.page.editor.webapp.WebCenterComposerFilter.doFilter(WebCenterComposerFilter.java:117)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
  at oracle.adfinternal.view.faces.webapp.rich.RegistrationFilter.doFilter(RegistrationFilter.java:106)
  to org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$ FilterListChain.doFilter (TrinidadFilterImpl.java:446)
  at oracle.adfinternal.view.faces.activedata.AdsFilter.doFilter(AdsFilter.java:60)
  to org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$ FilterListChain.doFilter (TrinidadFilterImpl.java:446)
  at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl._doFilterImpl(TrinidadFilterImpl.java:271)
  at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl.doFilter(TrinidadFilterImpl.java:177)
  at org.apache.myfaces.trinidad.webapp.TrinidadFilter.doFilter(TrinidadFilter.java:92)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
  at oracle.help.web.rich.OHWFilter.doFilter (unknown Source)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
  at oracle.iam.ui.platform.servletfilter.IdentityContextFilter.doFilter(IdentityContextFilter.java:50)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
  at oracle.iam.platform.servletfilter.PwdMgmtNavigationFilter.doFilter(PwdMgmtNavigationFilter.java:164)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
  at oracle.bpel.services.workflow.client.worklist.util.WorkflowFilter.doFilter(WorkflowFilter.java:248)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
  at oracle.bpel.services.workflow.client.worklist.util.DisableUrlSessionFilter.doFilter(DisableUrlSessionFilter.java:70)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
  at oracle.adf.library.webapp.LibraryFilter.doFilter(LibraryFilter.java:179)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
  to oracle.security.jps.ee.http.JpsAbsFilter$ 1.run(JpsAbsFilter.java:119)
  at java.security.AccessController.doPrivileged (Native Method)
  at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:315)
  at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUtil.java:442)
  at oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.java:103)
  at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:171)
  at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:71)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
  at oracle.dms.servlet.DMSServletFilter.doFilter(DMSServletFilter.java:139)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
  at weblogic.servlet.internal.RequestEventsFilter.doFilter(RequestEventsFilter.java:27)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
  to weblogic.servlet.internal.WebAppServletContext$ ServletInvocationAction.wrapRun (WebAppServletContext.java:3730)
  to weblogic.servlet.internal.WebAppServletContext$ ServletInvocationAction.run (WebAppServletContext.java:3696)
  at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
  at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:120)
  at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2273)
  at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2179)
  at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1490)
  at weblogic.work.ExecuteThread.execute(ExecuteThread.java:256)
  at weblogic.work.ExecuteThread.run(ExecuteThread.java:221)
  
  ]]
  
  Published by: user10307811 on January 28, 2013 07:28

  Hello

  You must create the orclpwdexpirationdate attribute and add it to the OrclXIDPersonobjec class in OID

• OBIEE LDAP question

  Having a problem with the LDAP connection to the front-end. All configurations have been created within the console, and all groups and users are filling. In addition, the user that we used to set up the LDAP accts is able to connect to the front end. But we are unable to access one of the users on the front-end server. It's as if she's not out.
  
  Please notify
  
  Published by: sofiane on December 20, 2012 09:35

  Compare your config with the steps in this link
  http://paulcannon-bi.blogspot.com/2012/07/Configuring-LDAP-authentication-for.html

• Security issue with APEX LDAP authorization

  Hello
  We use LDAP authentication in our applications. Now, the ADMINISTRATOR stressed that all passwords are saved in the logs if monitor you the session apex_public_user with dbms_monitor.session_trace_enable (you define binds to true to get the parameters passed).
  
  Although it could be argued that a user how is allowed to run dbms_monitor should be a s/n trust, the requirement is to hide passwords in logs. To my knowledge, it is impossible to do, or am I have wrong here?
  
  If this is true, is the only option to use safely LDAP is for the browser authenticate directly, without going through any logic apex?
  
  Best regards
  
  Jürgen

  Hi Jürgen,

  How your custom permission of LDAP look like? You call the APEX_LDAP package? If you want to avoid the bind variable in this context to prevent their record in the trace file, you can use the V function instead. For example:

  if apex_ldap.is_member (
         p_username => :P101_USERNAME,
         p_pass     => V('P101_PASSWORD'),
         ... ) then
  

  Concerning
  Patrick
  -----------
  My Blog: http://www.inside-oracle-apex.com
  APEX Plug-Ins: http://apex.oracle.com/plugins
  Twitter: http://www.twitter.com/patrickwolf

  Published by: Patrick Wolf on November 19, 2012 14:26

• LDAP to Active Directory = 'invalid login credentials.

  Hello
  
  I am looking to set up Active Directory authentication in the APEX, so I'm changing the authentication to the LDAP directory service scheme
  
  I finished the host, no port, NO SSL, etc. on the settings tab
  
  Host: IP address of the ad server
  Port: 389
  Use SSL: No SSL
  Distinguished Name (DN) string: domain\%LDAP_USER%
  Just use the distinguished name (DN): Yes
  
  However, when you try to run the application and entering my details it keeps bring "invalid identifiers.
  
  What I missed
  
  I came across the following code on another thread, but where would this go in the PL/SQL code?
  
  DECLARE
  vSession DBMS_LDAP.session;
  vResult PLS_INTEGER;
  BEGIN
  DBMS_LDAP.use_exception: = TRUE;
  vSession: = DBMS_LDAP.init
  (host name = > 'CREDPWY01SDCG01')
  portnum = > 389
  );
  vResult: = DBMS_LDAP.simple_bind_s
  (ld = > vSession)
  ", dn = > ' CN = < user name >, dc = credit, dc = com"
  , passwd = > NULL
  );
  DBMS_Output.put_line ('authenticated user!');
  vResult: = DBMS_LDAP.unbind_s (vSession);
  END;
  
  I'm not able to authenticate at all when using apex_ldap without worrying if I pass NULL for the password, or use the real password.
  
  BEGIN
  IF APEX_LDAP.authenticate
  (p_username = > "<>username")
  , p_password = > NULL
  ", p_search_base = > ' dc = credit, dc = com"
  , p_host = > 'CREDPWY01SDCG01 '.
  p_port = > 389
  )
  THEN
  DBMS_Output.put_line ('ok');
  ON THE OTHER
  DBMS_Output.put_line ('not ok');
  END IF;
  END;
  
  Published by: Rambo79 on November 5, 2012 03:44

  It is one thing to AD configuration setting, which allows or prohibits the anonymous binds. It is not on the side of the apex. Try asking your AD administrator why this is so.
  As you need a password anyway in your apex application, make sure that the password field is required / add validation, like suggested Christian.

• How to impose the task dynamically to the user LDAP?

  I need to entrust the task to the user based on their number that ends with the xml request. I want to know, how we can configure the human task, i.e. the mission assigned to the user based on the employe_id of the LDAP?
  
  Published by: 949691 on August 29, 2012 14:49

  Looks like you pass the variable with the user id iinto human task of Interactive activity and one of the elements is the LDAP id.

  Open the human task, click on the assignment tab-> double-click the icon of the performer in the Center-> change the dropdown to "Build a list of participants to help" for "names and Expressions"-> click the 'more'-> click 'Add a user'-> change 'Data Type' drop-down list selection to "by the Expression"-> click on the button «...» "in virtue of the 'value'-> expand the 'task'-> expand" task: payload "-> select the variable that you set the user id.

  Dan