Configuration of SSL AD IOM

Hi all

I need to create users on announcement by password, I try to configure SSL between IOM & AD communication. I am following the guide of connector AD Base documentation. I did the installation of certificates, enabling ldaps services and I'm stuck on the last step adjustment upwards the target system certificate as a certificate approved

http://download.Oracle.com/docs/CD/E11223_01/ doc.910 /e11197/deploy.htm#BIHJFIID

I've exported the AD Certificate Authority .cer file and try to import the host to IOM using below command

keytool-import - alias ALIAS - file CER_FILE - keystore MY_CACERTS - storepass PASSWORD

In my case

C:/Oracle/middleware/jrockit_160_17_R28.0.0-679/JRE/bin/keytool-import - alias wl103-storepass - C: / oimcert.cer - keystore C:/Oracle/Middleware/jrockit_160_17_R28.0.0-679/jre/lib/security/cacerts XXXXXX * file

The problem is when the certificate is generated, I did not mention the password (not invited for the password during the process of Certification AD certificate generation) and but to import this certificate file to the host of the IOM that I need to provide the password (*-storepass XXXXXX *).

Please let me know how to overcome the problem

Kind regards
Madhu

Have you tried using passwords:

changeit

or

xellerate

Tags: Fusion Middleware

Similar Questions

  • Configuration of SSL using listener of the APEX on Apache Tomcat 7

    Can someone send me the steps to set up the Configuration of SSL on Apache Tomcat 7?

    I use APEX earpiece and deployed to Apache Tomcat.  I need to get the https protocol active. Thank you

    Please see this document. I think this will help you:

    https://Tomcat.Apache.org/Tomcat-7.0-doc/SSL-HOWTO.html

  • Configuration of SSL connection

    Hello

    I installed SSL certificates on the windows computer where our OPC server is configured. And I have also configured the web service adapter to use authentication on the default port.

    Is there anything else I need to configure other than the above inorder to have SSL connectivity? Also there are all the standard tests I can perform of CPO in order to validate this configuration.

    Thank you
    Greg

    You need to make sure that you have followed all the steps on page 12 of the guide to Web Services to the North. If you have you can test it by opening a browser and going to https:// Server teo >: / WS/process? WSDL

    You can test with portals information supply in, or you can run the web service is running (in CPO) against him to test more.

  • OBIEE 11 g 9 Configuration of SSL, BI presentation to start service to fail

    Hello

    I installed OBIEE 11 g 9 on Win 2012 R2 (on VM). It works fine no - SSL. I've now set up to use SSL, as described in the Oracle Doc. I can connect to the Console and EM using the https protocol. However, when I try to connect to Analytics I get Error 500 - Internal Server Error, for http and https. When I run the runSSLReport I see that ping SSL failed for presentation of BI Service.

    runSSLReport-

    OracleBIPresentationServicesComponent

    MyServer:9710. Ping SSL failed.  Unable to connect to: java.net.ConnectException: connection refused: connect

    OK SSL on 4 of the 5 elements.

    This is my first try to configure SSL on OBIEE. Please let me know if you need more info.

    Any help to solve the problem is greatly appreciated.

    Thank you

    MCS

    Had this resolved, there are two files under ...\Oracle_BI1\jdk\jre\lib\security - local_policy.jar and US_export_policy.jar. Here's jurisdiction policy files Extension JCE (Java Cryptography) unlimited strength. In case if they are older files, although OBIEE 11.1.1.9 is new, installed in the folder above policy files are older, mine was 2011. Check and replace the most recent files. These files must be of the same version as your version of the JDK. I copied my main Java/jdk1.7/Jre/lib/security file. New files are 09/2015. Restart all servers. In case if use JSSE SSL is not enabled please do. It worked for me.

    Thank you

    MCS

  • Cannot configure Flatfile reconciliation in IOM 9.1.0.1

    Hello
    I am facing this weird problem with IOM in my new project. I followed the steps below to set up reconciliation flatfile using as a source of confidence.
    1 transportation provider shared drive
    2. the format CSV - provider
    I filled out the location for the directory (Parent) of the commissioning stage and archiving. I'm using Cp1251 to the encoding of the file.

    The problem I'm facing is that as soon as I move to the step above for the mapping, I see not all fields in the Source and the staging of reconciliation
    step 3: change the Configuration of the connector. What could be the reason? The flat file is already in the location of the parent directory, before starting the setup of Flatfile GTC. There is no logs generated for this for obvious reasons. It would be awesome if someone can answer soon because I was facing this problem since yesterday morning.

    Remove the password...

    IOM generates its own password internally (i.e. User Login in the CAPITAL) in Trusted Recon...

    Also, please give us sample of a line so that we do not know what is the error...

    Hope it's something like that: -.

    Connector #GTC
    Login, firstname, lastname, Type of user, the Type of employee, organization
    A000001, John, Thompson, the end user, full-time, Xellerate users

    Typical error is role (i.e. ideal case should be of Type Employee-->--> full-time role ) and the Type of Xellerate (i.e. ideal case should be of Type user--> Xellerate Type--> for the end user )

    First creation 'Reconciliation rule' because connector GTC creates no 'rule of reconciliation. "

    User--> user login ID

    Reapply matching rule... the event stuck in "Received event ' status...".

    Send us the error

  • Configuration of SSL in Oracle Apps 11.5.10.2

    Hello

    I'm trying to configure SSL in oracle apps 11.5.10.2.
    I'm a bit confused with the note ID: 123718.1. Could you please explain on the underside of things?

    1 SSL can be implemented at three levels,
    (a) oracle/Apache Web server level
    (b) level of oracle server form
    (c) level of oracle database

    Can implement SSL on one or two levels of component? As per Note: 123718.1, we HAVE to configure SSL for the Oracle's HTTP server and Oracle Forms level and these cannot be configured independently.

    2. According to the Note ID: 123718.1, Option 2.1. Provision of certificate for Oracle HTTP Server
    Point b to point 2 says to run "$OPENSSL_TOP/bin/openssl sha1 or * > $HOME/.rnd.
    But who will be the OPENSSL_TOP?

    Please advise on these above two queries.

    Thanks in advance

    Kind regards
    Sravan

    Can implement SSL on any one or all levels of two components? According to the Note: 123718.1, we HAVE to configure SSL for the Oracle's HTTP server and Oracle Forms level and these cannot be configured independently.

    You need to do to both layer of Web/Forms.

    2. According to the Note ID: 123718.1, Option 2.1. Provision of certificate for Oracle HTTP Server
    Point b to point 2 says to run "$OPENSSL_TOP/bin/openssl sha1 or * > $HOME/.rnd.
    But who will be the OPENSSL_TOP?

    $IAS_ORACLE_HOME/Apache/open_ssl/bin/openssl

    Thank you
    Hussein

  • The e-mail application does not connect to the Dreamhost servers. Perhaps because of how they configure their SSL certificate for their subdomains.

    http://wiki.DreamHost.com/Certificate_Domain_Mismatch_Error

    Certificate SSL of Dreamhost for their mail servers only at one level of subdomain while many of their clusters of e-mail exist on a second level subdomain. In my view, this translates into an error message 'bad security' of the e-mail application.

    I contacted DreamHost and they say they are unable to solve this problem, or that they will allow me to install an SSL certificate on my virtual domain pointing to my cluster e-mail (even if I had to buy a).

    I understand, it is possible to manually add certificates via adb in a way similar to this: http://www.pending.io/add-cacert-root-certificate-to-firefox-os/

    However what I read this: 1. does not work on the ZTE Open 2. Can only fix only navigation not the web mail client.

    Is there any option that is available to me short of switching hosts?

    Fabian,

    Are you familiar with Firefox OS? The reason why I say this is because the e-mail client cannot create an excaption certificate. In fact, it's design. It's design: https://wiki.mozilla.org/Gaia/Email/Features#Security

    This request for support to Mozilla was placed specifically for the product Firefox OS, for which there is only a single mail client.

    That said many people in the Mozilla Bugzilla, have been able to show me how to find another alias for those servers that actually works and in fact corresponds to SSL certificates. Although Dreamhost support could not provide me with any such information, and such information is not actually in the DreamHost wiki.

    I have a repeated insistence of Dreamhost possibility I should just live with the exceptions of SSL certificate, when there is real existing valid server names to match the certificates in question, silly.

    The fact that you post this solution for one product, so that it is not yet applicable beyond useless. It serves to muddy waters.

  • Configuration of SSL in 11G B2B

    Hi all
    While we configure the keystore in weblogic console, we have two options (Custom Identity Keystore: and Custom Trust Keystore :)...) We need to give the same path for these two options? Please explian the difference of these two?

    and by creating an agreement
    1. 1st we will be selecting Remote TP
    2. Press button + to add an agreement and to the right, provide the definiton of document and the name of the chord and the ID
    3 and add identifiers and delivery

    What worries me is if we have two definitions of Document for the remote partner trade how to add another definition of document under the same name okay?

    Regards
    REDA

    Hi reda,.

    1. in oracle 10 g, we have an apache logs, if any distance TP hits our server, immediately we can his ip in the Apache logs.
    Do we not have this feature in 11 G B2B?

    Yes. Check the access.log file to get the client IP and other similar information. You find access.log in the directory $Domain_Home\servers\\logs

    2. in the case of supply the hostname in 11 G, there is no option called host name

    Are you talking about the channel configuration in oracle b2b? There is "Hostname" setting in configuration of channel for AS1, generic AQ, FTP, SFTP, and Email. AS2, Mae, RosettaNet, and generic HTTP it is another "URL" field in the configuration of the Transport Protocol in which you can enter the URL of HTTP endpoint or HTTPS to the trading partner.

    3 transport protocol (HTTPS) shows only not in the console of B2B. We have https in 11G, I have chosen AS2 but it shows only the http protocol.

    Use the URL field and enter the URL endpoint HTTP or HTTPS to the trading partner. There is no separate HTTPS protocol.

    4. what correlation of and correlation to protocols document (Document definition) and what is xpath name1, xpath and xpath2\ expression

    See the details of the Document definition to link settings - below

    http://download.Oracle.com/docs/CD/E14571_01/integration.1111/e10229/b2b_documents.htm#BABICIED

    Kind regards
    Anuj

  • Unable to shut down the servers in the case of the SSL configuration only

    A strange situation that i'v got stuck.

    After changing the configuration of SSL only, it was possible to start Admin and (soa, IOM) managed servers using scripts but no chance of them to stop.

    Any necessary changes in the scripts relevant when it is (t3s, https, ssl port specified for the Management Server).

    Note:

    I use a custom identity and trust keystore.

    The problem is in stopWeblogic.sh.

    Initially the server is stopped using the wls appellant

    ${JAVA_HOME} / bin/java - classpath ${FMWCONFIG_CLASSPATH} ${MEM_ARGS} ${JVM_D64} ${JAVA_OPTIONS} weblogic. WLST shutdown.py 2 > & 1

    But this call was an error:

    < 8 August 2014 10:39:03 FET > < opinion > < security > < BEA-090898 > < without taking account of the approved CA 'CN = GeoTrust Primary Certification Authority - G3, OR = (c) 2008 GeoTrust Inc. - only for authorized usage, O = GeoTrust Inc., C = US'. Loading certificate trust list triggered a certificate of analysis exception PKIX: OID not supported in the AlgorithmIdentifier object: 1.2.840.113549.1.1.11. >

    This Exception occurred at Fri Aug 08 10:39:03 FET 2014.

    javax.naming.CommunicationException [root exception is java.net.ConnectException: t3s: / / < host FQ name >: 7002: Destination unreachable; nested exception is:]

    javax.net.ssl.SSLKeyException: FATAL Alert: BAD_CERTIFICATE - damaged or unusable certificate has been received. ; No available at destination router]

    Problem call WLST - Traceback (innermost last):

    File "/ u01/app/oracle/Middleware/user_projects/domains/demo_iam/shutdown.py", line 3, in it?

    File '< iostream >", line 22, in connect

    File '< iostream >", line 648, in raiseWLSTException

    WLSTException: Error occurred when executing connect: error getting the initial context. There is no server running to t3s: / / < host FQ name >: 7002

    DumpStack() to view the full stacktrace

    Fact

    At the same time, I can handle servers with wlst.sh. So it seems that my certificate is not used in the case of stopWeblogic.sh

    This change

    #${JAVA_HOME} / bin/java - classpath ${FMWCONFIG_CLASSPATH} ${MEM_ARGS} ${JVM_D64} ${JAVA_OPTIONS} weblogic. WLST shutdown.py 2 > & 1

    $OIM_HOME/common/bin/wlst.sh shutdown.py 2 > & 1

    solved the problem.

    Just to mark in a solution.

  • Xcode Server installation failed (ssl configuration infrastructure)

    After the upgrade to Server 5.2 today, I am unable to start the service of Xcode as a result of a mistake.

    The first time, I tried to implement the service, after having chosen the Xcode application, I was asked to create a service user account Xcode. So, I followed the guests to create a Xcode Server user account.

    Then I saw a message that Xcode Helper should be allowed to make UI script, to which I agreed.

    Finally, a progress bar appears where, apparently, that was under the service of Xcode configuration.

    And then an error stating:

    Xcode Server installation failed (ssl configuration infrastructure)

    Try clicking on choose Xcode and selecting a new version of Xcode or upgrade to a newer version of the server.

    Given that I had just installed the latest version of Xcode previously, I advanced and checked that Xcode launches without problem, and no message appears.

    Then I went to System Preferences > Security & privacy > accessibility and verified that an entry is added for Xcode Helper, and I checked the box next to it to allow access.

    Also, I have advanced and connected to the server of Xcode user account and used the fast user switching option to return to my main account.

    Unfortunately, trying to start again service results in the same error. I even tried to start the service when you are logged on the server of Xcode user account. Whenever it has failed with the same message.

    Whenever I try to start the service, I see this (or very similar) message sequence struck the system log:

    20 September 15:50:36 servermgr_xcode Server [867]: getSetXcodePathProgressWithRequest: {}

    control = getSetXcodePathProgress;

    currentPercentageCompleteRangeMaximum = 10;

    currentPercentageCompleteRangeMinimum = 10;

    currentStep = 'Xcode stop server';

    percentComplete = 10;

    status = running;

    }

    20 September 15:50:37 Server servermgr_xcode [867]: task completed (State 0)

    20 September 15:50:37 Server servermgr_xcode [867]: stderr output for the job:

    (4 / 6) [START] stop nginx daemon

    (3 / 6) Server [START] stop API

    (1 / 6) [START] stop CouchDB

    (6 / 6) [START] stop builder

    (5 / 6) [START] daemon stop control

    (2 / 6) [START] stop repeat

    (5 / 6) [END - 0.05 S] Stop control daemon

    (1 / 6) [END - 0.05 S] Judgment of CouchDB

    (2 / 6) [END - 0.05 S] Stopping repeat

    (3 / 6) [END - 0.05 S] Stop server API

    (4 / 6) [END - 0.14 S] Stop the nginx daemon

    (6 / 6) [END - 0.16 S] Stop generator

    A successful!

    Total time: 0.32 seconds

    20 September 15:50:37 Server servermgr_xcode [867]: launch/usr/bin/xcrun xcscontrol - initialize - build-service-user xcodeserver

    20 September 15:50:37 Server servermgr_xcode [867]: wait for task to leave

    20 September 15:50:37 Server lsd [961]: LaunchServices: could not store file lsd-identifiers to /private/var/db/lsd/com.apple.lsdschemes.plist

    20 September 15:50:37 Server servermgr_xcode [867]: xcscontrol reported progress: (1/29) checking that Xcode is accessible

    20 September 15:50:37 Server sudo [1422]: root: TTY = unknown; PWD =; USER = nobody; /Applications/XCode.app/Contents/developer = / usr/bin/file COMMAND

    20 September 15:50:37 Server servermgr_xcode [867]: xcscontrol reported progress: (1/29) checking that Xcode is accessible

    20 September 15:50:37 Server servermgr_xcode [867]: xcscontrol reported progress: running (4/29) xcode-selector - /Applications/Xcode.app

    20 September 15:50:38 Server servermgr_xcode [867]: xcscontrol reported progress: integration of control to prepare (9/29)

    20 September 15:50:38 Server servermgr_xcode [867]: xcscontrol reported progress: (11/29) setting up the config for Redis file

    20 September 15:50:38 Server servermgr_xcode [867]: xcscontrol reported progress: (12/29) setting up the config for CouchDB file

    20 September 15:50:38 Server servermgr_xcode [867]: xcscontrol reported progress: launchd jobs (13/29) system configuration

    20 September 15:50:38 Server servermgr_xcode [867]: xcscontrol reported progress: (14/29) creative group for users of service if required

    Note : There was a lot of posts like this that I missed:

    20 September 15:50:38 syslogd server [69]: notice of Configuration:

    ASL Module 'com.apple.AccountPolicyHelper' claims the selected messages.

    These messages may not appear in the standard system log files or in the database of the ASL.

    20 September 15:50:38 Server servermgr_xcode [867]: xcscontrol reported progress: configuration record (16/29)

    20 September 15:50:38 Server servermgr_xcode [867]: xcscontrol reported progress: users of creative services (17/29) if necessary

    20 September 15:50:38 Server servermgr_xcode [867]: xcscontrol reported progress: infrastructure configuration of SSL (18/29)

    20 September 15:50:39 Server servermgr_xcode [867]: getSetXcodePathProgressWithRequest: {}

    control = getSetXcodePathProgress;

    currentPercentageCompleteRangeMaximum = 75;

    currentPercentageCompleteRangeMinimum = 20;

    currentStep = "Configuring SSL infrastructure."

    percentComplete = 54;

    status = running;

    }

    20 September 15:50:41 com.apple.SecurityServer [114 Server]: displaying guest Keychain for Applications/Xcode.app/Contents/Developer/usr/bin/xcscontrol(1421)

    20 September 15:50:41 Server servermgr_xcode [867]: xcscontrol reported progress: FAILED (18/29): configuration of SSL infrastructure

    20 September 15:50:41 Server servermgr_xcode [867]: task completed (Status 5)

    20 September 15:50:41 Server servermgr_xcode [867]: stderr output for the job:

    (1/29) [START] make sure Xcode is accessible

    (1/29) [END - 0.20 S] Make sure Xcode is accessible

    Audit (2/29) [START] version of Xcode is supported

    (2/29) [END - 0.00 S] Check if the version of Xcode is supported

    Developer mode (5/29) [START] if necessary activation

    [START] Running (4/29) xcode-selector - /Applications/Xcode.app

    (29/3) [START] check if the server version is supported

    (3/29) [END - 0.02 S] Check if the server version is supported

    Data directories (6/29) [START] creation by default (if they are missing)

    (6/29) [END - 0.00 S] Creation of data directories by default (if they are missing)

    (7/29) [START] create a symbolic link to the current path of the Xcode application

    Access to the repository (8/29) [START] HTTP configuration

    Integration of control (9/29) [STARTED] preparation

    Access [START] SSH configuration repository (10/29)

    (8/29) [END - 0.12 S] Access to the HTTP repository configuration

    (7/29) [END - 0.12 S] Create a symbolic link to the current path of the Xcode application

    (10/29) [END - 0.12 S] The access to the repository SSH configuration

    (11/29) [START] establishing the file config for Redis

    (12/29) [START] set up the config for CouchDB file

    (13/29) [START] Setup launchd job system

    (5/29) [END - 0.16 S] Enabling developer mode if necessary

    (9/29) [END - 0.23 S] Preparation of control integrations

    (11/29) [END - 0.16 S] Setting up the config for Redis file

    (12/29) [END - 0.20 S] Setting up the config for CouchDB file

    (13/29) [END - 0.20 S] Launchd jobs system configuration

    Group creation [START] (14/29) for users of service if required

    Saving configuration [START] (16/29)

    (15/29) [START] configuration CouchDB to use all cores

    (14/29) [END - 0.02 S] Creation of service if required users group

    Users of creative services [START] (17/29) if necessary

    (4/29) [END - 0.41 S] Running xcode - select - switch for /Applications/Xcode.app

    (15/29) [END - 0.08] Configuration of CouchDB to use all cores

    (16/29) [END - 0.33 S] Configuration of the recording

    (17/29) [END - 0.52 S] Creation of users of the service if necessary

    Configuration of SSL infrastructure [START] (18/29)

    (18/29) [END - 3.03 S] FAILED: SSL infrastructure Configuration

    Failed: could not export the certificate of the server API: error Domain = =-25308 Security Code 'user intervention is not permitted.' UserInfo = {NSLocalizedDescription = User interaction is not allowed.}

    Total time: 4.13 seconds

    The service initialization error: could not export the certificate of the server API: error Domain = =-25308 Security Code 'user intervention is not permitted.' UserInfo = {NSLocalizedDescription = User interaction is not allowed.}

    20 September 15:50:41 Server servermgr_xcode [867]: response: {}

    error = "Xcode Server Configuration has failed (ssl configuration infrastructure)";

    errorCode = "-1";

    errorDomain = ServermgrXcodeErrorDomain;

    errorLocalizedDescription = "Configuration of Xcode Server failed (ssl configuration infrastructure)";

    errorLocalizedFailureReason = "failed to install Service in step: Setup ssl infrastructure";

    errorLocalizedRecoverySuggestion = "try clicking on choose Xcode and selecting a new version of Xcode or upgrade to a newer version of the server.

    errorString = "Configuration of Xcode Server failed (ssl configuration infrastructure)";

    status = 1;

    }

    20 September 15:50:41 com.apple.xpc.launchd [Server 1] (com.apple.dt.XCSDeviceService [1417]): Service not out 5 seconds after SIGTERM. Sending SIGKILL.

    20 September 15:50:42 Server servermgr_xcode [867]: getSetXcodePathProgressWithRequest: {}

    control = getSetXcodePathProgress;

    currentPercentageCompleteRangeMaximum = 75;

    currentPercentageCompleteRangeMinimum = 20;

    currentStep = "FAILED: SSL infrastructure configuration ';

    error = "Xcode Server Configuration has failed (ssl configuration infrastructure)";

    errorCode = "-1";

    errorDomain = ServermgrXcodeErrorDomain;

    errorLocalizedDescription = "Configuration of Xcode Server failed (ssl configuration infrastructure)";

    errorLocalizedFailureReason = "failed to install Service in step: Setup ssl infrastructure";

    errorLocalizedRecoverySuggestion = "try clicking on choose Xcode and selecting a new version of Xcode or upgrade to a newer version of the server.

    errorString = "Configuration of Xcode Server failed (ssl configuration infrastructure)";

    percentComplete = 54;

    status = FAILURE;

    }

    This article is interesting:

    20 September 15:50:41 com.apple.SecurityServer [114 Server]: displaying guest Keychain for Applications/Xcode.app/Contents/Developer/usr/bin/xcscontrol(1421)

    No prompt was displayed at this time. I had to see a real Keychain prompt? In any case, this article seems to be the cause of the problem:

    Failed: could not export the certificate of the server API: error Domain = =-25308 Security Code 'user intervention is not permitted.' UserInfo = {NSLocalizedDescription = User interaction is not allowed.}

    Help to get the Xcode service backup and race would be much appreciated!

    I had this same problem. I typed in the following in the terminal:

    sudo /applications/xcode-beta6.app/contents/developer/usr/bin/xcscontrol--reinitialiser

    After the reset, I tried to enable the server to Xcode from the macOS GUI server and it worked

  • Configuration of the roles of IOM (11gr2ps2) in AD

    Hi all

    I have a scenario where I want to configure a role of IOM in AD. E.g. If, I create 'Test' role in IOM should directly in the ad. So any body knows how can we achieve this? Any help will be very useful.

    Creation of Planner will help here?

    Thank you

    Sonya

    (1) it should go directly after the creation of the IOM. It is not dependent on the user operations.

    (2) is a time of activity. you need not change every time. But the r cles uses only the attributes that are mapped to the directory

    Note:

    The LdapContainerRules.xml file may contain rules using only the attributes are mapped to the directory. A rule cannot be written using the attributes of objects or attributes that are not part of the entity. This is true for user and role entities. For example, role Email can use rules for roles, and the Organization of the user name cannot be used for the user entity.

    ~ J

  • HTTP Mode SSL connector configuration

    What are the configuration changes I need to do at the stage of HTTP connector to connect to the short server that is configured in SSL mode.

    I do error below when executing the ExportViewDefinition.grf as the HTTP connector

    Component [HTTP connector: HTTP_CONNECTOR0] finished with ERROR status.

    peer not authenticated

    When you export views of a short protected by SSL server, try using the WEB_SERVICE_CLIENT component instead of the HTTP_CONNECTOR component.  See my review of wiki https://wikis.oracle.com/display/endecainformationdiscovery/EID+3.1+Export+View+Configuration?focusedCommentId=62423284&#comment-62423284

  • OHS SSL CRL configuration

    Hello

    I have documents of murky conclusion which describes the process of "integer" necessary for configuring SSL CRL on a level OHS 11 g web install.  I have a dev site configured for SSL and check customer on and works well. When I configure ESS to use LCR, it is unusable at the start of the slow a user logs on for the first time.  Before I start looking for bottlenecks, I want to be sure I have properly configured the server.

    So far, I took the following steps to configure the Revocation list:

    (1) on the audit

    SSLCRLCheck on

    (2) set the path of the CRL file

    SSLCARevocationPath ' ${ORACLE_INSTANCE} / config/folder.

    (3) copied the .crl file required in the folder

    (4) orapki used to chop the .crl file

    (5) restarted the server

    I have restored a few Setup SSL OHS documents.  Here are the key steps?  I'd feel better if I had one complete source for the configuration of SSL CRL OHS 11 g web level only.

    Thank you

    -Scott

    Hi Scott,.

    He is the doc you can check for the Revocation configuration.

    How to configure CRL checking in Oracle HTTP Server in FMW 11 g (11.1.1.X) (Doc ID 1269633.1)

    You may or may not be able to check this doc due to the limitation. You can contact support for assistance.

    Thank you

    Sharmela

  • Missing IOM IOM installation diagram on configure JDBC component schema

    I try to install on Linux IMO. I installed Oracle 11 g DB, UCR 11.1.1.6 version, Version 10.3.5 WebLogic, Oracle SOA Suite General version 11.1.1.6. I installed OIM Version 11.1.1.6 with option to install and configure later. I was able to install successfully up to that point.

    When you configure installation of the IOM by running the command in /oracle/Oracle/Middleware/Oracle_IDM1/common/bin/config.sh and moved to step of the configuration of the JDBC schema component... the page displays only the infrastructure user's email Service, SOA, GOSA MDS schema, SOA MDS schema. The wizard does not display patterns of IOM and OIM MDS. I tried several times and it does not show the schemas associated with the IOM.

    Your help is greatly appreciated. I have tried for almost a week and failed.

    I don't know if IOM 11.1.1.6 version is available. pls make sure that you have downloaded installer "identity and access management" and not "Identity Management"

    Also IOM 11.1.1.5 make sure, you use the same version of the UCR, SOA, weblogic

    Check out this link.
    http://www.Oracle.com/technetwork/middleware/downloads/OID-11g-161194.html

    Published by: i.m.k on July 11, 2012 03:23

  • OIM 11 g Installation: server to configure IOM failed

    Hello
    I am facing problem in the configuration of the server of the IOM and the console Design.


    Configure the server to IOM
    Error
    Exception has occurred by encrypting the configuration and the database
    The step fails configure IOM Server



    Here is the description of the error in the log file.

    [2012 06-27 T 07: 46:07.015 - 07:00] [as] [TRACK: 16] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003, 0] [SRC_CLASS: EncryptDataBase] [SRC_METHOD: encryptDBContent] ENTRY
    [2012 06-27 T 07: 46:07.015 - 07:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003, 0] []
    [OIM_CONFIG] Crypto Provider, the SUNJCE()) value
    ]]
    [2012 06-27 T 07: 46:07.015 - 07:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003, 0] load the provider class
    [2012 06-27 T 07: 46:07.015 - 07:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003, 0] get the instance of the keystore
    [2012 06-27 T 07: 46:07.015 - 07:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003, 0] generate the key
    [2012 06-27 T 07: 46:07.046 - 07:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003, 0] hold the key to .xlDatabasekey file
    [2012 06-27 T 07: 46:07.046 - 07:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003, 0] create database connection
    [2012 06-27 T 07: 46:07.046 - 07:00] [as] [TRACK: 16] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003, 0] [SRC_CLASS: EncryptDataBase] [SRC_METHOD: setDBEncrypted] ENTRY
    [2012 06-27 T 07: 46:07.078 - 07:00] [as] [ERROR] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003, 0] ORA-00001: unique constraint (DEV_OIM.UK_MLS_LOCALE_MLS_LOCALE_CODE) not met []
    java.sql.SQLIntegrityConstraintViolationException: ORA-00001: unique constraint (DEV_OIM.UK_MLS_LOCALE_MLS_LOCALE_CODE) violated

    at oracle.jdbc.driver.SQLStateMapping.newSQLException(SQLStateMapping.java:89)
    at oracle.jdbc.driver.DatabaseError.newSQLException(DatabaseError.java:135)
    at oracle.jdbc.driver.DatabaseError.throwSqlException(DatabaseError.java:210)
    at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:473)
    at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:423)
    at oracle.jdbc.driver.T4C8Oall.receive(T4C8Oall.java:1094)
    at oracle.jdbc.driver.T4CPreparedStatement.doOall8(T4CPreparedStatement.java:205)
    at oracle.jdbc.driver.T4CPreparedStatement.executeForRows(T4CPreparedStatement.java:1040)
    at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:1352)
    at oracle.jdbc.driver.OraclePreparedStatement.executeInternal(OraclePreparedStatement.java:3566)
    at oracle.jdbc.driver.OraclePreparedStatement.executeUpdate(OraclePreparedStatement.java:3692)
    at oracle.jdbc.driver.OraclePreparedStatementWrapper.executeUpdate(OraclePreparedStatementWrapper.java:1508)
    at oracle.as.install.oim.config.util.EncryptDataBase.updateMLSLocale(EncryptDataBase.java:289)
    at oracle.as.install.oim.config.util.EncryptDataBase.encryptDBContent(EncryptDataBase.java:124)
    at oracle.as.install.oim.config.util.EncryptConfigurationAndDB.encryptConfigurationAndDatbase(EncryptConfigurationAndDB.java:208)
    at oracle.as.install.oim.config.OIMConfigManager.configureOIM(OIMConfigManager.java:966)
    at oracle.as.install.oim.config.OIMConfigManager.doExecute(OIMConfigManager.java:538)
    at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
    at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
    at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
    at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
    at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
    at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
    at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
    at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:83)
    at java.lang.Thread.run(Thread.java:662)

    ]]
    [2012 06-27 T 07: 46:07.078 - 07:00] [as] [ERROR] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003, 0] Exception has occurred in the updateMLSLocale method by updating the regional settings to the IOM DB []
    java.lang.Exception: Exception occurred in the updateMLSLocale method by updating the locale to IOM DB
    at oracle.as.install.oim.config.util.EncryptDataBase.updateMLSLocale(EncryptDataBase.java:297)
    at oracle.as.install.oim.config.util.EncryptDataBase.encryptDBContent(EncryptDataBase.java:124)
    at oracle.as.install.oim.config.util.EncryptConfigurationAndDB.encryptConfigurationAndDatbase(EncryptConfigurationAndDB.java:208)
    at oracle.as.install.oim.config.OIMConfigManager.configureOIM(OIMConfigManager.java:966)
    at oracle.as.install.oim.config.OIMConfigManager.doExecute(OIMConfigManager.java:538)
    at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
    at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
    at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
    at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
    at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
    at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
    at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
    at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:83)
    at java.lang.Thread.run(Thread.java:662)
    Caused by: java.sql.SQLIntegrityConstraintViolationException: ORA-00001: unique constraint (DEV_OIM.UK_MLS_LOCALE_MLS_LOCALE_CODE) violated

    at oracle.jdbc.driver.SQLStateMapping.newSQLException(SQLStateMapping.java:89)
    at oracle.jdbc.driver.DatabaseError.newSQLException(DatabaseError.java:135)
    at oracle.jdbc.driver.DatabaseError.throwSqlException(DatabaseError.java:210)
    at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:473)
    at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:423)
    at oracle.jdbc.driver.T4C8Oall.receive(T4C8Oall.java:1094)
    at oracle.jdbc.driver.T4CPreparedStatement.doOall8(T4CPreparedStatement.java:205)
    at oracle.jdbc.driver.T4CPreparedStatement.executeForRows(T4CPreparedStatement.java:1040)
    at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:1352)
    at oracle.jdbc.driver.OraclePreparedStatement.executeInternal(OraclePreparedStatement.java:3566)
    at oracle.jdbc.driver.OraclePreparedStatement.executeUpdate(OraclePreparedStatement.java:3692)
    at oracle.jdbc.driver.OraclePreparedStatementWrapper.executeUpdate(OraclePreparedStatementWrapper.java:1508)
    at oracle.as.install.oim.config.util.EncryptDataBase.updateMLSLocale(EncryptDataBase.java:289)
    ... 13 more

    ]]
    [2012 06-27 T 07: 46:07.078 - 07:00] [as] [ERROR] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003, 0] Exception occurred during encryption of the database []
    java.lang.Exception: Exception occurred during encryption of the database
    at oracle.as.install.oim.config.util.EncryptDataBase.encryptDBContent(EncryptDataBase.java:138)
    at oracle.as.install.oim.config.util.EncryptConfigurationAndDB.encryptConfigurationAndDatbase(EncryptConfigurationAndDB.java:208)
    at oracle.as.install.oim.config.OIMConfigManager.configureOIM(OIMConfigManager.java:966)
    at oracle.as.install.oim.config.OIMConfigManager.doExecute(OIMConfigManager.java:538)
    at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
    at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
    at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
    at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
    at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
    at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
    at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
    at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:83)
    at java.lang.Thread.run(Thread.java:662)
    Caused by: java.lang.Exception: Exception occurred in the updateMLSLocale method by updating the locale to IOM DB
    at oracle.as.install.oim.config.util.EncryptDataBase.updateMLSLocale(EncryptDataBase.java:297)
    at oracle.as.install.oim.config.util.EncryptDataBase.encryptDBContent(EncryptDataBase.java:124)
    ... 12 more
    Caused by: java.sql.SQLIntegrityConstraintViolationException: ORA-00001: unique constraint (DEV_OIM.UK_MLS_LOCALE_MLS_LOCALE_CODE) violated

    at oracle.jdbc.driver.SQLStateMapping.newSQLException(SQLStateMapping.java:89)
    at oracle.jdbc.driver.DatabaseError.newSQLException(DatabaseError.java:135)
    at oracle.jdbc.driver.DatabaseError.throwSqlException(DatabaseError.java:210)
    at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:473)
    at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:423)
    at oracle.jdbc.driver.T4C8Oall.receive(T4C8Oall.java:1094)
    at oracle.jdbc.driver.T4CPreparedStatement.doOall8(T4CPreparedStatement.java:205)
    at oracle.jdbc.driver.T4CPreparedStatement.executeForRows(T4CPreparedStatement.java:1040)
    at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:1352)
    at oracle.jdbc.driver.OraclePreparedStatement.executeInternal(OraclePreparedStatement.java:3566)
    at oracle.jdbc.driver.OraclePreparedStatement.executeUpdate(OraclePreparedStatement.java:3692)
    at oracle.jdbc.driver.OraclePreparedStatementWrapper.executeUpdate(OraclePreparedStatementWrapper.java:1508)
    at oracle.as.install.oim.config.util.EncryptDataBase.updateMLSLocale(EncryptDataBase.java:289)
    ... 13 more

    ]]
    [2012 06-27 T 07: 46:07.078 - 07:00] [as] [NOTIFICATION] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003, 0] []
    [OIM_CONFIG] Encryption of database failed.
    ]]
    [2012 06-27 T 07: 46:07.078 - 07:00] [as] [ERROR] [] [oracle.as.provisioning] [tid: 12] [ecid: 0000JWiPympFs1WFLz7U8A1Fuljj000003, 0] Exception []
    java.lang.Exception: Exception occurred by encrypting the configuration and the database
    at oracle.as.install.oim.config.util.EncryptConfigurationAndDB.encryptConfigurationAndDatbase(EncryptConfigurationAndDB.java:213)
    at oracle.as.install.oim.config.OIMConfigManager.configureOIM(OIMConfigManager.java:966)
    at oracle.as.install.oim.config.OIMConfigManager.doExecute(OIMConfigManager.java:538)
    at oracle.as.install.engine.modules.configuration.client.ConfigAction.execute(ConfigAction.java:335)
    at oracle.as.install.engine.modules.configuration.action.TaskPerformer.run(TaskPerformer.java:87)
    at oracle.as.install.engine.modules.configuration.action.TaskPerformer.startConfigAction(TaskPerformer.java:104)
    at oracle.as.install.engine.modules.configuration.action.ActionRequest.perform(ActionRequest.java:15)
    at oracle.as.install.engine.modules.configuration.action.RequestQueue.perform(RequestQueue.java:63)
    at oracle.as.install.engine.modules.configuration.standard.StandardConfigActionManager.start(StandardConfigActionManager.java:158)
    at oracle.as.install.engine.modules.configuration.boot.ConfigurationExtension.kickstart(ConfigurationExtension.java:81)
    at oracle.as.install.engine.modules.configuration.ConfigurationModule.run(ConfigurationModule.java:83)
    at java.lang.Thread.run(Thread.java:662)
    Caused by: java.lang.Exception: Exception occurred during encryption of the database
    at oracle.as.install.oim.config.util.EncryptDataBase.encryptDBContent(EncryptDataBase.java:138)
    at oracle.as.install.oim.config.util.EncryptConfigurationAndDB.encryptConfigurationAndDatbase(EncryptConfigurationAndDB.java:208)
    ... 11 more
    Caused by: java.lang.Exception: Exception occurred in the updateMLSLocale method by updating the locale to IOM DB
    at oracle.as.install.oim.config.util.EncryptDataBase.updateMLSLocale(EncryptDataBase.java:297)
    at oracle.as.install.oim.config.util.EncryptDataBase.encryptDBContent(EncryptDataBase.java:124)
    ... 12 more
    Caused by: java.sql.SQLIntegrityConstraintViolationException: ORA-00001: unique constraint (DEV_OIM.UK_MLS_LOCALE_MLS_LOCALE_CODE) violated

    at oracle.jdbc.driver.SQLStateMapping.newSQLException(SQLStateMapping.java:89)
    at oracle.jdbc.driver.DatabaseError.newSQLException(DatabaseError.java:135)
    at oracle.jdbc.driver.DatabaseError.throwSqlException(DatabaseError.java:210)
    at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:473)
    at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:423)
    at oracle.jdbc.driver.T4C8Oall.receive(T4C8Oall.java:1094)
    at oracle.jdbc.driver.T4CPreparedStatement.doOall8(T4CPreparedStatement.java:205)
    at oracle.jdbc.driver.T4CPreparedStatement.executeForRows(T4CPreparedStatement.java:1040)
    at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:1352)
    at oracle.jdbc.driver.OraclePreparedStatement.executeInternal(OraclePreparedStatement.java:3566)
    at oracle.jdbc.driver.OraclePreparedStatement.executeUpdate(OraclePreparedStatement.java:3692)
    at oracle.jdbc.driver.OraclePreparedStatementWrapper.executeUpdate(OraclePreparedStatementWrapper.java:1508)
    at oracle.as.install.oim.config.util.EncryptDataBase.updateMLSLocale(EncryptDataBase.java:289)
    ... 13 more

    ]]


    Thanks in advance for the help.

    Kind regards
    Prasad

    Yep, Prasad. But now the error has changed.

    ".... Lack of C:\Oracle\Middleware\user_projects\domains\oimdomain\config\fmwconfig\*.xldatabasekey *... »

    Please check your $DOMAIN_HOME variable and confirm if it is part of this and if this file above is there. For example: "C:\Oracle\Middleware\user_projects\domains\oimdomain" I would say that your $DOMAIN_HOME is wrong but please check everything first and let us know.

    If you confirm it's wrong, do it right the first step I told you once again and then properly set them $DOMAIN_HOME.

    Kind regards
    Leoncio Thiago.

Maybe you are looking for

  • Is it possible to get the original 1989 (using a CD 1993) SimCity on Vista?

    Hi all I used to play SimCity on MS-DOS, when I was little and I recently saw at the used Bookstore for sale, so I thought it wouldn't hurt to see if I could get it to work on Vista. However, I have to be able to run on a 12-bit version of Windows ca

  • on the ISA async map

    I am a technician who fixes office computers / laptops. When it comes to "viruses" I've seen what they can do. In some cases, the only option is to rebuild like Windows XP, Vista, Windows 7. The laptop I am train, has no modem yet, there under "netwo

  • dev alpha cannot continue

    I'm improving just devalpha latest version Once I have connected wifi, it displayed Networks Wi - Fi connected swipe left to continue but I try several times, nothing happens Welcome to any comment

  • Can replacement U2713HM U2713H - I request new U2713H

    Hi, I have U2713HM replacement U2713H now (U2713Hb REV A02) and I really like adobe RGB color space extra now :) I'm not happy with backlight bleeding (corners and particularly low in the center of the screen). I have a valid warranty (warranty infor

  • Audio latency in Itunes

    I have a new Sony Vaio laptop. I bought some movies on iTunes. During playback, sounds and video fall out of sync. All solutions? Mike