OAM authorization cache query

Similar Questions

• OAM authorization policy: scenario

  Hi all

  I need your advice to implement a solution as described below (high steps level that I can follow and implement):

  Current architecture:

  I have Siebel, IOM, OAM and OID. Users are provisioned to Siebel by IOM and connection OAM is responsible for the authentication/authorization for Siebel resources.

  Requirement:

  There are many users who are connected to using OAM and I need to make a change, a change for a specific group of users who are actually allowed to access the resource.

  Example:

  The Group has, can access resources abc

  Group B, cannot access resources abc.

  Ask you to help me with the approach without involving the IOM.

  Thank you

  Varun

  You have active LDAPSynch?

  If yes stores the user identity of the OAM is the same as the LDAP directory configured in the IOM LDAPSynch

  In the case of LDAPSynch, ROLE created in IOM translated by LDAP groups. I was referring to these LDAP groups to use in the OAM authorization policy. In a State of identity, you can also add LDAP groups. See screenshot 18-5 on top of link. 'Add users & groups' select option in "State of identity".

  Organization of the IOM is not related to LDAP groups.

  With regard to the UDF

  In the LDAP synchronization scenario if the user UDF is also get stored in the LDAP directory in the profile of the user, then you can use LDAP attribute in the user's profile to set the authorization policy in OAM. This can be done by specifying "Filter Add Search" in the same"identity".

  Concerning

  Aakash

• cache query string concatenation

  Hello

  I was wondering if I concatenate strings in the query I'm writing in a < cfquery > tag with dbtype = "query"?

  I want to do something similar to the following:

  < cfquery name = "a_query", dbtype = "query" >

  SELECT

  ("$" + TotalProfit) AS TotalProfit2

  OF SomeCachedQuery

  < / cfquery >

  I can do this if the query is executed on the SQL Server, but not with the cached query. If this is not possible, is there a code I can wirte that does the same thing?

  Thank you!

  Jason

  It actually works for you?  It is not for me,

  unless I TotalProfit case to be a varchar, first.

  As Adam says, you must first cast the value to a varchar. Either at the request of origin, or in the t/t:

  SELECT ' $ ' + CAST(TotalProfit AS VARCHAR) AS TotalProfit2

  OF SomeQuery

  However, you can simply use NumberFormat() in your output. Unless there is a reason you need to do this in a t/t...

  #NumberFormat(SomeQuery.TotalProfit, "$-9999999.00") #.

• Possible bug in implementing caching query ColdFusion 10

  I have stumbled upon a bug in caching of queries in ColdFusion 10.  I wanted to see if anyone else had seen this before as I've submitted a bug report.  It will be difficult to set up a full test case, so I hope that a description will be enough to confirm if this is reproducible.

  First, I create an array of structures.  Each structure is a set of key/value pairs of the arguments that will be passed to a query.  The first two keys contain numeric values, the third a string value.  I asked a Microsoft SQL Server database.  My query is inside a loop of table.  The query contains the CachedWithin attribute to 1 hour. In the query, I pass values in the structure in the clause WHERE using CFQueryParam.

  If two sets of numeric values are quite similar, but not identical, ColdFusion will jumble the values and hidden bad back the query result set.  For example, values in my table:

  [{BookNo = 97, NUMPAGE = 1, match = 'Card of the evaluator'}, {BookNo = 212, NUMPAGE = 50, match = 'Card of the evaluator'}, {BookNo = 250, NUMPAGE = 12, match = 'Card of the evaluator'}, {BookNo = 97, NUMPAGE = 1, match = 'Card of the evaluator'}]

  When I run the page for the first time with an empty query cache, this is what I get:

  1. Search results for BookNo 97, NUMPAGE 1. (non-cached)
  2. Search results for BookNo 212, NUMPAGE 50. (non-cached)
  3. Search results for BookNo 212, NUMPAGE 50. (cached)
  4. Search results for BookNo 97, NUMPAGE 1. (cached)

  What should I get:

  1. Search results for BookNo 97, NUMPAGE 1. (non-cached)
  2. Search results for BookNo 212, NUMPAGE 50. (non-cached)
  3. Search results for the BookNo 250, NUMPAGE 12. (non-cached)
  4. Search results for BookNo 97, NUMPAGE 1. (cached)

  See the problem with the third iteration, it's pulling the same results of the second iteration.  If I remove the CachedWithin, achieve the desired results.  If I create my own CacheID, I get the expected results.  It's only when I let ColdFusion handle the cache on its own I get incorrect results.

  Someone at - he seen anthing like that?  This look like a bug legitimate which must be filed?

  -Carl V.

  @BKBK,

  It's too complex for me to say. I have these questions, for example:

  (1) when the loop is processed, ColdFusion treats 4 queries consecutively?

  (2) a comparison of SQL statements is one of the controls that ColdFusion is running to decide whether to perform a given query or use cached data. Data using cfqueryparam binding has an effect on the SQL statement?

  (3) place a cfdump of the request as the last statement in the loop. A query dump tells you if a query is cached. You see what queries are cached?

  1. Yes.
  2. Oooh!  I've been using cfqueryparam.  I removed the cfqueryparams, and now he behaves as expected.  Seems that there is a bug when combining cfqueryparam and caching.
  3. Already had this and it was the results cached for the second query processing allegedly the third query (see the original post for the expected and actual results).

  -Carl V.

  Update: and it seems that it is a known bug, after all, with the layout of the query cache and cfqueryparam: https://bugbase.adobe.com/index.cfm?event=bug&id=3369530.  I'll add my vote, and perhaps others can also.

  Update 2: and looking more closely, it looks like it has been fixed in an everything-to-be-released version.  I hope that we will get it soon.  A suggested workaround solution was to place the values of cfqueryparam in a SQL comment, which seems to help CF recognize the single request instructions and cache correctly.

  Post edited by: Carl Von Stetten

• OAM authorization error

  Hi people,
  
  I get an error of permission of OAM (I'm new to it) when you try to use an allow rule based on the value of certain ldap attribute (attrib employeeType's value must be 'EMP'). Here's what I have:
  On the side of the access system: simple licensing in Authz Mgmt (oblix/lib/authz_attribute under the name shared lib, RA_SubjectDN as user Param, ruleExpression as the param name w worthless req)
  On the political side Bishop: area w authorization rule based on the diagram above (the other rule genuine works fine) with the following: Authz rule Plugin Params: RA_SubjectDN profile attributes passed to the plug-in, ruleExpression as name of required parameters, w value employeeType = "EMP". Authz rule action performs a redirection to a url certail if failure (does not work). Now for the default rules > permission Expression, all I have is my Authz rule.
  
  Now, if I disable the rule Authz leaving only the genuine one, everything works fine. When I try to access the resource protected by using Authz rule, I get an error for Oracle Access Manager operating in the browser, then the following error message in the server access log to the:
  WARNING AUTHZ_MGMT 0 x 00001165 /usr/abuild/Oblix/coreid1014/palantir/authz_common/src/authzexptree.cpp:99 "error while evaluating the rule" raw_code ^ RuleID 8 ^ 20091125T 15554836330 returned error is ^ assessment returned permission need more information as the return code
  
  I realize it's my rule Authz or schema causes the error, but I can't figure out who it is. I was wondering if someone could direct me to the right direction.
  
  Thank you
  Roman
  
  Published by: user10433316 on December 8, 2009 07:49

  Hi Roman,

  You may need to put the page failure too in the 'Inconclusive permission' actions in the Expression of approval. Regarding where to put the header variables it is in large part a matter of taste. However, there may be cases where you have the same rule applied to various resources, but sets a different variable header - in this case, you will need to put them in the Expression.

  Kind regards
  Colin

• How to force refresh user OAM changes without having to restart the server?

  Hi people,
  
  I have an OAM authorization rule based on the ldap user attribute (it is url for ldap query under 'Allow access', rule, that is ldap: / /... with a Cache update is enabled) with the hardcoded value, so that only users with these attributes can access protected resources. My problem is that if I add/remove the attribute via the User Manager console, it does not take effect until I have actually restart the access server. I can, however, locking/unlocking the account of the user through Manager users with immediate effect.
  
  Any help is appreciated.
  Thank you, novel

  Hi Roman,

  There is no problem to run OAM identity and access servers on the same machine, with some ports you choose. I suspect that the problem is that AccessGate the identity of the server is (incorrectly) set up to talk to port 6021 - If Yes, this will be reflected in the identity\AccessServerSDK\oblix\lib\ObAccessClient.xml file and can be corrected by running the configureAccessGate command. There are additional steps to get the automatic hunting at work (in addition to the definition of the parameter doAcessServerFlush) - did you follow the documentation for these?

  Kind regards
  Colin

• Managing roles using the solution of the OIM/OAM/OID

  Dear members

  I am faced with confusion while providing the solution about the OAM and OID.

  We have the portal WC system where authentication solution implemented using OAM 11 g. We expect authentication based on roles with the help of OID/IOM.

  I hear, by authentication based on roles, we're essentially the user roles will find in these roles. So they have will go through SSO system and their landing page will be the same. But the controls and links will be displayed according to their role.

  We do not use oracle role manager then manage it using OID.

  Is there a possible solution. Please help me its urgent.

  Thanks in advance.

  
  

  Concerning

  Arun Kumar Singh
  

  Hi Arun,

  In OAM, you can define authorization policies that allow or deny access to resources based on a value of attribute (of the logged in user). For example, you might allow access to the url/admin only to users who have a value of 'Administrator' in an attribute. Another approach is simply to set the attribute as a Variable for header (this is also defined in an OAM authorization policy) so that it is passed to the receiving application, which can then query the value of the attribute and take appropriate action.

  In these cases, OAM is only using the values of the attribute or send them to another application. To manage the values (put them properly for users/applications etc.) you would use a tool like the IOM to ensure that they are properly sized.

  Kind regards

  Colin

• NoAvailableServersException when you run the query in applications

  I only run the UI applications connected to a carrier co-located in my distributed system. When I run a query of the applications I have a NoAvailableServersException. The trace of the full stack of the applications log is below. I can run the same query successfully in gfsh on the same machine, the I'm running the applications. I' wvv looked through the applications documentation but can't find problems with my setup. Please let me know if you need more information.

  Tom

  [06/02/2013 INFO 17:39:19.135 IS main] Manual applications path is C:\vmware\vfabric-gemfire\vFabric_GemFire_70_b38623\tools\DataBrowser\docs\index.html
  [06/02/2013 INFO 17:39:19.512 IS main] Start interviewing for the results link to JMX Manager operation.
  [17:39:19.692 JMXCallExecutorThread IS SERIOUS 2013/02/06] An exception occurred while connecting to the mark on the host: idcprdgflocator2.carecorenational.com and port: 1099: com.gemstone.gemfire.management.ManagementException: Locator has failed. It is normal if the index was arrested. If it wasn't not check his diary for exceptions.
  [06/02/2013 INFO 17:39:19.692 IS JMXCallExecutorThread] Try to connect to a JMX Manager on the host: idcprdgflocator2.carecorenational.com and port: 1099
  [06/02/2013 INFO 17:39:19.793 IS JMXCallExecutorThread] Connected to the Gemfire distributed system
  [06/02/2013 INFO 17:39:21.666 IS JMXCallExecutorThread] Added members: ccnscupadsgf01 (10552) < v14 >: 4709
  [06/02/2013 INFO 17:39:21.679 IS JMXCallExecutorThread] Updated the refreshInterval to 60000
  [06/02/2013 INFO 17:39:23.594 IS JMXCallExecutorThread] GemFire (7.0) Cache is created. Support PDX is available.
  [06/02/2013 INFO 17:39:23.710 IS JMXCallExecutorThread] GemFire jar in the classpath version: 7.0
  [06/02/2013 INFO 17:39:23.710 IS JMXCallExecutorThread] Is the system of GemFire version: 7.0
  [06/02/2013 INFO 17:39:23.710 IS JMXCallExecutorThread] The LIMIT clause is supported by this version of the GemFire system: false
  [06/02/2013 INFO 17:39:23.711 IS JMXCallExecutorThread] The user is connected successfully to JMX Manager to idcprdgflocator2.carecorenational.com: 1099
  [06/02/2013 INFO 17:40:01.633 IS query run] Pool preparation for members:
  [06/02/2013 SERIOUS, 17:40:04.692 IS run query] Error occurred during execution of the query: com.gemstone.gemfire.mgmt.DataBrowser.controller.QueryConfigurationPrms@5608a6fc com.gemstone.gemfire.mgmt.DataBrowser.query.QueryExecutionException: com.gemstone.gemfire.cache.client.NoAvailableServersException
  at com.gemstone.gemfire.mgmt.DataBrowser.query.QueryUtil.executeQuery(QueryUtil.java:74)
  at com.gemstone.gemfire.mgmt.DataBrowser.connection.internal.GemFireClientConnectionImpl.executeQuery(GemFireClientConnectionImpl.java:122)
  to com.gemstone.gemfire.mgmt.DataBrowser.controller.internal.QueryExecutionHelper$ QueryExecutor.run (QueryExecutionHelper.java:169)
  at java.lang.Thread.run(Thread.java:662)
  Caused by: com.gemstone.gemfire.cache.client.NoAvailableServersException
  at com.gemstone.gemfire.cache.client.internal.pooling.ConnectionManagerImpl.borrowConnection(ConnectionManagerImpl.java:246)
  at com.gemstone.gemfire.cache.client.internal.OpExecutorImpl.execute(OpExecutorImpl.java:135)
  at com.gemstone.gemfire.cache.client.internal.OpExecutorImpl.execute(OpExecutorImpl.java:114)
  at com.gemstone.gemfire.cache.client.internal.PoolImpl.execute(PoolImpl.java:638)
  at com.gemstone.gemfire.cache.client.internal.QueryOp.execute(QueryOp.java:51)
  at com.gemstone.gemfire.cache.client.internal.ServerProxy.query(ServerProxy.java:81)
  at com.gemstone.gemfire.cache.query.internal.DefaultQuery.executeOnServer(DefaultQuery.java:282)
  at com.gemstone.gemfire.cache.query.internal.DefaultQuery.execute(DefaultQuery.java:213)
  at com.gemstone.gemfire.cache.query.internal.DefaultQuery.execute(DefaultQuery.java:195)
  at com.gemstone.gemfire.mgmt.DataBrowser.query.QueryUtil.executeQuery(QueryUtil.java:70)
  ..
  . 3 more
  [06/02/2013 SERIOUS, 17:40:04.694 IS query result processor] Error executing query: com.gemstone.gemfire.mgmt.DataBrowser.query.QueryExecutionException: com.gemstone.gemfire.cache.client.NoAvailableServersException
  at com.gemstone.gemfire.mgmt.DataBrowser.query.QueryUtil.executeQuery(QueryUtil.java:74)
  at com.gemstone.gemfire.mgmt.DataBrowser.connection.internal.GemFireClientConnectionImpl.executeQuery(GemFireClientConnectionImpl.java:122)
  to com.gemstone.gemfire.mgmt.DataBrowser.controller.internal.QueryExecutionHelper$ QueryExecutor.run (QueryExecutionHelper.java:169)
  at java.lang.Thread.run(Thread.java:662)
  Caused by: com.gemstone.gemfire.cache.client.NoAvailableServersException
  at com.gemstone.gemfire.cache.client.internal.pooling.ConnectionManagerImpl.borrowConnection(ConnectionManagerImpl.java:246)
  at com.gemstone.gemfire.cache.client.internal.OpExecutorImpl.execute(OpExecutorImpl.java:135)
  at com.gemstone.gemfire.cache.client.internal.OpExecutorImpl.execute(OpExecutorImpl.java:114)
  at com.gemstone.gemfire.cache.client.internal.PoolImpl.execute(PoolImpl.java:638)
  at com.gemstone.gemfire.cache.client.internal.QueryOp.execute(QueryOp.java:51)
  at com.gemstone.gemfire.cache.client.internal.ServerProxy.query(ServerProxy.java:81)
  at com.gemstone.gemfire.cache.query.internal.DefaultQuery.executeOnServer(DefaultQuery.java:282)
  at com.gemstone.gemfire.cache.query.internal.DefaultQuery.execute(DefaultQuery.java:213)
  at com.gemstone.gemfire.cache.query.internal.DefaultQuery.execute(DefaultQuery.java:195)
  at com.gemstone.gemfire.mgmt.DataBrowser.query.QueryUtil.executeQuery(QueryUtil.java:70)
  ... 3 more
  
  

  If you set the gemfire bind-address on the cache server, applications will be able to connect. If a bind-address is not defined in gemfire.properties for a server remote cache, applications unfortunately just silently by default is localhost. This is something that will have to solve. In the meantime, you can work around this by setting the property gemfire bind-address on the cache servers for either the IP address or host name.

• Question to redirect the OAM:

  I have an OAM redirect question here in a sense that when setting the original url, change the url for the https to http application.
  
  I have a request on https://abc.com on IIS and I am protecting the root. OAM page shows to the top of the Login Page and after that I entered the credentials, I conclude that the redirect has been wanton. Instead of the https://abc.com its preparing to http://abc.com (even on the Login Page OAM, as a query string is see http instead of https) and because the site without SSL isn't open, we get an error.
  
  Is there somehow I can force it to use https only or set this value somewhere OAM 11 G R2?
  
  
  
  Thank you

  We use 'ProxySSLHeaderVar IS_SSL' webgate configuration and make sure that you add the "IS_SSL" header in your load balancer configuration as well.

  Published by: Alan Shen Sep 19, 2012 17:19

• difference between Cache...

  What is the difference between
  1. the cache purge everything?
  2 purge the Cache table?
  3 purge cache query?
  4 purge the cache of database?
  
  can you tell me step by step?
  
  Thank you
  Rahman

  Here is some info:

  1 SAPurgeCacheByQuery. Deletes a cache entry that exactly matches a specified query. For example, by using the following query, you would have a query cache entry that retrieves the names of all employees who earn more than $100,000:
  Select lastname, firstname from employee where salary > 100000;

  The following call deletes the cache entry associated with this request:

  Call SAPurgeCacheByQuery (' select lastname, firstname from employee where salary > 100000');

  2 SAPurgeCacheByTable. Removes all cache entries associated with a (full) specified physical table name for the repository to which the client is connected.
  This function takes four parameters representing the four components (database, catalog, schema, and table correct name) of a full qualified physical table name. For example, you might have a table with the fully qualified name of DBName.CatName.SchName.TabName. To purge the cache entries associated with this table in the physical layer of the Oracle BI repository, run the following in a script call:

  Call SAPurgeCacheByTable ('Database_name', 'ProductGroupGUID', 'SchName', "TabName");

  NOTE: wildcards are not supported by the server of Oracle's BI for this function. In addition, DBName and TabName cannot be null. If either one is null, you will receive an error message.

  3 SAPurgeAllCache. Removes all entries in the cache. Here is an example of this call:
  Call SAPurgeAllCache();

  4 SAPurgeCacheByDatabase. Removes all cache entries associated with a specific physical database name. A record is returned after the call, any ODBC procedure to purge the cache. This function takes a parameter that represents the name of the physical database and the parameter cannot be null. The following example shows the syntax of this call:
  Call SAPurgeCacheByDatabase ('database_name');

  Hope it will be useful.

  -Madan

• Web authentication with RSA SecureID on a Cisco Switch

  Hello

  I recently searched by linking in our Cisco Switch of GB 2960 S with RSA SecureID via Radius

  I already managed to tie in to ssh access

  but I failed to make it work for http / web access to the switch

  I think it's because we use 'single use' maximum security with RSA SecureID tokens

  the web interface tries to authenticate several times against the Radius server RSA SecureID part

  (agreement on the first authentication, but every time after that he's going to want a different code in token)

  I was wondering if anyone knew a way around this? (if there is a way to get the right switch authenticate once instead of multiple times the radius server)

  FYI, the switch is a WS-C2960S-24TS-L with IOS 15.0 (1) SE2

  Hello Chris,

  You can test the following configuration?

  AAA webtac_grp radius server group

  Server

  expiration of cache 1

  authorization cache profile httpauth

  hiding authentication profile httpauth

  !

  AAA authentication login httpauth cache webtac_grp group webtac_grp

  AAA authorization exec httpauth cache webtac_grp group webtac_grp

  AAA authorization network httpauth cache webtac_grp group webtac_grp

  AAA cache profile httpauth

  all the

  IP http server

  IP http authentication aaa - authentication of the connection httpauth

  IP http authentication aaa exec-authorization httpauth

  RADIUS server host key *.

  I know for sure the above configuration works when you use GANYMEDE + instead of RADIUS in order to avoid multiple guests due to the authentication of JAVA Applets to access the GUI of the IOS. I him have not tested against RSA acting as an authentication server.

  NOTE: As "aaa authorization exec" is configured the RSA should send Service-Type attribute with administrative value for it to work as expected.

  If this was helpful please note.

  Kind regards.

• Failed to start OracleBIServerComponent

  Hello

  I'm having a problem with OracleBIServerComponent.

  all services are working, but I can't log into Analytics page error

  Here is the log file

  [2015-10 - 09T 10: 15:17.000 + 03:00] [OracleBIServerComponent] [WARNING: 1] [] [] [ecid:] [tid: c848] WARNING: Clustering and cache are enabled for this node of OBIS, but cluster aware cache is disabled.  This can lead to inconsistencies.

  [2015-10 - 09T 10: 15:24.000 + 03:00] [OracleBIServerComponent] [NOTIFICATION: 1] [] [] [ecid: 00iW3o6kxrDFw0zkFv07jz7DaSi1jBYwM0006Uo000000] [tid: c848] [36007] loading repository C:\MiddleWareHome\instances\instance1\bifoundation\OracleBIServerComponent\coreapplication_obis1\repository\SampleAppLite_BI0002.rpd.

  [2015-10 - 09T 10: 15:26.000 + 03:00] [OracleBIServerComponent] [NOTIFICATION: 1] [] [] [ecid: 00iW3o6kxrDFw0zkFv07jz7DaSi1jBYwM0006Uo000000] [tid: 8 b 90] [14055] loading area: SampleApp Lite...

  [2015-10 - 09T 10: 15:37.000 + 03:00] [OracleBIServerComponent] [NOTIFICATION: 1] [] [] [ecid: 00iW3o6kxrDFw0zkFv07jz7DaSi1jBYwM0006Uo000000] [tid: 8 b 90] [14056] done to the sector of activity: SampleApp Lite.

  [2015-10 - 09T 10: 15:45.000 + 03:00] [OracleBIServerComponent] [NOTIFICATION: 1] [] [] [ecid: 00iW3o6kxrDFw0zkFv07jz7DaSi1jBYwM0006Uo000000] [tid: c848] [58002] Query Cache loaded with 37 entries to recorded files from the cache.

  [2015-10 - 09T 10: 15:46.000 + 03:00] [OracleBIServerComponent] [NOTIFICATION: 1] [] [] [ecid: 00iW3o6kxrDFw0zkFv07jz7DaSi1jBYwM0006Uo000000] [tid: c848] [85003] MDX member name Cache subsystem has been started successfully.

  [2015-10 - 09T 10: 15:46.000 + 03:00] [OracleBIServerComponent] [NOTIFICATION: 1] [] [] [ecid: 00iW3o6kxrDFw0zkFv07jz7DaSi1jBYwM0006Uo000000] [tid: c848] [85004] member recovered MDX entered names Cache subsystem: 0, size: 0 bytes.

  [2015-10 - 09T 10: 17:47.000 + 03:00] [OracleBIServerComponent] [ERROR: 1] [] [] [ecid: 00iW3o6kxrDFw0zkFv07jz7DaSi1jBYwM0006Uo000000] [tid: 1db0] [nQSError: 12002] communication to the Socket call = Read error: (number = 10004) a blocking operation was interrupted by a call to WSACancelBlockingCall.

  [2015-10 - 09T 10: 17:48.000 + 03:00] [OracleBIServerComponent] [ERROR: 1] [] [] [ecid: 00iW3o6kxrDFw0zkFv07jz7DaSi1jBYwM0006Uo000000] [tid: c848] [nQSError: 12002] communication to the Socket call = Read error: (number = 10004) a blocking operation was interrupted by a call to WSACancelBlockingCall.

  [2015-10 - 09T 10: 17:51.000 + 03:00] [OracleBIServerComponent] [ERROR: 1] [] [] [ecid: 00iW3o6kxrDFw0zkFv07jz7DaSi1jBYwM0006Uo000000] [tid: c848] an error message was received by BI Security Service: [nQSError: 46169] year HTTP operation to 10.10.10.10:9704 been exceeded after 120 seconds. Abandoned operation.

  [2015-10 - 09T 10: 17:52.000 + 03:00] [OracleBIServerComponent] [ERROR: 1] [] [] [ecid: 00iW3o6kxrDFw0zkFv07jz7DaSi1jBYwM0006Uo000000] [tid: c848] [13026] error getting BI Security Service roles: "an error was received by BI Security Service: [nQSError: 46169] operation year HTTP to 10.10.10.10:9704 been exceeded after 120 seconds." Operation canceled. "

  [2015-10 - 09T 10: 17:53.000 + 03:00] [OracleBIServerComponent] [NOTIFICATION: 1] [] [] [ecid: 00iW3o6kxrDFw0zkFv07jz7DaSi1jBYwM0006Uo000000] [tid: c848] [46172] store security database is not available, do not re - associate with this type of provider.

  [2015-10 - 09T 10: 17:53.000 + 03:00] [OracleBIServerComponent] [NOTIFICATION: 1] [] [] [ecid: 00iW3o6kxrDFw0zkFv07jz7DaSi1jBYwM0006Uo000000] [tid: c848] nqsserver: started clustered Oracle BI Server (64-bit).  Version: 11.1.1.7.0.

  [2015-10 - 09T 10: 17:58.000 + 03:00] [OracleBIServerComponent] [NOTIFICATION: 1] [] [] [ecid: 00iW3o6kxrDFw0zkFv07jz7DaSi1jBYwM0006Uo000000] [tid: a034] [43071] a connection with the nb Cluster controller - sameh:9706 has been created.

  [2015-10 - 09T 10: 23:14.000 + 03:00] [OracleBIServerComponent] [NOTIFICATION: 1] [] [] [ecid: 00iW3o6kxrDFw0zkFv07jz7DaSi1jBYwM0006Uo000000] [tid: 111 c] a not to connect to the web service to authenticate (disconnect OBIS) 10.10.10.10: [nQSError: 46152] premature end of the HTTP response.

  [2015-10 - 09T 10: 23:30.000 + 03:00] [OracleBIServerComponent] [ERROR: 1] [] [] [ecid: 00iW3o6kxrDFw0zkFv07jz7DaSi1jBYwM0006Uo000000] [tid: 3808] [nQSError: 46066] cancelled operation.

  [2015-10 - 09T 10: 23:31.000 + 03:00] [OracleBIServerComponent] [ERROR: 1] [] [] [ecid: 00iW3o6kxrDFw0zkFv07jz7DaSi1jBYwM0006Uo000000] [tid: a034] [nQSError: 46066] cancelled operation.

  [2015-10 - 09T 10: 23:35.000 + 03:00] [OracleBIServerComponent] [NOTIFICATION: 1] [] [] [ecid: 00iW3o6kxrDFw0zkFv07jz7DaSi1jBYwM0006Uo000000] [tid: c848] [43031]: stop Oracle BI Server.

  [2015-10 - 09T 10: 24:04.000 + 03:00] [OracleBIServerComponent] [NOTIFICATION: 1] [] [] [ecid: 00iW3o6kxrDFw0zkFv07jz7DaSi1jBYwM0006Uo000000] [tid: 111 c] establishes the connection to the authentication web service 10.10.10.10

  [2015-10 - 09T 10: 24:05.000 + 03:00] [OracleBIServerComponent] [NOTIFICATION: 1] [] [] [ecid: 00iW3o6kxrDFw0zkFv07jz7DaSi1jBYwM0006Uo000000] [tid: c848] [85008] MDX member name Cache subsystem statistics - entries: 0, size: 0 bytes, set of queries: 0, Hits: lack of 0 (0%),: 0 (0%).

  [2015-10 - 09T 10: 24:05.000 + 03:00] [OracleBIServerComponent] [NOTIFICATION: 1] [] [] [ecid: 00iW3o6kxrDFw0zkFv07jz7DaSi1jBYwM0006Uo000000] [tid: c848] [85007] MDX member name Cache subsystem stopped.

  [2015-10 - 09T 10: 24:05.000 + 03:00] [OracleBIServerComponent] [NOTIFICATION: 1] [] [] [ecid: 00iW3o6kxrDFw0zkFv07jz7DaSi1jBYwM0006Uo000000] [tid: c848] [58001] Statistics Cache query - 0(0%): Hits, Misses: 0(0%) qualified, unqualified Misses: 0(0%).

  [2015-10 - 09T 10: 24:07.000 + 03:00] [OracleBIServerComponent] [NOTIFICATION: 1] [] [] [ecid:] [tid: c848] [14058] discharged from all subjects.

  I also checked and followed the steps here http://www.rittmanmead.com/2012/08/obiee-fmw-and-networking-on-dhcp-hosts/

  and the value < ConnectionExpireMinutes > 30 < / ConnectionExpireMinutes > in instanceconfig and the problem persists

  I have the loopback adapter installed and configured and fixed the address has been on the hosts file

  any ideas on that?

  Thank you

  P.S OBIEE V.11 8 64-bit windows on the local machine

  Just to update you I solved it and I'll share the solution.

  1.I due add a listening address in bi_server1 in the console

  2. edit FMW_SECURITY_SERVICE_URL manually in NQSConfig of 10.10.10.10 for the same as that specified in listening address.

  then it worked!

• Why the latches is if the mutex are better?

  Hi all
  
  I'm trying to understand the mutex and latches, also searched the forum and read other messages.
  
  My question is, almost in each paper said: mutex are faster, less false assertion, less size etc... also are locking latches a block of memory, but each object has its own mutex.
  
  two of them are nice locking mechanism, which is OK but if the mutex are better why latches are exist? What is advantages of locks?

  Mustafa KALAYCI says:
  Aman,

  I'm really starting to feel like a fool. each different answer changing my understanding of locks and mutexes.

  Isn't fun?

  When started this topic, I thought that the clasp and mutexes are both a locking mechanism that during a process of reading in or by writing to something a piece of memory, process locked this field and make it's own, it's lock is a lock, or mutex (it is also very close to description of University oracle performance tuning training manuals).

  In this book, its very clearly explained that latches may present a statement false . For example, when you see a Cache library top 5 events, you should interpret, this is a good thing or a bad thing? Without access to it, you can't search for the library Cache hash strings and cannot come to know that the slider required on your part is there or not? That means, until the moment that you do not have the hand on Library Cache, the decision to go for a hard or soft analysis is not possible and that is waiting for the library Cache lock, is of no real use at all. This is a false assertion and Mutex can help minimize this. Good read this page completely and with a little more attention and you need to understand.

  then I started to know the difference between the lock and the mutex. at first, I thought that HLDAA and mutex concepts belong to the oracle database, but I realized I was wrong. It is a technique of joint programming for shared resources.

  This isn't a concept of programming but the mechanism for the protection of the integrity of the structures of memory.

  I'm not sure that the lock concept is nowhere else or not in addition to oracle. But the notion of Mutex is already there in the operating system concepts.
  http://en.Wikipedia.org/wiki/Mutual_exclusion

  documents almost I read told me that mutex are just better and I'm just curious, if mutexes are better, why are locks used.

  I mentioned several times the answer to this, the concept of lock is a proven concept and is around for many years in oracle. Simply because the Mutex is better, this does not mean that Oracle, the next day, everything would change and will begin to deploy the mutex. You realize that Oracle code isn't just 10-15 lines that its really possible to change in a short way.

  When I run a query, first oracle will search this library if cached query cursor can not found create it there and then start interviewing research data. While the oracle process research to the cursor when it exists, it crashes a block of memory that it is currently reading in the library cache. After that, he will start looking to the data buffer cache. in seeking the data block, each block will be locked again while reading process and released when he finished reading.

  in which level a mutex and latch will be created and released. It might be easier if I get an example like that.

  for the moment, I think that mutexes and locks are algorithms to protect the wrong again... maybe shared structure.

  They are different ways to do the same thing, latches are something you need to wait, revolve around the CPU to get their hands on them. Mutex, are much faster, can be acquired more quickly and released more quickly as well.

  HTH
  Aman...

• ADadmin on several applTiers

  Hi all
  
  I'm on OUL5x64 with 3 average level configure loadbalancing on 3 nodes (not top shared application) application
  EBS R12 12.1.1 with RAC database.
  When you run adadmin to regenerate forms and libraries, should I run on each node to generate forms and libraries adadmin or just run a single node.
  
  Thanks in advance.
  Kind regards

  I'm on OUL5x64 with 3 average level configure loadbalancing on 3 nodes (not top shared application) application
  EBS R12 12.1.1 with RAC database.
  When you run adadmin to regenerate forms and libraries, should I run on each node to generate forms and libraries adadmin or just run a single node.

  Run adadmin on each node that is running forms server - you can get this for OAM or by querying the FND_NODES table.

  Thank you
  Hussein

• How to get Obsso cookies in webcenter.

  We have protected our url webcenter with OAM.
  Once the user request to webcenter he is redirected to the OAM, once the user is authenticated login page is landed at webcenter pages.
  Webcenter I want to access cookies from obsso that is stored in the browser under unique authentication cookies.
  
  I tried to access all cookies using following expression el in my jsp code.
  #{facesContext.externalContext.requestCookieMap}
  
  This is equivalent to only webcenter specific cookies, but I am able to see the specific cookies OAM in info page-> Security-> cookies section but above el expression is back
  only cookies webcenter.
  
  Can any body suggest me how can I access OAM specific cookes in my portlet that is configured in webcenter.
  
  Thank you, regards,
  Arun.

  I don't have any examples ASDK of java, but it is documented in the developer's Guide (10g). However, rather than write an AccessGate, if it's just the identity of the user that you want to could not get like a Variable header defined as a response to the OAM authorization?

  Kind regards
  Colin