SSO problem

Hi all

For some reason any my SSO stopped working last night.  Discovered this when my backup jobs failed. After talking with support, his suggestion was to reinstall all components.  My questions are, is this really necessary.and, if it is, what precautions, apart from some of the evidence, should I take?  Never needed to re - install so don't really want to break anything else.  Sure you mind about my view environment. Your comments and suggestions are welcome.  Thank you!!

Perry

Well, I can't really tell what happened because I don't really know. We had our backup jobs will fail, and when we looked intot he issue, we found that it was a question of SSO.  Long story short, vmware has suggested re install all components, and that's what I was doing. I was a little worried that I might forget something and this is the reason for the post. It appeared that all tables for the SSO DB were missing.  pretty scary if you ask me. Its currntly all them back up and running now.  Took A lot of time. Thanks for the replies.  much appreciated!

Tags: VMware

Similar Questions

  • APEX 5, Installation OID SSO problem

    Hi all

    I'm integrating APEX v5.0.1.00.06 v10.1.4.3 OID for UNIQUE authentication. I use v2.0.9 REST Data Services (RDS). I followed the instructions of Doc ID 562807.1. I use the SSO_SDK. Everything that looks like it is set up correctly, but when I access the page APEX I get redirected to a page that says only: "SSO Authentication processing error", nothing else.

    I turned the follow-up in the SSO_SDK, but nothing has been inserted in the tracking table.

    I am stuck and don't know what to look for or how to debug this installation more far. Any help is appreciated.

    Can I use mod_osso instead of the SSO_SDK? If so, how to implement this with APEX 5?

    Concerning

    We got the integration of SSO to work as follows:

    CREATE THE WWSEC_SSO_ENABLER_PRIVATE FOR SSOSDK PUBLIC SYNONYM. WWSEC_SSO_ENABLER_PRIVATE.

    Also, we have removed the name of the configuration of authorization request APEX Application partner.

  • SSO Login facilities and HAVE

    Hi all.

    I formatted my computer laptop so many times cause of bad configurations of ACEs.
    I am facing problem sometimes with the report server sometimes SSO problem.
    and also its very slow open the form.
    and also I am facing problem with webutil.
    I installed 10gR 1 there is no problem but with ACE 10 R2, there are so many problem I face.
    can anyone suggest me good and nice guide?

    Please send me PDF of facilities if someone.
    [email protected]

    I am using windows server 2003 R2 and 10 g R2.
    Tic Tac Toe

    Hello

    Check the tnsnames.ora and check for sid is that correct or not?
    I'm sure that here, you will not receive a quick response, that they are still learning and nobody is an expert here.
    did you work urself and learn as much as you can.

    Sarah

  • Problem: failed to initialize credentials store

    Hello

    I am facing a problem very weird ... I ' v has completed a complete ADF Application with Jdev11g build 5188, WLS 10.3 remote deployment works like a charm.

    For a few weeks now, I was not able to test my application or integrated Weblogic or distant Weblogic. Let me tell you the situation:
    (1) for the launch of JDev, I receive an error message in the console which tells me that it is impossible to recover the credentials for the database connection.
    (2) for the verification of a database connection, even with 'Remember my password' checked, I have to re - enter the password (to the first launch of jdev-am that clear?)
    (3) the connection works well (with the test button)
    (4) when you exit this screen propertie, I get a window that says: "Failed to initialize credentials store"-> OK; Then a new window error: "an error like, see details below.
    (5) for the integrated weblogic test I have a nullPointerException
    -> see below for more details and the trace of the stack

    Even more to the point:
    -In the AM configuration, I use a JDBC Data Source: java: comp/env/jdbc/EasygesProdDS
    -For step 2, 3 and 4, it is not in the database (i.e. it can be local or distant)


    I said it's a weird question because it used to work perfectly, a couple weeks back. I've been busy with deployments all this time. Something must have happenned, but what? What may be the cause?
    Also, I'm really looking forward to understand that we are ready for production.


    1 - error in the message from the console to the launch of jdev
    Jan 2, 2009 5:50:43 PM oracle.adf.share.security.providers.jps.CSFCredentialStore fetchCredential
WARNING: Unable to locate the credential for key EasygesServer in D:\JDEV11G_BUILD5188\jdeveloper\system\system11.1.1.0.31.51.88\o.jdevimpl.rescat2. 
Jan 2, 2009 5:50:43 PM oracle.adf.share.jndi.ReferenceStoreHelper throwPartialResultException
WARNING: Incomplete connection information
Jan 2, 2009 5:50:43 PM oracle.adf.share.security.providers.jps.CSFCredentialStore fetchCredential
WARNING: Unable to locate the credential for key IntegratedWLSConnection in D:\JDEV11G_BUILD5188\jdeveloper\system\system11.1.1.0.31.51.88\o.jdevimpl.rescat2. 
Jan 2, 2009 5:50:43 PM oracle.adf.share.jndi.ReferenceStoreHelper throwPartialResultException
WARNING: Incomplete connection information
Jan 2, 2009 5:50:46 PM oracle.adf.share.jndi.ReferenceStoreHelper throwPartialResultException
WARNING: Incomplete connection information
    4 - details of the windows error right after the "could not initialize credentials store.
    javax.naming.NamingException [Root exception is oracle.adf.share.security.ADFSecurityRuntimeException: Unable to initialize the credential store.    
]
     at oracle.adf.share.jndi.ContextImpl.throwNamingException(ContextImpl.java:390)
     at oracle.adf.share.jndi.ContextImpl.saveDocument(ContextImpl.java:702)
     at oracle.adf.share.jndi.ContextImpl.save(ContextImpl.java:720)
     at oracle.adf.share.jndi.AdfInitialContext.save(AdfInitialContext.java:91)
     at oracle.adfinternal.rc.connection.UncloseableContextWrapper.save(UncloseableContextWrapper.java:89)
     at oracle.jdeveloper.rescat2.util.ConnectionUtil.invokeOldStyleWizard(ConnectionUtil.java:137)
     at oracle.jdeveloper.rescat2.util.ConnectionUtil.showWizard(ConnectionUtil.java:66)
     at oracle.jdeveloper.rescat2.nodes.RepositoryRootNode.whenProperties(RepositoryRootNode.java:216)
     at oracle.adf.share.dt.AppConnContextMenuListener.onProperties(AppConnContextMenuListener.java:221)
     at oracle.adf.share.dt.AppConnContextMenuListener.propertiesEventHandled(AppConnContextMenuListener.java:210)
     at oracle.adf.share.dt.AppConnContextMenuListener.handleEvent(AppConnContextMenuListener.java:123)
     at oracle.ide.controller.IdeAction.performAction(IdeAction.java:524)
     at oracle.ide.controller.IdeAction.actionPerformedImpl(IdeAction.java:866)
     at oracle.ide.controller.IdeAction.actionPerformed(IdeAction.java:496)
     at javax.swing.AbstractButton.fireActionPerformed(AbstractButton.java:1995)
     at javax.swing.AbstractButton$Handler.actionPerformed(AbstractButton.java:2318)
     at javax.swing.DefaultButtonModel.fireActionPerformed(DefaultButtonModel.java:387)
     at javax.swing.DefaultButtonModel.setPressed(DefaultButtonModel.java:242)
     at javax.swing.AbstractButton.doClick(AbstractButton.java:357)
     at javax.swing.plaf.basic.BasicMenuItemUI.doClick(BasicMenuItemUI.java:1220)
     at javax.swing.plaf.basic.BasicMenuItemUI$Handler.mouseReleased(BasicMenuItemUI.java:1261)
     at java.awt.Component.processMouseEvent(Component.java:6041)
     at javax.swing.JComponent.processMouseEvent(JComponent.java:3265)
     at java.awt.Component.processEvent(Component.java:5806)
     at java.awt.Container.processEvent(Container.java:2058)
     at java.awt.Component.dispatchEventImpl(Component.java:4413)
     at java.awt.Container.dispatchEventImpl(Container.java:2116)
     at java.awt.Component.dispatchEvent(Component.java:4243)
     at java.awt.LightweightDispatcher.retargetMouseEvent(Container.java:4322)
     at java.awt.LightweightDispatcher.processMouseEvent(Container.java:3986)
     at java.awt.LightweightDispatcher.dispatchEvent(Container.java:3916)
     at java.awt.Container.dispatchEventImpl(Container.java:2102)
     at java.awt.Window.dispatchEventImpl(Window.java:2440)
     at java.awt.Component.dispatchEvent(Component.java:4243)
     at java.awt.EventQueue.dispatchEvent(EventQueue.java:599)
     at java.awt.EventDispatchThread.pumpOneEventForFilters(EventDispatchThread.java:273)
     at java.awt.EventDispatchThread.pumpEventsForFilter(EventDispatchThread.java:183)
     at java.awt.EventDispatchThread.pumpEventsForHierarchy(EventDispatchThread.java:173)
     at java.awt.EventDispatchThread.pumpEvents(EventDispatchThread.java:168)
     at java.awt.EventDispatchThread.pumpEvents(EventDispatchThread.java:160)
     at java.awt.EventDispatchThread.run(EventDispatchThread.java:121)
Caused by: oracle.adf.share.security.ADFSecurityRuntimeException: Unable to initialize the credential store.    

     at oracle.adf.share.security.credentialstore.CredentialStoreContext.getCredentialStorage(CredentialStoreContext.java:174)
     at oracle.adf.share.security.credentialstore.CredentialStoreContext.getCredentialProvisioner(CredentialStoreContext.java:98)
     at oracle.adf.share.security.credentialstore.CredentialProvisioner.<init>(CredentialProvisioner.java:43)
     at oracle.adf.share.jndi.CredentialStoreHelper.<init>(CredentialStoreHelper.java:52)
     at oracle.adf.share.jndi.ReferenceStoreHelper.saveCredentials(ReferenceStoreHelper.java:436)
     at oracle.adf.share.jndi.ContextImpl.saveDocument(ContextImpl.java:692)
     ... 39 more
Caused by: java.lang.reflect.InvocationTargetException
     at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
     at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:39)
     at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:27)
     at java.lang.reflect.Constructor.newInstance(Constructor.java:513)
     at oracle.adf.share.security.credentialstore.CredentialStoreContext.getCredentialStorage(CredentialStoreContext.java:170)
     ... 44 more
Caused by: oracle.adf.share.security.ADFSecurityRuntimeException: Unable to initialize the credential store.    
No credential store location defined.
     at oracle.adf.share.dt.security.providers.jps.CSFDTCredentialStore.initialize(CSFDTCredentialStore.java:184)
     at oracle.adf.share.security.providers.jps.CSFCredentialStore.<init>(CSFCredentialStore.java:204)
     at oracle.adf.share.dt.security.providers.jps.CSFDTCredentialStore.<init>(CSFDTCredentialStore.java:93)
     ... 49 more
Caused by: oracle.security.jps.JpsException: No credential store location defined.
     at oracle.adf.share.dt.jps.JpsConfigUtils.getCredentialStore(JpsConfigUtils.java:1281)
     at oracle.adf.share.dt.jps.JpsConfigUtils.getCredentialStore(JpsConfigUtils.java:1301)
     at oracle.adf.share.dt.security.providers.jps.CSFDTCredentialStore.initialize(CSFDTCredentialStore.java:159)
     ... 51 more
    5 - integration of weblogic server memory print stack trace:
    oracle.jdeveloper.deploy.DeployException
     at oracle.jdevimpl.deploy.adrs.wls.Jsr88AdrsRemoteDeployer.initializeHelper(Jsr88AdrsRemoteDeployer.java:52)
     at oracle.jdevimpl.deploy.common.Jsr88RemoteDeployer.deployImpl(Jsr88RemoteDeployer.java:139)
     at oracle.jdeveloper.deploy.common.AbstractDeployer.deploy(AbstractDeployer.java:94)
     at oracle.jdevimpl.deploy.fwk.WrappedDeployer.deployImpl(WrappedDeployer.java:39)
     at oracle.jdeveloper.deploy.common.AbstractDeployer.deploy(AbstractDeployer.java:94)
     at oracle.jdeveloper.deploy.common.BatchDeployer.deployImpl(BatchDeployer.java:82)
     at oracle.jdeveloper.deploy.common.AbstractDeployer.deploy(AbstractDeployer.java:94)
     at oracle.jdevimpl.deploy.fwk.WrappedDeployer.deployImpl(WrappedDeployer.java:39)
     at oracle.jdeveloper.deploy.common.AbstractDeployer.deploy(AbstractDeployer.java:94)
     at oracle.jdevimpl.deploy.fwk.DeploymentManagerImpl.deploy(DeploymentManagerImpl.java:436)
     at oracle.jdeveloper.deploy.DeploymentManager.deploy(DeploymentManager.java:209)
     at oracle.jdevimpl.runner.adrs.AdrsStarter$5$1.run(AdrsStarter.java:1365)
Caused by: oracle.rc.asadapter.connection.ConnectionException: [J2EE Deployment SPI:260010]Unable to connect to 't3://localhost:7001' as user, 'weblogic'. Error received: null
     at oracle.rc.asadapter.weblogic.connection.Weblogic10Jsr88Provider.getPresentation(Weblogic10Jsr88Provider.java:100)
     at oracle.rc.asadapter.connection.AppServerConnectionImpl.getPresentation(AppServerConnectionImpl.java:65)
     at oracle.jdevimpl.deploy.adrs.wls.Jsr88AdrsRemoteDeployer.initializeHelper(Jsr88AdrsRemoteDeployer.java:43)
     ... 11 more
Caused by: javax.enterprise.deploy.spi.exceptions.DeploymentManagerCreationException: [J2EE Deployment SPI:260010]Unable to connect to 't3://localhost:7001' as user, 'weblogic'. Error received: null
     at weblogic.deploy.api.spi.deploy.WebLogicDeploymentManagerImpl.<init>(WebLogicDeploymentManagerImpl.java:121)
     at weblogic.deploy.api.spi.factories.internal.DeploymentFactoryImpl.getDeploymentManager(DeploymentFactoryImpl.java:84)
     at oracle.rc.asadapter.weblogic.connection.Weblogic10Jsr88Provider.getPresentation(Weblogic10Jsr88Provider.java:97)
     ... 13 more
Caused by: weblogic.deploy.api.spi.exceptions.ServerConnectionException: [J2EE Deployment SPI:260010]Unable to connect to 't3://localhost:7001' as user, 'weblogic'. Error received: null
     at weblogic.deploy.api.spi.deploy.internal.ServerConnectionImpl.getMBeanServer(ServerConnectionImpl.java:251)
     at weblogic.deploy.api.spi.deploy.internal.ServerConnectionImpl.getMBeanServerForType(ServerConnectionImpl.java:191)
     at weblogic.deploy.api.spi.deploy.internal.ServerConnectionImpl.init(ServerConnectionImpl.java:147)
     at weblogic.deploy.api.spi.deploy.WebLogicDeploymentManagerImpl.getNewConnection(WebLogicDeploymentManagerImpl.java:148)
     at weblogic.deploy.api.spi.deploy.WebLogicDeploymentManagerImpl.<init>(WebLogicDeploymentManagerImpl.java:118)
     ... 15 more
Caused by: java.lang.NullPointerException
     at java.util.Hashtable.put(Hashtable.java:394)
     at weblogic.deploy.api.spi.deploy.internal.ServerConnectionImpl.getMBeanServer(ServerConnectionImpl.java:210)
     ... 19 more
#### Cannot run application Easyges 2 due to error deploying to DefaultServer.
[Application Easyges 2 stopped and undeployed from Server Instance DefaultServer]

    To my knowledge, this should not happen in this cwallet.sso problem JD11.1.1.0.1 was discovered in TP4 (frequently), where the file has been corrupted when you interrupt from the embedded server.
    This has not happened to me since JDev 11.1.1.0.0 I remember this when I saw you error.

    Timo

  • Problems with the management of the CSC/Cisco (associated with SSO) site

    Dear friends,

    I came across a problem with single sign - on (SSO) used in the Cisco's Web site and CSC which begins to be more and more awkward:

    1. I visit the CSC and connect you to reply to a thread. Then I start to reply to a message.
    2. In response, I need to consult the technical documentation, guides, configuration or other documents on Cisco's Web site. In another tab in my browser, I visit the Cisco's Web site and do my search/navigation.
    3. At some point, Cisco's Web site acknowledges that I am already connected to the CSC and begins to produce URLs with the /partner/ inside component (for example in the search results). By clicking on this URL causes me be redirected to the page of connection again. This is the first question - why do I have to log in again because I am already connected and SSO is supposed to take care of this?
    4. Well, I re-enter my credentials, get connected, access the necessary document, then I go back to my post on the CSC, finish it and submit it. KABOOM - CCS quickly informs me that I am without permission to perform this action, lose my answer in the process! Logging on to the Web site (as described in step 3) Cisco obviously invalid my current session on CSC! I need to connect again to the SCC (until I do that, she considers me as a guest once again, but when I click on the login link, I suddenly make me connected without enter my credentials) and, well, write again my answer. Sometimes, a part is recoverable, but usually, it is only a small fragment.

    Would it not be possible to correct this behavior? I lost a lot of time my lost rewrite responses.

    Best regards

    Peter

    Hi Peter,.

    I wanted to give you a quick update on the two issues.

    First question:

    We are currently working on a long term and short fix for this problem. Unfortunately the long-term solution will be a drawn out effort as we begin our new data of all content in our heritage Center. The team is currently testing the short-term solution, will keep you posted on the progress that I get more details.

    Second question:

    We currently do analysis of the root causes of this problem and give you updated each week on this issue that deploy us the patch.

    Thanks a lot again for you continued support and patience.

    Sainaba.

  • Windows credentail Manager / SSO question, hope someone can help me out on the following problem that concerns me a fews months ago.

    Currently, our network has replaced a border router that connects to a Checkpoint firewall. After the replacement, the SSO service is fully does not. When you use IE to access my company's intranet, he invites me user intranet and pw whenever I close IE and reopen. I find that the credentials are already stored on the Credential Manager. However, the guest continues to show every time I run the application IE. Most users under this router with the same problem.

    In addition, the problem is not limited to EI. It happens on the Outlook as well.  I would really like to know

    (1) why the credentail crib does not work?

    (2) what is the mechanism behind?

    (3) is it possible the problem caused by the firewall and router? If Yes, what should I do on them to make the window manager of credentials to work?

    Hello
     
    Thanks for posting your question in the Microsoft Community forum. We are happy to help you.
    The question you posted would be better suited in the TechNet Forums. I would recommend posting your query in the TechNet Forums. You can follow the link to your question:
     
    Kind regards.

  • SQLDev 4.1 ai2 - problem with connection SSO to SQL Server (new)

    I am trying to connect to SQL Server with the new version. I have the jtds 1.3 installed and get the configuration of SQL Server tab, but once more to get the infamous SSO error trying to connect:

    Status: Failure-i/o Error: failure of the SSO: library Native SSPI has not loaded. Check the system java.library.path property.


    I tried to copy ntlmauth.dll in several places:

    C:\Oracle\sqldeveloper4.1\sqldeveloper\sqldeveloper\bin

    C:\Oracle\sqldeveloper4.1\sqldeveloper\jdk\jre\bin

    C:\Oracle\sqldeveloper4.1\sqldeveloper\jdk\jre\

    C:\Oracle\sqldeveloper4.1\sqldeveloper\jdk\

    Given SQLDev running, but still get the error of SSO.

    Discovered this problem (thanks to Jeff Smith!). I had a 32-bit DLL in the path that are in conflict with the 64 bit one. Once I deleted all of the extra 32-bit versions, the SSO authentication works.

  • do not start to vCenter / problem with sso and ad

    Hello

    My vcenter will not start. in the error logs, I found the following errors...

    I changed the server vcenter 5.1 to 5.1 and I insert the vcenter to my Active directroy. I uninstalled sso and installed again the backup file leave 5.1.

    After the updates, I used vmware article because I changed the ad domain:

    http://KB.VMware.com/selfservice/microsites/search.do?language=en_US & cmd = displayKC & externalId = 2036170

    but now it does not start. How can I manually set the uri of the admin? I think it will be the problem:

    2012 11-22 T 14: 53:06.575 + 01:00 [04720 info "authvpxdMoSessionManager"] [OSP] [SessionManagerMo::Init] Admin URI the value:
    2012 11-22 T 14: 53:06.575 + 01:00 [04720 info "authvpxdMoSessionManager"] certificates [OSP] [SessionManagerMo::Init] download m root...
    2012 11-22 T 14: 53:08.576 + 01:00 [error 01808 "HttpConnectionPool-000001' '] [ConnectComplete] connection failed for < cs p:000000000a1c48c0, TCP::80 >;
    CNX: (null), error: class Vmacore::SystemException (konnte keine connection available werden, die Zielcomputer der da verweigerte connection.)
    2012 11-22 T 14: 53:08.655 + 01:00 [error 04720 "[OSP] [SsoCertificateManagerImpl]"] [CreateAdminSsoServiceContent] failure when attempting
    to connect to the SSO Admin Server: konnte keine connection available werden, die Zielcomputer der da verweigerte connection.  . Retrying in 10 seconds.
    2012 11-22 T 14: 53:16.332 + 01:00 [02512 WARNING opID "VpxProfiler" SWI-6f09bdcf =] VpxUtil_InvokeWithOpId [TotalTime] took ms 12030
    2012 11-22 T 14: 53:19.073 + 01:00 [02212 info "Default"] detached thread

    Greetings,

    Markus

    It seems that the computer refuses the connection (connection refused so loosely translated from German).

    No firewall between the machines?

    Maybe try to reorient and re-register vCenter? http://KB.VMware.com/selfservice/documentLinkInt.do?micrositeID=&popup=true&LanguageID=&externalID=2033620

  • Problem with vCenter 5.1 (W2K8) &amp; SSO without AD

    Hi all

    I have problems with my first experiences with vC 5.1 / SSO. I have a virtual machine running W2K8 + DNS but no ads. This is what I want and need. 5.0 had no problem with that, but in 5.1, I can't make everything work.

    Installation of SSO, the inventory service and vC (all 5.1), all this hard work and all the Associates services start. However, when I then restart the virtual machine, the vC service does not start, start services very well but no vC. It all started at the session of runtime install, but not after the restart of a virtual machine. By default use SQL Express installation options dbs SSO and vC have been taken.

    vpxd.log has a relevant error of:

    "Failed while trying to connect to the SSO Admin Server: no connection could be made because the target machine actively refused it.

    DNS is all right, forward and backward. Despite the warning (attachment), SSO is happy to install without this AD.

    I don't understand why vC post install but then fail to start after reboot.

    Surely the vC (Win) 5.1 is not having to be in an AD domain?

    What Miss me?

    Thank you and best regards,

    Mac

    I did a few more tests to prove the change the start mode of services could solve the problem.

    Today I install VC with simple installation.
    After installation completed, before the reboot, take a sanpshot of the virtual machine.
    Restart the VC, Vcenter service failed to start as usual.
    Then go back to the snapshot before restarting immediately after installation.
    And changed the start mode of service,

    vCenter single sign on Service - automatic (delayed) automatic
    VMware vCenter Inventory Service - automatic Automatic (delayed)
    VMware vSphere Profile - Driven Storage Service - from Automatic Automatic (delayed)
    VMwareVCMSDS - from Automatic Automatic (delayed)

    then restart VC.
    Services started normally vCenter.

    If the sequence to start the service really matters!

  • OBIEE 11.1.1.6 SSO with OAM 11.1.1.5: problem of attribute OID 11.1.1.6

    Hello world!

    I configured an OAM (webgate) + DIO + OBIEE + OHS system.
    The OBIEE is protected via OHS(weblogic module) and webgate. It works very well.
    The CAO authenticates OID (default user identity store).
    The * "User research Base" * is the same (* "cn = Users, dc is mydomain, dc = com" *) in the store of identity and authentication provider OID of OBIEE too.
    SSO is enabled in OBIEE and suppliers are:
    OID (provider that performs authentication LDAP 1.0) JUST
    REQUIRED OAM (Oracle Access Manager identity Asserter 1.0) provider
    DefaultAuthenticator (WebLogic Authentication Provider 1.0) SUFFICIENT
    DefaultIdentityAsserter

    IF the * "User name attribute" * is * '' cn '' * in-store OAM of identity of the users and the provider of the OID of the OBIEE * "user name attribute" * is * "cn" * (by default) also, everything works fine.

    But I have to use * "orclSAMAccountName" * instead of * "cn" * (OAM and OID provider). And in this case, I have the problem.
    The OID of the OBIEE provider are:
    All users filter: (& (orclSAMAccountName = *)(objectclass=person))
    The user of the name filter: (&(orclSAMAccountName=%u)(objectclass=person)))
    Username attribute: orclSAMAccountName

    I did a test user:
    CN = test
    SN = test_sn
    orclsamaccountname = test_sama
    UID = test_uid
    krbprincipalname = test_krb
    I can authenticate with test_sama OAM, but OBIEE say: * "" you are not logged here: Oracle BI Server. "*"
    The bi log shows that:
    + By default (self-adjusting)' > < BISystemUser > <>< 00093dFuR ^ HFW7PMye7i6G00052S000Tt7 > < 1345642607333 > < BEA-000000 > < javax.security.auth.login.FailedLoginException: [Security: 090304] authentication failed: User test javax.security.auth.login.LoginException: identity [Security: 090300] Assertion failure: test user does not exist +.
    + oracle.security.jps.internal.api.jaas.AssertionException: javax.security.auth.login.FailedLoginException: [Security: 090304] authentication failed: User test javax.security.auth.login.LoginException: [Security: 090300] identity Assertion failure: test user does not exist.

    Why does search OBIEE the * '' cn '' * and why does not use the * "orclsamaccountname?"

    Any idea?

    Best regards, Jani

    Hello Joseph,.

    This is a known issue in OBIEE 11.1.1.6.0, please see: OBIEE 11.1.1.6 Agent failed with error code: IHVF6OM7:OPR4ONWY:U9IM8TAC [nQSError: 13039] the imposter does not exist in the BI [1446877.1 ID] Security Service

    We have configured OBIEE 11.1.1.6 on Linux and use Single Sign On (SSO) with authentication Native for Windows (Ondaaah).

    Configured authenticator AD, select sAMAccountName instead of CN for the attribute of the user. SSO in MS license. When you try to access the OBIEE presentation services we met the below error.

    «You are not logged here: Oracle BI Server.»

    When to check the logfile biserver1 found: failure of the Assertion of identity [Security: 090300]: user OracleSystemUser does not exist

    After you apply the hotfix 13553428 on top of 11.1.1.6.0 OBIEE we connected in OBIEE presentation services.

    It works very well with OBIEE, 11.1.1.5.0 and 11.1.1.6.1

    OBIEE fixed in 11.1.1.6.1. Apply Patch 13742915.

    If you want to stay in OBIEE 11.1.1.6.0. Apply Patch 13553428.

    Let me know if this solves the problem of Asserter.

    Pls mark so useful or response.

    Thank you
    SVS-

  • Problem of the NAC in the virtual tape gateway VPN SSO

    Hello

    I've implemented a NAC solution for remote users. The unit of CASE mode configured in the gateway enVirtual Strip.

    I followed all the steps listed in http://www.cisco.com/en/US/products/ps6128/products_configuration_example09186a008074d641.shtml

    Remote users can connect succeffuly using the cisco vpn software and they can ping the SIN, but not the DNS (the ASA offers IP @ but not the DNS I do not know why).

    When I access the NAS, I can download the NAC Agent but VPN SSO is not executed and the Agent asks me to connect using LOCAL DB.

    Any help please,.

    Kind regards

    Larson,

    For VPN SSO work, you must send the accounting package to the CAs. The CASE can in turn send for the ACS if you need accounting also be done on GBA, but for authentication ONLY work, the accountant must reach the CASE.

    HTH,

    Faisal

  • SSO / vSphere Web customer problem

    Hi all

    I have a 5.1 vCenter which has been installed and configured before my time to join the company. The Single Sign-On has been installed and the service is running. The Web client has not been installed as part of the initial installation. If I try to install the Web client he asks SSO credentials. Unfortunately the name and the password is unknown. I found the article that talks about reset the password, but it does not help my situation since I do not know the user name as well.

    What is my best bet here? Re-install SSO and give the new credentials and then install the web client. Anything about uninstalling SSO and re - install?

    Thanks in advance

    By default the UNIQUE username authentication is admin@system-domain.

    According to me, the recommended approach to resettlement is to construct a new instance of the SSO and move all that from this article.  I recommend you try first in a test lab.

  • SSO configuration problem

    Hi gurus

    If you have read my previous posts, you will know that I am very new to all this, so go easy on me, still to learn.

    I would like to integrate the AD authentication on my cluster, so I can't config sso and all that much good, but for some reason once I log in as administrator and go to the administration tab, I can see the tab where it says Single on and discovery, but nothing is on the tab, which could help me config this

    I have vcenter 5.1 and I have the plug-in and all, but can not enter any config. Info because there is nothing in there.

    Thanks a lot gurus

    You connect with the user "admin@system-domain"?

  • Problem of wrong password from SSO

    Hello

    Some time, the standards body has been installed with admin password, now when the password has been changed, I get the following errors:

    Info "[OSP]" opID = 5c244f32] [UserDirectorySso] Authenticate (xxx\administrator, "not proven")

    error "[OSP]" opID = 5c244f32] [UserDirectorySso] AcquireToken InvalidCredentialsException: failed authentication: user account is locked

    error 'authvpxdUser' opID = 5c244f32] cannot authenticate the user < xxx\administrator >

    Where can I upgrade day/change password for the account?

    After I collected the newspapers it appeared in \Logs\vpxd\vpxd-777.log

    Thank you.

    See this Article. Its a known problem

    VMware KB: Active Directory account crashes due to repeated connection attempts that failed vcenter Server

  • VCenter SSO 5.5 upgrade problems - cannot start SERVICE KDC VMWARE

    Hi, I am trying to upgrade my current SSO that was installed about a month ago (a complete reinstallation of my quite vcenter environment.

    At some point, the failed to install gives me this error message. "Service"VMware Kdc Service"(WMwareKdcService) failed to start. Check that you have sufficient privileges to start system services. »

    I installed as the domain administrator, which obviously has rights of a local administrator on the Windows Server.

    Any help or can someone point me to a log file, I can watch or something.

    Thank you!

    Michel

    More tweaking... KDC service requires port 88 to begin.

    Netstat - abn shows vpxd.exe uses port 88. When I installed vCenter, I had chosen port 88 as port 80 is already in use by IIS... I disabled now IIS and want to move back to port 80 vCenter.

    Now, someone has an idea how I can change vCenter refer to port 80?

Maybe you are looking for