I found out that the error below was caused by wrong configuration of the security provider of the application opm-public. When we changed jazn.xml in $ORACLE_HOME/j2ee/[oc4j_container]/config directory with the correct settings and that solved this problem.
[Thu Aug 13 16:09:08 2009] [error] [client 10.8.192.155] [ecid: 1250172548:10.9.8.44:23073:0:7,0] mod_oc4j: Failed to find a failover oc4j process for session request for destination: application://opm-public (no island or jgroup). [Thu Aug 13 16:09:08 2009] [error] [client [ip_address]] [ecid: 1250172548:10.9.8.44:23073:0:7,0] mod_oc4j: request to OC4J [hostname]:[port] failed: Connect failed
Did this post help you in any way can you please leave a comment? This will motivate me writing more posts.
Embedded error: The following error occurred while executing this line: [INSTALL_DIR]/ant/bpel/common-build.xml:84: A problem occured while connecting to server "[hostname]" using port "[port]": java.security.AccessControlException: access denied (com.collaxa.security.DomainPermission HetRotterdamseHuwelijk read) at java.security.AccessControlContext.checkPermission(AccessControlContext.java:264) at java.security.AccessController.checkPermission(AccessController.java:427) at com.collaxa.security.OC4JSecurityService.checkAccess(OC4JSecurityService.java:16) at com.collaxa.security.SecurityService.checkDomainAccess(SecurityService.java:26) at com.collaxa.cube.fe.util.ServletUtils.getLocatorWithoutUrlRewrite(ServletUtils.java:76) at _deployHttpClientProcess._jspService(_deployHttpClientProcess.java:332) at com.orionserver.http.OrionHttpJspPage.service(OrionHttpJspPage.java:59) at oracle.jsp.runtimev2.JspPageTable.service(JspPageTable.java:462) at oracle.jsp.runtimev2.JspServlet.internalService(JspServlet.java:594) at oracle.jsp.runtimev2.JspServlet.service(JspServlet.java:518) at javax.servlet.http.HttpServlet.service(HttpServlet.java:856) at com.evermind.server.http.ResourceFilterChain.doFilter(ResourceFilterChain.java:64) at oracle.security.jazn.oc4j.JAZNFilter$1.run(JAZNFilter.java:400) at java.security.AccessController.doPrivileged(Native Method) at javax.security.auth.Subject.doAsPrivileged(Subject.java:517) at oracle.security.jazn.oc4j.JAZNFilter.doFilter(JAZNFilter.java:414) at com.evermind.server.http.ServletRequestDispatcher.invoke(ServletRequestDispatcher.java:623) at com.evermind.server.http.ServletRequestDispatcher.forwardInternal(ServletRequestDispatcher.java:370) at com.evermind.server.http.HttpRequestHandler.doProcessRequest(HttpRequestHandler.java:871) at com.evermind.server.http.HttpRequestHandler.processRequest(HttpRequestHandler.java:453) at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:313) at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:199) at oracle.oc4j.network.ServerSocketReadHandler$SafeRunnable.run(ServerSocketReadHandler.java:260) at oracle.oc4j.network.ServerSocketAcceptHandler.procClientSocket(ServerSocketAcceptHandler.java:234) at oracle.oc4j.network.ServerSocketAcceptHandler.access$700(ServerSocketAcceptHandler.java:29) at oracle.oc4j.network.ServerSocketAcceptHandler$AcceptHandlerHorse.run(ServerSocketAcceptHandler.java:879) at com.evermind.util.ReleasableResourcePooledExecutor$MyWorker.run(ReleasableResourcePooledExecutor.java:303) at java.lang.Thread.run(Thread.java:595)
This can be solved by change the orion-application.xml in the deploy_services application.
$ORACLE_HOME/j2ee/oc4j_soa/application-deployments/deploy_service/orion-application.xml and $ORACLE_HOME/j2ee/oc4j_soa/applications/deploy_service/META-INF/orion-application.xml
Our BPEL deployments with ant were always succesfull but after an while it was not working anymore during the deployment of an BPEL process we got the error as shown below:
Embedded error: The following error occurred while executing this line: [INSTALL_DIR]/common-build.xml:82: A problem occured while connecting to server "[host]" using port "[port]":
Deployment of an BPEL process by placing it in the $ORACLE_HOME/bpel/domains/[BPEL_DOMAIN]/deploy was successfull.
After we enabled the verbose option I noticed which url is used to deploy the BPEL process http://hostname:port/integration/services/deploy/deployHttpClientProcess.jsp . The application used is deploy_services in the oc4j_soa container. When the url is executed in an browser an popup is shown on which you should log on. But we got an other error:
Authorization Required This server could not verify that you are authorized to access the document requested. Either you supplied the wrong credentials (e.g., bad password), or your browser doesn't understand how to supply the credentials required.
This error was caused by an change in the file $ORACLE_HOME/Apache/Apache/conf/mod_oc4j.conf. A while ago we put an line in this config file:
Oc4jUseOHSErrors on
After we removed Oc4jUseOHSErrors on. Everything worked like it supposed to.
Did this post help you in any way can you please leave a comment? This will motivate me writing more posts.
Today I wanted to make an shell script that checks if an attribute of an user in the OID had a specific value. I tried to make an ldapsearch statement but it failed with the error:
DSA Is Unwilling To Perform ldap_search: additional info: Function Not Implemented
I found out that it is not possible to search on an uncataloged (unindexed) attribute.
This can be fixed by:
Create an index on the attribute used in the search using catalog.
For this example: $ORACLE_HOME/ldap/bin/catalog connect="[ORACLE_SID_METADATA REPOSITORY]" add=true attribute="[SEARCH ATTRIBUTE]"
Output: This tool can only be executed if you know database user password for OID Enter OID Password ::
Password of het orcladmin user should be entered now!
Restart the OID server.
Did this post help you in any way can you please leave a comment? This will motivate me writing more posts.
When the following error occurs, it is possible to reset the oraesb schema in the database:
[deployESBProjects] Deployment Attempt Response : [deployESBProjects] [deployESBProjects] [deployESBProjects] An unhandled exception has been thrown in the ESB system. The exception reported is: "java.io.IOException: Delete failed [deployESBProjects] at oracle.tip.esb.server.bootstrap.ESBBaseResourceAdapter.createIOException(ESBBaseResourceAdapter.java:630) [deployESBProjects] at oracle.tip.esb.server.bootstrap.ESBBaseResourceAdapter.access$200(ESBBaseResourceAdapter.java:130) [deployESBProjects] at oracle.tip.esb.server.bootstrap.ESBBaseResourceAdapter$2.delete(ESBBaseResourceAdapter.java:550) [deployESBProjects] at oracle.tip.esb.lifecycle.AuxiliaryFileHandler.deleteProject(AuxiliaryFileHandler.java:555) [deployESBProjects] at oracle.tip.esb.console.XMLConsoleManagerImpl.cleanSlideRepositoryForProject(XMLConsoleManagerImpl.java:2364) [deployESBProjects] at oracle.tip.esb.console.XMLConsoleManagerImpl.commit(XMLConsoleManagerImpl.java:2405) [deployESBProjects] at oracle.tip.esb.configuration.deployment.JDevDeploymentManager.deploy(JDevDeploymentManager.java:226) [deployESBProjects] at oracle.tip.esb.configuration.deployment.DeploymentServlet.doPost(DeploymentServlet.java:120) [deployESBProjects] at javax.servlet.http.HttpServlet.service(HttpServlet.java:763) [deployESBProjects] at javax.servlet.http.HttpServlet.service(HttpServlet.java:856) [deployESBProjects] at com.evermind.server.http.ResourceFilterChain.doFilter(ResourceFilterChain.java:64) [deployESBProjects] at oracle.security.jazn.oc4j.JAZNFilter$1.run(JAZNFilter.java:400) [deployESBProjects] at java.security.AccessController.doPrivileged(Native Method) [deployESBProjects] at javax.security.auth.Subject.doAsPrivileged(Subject.java:517) [deployESBProjects] at oracle.security.jazn.oc4j.JAZNFilter.doFilter(JAZNFilter.java:414) [deployESBProjects] at com.evermind.server.http.ServletRequestDispatcher.invoke(ServletRequestDispatcher.java:623) [deployESBProjects] at com.evermind.server.http.ServletRequestDispatcher.forwardInternal(ServletRequestDispatcher.java:370) [deployESBProjects] at com.evermind.server.http.HttpRequestHandler.doProcessRequest(HttpRequestHandler.java:871) [deployESBProjects] at com.evermind.server.http.HttpRequestHandler.processRequest(HttpRequestHandler.java:453) [deployESBProjects] at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:313) [deployESBProjects] at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:199) [deployESBProjects] at oracle.oc4j.network.ServerSocketReadHandler$SafeRunnable.run(ServerSocketReadHandler.java:260) [deployESBProjects] at oracle.oc4j.network.ServerSocketAcceptHandler.procClientSocket(ServerSocketAcceptHandler.java:234) [deployESBProjects] at oracle.oc4j.network.ServerSocketAcceptHandler.access$700(ServerSocketAcceptHandler.java:29) [deployESBProjects] at oracle.oc4j.network.ServerSocketAcceptHandler$AcceptHandlerHorse.run(ServerSocketAcceptHandler.java:879) [deployESBProjects] at com.evermind.util.ReleasableResourcePooledExecutor$MyWorker.run(ReleasableResourcePooledExecutor.java:303) [deployESBProjects] at java.lang.Thread.run(Thread.java:595) [deployESBProjects] Caused by: Service org.apache.slide.store.impl.rdbms.J2EEStore@1966d52 access error : ORA-02292: integrity constraint (ORAESB.SYS_C005694) violated - child record found
[deployESBProjects] at org.apache.slide.macro.MacroImpl.delete(MacroImpl.java:522) [deployESBProjects] at org.apache.slide.macro.MacroImpl.delete(MacroImpl.java:482) [deployESBProjects] at org.apache.slide.macro.MacroImpl.delete(MacroImpl.java:463) [deployESBProjects] at oracle.tip.esb.server.bootstrap.slide.DeleteFolder.delete(DeleteFolder.java:76) [deployESBProjects] at oracle.tip.esb.server.bootstrap.slide.DeleteFolder.executeRequest(DeleteFolder.java:58) [deployESBProjects] at oracle.tip.esb.server.bootstrap.slide.AbstractSlideMethod.execute(AbstractSlideMethod.java:142) [deployESBProjects] at oracle.tip.esb.server.bootstrap.slide.SlideHandler.delete(SlideHandler.java:153) [deployESBProjects] at oracle.tip.esb.server.bootstrap.ESBBaseResourceAdapter$2.delete(ESBBaseResourceAdapter.java:548) [deployESBProjects] ... 24 more [deployESBProjects] ". [deployESBProjects] [deployESBProjects] [deployESBProjects] [deployESBProjects]
Before executing the command read the whole post!!!!! Otherwise your ESB can be corrupted.
With the following command you can clean up your oraesb schema:
cd $ORACLE_HOME/integration/esb/bin ./reset.sh -DDB_URL=jdbc:oracle:thin:@//db_host:db_port/sid -DDB_USER=oraesb -DDB_PASSWORD=oraesb
WATCH OUT when using this on SOA 10.1.3.4 MLR 8
It looks like the database schema of oraesb is corrupted after the reset.sh script. In our case the ESB deployments failed after this. I ran the sql script form the latest patch again and now everything seems fine.
During deployment this error can occur:
[deployESBProjects] Deployment Attempt Response : [deployESBProjects] [deployESBProjects] Entity Deployment Failed [deployESBProjects] [deployESBProjects] [deployESBProjects] Failed to create Service "ProcesServic e". [deployESBProjects] Ensure that the (a) Repository is available. ( b) The Connection information for the Repository is Valid. Verify the detailed c ause of error if available. Contact Oracle Support if error not fixable. [deployESBProjects] [deployESBProjects] [deployESBProjects]
There is also another problem the BPELSystem in the ESB is gone. Did this post help you in any way can you please leave a comment? This will motivate me writing more posts.
In the EM console of the Oracle Application Server you can connect an OID to an OC4J instance by doing the following:
Click on an oc4j instance - Click on link Administration: Under security you will find Identity Management.
This text is shown:
You can associate an installed Oracle Internet Directory with this OC4J instance. You can then choose to use this Oracle Internet Directory for runtime authentication and authorization for deployed applications.
I assumed that this means that you can associate multiple OID's to different OC4J instances but this is not true. When you change the OID here, it wil change the OID for all OC4J instances on this application server.
When you want to user different OID's for different applications you should put this in the orion-application.xml file of the application.
Did this post help you in any way can you please leave a comment? This will motivate me writing more posts.
When the login of Form-Based Authentication fails because the username/password combination is not correct. The default behavior is the serve the login html page.
But you want to give an error on this page. This can be achieved by putting an Redirection URL with an parameter in the link like this: /login.jsp?LoginError=True
This should be done in the policy manager: Default rules - Authentication Rule - Actions - Authentication Failure - Redirection URL.
Did this post help you in any way can you please leave a comment? This will motivate me writing more posts.
When I tried to change the security provider in the AS console the following error occured in the browser:
Error
An error occurred while attempting to change the Oracle Internet Directory associated with this instance. Please ensure that the OID instance is indeed up and that the connect information provided is correct before retrying. Error invoking method: associateOC4JWithOID on MBean: oc4j:j2eeType=Security,name=SecurityProvider,J2EEApplication=default,J2EEServer=standalone Error invoking method: associateOC4JWithOID on MBean: oc4j:j2eeType=Security,name=SecurityProvider,J2EEApplication=default,J2EEServer=standalone
I ignored this error and continued with the configuration described in http://download-uk.oracle.com/docs/cd/B31017_01/integrate.1013/b28982/service_config.htm#BABIBGFF with the chapter: 2.1.3.2 Task 2: Perform Configuration Procedures.
Error during executing of configure_oid.sh
bpel-grant-privileges: [echo] Granting Server privileges to BPMSystemAdmin role... [java] User [oc4jadmin] does not exist in system.
To find the real reason for this problem you can create an new oc4j container put the logging on FINEST and try to change the security provider.
In the container logging in $ORACLE_HOME/opmn/logs/default_group~[CONTAINER_NAME]~default_group~1.log the following error:
changetype: add objectclass: top objectclass: person objectclass: inetorgperson objectclass: organizationalperson objectclass: orcluser objectclass: orcluserv2 orclactivestartdate: 20090611000000z sn: oc4jadmin cn: oc4jadmin uid: oc4jadmin mail: oc4jadmin description: OC4J administrator user displayname: OC4J administrator userpassword: [PASSWORD] [LDAP: error code 19 - Password Policy Error :9003: GSL_PWDMINLENGTH_EXCP :Your Password must be at least 8 characters long. ] at oracle.security.jazn.util.AssociateOID.uploadDefaultOIDData(AssociateOID.java:471) at oracle.security.jazn.util.AssociateOID.configure(AssociateOID.java:267) at oracle.security.jazn.jmx.SecurityProvider.associateOC4JWithOID(SecurityProvider.java:694) at oracle.oc4j.admin.management.mbeans.SecurityProviderManager.associateOC4JWithOID(SecurityProviderManager.java:1493) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) at java.lang.reflect.Method.invoke(Method.java:585) at sun.reflect.misc.Trampoline.invoke(MethodUtil.java:36) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) at java.lang.reflect.Method.invoke(Method.java:585) at sun.reflect.misc.MethodUtil.invoke(MethodUtil.java:239) at javax.management.modelmbean.RequiredModelMBean.invokeMethod(RequiredModelMBean.java:1071) at javax.management.modelmbean.RequiredModelMBean.invoke(RequiredModelMBean.java:953) at oracle.oc4j.admin.jmx.server.mbeans.model.DefaultModelMBeanImpl.invoke(DefaultModelMBeanImpl.java:700) at com.sun.jmx.mbeanserver.DynamicMetaDataImpl.invoke(DynamicMetaDataImpl.java:213) at com.sun.jmx.mbeanserver.MetaDataImpl.invoke(MetaDataImpl.java:220) at com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.invoke(DefaultMBeanServerInterceptor.java:815) at com.sun.jmx.mbeanserver.JmxMBeanServer.invoke(JmxMBeanServer.java:784) at oracle.oc4j.admin.jmx.server.state.ApplicationStateFilterMBeanServer.invoke(ApplicationStateFilterMBeanServer.java:572) at oracle.oc4j.admin.jmx.ejb.MBeanServerEjbBean.invoke(MBeanServerEjbBean.java:365) ... 24 more Caused by: oracle.ldap.util.UtilException: NamingException encountered during loading of file: $ORACLE_HOME/j2ee/home/jazn/install/oidConfigForOc4j.sbsdn: cn=oc4jadmin,cn=users,dc=test,dc=com
Than I realised that I changed the password policy in the Oracle Internet Directory. This was the reason for the problem. My policy was that the password should be 8 characters long instead of 5.
When I changed this back to the default policy everything worked ok!
Reference: Metalink: 398855.1 Did this post help you in any way can you please leave a comment? This will motivate me writing more posts.
It is not so easy to determine the version of the Oracle BPEL application but I found an note on metalink: 419711.1
In order to find the versions, we have multiple ways for some components:
1. BPEL Process Manager:
We can find the version of BPEL Process Manager from front-end as well as back-end:
a) Finding the version from front-end:
Login to BPEL Console and we find the version on the BPEL Console on the right-hand bottom. The version of BPEL Console is same as BPEL version.
b) Finding the version from back-end:
Execute the obversion.sh located at $ORACLE_HOME/bpel/bin directory. ORACLE_HOME is the location where the SOA Suite is installed.
2. BPEL Repository:
During various stages of installation or upgradation of the BPEL Process Manager or in the process of applying patches to BPEL Process Manager, the Metadata repository would also be upgraded. The version of Metadata version is 2.0.2 or 2.0.3 in 10.1.2.x versions of BPEL Process Manager. The SOA Suite 10.1.3.1.0 version of BPEL Process Manager comes with 2.0.4 version of Metadata repository.
However, some patches would be run against the Metadata repository and we might need to know the versions of the Metadata repository. In such cases, we can use the following SQL to know the version:
SQL> conn orabpel/orabpel;
SQL> SELECT guid FROM version_server;
Reference: metalink note: 419711.1
Did this post help you in any way can you please leave a comment? This will motivate me writing more posts.
If you made a mistake during the configuration of a policy in the policy manager and you locked yourself out of the system it is possible to undo this in the LDAP Directory. Use an LDAP browser/editor (for example: LDAP browser) to find the entry: realm +-o=oblix +---obapp=PSC +-----obname=OBAutoSSO_XXXXXXX (find the one you last changed, normally the last created is added at the bottom)
Change the value of the attribute: obenabled from enabled to disabled. Restart the Access Manager and after that it should be possible to log in.
Did this post help you in any way can you please leave a comment? This will motivate me writing more posts.
If something goes wrong (Empty browser window, no response) during the product setup of the Identity Server/Policy Manager in the browser it is possible to restart the product setup by changing the setup.xml of the product. Set the status Value to incomplete instead of done and you can start over with the product setup.
Location of setup.xml: WebPass: $WEBPASS_HOME/access/oblix/config Identity server: $IDENTITY_HOME/identity/oblix/config
Did this post help you in any way can you please leave a comment? This will motivate me writing more posts.
Creating OC4J instance "oc4j_wsrp"... Set OC4J administrator password for "oc4j_wsrp" (password text will not be displayed as it is entered): Enter password: Confirm password: A new OC4J instance "oc4j_wsrp" is created in the group "default".
wsrp can work with an file based preference store or with an database as preference store. In this example we will user the file based option which is default.
Before we can deploy the wsrp-samples.ear we have to change the file $ORACLE_HOME/j2ee/oc4j_wsrp/config/server.xml import a jar. Under <shared-library name="oracle.wsrp" version="1.0"> add <import-shared-library name="oracle.ws.jaxrpc"/>.
Now unzip the downloaded pdk pdksoftware.zip.
Search for the wsrp-samples.ear (directory: pdk/portlet-container)
When executing the DBMS_UTILITY.COMPILE_SCHEMA procedure, the following errors are given:
ERROR at line 1: ORA-20000: ORA-06512: at "SYS.DBMS_UTILITY", line 347 ORA-24237: object id argument passed to DBMS_UTILITY.INVALIDATE is not legal ORA-06512: at line 1
To check whether SYS has the required privileges, run the following query connected as SYS:
SQL> select username, privilege from user_sys_privs order by privilege;
If SYS does not have the following privileges, then grant them to SYS directly:
grant CREATE ANY DIMENSION to sys; grant CREATE ANY EVALUATION CONTEXT to sys; grant CREATE ANY INDEX to sys; grant CREATE ANY INDEXTYPE to sys; grant CREATE ANY LIBRARY to sys; grant CREATE ANY MATERIALIZED VIEW to sys; grant CREATE ANY OPERATOR to sys; grant CREATE ANY PROCEDURE to sys; grant CREATE ANY RULE to sys; grant CREATE ANY RULE SET to sys; grant CREATE ANY SYNONYM to sys; grant CREATE ANY TRIGGER to sys; grant CREATE ANY TYPE to sys; grant CREATE ANY VIEW to sys;
Did this post help you in any way can you please leave a comment? This will motivate me writing more posts.
![[Valid Atom 1.0]](http://4.bp.blogspot.com/_1DZkSxdocDo/SeRZqmezMfI/AAAAAAAAAI4/fkoNVB7dsv0/s400/valid-atom.png "Validate my Atom 1.0 feed")
Posts
