3 Replies Latest reply: Aug 22, 2013 12:41 AM by 987898 RSS

    Failed to create identity store service instance idstore.ldap.provider

    dsantane
      Hi Experts,Not able to start managed server. Added debug for JPS policy in startup script: but I am not able to attach debug in this post.
      <Sep 4, 2012 6:16:15 AM MST> <Error> <Security> <BEA-090892> <The loading of OPSS java security policy provider failed due to exception, see the exception stack trace or the server log file for root cause. If still see no obvious cause, enable the debug flag -Djava.security.debug=jpspolicy to get more information. Error message: JPS-00056: Failed to create identity store service instance idstore.ldap.provider:idstore.ldap. Reason: weblogic.security.service.SecurityServiceRuntimeException: Invalid host or port for admin server..>
      <Sep 4, 2012 6:16:15 AM MST> <Critical> <WebLogicServer> <BEA-000386> <Server subsystem failed. Reason: weblogic.security.SecurityInitializationException: The loading of OPSS java security policy provider failed due to exception, see the exception stack trace or the server log file for root cause. If still see no obvious cause, enable the debug flag -Djava.security.debug=jpspolicy to get more information. Error message: JPS-00056: Failed to create identity store service instance idstore.ldap.provider:idstore.ldap. Reason: weblogic.security.service.SecurityServiceRuntimeException: Invalid host or port for admin server..
      weblogic.security.SecurityInitializationException: The loading of OPSS java security policy provider failed due to exception, see the exception stack trace or the server log file for root cause. If still see no obvious cause, enable the debug flag -Djava.security.debug=jpspolicy to get more information. Error message: JPS-00056: Failed to create identity store service instance idstore.ldap.provider:idstore.ldap. Reason: weblogic.security.service.SecurityServiceRuntimeException: Invalid host or port for admin server..
      at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.loadOPSSPolicy(CommonSecurityServiceManagerDelegateImpl.java:1402)
      Caused By: oracle.security.jps.JpsRuntimeException: JPS-00056: Failed to create identity store service instance idstore.ldap.provider:idstore.ldap. Reason: weblogic.security.service.SecurityServiceRuntimeException: Invalid host or port for admin server..
        • 1. Re: Failed to create identity store service instance idstore.ldap.provider
          Kalyan Pasupuleti-Oracle
          Hi,


          While configuring the Active Directory authenticator, if we select some other authenticator, say LDAPAuthenticator, we might see the issue. Reviewing the config.xml file, you will notice that though we had configured the Active Directory, the provider type was ldap-authenticator:
          <sec:authentication-provider xsi:type="wls:ldap-authenticatorType">
          <sec:name>ADProvider</sec:name>

          NOTE: xsi:type="wls:ldap-authenticatorType"

          to solve this issue find the suggestions:


          While configuring the Active Directory authenticator, make sure you select the ActiveDirectoryAuthenticator. Alternatively, once the issue has already occurred, you may try modifying the config.xml as follows:

          From
          <sec:authentication-provider xsi:type="wls:ldap-authenticatorType">
          <sec:name>ADProvider</sec:name>

          to
          sec:authentication-provider xsi:type="wls:active-directory-authenticatorType">
          <sec:name>ADProvider</sec:name>

          should resolve the issue.


          Regards,
          Kal
          • 2. Re: Failed to create identity store service instance idstore.ldap.provider
            1479aadc-315a-42df-8f6d-b2934613a500

            Hi,

             

            I had same issue today and noticed that the Managed Server required valid weblogic server user name and password before start.

             

            Solution:

            update script startManagedWebLogic.cmd with

            set user name and password in

            set WLS_USER=weblogic ADMIN USER NAME

            set WLS_PW=weblogic ADMIN PASSWORD


            *copy folder "security" from AdminServer to  ManagedServer.


            *Go to window command prompt and start Managed Server.


            Example:

            D:\Oracle\Middleware\wls_home\user_projects\domains\domain1\bin>startManagedWebLogic.cmd SOA_Server_RAPS http://localhost:7001

            Output:

            <22/06/2013 1:30:18 AM EST> <Notice> <Server> <BEA-002613> <Channel "Default[2]" is now listening on 0:0:0:0:0:0:0:1:7003 for protocols iiop, t3, ldap, snmp, http.>

            <22/06/2013 1:30:18 AM EST> <Notice> <WebLogicServer> <BEA-000332> <Started WebLogic Managed Server "SOA_Server_RAPS" for domain "domain1" running in Development Mode>

            <22/06/2013 1:30:22 AM EST> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to RUNNING>

            <22/06/2013 1:30:22 AM EST> <Notice> <WebLogicServer> <BEA-000360> <Server started in RUNNING mode>

             

            Cheer's

            Prahallad.

            • 3. Re: Failed to create identity store service instance idstore.ldap.provider
              987898

              Correct solution to the issue.  Thank you for posting.