This discussion is archived
3 Replies Latest reply: Aug 21, 2013 10:41 PM by 987898 RSS

Failed to create identity store service instance idstore.ldap.provider

deepshri - oracle Newbie
Currently Being Moderated
Hi Experts,Not able to start managed server. Added debug for JPS policy in startup script: but I am not able to attach debug in this post.
<Sep 4, 2012 6:16:15 AM MST> <Error> <Security> <BEA-090892> <The loading of OPSS java security policy provider failed due to exception, see the exception stack trace or the server log file for root cause. If still see no obvious cause, enable the debug flag -Djava.security.debug=jpspolicy to get more information. Error message: JPS-00056: Failed to create identity store service instance idstore.ldap.provider:idstore.ldap. Reason: weblogic.security.service.SecurityServiceRuntimeException: Invalid host or port for admin server..>
<Sep 4, 2012 6:16:15 AM MST> <Critical> <WebLogicServer> <BEA-000386> <Server subsystem failed. Reason: weblogic.security.SecurityInitializationException: The loading of OPSS java security policy provider failed due to exception, see the exception stack trace or the server log file for root cause. If still see no obvious cause, enable the debug flag -Djava.security.debug=jpspolicy to get more information. Error message: JPS-00056: Failed to create identity store service instance idstore.ldap.provider:idstore.ldap. Reason: weblogic.security.service.SecurityServiceRuntimeException: Invalid host or port for admin server..
weblogic.security.SecurityInitializationException: The loading of OPSS java security policy provider failed due to exception, see the exception stack trace or the server log file for root cause. If still see no obvious cause, enable the debug flag -Djava.security.debug=jpspolicy to get more information. Error message: JPS-00056: Failed to create identity store service instance idstore.ldap.provider:idstore.ldap. Reason: weblogic.security.service.SecurityServiceRuntimeException: Invalid host or port for admin server..
at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.loadOPSSPolicy(CommonSecurityServiceManagerDelegateImpl.java:1402)
Caused By: oracle.security.jps.JpsRuntimeException: JPS-00056: Failed to create identity store service instance idstore.ldap.provider:idstore.ldap. Reason: weblogic.security.service.SecurityServiceRuntimeException: Invalid host or port for admin server..
  • 1. Re: Failed to create identity store service instance idstore.ldap.provider
    Kalyan Pasupuleti-Oracle Expert
    Currently Being Moderated
    Hi,


    While configuring the Active Directory authenticator, if we select some other authenticator, say LDAPAuthenticator, we might see the issue. Reviewing the config.xml file, you will notice that though we had configured the Active Directory, the provider type was ldap-authenticator:
    <sec:authentication-provider xsi:type="wls:ldap-authenticatorType">
    <sec:name>ADProvider</sec:name>

    NOTE: xsi:type="wls:ldap-authenticatorType"

    to solve this issue find the suggestions:


    While configuring the Active Directory authenticator, make sure you select the ActiveDirectoryAuthenticator. Alternatively, once the issue has already occurred, you may try modifying the config.xml as follows:

    From
    <sec:authentication-provider xsi:type="wls:ldap-authenticatorType">
    <sec:name>ADProvider</sec:name>

    to
    sec:authentication-provider xsi:type="wls:active-directory-authenticatorType">
    <sec:name>ADProvider</sec:name>

    should resolve the issue.


    Regards,
    Kal
  • 2. Re: Failed to create identity store service instance idstore.ldap.provider
    1479aadc-315a-42df-8f6d-b2934613a500 Newbie
    Currently Being Moderated

    Hi,

     

    I had same issue today and noticed that the Managed Server required valid weblogic server user name and password before start.

     

    Solution:

    update script startManagedWebLogic.cmd with

    set user name and password in

    set WLS_USER=weblogic ADMIN USER NAME

    set WLS_PW=weblogic ADMIN PASSWORD


    *copy folder "security" from AdminServer to  ManagedServer.


    *Go to window command prompt and start Managed Server.


    Example:

    D:\Oracle\Middleware\wls_home\user_projects\domains\domain1\bin>startManagedWebLogic.cmd SOA_Server_RAPS http://localhost:7001

    Output:

    <22/06/2013 1:30:18 AM EST> <Notice> <Server> <BEA-002613> <Channel "Default[2]" is now listening on 0:0:0:0:0:0:0:1:7003 for protocols iiop, t3, ldap, snmp, http.>

    <22/06/2013 1:30:18 AM EST> <Notice> <WebLogicServer> <BEA-000332> <Started WebLogic Managed Server "SOA_Server_RAPS" for domain "domain1" running in Development Mode>

    <22/06/2013 1:30:22 AM EST> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to RUNNING>

    <22/06/2013 1:30:22 AM EST> <Notice> <WebLogicServer> <BEA-000360> <Server started in RUNNING mode>

     

    Cheer's

    Prahallad.

  • 3. Re: Failed to create identity store service instance idstore.ldap.provider
    987898 Newbie
    Currently Being Moderated

    Correct solution to the issue.  Thank you for posting.

Legend

  • Correct Answers - 10 points
  • Helpful Answers - 5 points