Categories
- All Categories
- 15 Oracle Analytics Sharing Center
- 14 Oracle Analytics Lounge
- 211 Oracle Analytics News
- 41 Oracle Analytics Videos
- 15.7K Oracle Analytics Forums
- 6.1K Oracle Analytics Idea Labs
- Oracle Analytics User Groups
- 77 Oracle Analytics Trainings
- 14 Oracle Analytics Data Visualizations Challenge
- Find Partners
- For Partners
Not Able to login to EM and Console with weblogic user.
Hi All,
The default application Roles got deleted by mistake from EM. And after that I am not able to login to EM and Console with the only admin user weblogic. But I am able to login to analytics.
is there any way to recover the Roles.?
Thanks,
Abinash
Answers
-
You only deleted the OBIEE application roles from EM?
Because the access to console isn't based on that, so if you lost access to console too you maybe did something else (worse)?
0 -
Thanks @Gianni Ceresa
Actually one of my team mate did all those things without having the basic knowledge of weblogic LDAP concept. Just now I got to know that even BISystemUser has been deleted.
Thanks,
Abinash0 -
Did AppRoles get deleted or WLS groups?
Bwcause BISystemUser is a WLS user so it would "make sense" if both deletes happened in the same place.
0 -
I am getting this error in bi_server1-diagnostic.log files
[2017-02-06T16:53:21.896+05:30] [bi_server1] [ERROR] [OWS-04115] [oracle.webservices.service] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: b989a9f9cd351546:-2698651e:159fdd5efda:-8000-00000000000405d0,0:1:1:6:1] [APP: bisecurity#11.1.1] An error occurred for port: {http://oracle/bi/security/}SecurityWebServicePort: oracle.webservices.provider.ProviderException: javax.xml.ws.WebServiceException: BI Security Service Access Denied - credentials supplied in SOAP Message header failed authentication.
0 -
Abinash2707 wrote:... I got to know that even BISystemUser has been deleted.
Do you have a backup?
First you unplug the PC of your team mate from the network, then you restore a backup of the Weblogic files with the internal LDAP etc.
At least you go back to a known status instead of discovering missing pieces one at a time.
0 -
You have to find out "WHERE did WHAT get deleted?"
Are the WLS users stil there? Are the WLS groups still there? Are the WLS users still in the rights groups?
Are the EM approles stilll there? Are the approles still tied to the appropriate WLS principals?
0 -
I am also getting this error from AdminServer-diagnostic.log file
[ERROR] [J2EE JMX-46336] [] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: weblogic] [ecid: b989a9f9cd351546:-4f729c60:159fdcf2134:-8000-0000000000005784,0] [DSID: 0000LcJGPQQ4ul__xPh8iW1O^iKb00000b] MBean operation access denied. [[
MBean: com.oracle.jps:type=JpsAdminPolicyStore
Operation: checkRole(java.lang.String)
Detail: Access denied. Required roles: Admin, Operator, Monitor, executing subject: principals=[BIAdministrators, weblogic] java.lang.SecurityException: Access denied. Required roles: Admin, Operator, Monitor, executing subject: principals=[BIAdministrators, weblogic]
0 -
Yes. I get that. But you must do what I told you above. Because those are the areas which CONTAIN what forces that error.
0 -
Hi Christian,
As I am not able to login to both EM and Console, so unable to check the WLS Users and Groups and EM AppRoles also.
But Still I checked in system-jazn-data.xml and all the Roles are available there.
Thanks
Abinash
0 -
Then the problem's in the WLS LDAP. Best restore the ldif of your last valid server backup if you don't feel up to "hacking the Gibbson" and modify it manually.
0
