This discussion is archived
5 Replies Latest reply: Nov 27, 2012 11:21 PM by 974115 RSS

using more than one authentication provider

974115 Newbie
Currently Being Moderated
We need both users in WebLogic Authentication Provider and LDAP provider which we have set up to be able to log into BPM workspace, but only users in the first provider on the list can successfully login. What should the sequence of the providers and their control flags be?
  • 1. Re: using more than one authentication provider
    RaviJegga Expert
    Currently Being Moderated
    Hi
    NO. There is Nothing you can do, to make the users from both the Providers login into Workspace. A very complex work around is totally build your own custom authenticator, but I still doubt if that also works. Please see this below post for more details.

    Weblogic administrator account is inactive after enabling DB Authenticator

    Thanks
    Ravi Jegga
  • 2. Re: using more than one authentication provider
    BillWallen Explorer
    Currently Being Moderated
    Another option is to leverage Oracle Virtual Directory (OVD) and virtualize multiple repositories into one provider. There is a licensing concern with OVD as it does not have a restricted-use facility.
  • 3. Re: using more than one authentication provider
    974115 Newbie
    Currently Being Moderated
    hi Bill,
    Thanks for your reply.
    Can you give me more explanation on how to leverage OVD, or a link to help me with that?
    Thanks
  • 4. Re: using more than one authentication provider
    BillWallen Explorer
    Currently Being Moderated
    OVD - http://www.oracle.com/technetwork/middleware/id-mgmt/index-093158.html
    Docs - http://docs.oracle.com/cd/E23943_01/oid.1111/e10046/toc.htm
  • 5. Re: using more than one authentication provider
    974115 Newbie
    Currently Being Moderated
    Hi,
    we have installed OVD and created an adapter to connect to our Active Directory. Then in console, we defined a provider to connect to OVD. we can see the users in console but none of those users can sign into BPM workspace and we get the following error:

    Service error.
    Internal Error; Service error occurs in IdentityService in method lookupUser.
    Refer to the log file that is configured for oracle.soa.services.identity for mo
    re details on this error and contact Oracle Support Services

    at oracle.bpel.services.identity.client.AbstractIdentityServiceClient.lo
    okupUser(AbstractIdentityServiceClient.java:195)
    at oracle.bpm.papi.ora.mgr.OrganizationManager.lookupParticipant(Organiz
    ationManager.java:51)
    at oracle.bpm.papi.ora.mgr.OrganizationManager.lookupParticipant(Organiz
    ationManager.java:41)
    at oracle.bpm.papi.ora.ProcessServiceSessionAdapter.<init>(ProcessServic
    eSessionAdapter.java:183)
    at oracle.bpm.papi.ora.ProcessServiceAdapter.createSession(ProcessServic
    eAdapter.java:146)
    at oracle.bpm.workspace.adf.security.WorkspaceLoginBean.initPrincipal(Wo
    rkspaceLoginBean.java:112)
    at oracle.bpm.web.security.LoginBean.initSSOSession(LoginBean.java:110)
    at oracle.bpm.web.security.AuthenticationUtil.authenticateModule(Authent
    icationUtil.java:190)
    at oracle.bpm.web.security.faces.AuthenticationPhaseListener.authenticat
    e(AuthenticationPhaseListener.java:71)
    at oracle.bpm.web.security.faces.AuthenticationPhaseListener.authenticat
    ePhase(AuthenticationPhaseListener.java:61)
    at oracle.bpm.web.security.faces.AuthenticationPhaseListener.afterPhase(
    AuthenticationPhaseListener.java:53)
    at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl._executePhase(L
    ifecycleImpl.java:472)
    at oracle.adfinternal.view.faces.lifecycle.LifecycleImpl.execute(Lifecyc
    leImpl.java:194)
    at javax.faces.webapp.FacesServlet.service(FacesServlet.java:265)
    at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run
    (StubSecurityHelper.java:227)
    at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecuri
    tyHelper.java:125)
    at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.jav
    a:301)
    at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
    va:56)
    at oracle.help.web.rich.OHWFilter.doFilter(Unknown Source)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
    va:56)
    at oracle.adf.model.servlet.ADFBindingFilter.doFilter(ADFBindingFilter.j
    ava:205)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
    va:56)
    at oracle.adfinternal.view.faces.webapp.rich.RegistrationFilter.doFilter
    (RegistrationFilter.java:106)
    at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterL
    istChain.doFilter(TrinidadFilterImpl.java:446)
    at oracle.adfinternal.view.faces.activedata.AdsFilter.doFilter(AdsFilter
    .java:60)
    at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterL
    istChain.doFilter(TrinidadFilterImpl.java:446)
    at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl._doFilt
    erImpl(TrinidadFilterImpl.java:271)
    at org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl.doFilte
    r(TrinidadFilterImpl.java:177)
    at org.apache.myfaces.trinidad.webapp.TrinidadFilter.doFilter(TrinidadFi
    lter.java:92)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
    va:56)
    at oracle.adf.library.webapp.LibraryFilter.doFilter(LibraryFilter.java:1
    79)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
    va:56)
    at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:119)

    at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:31
    5)
    at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUt
    il.java:442)
    at oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.jav
    a:103)
    at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:1
    71)
    at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:71)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
    va:56)
    at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:119)

    at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:31
    5)
    at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUt
    il.java:442)
    at oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.jav
    a:103)
    at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:1
    71)
    at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:71)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
    va:56)
    at oracle.dms.servlet.DMSServletFilter.doFilter(DMSServletFilter.java:13
    9)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
    va:56)
    at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:119)

    at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:31
    5)
    at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUt
    il.java:442)
    at oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.jav
    a:103)
    at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:1
    71)
    at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:71)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
    va:56)
    at weblogic.servlet.internal.RequestEventsFilter.doFilter(RequestEventsF
    ilter.java:27)
    at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.ja
    va:56)
    ... 9 more
    Caused by: oracle.bpel.services.workflow.client.WorkflowServiceClientException:
    javax.xml.ws.WebServiceException: java.lang.RuntimeException: javax.xml.soap.SOA
    PException: Error parsing envelope: most likely due to an invalid SOAP message.:
    Illegal character ((CTRL-CHAR, code 18))
    at [row,col {unknown-source}]: [1,281]




    what should we do to resolve this problem?
    thanks

    Edited by: Maisie on Nov 27, 2012 11:21 PM

Legend

  • Correct Answers - 10 points
  • Helpful Answers - 5 points