EM 13c: New Administrator Access through LDAP Group to Enterprise Manager 13c Cloud Control Fails with Error: Invalid Username Password

(Doc ID 2369886.1)

Last updated on MARCH 12, 2018

Applies to:

Enterprise Manager Base Platform - Version 13.2.0.0.0 and later
Information in this document applies to any platform.

Symptoms

New users are Unable to login to EM console which are present in ldap group and getting invalid username password

Authentication for Enterprise Manager (EM) 13.2 Cloud control access is configured with LDAP.
New administrators are failing to log in to EM 13.2. The following error is logged in <OMS instance base>/gc_inst/em/EMGC_OMS1/sysman/log/emoms.trc:

2018-03-05 02:08:38,397 [[ACTIVE] ExecuteThread: '31' for queue: 'weblogic.kernel.Default (self-tuning)'] DEBUG auth.EMLoginService isAutoProvisioningEnabled.1441 - found role in Subject matching minimum role: <Role_Name>
2018-03-05 02:08:38,414 [[ACTIVE] ExecuteThread: '31' for queue: 'weblogic.kernel.Default (self-tuning)'] DEBUG auth.EMLoginService doesUserExistInRepos.548 - Did not find user srbhupat in EM repository
2018-03-05 02:08:38,414 [[ACTIVE] ExecuteThread: '31' for queue: 'weblogic.kernel.Default (self-tuning)'] DEBUG auth.EMLoginService doesUserExistInRepos.548 - Did not find user srbhupat in EM repository
2018-03-05 02:08:38,526 [[ACTIVE] ExecuteThread: '31' for queue: 'weblogic.kernel.Default (self-tuning)'] DEBUG auth.EMLoginService _performLogin.1358 - Error
java.sql.SQLException: ORA-20205: Role does not exist: PUBLIC
ORA-06512: at "SYSMAN.EM_USER_MODEL_UI", line 2005




Changes

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms