OBIEE12c: Login BIEE Failed with ReadOnlySQLAuthenticator Authentication and MD5 Password Encryption (Doc ID 2222998.1)

Last updated on FEBRUARY 01, 2017

Applies to:

Business Intelligence Server Enterprise Edition - Version 12.2.1.2.0 and later
Information in this document applies to any platform.

Symptoms

You configure ReadOnlySQLAuthenticator authentication and use your own MD5 digest encrypted algorithm to generate ciphertext. However, after the configuration, user can not log into BIEE. The BIEE login screen displays the following error:

Unable to sign in. An invalid Username or Password was entered

In obis1-diagnostic.log file, you can see the following errors:

[2016-12-28T14:00:58.956+08:00] [OBIS] [ERROR:1] ... [nQSError: 13057] Error From BI Security Service: oracle.webservices.provider.ProviderException: javax.xml.ws.WebServiceException: [OBI-SEC-00111] FailedAuthentication: BI Security access is denied - web service credentials are invalid.. [[

In bi_server1-diagnostic.log log file, you can see the errors such as:

[2016-12-28T14:01:03.548+08:00] [bi_server1] [ERROR] [] [oracle.webservices.service] [tid: [ACTIVE].ExecuteThread: '18' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: bfba0200-3345-488e-9a25-c55b535a80c4-0000016c,0] [APP: bi-security] [partition-name: DOMAIN] [tenant-name: GLOBAL] [SI-Key: ssi] The following port error occurred: {http://oracle/bi/security/ws/}SecurityWebServicePort: oracle.webservices.provider.ProviderException: javax.xml.ws.WebServiceException: [OBI-SEC-00111] FailedAuthentication: BI Security access is denied - web service credentials are invalid.。[2016-12-28T14:01:07.546+08:00] [bi_server1] [NOTIFICATION] [OBI-SEC-00020] [oracle.bi.security.authentication] [tid: [ACTIVE].ExecuteThread: '13' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: bfba0200-3345-488e-9a25-c55b535a80c4-00000173,0] [APP: bi-security] [partition-name: DOMAIN] [tenant-name: GLOBAL] [J2EE_APP.name: bi-security] [J2EE_MODULE.name: bi-security] [WEBSERVICE.name: SecurityWebService] [WEBSERVICE_PORT.name: SecurityWebServicePort] [SI-Key: ssi] The specified user credentials could not be authenticated.[[
javax.security.auth.login.LoginException: [Security:090302]Authentication Failed: User specified user denied
at oracle.security.jps.internal.jaas.module.authentication.JpsUserAuthenticationLoginModule.login(JpsUserAuthenticationLoginModule.java:82)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:498)
at javax.security.auth.login.LoginContext.invoke(LoginContext.java:755)
at javax.security.auth.login.LoginContext.access$000(LoginContext.java:195)
at javax.security.auth.login.LoginContext$4.run(LoginContext.java:682)
at javax.security.auth.login.LoginContext$4.run(LoginContext.java:680)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:680)
at javax.security.auth.login.LoginContext.login(LoginContext.java:587)
at oracle.bi.security.subject.SubjectAuthenticator.authenticateUserCredentials(SubjectAuthenticator.java:80)
at oracle.bi.security.handler.ServiceAuthorizationHandler.lambda$authenticate$32(ServiceAuthorizationHandler.java:301)
at java.security.AccessController.doPrivileged(Native Method)
at oracle.bi.security.handler.ServiceAuthorizationHandler.authenticate(ServiceAuthorizationHandler.java:302)
at oracle.bi.security.handler.ServiceAuthorizationHandler.checkCredentialsHeader(ServiceAuthorizationHandler.java:265)
at oracle.bi.security.handler.ServiceAuthorizationHandler.handleMessage(ServiceAuthorizationHandler.java:147)
at oracle.bi.security.handler.ServiceAuthorizationHandler.handleMessage(ServiceAuthorizationHandler.java:66)
at oracle.j2ee.ws.common.handlers.HandlerChainInvoker.callProtocolHandlers(HandlerChainInvoker.java:771)
at oracle.j2ee.ws.common.handlers.HandlerChainInvoker.internalCallHandlers(HandlerChainInvoker.java:478)
at oracle.j2ee.ws.common.handlers.HandlerChainInvoker.callHandlers(HandlerChainInvoker.java:403)
at oracle.j2ee.ws.server.jaxws.ServiceEndpointRuntime.processMessage(ServiceEndpointRuntime.java:210)
at oracle.j2ee.ws.server.jaxws.JAXWSRuntimeDelegate.processMessage(JAXWSRuntimeDelegate.java:498)
at oracle.j2ee.ws.server.provider.ProviderProcessor.doEndpointProcessing(ProviderProcessor.java:1355)
at oracle.j2ee.ws.server.WebServiceProcessor.invokeEndpointImplementation(WebServiceProcessor.java:1397)
at oracle.j2ee.ws.server.provider.ProviderProcessor.doRequestProcessingPhaseTwo(ProviderProcessor.java:711)
at oracle.j2ee.ws.server.WebServiceProcessor.doRequestProcessing(WebServiceProcessor.java:691)
at oracle.j2ee.ws.server.WebServiceProcessor.processRequest(WebServiceProcessor.java:248)
at oracle.j2ee.ws.server.WebServiceProcessor.doService(WebServiceProcessor.java:212)
at oracle.j2ee.ws.server.WebServiceServlet.doService(WebServiceServlet.java:696)
at oracle.j2ee.ws.server.WebServiceServlet.doPost(WebServiceServlet.java:534)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:707)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:790)
at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:286)
at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:260)
at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:137)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:350)
at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:25)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:78)
at oracle.bi.security.filter.BISecuritySOAPFilter.doFilter(BISecuritySOAPFilter.java:69)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:78)
at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:141)
at java.security.AccessController.doPrivileged(Native Method)
at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:315)
at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUtil.java:650)
at oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.java:124)
at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:232)
at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:94)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:78)
at oracle.dms.servlet.DMSServletFilter.doFilter(DMSServletFilter.java:248)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:78)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.wrapRun(WebAppServletContext.java:3683)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3649)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:326)
at weblogic.security.service.SecurityManager.runAsForUserCode(SecurityManager.java:197)
at weblogic.servlet.provider.WlsSecurityProvider.runAsForUserCode(WlsSecurityProvider.java:203)
at weblogic.servlet.provider.WlsSubjectHandle.run(WlsSubjectHandle.java:71)
at weblogic.servlet.internal.WebAppServletContext.doSecuredExecute(WebAppServletContext.java:2433)
at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2281)
at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2259)
at weblogic.servlet.internal.ServletRequestImpl.runInternal(ServletRequestImpl.java:1691)
at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1651)
at weblogic.servlet.provider.ContainerSupportProviderImpl$WlsRequestExecutor.run(ContainerSupportProviderImpl.java:270)
at weblogic.invocation.ComponentInvocationContextManager._runAs(ComponentInvocationContextManager.java:348)
at weblogic.invocation.ComponentInvocationContextManager.runAs(ComponentInvocationContextManager.java:333)
at weblogic.work.LivePartitionUtility.doRunWorkUnderContext(LivePartitionUtility.java:54)
at weblogic.work.PartitionUtility.runWorkUnderContext(PartitionUtility.java:41)
at weblogic.work.SelfTuningWorkManagerImpl.runWorkUnderContext(SelfTuningWorkManagerImpl.java:640)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:406)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:346)
Caused by: oracle.security.jps.internal.jaas.module.AuthenticationException: [Security:090302]Authentication Failed: User specified user denied

...

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms