OBIEE 12c: [OBI-SEC-00500] Identity store provider error; SSLHandshakeException: No appropriate protocol ; LDAP Error 2 : simple bind failed after Enabling SSL, Authentication fails
(Doc ID 2661381.1)
Last updated on APRIL 05, 2023
Applies to:
Business Intelligence Server Enterprise Edition - Version 12.2.1.3.0 and laterInformation in this document applies to any platform.
Symptoms
After enabling SSL, login to OBIEE fails.
Problem Description
---------------------------------------------------
Enabled SSL in obiee . Followed (Doc ID 2188982.1)
Completed until Step 7. After Steps 7, the services come up fine but login to https://servername.com:9503/analytics errors out.
OBIEE 12.2.1.4.0 installed on AIX with IBM JDK 1.8.0_144.
LDAP users shows up in the users and groups tab in weblogic console. Also login to weblogic console with LDAP user works ok.
The issue is specific to AIX and JDK version used.
Error Codes
---------------------------------------------------
[bi_server1] [NOTIFICATION] [] [oracle.bi.security.service] [tid: [ACTIVE].ExecuteThread: '34' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: xxxxx.xxxxx.xxxxx,0:1:1:6:1] [APP: bi-security] [partition-name: DOMAIN] [tenant-name: GLOBAL] [J2EE_APP.name: bi-security] [J2EE_MODULE.name: bi-security] [WEBSERVICE.name: SecurityWebService] [WEBSERVICE_PORT.name: SecurityWebServicePort] [SI-Key: ssi] [BISecurity] [oracle.bi.security.centaurus.GetSubjectAction::execute] [OBI-SEC-00500] Identity store provider error[[
oracle.bi.security.centaurus.CentaurusException: [BISecurity] [oracle.bi.security.centaurus.GetSubjectAction::execute] [OBI-SEC-00500] Identity store provider error
at oracle.bi.security.centaurus.GetSubjectAction.execute(GetSubjectAction.java:64)
at oracle.bi.security.centaurus.CentaurusService.getSubject(CentaurusService.java:142)
at oracle.bi.security.ws.runtime.GetAuthenticatedUserAction.execute(GetAuthenticatedUserAction.java:59)
at oracle.bi.security.ws.runtime.GetAuthenticatedUserAction.execute(GetAuthenticatedUserAction.java:17)
**********
Caused by: javax.naming.CommunicationException: simple bind failed: xxx.xx.xx.xx:9503 [Root exception is javax.net.ssl.SSLHandshakeException: No appropriate protocol, may be no appropriate cipher suite specified or protocols are deactivated]
at com.sun.jndi.ldap.LdapClient.authenticate(LdapClient.java:231)
at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2803)
at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:331)
at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:204)
at com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(LdapCtxFactory.java:222)
at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:165)
at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(LdapCtxFactory.java:95)
at javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:695)
at javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:324)
at javax.naming.InitialContext.init(InitialContext.java:255)
at javax.naming.ldap.InitialLdapContext.<init>(InitialLdapContext.java:165)
************
at weblogic.work.ExecuteThread.run(ExecuteThread.java:355)
Caused by: oracle.igf.ids.IDSException: Operations error: entity= op=find mesg=
at oracle.igf.ids.arisid.ArisIdServiceManager.findEntity(ArisIdServiceManager.java:1712)
at oracle.igf.ids.UserManager.searchUser(UserManager.java:184)
at oracle.bi.security.centaurus.IDSIdentityStoreProvider.getUserProfile(IDSIdentityStoreProvider.java:465)
... 64 more
Caused by: oracle.igf.ids.arisid.ArisIdConnectionException: Operations error: entity= op=find mesg= AdditionalInfo: LDAP Error 2 : simple bind failed: xxx.xx.xx.xx:9503
at com.oracle.ovd.arisid.OvdIdsStackProvider.mapResultCode(OvdIdsStackProvider.java:776)
at com.oracle.ovd.arisid.OvdIdsStackProvider.doFind(OvdIdsStackProvider.java:1336)
at com.oracle.ovd.arisid.ArisIdStackProvider.doFind(ArisIdStackProvider.java:172)
at org.openliberty.arisid.Interaction.doFind(Interaction.java:1022)
at oracle.igf.ids.arisid.ArisIdServiceManager.findEntity(ArisIdServiceManager.java:1628)
... 66 more
Caused by: oracle.ods.virtualization.service.VirtualizationException: oracle.ods.virtualization.engine.util.DirectoryException: LDAP Error 2 : simple bind failed: xxx.xx.xx.xx:9503
at oracle.ods.virtualization.operation.SearchOperation.process(SearchOperation.java:209)
at oracle.ods.virtualization.operation.SearchOperation.process(SearchOperation.java:47)
at oracle.ods.virtualization.service.DefaultVirtualizationSession.processOperation(DefaultVirtualizationSession.java:403)
at oracle.ods.virtualization.service.DefaultVirtualizationSession.search(DefaultVirtualizationSession.java:190)
at com.oracle.ovd.arisid.OvdIdsStackProvider.doFind(OvdIdsStackProvider.java:1327)
Changes
Installed OBIEE 12.2.1.4 on AIX and configured it for SSL configuration.
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Changes |
| Cause |
| Solution |