Active Directory Users Cannot Login to Custom WebCenter/ADF Applications (Doc ID 1070493.1)

Last updated on OCTOBER 01, 2022

Applies to:

Symptoms

Integrated Active Directory with a custom WebCenter Application per the documentation:
23.3.1 Reassociating the Identity Store with an External LDAP
Oracle Fusion Middleware Administrator's Guide for Oracle WebCenter 11g Release 1 (11.1.1)
Part Number E12405-04

When trying to login to the custom WebCenter Portal application with a user that only exists in Active Directory, the authentication fails.
Only users from Embedded LDAP can login to the custom WebCenter Portal application.  However, the same users from Active Directory can login to OWC Discussions.

AD Authentication is the first provider in the security realm and all providers are set to Sufficient.  When looking at the security realm from WLS Console all of the users from the Active Directory Authenticator are displayed properly.

The same problem happens with a simple ADF Application with ADF Security enabled.

Steps to reproduce the problem

1. Integrate Active Directory with WebCenter Portal using the following documentation:

23.3.1 Reassociating the Identity Store with an External LDAP
Oracle Fusion Middleware Administrator's Guide for Oracle WebCenter 11g Release 1 (11.1.1)
Part Number E12405-04

a. Add a new AD Provider.
b. Change the control flag of all providers to Sufficient.
c. Change the order of providers and put the AD Provider into first place.
d. Create an admin user for forum application
e. Change jps-config of Admin Server

2. Create a custom WebCenter Portal or ADF application with security enabled

3. Deploy the application to the container

4. Try to login with AD users to your application and notice the login fails.
Notice that the user can login to OWC Discussions.

Changes

Cause

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.