Double Login Prompt For WebLogic Deployed Application With OAM Integration Configured (Doc ID 1151729.1)

Last updated on MARCH 08, 2017

Applies to:

COREid Access - Version: 10.1.4.3.0 and later   [Release: No Release Description and later ]
Information in this document applies to any platform.

Symptoms

Users see double login prompt when accessing Oracle Access Manager (OAM) protected application deployed in WebLogic Server.

The first login prompt is from OAM then the application prompts for login again.

The Oracle Access Manager (OAM) 10.1.4.3 Identity Asserter Provider has been configured in Fusion Middle Ware (FMW) WebLogic Server in order to integrate WebLogic-deployed applications with OAM for Single Sign-On (SSO). An LDAP Authenticator provider has also been configured in WebLogic, configured to use the same LDAP Server as OAM for User Data.

A proxy web server has been configured to serve WebLogic application requests. OAM WebGate has been also been installed on the proxy server and OAM has been configured to protect the application resource.
 
Steps to reproduce

1. Access the WebLogic-deployed application via the proxy server at http://proxyhostname.domain:port/myapp/faces/secure.jspx
2. User is redirected to the OAM login page.
3. User submits valid OAM credentials.
4. User is redirected to the application login page (or Basic login popup appears if application is configured to use Basic login method).

Expected behaviour: the application login page should not be displayed. The user should be automatically authenticated to the application with the OAM credentials.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms