My Oracle Support Banner

OAAM Http Url (Not Https) For Loginjumppage Causes Security Warnings (Doc ID 1204078.1)

Last updated on JANUARY 24, 2019

Applies to:

Oracle Adaptive Access Manager - Version to [Release 10g]
Information in this document applies to any platform.


OAAM invokes http://<domain-name>/asa/loginJumpPage.jsp with http (not https). The rest of the asa URLs are https, so the difference would make security warnings appear in customer's browser. This /asa/ URL should be the same as all the other /asa/...URLS in terms of protocol HTTPS or HTTP


If this happens in any Proxy based environment  , see the HTTP Redirect Rules / Configuration in the Proxy in context.

Reason :
Why is that only one URL is found missing https while rest of the URLs for the domain are seen with HTTPS. example : http://<domain_name>/asa/loginJumpPage.jsp . Is there a proxy rule/configuration ?


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document
 --- Sample Code ---

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.