OAM 10g: Varying Errors Accessing Policy Manager Console In Environment with Firewall and/or Load Balancer (Doc ID 1306815.1)

Last updated on MARCH 08, 2017

Applies to:

COREid Access - Version: 10.1.4 to 10.1.4.3.0 - Release: 10g to
Information in this document applies to any platform.

Symptoms

Various different errors occur when accessing the Oracle Access Manager (OAM) 10g Policy Manager console.

Policy and configuration data is stored in Oracle Internet Directory (OID) LDAP server, which is running in High Availability (HA) setup with two load-balanced OID server nodes connecting to a single backend RDBMS database.

There may or may not be a firewall between Policy Manager and OID, and/or between the OID servers and the OID database.

Immediately after restart of OID and Policy Manager the errors do not occur. They start to occur after a period of inactivity longer than the load balancer and/or firewall idle connection timeout period.

The following errors may be displayed in the Policy Manager console:

The following messages were produced by the product. Please contact your webmaster to fix the problem.
Exception Thrown in UserDB::ReadConfigUIList.
Please verify that the Directory Server is running.

Error: The following messages were produced by the product. Please contact your webmaster to fix the problem.

The Access System (Policy Manager or System Console) has rejected the login request, this could be due to one of the following reasons: (1) The encryption key is missing or out of date (refer to the documentation for more information). (2) The policy or configuration base (in the DS) is different between the Identity System, and Access Systems.

Searching the directory server failed - DSA is unwilling to perform in LoadDBEntrySetSorted()


<> Exception Thrown in UserDB" Error In Access System Console After 10.1.4.2 Patch Installation has been referenced but setting the ldapFilterSizeLimitInBytes parameter did not resolve the issue.


Steps to reproduce

1. Access the Access System Console in a browser at http://PM_hostname.domain:port/access/oblix
2. Click on the Policy Manager link.
3. Login as Access System Administrator user. One of the above errors is displayed in the resulting page.



Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms