Configuring a Keystore in UCM 11g for Use With Web Services (Doc ID 1334029.1)

Last updated on MAY 01, 2017

Applies to:

Oracle WebCenter Content - Version 11.1.1.3.0 and later
Information in this document applies to any platform.

Goal

In Universal Content Management (UCM) 11g, the GenericSoapService (GenericSoapPort) Web service can be used to call UCM services.  By default, the service does not have WS-Security applied, but WS-Security can be set through the use of web service policies (WS-Policy). Security policies can be set to web services in order to define their security protocol. In particular, the Oracle UCM web services support OWSM policies.

Two general classes of policies are supported: username-token, and SAML. The following is a list of supported OWSM policies:

If one of these policies apply to the UCM web service, a keystore must be created. 

A "missing keystore" error will occur when calling web services using basic auth headers. If the GenericSoapService has a policy applied (e.g. oracle/wss11_username_token_with_message_protection_service_policy), then a keystore needs to be created on the UCM server and the client needs the key as well.

WSM-00101 : The specified keystore file <path> cannot be found; it either does not exist or its path is not included in the application classpath.


<Jun 23, 2011 11:28:45 AM CDT> <Error> <oracle.wsm.resources.enforcement> <WSM-07503> <Failure in Oracle WSM Agent processFault, category= security, function=agent.function.service, application=Oracle UCM Web Services, composite=null, modelObj=GenericSoapService, policy=null, policyVersion=null, assertionName=null.
oracle.wsm.common.sdk.WSMException: GenericFault : generic error
at oracle.wsm.security.policy.scenario.executor.SecurityScenarioExecutor.initialize(SecurityScenarioExecutor.java:479)
...
...
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:207)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:176)
Caused By: oracle.wsm.security.SecurityException: WSM-00101 : The specified keystore file /opt/middleware/user_projects/domains/dev5_domain/config/fmwconfig/default-keystore.jks cannot be found; it either does not exist or its path is not included in the application classpath.
at oracle.wsm.security.jps.WsmLegacyKeyStore.<init>(WsmLegacyKeyStore.java:219)
at oracle.wsm.security.jps.WsmKeyStoreFactory.getKeyStore(WsmKeyStoreFactory.java:60)

 

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms