Issue when Microsoft Active Directory Application Mode (ADAM) Integrates with WLS Using Active Directory Authentication Security Provider (Doc ID 1342884.1)

Last updated on FEBRUARY 11, 2017

Applies to:

Oracle Weblogic Server - Version 9.0 and later
Information in this document applies to any platform.

Symptoms

When we try to assign ADMIN/OPERATOR/MONITOR OR any global role to any Microsoft Active Directory Application Mode (ADAM) user, we get a error in the console stating that user <xxxxx> does not existeven though the user exists in LDAP.

From the logs, for a user calcalc (present in ADAM) we get the following messages:

<Jul 18, 2011 7:25:58 PM CDT> <Debug> <SecurityAtn> <BEA-000000> <userExists? user:calcalc>
<Jul 18, 2011 7:25:58 PM CDT> <Debug> <SecurityAtn> <BEA-000000> <getConnection return conn:LDAPConnection { ldapVersion:2 bindDN:""}>
<Jul 18, 2011 7:25:58 PM CDT> <Debug> <SecurityAtn> <BEA-000000> <getDNForUser search("ou=people,ou=myrealm,dc=ssl_domain", "(&(uid=calcalc)(objectclass=person))", base DN & below)>
<Jul 18, 2011 7:25:58 PM CDT> <Debug> <SecurityAtn> <BEA-000000> <DN for user calcalc: null>
<Jul 18, 2011 7:25:58 PM CDT> <Debug> <SecurityAtn> <BEA-000000> <returnConnection conn:LDAPConnection { ldapVersion:2 bindDN:""}>
<Jul 18, 2011 7:25:58 PM CDT> <Debug> <SecurityAtn> <BEA-000000> <user does not exist, user:calcalc>
<Jul 18, 2011 7:25:58 PM CDT> <Debug> <SecurityAtn> <BEA-000000> <userExists? user:calcalc>
<Jul 18, 2011 7:25:58 PM CDT> <Debug> <SecurityAtn> <BEA-000000> <getConnection return conn:LDAPConnection {ldaps://ED1QA.johnsoncontrols.com:636 ldapVersion:3 bindDN:"CN=A1000424,OU=ApplAccounts,OU=Applications,DC=johnsoncontrols,DC=com"}>
<Jul 18, 2011 7:25:58 PM CDT> <Debug> <SecurityAtn> <BEA-000000> <getDNForUser search("OU=JCIPeople,DC=johnsoncontrols,DC=com", "(&(&(cn=calcalc)(objectclass=person))(!(userAccountControl:1.2.840.113556.1.4.803:=2)))", base DN & below)>

<Jul 18, 2011 7:25:58 PM CDT> <Debug> <SecurityAtn> <BEA-000000> <DN for user calcalc: null>
<Jul 18, 2011 7:25:58 PM CDT> <Debug> <SecuritySSL> <BEA-000000> <isMuxerActivated: false>
<Jul 18, 2011 7:25:58 PM CDT> <Debug> <SecurityAtn> <BEA-000000> <returnConnection conn:LDAPConnection {ldaps://ED1QA.johnsoncontrols.com:636 ldapVersion:3 bindDN:"CN=A1000424,OU=ApplAccounts,OU=Applications,DC=johnsoncontrols,DC=com"}>
<Jul 18, 2011 7:25:58 PM CDT> <Debug> <SecurityAtn> <BEA-000000> <user does not exist, user:calcalc>

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms