WNA fail with JAZNNamingException

(Doc ID 1380355.1)

Last updated on NOVEMBER 06, 2017

Applies to:

Oracle Application Server Single Sign-On - Version and later
Information in this document applies to any platform.
***Checked for relevance on 06-NOV-2017***

WNA, Windows Native Authentication, SSO


There are 2 infra servers , in Advanced Symmetric Replication (ASR).
Windows Native Authentication (WNA) is working on the Master Definition Site (MDS).
When WNA is configured on the Remote Master Site (RMS) the following error appears in the OC4J_SECURITY log:

11/11/21 14:19:15 JAAS-OC4J: Membership check for group: {{PUBLIC}} failed for user: jazn.com/anonymous
11/11/21 14:19:19 No Login Module configured for application sso. Using default Login Module, RealmLoginModule.
11/11/21 14:19:19 JAAS-LDAP: location=ldap://dxb-srv-172.company.com:389
11/11/21 14:19:19 JAAS-LDAP: ldap.user=orclApplicationCommonName=jaznadmin1,cn=JAZNContext,cn=products,cn=OracleContext
11/11/21 14:19:19 oracle.security.jazn.JAZNNamingException: Invalid credentials - the system is unable to connect to the directory or naming service.
11/11/21 14:19:19 at oracle.security.jazn.spi.ldap.LDAPContext.getDirContext(Unknown Source)
11/11/21 14:19:19 at oracle.security.jazn.spi.ldap.LDAPContext.getDirContext(Unknown Source)
11/11/21 14:19:19 at oracle.security.jazn.spi.ldap.LDAPContext.getDefaultDirContext(Unknown Source)
11/11/21 14:19:19 at oracle.security.jazn.spi.ldap.LDAPContext.getOrclRootCtxDN(Unknown Source)
11/11/21 14:19:19 at oracle.security.jazn.spi.ldap.LDAPContext.getSiteJAZNCtxDN(Unknown Source)
11/11/21 14:19:19 at oracle.security.jazn.spi.ldap.LDAPRealmManager.getrealms(Unknown Source)
11/11/21 14:19:19 at oracle.security.jazn.spi.ldap.LDAPRealmManager.getRealms(Unknown Source)
11/11/21 14:19:19 at oracle.security.jazn.realm.RealmLoginModule.login(Unknown Source)
11/11/21 14:19:19 at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
11/11/21 14:19:19 at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
11/11/21 14:19:19 at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
11/11/21 14:19:19 at java.lang.reflect.Method.invoke(Method.java:324)

Mon Nov 21 13:52:16 GST 2011 [DEBUG] Orion Launcher DatabaseConfigReadergetting partner apps configs: select site_id, site_token, site_name, home_url, success_url, logout_url, encryption_key, encryption_mask_pre, encryption_mask_post, start_date, end_date, administrator_id, administrator_info from wwsso_papp_configuration_inf_t where site_token not like 'LS$%' order by site_name
Mon Nov 21 13:52:16 GST 2011 [DEBUG] Orion Launcher Ldap URL: ldap://dxb-srv-172.company.com:636/

How can this be solved?


Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms