Authentication to OIM using Active Directory (AD) credentials fails
(Doc ID 1387837.1)
Last updated on NOVEMBER 01, 2022
Applies to:
Identity Manager - Version 11.1.1.5.1 and laterInformation in this document applies to any platform.
Symptoms
1. The user can login to WebLogic using the AD password
2. At the same time the user sees the 403 error if logging into OIM using the AD password but can login using the OIM password.
The log contains the following
[2011-12-05T09:33:48.831-06:00] [SERVERNAME] [ERROR] [] [OIM Authentication Provider] [tid: [ACTIVE].ExecuteThread:TID for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: ECID] [APP: oim#11.1.1.3.0] oracle.iam.platform.auth.providers.wls.OIMSignatureLoginModule login() Invalid Input username/password
Other errors in the log
<Dec 12, 2011 8:23:36 AM CST> <Error> <OIM Authentication Provider> <BEA-000000>
<oracle.iam.platform.auth.providers.wls.OIMSignatureLoginModule login() Invalid Input username/password>
<Dec 12, 2011 8:23:48 AM CST> <Error> <OIM Authenticator> <BEA-000000> <User USERNAME not found>
<Dec 12, 2011 8:23:58 AM CST> <Error> <OIM Authentication Provider> <BEA-000000>
weblogic.security.providers.authentication.LDAPAtnDelegateException: [Security:090294]could not get connection
at weblogic.security.providers.authentication.LDAPAtnDelegate.getConnection(LDAPAtnDelegate.java:3483)
at weblogic.security.providers.authentication.LDAPAtnDelegate.getConnection(LDAPAtnDelegate.java:3470)
at weblogic.security.providers.authentication.LDAPAtnDelegate.listUsers(LDAPAtnDelegate.java:2258)
'weblogic.kernel.Default (self-tuning)' has been busy for "621" seconds working on the request
"weblogic.kernel.WorkManagerWrapper$1@SESSION_ID", which is more than the configured time (StuckThreadMaxTime) of "600"
seconds. Stack trace:
Thread-15 "[STUCK] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'" <alive, in native,
suspended, priority=1, DAEMON> {
jrockit.net.SocketNativeIO.readBytesPinned(SocketNativeIO.java:???)
jrockit.net.SocketNativeIO.socketRead(SocketNativeIO.java:24)
java.net.SocketInputStream.socketRead0(SocketInputStream.java:???)
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Symptoms |
Cause |
Solution |