Authentication to OIM using Active Directory (AD) credentials fails

(Doc ID 1387837.1)

Last updated on DECEMBER 01, 2016

Applies to:

Identity Manager - Version 11.1.1.5.1 and later
Information in this document applies to any platform.
**Checked for Relevance on 08-Nov-2013**

Symptoms

1. The user can login to WebLogic using the AD password
2. At the same time the user sees the 403 error if logging into OIM using the AD password but can login using the OIM password.

The log contains the following


[2011-12-05T09:33:48.831-06:00] [WLS_OIM1] [ERROR] [] [OIM Authentication Provider] [tid: [ACTIVE].ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: ca4bd355f86f63bc:284d2801:133ff197708:-8000-0000000000002f89,0] [APP: oim#11.1.1.3.0] oracle.iam.platform.auth.providers.wls.OIMSignatureLoginModule login() Invalid Input username/password

Other errors in the log

<Dec 12, 2011 8:23:36 AM CST> <Error> <OIM Authentication Provider> <BEA-000000>

<oracle.iam.platform.auth.providers.wls.OIMSignatureLoginModule login() Invalid Input username/password>
<Dec 12, 2011 8:23:48 AM CST> <Error> <OIM Authenticator> <BEA-000000> <User ia94555 not found>
<Dec 12, 2011 8:23:58 AM CST> <Error> <OIM Authentication Provider> <BEA-000000>


weblogic.security.providers.authentication.LDAPAtnDelegateException: [Security:090294]could not get connection
at weblogic.security.providers.authentication.LDAPAtnDelegate.getConnection(LDAPAtnDelegate.java:3483)
at weblogic.security.providers.authentication.LDAPAtnDelegate.getConnection(LDAPAtnDelegate.java:3470)
at weblogic.security.providers.authentication.LDAPAtnDelegate.listUsers(LDAPAtnDelegate.java:2258)

'weblogic.kernel.Default (self-tuning)' has been busy for "621" seconds working on the request

"weblogic.kernel.WorkManagerWrapper$1@1414bde7", which is more than the configured time (StuckThreadMaxTime) of "600"

seconds. Stack trace:
Thread-15 "[STUCK] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'" <alive, in native,

suspended, priority=1, DAEMON> {
jrockit.net.SocketNativeIO.readBytesPinned(SocketNativeIO.java:???)
jrockit.net.SocketNativeIO.socketRead(SocketNativeIO.java:24)
java.net.SocketInputStream.socketRead0(SocketInputStream.java:???)

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms