My Oracle Support Banner

WebLogic Server Cross Domain Security Fails with: Security:090398 Invalid Subject on the Remote Server (Doc ID 1401108.1)

Last updated on OCTOBER 06, 2022

Applies to:

Oracle WebLogic Server - Version 10.3 to 10.3.6
Information in this document applies to any platform.


After enabling Cross Domain Security (CDS) by following the procedures at "Enabling Cross Domain Security Between WebLogic Server Domains", the following exception is seen on sending a JMS message:

When the same user was created for both the domains (thus enabling Global Trust), messages were sent successfully.

The failure occurs at the first step of the JNDI lookup for a JMS connection in client code.

If CDS is enabled, then sending of the message fails to the remote queue, regardless of the queue being secured or unsecured or regardless of the jndi of the queue being secured or unsecured.

Following is a diagram of the architecture involved.




To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.