Can Not Define Clock Skew When Using Oracle Web Services Manager

(Doc ID 1449108.1)

Last updated on JULY 29, 2017

Applies to:

Oracle Web Services Manager - Version and later
Information in this document applies to any platform.


Using WebLogic Server 10.3.3 with WebCenter and Webcenter generates the assertion. The assertion is then consumed by a WebLogic Server 10.3.2 domain that has WebLogic Portal.
SAML is used for security between portlets. The following error is experienced:

<Nov 9, 2011 1:46:36 PM CST> <Debug> <SecuritySAMLAtn> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <>
<1320867996277> <BEA-000000> <SAMLAssertion: [Security:099031]Assertion is invalid before Wed Nov 09 13:47:01 CST 2011.>

The following is seen in WLS Portal log:

Caused by: javax.xml.rpc.soap.SOAPFaultException: Security token failed to validate. weblogic.xml.crypto.wss.SecurityTokenValidateResult@bfb1f6[status: false]
[msg The SAML token is not valid, it is rejected by CSS ]
at oracle.portlet.wsrp.v2.soap.runtime.WSRP_v2_Markup_Binding_SOAP_Stub.getMarkup(
at oracle.portlet.wsrp.v2.WSRP_v2_Markup_PortTypeJaxbToSoap.getMarkup(
at oracle.portlet.wsrp.v2.ServerToWSRPv2.getMarkup(
at oracle.portlet.client.connection.wsrp.ActivityServerWrapper.getMarkup(
... 23 more

NTP Server has been configured, but due to latency in the network the servers might get unsync.





Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms