Oracle Access Manager (OAM 11g) Intermittent Looping Issue, Logs Show…EXCEPTION WHILE DECRYPTING TOKEN
(Doc ID 1515212.1)
Last updated on SEPTEMBER 14, 2023
Applies to:
Oracle Access Manager - Version 11.1.1.5.0 and laterInformation in this document applies to any platform.
Symptoms
Two OAM Managed servers running in a WLS cluster.
Seeing intermittent looping issue (mostly during loadrunner baseline test), the OAM SSO Login page appears correctly, user submits the credentials and OAM sets to obSSO cookie and calls accessgate application to establish e-business session.
The looping happens at this stage, the accessgate application could not create the eBS session and returns to OAM for reauthentication.
OAM responds that user is already authenticated and the loop keep on going.
When Looping happens, here is the flow after user pass the credentials
Note: OAM tries to authenticate but return the response to AccessGate load balanced application that user is already authenticated... http://<HOSTNAME>.<DOMAIN>:<PORT>/ebsauth_cplnft02/ssologin
Note: AccessGate load balanced application is unable to create a jSession cookie for this user and the loop continues...http://<HOSTNAME>.<DOMAIN>:<PORT>/oam/server/obrareq.cgi?wh=cplnft02_HostId wu=/ebsauth_cplnft02/ssologin wo=1 rh=http://jlp-partnerlinklogin-cplnft01.johnlewis.co.uk ru=%2Febsauth_cplnft02%2Fssologin"
When there is no looping, the re-direction steps look like below..
http://<HOSTNAME>.<DOMAIN>:<PORT>/oam/server/auth_cred_submit
http://<HOSTNAME>.<DOMAIN>:<PORT>/obrar.cgi
http://<HOSTNAME>.<DOMAIN>:<PORT>/ebsauth_cplnft02/ssologin
Note: Load Balanced Accessgate application able to establish jsession for eBS and user sees the eBS Homepage.
http://<HOSTNAME>.<DOMAIN>:<PORT>/OA_HTML/OA.jsp?OAFunc=OAHOMEPAGE
http://<HOSTNAME>.<DOMAIN>:<PORT>/jlpportal
Changes
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Symptoms |
Changes |
Cause |
Summary |
Solution |
References |