My Oracle Support Banner

After Configuring WLS Admin Port, All OID 11g DIP Command Line Commands Fail With: User: "weblogic", failed to be authenticated. (Doc ID 1517081.1)

Last updated on APRIL 12, 2021

Applies to:

Oracle Internet Directory - Version 11.1.1.5.0 and later
Information in this document applies to any platform.

Symptoms

Oracle Internet Directory (OID) 11g with Directory Integration Platform (DIP).

After configuring WLS for Admin Port, able to login as weblogic in url's <PORT>/console and <PORT>/em consoles, and also able to connect to the WLS Managed Server ODSM gui application on <PORT>/odsm.

However, when attempting to connect via any DIP command line commands to either Admin Server or Managed Server ports, the following error occurs:

User: "<WLS_ADMIN>", failed to be authenticated.


Examples:

$ dipStatus -h <HOSTNAME> -p <PORT> -D <WLS_ADMIN>
[Weblogic user password]
Connection parameters initialized.
Connecting at <HOSTNAME>:<PORT>, with userid "<WLS_ADMIN>"..
User: "<WLS_ADMIN>", failed to be authenticated.
$ manageSyncProfiles list -h <HOSTNAME> -p <PORT> -D <WLS_ADMIN>
 Weblogic user password]
Connection parameters initialized.
Connecting at <HOSTNAME>:<PORT>, with userid "<WLS_ADMIN>"..
User: "<WLS_ADMIN>", failed to be authenticated.
$ syncProfileBootstrap -h <HOSTNAME> -p <PORT> -D <WLS_ADMIN> -pf <PROFILE> -lp 5
[Weblogic user password]
Connection parameters initialized.
Connecting at <HOSTNAME>:<PORT>, with userid "<WLS_ADMIN>"..
User: "<WLS_ADMIN>", failed to be authenticated.


The following command also fails against both ports, for example:

connect('<WLS_ADMIN>','','t3://<HOSTNAME>:<PORT>')

Traceback (innermost last):
 File "", line 1, in ?
 File "", line 22, in connect
 File "", line 646, in raiseWLSTException
WLSTException: Error occured while performing connect : User 'principals=[<WLS_ADMIN>, Administrators]' has administration role. All tasks by adminstrators must
go through an Administration Port.

 
Steps To Reproduce:

1. Configure WLS for Admin Port, as follows:

Follow documentation:

Oracle Fusion Middleware Oracle WebLogic Server Administration Console Online Help 11g Release 1 (10.3.6) Part Number E13952-06
OTN Home > Oracle WebLogic Server 10.3.6.0 Documentation > Administration Console Online Help > Configure the domain-wide administration port

(Note: Left default SSL settings of "Client Certs Not Requested".)

After finishing and before starting Managed Server, do the following (as per WLS Support recommendation):

On the WLS Admin Console, navigate to:

   Environment > Server > wls_ods1 > Configuration tab > General subtab

   Select Advanced on the page, then scroll down to "Local Administration Port Override" and change it from default to a new/nonused port.

   Save and Activate Changes.

Start the Managed Server as follows (from here on out):

./startManagedWebLogic.sh wls_ods1 http://<HOSTNAME>:<NEW PORT>

2. Attempt to connect with DIP commands to see the error above.

Changes

 Configured WLS Admin Port.

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Changes
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.