OAM11g : OAM Integration With Sharepoint 2010 Using WNA. Error: Unable to locate Kerberos realm
(Doc ID 1560409.1)
Last updated on OCTOBER 10, 2023
Applies to:
Oracle Access Manager - Version 11.1.1.5.0 to 11.1.2.1.0 [Release 11g]Microsoft Windows x64 (64-bit) - Version: 2008 R2
Symptoms
OAM 11gR1 is installed on Windows 2008 R2
A. Without Oracle Access Manager: When user access sharepoint, WNA is woking properly and user is logged in the Sharepoint application without any credentials being asked.
B. With Oracle Access Manager protecting : User gets Error : The user account is locked or disabled. Please contact the System Administrator.
Oam Diagnostic logs will have below error-
2013-05-24T12:36:44.411+05:30] [<OAM_SERVER_NAME>] [TRACE] [] [oracle.oam.engine.authn] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <USERNAME>] [ecid: <ECID>] [SRC_CLASS: oracle.security.am.engine.authn.internal.executor.SpnegoAuthenticator] [APP: oam_server#11.1.2.0.0] [SRC_METHOD: authenticate] Authentication Failed.[[
javax.security.auth.login.LoginException: Cannot locate default realm
at com.sun.security.auth.module.Krb5LoginModule.attemptAuthentication(Krb5LoginModule.java:759)
at com.sun.security.auth.module.Krb5LoginModule.login(Krb5LoginModule.java:580)
at sun.reflect.GeneratedMethodAccessor1587.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:601)
--
Caused by: KrbException: Cannot locate default realm
at sun.security.krb5.PrincipalName.<init>(PrincipalName.java:367)
at sun.security.krb5.KrbAsReq.<init>(KrbAsReq.java:118)
at sun.security.krb5.KrbAsReqBuilder.build(KrbAsReqBuilder.java:268)
at sun.security.krb5.KrbAsReqBuilder.send(KrbAsReqBuilder.java:318)
at sun.security.krb5.KrbAsReqBuilder.action(KrbAsReqBuilder.java:364)
at com.sun.security.auth.module.Krb5LoginModule.attemptAuthentication(Krb5LoginModule.java:731)
... 68 more
Caused by: KrbException: Cannot locate default realm
at sun.security.krb5.Config.getDefaultRealm(Config.java:1151)
at sun.security.krb5.PrincipalName.<init>(PrincipalName.java:365)
... 73 more
Caused by: KrbException: Generic error (description in e-text) (60) - Unable to locate Kerberos realm
at sun.security.krb5.Config.getRealmFromDNS(Config.java:1247)
at sun.security.krb5.Config.getDefaultRealm(Config.java:1132)
... 74 more
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Symptoms |
Cause |
Solution |
References |