OAM11g : OAM Integration With Sharepoint 2010 Using WNA. Error: Unable to locate Kerberos realm (Doc ID 1560409.1)

Last updated on OCTOBER 10, 2023

Applies to:

Oracle Access Manager - Version 11.1.1.5.0 to 11.1.2.1.0 [Release 11g]
Microsoft Windows x64 (64-bit) - Version: 2008 R2

Symptoms

OAM 11gR1 is installed on Windows 2008 R2

A. Without Oracle Access Manager: When user access sharepoint, WNA is woking properly and user is logged in the Sharepoint application without any credentials being asked.
B. With Oracle Access Manager protecting : User gets Error : The user account is locked or disabled. Please contact the System Administrator.

Oam Diagnostic logs will have below error-

2013-05-24T12:36:44.411+05:30] [<OAM_SERVER_NAME>] [TRACE] [] [oracle.oam.engine.authn] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <USERNAME>] [ecid: <ECID>] [SRC_CLASS: oracle.security.am.engine.authn.internal.executor.SpnegoAuthenticator] [APP: oam_server#11.1.2.0.0] [SRC_METHOD: authenticate] Authentication Failed.[[
javax.security.auth.login.LoginException: Cannot locate default realm
at com.sun.security.auth.module.Krb5LoginModule.attemptAuthentication(Krb5LoginModule.java:759)
at com.sun.security.auth.module.Krb5LoginModule.login(Krb5LoginModule.java:580)
at sun.reflect.GeneratedMethodAccessor1587.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:601)
--

Caused by: KrbException: Cannot locate default realm
at sun.security.krb5.PrincipalName.<init>(PrincipalName.java:367)
at sun.security.krb5.KrbAsReq.<init>(KrbAsReq.java:118)
at sun.security.krb5.KrbAsReqBuilder.build(KrbAsReqBuilder.java:268)
at sun.security.krb5.KrbAsReqBuilder.send(KrbAsReqBuilder.java:318)
at sun.security.krb5.KrbAsReqBuilder.action(KrbAsReqBuilder.java:364)
at com.sun.security.auth.module.Krb5LoginModule.attemptAuthentication(Krb5LoginModule.java:731)
... 68 more
Caused by: KrbException: Cannot locate default realm
at sun.security.krb5.Config.getDefaultRealm(Config.java:1151)
at sun.security.krb5.PrincipalName.<init>(PrincipalName.java:365)
... 73 more
Caused by: KrbException: Generic error (description in e-text) (60) - Unable to locate Kerberos realm
at sun.security.krb5.Config.getRealmFromDNS(Config.java:1247)
at sun.security.krb5.Config.getDefaultRealm(Config.java:1132)
... 74 more

Cause

	To view full details, sign in with your My Oracle Support account.
	Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.

OAM11g : OAM Integration With Sharepoint 2010 Using WNA. Error: Unable to locate Kerberos realm (Doc ID 1560409.1)

Applies to:

Symptoms

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!