OAM 11g : WNA Fails With Additional Preauthentication Required - URI: /oam/CredCollectServlet/WNA] Authentication Failed - KVNO Miss Match (Doc ID 1564360.1)

Last updated on MAY 23, 2017

Applies to:

Oracle Access Manager - Version 11.1.1.3.0 to 11.1.2.1.0 [Release 11g]
Information in this document applies to any platform.

Symptoms

WNA login fail. 

Checking all settings and compared with documentation looks fine.

Error raised in oam_server1_diagnostic.log is

 

[authenticate] [URI: /oam/CredCollectServlet/WNA] *********Login User with spnego token****************************
[2013-06-19T08:59:23.350+01:00] [wls_oam1] [TRACE] [] [oracle.oam.engine.authn] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 004rropBdSTA5UDnj8S4z40006SN000008,0:1] [SRC_CLASS: oracle.security.am.engine.authn.internal.executor.Utils] [APP: oam_server#11.1.2.0.0] [SRC_METHOD: getVMVendor] [URI: /oam/CredCollectServlet/WNA] VM vendor is Oracle: java.vendor=Oracle Corporation
[2013-06-19T08:59:23.418+01:00] [wls_oam1] [TRACE] [] [oracle.oam.engine.authn] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 004rropBdSTA5UDnj8S4z40006SN000008,0:1] [SRC_CLASS: oracle.security.am.engine.authn.internal.executor.SpnegoAuthenticator] [APP: oam_server#11.1.2.0.0] [SRC_METHOD: authenticate] [URI: /oam/CredCollectServlet/WNA] Authentication Failed.[[
javax.security.auth.login.LoginException
at oracle.security.am.engine.authn.internal.executor.SPNEGOLoginModule.login(SPNEGOLoginModule.java:169)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at javax.security.auth.login.LoginContext.invoke(LoginContext.java:769)
at javax.security.auth.login.LoginContext.access$000(LoginContext.java:186)
at javax.security.auth.login.LoginContext$5.run(LoginContext.java:707)
at javax.security.auth.login.LoginContext.invokeCreatorPriv(LoginContext.java:703)
at javax.security.auth.login.LoginContext.login(LoginContext.java:575)
at oracle.security.am.engine.authn.internal.executor.SpnegoAuthenticator.authenticate(SpnegoAuthenticator.java:168)
at oracle.security.am.engine.authn.internal.executor.KerberosModuleExecutor.execute(KerberosModuleExecutor.java:256)
at oracle.security.am.engine.authn.internal.executor.AuthenticationSchemeExecutor.execute(AuthenticationSchemeExecutor.java:98)
at oracle.security.am.engine.authn.internal.controller.AuthenticationEngineControllerImpl.validateUser(AuthenticationEngineControllerImpl.java:265)
at oracle.security.am.engines.enginecontroller.AuthnEngineController.authenticateUser(AuthnEngineController.java:698)
at oracle.security.am.engines.enginecontroller.AuthnEngineController.processEvent(AuthnEngineController.java:299)
.............................
at oracle.security.wls.oamagent.OAMAgentWrapperFilter.doFilter(OAMAgentWrapperFilter.java:120)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:61)
at oracle.dms.servlet.DMSServletFilter.doFilter(DMSServletFilter.java:139)
at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:61)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.wrapRun(WebAppServletContext.java:3739)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3705)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:120)
at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2282)
at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2181)
at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1491)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:256)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:221)

 

Changes

 WNA configuration.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms