OVD 11g: OAM Intermittently Fails with: OAMSSA-20012 An Incorrect Username or Password was Specified / OAM Log Shows: javax.naming.NamingException: LDAP response read timed out, timeout used:2000ms.; remaining name <user DN>

(Doc ID 1614924.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle Virtual Directory - Version 11.1.1.5.0 and later
Oracle Access Manager - Version 11.1.1.5.0 and later
Oracle Internet Directory - Version 11.1.1 and later
Information in this document applies to any platform.

Symptoms

Oracle Virtual Directory (OVD) 11g Server, integrated with Oracle Access Manager (OAM) 11gR2.

OAM is intermittently displaying error:

An Incorrect Username or Password was Specified

The OAM Diagnostic log shows, for example:

[2014-01-15T15:08:49.656+01:00] [oam_server1] [ERROR] [OAMSSA-20012] [oracle.oam.user.identity.provider] [tid: [ACTIVE].ExecuteThread: '19' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: ] [ecid: 520dc1fe77a5eefb:-2ae4d57:1438ddb95e4:-8000-0000000000000015,1:5258460] [APP: oam_server#11.1.2.0.0] Exception in getting user attributes for user : myuser.lastname, idstore OVDIdentityStore with exception oracle.security.idm.OperationFailureException: javax.naming.NamingException: LDAP response read timed out, timeout used:2000ms.; remaining name 'uid=myuser.lastname,dc=mycompany,dc=com'

Or:

[2014-03-19T13:47:01.138-07:00] [oam_server1] [WARNING] [OAMSSA-06301] [oracle.oam.engine.policy] [tid: [ACTIVE].ExecuteThread: '10' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 5cb0c7a2d690ff6d:5cecf8e7:144d25fa2dd:-8000-00000000000009e6,1:153412] [APP: oam_server#11.1.2.0.0] Response tokenization failed for policy: "{0}" in domain: "{1}". Response details: "{2}".[[
oracle.security.am.common.policy.common.response.ResponseException: oracle.security.am.engines.common.identity.provider.exceptions.IdentityProviderException: OAMSSA-20012: Exception in getting user attributes for user : tyee, idstore mycompany_udInternalRealmDataStore with exception javax.naming.NamingException: LDAP response read timed out, timeout used:5000ms.; remaining name 'ou=internal,dc=mycompany,dc=com'

Also, OVD Server (vde) appears to be consuming more memory.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms