DCC Not Working With 11g Webgate (Doc ID 1623981.1)

Last updated on SEPTEMBER 21, 2016

Applies to:

Oracle Access Manager - Version 11.1.2.0.0 and later
Information in this document applies to any platform.

Symptoms

There is deployed 11g webgate and login application on host and port 8000 (APP1_SERVER).
In front of the APP1_SERVER is deployed OHS + 11g webgate with SSL on port 4433. All requests are routed to the APP1_SERVER.
In oam OHS webgate is protected with "excluded" schema and with option "Allow credential operations"

The protected resource is https://domain.example.com:4444/acc/.
When the resource is protected with BASIC auth schema its working without any problems.
But when its protected with DCC schema its NOT working OK.
When the resource https://domain.example.com:4444/acc/ is requested then its forwarded to credential collector https://domain.example.com:4443/login1/signin.jsp which is OK
When credentials are provided in login form then its POST the OHS port https://domain.example.com:4433/oam/server/auth_cred_submit and OHS calls http://domain.example.com::8002/oam/server/auth_cred_submit.
Unfortunately after this POST its not redirected to resource https://domain.example.com::4444/acc/ but one again its redirected to login application https://domain.example.com:4443/login1/signin.jsp

There is provided OAM server logs with trace32 enabled oam_server-diagnostic1.log and webgate log oblog1.log with trace enabled. Also from client side there are captured headers: http.headers.txt.

Please provide solution to enable DCC.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms