Login to an Application Using LDAP Fails with Error "javax.security.auth.login.FailedLoginException: [Security:090302]Authentication Failed: User ******* denied". (Doc ID 1645081.1)

Last updated on OCTOBER 27, 2016

Applies to:

Oracle JDeveloper - Version 11.1.1.6.0 and later
Business Intelligence Suite Enterprise Edition - Version 11.1.1.7.140114 to 12.2.1.0.0 [Release 11g to 12g]
Identity Manager - Version 11.1.2.3.0 to 11.1.2.3.0 [Release 11g]
Oracle WebLogic Server - Version 10.3.5 to 10.3.5
Information in this document applies to any platform.

Symptoms

WebLogic Server is configured to use external LDAP server to do authentication. When attempting to authenticate one user, it reports following message:

####<2014-Mar-26 12:31:02.185 TST> <Debug> <SecurityAtn> <soa> <AdminServer> <[ACTIVE] ExecuteThread: '10' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <29f53ffba1f1ab66:-379efed2:1448712ca75:-8000-000000000000d09c> <1394158826437> <BEA-000000> <javax.security.auth.login.FailedLoginException: [Security:090302]Authentication Failed: User ******* denied
        at weblogic.security.providers.authentication.LDAPAtnLoginModuleImpl.login(LDAPAtnLoginModuleImpl.java:229)
        at com.bea.common.security.internal.service.LoginModuleWrapper$1.run(LoginModuleWrapper.java:110)
        at java.security.AccessController.doPrivileged(Native Method)
        at com.bea.common.security.internal.service.LoginModuleWrapper.login(LoginModuleWrapper.java:106)
        at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
        at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
        at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
        at java.lang.reflect.Method.invoke(Method.java:606)
        at javax.security.auth.login.LoginContext.invoke(LoginContext.java:784)
        at javax.security.auth.login.LoginContext.access$000(LoginContext.java:203)
        at javax.security.auth.login.LoginContext$4.run(LoginContext.java:698)
........
        at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
        at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
        at java.lang.reflect.Method.invoke(Method.java:606)
        at com.sun.el.parser.AstValue.invoke(AstValue.java:187)
        at com.sun.el.MethodExpressionImpl.invoke(MethodExpressionImpl.java:297)
        at org.apache.myfaces.trinidad.component.MethodExpressionMethodBinding.invoke(MethodExpressionMethodBinding.java:46)
        at com.sun.faces.application.ActionListenerImpl.processAction(ActionListenerImpl.java:102)
        at org.apache.myfaces.trinidad.component.UIXCommand.broadcast(UIXCommand.java:190)
        at javax.faces.component.UIViewRoot.broadcastEvents(UIViewRoot.java:475)

Check this user on realm of Admin Console, it shows correctly.

After turning on security debug, it was found that lots of following log shows repeatedly:

####<2014-Mar-26 12:31:02.185 TST> <Debug> <SecurityAtn> <soa> <AdminServer> <[ACTIVE] ExecuteThread: '10' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <29f53ffba1f1ab66:-379efed2:1448712ca75:-8000-000000000000d09c> <1394158825522> <BEA-000000> <Cached group membership for A**** : null>
####<2014-Mar-26 12:31:02.185 TST> <Debug> <SecurityAtn> <soa> <AdminServer> <[ACTIVE] ExecuteThread: '10' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <29f53ffba1f1ab66:-379efed2:1448712ca75:-8000-000000000000d09c> <1394158825522> <BEA-000000> <List groups that member: A**** belongs to>
...
####<2014-Mar-26 12:31:02.186 TST> <Debug> <SecurityAtn> <soa> <AdminServer> <[ACTIVE] ExecuteThread: '10' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <29f53ffba1f1ab66:-379efed2:1448712ca75:-8000-000000000000d09c> <1394158825523> <BEA-000000> <Cached group membership for B**** : null>
####<2014-Mar-26 12:31:02.186 TST> <Debug> <SecurityAtn> <soa> <AdminServer> <[ACTIVE] ExecuteThread: '10' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <29f53ffba1f1ab66:-379efed2:1448712ca75:-8000-000000000000d09c> <1394158825523> <BEA-000000> <List groups that member: B**** belongs to>

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms