OAM 11g: cannot login to oamconsole, oam server failed to work after SSOTokenVersion changed: NumberFormatException: For input string: "v3.0", AmRuntimeException: Invalid token version specified (Doc ID 1663347.1)

Last updated on AUGUST 25, 2017

Applies to:

Oracle Access Manager - Version 11.1.1.5.0 and later
Information in this document applies to any platform.

Symptoms

On : OAM 11g (11.1.1.5.0 version), SSO/Authentication Engine

The oamadmin user account is no longer working and is unable to access the oamconsole.
The OAM server instance is no longer operational and users cannot login in the environment anymore.

The $DOMAIN_HOME/servers/oam_server1/logs/oam_server1-diagnostic.log shows the following errors:


[2014-04-16T08:10:06.434+02:00] [oam_server1] [ERROR] [OAM-00002] [oracle.oam.binding] [tid: [ACTIVE].ExecuteThread: '5' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: <ECID>] [APP: oam_server] Error occurred while handling the request.[[
java.lang.NumberFormatException: For input string: "v3.0"
       at java.lang.NumberFormatException.forInputString(NumberFormatException.java:48)
       at java.lang.Integer.parseInt(Integer.java:449)
       at java.lang.Integer.parseInt(Integer.java:499)
       at oracle.security.am.engines.sso.adapter.OAMSessionConfiguration.getVersion(OAMSessionConfiguration.java:62)
       at oracle.security.am.pbl.protocol.plugin.oam.AMHelper.mapToSessionToken(AMHelper.java:426)
       at oracle.security.am.pbl.protocol.plugin.oam.AMHelper.getAMTransportToken(AMHelper.java:308)
       at oracle.security.am.pbl.protocol.plugin.oam.AMLoginResponseHandler.process(AMLoginResponseHandler.java:65)
       at oracle.security.am.pbl.PBLFlowManager.handleBaseEvent(PBLFlowManager.java:175)
       at oracle.security.am.pbl.PBLFlowManager.processRequest(PBLFlowManager.java:107)
       at oracle.security.am.pbl.transport.http.AMServlet.handleRequest(AMServlet.java:168)
       at oracle.security.am.pbl.transport.http.AMServlet.doPost(AMServlet.java:133)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
       at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
       at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
       at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:301)
       at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
       at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
       at oracle.security.am.agent.wls.filters.OAMServletAuthenticationFilter.doFilter(OAMServletAuthenticationFilter.java:265)
       at oracle.security.am.agent.wls.filters.OAMValidationSystemFilter.doFilter(OAMValidationSystemFilter.java:133)
       at oracle.security.wls.oamagent.OAMAgentWrapperFilter.doFilter(OAMAgentWrapperFilter.java:120)
       at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
       at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:119)
....
................

[2014-04-16T09:11:46.842+02:00] [oam_server1] [ERROR] [OAM-00002] [oracle.oam.binding] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: <ECID>] [APP: oam_server] Error occurred while handling the request.[[
oracle.security.am.common.utilities.exception.AmRuntimeException: Invalid token version specified
       at oracle.security.am.engines.sso.token.server.SSOTokenIssuerModuleImpl.issue(SSOTokenIssuerModuleImpl.java:104)
       at oracle.security.am.engines.tpe.TokenIssuerImpl.issue(TokenIssuerImpl.java:67)
       at oracle.security.am.engines.sso.adapter.TPEAdapter.issueToken(TPEAdapter.java:81)
       at oracle.security.am.pbl.protocol.plugin.oam.AMHelper.mapToSessionToken(AMHelper.java:435)
       at oracle.security.am.pbl.protocol.plugin.oam.AMHelper.getAMTransportToken(AMHelper.java:308)
       at oracle.security.am.pbl.protocol.plugin.oam.AMLoginResponseHandler.process(AMLoginResponseHandler.java:65)
       at oracle.security.am.pbl.PBLFlowManager.handleBaseEvent(PBLFlowManager.java:175)
       at oracle.security.am.pbl.PBLFlowManager.processRequest(PBLFlowManager.java:107)
       at oracle.security.am.pbl.transport.http.AMServlet.handleRequest(AMServlet.java:168)
       at oracle.security.am.pbl.transport.http.AMServlet.doPost(AMServlet.java:133)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
       at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
       at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
       at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:301)
       at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
       at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
       at oracle.security.am.agent.wls.filters.OAMServletAuthenticationFilter.doFilter(OAMServletAuthenticationFilter.java:265)
       at oracle.security.am.agent.wls.filters.OAMValidationSystemFilter.doFilter(OAMValidationSystemFilter.java:133)
       at oracle.security.wls.oamagent.OAMAgentWrapperFilter.doFilter(OAMAgentWrapperFilter.java:120)
       at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
       at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:119)
       at java.security.AccessController.doPrivileged(Native Method)
....



ERROR
-----------------------
Error Codes:

OAM-00002


BUSINESS IMPACT
-----------------------
Due to this issue:

SSO on the environment is not functionning. Only workaround for business continuity is to disabled SSO in order to allow users to access the applications, BUT the applications are not sso protected anymore.

 

Changes

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms