Cannot Get OAM To Prefetch Attributes Using SUPPLEMENTARY_RETURN_ATTRIBUTES When Using X-509 Cert Authentication
(Doc ID 1917751.1)
Last updated on MAY 24, 2022
Applies to:Oracle Access Manager - Version 22.214.171.124.3 and later
Information in this document applies to any platform.
SUPPLEMENTARY_RETURN_ATTRIBUTES setting can be added to oam-config.xml to tell OAM to prefetch a set of attributes in with one LDAP call and cache those attributes in the user's session. However, we do not see any difference in OAM's behavior after adding SUPPLEMENTARY_RETURN_ATTRIBUTES. We still are seeing numerous ldap calls issued for retrieving the directory attributes for the response header.
We have tested this feature in two versions of OAM with no success.
126.96.36.199.3 (188.8.131.52.0 + BP03), and
184.108.40.206.1 (220.127.116.11.0 + BP02)
The issue is seen only when using X-509 certificate authentication. For the same resource, if we change the authentication scheme to "Form", then OAM prefetch functionality works as expected.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document