OAM 11.1.2.2 BP04: Operational Attribute: entryUUID: AuthZ Response Header Fetch : Additional LDAP Calls Leads to Performance Issues. (Doc ID 2013681.1)

Last updated on JANUARY 12, 2017

Applies to:

Oracle Access Manager - Version 11.1.2.2.0 and later
Information in this document applies to any platform.

Symptoms

Oracle Access Manager 11gR2PS2 (OAM 11.1.2.2.4), when a resource protected by OAM with attribute  entryUUID fetched in  authorization response is refreshed, additional ldap calls are made to backend LDAP server.

Prefetching the attribute via  "SUPPLEMENTARY_RETURN_ATTRIBUTES" in the oam-config.xml file, does not stop the additional ldap lookup.

The issue can be reproduced at will with the following steps:

  1. Protect a resource by OAM
  2. Configure the authorization policy in the application domain protecting the resource to returned entryUUID as authorization response header.
  3. Access the resource protected by OAM.
  4. Refresh the protected resource




Changes

 This issue is investigated in, <Bug:20689826> - oam 11.1.2.2 bp04: operational attributes cannot be pre-fetched via supplementar

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms