java.io.IOException: Invalid keystore format when configure X509 Authentication On Oracle Access Manager 11g (Doc ID 2047834.1)

Last updated on JANUARY 27, 2017

Applies to:

Oracle Access Manager - Version 11.1.2.2.4 and later
Information in this document applies to any platform.

Symptoms

When try to configure  X509 Authentication On Oracle Access Manager 11g, following documentation and usual docs (Doc ID 1368211.1, Doc ID 1516776.1 ) 

after some setup and tests performed ,  X509 authentication still fail and there is the following error reported in OAM diagnostic log: 

 

[2015-08-10T08:21:43.535-04:00] [oam_server1] [WARNING] [OAMSSA-18006] [oracle.oam.certvalidation] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 726f9ff3c8846589:-6b0c9bfb:14f1788582b:-8000-000000000000032d,0] [APP: oam_server#11.1.2.0.0] Error occurred when load trust store.[[
java.io.IOException: Invalid keystore format
at sun.security.provider.JavaKeyStore.engineLoad(JavaKeyStore.java:650)
at sun.security.provider.JavaKeyStore$JKS.engineLoad(JavaKeyStore.java:55)
at java.security.KeyStore.load(KeyStore.java:1214)
at oracle.security.fed.certvalidation.CertValidationModule.loadTrustStore(CertValidationModule.java:286)
at oracle.security.fed.certvalidation.CertValidationModule.loadValidatorParams(CertValidationModule.java:370)
at oracle.security.fed.certvalidation.CertValidationModule.validate(CertValidationModule.java:446)
at oracle.security.fed.certvalidation.CertValidationModule.validate(CertValidationModule.java:503)
at oracle.security.am.plugin.authn.X509CredentialExtractor.validateCert(X509CredentialExtractor.java:256)
at oracle.security.am.plugin.authn.X509CredentialExtractor.process(X509CredentialExtractor.java:141)
at oracle.security.am.engine.authn.internal.executor.PlugInExecutor.execute(PlugInExecutor.java:197)
at oracle.security.am.engine.authn.internal.executor.AuthenticationSchemeExecutor.execute(AuthenticationSchemeExecutor.java:109)
at oracle.security.am.engine.authn.internal.controller.AuthenticationEngineControllerImpl.validateUser(AuthenticationEngineControllerImpl.java:269)
at oracle.security.am.engines.enginecontroller.AuthnEngineController.authenticateUser(AuthnEngineController.java:886)
at oracle.security.am.engines.enginecontroller.AuthnEngineController.processEvent(AuthnEngineController.java:322)
................
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:120)
at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2273)
at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2179)
at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1490)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:256)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:221)



Changes

 Configure  X509 Authentication On Oracle Access Manager 11g.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms