OUD11g - During EUS Configuration Invalid Credentials Error Output on the OEM Page

(Doc ID 2093460.1)

Last updated on MAY 10, 2018

Applies to:

Oracle Unified Directory - Version 11.1.2.3.0 and later
Information in this document applies to any platform.

Symptoms

On : OUD 11.1.2.3.1 version, Security

When trying to setup EUS administration using OEM 12c, when attempt to connect, getting an invalid credentials error on the OEM page
The following error occurs: Invalid Credentials

 

In log files when issue occurs -

[03/Dec/2015:20:12:34 +0000] CONNECT conn=140 from=172.28.218.45:11991 to=10.12.133.251:1389 protocol=LDAP
[03/Dec/2015:20:12:34 +0000] BIND REQ conn=140 op=0 msgID=1 type=SASL mechanism=DIGEST-MD5 dn="" version=3
[03/Dec/2015:20:12:34 +0000] BIND RES conn=140 op=0 msgID=1 result=14 etime=1
[03/Dec/2015:20:12:34 +0000] BIND REQ conn=140 op=1 msgID=2 type=SASL mechanism=DIGEST-MD5 dn="" version=3
[03/Dec/2015:20:12:34 +0000] BIND RES conn=140 op=1 msgID=2 result=49 authFailureID=1245385 authFailureReason="The server was not able to find any user entries for the provided username of cn=directory manager" etime=8
[03/Dec/2015:20:12:34 +0000] DISCONNECT conn=140 reason="Client Disconnect"


The issue can be reproduced at will with the following steps:

1. While setting EUS following the documentation

31 Integrating Oracle Unified Directory with Oracle Enterprise User Security

2. In this section:
31.3.1.5.2 Step B: Create a New User-Schema Mapping

 OEM cloud control 12c -> Oracle Internet Directory Login: Enterprise User security ->  Enter Oracle Internet Directory credentials

This applies as well when using eusm to list domains and getting Invalid Credentials error:

$eusm listDomains realm_dn="dc=eus,dc=com" ldap_host=host_name ldap_port=2389 ldap_user_dn="cn=Directory Manager" ldap_user_password=secretpass
javax.naming.AuthenticationException: [LDAP: error code 49 - Invalid Credentials]

The error observed in logs

[05/Sep/2016:20:04:25 +0200] BIND RES conn=7 op=1 msgID=2 result=49 authFailureID=1310929 authFailureReason="SASL DIGEST-MD5 protocol error: SaslException(DIGEST-MD5: digest response format violation. Mismatched URI: ldap/host; expecting: ldap/host.mydomain.com)" etime=0

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms