OAM-OAAM Integration Breaks After Submitting Credentials
(Doc ID 2129697.1)
Last updated on OCTOBER 18, 2023
Applies to:
Oracle Adaptive Access Manager - Version 11.1.2.3.0 and laterInformation in this document applies to any platform.
Symptoms
You have upgraded OAM and OAAM from 11gR2PS2 BP07 to OAM 11gR2PS3 BP06 using steps similar to these:
- Set same password value for IAMSuiteAgent in Weblogic console provider and oamconsole agent.
- Register TAPPartner using the below command in WLST after connecting to OAM Admin server: registerThirdPartyTAPPartner(partnerName="OAAMTAPPartner", keystoreLocation="<KEYSTORE_LOCATION>/<KEYSTORE_NAME>.jks", password="<PASSWORD>", tapTokenVersion="v2.0", tapScheme="TAPScheme", tapRedirectUrl="https://<OAAM_HOST>:<OAAM_PORT>/oaam_server/oamLoginPage.jsp")
- Copy the<KEYSTORE_NAME>.jks to OAAM Host.
- Edit the oaam_cli.properties with the required details.
- Run setupTap as follows: ./setupOAMTapIntegration.sh <OAAM_CLI_LOCATION>/conf/bharosa_properties/oaam_cli.properties
- Ensure the TAPScheme in OAM coonsole contains these challenge parameters: TAPPartnerId=OAAMTAPPartner, SERVER_HOST_ALIAS=OAMSERVER, MatchLDAPAttribute=uid, ssoCookie=disablehttponly
- Access a TAPScheme protected resource. User redirected to OAAM login pages.
- Provide valid username\password and the browser gives throws an error.
OAM starts printing the errors shown below at this point:
Changes
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Symptoms |
Changes |
Cause |
Solution |