Not Able To Authenticate Between IPad Mobile Security Workspace And Oracle Mobile Access Server
(Doc ID 2180157.1)
Last updated on MAY 07, 2018
Applies to:Oracle Mobile Security Suite - Version 22.214.171.124.0 and later
Information in this document applies to any platform.
Not able to Authenticate between iPad Mobile Security workspace and Oracle Mobile Access server
The customer has configured Oracle Mobile Access Server is trying to authenticate to the OMSS server through through the Mobile Security workspace installed on an iPad.
The customer is trying to authenticate using the KINIT authentication mechanism against Active directory. They have followed the steps is mentioned in the following URL.
When the customer tries to hit the configuration URL (https://1x.3x.1xx.4x:9xxx/bmax/bmconfig_kinit_kinit.json) from iPad the are getting the follow error on the Access server.
[2016-05-12T14:29:48.962+10:00] [glassfish] [TRACE]  [org.glassfish.grizzly.filterchain.DefaultFilterChain] [host: dev-my1-a-0.abcd.xyz.gov.au] [nwaddr: 1x.3x.1xx.4x] [tid: 39] [userId: oracle] [ecid: 0000LIZE_6iF^675rJh8iY1ND0JG000008,0] [SRC_CLASS: org.glassfish.grizzly.filterchain.DefaultFilterChain] [SRC_METHOD: execute] GRIZZLY0013: Exception during FilterChain execution[[
Architecture of Oracle components in ABC customer environment :-
Machine 1:- OAM , Weblogic , OUD , OMSS
Machine 2 :- OMSAS ( Oracle Mobile Security Access Server)
The customer indicated that they got further when they tried using the obrareq.cgi URL without the port.
In the logs we can see that MSAS is matching the policy against the URL without the port, and at the time that the logs were generated there was no passthrough proxy app matching the URL without the port, so the default "oracle/multi_token_client_policy” was applied, resulting in the error “OAMMSTokenData is not available in the SToken”.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!