Oracle Access Manager (OAM) Multi Data Center(MDC) Setup Failed to Decrypt obrareq Cookie
(Doc ID 2247398.1)
Last updated on AUGUST 07, 2024
Applies to:
Oracle Access Manager - Version 11.1.2.3.0 to 11.1.2.3.5 [Release 11g]Information in this document applies to any platform.
Oracle is not responsible for instructions/information from 3rd party sites that may be contained in this KM note.
Symptoms
Have Configured Multi Data Center Setup with Oracle Access Manager 11g R2PS3 (OAM 11.1.2.3)
This is a two node cluster in DataCenter1 and DataCenter2 in a common domain *.<DOMAIN>.
Have followed the document "Setting Up a Multi-Data Center":
Both pasteBinary and pasteConfig.sh were successful in migrating the configuration on the DataCenter2.
Have also exported and imported the policy data from Primary Node to the Clone Node of OAM. There is a single load balancer(OHS Instance) load balancing all the 4 oam servers combined in both the data center.
The MDC session parameters have set for both data centers
SessionDataRetrievalOnDemand=true
Reauthenticate=false
SessionDataRetrievalOnDemandMax_retry_attempts=3
SessionDataRetrievalOnDemandMax_conn_wait_time=80
SessionContinuationOnSyncFailure=true
MDCGitoCookieDomain=.<DOMAIN>
The resource WebGate agentid="<MDC_WEBGATE>" talks directly to the OAM server on <PORT> port.
Note: When the user access the protected url with at least one managed server in Data-Center1 running, the request is completed successfully.
When all the OAM Managed servers in DataCenter 1 are down, the request does get redirected to DataCcenter2 as with "OAM System Error".
The OAM Server diagnostic logs from DataCenter2 shows below error:
]]
Changes
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Symptoms |
Changes |
Cause |
Solution |