Oracle Access Manager (OAM) Multi Data Center (MDC) - Session Attributes Are Not Retrieved Between Data Centers
(Doc ID 2293651.1)
Last updated on NOVEMBER 13, 2020
Applies to:Oracle Access Manager - Version 184.108.40.206.0 and later
Information in this document applies to any platform.
Oracle is not responsible for instructions/information from 3rd party sites that may be contained in this KM note.
Oracle Access Manager 11g R2PS3 (OAM 220.127.116.11) Multi Data Center (MDC) - Session Attributes are not Retrieved Between Data Centers
In one DC (Clone in this case) we set attributes in a Session Attribute during Authentication process:
- $session.attribute_name --> $user.attr.roles
Then, in the other DC (Primary in this case) we reference the Session Attribute in Authorization conditions:
- $session.attr.attribute_name CONTAINS <value>
But, between DCs - seems that the session attribute is never populated.
That's why when OAM tries to check the authorization rule, the result is always false and users cannot access to the application
Issue can be verified in the logs:
--------> but, the details of the Session (including required Session Attribute) cannot be retrieved - "Error while doing remote sync"
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document