"[LDAP: error code 49 - Invalid Credentials]" Error is Received on OID-based External Authentication when a Firewall is Introduced between the ODI Agent and OID and the OID Connections are Kept Inactive for a Certain Amount of Time

(Doc ID 2376896.1)

Last updated on MARCH 29, 2018

Applies to:

Oracle Data Integrator - Version 11.1.1.3.0 and later
Information in this document applies to any platform.

Symptoms

After implementation of a new Firewall into their network, customer is receiving errors for their Oracle Data Integrator (ODI) Load Plans and Scheduled jobs.

Note: ODI uses external authentication on Oracle Internet Directory (OID).

The following error message is received when the OID connection is kept inactive for a certain amount of time:

[2018-03-12T23:30:07.378-06:00] ... Agent MyAgent executing load plan log purge for work repository MY_WORKREP at Mar 12, 2018 11:30:07 PM.

[2018-03-13T16:45:29.937-06:00] [odi] [ERROR] [] [oracle.odi.core] ... odi.core.security.internal.ODIJpsHelper.createSubject
Get exception. User:<USERNAME>. Execption msg is:Incorrect password was provided., stackTrace is:javax.security.auth.login.LoginException: Incorrect password was provided.[[
  at oracle.security.jps.internal.jaas.module.authentication.JpsUserAuthenticationLoginModule.login(JpsUserAuthenticationLoginModule.java:71)
  at sun.reflect.GeneratedMethodAccessor70.invoke(Unknown Source)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
  at java.lang.reflect.Method.invoke(Method.java:606)
  at javax.security.auth.login.LoginContext.invoke(LoginContext.java:762)
  at javax.security.auth.login.LoginContext.access$000(LoginContext.java:203)
  at javax.security.auth.login.LoginContext$4.run(LoginContext.java:690)
  at javax.security.auth.login.LoginContext$4.run(LoginContext.java:688)
  at java.security.AccessController.doPrivileged(Native Method)
  at javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:687)
  at javax.security.auth.login.LoginContext.login(LoginContext.java:595)
  at oracle.odi.core.security.internal.ODIJpsHelper.createSubject(ODIJpsHelper.java:69)
  at oracle.odi.core.security.SecurityManager.createAuthentication(SecurityManager.java:250)
  at oracle.odi.runtime.agent.servlet.AgentServlet.processRequest(AgentServlet.java:623)
  at oracle.odi.runtime.agent.servlet.AgentServlet.doPost(AgentServlet.java:590)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
  at org.mortbay.jetty.servlet.ServletHolder.handle(ServletHolder.java:502)
  at ...
Caused by: oracle.security.jps.internal.jaas.module.AuthenticationException: Incorrect password was provided.
  at oracle.security.jps.internal.jaas.module.authentication.JpsUserAuthenticator.authenticate(JpsUserAuthenticator.java:72)
  at oracle.security.jps.internal.jaas.module.authentication.JpsUserAuthenticationLoginModule.login(JpsUserAuthenticationLoginModule.java:62)
  ... 31 more
Caused by: javax.security.auth.login.FailedLoginException: Incorrect password was provided.
  at oracle.security.jps.internal.jaas.module.idstore.IdStoreLoginModule.authenticate(IdStoreLoginModule.java:292)
  at oracle.security.jps.internal.jaas.module.idstore.IdStoreLoginModule.login(IdStoreLoginModule.java:233)
  at sun.reflect.GeneratedMethodAccessor72.invoke(Unknown Source)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
  at java.lang.reflect.Method.invoke(Method.java:606)
  at javax.security.auth.login.LoginContext.invoke(LoginContext.java:762)
  at javax.security.auth.login.LoginContext.access$000(LoginContext.java:203)
  at javax.security.auth.login.LoginContext$4.run(LoginContext.java:690)
  at javax.security.auth.login.LoginContext$4.run(LoginContext.java:688)
  at java.security.AccessController.doPrivileged(Native Method)
  at javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:687)
  at javax.security.auth.login.LoginContext.login(LoginContext.java:595)
  at oracle.security.jps.internal.jaas.module.authentication.JpsUserAuthenticator.authenticate(JpsUserAuthenticator.java:63)
  ... 32 more
Caused by: oracle.security.idm.AuthenticationException: invalid username/password
  at oracle.security.idm.providers.oid.OIDUserManager.authenticateUser(OIDUserManager.java:208)
  at oracle.security.idm.providers.oid.OIDUserManager.authenticateUser(OIDUserManager.java:75)
  at oracle.security.jps.internal.jaas.module.idstore.IdStoreLoginModule.authenticateUser(IdStoreLoginModule.java:356)
  at oracle.security.jps.internal.jaas.module.idstore.IdStoreLoginModule.authenticate(IdStoreLoginModule.java:272)
  ... 44 more
  Caused by: javax.naming.AuthenticationException: [LDAP: error code 49 - Invalid Credentials]
  ... 48 more

Changes

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms