'[13201] Could not connect to LDAP server' on OFSAA for Windows User ID (Doc ID 2197971.1)

Last updated on MAY 04, 2017

Applies to:

Oracle Financial Services Analytical Applications Infrastructure - Version 8.0.0 and later
Oracle Financial Services Profitability Management - Version 8.0.0 and later
Information in this document applies to any platform.
Oracle Financial Services Analytical Applications (OFSAA)

Symptoms

For Oracle Financial Services Analytical Applications (OFSAA) 8.0.1, you are trying to configure OFSAA with LDAP using MS Active Directory (MSAD) and single sign on.  You are following the instructions in the 8.0 OFSAA Infrastructure Administration Guide.  But when you try to update the "Configuration" screen with the LDAP details, you get the following error:

[13201] Could not connect to LDAP server with the given
details. Please provide valid LDAP URL and password.

The following error also exists in the SMSService.log from $FIC_DB_HOME/common/FICServer/logs:

[UMMLOG] Apr 12,16 13:43:10 : [CONFIGURATIONSERVICES]Could not connect to LDAP Server with the details provided.Please verify it

If you test the LDAP connection using the attached LDAPTestUtilityLatest.zip, you get the error below:

javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr:
DSID-0C0903CF, comment: AcceptSecurityContext error, data 52e, v2580 ]
       at com.sun.jndi.ldap.LdapCtx.mapErrorCode(Unknown Source)
       at com.sun.jndi.ldap.LdapCtx.processReturnCode(Unknown Source)
       at com.sun.jndi.ldap.LdapCtx.processReturnCode(Unknown Source)
       at com.sun.jndi.ldap.LdapCtx.connect(Unknown Source)
       at com.sun.jndi.ldap.LdapCtx.<init>(Unknown Source)
       at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(Unknown Source)
       at com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(Unknown Source)
       at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(Unknown Source)
       at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(Unknown Source)
       at javax.naming.spi.NamingManager.getInitialContext(Unknown Source)
       at javax.naming.InitialContext.getDefaultInitCtx(Unknown Source)
       at javax.naming.InitialContext.init(Unknown Source)
       at javax.naming.InitialContext.<init>(Unknown Source)
       at javax.naming.directory.InitialDirContext.<init>(Unknown Source)
       at com.ofs.reveleus.utilities.LDAP.LDAPTest.getLDAPDirContext(LDAPTest.java:549)
       at com.ofs.reveleus.utilities.LDAP.LDAPTest.retrieveUser(LDAPTest.java:205)
       at com.ofs.reveleus.utilities.LDAP.LDAPTest.authenticateUserForLogin(LDAPTest.java:158)
       at com.ofs.reveleus.utilities.LDAP.LDAPTest.main(LDAPTest.java:123)
Fri Apr 15 14:46:04 CDT 2016, LDAPTest[GETLDAPDIRCONTEXT]::NamingException
Fri Apr 15 14:46:04 CDT 2016, LDAPTest[NAMINGEXCEPTION]::[LDAP: error code 49 -
80090308: LdapErr: DSID-0C0903CF, comment: AcceptSecurityContext error, data 52e, v2580 ]
Fri Apr 15 14:46:04 CDT 2016, LDAPTest[AUTHENTICATEUSERFORLOGIN]::User Object is null
Fri Apr 15 14:46:04 CDT 2016, LDAPTest[MAIN]::User log in failed
Do you want to test again?[y/n]

As a result of the error, you cannot complete the LDAP configuration.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms