Configuring EBS Asserter In Weblogic 10.3.6. Invalid Certificate Obtained From IDCS

(Doc ID 2361462.1)

Last updated on FEBRUARY 16, 2018

Applies to:

Identity Cloud Service (IDCS) - Version N/A and later
Information in this document applies to any platform.

Symptoms

In IDCS, for ebiz SSO Service

On configuring EBS Asserter in weblogic 10.3.6., Invalid certificate error is obtained from IDCS


ERROR
-----------------------



####<17/01/2018 1:54:13 PM AWST> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <[ServletContext@1935121145[app:ebs module:ebs.war path:/ebs spec-version:2.5]] Servlet failed with Exception
oracle.security.jps.idcsbinding.shared.IDCSException: java.lang.RuntimeException: javax.net.ssl.SSLKeyException: FATAL Alert:BAD_CERTIFICATE - A corrupt or unuseable certificate was received.
  at oracle.security.jps.idcsbinding.shared.AuthenticationManagerImpl.getAuthorizationCodeUrl(AuthenticationManagerImpl.java:121)
  at com.oracle.ebs.sso.RequestServlet.initiateIdcsSso(RequestServlet.java:97)
  at com.oracle.ebs.sso.RequestServlet.processRequest(RequestServlet.java:60)
  at com.oracle.ebs.sso.RequestServlet.doGet(RequestServlet.java:31)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:707)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
  at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
  at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
  at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:301)
  at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
  at com.oracle.ebs.sso.RequestWrapperFilter.doFilter(RequestWrapperFilter.java:39)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
  at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.wrapRun(WebAppServletContext.java:3730)
  at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3696)
  at weblogic.security.acl.internal.AuthenticatedSubject.




STEPS
-----------------------
The issue can be reproduced at will with the following steps:
1. Enable EBS asserter in weblogic


Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms