Cannot access Server manager views when EBC with LDAP/AD security adapter (Doc ID 1438134.1)

Last updated on MARCH 02, 2017

Applies to:

Siebel CRM Call Center - Version 7.5.3.2 [16168] to 8.2.2 SIA[22320] [Release V7 to V8]
Information in this document applies to any platform.
***Checked 2/25/13***

It is not possible to access server manager screens from any OM that is LDAP/ADSI enabled and has EBC on the same security adapter,


Symptoms

Error Displayed :
Back
We detected an Error which may have occurred for one or more of the following reasons:


An error has occurred creating business component 'Enterprise Server' used by business object 'Server Admin'. Please ask your systems administrator to check your application configuration.(SBL-DAT-00222)

Errors in OM logs :



***** SQL Statement Initial Fetch Time for SQL Cursor with ID 127CA1A0: 0.000 seconds *****


EventContext EvtCtxView 3 0 2012-03-19 17:43:15 SA-VBC Named Subsystem View

SecAdptLog API Trace 4 0 2012-03-19 17:43:15 LDAP SecurityGetCredentials8, Security User = 126dce88, Type=GatewayDataSrc.

SecAdptLog API Trace 4 0 2012-03-19 17:43:15 Security Adapter User Get Credentials. Type=GatewayDataSrc.

SecAdptLog API Trace 4 0 2012-03-19 17:43:15 Bind to LDAP server 10.241.59.126 with dn=CN=Application User,OU=People,DC=d1,DC=us,DC=ts.

SecAdptLog API Trace 4 0 2012-03-19 17:43:15 Ldap Utility: GetLdapHandle

SecAdptLog 3rdpartyTrace 3 0 2012-03-19 17:43:15 ldap_init(10.241.59.126, 389) returns ca4c90.

SecAdptLog API Trace 4 0 2012-03-19 17:43:15 Ldap Utility: GetLdapHandle returns 0

SecAdptLog API Trace 4 0 2012-03-19 17:43:15 Ldap Utility: BindAsAppUser

SecAdptLog 3rdpartyTrace 3 0 2012-03-19 17:43:15 ldap_simple_bind_s(ca4c90, CN=Application User,OU=People,DC=d1,DC=us,DC=ts, *) returns 0

SecAdptLog API Trace 4 0 2012-03-19 17:43:15 Ldap Utility: BindAsAppUser succeeded,

SecAdptLog API Trace 4 0 2012-03-19 17:43:15 Ldap Utility: GetUserAttr

SecAdptLog 3rdpartyTrace 3 0 2012-03-19 17:43:15 ldap_search_ext_s(ca4c90, CN=Shared Credentials,OU=People,DC=d1,DC=us,DC=ts, LDAP_SCOPE_BASE, (objectclass=*), ..., ca2a48) returns 0.

SecAdptLog 3rdpartyTrace 3 0 2012-03-19 17:43:15 ldap_first_entry(ca4c90, ca2a48) returns ca2a48.

SecAdptLog 3rdpartyTrace 3 0 2012-03-19 17:43:15 ldap_get_values(ca4c90, ca2a48, url) returns ca2a30, first value is type=DataMata username=SADMIN password=SADMIN.

SecAdptLog 3rdpartyTrace 3 0 2012-03-19 17:43:15 ldap_msgfree (ca2a48)

SecAdptLog API Trace 4 0 2012-03-19 17:43:15 Ldap Utility: GetCredentialValue. Credential=type=DataMata username=SADMIN password=SADMIN, Key=username

SecAdptLog API Trace 4 0 2012-03-19 17:43:15 Ldap Utility: Credential value is SADMIN.

SecAdptLog API Trace 4 0 2012-03-19 17:43:15 Ldap Utility: GetCredentialValue. Credential=type=DataMata username=SADMIN password=SADMIN, Key=password

SecAdptLog API Trace 4 0 2012-03-19 17:43:15 Ldap Utility: Credential value is SADMIN.

SecAdptLog API Trace 4 0 2012-03-19 17:43:15 Ldap Utility: GetCredentialValue. Credential=type=DataMata username=SADMIN password=SADMIN, Key=type

SecAdptLog API Trace 4 0 2012-03-19 17:43:15 Ldap Utility: Credential value is DataMata.

SecAdptLog API Trace 4 0 2012-03-19 17:43:15 Ldap Utility: GetCredentialValue. Credential=type=ServerDataSrc username=SADMIN password=SADMIN, Key=username

SecAdptLog API Trace 4 0 2012-03-19 17:43:15 Ldap Utility: Credential value is SADMIN.

SecAdptLog API Trace 4 0 2012-03-19 17:43:15 Ldap Utility: GetCredentialValue. Credential=type=ServerDataSrc username=SADMIN password=SADMIN, Key=password

SecAdptLog API Trace 4 0 2012-03-19 17:43:15 Ldap Utility: Credential value is SADMIN.

SecAdptLog API Trace 4 0 2012-03-19 17:43:15 Ldap Utility: GetCredentialValue. Credential=type=ServerDataSrc username=SADMIN password=SADMIN, Key=type

SecAdptLog API Trace 4 0 2012-03-19 17:43:15 Ldap Utility: Credential value is ServerDataSrc.

SecAdptLog 3rdpartyTrace 3 0 2012-03-19 17:43:15 ldap_value_free (ca2a30)

SecAdptLog API Trace 4 0 2012-03-19 17:43:15 Unbind from LDAP server.

SecAdptLog 3rdpartyTrace 3 0 2012-03-19 17:43:15 ldap_unbind(ca4c90) returns 0.

GenericLog GenericError 1 0 2012-03-19 17:43:15 (secmgr.cpp (3024) err=7010015 sys=0) SBL-SEC-10015: There are no database credentials assigned for this user for the specified data source on the external authentication system. This is most likely a configuration issue. Please contact your system administrator for assistance.

ObjMgrMiscLog Error 1 0 2012-03-19 17:43:15 (busobj.cpp (1438)) SBL-DAT-00222: An error has occurred creating business component 'Enterprise Server' used by business object 'Server Admin'.

Please ask your systems administrator to check your application configuration.

Changes


EBC Setup Details :
datasource name is ebc_dsn
username/pwd are SADMIN/SADMIN

For EBC to work with LDAP/ADSI, these are the steps:
DB end:
* Check that your EBC was properly setup and is working.
* Check the DSN and uid with your DB Admin

LDAP/ADChanges :
Siebel end :
In your ADSI/LDAP security adapter profile administration, for Credentialattributetype use a multiline fields like "url" and not a single line attribute as this causes EBC to fail.
Multiline field as "url" as credentialattributetype for passing the two separate values for "serverdatasrc" and "EBC_Dsn."

AD/LDAP end:
Work with your LDAP/AD Admin to make sure that multiline field like "url" which is used as credential attribute type is populated as below.

Populated the adsi "url" attribute as under:
type=ServerDataSrc username=SADMIN password=SADMIN
type=ebc_dsn username=SADMIN password=SADMIN

For 8.1.1.3 or later versions, you need to add an additional line:
type=GatewayDataSrc username=XXXXX password=XXXXXX

Enabled LDAP to AD on SFSObjmgr and got th error as below: in OM logs when tried to access the server manager.

Tried to access this with account TEST02 that has both DB userid and LDAP and still failed.
Tried also with G1TEST1 that has only ADSI userd and still failed to access the servermanager screens.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms