Error accessing OAM protected resource -Access Server has returned a fatal error OAM-02073

PRODUCT:
Oracle Access Manager (OAM)-version 11.1.2.2

SYMPTOMS:
Today I have faced issue in accessing OAM protected resource. After accessing protected URL faced below error instead of redirecting to SSO page.
ERROR CODE: Oracle Access Manager Operation Error, OAM-02073

Log Trace:
oam_diagnostics.logs

oblog.log

CAUSE:
1. Above errors indicate that in the Host Identifier configured for OAM Agent, there is no entry with agent-name defined under Host Name.
2. When adding additional entries for Host Name Variation section, the entry with agent-name should not be removed/replaced.

SOLUTION:
1. Login to oamconsole and double click on Host Identifiers link under Policy Configuration tab.
2. Enter name of the agent name and click Search
3. Click on agent name
4. under Host name variations
click +
add <agent name> under Host Name text box
keep port field empty
5. click apply

Thank you for referring my blog, please post your comments for any queries/suggestions..Have a nice time :)

Operation failed when PeopleSoft hrms tries to give a call to OIM to create/modify user

Issue: Operation failed when PeopleSoft hrms tries to give a call to OIM to create/modify user

PRODUCT: 

Oracle Identity Manager (OIM)-version 11.1.2.2

PeopleSoft HRMS

SYMPTOMS: 

ERROR CODE: java.lang.SecurityException: [Security:090304]Authentication Failed: User xelsysadm javax.security.auth.login.FailedLoginException: [Security:090302]Authentication Failed: User xelsysadm denied

Log Trace:

OIM logs:

[ACTIVE].ExecuteThread: '11' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 70cd304c0a93c1f8:-74d80069:156bc012dd9:-8000-00000000000002cc,0] [APP: PeopleSoftOIMListener] Class/Method: tcUtilityFactory/tcUtilityFactory(Hashtable env, tcSignatureMessage poUserIDMessage) encounter some problems: javax.security.auth.login.LoginException: java.lang.SecurityException: [Security:090304]Authentication Failed: User xelsysadm javax.security.auth.login.FailedLoginException: [Security:090302]Authentication Failed: User xelsysadm denied[[

javax.security.auth.login.LoginException: javax.security.auth.login.LoginException: java.lang.SecurityException: [Security:090304]Authentication Failed: User xelsysadm javax.security.auth.login.FailedLoginException: [Security:090302]Authentication Failed: User xelsysadm denied

PeopleSoftOIMListener] oracle.iam.connectors.psft.common.handler.APIProvider: initializeOIMApiFactory: Unable to login into OIM. Login would be retried.

[2016-08-24T17:09:48.403+05:30] [oim_server1] [ERROR] [] [ORACLE.IAM.CONNECTORS.PSFT] [tid: [ACTIVE].ExecuteThread: '11' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 70cd304c0a93c1f8:-74d80069:156bc012dd9:-8000-00000000000002cc,0] [APP: PeopleSoftOIMListener] oracle.iam.connectors.psft.common.handler.APIProvider: initializeOIMApiFactory: Login attempt #2 out of 2 failed.

[2016-08-24T17:09:48.404+05:30] [oim_server1] [ERROR] [] [ORACLE.IAM.CONNECTORS.PSFT] [tid: [ACTIVE].ExecuteThread: '11' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 70cd304c0a93c1f8:-74d80069:156bc012dd9:-8000-00000000000002cc,0] [APP: PeopleSoftOIMListener] oracle.iam.connectors.psft.common.handler.APIProvider: initializeOIMApiFactory: Login would be retried after 1000 miliseconds

[2016-08-24T17:09:49.406+05:30] [oim_server1] [ERROR] [] [ORACLE.IAM.CONNECTORS.PSFT] [tid: [ACTIVE].ExecuteThread: '11' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 70cd304c0a93c1f8:-74d80069:156bc012dd9:-8000-00000000000002cc,0] [APP: PeopleSoftOIMListener] oracle.iam.connectors.psft.common.listener.PeopleSoftOIMListener: process: Error logging into OIM

[2016-08-24T17:09:49.407+05:30] [oim_server1] [ERROR] [] [ORACLE.IAM.CONNECTORS.PSFT] [tid: [ACTIVE].ExecuteThread: '11' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: 70cd304c0a93c1f8:-74d80069:156bc012dd9:-8000-00000000000002cc,0] [APP: PeopleSoftOIMListener] oracle.iam.connectors.psft.common.listener.PeopleSoftOIMListener: process: Error occurred while processing message[[

Error logging into OIM

CAUSE:

1. PeopleSoft application tries to login to OIM application before doing any user creations/modifications with oim admin user "xelsysadm".

2. But PeopleSoft is not able to login with Xelsysadm user credentials because "OIMAuthenticationProvider" is not present under Providers in weblogic Server where OIM managed server is running.Find below screenshot from WLS.

3. Ideally "OIMAuthenticationProvider" should present like below: 

SOLUTION:

1. Create OIMAuthenticator like below in weblogic Server where OIM managed server is running:

2. Restart the domain, you should be able to resove the issue.

Thank you for referring my blog, please post your comments for any queries/suggestions..Have a nice time :)

Issue while starting OID services

Issue while starting OID services

PRODUCT:

Oracle Internet Directory 11g - Version 11.1.1.7

SYMPTOMS:

 While starting OID services getting below error:

ERROR CODE: [tid: 1] ProcessDispatcher: Exec of OIDLDAPD failed with error 13

Log Trace:
#################################
[OID] [NOTIFICATION:16] [] [OIDLDAPD] [host: localhost] [pid: 2245] [tid: 1] ProcessDispatcher:  Thread Started

[OID] [NOTIFICATION:16] [] [OIDLDAPD] [host: localhost] [pid: 2245] [tid: 2] DispatcherListener: Thread Started

[OID] [ERROR:8] [23124] [OIDLDAPD] [host: localhost] [pid: 2245] [tid: 1] ProcessDispatcher: The server with Process ID = 2270 is not running.

[OID] [NOTIFICATION:16] [] [OIDLDAPD] [host: localhost] [pid: 2245] [tid: 1] ProcessDispatcher: Starting OIDLDAP Server,PID=2416

[OID] [NOTIFICATION:16] [] [OIDLDAPD] [host: localhost] [pid: 2245] [tid: 1] ProcessDispatcher: Exec of OIDLDAPD failed with error 13

[OID] [ERROR:8] [23124] [OIDLDAPD] [host: localhost] [pid: 2245] [tid: 1] ProcessDispatcher: The server with Process ID = 2416 is not running.

[OID] [NOTIFICATION:16] [] [OIDLDAPD] [host: localhost] [pid: 2245] [tid: 1] ProcessDispatcher: Starting OIDLDAP Server,PID=2428

[OID] [NOTIFICATION:16] [] [OIDLDAPD] [host: localhost] [pid: 2245] [tid: 1] ProcessDispatcher: Exec of OIDLDAPD failed with error 13

[OID] [ERROR:8] [23124] [OIDLDAPD] [host: localhost] [pid: 2245] [tid: 1] ProcessDispatcher: The server with Process ID = 2428 is not running.

[OID] [NOTIFICATION:16] [] [OIDLDAPD] [host: localhost] [pid: 2245] [tid: 1] ProcessDispatcher: Starting OIDLDAP Server,PID=2442

[OID] [NOTIFICATION:16] [] [OIDLDAPD] [host: localhost] [pid: 2245] [tid: 1] ProcessDispatcher: Exec of OIDLDAPD failed with error 13

[OID] [ERROR:8] [23124] [OIDLDAPD] [host: localhost] [pid: 2245] [tid: 1] ProcessDispatcher: The server with Process ID = 2442 is not running.

[OID] [NOTIFICATION:16] [] [OIDLDAPD] [host: localhost] [pid: 2245] [tid: 1] ProcessDispatcher: Starting OIDLDAP Server,PID=2479

[OID] [NOTIFICATION:16] [] [OIDLDAPD] [host: localhost] [pid: 2245] [tid: 1] ProcessDispatcher: Exec of OIDLDAPD failed with error 13

[OID] [ERROR:8] [23124] [OIDLDAPD] [host: localhost] [pid: 2245] [tid: 1] ProcessDispatcher: The server with Process ID = 2479 is not running.



#################################

CAUSE:

$ORACLE_HOME/bin/oidldapd file have the wrong permissions:

SOLUTION:

Follow below action plan:

 cd $ORACLE_HOME/bin
chown oracle:oinstall oidldapd
chmod 0710 oidldapd

Note:
In my case OID services are configured with oracle user and oinstall

Now, OID services should come up.

Thank you for referring my blog, please post your comments for any queries/suggestions..Have a nice time :)