Total Pageviews

Friday, January 20, 2023

to check Alias command in linux

keytool -list -keystore /../../../jdk/jdk1.8.0_341/jre/lib/security/cacerts -storepass changeit | grep Alias

Wednesday, January 11, 2023

OAM 12c error Caused By: oracle.security.fed.controller.frontend.action.RequestHandlerRuntimeException: An error occurred while verifying/signing/encrypting/decrypting a message java.security.NoSuchAlgorithmException: http://www.w3.org/2001/04/xmldsig-more#rsa-sha256 Signature not available; oracle.security.fed.security.util.CryptoException: java.security.NoSuchAlgorithmException: http://www.w3.org/2001/04/xmldsig-more#rsa-sha256 Signature not available

error Caused By: oracle.security.fed.controller.frontend.action.RequestHandlerRuntimeException: An error occurred while verifying/signing/encrypting/decrypting a message java.security.NoSuchAlgorithmException: http://www.w3.org/2001/04/xmldsig-more#rsa-sha256 Signature not available; oracle.security.fed.security.util.CryptoException: java.security.NoSuchAlgorithmException: http://www.w3.org/2001/04/xmldsig-more#rsa-sha256 Signature not available Reason This error happen once we applied the OCT 2022 patch and changed the algorithm to sha256 from sha1 it is a bug and oracle provided the patch Oracle Access Manager (OAM) Federation Login Flow Fails "Incorrect username or password was specified" After Applying OAM BUNDLE PATCH 12.2.1.4.220906 (Doc ID 2905580.1) Solution Apply the above bundle patch to fix the issue

once certificate is updated follow the below steps to update database

once certificate is updated dow the following downloadAccessAtrificats(domainHome="/../../domains/IAMAccessDomain",prosFile="/../dbschema.properties") upload all certs into .oamkeystore and amtruststore saveAccessAtrificats(domainHome="/config/oam_domain",profFile="/config/oam/oam_domain/bin/dbschema.properties") if you dont run save command, new information will not show up

Tuesday, January 3, 2023

OAM 12c SAML Response needs value in firstname.lastname format in the response

Requirenment. We need to achieve a reuirenment where SAML response should be firstname.lastname but our username attribute from the OUD have email address. Tableau require username attribute in this formate. Solution. In a SAML response we have to contatinate the firstname and lastname values to achieve username attribute value here is the expresion we used in the SAML response username value. ${user.attr.givenname}.${user.attr.sn} results was firstname.lastname

Wednesday, December 28, 2022

tableau error ERROR com.tableausoftware.samlauthentication.handlers.SAMLAuthenticationFailureHandler - SAML Authentication Failed, please contact the administrator. org.springframework.security.authentication.AuthenticationServiceException: Incoming SAML message has no valid value for username attribute. Please verify ServiceProvider configuration in Identity Provider

when integrating Tableau with OAM 12c error is showing up in the tableau logs ERROR com.tableausoftware.samlauthentication.handlers.SAMLAuthenticationFailureHandler - SAML Authentication Failed, please contact the administrator. org.springframework.security.authentication.AuthenticationServiceException: Incoming SAML message has no valid value for username attribute. Please verify ServiceProvider configuration in Identity Provider Cause: Tableau require username attribute be passed on the SAML assertion. Tableau require following attribute username displayName email Solution: updated tableau SP profile "Attribute Name Mapping" value and add username as attribute and $user.attr.mail or $user.attr.username(check your OUD for the attribute name) as the value. if you are not passing displayName value. please add that into the Attribute Name Mapping table as well. Save the profile and test again

Thursday, December 22, 2022

weblogic.management.DeploymentException: java.io.IOException: Error from fcntl() for file locking, Resource temporarily unavailable, errno=11

Weblogic error when starting the server weblogic.management.DeploymentException: java.io.IOException: Error from fcntl() for file locking, Resource temporarily unavailable, errno=11 techpaste.com/2012/07/java-io-ioexception-error-fcntl-file-locking-resource-temporarily-unavailable-errno11-weblogic/ in Adminserver.log

Thursday, December 8, 2022

OHS 12c error oracle.security.fed.event.EventException: Could not find the AuthnRequest associated to the Assertion

Error: oracle.security.fed.event.EventException: Could not find the AuthnRequest associated to the Assertion CAUSE Configuration of OHS server for mod_weblogic for OAM. The "WLCookieName" parameter for the OHS server configuration is missing or has the wrong value. In this specifc case the value was incorrect, OAMSESSIONID, where as the OAM application uses "OAM_JSESSIONID". login_vh.conf:WLCookieName OAMJESSIONID should be: login_vh.conf:WLCookieName OAM_JSESSIONID. Solution: udpated the login_vh.conf file with the correct parameter and restart the OHS,It should fix the error