Issue : OAM 10g Error
. <html><head><title>Oracle
Access Manager Operation Error</title><META
HTTP-EQUIV="Content-Type" CONTENT="text/html;
charset=utf-8"></head><body><h1>Oracle Access Manager
Operation Error</h1><p>The mapping of credentials (Resource=/login.html
RequesterIP=ipaddress HostTarget=http://servername:port Operation=GET) to a
user profile failed. The Access Server may not be able to connect to the user
directory, or the authentication scheme Anonymous Authentication may have an
invalid obMappingFilter parameter for its credential_mapping
plugin.</p><p>Contact your website administrator to remedy this
problem.</p></body></html
solution.:
this issue happen when you are trying to put a login page at the place that is already protected by policy. in order to resolve this you have to create new Policy for anonyms user and unprotect your login page.
Create another policy to unprotect the page
you are trying to access. at this policy you have to give access to anonymous users.
here are some steps to define Anynomys Policy to access login page that is under /login/login.html.
1.
General Tab à
(specify name of authentication scheme)
2.
Resources à
Resource Type (http) à
Host Identifiers (hostname) à
URL Prefix (page where your url exists e.g /login/login.html).
3.
Authorization Rules à Anonymous Authorization rule.
a.
Allow Acccess (OblixAnonymous) Role Any one.
4.
Default Rules à
at General Authentication Scheme = Anonymous Authentication
a.
Authorizatoin Expression = Anonymous
Authorization rule.
5.
Policies à
Resouces types = http
a.
Resouce Operations Get POST Put
b.
Resource
i. Host
Identifiers = hostname
ii. URL
Prefix /login/login.html
iii. Host
Identifiers = Hostname
or other reason can be your OID or LDAP is missing username defined in Plugin obMappingFilter
in order to fix this do following.
if u are using 10g go to Access console --> Access System Console --> click on Authentication Management.
at Authentication Management scheme for Anonymous
Authentication there is a Plugin defined like
credential_mapping
|
obMappingBase="dc=t-mobile,dc=com",obMappingFilter="(uid=OblixAnonymous)"
|
Make sure cn=OblixAnonymous is present in OID or LDAP. If not, import/create
this user. This user is required to have anonymous access to Lost Password
Management url.