Total Pageviews

Sunday, July 6, 2014


 
Issue : OAM 10g Error

. <html><head><title>Oracle Access Manager Operation Error</title><META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=utf-8"></head><body><h1>Oracle Access Manager Operation Error</h1><p>The mapping of credentials (Resource=/login.html RequesterIP=ipaddress HostTarget=http://servername:port Operation=GET) to a user profile failed. The Access Server may not be able to connect to the user directory, or the authentication scheme Anonymous Authentication may have an invalid obMappingFilter parameter for its credential_mapping plugin.</p><p>Contact your website administrator to remedy this problem.</p></body></html

 
solution.:
this issue happen when you are trying to put a login page at the place that is already protected by policy. in order to resolve this you have to create new Policy for anonyms user and unprotect your login page.

Create another policy to unprotect the page you are trying to access. at this policy you have to give access to anonymous users.
 
here are some steps to define Anynomys Policy to access login page that is under /login/login.html.

1.      General Tab à (specify name of authentication scheme)

 

2.      Resources à Resource Type (http) à Host Identifiers (hostname) à URL Prefix (page where your url exists e.g /login/login.html).

 

3.      Authorization Rules à Anonymous Authorization rule.

 

a.      Allow Acccess (OblixAnonymous) Role Any one.

4.      Default Rules à at General Authentication Scheme = Anonymous Authentication

a.      Authorizatoin Expression = Anonymous Authorization rule.
 
 

5.      Policies à Resouces types = http

a.      Resouce Operations Get POST Put

b.      Resource

                                                    i.     Host Identifiers = hostname

                                                   ii.     URL Prefix /login/login.html

                                                  iii.     Host Identifiers = Hostname

 or other reason can be your OID or LDAP is missing username defined in Plugin obMappingFilter
in order to fix this do following.

if u are using 10g go to Access console  --> Access System Console --> click on Authentication Management.

at Authentication Management scheme for Anonymous Authentication there is a Plugin defined like

credential_mapping
obMappingBase="dc=t-mobile,dc=com",obMappingFilter="(uid=OblixAnonymous)"


Make sure cn=OblixAnonymous is present in OID or LDAP. If not, import/create this user. This user is required to have anonymous access to Lost Password Management url.
 
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)