Leave a Comment:
48 comments
Processes in Instance: asinst_OID
———————————+——————–+———+———-+————+———-+———–+——
ias-component | process-type | pid | status | uid | memused | uptime | ports
———————————+——————–+———+———-+————+———-+———–+——
ohs1 | OHS | 718 | Alive | 1855929704 | 364012 | 0:11:09 |
https:9999,https:4443,http:7777
oid2 | oidldapd | 1517 | Alive | 1855929706 | 295268 | 0:10:14 | N/A
oid2 | oidldapd | 1474 | Alive | 1855929705 | 95700 | 0:10:42 | N/A
oid2 | oidmon | 717 | Alive | 1855929703 | 80964 | 0:11:09 |
LDAPS:3131,LDAP:3060
EMAGENT | EMAGENT | 716 | Alive | 1855929702 | 63840 | 0:11:09 | N/A
[oracle@oel5 ~]$ ldapbind -D “cn=orcladmin” -q -h “oel5.localdomain” -p 3060
Please enter bind password:
bind successful
[oracle@oel5 ~]$ ldapbind -p 389 -h oel5.localdomain -D “cn=orcladmin”
Cannot connect to the LDAP server
altough oidldap is up its port seem n/a
and when i try Configure my Database to Use the Directory i am stuck at 3. step http://download.oracle.com/docs/cd/B28359_01/network.111/b28528/getstrtd.htm#CBHDBFGC
i cant figure out what i am missing can anyone have anyidea about this problem
thanks
@ ishakfc71,
You have to use Port 3060 and SSL Port 3131 as in OID 11g these are LDAP ports .
389/636 are for OID 11g .
oid2 | oidmon | 717 | Alive | 1855929703 | 80964 | 0:11:09 | LDAPS:3131,LDAP:3060
This output from opmnctl suggestes that your OID is listening on 3131 (ssl) and 3060 (non ssl port)
Replythanks for reply
but when i try to Configure Database to Use the Directory http://download.oracle.com/docs/cd/B28359_01/network.111/b28528/getstrtd.htm#CBHDBFGC
i cant go on from step 3
altough i tried to use port 3060 and 3131 for connection
ConfigException: Could not check for the Oracle Schema:
oracle.net.config.ConfigException: TNS-04409: Directory service error
caused by: oracle.net.config.DirectoryServiceException: TNS-04405: General
error
caused by: oracle.net.ldap.NNFLException
it gives the error
the directory has not been configured for this usage .it does not contain
the required Oracle Schema, or the Oracle Schema version is not correct.
which part i am missing i am just stuck 🙁
@ ishakfc71 ,
You must allow anonymous binds in OID 11g first.
Follow steps here
http://download.oracle.com/docs/cd/E14571_01/oid.1111/e10029/authentication.htm#OIDAG2564
http://download.oracle.com/docs/cd/E14571_01/oid.1111/e10029/authentication.htm#OIDAG2565
You could use ODSM . More here on ODSM http://onlineappsdba.com/index.php/2009/09/30/oid-11g-oracle-directory-services-manager-odsm/
Replythank you very much for fast reply:D
Oracle Enterprise Manager Fusion Middleware Control is not working for me most probably because of oracle home configuration i read some post about this and i will try to resolve it they say i shoul install middleware app with another user so oracle_homes wont crash ??
but for the problem at hand
ldapmodify -D cn=orcladmin -q -p portNum -h hostname -f ldifFile
with an LDIF file such as:
dn: cn=oid1,cn=osdldapd,cn=subconfigsubentry
changetype: modify
replace: orclAnonymousBindsFlag
orclAnonymousBindsFlag: 1
where should i look for ldif file i couldnt find it and as port number i assume i will use 3060 or 3131 and lastly for ldapmodify do it matter to use database_home/bin or OİD_home/bin
can i use anyone of them
@ ishakfc71,
It looks like you are new to LDAP/OID. My recommendation is to read more on OID . Also check http://onlineappsdba.com/index.php/category/eus/
First create file like changeBind.ldif with entry as dn: cn=oid1,cn=osdldapd,cn=subconfigsubentry
changetype: modify
replace: orclAnonymousBindsFlag
orclAnonymousBindsFlag: 1
Now on OID 11g machine run following command
ldapmodify -D “cn=orcladmin” -w [orcladmin_password] -q -p 3060 -h [oid_host] -f changeBind.ldif
More on ldapmodify http://download.oracle.com/docs/cd/E14571_01/oid.1111/e10035/syntax_datamngmnt.htm#OIMUR0312
For ODSM you don’t need Oracle Enterprise Manager Fusion Middleware Control (all you need is wls_ods1 managed server which runs ODSM)
You can access ODSM from
http:// server_where_weblogic_compo_of_oid_is_running:7005/odsm
Replythank you very much i am much more close the answer now i already connected the url http:// server_where_weblogic_compo_of_oid_is_running:7005/odsm and
and able to create a connection so i will start to test and learn
thanks again
hi,
sory for the inconvenience like you said i am new to the whole oracle so my questions are a bit absurd most probably:D
http://download.oracle.com/docs/cd/B28359_01/network.111/b28528/getstrtd.htm#CBHDBFGC
2.4 Mapping Enterprise Users to the Shared Schema
can i do this step without enterprise manager i have some problem with that
and when To create enterprise users, Joe and Nina:
Connect to the Oracle Internet Directory Self Service Console. Use the following URL:
http://hostname:7777/oiddas/
but the page requested is not found
my goal is reach to create user screen
how can i resolve this issues can i really need enterprise manager or
to create enterprise user do i need to reach
http://hostname:7777/oiddas/
this url
thanks for your patiance by the way
Reply@
OIDDAS is application which comes with 10g OID , though you can install OIDDAS 10g and integrate with OID11g but my recommendation is not to use OUIDDAS.
Use ODSM application to create users in OID 11g
http://download.oracle.com/docs/cd/E14571_01/oid.1111/e10029/oid_dir_entries.htm#i35622
For Mapping Enterprise Users to the Shared Schema – You can use command line tool eusm (This is in 11g Database ORACLE_HOME/bin)
Replythere are some steps i am not able to do for ex.
Mapping Enterprise Users to the Shared Schema
because i have some problem with my enterprise manager altough i have fully controlled system.
i can start database with sqlplus and my listener is up etc..
can i do these steps without using enterprise manager
and how of course
thanks
Replysoryy i didnt realize you already answered my question 😀
//For Mapping Enterprise Users to the Shared //Schema – You can use command line tool eusm //(This is in 11g Database ORACLE_HOME/bin)
i will just examine tool eusm and how to use it
good days
Replysory i didnt catch the last of the message
you already answered my question
//For Mapping Enterprise Users to the Shared //Schema – You can use command line tool eusm //(This is in 11g Database ORACLE_HOME/bin)
i will just look how to use “eusm”
good days
Reply@ ishakfc71,
Check metalink note # 1085065.1 EUSM, Command Line Tool For EUS Administration
Replyhi,
i started to work on odsm (identity management 11g)but it seems oiddas is more user friendly i want to try it to but i couldnt figure out how to integrate it atul can you help me once more 😀
thanks
Reply@ ishakfc71,
What exactly are you finding difficult in ODSM ?
Did you go through ODSM documentation (link provided above) ?
Replyhi,
my first problem was i couldnt connect enterprise manager dbconsole
my system is
(oel5-64bit/11gR2 database(64 bit))
but i can connect via sql http://download.oracle.com/docs/cd/B28359_01/network.111/b28528/getstrtd.htm#CBHDBFGC
i was tryin to do this document
with your help(eusm tool) i managed to mapp shared shema and connect as orcladmin to database
but now i am stuck at using enterprise roles
in that document it uses oiddas.
with odsm i added a user in my dc=localdomain and try to connect with that user to do database but couldnt
i installed 11gr2 database to windows 2003 server now and with this machine i can see dbconsole without anyproblem and i also installed weblogic 10gR3 now i will install identity management(11.1.20) to this machine
and i was wondering if i can integrate oiddas to this machine
because when i create user with odsm i couldnt log on and also i messed with some settings with oel5 machine so i am getting ora errors and couldnt connect with even orcladmin now.
i will read that document more througly i didnt pay much attention at first
i saw one of your previous post
http://onlineappsdba.com/index.php/2010/08/05/oracleidm-11g-step-by-installation-of-oam-oim-oaam-oapm-oin-111130-part-i-load-schema/
5. Install Oracle SOA 11.1.1.2.0 – Required only for OIM
should i install that SOA for user enterprise security
thanks
@ ishakfc71,
To configure 10g OSSO and OIDDAS with OID 11g check this link
http://download.oracle.com/docs/cd/E14571_01/install.1111/e12002/sso_das.htm#CIHEGHIG
OIDDAS in document you mentioned was to create Enterprise Users which you can do via ODSM too. For Enterprise Role use DB Console (enterprise manager) or EUSM command (follow metalink note on how to create enterprise role using eusm)
Q: I added a user in my dc=localdomain and try to connect with that user to do database but couldnt .
A. What error you are hitting ? Did you try tpo troublehoot using http://onlineappsdba.com/index.php/2010/12/16/troubleshoot-ora-01017-for-database-login-when-database-is-configured-with-eus/
Q: Install Oracle SOA 11.1.1.2.0 – Required only for OIM should i install that SOA for user enterprise security.
A: SOA or OIM has nothing to do with Enterprise User or Role.
Replyhi,
thanks for the pervious reply ,
this question is a bit different
i installed same system to a windows 2008 server (64) machine
11gr2 database +rcu(32 bit from another comp.)
ewblogic(10.3.3.0) identity management 11.1.1.2
i installed all necessary parts but while configuring
OİM cant start the oracle virtual directory nor can i start it by manual (opmnct.bat)
http://download.oracle.com/docs/cd/E12839_01/oid.1111/e10046/basic_process.htm#BABIJPLP from this document
what i am missing?
Reply@ ishakfc71,
You care using weblogic 10.3.3 where as OVD/OID software is 11.1.1.2 .
Either user weblogic 11.3.2 or patch OID/OVD to 11.1.1.3 and then configure OVD/OID.
For error message in OVD/OID startup check log under $ORACLE_INSTANCE directory
Replyhi,
thanks for all your help Atul,
when i upgrade my OİD to 11.1.1.3 my problem is resolved
i can map my 11gr2 database and connect it with orcladmin
but now my problem is i try to map a 10.2.0.3 rac database i completed mapping and i can see
it with OID
but when i try to connect with orcladmin at 10.2.0.3 database i am getting
ora-28030 i try to look it internet but i couldnt find any usefull information
do you have any idea?
Reply@ ishakfc71,
Open ldap.ora on machine where you are hitting ora-28030 . Check ldap server host port and realm
See if you can telnet & run ldapbind to ldap sever host & port (open ldap port on firewall between Database & OID server – If any)
Replyldap.ora seems
DIRECTORY_SERVERS=(192.0.0.40:3060:3131)
DEFAULT_DOMAİN_CONTEXT=”dc=rver”
DIRECTORY_SERVER_TYPE=OID
when i try to telnet 192.0.0.40 from database
remote host refused to connect
Ora-28030 When Connecting Remotely To a RAC Database [ID 861111.1]
Applies to:
Advanced Networking Option – Version: 10.2.0.1 to 11.1.0.7
This problem can occur on any platform.
Symptoms
Remote connections to a RAC database using EUS users are failing with ORA-28030 if the sqlnet.ora file of the server does not have the WALLET_LOCATION parameter. The bequeath connections are working fine even when the parameter is not set.
.
.
Cause
OCR does not have the ORACLE_BASE environment parameter set.
If this environment parameter is not set then the default location of the wallet cannot be determined and as such wallet lookups are failing.
.
Solution
Add the ORACLE_BASE environment variable using the following commands:
srvctl setenv nodeapps -n -t ORACLE_BASE=
srvctl setenv database -d -t ORACLE_BASE=
i find above article
when i check my server sqlnet.ora
SQLNET.AUTHENTICATION_SERVICES = (NTS)
there is nothing about wallet location
i can ping ip adrees of server(oid 11.1.1.3) and rac database(10.2.0.3) at another computer
should i use above commands at database i am a bit worried that database kinda important i shouldnot mess up with this:(
????
did you do something like this before or do you know how?
thanks
sorry for not explainin at one post
Remote connections to a RAC database using EUS users are failing with ORA-28030 if the sqlnet.ora file of the server does not have the WALLET_LOCATION parameter
from this lines
i dont have a sqlnet.ora file at database server
i should made a mistake somewhere
what i am missing?
thanks
@ ishakfc71,
Try telnet to ldap port and tell me output
telnet 192.0.0.40 3060
If you get connection refused then this is issue . Check if there is any firewall between DB and OID which is blocking access.
If this works (you get blank black window) then issue is ORACLE_BASE not set .
Replyit is connected but my oracle_base is set
(i will check it again)
1.computer (oracle rac 10.2.0.3)
2.computer (oracle11gr2 +OIM//OID(11.1.1.3))
i am sure about rac computer (because i am not the one who configured it 🙁
how should i look it and
why i dont have an sqlnet.ora file at rac database
thanks
Replyhi,
my problem is resolved my mistake is
oid server and database server couldnt be able to communicate and i just add oid server computer ip and name to
database server /etc/hosts file.
let me ask you one more question from this
whe i try to create enterprise role
http://download.oracle.com/docs/cd/B28359_01/network.111/b28528/getstrtd.htm#CBHDBFGC
when i try to manage domains i cant see OracleDefaultDomain altough there are 2 database in there
when i try to add database i want to configure to another domain it gives error it is in already OracleDefaultDomain
to use enterprise roles i need to manage domains how should i proceed
should i delete my database from Defaultdomain and add it to another domain which i wiil create
or can another way to see OracleDefaultDomain at enterprise manager
thanks
ReplyHi Atul,
When I startup all processes using opmnctl startall, EMAGENT remains down. When I start it up individually I get –
oracle@oid-live-ldn1v:/home/oracle/OID:% opmnctl startproc ias-component=EMAGENT
opmnctl startproc: starting opmn managed processes…
opmnctl status
================================================================================
opmn id=oid-live-ldn1v:6701
0 of 1 processes started.
ias-instance id=asinst_1
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
——————————————————————————–
ias-component/process-type/process-set:
EMAGENT/EMAGENT/EMAGENT/
Error
–> Process (index=1,uid=330488255,pid=25371)
time out while waiting for a managed process to start
Log:
/ora_code/app/oracle/product/Middleware/asinst_1/diagnostics/logs/EMAGENT/EMAGENT/console~EMAGENT~1.log
There is nothing in the log though –
——–
12/01/10 14:21:32 Start process
——–
Oracle Enterprise Manager 10g Release 5 Grid Control 10.2.0.5.0.
Copyright (c) 1996, 2009 Oracle Corporation. All rights reserved.
Starting agent in process
——–
12/01/10 14:23:33 Stop process
——–
Oracle Enterprise Manager 10g Release 5 Grid Control 10.2.0.5.0.
Copyright (c) 1996, 2009 Oracle Corporation. All rights reserved.
Stopping agent … stopped.
——–
12/01/10 14:28:00 Start process
——–
Oracle Enterprise Manager 10g Release 5 Grid Control 10.2.0.5.0.
Copyright (c) 1996, 2009 Oracle Corporation. All rights reserved.
Starting agent in process
——–
12/01/10 14:30:01 Stop process
——–
Oracle Enterprise Manager 10g Release 5 Grid Control 10.2.0.5.0.
Copyright (c) 1996, 2009 Oracle Corporation. All rights reserved.
Stopping agent … stopped.
Thanks
Anita
@ anitasr,
Does this mean you can never start EMAGENT ?
or
This is intermittent issue ?
Do you see any errors in
$ORACLE_INSTANCE/EMAGENT/EMAGENT/sysman/log
ReplyHi Atul ,
I have all my OID 11 g components running :
C:\>opmnctl status -l
Processes in Instance: asinst_2
———————————+——————–+———+———-+—-
——–+———-+———–+——
ias-component | process-type | pid | status |
uid | memused | uptime | ports
———————————+——————–+———+———-+—-
——–+———-+———–+——
oid1 | oidldapd | 4080 | Alive | 125
5161114 | 60516 | 0:57:11 | N/A
oid1 | oidldapd | 4340 | Alive | 125
5161113 | 33544 | 0:57:13 | N/A
oid1 | oidmon | 4008 | Alive | 125
5161112 | 38516 | 0:57:17 | LDAPS:3131,LDAP:3060
EMAGENT | EMAGENT | 4540 | Alive | 125
5161111 | 9948 | 0:57:17 | N/A
Also my browser also says congrats your emagent is running when i goto http://cm-vmwdsh32.wa-ceqalab01.vixn.com:5162/emd/main
EMAgent10.2.0.5.0
Congratulations, EMAgent is working!
But when I open an LDAp browser and use port 389 / 3060 / 3131 I get this :
An error has occurred while loading the RootDSE entry from localhost:389. The default schema entry could not be loaded due to inability to access the RootDSE entry. Further processing will be aborted. Try changing your credentials or the server side access control list (ACL).
Any suggestions much appreciated ,
Thanks,
Chethan
Also If i just add cm-vmwdsh32.wa-ceqalab01.vixn.com and port as 389 and do a fetch base DNs in my ldap browser , I get a message which says :
An error occurred while fetching base dn s .
The reason might be an ldap v.2 server or a connection problem.
@ Chethan ,
389 will not work as your OID is running on 3060 .
Are you using username (cn=orcladmin) to connect or using anaonymous bind ( No username/password) ?
Anonymous bind is disabled by default in OID 11g and will not work.
ReplyHi Atul ,
I found out that , the issue was the listener on my oracle db itself was down , when i try running the netca it wont come up either .
here are some outputs :
C:\Users\Administrator>opmnctl status
Processes in Instance: asinst_2
———————————+——————–+———+———
ias-component | process-type | pid | status
———————————+——————–+———+———
oid1 | oidldapd | N/A | Down
oid1 | oidldapd | N/A | Down
oid1 | oidmon | N/A | Down
EMAGENT | EMAGENT | 2944 | Alive
C:\Users\Administrator>lsnrctl start listener
LSNRCTL for 32-bit Windows: Version 11.2.0.1.0 – Production on 27-MAR-2012 03:56
:34
Copyright (c) 1991, 2010, Oracle. All rights reserved.
Starting tnslsnr: please wait…
TNSLSNR for 32-bit Windows: Version 11.2.0.1.0 – Production
Log messages written to c:\oracle\diag\tnslsnr\cm-vmwdsh32\listener\alert\log.xm
l
Listening on: (DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=cm-vmwdsh32)(PORT=1521))
)
Connecting to (ADDRESS=(PROTOCOL=tcp)(HOST=)(PORT=1521))
TNS-12547: TNS:lost contact
TNS-12560: TNS:protocol adapter error
TNS-00517: Lost contact
32-bit Windows Error: 54: Unknown error
I am not sure what the above error is , and i tried restarting the system , but still cant start the listener or the OID processes using opmnctl , is there anything i can do without needing to a complete reinstall and config?
And I really appreciate your efforts to help out on an online community 🙂 thanks a ton
Thanks,
Chethan
@ Chethan,
Check if you can resolve hostname cm-vmwdsh32 to IP
ping cm-vmwdsh32
See if IP from above command is same as IP of machine on which this database is running.
ReplyAtul ,
All the commands in my previous comment is from the same machine , and cm-vmwdsh32 is a vm on a server , i have the db server and oid installed on this same vm (cm-vmwdsh32)
i get a ipv6 address like this when i ping it from a cmd prompt from within the same machine like this:
C:\Users\Administrator>ping cm-vmwdsh32
Pinging cm-vmwdsh32 [2002:927:6c3f::927:6c3f] from 2002:927:6c3f::927:6c3f with
32 bytes of data:
Reply from 2002:927:6c3f::927:6c3f: time=1ms
Reply from 2002:927:6c3f::927:6c3f: time<1ms
Reply from 2002:927:6c3f::927:6c3f: time<1ms
Reply from 2002:927:6c3f::927:6c3f: timeipconfig
Windows IP Configuration
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . : wa-ceqalab01.vixn.com
IPv4 Address. . . . . . . . . . . : 9.39.108.63
Subnet Mask . . . . . . . . . . . : 255.255.252.0
Default Gateway . . . . . . . . . : 9.39.111.250
Tunnel adapter Local Area Connection* 8:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : wa-ceqalab01.vixn.com
Tunnel adapter Local Area Connection* 9:
Connection-specific DNS Suffix . : wa-ceqalab01.vixn.com
IPv6 Address. . . . . . . . . . . : 2002:927:6c3f::927:6c3f
Default Gateway . . . . . . . . . : 2002:c058:6301::c058:6301
Tunnel adapter Local Area Connection* 11:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
I have one more query , when i run netca.bat or netca from start menu i get this :
Verify that the ORACLE_HOME environment variable or registry setting is set to c
orrect value and relaunch Oracle Net Configuration Assistant.
at oracle.net.ca.NetCALogger.getOracleHome(NetCALogger.java:236)
at oracle.net.ca.NetCALogger.initOracleParameters(NetCALogger.java:215)
at oracle.net.ca.NetCALogger.initLogger(NetCALogger.java:130)
at oracle.net.ca.NetCA.main(NetCA.java:408)
Error: Environmental error detected: Oracle Home is set to “C:\ora_bea_default\Oracle_IDM2” in the environment is different fr
om Oracle Net Configuration Assistant installed Oracle Home.
Verify that the ORACLE_HOME environment variable or registry setting is set to c
orrect value and relaunch Oracle Net Configuration Assistant.
Oracle Net Services configuration failed. The exit code is 1
so i reset my ORACLE_HOME to C:\Oracle\product\11.2.0\dbhome_1\ and i could run it , can you give me a link which points to all possible values for these ORACLE_ variables , I havent reset any of these , but i used these values during my OID installation :
Oracle middleware home : C:\ora_bea_default
Oracle home directory : Oracle_IDM2
but b4 i did oid installation , i had installed Oracle db server in C:\Oracle , Have i done something wrong during setting oracle home during oid install?
ReplyMy logs for opmnctl show this :
[2012-03-27T05:06:05-07:00] [OID] [NOTIFICATION:16] [] [OIDMON] [host: cm-vmwdsh32] [pid: 4216] [tid: 0] Guardian: Connecting to database, connect string is oiddb
[2012-03-27T05:06:06-07:00] [OID] [NOTIFICATION:16] [] [OIDMON] [host: cm-vmwdsh32] [pid: 4216] [tid: 0] Guardian: [gsdsiConnect] ORA-12541, ORA-12541: TNS:no listener
my db name used for oid is OIDDB1 , but above it says connect string is oiddb and says no listener , when i get a listener is running msg when i try to run my listener using lsnrctl,,
how to make or reconfigure my oid to point to the db i configured for it using RCU , db name is OIDDB1
@ Chethan,
OIDDB is just TNS alias, actual database name is defined in OID ORACLE_INSTANCE/config/tnsnames.ora
where default location for OID ORACLE_INSTANCE is $MW_HOME/asinst_1
Replyhi Atul ,
I reinstalled everything again , and sadly am back to same thing , my opmnctl status shows everything is up and fine , but when i run my ldap browser i can t get see any objects from my vm , basically i am just giving the ldap browser my host server on which this vm resides ie : wa-ceqalab01.vixn.com and port as 389 and do lookup servers , but I get all the other vm’s which are hosting an ldap on them but no my current vm even though its the localhost from where i am running the ldapbrowser
if i ping cm-vmwdsh32.wa-ceqalab01.vixn.com i get back the ip address , i tried that ip address instead to lookup too but no luck , i just get a COM error , when i try the ip or localhost or the full machine name cm-vmwdsh32.wa-ceqalab01.vixn.com,,, how can i resolve this?
Thanks,
Chethan
As I said earlier your OID is running on 3060 and use a user name to login from ldap browser
ReplyHi,
Can we install FMW 11G R2 Forms,Reports, OID, webcenter and metadata (Database 11g) on same windows 8 server ,Also suggest ME some links shows step by step installation coz it is very difficult to find it for Windows 8 Server.
Thanks,
Najeeb.M
@ Najeeb Mayan,
Yes but take care of following
a) Install them in their own dedicated Middleware Home (MW_HOME), Node Manager can be one (but there are additional steps) for all three products or dedicated node manager for each middleware home.
b) Check if these products are certified on windows 8
c) Check that you do not use same port for two products
For installation notes go to individual product documentation and follow steps for windows server from installation guides (let me know if you can’t find these installation notes)
ReplyHi Atul,
My ODS Schema password is EXPIRED(GRACE), hence tried to change it but receiving below error.
[oracle@localhost bin]$ ./oidpasswd connect=oiddb
current password:
new password:
confirm password:
Unable to Connect to Database: Incorrect location for tnsnames.ora (derived from ORACLE_INSTANCE) or Incorrect TNS Connect string or Invalid Password
below is my env setting
[oracle@localhost dbhome_1]$ export ORACLE_HOME=/home/oracle/middlewareR1/idm
[oracle@localhost dbhome_1]$ export ORACLE_INSTANCE=/home/oracle/middlewareR1/oid1
Password is also correct as i am able to login thru
[oracle@localhost dbhome_1]$ sqlplus ods/Welcome1@ORCL
SQL*Plus: Release 11.2.0.1.0 Production on Tue Apr 2 05:42:13 2013
Copyright (c) 1982, 2009, Oracle. All rights reserved.
ERROR:
ORA-28002: the password will expire within 7 days
Connected to:
Oracle Database 11g Enterprise Edition Release 11.2.0.1.0 – 64bit Production
With the Partitioning, OLAP, Data Mining and Real Application Testing options
SQL> select username,user_id,ACCOUNT_STATUS,LOCK_DATE,EXPIRY_DATE from dba_users
2 where EXPIRY_DATE > sysdate -2;
3
SQL> select username,user_id,ACCOUNT_STATUS,LOCK_DATE,EXPIRY_DATE from dba_users;
USERNAME USER_ID ACCOUNT_STATUS
—————————— ———- ——————————–
LOCK_DATE EXPIRY_DA
——— ———
ODSSM 122 OPEN
12-FEB-13
ODS 121 EXPIRED(GRACE)
09-APR-13
Help Appreciated
Reply@ IgnitedMind,
Set password of ODS and ODSSM to same old value in database
ALTER USER ODS identified by [old_ods_password];
ALTER USER ODSSM identified by [old_odssm_password];
Set profile in database , not to expire db account
ReplyWe are doing SSO integration with EBS and following Integrating Oracle E-Business Suite Release 12 with Oracle Access Manager 11gR2 (11.1.2) using Oracle E-Business Suite AccessGate [ID 1484024.1] and Registering Oracle E-Business Suite Release 12 with Oracle Internet Directory 11gR1 and Single Sign-On [ID 1370938.1]
for register EBS instance with with SSO, i am following section 2.2 from note: 1370938.1.
perl $FND_TOP/bin/txkrun.pl -script=SetSSOReg -registerinstance=yes
You are registering ORACLE HOME only.
Enter the host name where Oracle iAS Infrastructure database is installed ?
I am confused which hostname i should give(EBS hostname or OIDDB hostname or OAM hostname )
my SSO architecture
oam.reg.com(OAM/OID) domains installed in this host
oiddb–>oiddb.reg.com -here OID/OAM database in this host
EBSR12–>moc.reg.com–>EBS installed here.
which node name i should give
if i give oiddb host script is failing.
perl $FND_TOP/bin/txkrun.pl -script=SetSSOReg -registerinstance=yes
You are registering ORACLE HOME only.
Enter the host name where Oracle iAS Infrastructure database is installed ? oiddb.reg.com
Enter the LDAP Port on Oracle Internet Directory server ? 3060
Enter SSL LDAP Port on Oracle Internet Directory server ? 3131
Enter the Oracle Internet Directory Administrator (orcladmin) Bind password ?
Enter Oracle E-Business apps database user password ?
*** Log File = /u01/oracle/MOC/inst/apps/MOC_mocr12/logs/appl/rgf/TXK/txkSetSSOReg_Mon_Apr_1_08_30_39_2013.xml
Beginning input parameter validation for Oracle Home Instance registration.
*** ERROR : Unable to open Simple(No SSL) connection with Infra DB Host. oiddb.reg.com:3060 [Root exception is java.net.ConnectException: Connection refused]
End of /u01/oracle/MOC/apps/apps_st/appl/fnd/12.0.0/patch/115/bin/txkSetSSOReg.pl : No Errors encountered
Reply@Endeca,
Enter the host name where Oracle iAS Infrastructure database is installed ?
You should give OID hostname here .
Regarding
*** ERROR : Unable to open Simple(No SSL) connection with Infra DB Host. oiddb.reg.com:3060 [Root exception is java.net.ConnectException: Connection refused]
Check if OID is listening and accepting connection. Ensure that there is no firewall between EBS DB node and OID node .
telnet oiddb.reg.com 3060
ReplyHi Atul,
when i am running txkEBSAuth.xml using ant, i am getting error,any idea.
[oid@oam myEBS]$ant -f txkEBSAuth.xml \
> -DuseDefaults=true -Dwlshosturl=oam.reg.com:7003 -Dwlsuser=weblogic -Dwlspwd=welcome1 \
> -DdataSourceName=DS_MOCR12 -DasadminUser=OAMTEST01 -DasadminPassword=welcome1 \
> -DdbcFile=/u01/Middleware/appsutil/accessgate/myEBS/MOC_OAM.reg.COM.dbc \
> -DserverName=AdminServer -DdeploymentName=ebsauth_mocr12 \
> -DfndauthWarFile=/u01/Middleware/appsutil/accessgate/myEBS/fndauth.war \
> -DplanPath=/u01/Middleware/appsutil/accessgate/myEBS/plan/Plan.xml \
> -DSSOServerRelease=11 -DSSOServerURL=http://oam.reg.com:14100 \
> -DWebgateLogoutURL=http://oam.reg.com:7778/public/oacleanup.html
uildfile: txkEBSAuth.xml
findOS:
getServerDetails:
[input] skipping input as property wlshosturl has already been set.
getWLSAdminPasswordWindows:
getWLSAdminPasswordUnix:
echoON:
[input] skipping input as property wlspwd has already been set.
echoOFF:
getDataSourceDetails:
[input] skipping input as property dataSourceName has already been set.
[input] skipping input as property dbcFile has already been set.
getASADMINPasswordWindows:
getASADMINPasswordUnix:
echoON:
[input] skipping input as property asadminPassword has already been set.
echoOFF:
getTargetServerDetails:
getDeploymentDetails:
[input] skipping input as property deploymentName has already been set.
[input] skipping input as property fndauthWarFile has already been set.
[input] skipping input as property planPath has already been set.
[input] skipping input as property dbcFile has already been set.
[input] skipping input as property dataSourceJNDIName has already been set.
getOAMDetails:
[input] skipping input as property WebgateLogoutURL has already been set.
[input] skipping input as property SSOServerURL has already been set.
getAllParameters:
checkDBCExists:
checkWarExists:
checkFndextWarExits:
checkPlanDirExists:
all:
findOS:
getServerDetails:
[input] skipping input as property wlshosturl has already been set.
getWLSAdminPasswordWindows:
getWLSAdminPasswordUnix:
echoON:
[input] skipping input as property wlspwd has already been set.
echoOFF:
getDataSourceDetails:
[input] skipping input as property dataSourceName has already been set.
[input] skipping input as property dbcFile has already been set.
getappsDBDetails:
[echo] DBC File is /u01/Middleware/appsutil/accessgate/myEBS/MOC_OAM.reg.COM.dbc
[echo] APPS_JDBC_URL is APPS_JDBC_URL=jdbc\:oracle\:thin\:@(DESCRIPTION\=(ADDRESS_LIST\=(LOAD_BALANCE\=YES)(FAILOVER\=YES)(ADDRESS\=(PROTOCOL\=tcp)(HOST\=mocr12.reg.com)(PORT\=1521)))(CONNECT_DATA\=(SID\=MOC)))
[echo]
[echo] Following values are retrieved from DBC File:
[echo] SID/SERVICE:MOC
[echo] APPS_JDBC_URL:jdbc:oracle:thin:@(DESCRIPTION=(ADDRESS_LIST=(LOAD_BALANCE=YES)(FAILOVER=YES)(ADDRESS=(PROTOCOL=tcp)(HOST=mocr12.reg.com)(PORT=1521)))(CONNECT_DATA=(SID=MOC)))
getASADMINPasswordWindows:
getASADMINPasswordUnix:
echoON:
[input] skipping input as property asadminPassword has already been set.
echoOFF:
getTargetServerDetails:
getDataSourceParameters:
checkDBCExists:
checkFndextWarExits:
createDataSource:
[echo] ********************************************************************
[echo] STEP 1: CREATING DATA SOURCE
[echo] ********************************************************************
[wlst] Connecting to server using username:weblogic url:oam.reg.com:7003
[wlst] Connecting to t3://oam.reg.com:7003 with userid weblogic …
[wlst] Successfully connected to Admin Server ‘AdminServer’ that belongs to domain ‘EbizAccessGateDomain’.
[wlst]
[wlst] Warning: An insecure protocol was used to connect to the
[wlst] server. To ensure on-the-wire security, the SSL port or
[wlst] Admin port should be used instead.
[wlst]
[wlst] Check if data source DS_MOCR12 already exits
[wlst]
[wlst]
[wlst] Check if JNDI Name jndi/DS_MOCR12 already exists
[wlst]
[wlst] Changing to Edit Mode
[wlst] Location changed to edit tree. This is a writable tree with
[wlst] DomainMBean as the root. To make changes you will need to start
[wlst] an edit session via startEdit().
[wlst]
[wlst] For more help, use help(edit)
[wlst]
[wlst] Starting an edit session …
[wlst] Started edit session, please be sure to save and activate your
[wlst] changes once you are done.
[wlst]
[wlst] Creating data source : DS_MOCR12
[wlst]
[wlst] Setting JDBCDataSourceParams for the data source DS_MOCR12
[wlst]
[wlst] Setting JNDI name for the data source DS_MOCR12
[wlst]
[wlst] Setting JDBCDriverParams for the data source DS_MOCR12
[wlst]
[wlst] Setting User and dbcFile properties for the data source DS_MOCR12
[wlst]
[wlst] Setting JDBCConnectionPoolParams for the data source DS_MOCR12
[wlst]
[wlst] Setting GlobalTransactionsProtocol for the data source DS_MOCR12
[wlst]
[wlst] Setting target for the data source DS_MOCR12
[wlst]
[wlst] Saving all your changes …
[wlst] Saved all your changes successfully.
[wlst] Activating all your changes, this may take a while …
[wlst] The edit lock associated with this edit session is released
[wlst] once the activation is completed.
[wlst] ************************************************************************
[wlst] ERROR: Error encountered while activating the changes.
[wlst] Canceling the edit session.
[wlst] ************************************************************************
[wlst] Discarded all your changes successfully.
[wlst] This Exception occurred at Wed Apr 10 04:25:36 IST 2013.
[wlst] Discarded all your changes successfully.
[wlst] This Exception occurred at Wed Apr 10 04:25:36 IST 2013.
[wlst] weblogic.application.ModuleException:
[wlst] at weblogic.jdbc.module.JDBCModule.prepare(JDBCModule.java:302)
[wlst] at weblogic.application.internal.flow.ModuleListenerInvoker.prepare(ModuleListenerInvoker.java:199)
[wlst] at weblogic.application.internal.flow.DeploymentCallbackFlow$1.next(DeploymentCallbackFlow.java:517)
[wlst] at weblogic.application.utils.StateMachineDriver.nextState(StateMachineDriver.java:52)
[wlst] at weblogic.application.internal.flow.DeploymentCallbackFlow.prepare(DeploymentCallbackFlow.java:159)
[wlst] at weblogic.application.internal.flow.DeploymentCallbackFlow.prepare(DeploymentCallbackFlow.java:45)
[wlst] at weblogic.application.internal.BaseDeployment$1.next(BaseDeployment.java:613)
[wlst] at weblogic.application.utils.StateMachineDriver.nextState(StateMachineDriver.java:52)
[wlst] at weblogic.application.internal.BaseDeployment.prepare(BaseDeployment.java:184)
[wlst] at weblogic.application.internal.SingleModuleDeployment.prepare(SingleModuleDeployment.java:43)
[wlst] at weblogic.application.internal.DeploymentStateChecker.prepare(DeploymentStateChecker.java:154)
[wlst] at weblogic.deploy.internal.targetserver.AppContainerInvoker.prepare(AppContainerInvoker.java:60)
[wlst] at weblogic.deploy.internal.targetserver.operations.ActivateOperation.createAndPrepareContainer(ActivateOperation.java:207)
[wlst] at weblogic.deploy.internal.targetserver.operations.ActivateOperation.doPrepare(ActivateOperation.java:98)
[wlst] at weblogic.deploy.internal.targetserver.operations.AbstractOperation.prepare(AbstractOperation.java:217)
[wlst] at weblogic.deploy.internal.targetserver.DeploymentManager.handleDeploymentPrepare(DeploymentManager.java:747)
[wlst] at weblogic.deploy.internal.targetserver.DeploymentManager.prepareDeploymentList(DeploymentManager.java:1216)
[wlst] at weblogic.deploy.internal.targetserver.DeploymentManager.handlePrepare(DeploymentManager.java:218)
[wlst] at weblogic.deploy.internal.targetserver.DeploymentServiceDispatcher.prepare(DeploymentServiceDispatcher.java:159)
[wlst] at weblogic.deploy.service.internal.targetserver.DeploymentReceiverCallbackDeliverer.doPrepareCallback(DeploymentReceiverCallbackDeliverer.java:171)
[wlst] at weblogic.deploy.service.internal.targetserver.DeploymentReceiverCallbackDeliverer.prepare(DeploymentReceiverCallbackDeliverer.java:41)
[wlst] at weblogic.deploy.service.internal.statemachines.targetserver.AwaitingContextUpdateCompletion.callDeploymentReceivers(AwaitingContextUpdateCompletion.java:164)
[wlst] at weblogic.deploy.service.internal.statemachines.targetserver.AwaitingContextUpdateCompletion.handleContextUpdateSuccess(AwaitingContextUpdateCompletion.java:66)
[wlst] at weblogic.deploy.service.internal.statemachines.targetserver.AwaitingContextUpdateCompletion.contextUpdated(AwaitingContextUpdateCompletion.java:32)
[wlst] at weblogic.deploy.service.internal.targetserver.TargetDeploymentService.notifyContextUpdated(TargetDeploymentService.java:225)
[wlst] at weblogic.deploy.service.internal.DeploymentService$1.run(DeploymentService.java:189)
[wlst] at weblogic.work.SelfTuningWorkManagerImpl$WorkAdapterImpl.run(SelfTuningWorkManagerImpl.java:528)
[wlst] at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
[wlst] at weblogic.work.ExecuteThread.run(ExecuteThread.java:178)
[wlst] Caused by: weblogic.common.ResourceException: weblogic.common.ResourceException: OAUTH marshaling failure
[wlst] at weblogic.jdbc.common.internal.PooledConnectionEnvFactory.createResource(PooledConnectionEnvFactory.java:133)
[wlst] at weblogic.common.resourcepool.ResourcePoolImpl.makeResources(ResourcePoolImpl.java:1249)
[wlst] at weblogic.common.resourcepool.ResourcePoolImpl.makeResources(ResourcePoolImpl.java:1166)
[wlst] at weblogic.common.resourcepool.ResourcePoolImpl.start(ResourcePoolImpl.java:249)
[wlst] at weblogic.jdbc.common.internal.ConnectionPool.doStart(ConnectionPool.java:1154)
[wlst] at weblogic.jdbc.common.internal.ConnectionPool.start(ConnectionPool.java:154)
[wlst] at weblogic.jdbc.common.internal.ConnectionPoolManager.createAndStartPool(ConnectionPoolManager.java:454)
[wlst] at weblogic.jdbc.common.internal.ConnectionPoolManager.createAndStartPool(ConnectionPoolManager.java:372)
[wlst] at weblogic.jdbc.module.JDBCModule.prepare(JDBCModule.java:255)
[wlst] Exception in thread “main” java.lang.IllegalStateException: Traceback (innermost last):
[wlst] File “/tmp/wlsttempfile984445104.py”, line 125, in ?
[wlst] at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
[wlst] at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:39)
[wlst] at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:27)
[wlst] at java.lang.reflect.Constructor.newInstance(Constructor.java:513)
[wlst]
[wlst] java.lang.Exception: java.lang.Exception: Error encountered while activating the changes
[wlst]
[wlst] at weblogic.management.scripting.WLSTInterpreterInvoker.printError(WLSTInterpreterInvoker.java:110)
[wlst] at weblogic.management.scripting.WLSTInterpreterInvoker.executePyScript(WLSTInterpreterInvoker.java:103)
[wlst] at weblogic.management.scripting.WLSTInterpreterInvoker.main(WLSTInterpreterInvoker.java:27)
[wlst] Traceback (innermost last):
[wlst] File “/tmp/wlsttempfile984445104.py”, line 125, in ?
[wlst] at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
[wlst] at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:39)
[wlst] at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:27)
[wlst] at java.lang.reflect.Constructor.newInstance(Constructor.java:513)
[wlst]
[wlst] java.lang.Exception: java.lang.Exception: Error encountered while activating the changes
[wlst]
BUILD FAILED
/u01/Middleware/appsutil/accessgate/myEBS/txkEBSAuth.xml:48: The following error occurred while executing this line:
/u01/Middleware/appsutil/accessgate/myEBS/txkEBSAuth.xml:409: Error Creating DataSource
When I open my EM for thew weblogic where I have installed my OID ,its showing error on configuration .
http://whf00bey:7001/emd/main cannot be reached .