TroubleShooting:SSO Login page issues-No site2pstoretoken
Hi, I would like to share my experience with issue in OAM/SSO Integration Login page issue.
Unable to view Login form for SSO or OIDDAS after configuring Single SignOn with Oracle Access Manager.
Work Around: 1. Open the ssoServer.log shows the following error:
Tue Nov 10 06:02:00 GMT 2010 [ERROR] AJPRequestHandler-ApplicationServerThread-5 No site2pstoretoken from SSO partner
Cause
There are two reasons for this error:
1. Mis-spelled Recourses in the Policy Domain Configuration.
2. Missing Actions in Authorization Rule Tab.
Solution
1. Verify that the policy domain is properly spelled:
i. Login to Policy Manager as Admin user and navigate to
ii. Click Resources tab and check the spelling for the procedure defined and make sure it is correctly listed as
/pls/orasso/orasso.wwsso_app_admin.ls_login
/sso/auth
iii. Now restart the services and check the results.
Infra_home/opmn/bin>opmnctl restartproc process-type=OC4J_SECURITY
Infra_home/opmn/bin>opmnctl restartproc process-type=HTTP_Server
2. Verify that the correct HTTP Header is Returned
i. Login to Policy Manager as Admin user and navigate to
ii. Click Authorization Rule Tab and Actions SubtabAdd the actions as
Type : HeaderVar
Name : XXX_HEADER_VAR –> Same should be given in SSOOblixAuth.java
ReturnAttribute : uid The XXX_HEADER_VAR should be the same as given in SSOOblixAuth.java for the OBLIX_USER_NAME string.
public class SSOOblixAuth implements IPASAuthInterface
{
private static String OBLIX_USER_HEADER = “XXX_HEADER_VAR“;
private static String CLASS_NAME = “SSOOblixAuth”;
About the Author sarath
An Oracle Identity and Access Management professional, having working on Oracle Access Manager Single Sign-On implementations, Installation/Configuration of Identity Server, Web Pass, Web Gate, Access Gate, Policy Manager, Access Server, Policy Domains, Authentication /Authorization schemes, Single Sign-On (single and multi-domain), OIM, OVD, OID, OAAM, OIF, High Availability/Failover/ SSL deployment.