Thursday, June 1, 2017

Getting OAM-02073 when WebGate agent communicates to Oracle Access Server 11.1.2.3

Problem

In this particular scenario, you are trying to single sign-on an OHS server against OAM 11g. The products currently installed are Oracle Access Manager 11.1.2.3.0 and Oracle HTTP Server 11.1.1.9 with Oracle WebGate 11.1.2.1.0 deployed to it.

When we start up OHS, this error keeps repeating every 20 seconds in ohs1.log:
[2017-02-28T22:00:51.0079+00:00] [OHS] [ERROR:32] [OHS-9999] [core.c] [client_id: ::1] [host_id: toadsprod555555.com] [host_addr: 192.168.1.12] [tid: 140187036239616] [user: oracle] [ecid: 000Fzzx0g00009Ya05IPtKHC04Fw00000a] [rid: 0] [VirtualHost: main] The Access Server has returned a fatal error with no detailed information.
This also shows up in oblog.log:
2017/02/28@21:59:51.00782 39099 39114 ACCESS_SDK ERROR 0x0000182D /ade/aime_ngamac_497961/ngamac/src/palantir/access_api/src/obresource_request.cpp:299 "The Access Server has returned a fatal error with no detailed information." raw_code^302  
2017/02/28@21:59:51.00789 39099 39114 ACCESS_GATE ERROR 0x0000151A /ade/aime_ngamac_497961/ngamac/src/palantir/webgate2/src/isprotected.cpp:296 "Failure to connect to Access Server" HTTPStatus^500 Error^The Access Server has returned a fatal error with no detailed information.  
2017/02/28@21:59:51.00793 39099 39114 WEB ERROR 0x0000151F /ade/aime_ngamac_497961/ngamac/src/palantir/commonlib/src/apache2_req_info.cpp:226 "WebGate Error Report" Message^The Access Server has returned a fatal error with no detailed information. ReqReq^HEAD /index.html HTTP/1.1 ReqProto^HTTP/1.1 ReqHost^toadsprod555555.com ReqStatLine^ ReqStatus^200 ReqRawUri^/index.html ReqUri^/index.html ReqFilename^/u01/app/oracle/middleware/Oracle_WT1/instances/ohs1/config/OHS/ohs1/htdocs/index.html ReqPath^ ReqArgs^ 
This is the error that appears in oam_server1.out managed server log:
<Feb 28, 2017 9:59:11 PM GMT> <Warning> <oracle.oam.controller> <OAM-02073> <Error while checking if the resource is protected or not. 
<Feb 28, 2017 9:59:11 PM GMT> <Error> <oracle.oam.proxy.oam> <OAM-04029> <Error in generating AMEvent. Details Event Response status is STATUS_FAIL for GET_AUTHN_SCHEME event. Error code OAM-02073 status fail isExcluded false 
<Feb 28, 2017 9:59:11 PM GMT> <Error> <oracle.oam.proxy.oam> <OAM-04020> <Exception encountered while processing the request message:
oracle.security.am.proxy.oam.requesthandler.OAMProxyException: Event Response status is STATUS_FAIL for GET_AUTHN_SCHEME event. Error code OAM-02073 status fail isExcluded false
at oracle.security.am.proxy.oam.requesthandler.NGProvider.checkProtected(NGProvider.java:4859)
at oracle.security.am.proxy.oam.requesthandler.NGProvider.getIsRescProtectedResponse(NGProvider.java:1481)
at oracle.security.am.proxy.oam.requesthandler.NGProvider.getResponse(NGProvider.java:385)
at oracle.security.am.proxy.oam.requesthandler.RequestHandler.handleRequest(RequestHandler.java:366)
at oracle.security.am.proxy.oam.requesthandler.RequestHandler.handleMessage(RequestHandler.java:170)
at oracle.security.am.proxy.oam.requesthandler.ControllerMessageBean.getResponseMessage(ControllerMessageBean.java:122)
at oracle.security.am.proxy.oam.requesthandler.ControllerMessageBean_eo7ylc_MDOImpl.__WL_invoke(Unknown Source)
at weblogic.ejb.container.internal.MDOMethodInvoker.invoke(MDOMethodInvoker.java:35)
at oracle.security.am.proxy.oam.requesthandler.ControllerMessageBean_eo7ylc_MDOImpl.getResponseMessage(Unknown Source)
at oracle.security.am.proxy.oam.mina.ObClientToProxyHandler.messageReceived(ObClientToProxyHandler.java:231)
at org.apache.mina.common.DefaultIoFilterChain$TailFilter.messageReceived(DefaultIoFilterChain.java:743)
at org.apache.mina.common.DefaultIoFilterChain.callNextMessageReceived(DefaultIoFilterChain.java:405)
at org.apache.mina.common.DefaultIoFilterChain.access$1200(DefaultIoFilterChain.java:40)
at org.apache.mina.common.DefaultIoFilterChain$EntryImpl$1.messageReceived(DefaultIoFilterChain.java:823)
at org.apache.mina.common.IoFilterEvent.fire(IoFilterEvent.java:54)
at org.apache.mina.common.IoEvent.run(IoEvent.java:62)
at oracle.security.am.proxy.oam.mina.CommonJWorkImpl.run(CommonJWorkImpl.java:41)
at weblogic.work.j2ee.J2EEWorkManager$WorkWithListener.run(J2EEWorkManager.java:184)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:263)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:221)
>
Solution

1. Check out these Oracle Support docs to see if it solves your problem:
  • Doc ID 1678095.1
  • Doc ID 1556223.1
  • Doc ID 1492637.1
  • Doc ID 1662513.1
2. If none of the solutions above works for you, then check out your Host Identifier configuration. You may have incorrectly deleted the row as shown in this screenshot:


Applicable Versions
  • Oracle Access Manager 11.1.2.3.0
  • Oracle HTTP Server 11.1.1.9
  • Oracle WebGate 11.1.2.1.0

 

No comments: