Hi,

We are facing an issue with the test environment setup. We have setup the environment with the following:

1. SQL Server 2005
2. Weblogic 8.1 with SP 4
3. LDAP Server(Sun One Directory Server 5.2 with SP4)
4. Epiphany Service 7.0.2
5. Epiphany Studio

We are getting the following error, while trying to login to the sales application with the given user in the LDAP Server:

“Authenticated User does not exist in the User Management System. Please contact your administrator”

Also, we are getting the following message whenever we try to add the SSO Role Name under Permissions —> User Roles in the Epiphany Studio:

“There are no items to display. Please make sure your configuration settings are correct and the server is up and running.”

This is what we have done:

The LDAP Server is installed successfully as the services are up and running.

The LDAP Authentication service is installed on a different server from the LDAP User Management Service, which is installed on a machine that has Epiphany.

We have provided this Authentication and User Management Service details while installing Epiphany Service and the Epiphany Service is up and running without any errors.

we have created a test group(TEST USERS) in the LDAP server and also provided this group details while installing Epiphany in the “Define an existing user group or role” screen as follows:

CN=TEST USERS,OU=Groups,DC=COR,DC=ASD

The user details we provided while installing Epiphany Service is placed in the ‘ssausers’ under the ‘Directory’ tab of the Directory Server. We have added ‘ssacrmuser’ under the Object Class attribute in addition to the existing values: top, ssauser, ssabase, ssaagent.

After Epiphany Service is installed, we have added the above said user to the ‘TEST USERS’ group.

Now when we try to login, we are getting the above mentioned error:
“Authenticated User does not exist in the User Management System. Please contact your administrator”

Please find the error log below that we are getting whenever we try to login to the Epiphany application:

10:11:34,042 INFO [ControllerServlet] 268435456 LOG_PROC_LOGIN_ACTION_FIELD Processing Login Action
Field
javax.security.auth.login.LoginException
at com.ssaglobal.cs.sec.auth.authenticators.ldap.LDAPLoginModule.login(LDAPLoginModule.java:
228)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:324)
at javax.security.auth.login.LoginContext.invoke(LoginContext.java:675)
at javax.security.auth.login.LoginContext.access$000(LoginContext.java:129)
at javax.security.auth.login.LoginContext$4.run(LoginContext.java:610)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.login.LoginContext.invokeModule(LoginContext.java:607)
at javax.security.auth.login.LoginContext.login(LoginContext.java:534)
at com.ssaglobal.cs.sec.auth.runtime.AuthenticationHandler.authenticate(AuthenticationHandle
r.java:67)
at com.ssaglobal.cs.sec.auth.runtime.AuthenticationEngine.authenticate(AuthenticationEngine.
java:162)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:324)
at com.ssaglobal.cs.service.JavaCall.invoke(JavaCall.java:77)
at com.ssaglobal.cs.service.JavaCall.invoke(JavaCall.java:48)
at com.ssaglobal.cs.sec.auth.proxy.AuthenticationProxy.authenticate(AuthenticationProxy.java
:110)
at com.ssaglobal.cs.sec.auth.api.AuthenticationContext.login(AuthenticationContext.java:243)

at com.ssaglobal.cs.sec.auth.api.AuthenticationContext.login(AuthenticationContext.java:158) at com.ssaglobal.cs.auth.ssoplugin.OASSOPluginUserAuthImpl.authenticateUser(OASSOPluginUserA

uthImpl.java:233)
at com.ssaglobal.cs.auth.ssoplugin.OASSOPluginUserAuthImpl.authenticateUser(OASSOPluginUserA
uthImpl.java:189)
at com.epiphany.shr.sso.service.UserAuthSessionHelperImplementation.authenticateUserAndGener
ateSessionID(UserAuthSessionHelperImplementation.java:108)
at com.epiphany.shr.sso.service.UserAuthSessionHelperImplementation.authenticateUserAndGener
ateSessionID(UserAuthSessionHelperImplementation.java:163)
at com.epiphany.shr.sso.service.UserAuthSessionHelperImplementation.authenticateUserAndGener
ateSessionID(UserAuthSessionHelperImplementation.java:182)
at com.epiphany.shr.sso.service.UserAuthSessionHelperImplementation.authenticateUserAndGener
ateSessionID(UserAuthSessionHelperImplementation.java:317)
at com.epiphany.shr.sso.service.ejb.UserAuthSessionHelperBean.authenticateUserAndGenerateSes
sionID(UserAuthSessionHelperBean.java:149)
at com.epiphany.shr.sso.service.ejb.UserAuthSessionHelper_4h6j68_EOImpl.authenticateUserAndG
enerateSessionID(UserAuthSessionHelper_4h6j68_EOImpl.java:168)
at com.epiphany.shr.sso.client.UserAuthSessionHelperWrapper.authenticateUserAndGenerateSessi
onID(UserAuthSessionHelperWrapper.java:176)
at com.epiphany.shr.sso.client.UserAuthSessionHelperWrapper.authenticateUserAndGenerateSessi
onID(UserAuthSessionHelperWrapper.java:396)
at com.epiphany.shr.ui.login.SSOManager.validate(SSOManager.java:291)
at com.epiphany.shr.ui.login.SSOManager.validate(SSOManager.java:270)
at com.epiphany.shr.ui.action.Action.doLogin(Action.java:420)
at com.epiphany.shr.ui.action.Action.performMethod(Action.java:148)
at com.epiphany.shr.ui.controller.field.ActionField.callActionMethod(ActionField.java:177)
at com.epiphany.shr.ui.controller.field.ActionField.processAction(ActionField.java:265)
at com.epiphany.shr.ui.controller.ControllerServlet.process(ControllerServlet.java:1727)
at com.epiphany.shr.ui.controller.EpnyServlet.doPost(EpnyServlet.java:664)
at com.epiphany.shr.ui.controller.EpnyServlet.doPost(EpnyServlet.java:504)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:760)
at com.epiphany.shr.ui.controller.EpnyServlet.service(EpnyServlet.java:521)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at weblogic.servlet.internal.ServletStubImpl$ServletInvocationAction.run(ServletStubImpl.jav
a:1006)
at weblogic.servlet.internal.ServletStubImpl.invokeServlet(ServletStubImpl.java:419)
at weblogic.servlet.internal.ServletStubImpl.invokeServlet(ServletStubImpl.java:315)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletC
ontext.java:6718)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:121)
at weblogic.servlet.internal.WebAppServletContext.invokeServlet(WebAppServletContext.java:37
64)
at weblogic.servlet.internal.ServletRequestImpl.execute(ServletRequestImpl.java:2644)
at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:219)
at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:178)
Caused by: netscape.ldap.LDAPException (-1)
at com.ssaglobal.cs.sec.auth.authenticators.ldap.LDAPAuthenticator.authenticate(LDAPAuthenti
cator.java:225)
at com.ssaglobal.cs.sec.auth.authenticators.ldap.LDAPLoginModule.login(LDAPLoginModule.java:
213)
… 53 more
Caused by: netscape.ldap.LDAPException (-1)
at com.ssaglobal.cs.sec.auth.authenticators.ldap.LDAPAuthenticator.getDN(LDAPAuthenticator.j
ava:283)
at com.ssaglobal.cs.sec.auth.authenticators.ldap.LDAPAuthenticator.authenticate(LDAPAuthenti
cator.java:143)
… 54 more
Caused by: java.lang.ClassCastException
at com.ssaglobal.cs.sec.auth.authenticators.ldap.LDAPAuthenticator.getDN(LDAPAuthenticator.j
ava:272)
… 55 more
10:11:34,370 INFO [EpnyFailedLogins] 32768 LOG_UNSUCCESSFUL_LOGIN_ATTEMPT Unsuccessful login attemp
t. UserID = Ram.Kumar
10:11:34,370 ERROR [BaseAction] 0 EXP_HANDLE_LOGIN_FAILURE Failed to login or license the user for
product Sales
com.epiphany.shr.ui.login.UserDoesNotExistException: user does not exist
at com.epiphany.shr.ui.login.SSOManager.validate(SSOManager.java:310)
at com.epiphany.shr.ui.login.SSOManager.validate(SSOManager.java:270)
at com.epiphany.shr.ui.action.Action.doLogin(Action.java:420)
at com.epiphany.shr.ui.action.Action.performMethod(Action.java:148)
at com.epiphany.shr.ui.controller.field.ActionField.callActionMethod(ActionField.java:177)
at com.epiphany.shr.ui.controller.field.ActionField.processAction(ActionField.java:265)
at com.epiphany.shr.ui.controller.ControllerServlet.process(ControllerServlet.java:1727)
at com.epiphany.shr.ui.controller.EpnyServlet.doPost(EpnyServlet.java:664)
at com.epiphany.shr.ui.controller.EpnyServlet.doPost(EpnyServlet.java:504)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:760)
at com.epiphany.shr.ui.controller.EpnyServlet.service(EpnyServlet.java:521)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at weblogic.servlet.internal.ServletStubImpl$ServletInvocationAction.run(ServletStubImpl.jav
a:1006)
at weblogic.servlet.internal.ServletStubImpl.invokeServlet(ServletStubImpl.java:419)
at weblogic.servlet.internal.ServletStubImpl.invokeServlet(ServletStubImpl.java:315)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletC
ontext.java:6718)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:121)
at weblogic.servlet.internal.WebAppServletContext.invokeServlet(WebAppServletContext.java:37
64)
at weblogic.servlet.internal.ServletRequestImpl.execute(ServletRequestImpl.java:2644)
at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:219)
at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:178)

I think we are missing on the user management configuration side in the LDAP server. Do we need to configure anything else in order to login to application?

Could you please help/suggest us with the above situation?

Thanks in advance.

Thanks,
Ram.