Tuesday, July 5, 2011

ORA-20001 Unable to call fnd_ldap_wrapper.update_user, unable to use sso

Visit the Below Website to access unlimited exam questions for all IT vendors and Get Oracle Certifications for FREE
http://www.free-online-exams.com

Problem:    

ORA-20001 Unable to call fnd_ldap_wrapper.update_user, unable to use sso

Symptoms:

1. Successfully applied SSO patch p6117031 as a part of post patch of RUP6.

2. While updating the users password from frontend got the following error.

Unable to call fnd_ldap_wrapper.update_user due to the following reason:
ORA-20001: Unable to call fnd_ldap_wrapper.create_user due to the following
reason:An unexpected error occurred. Please contact your System Administrator

while updating the password with FNDCPASS, it give errors OID is not registered.


3. Done the following deregister and register to SSO/OID

i. txkrun.pl -script=SetSSOReg \
-deregistersso=Yes \

--- successfully executed this script

ii. txkrun.pl -script=SetSSOReg \
-deregisteroid=Yes \

--- successfully executed this script


iii. txkrun.pl -script=SetSSOReg \
-registersso=Yes \


iv. txkrun.pl -script=SetSSOReg \
-registeroid=Yes \

-- This give as partner application already registered.


But SSO login is not working and also update/Create user give same error.

Link on the fly means to have profile ''Applications SSO Auto Link User' to Enabled in order to populate -at first login- USER_GUID column in FND_USER table as long as the user exists in OID and has an orclguid, regardless if you are using WNA or other 3rd party LDAP integration. You really need to have the user in OID and have a valid orclguid otherwise you won't be able to perform the authentication. At this moment the user is not in OID so the link on the fly is not working.

Log files:
Review the FND: Debug files while reproducing the issue by

Connected as System Administrator, modify the following system profiles:
FND: Debug Log Enabled Yes
FND: Debug Log Filename <empty>
FND: Debug Log Level STATEMENT
FND: Debug Log Mode Asynchronous with Cross-Tier Sequencing
FND: Debug Log Module % or fnd%

There is no need to stop and restart E-Business Suite.

All log information will be created in the table FND_LOG_MESSAGES. A typical query might be

SQL> select module||' '||message_text from fnd_log_messages
order by timestamp;



Solution:
1 Applications SSO type profile was set to SSWA instead of SSWA w/SSO so SSO login page was not working. Change it to SSWA w/SSO and we will get the SSO login page.

- However, after doing that the SSO authentication didn't work. This was because Link on the fly feature was disabled. We set 'Applications SSO Auto Link User' to Enabled, but still the same problem and the error came up when updating the password for the users.

2  Then the user did not exist in OID so the SSO authentication could not be performed.
 follow chapter 'Migrating Data between Oracle E-Business Suite Release 11i and Oracle Internet Directory' from Note 261914.1 and then to set profile Applications SSO Auto Link User' to Enabled This way Link on the fly feature should take care of the user password and authentication.
3  removereference

4 txkrun.pl -script=SetSSOReg -provtmp=$FND_TOP/admin/template/ProvBiDiNoCreation.tmp


References:

Follow chapter 'Migrating Data between Oracle E-Business Suite Release 11i and Oracle Internet Directory' from Note 261914.1

    

Get Oracle Certifications for all Exams
Free Online Exams.com

No comments: