OAMSSA-20005: Error initializing User/Role API : Identity Provider Configuration not found

This post explains the steps to fix the error “OAMSSA-20005: Error initializing User/Role API : Identity Provider Configuration not found” while configuring Adpative Authentication Service in OAM.

Issue

After configuring the Second factor authentication in Adaptive Authentication Service, user is redirected to error page after first level authentication.

OAMSSA-20005: Error initializing User/Role API : Identity Provider Configuration not found error message is displayed in OAM logs.

Complete error message from OAM logs below ,

[2016-09-06T10:40:24.823+04:00] [oam_server1] [NOTIFICATION] [] [oracle.oam.user.identity.provider] [tid: [ACTIVE].ExecuteThread: ’3′ for queue: ‘weblogic.kernel.Default (self-tuning)’] [userId: <anonymous>] [ecid: 9e382a2714d462f3:-6c0024d2:1561bc2f805:-8000-0000000000602f3c,0] [APP: oam_server#11.1.2.0.0] resolved id store name : Public LDAP 1

[2016-09-06T10:40:24.823+04:00] [oam_server1] [ERROR] [OAMSSA-20005] [oracle.oam.user.identity.provider] [tid: [ACTIVE].ExecuteThread: ’3′ for queue: ‘weblogic.kernel.Default (self-tuning)’] [userId: <anonymous>] [ecid: 9e382a2714d462f3:-6c0024d2:1561bc2f805:-8000-0000000000602f3c,0] [APP: oam_server#11.1.2.0.0] Error initializing User/Role API : Identity Provider Configuration not found for : Public LDAP 1..

[2016-09-06T10:40:24.823+04:00] [oam_server1] [ERROR] [] [oracle.oam.plugin] [tid: [ACTIVE].ExecuteThread: ’3′ for queue: ‘weblogic.kernel.Default (self-tuning)’] [userId: <anonymous>] [ecid: 9e382a2714d462f3:-6c0024d2:1561bc2f805:-8000-0000000000602f3c,0] [APP: oam_server#11.1.2.0.0] Error retrieving user profile from configured identity store[[

oracle.security.am.engines.common.identity.provider.exceptions.IdentityProviderException: OAMSSA-20005: Error initializing User/Role API : Identity Provider Configuration not found for : Public LDAP 1..

        at oracle.security.am.engines.common.identity.provider.util.ConfigUtil.getInitParams(ConfigUtil.java:157)

        at oracle.security.am.engines.common.identity.provider.impl.IdentityProviderPool.getProvider(IdentityProviderPool.java:89)

        at oracle.security.am.engines.common.identity.provider.UserIdentityProviderFactory.getProviderInternal(UserIdentityProviderFactory.java:116)

        at oracle.security.am.engines.common.identity.provider.UserIdentityProviderFactory.getProvider(UserIdentityProviderFactory.java:97)

        at oracle.security.am.sfa.plugin.AbstractOAMSFAPlugin.getUserIdentityProvider(AbstractOAMSFAPlugin.java:700)

        at oracle.security.am.sfa.plugin.AbstractOAMSFAPlugin.updatePluginResponse(AbstractOAMSFAPlugin.java:533)

        at oracle.security.am.sfa.plugin.AbstractOAMSFAPlugin.process(AbstractOAMSFAPlugin.java:261)

        at oracle.security.am.engine.authn.internal.executor.PlugInExecutor.execute(PlugInExecutor.java:204)

        at oracle.security.am.engine.authn.internal.executor.AuthenticationSchemeExecutor.execute(AuthenticationSchemeExecutor.java:113)

        at oracle.security.am.engine.authn.internal.controller.AuthenticationEngineControllerImpl.validateUser(AuthenticationEngineControllerImpl.java:269)

        at oracle.security.am.engines.enginecontroller.AuthnEngineController.authenticateUser(AuthnEngineController.java:986)

        at oracle.security.am.engines.enginecontroller.AuthnEngineController.processEvent(AuthnEngineController.java:341)

        at oracle.security.am.controller.MasterController.processEvent(MasterController.java:596)

        at oracle.security.am.controller.MasterController.processRequest(MasterController.java:788)

        at oracle.security.am.controller.MasterController.process(MasterController.java:708)

        at oracle.security.am.pbl.PBLFlowManager.delegateToMasterController(PBLFlowManager.java:209)

        at oracle.security.am.pbl.PBLFlowManager.handleBaseEvent(PBLFlowManager.java:147)

        at oracle.security.am.pbl.PBLFlowManager.processRequest(PBLFlowManager.java:107)

        at oracle.security.am.pbl.transport.http.AMServlet.handleRequest(AMServlet.java:217)

        at oracle.security.am.pbl.transport.http.AMServlet.doPost(AMServlet.java:173)

        at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)

        at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)

        at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)

 

Resolution

The user identity store details mentioned in the adaptiveauthenticationPlugin was not correct.

  1. Login to OAM Admin Console and Click on Application Security Tab.

2 300x209 OAMSSA 20005: Error initializing User/Role API : Identity Provider Configuration not found

 

 

 

 

 

 

 

 

  1. Click on Authentication Plug-ins  under Plug-ins
  1. Search for AdaptiveAuthenticationPlugin

4 300x131 OAMSSA 20005: Error initializing User/Role API : Identity Provider Configuration not found

 

 

 

 

 

  1. Click on the AdaptiveAuthenticationPlugin
  2. The configuration details of AdaptiveAuthenticationPlugin will be displayed.
  3. Update the IdentityStoreRef with correct Identity store details.

IdentiyStoreRef -   Enter the user Identity store where your user details are stored and user is authenticated in First level authentication.  After the first level authentication, the adaptive authentication plug-in search for the Email (required attributes for other types of SFA).  If the UserIdentityStore detail is not correct, then error page will be displayed after the First level authentication.

 

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>