“OCI failed to begin session” error while creating DB instance for DB auditing in Oracle Access Manager
The previous post talks about one issue occured during configuration of DB auditing in Oracle Access Manager. This post also talks about another issue of same feature. For configuring the DB Audit of Oracle Access Manager, an sql script has to be executed which creates 4 tables and one index. In our case, it is Oracle Database and thus I have executed audit_oracle.sql present in location identityServer_install_Dir/oblix/reports/crystal.
At first, I executed this sql script as sys user. The same user credentials has been provided in DB instance page as shown below.
After saving the configuration, we got the error as shown below.
I have tried giving sys in User Name field as well, but no luck.
I have seen the below error in oblog of identity server.
2011/03/07@12:22:11.532442 18739 18739 SQL_ADAPTER ERROR 0x00000067 ../ocierrormap.cpp:53 “OCI failed to begin session” method^OCIConnection::OCIConnection ociRetCode^OCI_ERROR Diagnostic Record number^1 Error Message^ORA-01017: invalid username/password*************** Error Code from OCIErrorGet^1017
I ensured that password is not wrong. The actual problem is that it is not accepting the username with space. So the workaround is not to use sys user. For this, I have executed the sql script as as ods user (who is the owner of OID schema) and provide the same user credentials in DB instance creation page. Why should I create a new user in DB just for auditing purpose? Is it recommended or not? We shall see this later.
This time it accepted.
About the Author Mahendra
I am engulfed in Oracle Identity & Access Management domain. I have expertise on providing the optimized solutions for user provisioning, web access management, Single Sign-On and federation capabilities etc., I am also well versed with complex integrations within Identity Management and other product domains. I have expertise on building demos and implementation experience on products Oracle Access Manager, Oracle Adaptive Access Manager, Oracle Entitlement Server, Oracle Virtual Directory, Oracle Internet Directory etc., Look @ my blog: http://talkidentity.blogspot.com