Deny from all
Hmmm….seems Fusion MW is Peter Panish – a child that doesn’t want to grow up.
Our team is currently using in production the 126.96.36.199.0 FMW (RH 5) install using the Standalone Forms and Reports 32-bit version. Having encountered memory leaks with this version we are now attempting to migrate to 188.8.131.52 64-bit (RH 5).
The documentation to upgrade from 184.108.40.206 to 220.127.116.11 is full of links that take you from one place to another – I am flying over these docs looking for landmarks to get me to where I want to go – Never Never Land. I expect to have lots of fun with little to no consequences when I get there. But alas the following document is giving me fits! Those nasty pirates have been here first.
18.104.22.168.0 seems to be the only ending point (at this writing it doesn’t look to have a standalone Forms Reports install available for 22.214.171.124.0)…what if you need to stop at a different version along the way. AAGH!
Following the above documentation, I assume the way to get to Never Never Land is to start with WebLogic 10.1.3.2, install FMW 126.96.36.199.0, verify installation, upgrade Weblogic to 10.1.3.4, install 188.8.131.52.0 patchset. But these steps lead me elsewhere as shown by the following error on starting the WebLogic Node Manager after four successful (no errors reported) product installations.
WARNING: Uncaught exception in server handlerjavax.net.ssl.SSLHandshakeException: FATAL Alert:HANDSHAKE_FAILURE – The handshake handler was unable to negotiate an acceptable set of security parameters. javax.net.ssl.SSLHandshakeException: FATAL Alert:HANDSHAKE_FAILURE – The handshake handler was unable to negotiate an acceptable set of security parameters. at com.certicom.tls.interfaceimpl.TLSConnectionImpl.fireException(Unknown Source) at com.certicom.tls.interfaceimpl.TLSConnectionImpl.fireAlertSent(Unknown Source) at com.certicom.tls.record.handshake.HandshakeHandler.fireAlert(Unknown Source) at com.certicom.tls.record.handshake.HandshakeHandler.fireAlert(Unknown Source) at com.certicom.tls.record.handshake.HandshakeHandler.handleHandshakeMessage(Unknown Source) at com.certicom.tls.record.handshake.HandshakeHandler.handleVersion2HandshakeMessages(Unknown Source) at com.certicom.tls.record.MessageInterpreter.interpretContent(Unknown Source) at com.certicom.tls.record.MessageInterpreter.decryptMessage(Unknown Source) at com.certicom.tls.record.ReadHandler.processRecord(Unknown Source) at com.certicom.tls.record.ReadHandler.readRecord(Unknown Source) Time to talk to the
Go to the Fairies that live in Pixie Hollow to ask for help (AKA entering a Service Request on MOS).
Tinkerbell comes back with a revised install for the 64-bit Version of 184.108.40.206.0 Standalone Forms/Reports:
Please download the following from http://edelivery.oracle.com
Order of installations
I ask Tinkerbell why is her list different from the documentation from MOS Note: How to Install Fusion Middleware 11g Forms and Reports Only (Note:854117.1).
She brightly sighs, shrugs her shoulders and winks at me! ================================
Since we are using a 64-bit OS, we need the Sun JDK 6 64-bit.
The jdk-6u21-linux-x64-rpm.bin can be downloaded from http://java.sun.com/javase/downloads/widget/jdk6.jsp
Verify the correct version of java is installed.
/usr/java/jdk1.6.0_21/bin/java java -version
In my environment there was a symbolic link for an older version of java 1.4 in /usr/bin/java which I removed. This may not be correct for your system, talk to your system administrator about the best way to install a JDK version for system-wide use.
Also you may run out of OS-level file descriptors if left unset. On Linux I edited /etc/security/limits.conf adding the following entries:
* soft nofile 4096
* hard nofile 4096 # End of file
Again, see your System Administrator especially if you want limit the number of open files by user. The example above allows any logon to have those limits.
Install WebLogic 10.1.3.4
This is a typical installation, change the directory if desired.
Install WebLogic. Unzip the file and execute
java -Xmx1024m -jar wls1034_generic.jar
Choose Middleware Home Directory
Create a new Middleware Home – /aux/oracle/middleware
Register for Security Updates
Hit Next to bypass (this is not a mandatory step)
Choose Install Type
Select the 1.6.0_21 version (probably already selected)
Choose Product Installation Directories
WebLogic Server – /aux/oracle/middleware/wlserver_10.3
Install Forms Reports 220.127.116.11
The important thing is to install the software only at this time.
Install Forms Reports. Unzip the files and execute
Specify Inventory Directory
screen Directory: /aux/oracle/oraInventory
Group name: dba (If prompted, run the createCentralInventory.sh as directed.)
Select Installation Type Select Install ONLY!..….you will configure using config.sh script later. Doing this method also installs all of the components but the configuration step allows you to choose which ones to configure.
If you receive an error like Checking for openmotif-2.2.3; not found; failed, Install the missing rpm
Specify Security Updates
Upgrade Forms Reports 18.104.22.168
Install Forms Reports patchset. Unzip the appropriate file and execute
cd Disk1 ./runInstaller
Configure Forms Reports 22.214.171.124
Execute config.sh from the $Oracle_Home/bin folder. This is a configuration tool that can be run as a GUI or command-line.
Other documents that were helpful to our team:
We disabled IPV6 because webcache wouldn’t start….see the instructions below.
14.5.3 Disabling IPv6 Support for Oracle Web Cache
By default, IPv6 support is enabled for Oracle Web Cache. You can disable it in the
webcache.xml file, which is located in the following directory:
In the file, change the value of the IPV6 element to “NO”. For example:
If the IPV6 element does not exist in the webcache.xml file, you can add the element to the
file. Add it after the MULTIPORT element, as shown in the following example:
<LISTEN IPADDR=”ANY” PORT=”7786″ PORTTYPE=”ADMINISTRATION”/>
<LISTEN IPADDR=”ANY” PORT=”7788″ PORTTYPE=”INVALIDATION”/>
<LISTEN IPADDR=”ANY” PORT=”7787″ PORTTYPE=”STATISTICS”/>
We are experiencing memory leaks and high CPU utilization for Fusion Middleware (FMW) Version 126.96.36.199 that gradually builds until the server becomes completely unresponsive. The last time this happened rebooting the server did not bring up all of the FMW components.
Errors in the Browser trying to access Oracle Forms:
Failure of server APACHE bridge:
No backend server available for connection: timed out after 10 seconds or idempotent set to OFF.
Errors in the AdminServer.log for Weblogic:
####<May 3, 2011 12:26:38 PM MDT> <Warning> <DeploymentService> <AdminServer> <[ACTIVE] ExecuteThread: ‘0’ for queue: ‘weblogic.kernel.Default (self-tuning)’> <<anonymous>> <> <> <BEA-290014> <Invalid user name or password.>
####<May 3, 2011 12:26:38 PM MDT> <Warning> <DeploymentService> <> <AdminServer> <[ACTIVE] ExecuteThread: ‘0’ for queue: ‘weblogic.kernel.Default (self-tuning)’> <<anonymous>> <> <> <> <BEA-290014> <Invalid user name or password.>
####<May 3, 2011 12:26:42 PM MDT> <Error> <Configuration Management> <> <AdminServer> <[ACTIVE] ExecuteThread: ‘0’ for queue: ‘weblogic.kernel.Default (self-tuning)’> <<WLS Kernel>> <> <> <> <BEA-150035> <An attempt was made to download the configuration for the server WLS_REPORTS by the user with an invalid password.>
####<May 3, 2011 12:26:44 PM MDT> <Error> <Configuration Management> <> <AdminServer> <[ACTIVE] ExecuteThread: ‘0’ for queue: ‘weblogic.kernel.Default (self-tuning)’> <<WLS Kernel>> <> <> <> <BEA-150035> <An attempt was made to download the configuration for the server WLS_FORMS by the user with an invalid password.>
####<Apr 1, 2011 10:58:46 AM MDT> <Notice> <Security> <> <AdminServer> <[ACTIVE] ExecuteThread: ‘4’ for queue: ‘weblogic.kernel.Default (self-tuning)’> <<anonymous>> <> <> <> <BEA-090078> <User in security realm myrealm has had 5 invalid login attempts, locking account for 30 minutes.>
Searching on MOS came up with two different articles:
Getting Error “User orcladmin In Security Realm Myrealm Has Had 5 Invalid Login Attempts, Locking Account For 30 Minutes.” [ID 1270253.1]
Oracle Middleware 11g – Troubleshooting the Error “Failure of server APACHE bridge” [ID 1304095.1]
I changed the password for the WEBLOGIC admin account using the GUI Console which really didn’t help. Aha! We had created boot.properties files for starting all services, somehow those were no longer working (corrupt?) I recreated them and restarted all of the services successfully.
Quotes taken from speaker biographies….some of the worse or best. You be the judge. I will add to these….stay tuned.
“He works from the command line and uses vi.”
” He enjoys the latest gadgets and technology.”
” He has also spent many years developing C/C++ compilers and knows more programming languages than he has fingers. “
“____ is now ready to change the world.”
“____ was a particularly driven young man. Having been voted “Most Likely to Succeed” by his high-school graduating class, he promptly moved 1000km away from home to attend the University”
“He is a focal point around the world in ….. circles” (editor note: Think visually on this one)
” Any type of major incident comes to this team.” (editor note: Another visual)
“…..hopes to, one day, complete her graduate degree in Information Systems.”
Receiving errors for large batch jobs in a production 188.8.131.52 database.
ORA-12541: TNS:no listener
The listener log contained the following event at the same time- ‘Warning: Subscription For Node Down Event Still Pending’ . I have seen this event before and it hasn’t caused any issues but apparently there are reports of hanging issues in databases >10g.
See the following MOS document :’Warning: Subscription For Node Down Event Still Pending’ In Listener Log [ID 372959.1]
“These messages are related to the Oracle TNS Listener’s default subscription to the Oracle Notification Service (ONS). In a non-RAC environment it is recommended to disable this subscription. This feature was introduced in Oracle 10g. ”
This recommendation was news to me, so this is why I put in a blog post because someone else will come across the same problem…the fix is to add to the listener.ora
and then reload or restart the listener. Using the Reload command in lsnrctl will be less disruptive than restarting.
Many thanks to John Kanagaraj, previous Executive Editor, who first spotted a contributing editor from among many reviewers. He is stepping down taking on the role of Associate Editor for a year while I transition into the new leadership role.
Wish both John and I luck…
We are always looking for new articles and reviewers. The SELECT Journal is published four times a year, with the Best Practices Booklet once a year.
The SELECT Journal magazine focus/themes are primarily driven by IOUG members from an annual poll.
We had this configuration in production use, and suddenly users received security warning dialog boxes. Nothing on MOS for this issue and the support engineer associated with my SR didn’t find anything either. This is just in case anyone else comes across this problem. We used the instructions from the following note on a 11g client install, it didn’t work (malformed certificate error) trying to diagnose using the Fusion Installation Home.
Using Note 1268757.1 I have verified that frmall11.jar and frmall.jar are both expired. It is not the signed jar files from the 3rd party (I verified those as well), it is Oracle.
Owner: CN=”Oracle USA, Inc.”, OU=Products and Technology, OU=Digital ID Class 3 – Java Object Signing, O=”Oracle USA, Inc.”, L=Denver, ST=Colorado, C=US
Serial number: 7c1075295a1865d3633a7b4d852f45a0
Valid from: Sun Mar 02 17:00:00 MST 2008 until: Thu Mar 24 17:59:59 MDT 2011
WebLogic / OFM Note
The fix for WebLogic and OFM is to upgrade to OFM 184.108.40.206 with WebLogic 10.3.4
and it should include the updated JAR files.