Solved

RADIUS authentification

Posted on 2009-07-15
9
815 Views
Last Modified: 2013-12-19
Hello,

I'm trying to setup RADIUS authentification with Oracle 10g R2. Unfortunately, when i try to connect, i get this message:

ORA-12641: Authentication service failed to initialize

I also tried to follow this documentation: http://download.oracle.com/docs/cd/B19306_01/network.102/b14268/asoradus.htm#ASOAG040

But there is no "Oracle Advanced Security" in the choice list. Is it because it's not installed? Is there a way to install it on top of my current installation?

Thanks
0
Comment
Question by:bomek
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 4
9 Comments
 
LVL 48

Accepted Solution

by:
schwertner earned 500 total points
ID: 24858382
Look in the file $ORACLE_HOME/network/tools/NetProperties the line
contained the parameter INSTALLEDCOMPONENTS
(often it is is commented using # ).
Modify it like:

INSTALLEDCOMPONENTS=CLIENT,NET8,JAVAVM,SERVER,ANO

and restart netmgr
0
 

Author Comment

by:bomek
ID: 24866873
Thanks, it did the trick. I'm now able to configure RADIUS through netmgr. But still, when i try to login with sqlplus, i get this error: ORA-12641: Authentication service failed to initialize.
0
 
LVL 48

Expert Comment

by:schwertner
ID: 24866947
Is it fresh installation of Oracle 10g?
What says

lsnrctl status
lsnrctl services
0
Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 

Author Comment

by:bomek
ID: 24867184
My radius.key was wrong.. After i fixed it, i got Oracle communicate with my radius server.

In my init.ora, i got those two options:
os_authent_prefix=""
remote_os_authent=FALSE

I created a user identified externally to which i granted connect role. When i'm connecting with this user, i get a logon denied from oracle and in the RADIUS log it says invalid password (i'm using the good password of course...).

My RADIUS server works fine with others services and the user i'm trying too.

And no, it's not a fresh Oracle 10g install. Our Oracle installation is on windows, how do i get the same result as "lsnrctl status"?

0
 
LVL 48

Expert Comment

by:schwertner
ID: 24867375
Good news!
0
 

Author Comment

by:bomek
ID: 24867386
Well, no, since i'm still not able to login..

I don't know why, but Oracle is not sending the password i typed to the RADIUS server.
0
 
LVL 48

Expert Comment

by:schwertner
ID: 24868282
Check for firewall.
Check for host name. port, protocol.
0
 

Author Comment

by:bomek
ID: 24868463
As i said, Oracle is able to communicate with the server (since i see the requests in the radius logs). The problem, password is always invalid. I've tried different users with very simple, normal and complicated passwords but none go through.

The radius server works perfectly with other services and with radius test tool (NTRadPing). Oracle is obviously doing something with the password i enter before it send it to the radius server.
0
 

Author Comment

by:bomek
ID: 24868692
I finally found the response, the secret was too long for oracle. I shorten it to 16 characters and it works.
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
constraint check 2 56
Row_number in SQL 6 45
DECLARATION OF CURSOR IS INCOMPLETE OR MALFORMED 5 40
Oracle programming for starter 14 32
Why doesn't the Oracle optimizer use my index? Querying too much data Most Oracle developers know that an index is useful when you can use it to restrict your result set to a small number of the total rows in a table. So, the obvious side…
I remember the day when someone asked me to create a user for an application developement. The user should be able to create views and materialized views and, so, I used the following syntax: (CODE) This way, I guessed, I would ensure that use…
This video shows, step by step, how to configure Oracle Heterogeneous Services via the Generic Gateway Agent in order to make a connection from an Oracle session and access a remote SQL Server database table.
This videos aims to give the viewer a basic demonstration of how a user can query current session information by using the SYS_CONTEXT function

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question