adappctl.sh exist with 204 after enabling SSL on 12.2.6.

hI Erman,

We enabled SSL on 12.2.6 , APPLIED patches on fmw_home.

after that we are not to start adappctl.sh , its existing with 204 error.

We raised SR with oracle its been a week now , no resolution, they did OWC to check SSL setup which was correct.

Attaching logs for your reference , kindly suggest & help. log.zip

regards,

we have local domain in our /etc/hosts files .

FYI..

regards,

There can be left over process that keep the port open.

Check it with netstat -anpt | grep 4443

-p option will display the process id..
Kill that process if it exists and retry.

hi Erman,

we are on Aix. below command doest work but we have used netstat and lsof but both are returing no values as result.

# netstat -anpt|grep 4443
t: unknown or uninstrumented protocol
root@*****:/
# netstat -Aan|grep 4443
root@*******:/
#

regards,

lsof |grep 4443 returns below..


# lsof | grep 4443
java       8192212  <os_user>  296r  VREG               51,2               4443 12714776 /<os_user> (/dev/<os_user>lv)
java       9633936  <os_user>  275r  VREG               51,2               4443 12714776 /<os_user> (/dev/<os_user>lv)
sftp-serv 14352536  <os_user>    0r  FIFO 0xf1000a015fd44430                  0
java      16056336  <os_user>  529r  VREG               51,2               4443 12714776 /<os_user> (/dev/<os_user>lv)
java      24576010  <os_user>  272r  VREG               51,2               4443 12714776 /<os_user> (/dev/<os_user>lv)
java      26476774  <os_user>  528r  VREG               51,2               4443 12714776 /<os_user> (/dev/<os_user>lv)
java      28180630  <os_user>  275r  VREG               51,2               4443 12714776 /<os_user> (/dev/<os_user>lv)
sshd      28573948  <os_user>   10w  FIFO 0xf1000a015fd44430                  0
java      29360254  <os_user>  529r  VREG               51,2               4443 12714776 /<os_user> (/dev/<os_user>lv)
java      38600916  <os_user>  529r  VREG               51,2               4443 12714776 /<os_user> (/dev/<os_user>lv)
java      39649362  <os_user>  528r  VREG               51,2               4443 12714776 /<os_user> (/dev/<os_user>lv)
java      40697914  <os_user>  275r  VREG               51,2               4443 12714776 /<os_user> (/dev/<os_user>lv)
lsof: WARNING: /.lsof_***** was updated.
root@******:/

These are all VREGS.. I was expecting IPV4 or IPV6 there..

Review your /etc/hosts file.. (dont send it to me, because it is a critical info -- security concern)
duplicate entries for the same IP Address in /etc/hosts may cause this problem..

Thanks for the reply Erman,

we already did those checks there are no duplicate entries in /etc/hosts for the server IP.

regards,

1)How did you enable SSL in this environment?
Please describe your environment with details..
--I suspect that some bad config may be doing this.
--Oracle Http Server may be try to get this port twice, because of a unnecessary config.
--So OHS may be trying to get it in second time. Normally, it may be seeing that, the port is already used ----and that's why it may be giving up everything..
Did you rename any file?, while doing this config? I mean you might have multiple ssl.conf file (1 ssl.conf, and other one xssl.conf in the same directory)

2) Send me your httpd.conf and ssl.conf

3)also send me the output of lsof -i:4443

Thanks Erman for the reply.

1)How did you enable SSL in this environment?  
   we followed document --> Enabling SSL or TLS in Oracle E-Business Suite Release 12.2 (Doc ID 2143101.1)-

yes, ssl_httpd_files.zipthere are multiple ssl.conf fiel with different names as per the changes were done.

2) we are on 12.2.6 , currently,  database resides on 1 x server and application on Y Server.

3) we have changed the port to 4432 as per oracle suggestion. attaching its output.

4) attached SSL and httpd.conf files.

5) output of bash-4.2$  lsof -i:4432 -----(no row returned, check with both root and os ACCOUNT).

bash-4.2$

regards,
khalid

New action plan:

1)
Please anwser the following question:

Oracle Http Server may be try to get this port twice, because of a unnecessary config.
So OHS may be trying to get it in second time. Normally, it may be seeing that, the port is already used ----and that's why it may be giving up everything..
"Did you rename any file?, while doing this config? I mean you might have multiple ssl.conf file (1 ssl.conf, and other one xssl.conf in the same directory)"

2)
Send me ->
"${ORACLE_INSTANCE}/config/${COMPONENT_TYPE}/${COMPONENT_NAME}/mod_wl_ohs.conf"
"${ORACLE_INSTANCE}/config/${COMPONENT_TYPE}/${COMPONENT_NAME}/admin.conf"
"${ORACLE_INSTANCE}/config/${COMPONENT_TYPE}/${COMPONENT_NAME}/apps.conf"
"${ORACLE_INSTANCE}/config/${COMPONENT_TYPE}/${COMPONENT_NAME}/oracle_apache.conf"

3) You are using appldba OS account right? Cause your httpd.conf is configured with it.. (User appldba)
4) You don't have any permission issues in OHS directories right? Please check it as well.
5) Ensure , there is no firewall running your EBS apps server or any AIX security related that blocks you from getting the port 4432.

Hi Erman,

Thanks for the reply.

below are the answers,

1) yes there are multiple ssl.conf files along with original ssl.con file. those are the backup of original ssl.cof files as per the changes were done.

2) all files attached.

3) yes we are using that account.

4) I tried giving 777 to OHS folder, but still, error is same

5) there is no firewall as off.

regards,

attachingmod_apps_admin_apache.zip files as requested.

regards,

Enable highler level debug for OPMN and OHS by following ; "12.2 E-Business Suite - Collecting Fusion Middleware Log Files (Doc ID 1362900.1)."

Exactly follow "Section 3: Steps to configure higher Debug levels and collect log files. "
follow "a) OPMN"
follow "b) Increasing OHS Logging"

Then restart OHS services by following; "f) Restart Application Tier Services and clear log files"

Send me the log files by following "g) Reproduce issue and upload log files"

Hi Erman,

as the http services are down i m not able to genrate the logs as per doc id you mentioned.

meanwhile i was going through your blog http://ermanarslan.blogspot.in/2014/07/enabling-ssl-in-oracle-e-business-suite.html where you are saying no need to change httpd.conf file with SSL port , KEEP the non-ssl port as it is , doing so my serivces for Apache are coming up , but if i change the value of Listen <SSL_PORT> it fails. Is the change to httpd.conf WITH ssl port is required. ??
as per the doc  (Doc ID 2143101.1)  , step 5.2.2 its asking to disable it. ??kindly suggest.


regards,

Disabling http port is optional.

Did you apply all the patches documented in that step?
Did you do the things that are documented in 5.2.2 correctly?

yes all patches applied ...

steps 5.2.2 done... after disabling httpd.conf i m able to open application .

The 2 new issue im facing...

1)  if I give application (non_ssl) port , it should get divert to ssl port,  its getting diverte to some new port which not even configured.

2) after giving URL from context_file , while opening forms getting below error

Full Details: FRM-92030: Internal Error: Failed to find name of class for handleClassId=1010. Missing in registry?
        at oracle.forms.engine.Runform.onCreateHandler(Unknown Source)
        at oracle.forms.engine.Runform.processMessage(Unknown Source)
        at oracle.forms.engine.Runform.processSet(Unknown Source)
        at oracle.forms.engine.Runform.onMessageReal(Unknown Source)
        at oracle.forms.engine.Runform.onMessage(Unknown Source)
        at oracle.forms.engine.Runform.sendInitialMessage(Unknown Source)
        at oracle.forms.engine.Runform.startRunform(Unknown Source)
        at oracle.forms.engine.Main.createRunform(Unknown Source)
        at oracle.forms.engine.Main.start(Unknown Source)
        at com.sun.deploy.uitoolkit.impl.awt.AWTAppletAdapter.start(Unknown Source)
        at sun.plugin2.applet.Plugin2Manager$AppletExecutionRunnable.run(Unknown Source)
        at java.lang.Thread.run(Unknown Source)

regards,

1) did you do all the steps documented in step 5.2.2 Configuration Changes, including -> "Switch the order of the following include statements such that the ssl.conf comes before the admin.conf:
# Include the SSL definitions and Virtual Host container
include "${ORACLE_INSTANCE}/config/${COMPONENT_TYPE}/${COMPONENT_NAME}/ssl.conf"
# Include the admin virtual host (Proxy Virtual Host) related configuration
include "${ORACLE_INSTANCE}/config/${COMPONENT_TYPE}/${COMPONENT_NAME}/admin.conf""

If no, do it. If yes, send me a screenshot, so I can see the port and the situation

2)FRM-92120 Registry.dat Missing Occurs While Starting a Form or FRM-92130 (Doc ID 421229.1)