This error can occur because of wrong configuration at opmn.xml. OPMN supports remote requests to other OPMN servers in the same cluster, but for security reasons all process control requests (start, restart and stop) are only enabled if SSL is enabled in the opmn.xml file and a wallet file is configured. If neither SSL nor a wallet file are configured, OPMN will reject any remote process control request with HTTP code 403."
To fix this,
- Make sure the rmi connectivity against the remote OC4J instances is working.
- Make sure the OC4J instances are configured using only one nic card ip address. If not edit rmi.xml at
$ORACLE_HOME/j2ee/j2ee/my_instance/config/rmi.xml
<rmi-server
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:noNamespaceSchemaLocation="http://xmlns.oracle.com/oracleas/schema/rmi-server-10_0.xsd"
host="<localhostname>"
port="23791"
ssl-port = "23943"
schema-major-version="10"
schema-minor-version="0"
>
where <localhostname> is the localhostname, as it is defined in /etc/hosts associated to you
local ip address
- Make sure you have configured SSL authentication is implemented.
<notification-server interface="ipv4">
<port local="6100" remote="6200" request="6003"/>
<ssl enabled="true" wallet-file="$ORACLE_HOME/opmn/conf/ssl.wlt/default"/>
</notification-server>
- Restart OPMN