Request Details OIM SOA BPEL cannot be seen

When user requests a role or any entity from catalog for other user, after submitting, request status goes to Request Failed with the following message:

IAM-2050014 : An error occurred while initiating approvals for request 00000. The corresponding error message is java.lang.RuntimeException: Caller doesn't have enough permission to call this method.

SOLUTION:

In Enterprise Manager,

Go to OIMDomain > MBean Browser > Application Defined MBeans > oracle.iam > server: oim_server1 > Application: oim > XMLConfig > Config > XMLConfig.SOAConfig > SOAConfig > username

In OID, give appropriate permission to this user (eg. weblogic_idm) and make sure that the user is a part of Administrators Group*.

* >> (**just for reference**)

In enterprise manager if you go to >>> Weblogic Domain > OIMDomain > security > Application Roles > (Select soa-infra in Application Stripe) search 

 ....for SOAAdmin SOAOperator and SOAMonitor, you can find Administrators Group in the membership * 

_______________________________

Also,

if you approve the request and entity does not show up in the user profile: check the OIMFrontEndURL in Enterprise Manager. It should be a server URL and not any load balancer or proxy url.

_______________________________

Request Details OIM SOA BPEL cannot be seen

Request Details page in OIM self service appears when you click on a pending approval request in the inbox. Remember that this page goes over the SSL link to OIM. 

If you cannot see the details, there might be various reasons for this as listed below:

1. Port 14001 is not open in one of the firewalls.

         Make sure you can access OIM self service with FQDN as follows:
         https://domain.com:14001/identity or http://domain.com:14000/identity
                                                           OR
         https://ssodomain.com:443/identity or http://ssodomain.com:80/identity                                                                      (proxied URIs)

2. The Single Sign On URL or any Front End URL used to access OIM is not configured at the following location:

Enterprise Manager > SOA > soa-infra (soa_server_1) > BPEL process > Approval Task > Administration

        Application Name : worklist
        Host Name: Front End URL that is used to access OIM self service (from step 1)
        HTTP port: 80/14000
        HTTPs port: 443/14001
        URI: /identity/faces/adf.task-flow?_id=ApprovalTask_TaskFlow&_document=WEB-INF/ApprovalTask_TaskFlow.xml

3. OHS server does not have the OIM SSL certificate.
     
         Import the certificate in OHS server.


 You have to access OIM self service with URL that includes domain and port as well to see the request details.