on 03-31-2017 6:36 PM
We followed tim.ziemba document SSO Kerberos XI 3.1 SP 3 or later
Issue :
InfoView Manual Authentication for all Windows AD Users but SSO Does not
Please help.
let me know if you need additional information.
no credentials obtained means that the value for idm.princ@IDM.REALM in your global.properties is not working, or you don't have
-Djcsi.kerberos.debug=true in your tomcat java options. With that tracing enabled, tomcat restarted (preferably delete any old logs) KBA 1631734 instructs to look for credentials obtained. If that fails the values in the global.properties are not correct (lok for typos, spaces, etc)
Regards,
Tim
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
did you get the credentials obtained in the tomcat logs? Is SSO failing with a login screen, or is there an error. An error indicates SSO is actually enabled, and your AD configuration is probably incorrect (SPN's delegation, DNS, values in global.properties, etc), login screen can mean SSO isn't enabled (check for credentials obtained) or sometimes also means the AD configuration is incorrect.
Regards,
Tim
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
80 | |
9 | |
9 | |
7 | |
7 | |
6 | |
6 | |
6 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.