Solved: Error 404 vintela SSO on XIR2

Former Member · ‎07-30-2009

HI,

We are trying to configure vintela SSO on XIR2 SP4.

When we launch infoview it errors with " HTTP Status 404 - /businessobjects/enterprise115/desktoplaunch.."

There are no duplicate SPN's. In XIR2 SP4 there are two instances of authFilter,idm.realm,idm.princ in web.xml file.

Should we make use of one section and comment the other or modify both the sections.

In the stdout log file , we are able to see successful KDC request and kerberos tickets are generating.But in localhost log file we see the following error:

StandardContext[/businessobjects/enterprise115/desktoplaunch]Exception starting filter authFilter

com.wedgetail.idm.sso.ConfigException: Configured service principal name `BOSSO/server.domain.com' could not be found [caused by: com.dstc.security.kerberos.KerberosError: Client not found in Kerberos database].

Please suggest!!!

Thanks.

BasicTek · ‎07-30-2009

client not found in kerberos database is usualy a duplicate UPN not SPN, take the value of idm.princ @IDM.REALM (from infoview web.xml) and run kinit on it from your boinstall\j2sdk1.4.2_08\bin directory and you should receive the same error.

Then you need to search AD for that value as UPN (should be duplicate or missing). Another issue that can cause this (if the UPN is neither duplicate or missing) is 2008 domain controllers have a bug and don't work with service accounts if ktpass -mapuser have made the UPN and SAM account different (which is required with current XIR2 and XI 3,x docs).

Both of these situations should have solutions in our notes DB.

Regards,

Tim

Error 404 vintela SSO on XIR2

Accepted Solutions (1)

Accepted Solutions (1)

Answers (0)

Iterating through JSONModel with multiple nested a...

Re: Connecting SAP CAP with SAP Cloud ALM

How to use CopyProvider on Table created by TypeSc...

How to execute/fire onPost when user press enter o...

Re: Connecting SAP CAP with SAP Cloud ALM