I've followed Tim's guide, and set up XI 3.1 SP2 (FP 2.4), and have configured vintela. To date, I have the following working:.</p>
DeskI, Designer: choose Windows AD from the drop down box and click OK to logon correctly..</p>
Query As a Web Service - Enable Windows AD SSO is checked, and I can logon correctly as myself by clicking OK..</p>
InfoViewApp (Tomcat only, will work on IIS7 later) - can manually enter my AD credentials and password and I logon OK.</p>
In CMC, my group is mapped in the AD box, and I can see my account in the users, and has been updated from AD with my name and email address.</p>
</p>
When I look at stdout.log file, I can see the "credentials obtained" when Tomcat starts, and I can see my login attempt.</p>
Acquire TGT using AS Exchange.</p>
principal is proa4@XXX.</p>
And the "Commit Succeeded".</p>
Before this attempt - and any attempt from a client machine where a user enters .</p>
http://server:8080/InfoViewApp, I can see the following "error"..</p>
or http://fqdn:8080/InfoViewApp.</p>;
It does fill in my username on the login screen, and as mentioned I can then type in my AD password and login correctly..</p>
</p>
</p>
16-03-10 13:47:34:234 - [/InfoViewApp].[action] Thread [http-8080-Processor25]; Servlet.service() for servlet action threw exception.</p>
java.lang.IllegalStateException</p>
at org.apache.catalina.connector.ResponseFacade.sendError(ResponseFacade.java:418)</p>
at javax.servlet.http.HttpServletResponseWrapper.sendError(HttpServletResponseWrapper.java:117)</p>
at com.businessobjects.sdk.credential.WrappedServletResponse.sendError(WrappedServletResponse.java:30)</p>
at com.wedgetail.idm.sso.AbstractAuthenticator.setUnauthorizedResponse(AbstractAuthenticator.java:1328)</p>
at com.wedgetail.idm.sso.MechChecker.authenticate(MechChecker.java:144)</p>
at com.wedgetail.idm.sso.AbstractAuthenticator.authenticate(AbstractAuthenticator.java:1060)</p>
at com.wedgetail.idm.sso.AbstractAuthenticator.authenticateServiceTicket(AbstractAuthenticator.java:998)</p>
at com.wedgetail.idm.sso.AbstractAuthenticator.checkAuthentication(AbstractAuthenticator.java:953)</p>
at com.wedgetail.idm.sso.AuthFilter.doFilter(AuthFilter.java:122)</p>
at com.businessobjects.sdk.credential.WrappedResponseAuthFilter.doFilter(WrappedResponseAuthFilter.java:66)</p>
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:202)</p>
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:173)</p>
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213)</p>
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:178)</p>
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:126)</p>
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:105)</p>
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:107)</p>
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:148)</p>
at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:869)</p>
at org.apache.coyote.http11.Http11BaseProtocol$Http11ConnectionHandler.processConnection(Http11BaseProtocol.java:664)</p>
at org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket(PoolTcpEndpoint.java:527)</p>
at org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt(LeaderFollowerWorkerThread.java:80)</p>
at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:684)</p>
at java.lang.Thread.run(Thread.java:595)</p>
Debug is true storeKey false useTicketCache false useKeyTab false doNotPrompt false ticketCache is null isInitiator true KeyTab is null refreshKrb5Config is false principal is null tryFirstPass is false useFirstPass is false storePass is false clearPass is false</p>
[Krb5LoginModule] </p>
</p>
I'm quite confused here, as other people who reported this issue had problems with the infoviewapp\web-inf\web.xml file - but mine looks correct, when I compare it to Tim's guide. What else should I be looking at to solve this issue?</p>
</p>
BOE is running on Windows Server 2008 x64. Tomcat is running under the Bus Obj service account i created in AD, as is the SIA/CMC and all servers. The account is trusted for delegation for Kerberos, and has the 'Act as part of the O/S' set.</p>
</p>
Edited by: Adrian Procter on Mar 16, 2010 10:14 PM
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.