on 09-21-2010 4:23 AM
Hi,
I am trying to configure Vintela SSO, I am following the guidelines "Configure Vintela SSO in Disturbuted Envirnments Complete Guide" By Tim Ziemba.
my envirnemet is BO X.1 SP3 and 2008 Window Server
I can login in cmc and infoView manually. and can login Universe Designer and Web rich client by SSO .
But unable to login into CMC and InvoView using SSO services. I am not using the Keytab file and using the -Dcom.wedgetail.idm.sso.password=ksjdflsd in Java in Tomcat server.
i got the following message in stdout.
Debug is true storeKey false useTicketCache false useKeyTab false doNotPrompt false ticketCache is null isInitiator true KeyTab is null refreshKrb5Config is false principal is null tryFirstPass is false useFirstPass is false storePass is false clearPass is false
[Krb5LoginModule] user entered username: @HEALTHTECH.NSWHEALTH.NET
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - JspEngine --> /jsp/Shared_Logon/logon.jsp
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - ServletPath: /jsp/Shared_Logon/logon.jsp
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - PathInfo: null
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - RealPath: C:\Program Files (x86)\Business Objects\Tomcat55\webapps\PlatformServices\jsp\Shared_Logon\logon.jsp
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - RequestURI: /PlatformServices/jsp/Shared_Logon/logon.jsp
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - QueryString: null
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - Request Params:
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - password =
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - reportedIP =
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - cms = hts0463:6400
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - sessionCookie = true
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - loc = en
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - backContext = /InfoViewApp
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - persistCookies = true
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - appKind = InfoView
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - backUrl = /listing/main.do
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - qryStr = service=%2FCmcApp%2FApp%2FappService.jsp&cms=hts0463%3A6400&cmsVisible=false&authType=secWinAD&authenticationVisible=false&usernameEditable=false&username=tayyabm&sm=false&smAuth=secLDAP&sapSSOPrimary=false&sso=false&useLogonToken=false&sessionCookie=true&persistCookies=true&appName=BusinessObjectsCentralManagementConsole&prodName=BusinessObjects&appKind=CMC&loc=en&pvl=en_AU&backUrl=%2FKind%2FAuth%2Flist.faces%3FappKind%3DCMC%26service%3D%252FCmcApp%252FApp%252FappService.jsp%26loc%3Den%26pvl%3Den_AU%26pref%3DmaxOpageU%253D%253BmaxOpageUt%253D200%253BmaxOpageC%253D%253Btz%253DAustralia%252FSydney%253BmUnit%253D%253BshowFilters%253Dtrue%253BsmtpFrom%253Dtrue%253BpromptForUnsavedData%253Dfalse%253B%26&backContext=%2FCmcApp&backUrlParents=1
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - authType = secWinAD
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - useLogonToken = false
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - service = /InfoViewApp/common/appService.do
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - reportedHostName = hts0456:8080
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - authenticationVisible = true
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - appName = SAP BusinessObjects InfoView
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - username =
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - prodName = BusinessObjects
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - isFromLogonPage = true
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - cmsVisible = true
2510531 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - backUrlParents = 1
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - JspEngine --> /jsp/Shared_Logon/_logon.jsp
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - ServletPath: /jsp/Shared_Logon/logon.jsp
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - PathInfo: null
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - RealPath: C:\Program Files (x86)\Business Objects\Tomcat55\webapps\PlatformServices\jsp\Shared_Logon\_logon.jsp
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - RequestURI: /PlatformServices/jsp/Shared_Logon/logon.jsp
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - QueryString: null
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - Request Params:
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - password =
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - reportedIP =
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - cms = hts0463:6400
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - sessionCookie = true
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - loc = en
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - backContext = /InfoViewApp
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - persistCookies = true
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - appKind = InfoView
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - backUrl = /listing/main.do
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - qryStr = service=%2FCmcApp%2FApp%2FappService.jsp&cms=hts0463%3A6400&cmsVisible=false&authType=secWinAD&authenticationVisible=false&usernameEditable=false&username=tayyabm&sm=false&smAuth=secLDAP&sapSSOPrimary=false&sso=false&useLogonToken=false&sessionCookie=true&persistCookies=true&appName=BusinessObjectsCentralManagementConsole&prodName=BusinessObjects&appKind=CMC&loc=en&pvl=en_AU&backUrl=%2FKind%2FAuth%2Flist.faces%3FappKind%3DCMC%26service%3D%252FCmcApp%252FApp%252FappService.jsp%26loc%3Den%26pvl%3Den_AU%26pref%3DmaxOpageU%253D%253BmaxOpageUt%253D200%253BmaxOpageC%253D%253Btz%253DAustralia%252FSydney%253BmUnit%253D%253BshowFilters%253Dtrue%253BsmtpFrom%253Dtrue%253BpromptForUnsavedData%253Dfalse%253B%26&backContext=%2FCmcApp&backUrlParents=1
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - authType = secWinAD
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - useLogonToken = false
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - service = /InfoViewApp/common/appService.do
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - reportedHostName = hts0456:8080
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - authenticationVisible = true
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - appName = SAP BusinessObjects InfoView
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - prodName = BusinessObjects
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - username =
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - cmsVisible = true
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - isFromLogonPage = true
2510547 [http-8080-Processor23] DEBUG org.apache.jasper.servlet.JspServlet - backUrlParents = 1
have somenne idea, what is doing wrong.
Thanks Ramu,
Yes you are right I am using password in java tab of Tomcat server. i did'nt add the key tab file attributes in web.xml. So this is not the issues.
Have any idea.
Thanks.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Thank you very much Tim,
Yes you are right, SSO will not work for CMC.
My problem is that manually AD is working on infoview,cmc and client tools and SSO is also working for Client tools like webi rich client and universe designer but it is not working with InfoView. i got the message
in stdout file.
*Debug is true storeKey false useTicketCache false useKeyTab false doNotPrompt false ticketCache is null isInitiator true KeyTab is null refreshKrb5Config is false principal is null tryFirstPass is false*
*useFirstPass is false storePass is false clearPass is false [Krb5LoginModule] user entered username: @HEALTHTECH.NSWHEALTH.NET*
*Acquire TGT using AS Exchange [Krb5LoginModule] authentication failed Generic error (description in e-text) (60)*
Do you have any idea, what is problem.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
I believe you are not using the keytab file intesionally rather making and entry with the password directly.
The error messae seems to be looking for a eytab file which is not there in the system.
So iwould suggest to disable or comment the keytab entries in the infoview web.xml file.
Hopefully this should help you.
Regards,
Ramu.
SSO is only for infoviewapp, opendocument, and dswsbobje (web services)
The CMC being an administration tool does not have the code written for it. You must logon manually with AD/LDAP/etc
Regards,
Tim
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
82 | |
11 | |
10 | |
8 | |
6 | |
6 | |
6 | |
6 | |
5 | |
5 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.