Re: SSO with Tomcat/IIS on 7.0

[Moore, Christopher Allen]

Hi Alexander-
Thanks a lot for the help!  We got that bit in and are a bit further along now, 
but when logging in  with domain credentials now we see the following errors in 
the midtier logs:

Dec 15, 2008 8:33:09 AM com.remedy.arsys.goat.GoatException <init>
FINE: Throw ARException -
MessageType: 2
MessageNum: 623
MessageText: Authentication failed
AppendedText:
MessageType: 2
MessageNum: 623
MessageText: Authentication failed
AppendedText:
Dec 15, 2008 8:33:09 AM com.remedy.arsys.log.Log log
WARNING: Caught GoatException
ARERR [623] Authentication failed
                at com.remedy.arsys.stubs.ServerLogin.<init>(Unknown Source)
                at com.remedy.arsys.stubs.ServerLogin.get(Unknown Source)
                at com.remedy.arsys.stubs.SessionData.getServerLogin(Unknown 
Source)
                at com.remedy.arsys.goat.Form.getServerLogin(Unknown Source)
                at com.remedy.arsys.goat.Form.checkAccess(Unknown Source)
                at com.remedy.arsys.goat.Form.get(Unknown Source)
                at com.remedy.arsys.stubs.HomeServlet.doRequest(Unknown Source)
                at com.remedy.arsys.stubs.GoatServlet.postInternal(Unknown 
Source)
                at com.remedy.arsys.stubs.GoatHttpServlet.doGet(Unknown Source)
                at javax.servlet.http.HttpServlet.service(HttpServlet.java:689)
                at javax.servlet.http.HttpServlet.service(HttpServlet.java:802)
                at 
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:252)
                at 
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:173)
                at 
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213)
                at 
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:178)
                at 
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:126)
                at 
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:105)
                at 
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:107)
                at 
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:148)
                at 
org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:199)
                at 
org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:282)
                at 
org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:754)
                at 
org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:684)
                at 
org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:876)
                at 
org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:684)
                at java.lang.Thread.run(Unknown Source)
Caused by:
MessageType: 2
MessageNum: 623
MessageText: Authentication failed
AppendedText:
                at com.remedy.arsys.api.Proxy.ARVerifyUser(Native Method)
                at 
com.remedy.arsys.api.ARServerUser.verifyUser(ARServerUser.java:707)
                ... 26 more
Did you happen to run across this as well when you were working on it?

Thanks!
Chris Moore
________________________________
From: Action Request System discussion list(ARSList) 
[mailto:arsl...@arslist.org] On Behalf Of Zinoviev Alexander
Sent: Monday, December 15, 2008 2:54 AM
To: arslist@ARSLIST.ORG
Subject: Re: SSO with Tomcat/IIS on 7.0

Hello, Chris,

I resolved the same problem few months ago.
1) Check if ARS server is the part of domain.
2) Read an artice KB BMC ID: 102235 (it fixes tomcat authentification).
3) Change the authentification in IIS (it shoul not be anonimous)

Hope this will help you,
Alexander Zinoviev

________________________________
From: Action Request System discussion list(ARSList) 
[mailto:arsl...@arslist.org] On Behalf Of Moore, Christopher Allen
Sent: Friday, December 12, 2008 8:06 PM
To: arslist@ARSLIST.ORG
Subject: SSO with Tomcat/IIS on 7.0
**
Hi everyone,

We are having problems configuring SSO for mid tier 7.0
We have an unusual configuration; Tomcat is acting as a servlet for IIS.   
Windows 2003 Server, SQL 2005, ITSM 7.0.

Steps completed:
Read SSO whitepaper and multiple list entries as well as entries on BMC 
developer forum
Followed instructions from Midtier_Area_sso_setup.doc from knowledgebase entry 
20004182

We can successfully log into the client using external authentication
Trying from the web we get "Authentication failed"

Nothing shows up in the midtier logs or the arplugin logs

Any suggestions?  Anyone have a similar environment that has gotten SSO working 
properly?

Thanks!
Chris

__Platinum Sponsor: www.rmsportal.com ARSlist: "Where the Answers Are" html___
__Platinum Sponsor: www.rmsportal.com ARSlist: "Where the Answers Are" html___

_______________________________________________________________________________
UNSUBSCRIBE or access ARSlist Archives at www.arslist.org
Platinum Sponsor: www.rmsportal.com ARSlist: "Where the Answers Are"