We have had issues with this in the past where the password for the mid tier application on the mid tier config page got out of sync with the mid tier application password on the AR Server. I would recommend resetting those and restarting the AR Server and IIS to make sure they sync up. You could even comment out the mid tier application password in the ar.cfg file on the AR Server to make sure it is correct. I know we have had to do that as well sometimes.
Kevin Begosh, RSP Tech Ops Enterprise Business Services 301-791-3540 Phone 410-422-3623 Cell kevin.beg...@lmco.com From: Action Request System discussion list(ARSList) [mailto:arsl...@arslist.org] On Behalf Of Moore, Christopher Allen Sent: Monday, December 15, 2008 9:37 AM To: arslist@ARSLIST.ORG Subject: Re: SSO with Tomcat/IIS on 7.0 ** Hi Alexander- Thanks a lot for the help! We got that bit in and are a bit further along now, but when logging in with domain credentials now we see the following errors in the midtier logs: Dec 15, 2008 8:33:09 AM com.remedy.arsys.goat.GoatException <init> FINE: Throw ARException - MessageType: 2 MessageNum: 623 MessageText: Authentication failed AppendedText: MessageType: 2 MessageNum: 623 MessageText: Authentication failed AppendedText: Dec 15, 2008 8:33:09 AM com.remedy.arsys.log.Log log WARNING: Caught GoatException ARERR [623] Authentication failed at com.remedy.arsys.stubs.ServerLogin.<init>(Unknown Source) at com.remedy.arsys.stubs.ServerLogin.get(Unknown Source) at com.remedy.arsys.stubs.SessionData.getServerLogin(Unknown Source) at com.remedy.arsys.goat.Form.getServerLogin(Unknown Source) at com.remedy.arsys.goat.Form.checkAccess(Unknown Source) at com.remedy.arsys.goat.Form.get(Unknown Source) at com.remedy.arsys.stubs.HomeServlet.doRequest(Unknown Source) at com.remedy.arsys.stubs.GoatServlet.postInternal(Unknown Source) at com.remedy.arsys.stubs.GoatHttpServlet.doGet(Unknown Source) at javax.servlet.http.HttpServlet.service(HttpServlet.java:689) at javax.servlet.http.HttpServlet.service(HttpServlet.java:802) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(Applica tionFilterChain.java:252) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilt erChain.java:173) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValv e.java:213) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValv e.java:178) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java :126) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java :105) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve. java:107) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:1 48) at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:199) at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:282) at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:754) at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java: 684) at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket. java:876) at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool .java:684) at java.lang.Thread.run(Unknown Source) Caused by: MessageType: 2 MessageNum: 623 MessageText: Authentication failed AppendedText: at com.remedy.arsys.api.Proxy.ARVerifyUser(Native Method) at com.remedy.arsys.api.ARServerUser.verifyUser(ARServerUser.java:707) ... 26 more Did you happen to run across this as well when you were working on it? Thanks! Chris Moore ________________________________ From: Action Request System discussion list(ARSList) [mailto:arsl...@arslist.org] On Behalf Of Zinoviev Alexander Sent: Monday, December 15, 2008 2:54 AM To: arslist@ARSLIST.ORG Subject: Re: SSO with Tomcat/IIS on 7.0 Hello, Chris, I resolved the same problem few months ago. 1) Check if ARS server is the part of domain. 2) Read an artice KB BMC ID: 102235 (it fixes tomcat authentification). 3) Change the authentification in IIS (it shoul not be anonimous) Hope this will help you, Alexander Zinoviev ________________________________ From: Action Request System discussion list(ARSList) [mailto:arsl...@arslist.org] On Behalf Of Moore, Christopher Allen Sent: Friday, December 12, 2008 8:06 PM To: arslist@ARSLIST.ORG Subject: SSO with Tomcat/IIS on 7.0 ** Hi everyone, We are having problems configuring SSO for mid tier 7.0 We have an unusual configuration; Tomcat is acting as a servlet for IIS. Windows 2003 Server, SQL 2005, ITSM 7.0. Steps completed: Read SSO whitepaper and multiple list entries as well as entries on BMC developer forum Followed instructions from Midtier_Area_sso_setup.doc from knowledgebase entry 20004182 We can successfully log into the client using external authentication Trying from the web we get "Authentication failed" Nothing shows up in the midtier logs or the arplugin logs Any suggestions? Anyone have a similar environment that has gotten SSO working properly? Thanks! Chris __Platinum Sponsor: www.rmsportal.com ARSlist: "Where the Answers Are" html___ __Platinum Sponsor: www.rmsportal.com ARSlist: "Where the Answers Are" html_____Platinum Sponsor: www.rmsportal.com ARSlist: "Where the Answers Are" html___ _______________________________________________________________________________ UNSUBSCRIBE or access ARSlist Archives at www.arslist.org Platinum Sponsor: www.rmsportal.com ARSlist: "Where the Answers Are"
