AREA.SSO Question

Thu, 19 Dec 2013 06:39:29 -0800 

List,
                Question, trying to understand why on the "first" call of 
AREA.SSO the Auth string is $NULL$ (Example 1) . The network address is in the 
areasso.cfg and the user is valid.
The AREA SSO login fails, then AREA LDAP is called, Found Valid User, and we 
get our Login Success. When reviewing the Mid-Tier log I see the Custom Auth 
String (Example 2)

AREA.SSO is working, but it not very Efficiently.

Thoughts?

ARS 7.6.4 Patch 3              (Application Server)
Mid-Tier                               Linux, Apache/Tomcat, (Mid-Tier version 
8.0)


Thanks, Doug Tanner

Example 1
+VL    AREAVerifyLoginCallback          -- user joeuser
<AREA.SSO> <INFO> Username:
<AREA.SSO> <INFO> joeuser
<AREA.SSO> <INFO> Network Address:
<AREA.SSO> <INFO> XXX.XX.X.XXX
<AREA.SSO> <INFO> Auth String:
<AREA.SSO> <INFO>
<INFO> Login request not coming from the BOXI-IP, checking MID-TIER-IP's...
<AREA.SSO> <INFO> User did not provide a valid Password String.
<AREA.SSO> <INFO> User NOT logging in from Mid-Tier IP Address.
<AREA.SSO> <INFO> User did not pass AREA SSO authentication. Login Failed
<ARSYS.AREA.LDAP> <FINE> Found valid user
-VL                                  OK
+VL    AREAVerifyLoginCallback          -- user joeuser
<AREA.SSO> <INFO> Username:
<AREA.SSO> <INFO> joeuser
<INFO> Network Address:
<AREA.SSO> <INFO> XXX.XX.X.XXX
<AREA.SSO> <INFO> Auth String:
<INFO> secret
<AREA.SSO> <INFO> Login request not coming from the BOXI-IP, checking 
MID-TIER-IP's...
<AREA.SSO> <INFO> User logging in from a matching Authentication String and 
Mid-Tier IP:
<AREA.SSO> <INFO> XXX.XX.X.XXX
<AREA.SSO> <INFO> User passed AREA SSO authentication. Login Success

Example 2
FINE (com.remedy.log.SESSION) : SSO: Request Header value (username): joeuser
FINE (com.remedy.log.SESSION) : SSO: Setting username to lower case...
FINE (com.remedy.log.SESSION) : SSO: Authenticating with username: joeuser
FINE (com.remedy.log.SESSION) : SSO: Using AuthString: secret




This email is subject to certain disclaimers, which may be reviewed via the 
following link. http://compass-usa.com/Pages/Disclaimer.aspx


_______________________________________________________________________________
UNSUBSCRIBE or access ARSlist Archives at www.arslist.org
"Where the Answers Are, and have been for 20 years"

Reply via email to