Hi Sashika, Can you check with IS 5.4.0 Clustered guide [1]. I guess it has the information you need.
[1] https://docs.wso2.com/display/IS540/Clustered+Deployment Thanks, Ashen On Wed, Oct 25, 2017 at 5:34 PM, Asela Pathberiya <[email protected]> wrote: > > > On Tue, Oct 24, 2017 at 5:41 PM, Sashika Wijesinghe <[email protected]> > wrote: > >> Hi All, >> >> We have configured two IS nodes fronted by Nginx and the site.json with >> server host details as below. >> >> { >> "proxy" : { >> "proxyHost" : "is.dev.wso2.org", >> "proxyHTTPSPort" : "443", >> "proxyContextPath" : "", >> "servicePath" : "/services" >> } >> } >> >> >> When I log in to the Management Console with the admin user, >> authentication was successful but failed to login to the IS Dashboard with >> admin user or any user who have permission to the IS Dashboard login. >> >> Following is the authentication exception logged in the terminal. >> >> Any suggestion to solve this issue is highly appreciated. >> > > Don't we have a doc on configuring WSO2IS with Nginx ? > > Thanks, > Asela. > >> >> >> TID: [-1234] [] [2017-10-24 05:28:50,683] ERROR >> {org.wso2.carbon.identity.authenticator.saml2.sso.SAML2SSOAuthenticator} >> - Authentication Request is rejected. SAMLResponse AudienceRestriction >> validation failed. >> TID: [-1] [] [2017-10-24 05:28:50,683] WARN >> {org.wso2.carbon.core.services.util.CarbonAuthenticationUtil} - Failed >> Administrator login attempt '[email protected][-1]' at [2017-10-24 >> 05:28:50,683+0000] >> TID: [-1234] [] [2017-10-24 05:28:50,751] WARN >> {org.wso2.carbon.server.admin.module.handler.AuthenticationHandler} - >> Illegal access attempt at [2017-10-24 05:28:50,0751] from IP address >> 192.168.57.251 while trying to authenticate access to service >> WorkflowImplAdminService >> >> TID: [-1] [] [2017-10-24 05:28:49,939] INFO >> {org.wso2.carbon.core.clustering.hazelcast.HazelcastClusterMessageListener} >> - Received ClusteringMessage: org.wso2.carbon.identity.entit >> lement.PolicyStatusClusterMessage@d47e9b84 >> TID: [-1234] [] [2017-10-24 05:28:50,778] INFO { >> org.apache.axis2.transport.http.HTTPSender} - Unable to sendViaPost to >> url[https://is.dev.wso2.org/services/WorkflowImplAdminServic >> e.WorkflowImplAdminServiceHttpsSoap11Endpoint/] >> org.apache.axis2.AxisFault: Transport error: 401 Error: Unauthorized >> at org.apache.axis2.transport.http.HTTPSender.handleResponse( >> HTTPSender.java:326) >> at org.apache.axis2.transport.http.HTTPSender.sendViaPost(HTTPS >> ender.java:196) >> at org.apache.axis2.transport.http.HTTPSender.send(HTTPSender.java:77) >> at org.apache.axis2.transport.http.CommonsHTTPTransportSender.w >> riteMessageWithCommons(CommonsHTTPTransportSender.java:451) >> at org.apache.axis2.transport.http.CommonsHTTPTransportSender.i >> nvoke(CommonsHTTPTransportSender.java:278) >> at org.apache.axis2.engine.AxisEngine.send(AxisEngine.java:442) >> at org.apache.axis2.description.OutInAxisOperationClient.send(O >> utInAxisOperation.java:430) >> at org.apache.axis2.description.OutInAxisOperationClient.execut >> eImpl(OutInAxisOperation.java:225) >> at org.apache.axis2.client.OperationClient.execute(OperationCli >> ent.java:149) >> at org.apache.axis2.client.ServiceClient.sendReceive(ServiceCli >> ent.java:554) >> at org.jaggeryjs.modules.ws.WSRequestHostObject.jsFunction_ >> send(WSRequestHostObject.java:379) >> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAcce >> ssorImpl.java:62) >> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMe >> thodAccessorImpl.java:43) >> at java.lang.reflect.Method.invoke(Method.java:498) >> at org.mozilla.javascript.MemberBox.invoke(MemberBox.java:126) >> at org.mozilla.javascript.FunctionObject.call(FunctionObject.java:386) >> at org.mozilla.javascript.optimizer.OptRuntime.call1(OptRuntime.java:32) >> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1._c >> _getProfileList_3(/dashboard/controllers/login-logout/SAML2S >> SOAuthenticationClient.jag:98) >> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1.ca >> ll(/dashboard/controllers/login-logout/SAML2SSOAuthenticationClient.jag) >> at org.mozilla.javascript.optimizer.OptRuntime.callName0( >> OptRuntime.java:74) >> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1._c >> _getBPSSessions_2(/dashboard/controllers/login-logout/SAML2S >> SOAuthenticationClient.jag:43) >> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1.ca >> ll(/dashboard/controllers/login-logout/SAML2SSOAuthenticationClient.jag) >> at org.mozilla.javascript.optimizer.OptRuntime.callName(OptRunt >> ime.java:63) >> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1._c >> _login_1(/dashboard/controllers/login-logout/SAML2SSOAuthent >> icationClient.jag:34) >> at org.jaggeryjs.rhino.dashboard.controllers.login_logout.c1.ca >> ll(/dashboard/controllers/login-logout/SAML2SSOAuthenticationClient.jag) >> at org.mozilla.javascript.optimizer.OptRuntime.call1(OptRuntime.java:32) >> at org.jaggeryjs.rhino.dashboard.c6._c_script_0(/dashboard//acs.jag:67) >> at org.jaggeryjs.rhino.dashboard.c6.call(/dashboard//acs.jag) >> at org.mozilla.javascript.ContextFactory.doTopCall(ContextFacto >> ry.java:394) >> at org.mozilla.javascript.ScriptRuntime.doTopCall(ScriptRuntime >> .java:3091) >> at org.jaggeryjs.rhino.dashboard.c6.call(/dashboard//acs.jag) >> at org.jaggeryjs.rhino.dashboard.c6.exec(/dashboard//acs.jag) >> at org.jaggeryjs.scriptengine.engine.RhinoEngine.execScript(Rhi >> noEngine.java:567) >> at org.jaggeryjs.scriptengine.engine.RhinoEngine.exec(RhinoEngi >> ne.java:273) >> at org.jaggeryjs.jaggery.core.manager.WebAppManager.exec(WebApp >> Manager.java:588) >> at org.jaggeryjs.jaggery.core.manager.WebAppManager.execute(Web >> AppManager.java:508) >> at org.jaggeryjs.jaggery.core.JaggeryServlet.doPost(JaggeryServ >> let.java:29) >> at javax.servlet.http.HttpServlet.service(HttpServlet.java:650) >> at javax.servlet.http.HttpServlet.service(HttpServlet.java:731) >> at org.apache.catalina.core.ApplicationFilterChain.internalDoFi >> lter(ApplicationFilterChain.java:303) >> at org.apache.catalina.core.ApplicationFilterChain.doFilter(App >> licationFilterChain.java:208) >> at org.apache.catalina.core.ApplicationDispatcher.invoke(Applic >> ationDispatcher.java:743) >> at org.apache.catalina.core.ApplicationDispatcher.processReques >> t(ApplicationDispatcher.java:485) >> at org.apache.catalina.core.ApplicationDispatcher.doForward(App >> licationDispatcher.java:377) >> at org.apache.catalina.core.ApplicationDispatcher.forward(Appli >> cationDispatcher.java:337) >> at org.jaggeryjs.jaggery.core.JaggeryFilter.doFilter(JaggeryFil >> ter.java:21) >> at org.apache.catalina.core.ApplicationFilterChain.internalDoFi >> lter(ApplicationFilterChain.java:241) >> at org.apache.catalina.core.ApplicationFilterChain.doFilter(App >> licationFilterChain.java:208) >> at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52) >> at org.apache.catalina.core.ApplicationFilterChain.internalDoFi >> lter(ApplicationFilterChain.java:241) >> at org.apache.catalina.core.ApplicationFilterChain.doFilter(App >> licationFilterChain.java:208) >> at org.apache.catalina.filters.HttpHeaderSecurityFilter.doFilte >> r(HttpHeaderSecurityFilter.java:124) >> at org.apache.catalina.core.ApplicationFilterChain.internalDoFi >> lter(ApplicationFilterChain.java:241) >> at org.apache.catalina.core.ApplicationFilterChain.doFilter(App >> licationFilterChain.java:208) >> at org.apache.catalina.core.StandardWrapperValve.invoke(Standar >> dWrapperValve.java:219) >> at org.apache.catalina.core.StandardContextValve.invoke(Standar >> dContextValve.java:110) >> at org.apache.catalina.authenticator.AuthenticatorBase.invoke(A >> uthenticatorBase.java:506) >> at org.apache.catalina.core.StandardHostValve.invoke(StandardHo >> stValve.java:169) >> at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorRepo >> rtValve.java:103) >> at org.wso2.carbon.identity.context.rewrite.valve.TenantContext >> RewriteValve.invoke(TenantContextRewriteValve.java:80) >> at org.wso2.carbon.identity.authz.valve.AuthorizationValve. >> invoke(AuthorizationValve.java:91) >> at org.wso2.carbon.identity.auth.valve.AuthenticationValve.invo >> ke(AuthenticationValve.java:60) >> at org.wso2.carbon.tomcat.ext.valves.CompositeValve.continueInv >> ocation(CompositeValve.java:99) >> at org.wso2.carbon.tomcat.ext.valves.CarbonTomcatValve$1.invoke >> (CarbonTomcatValve.java:47) >> at org.wso2.carbon.webapp.mgt.TenantLazyLoaderValve.invoke(Tena >> ntLazyLoaderValve.java:57) >> at org.wso2.carbon.tomcat.ext.valves.TomcatValveContainer.invok >> eValves(TomcatValveContainer.java:47) >> at org.wso2.carbon.tomcat.ext.valves.CompositeValve.invoke(Comp >> ositeValve.java:62) >> at org.wso2.carbon.tomcat.ext.valves.CarbonStuckThreadDetection >> Valve.invoke(CarbonStuckThreadDetectionValve.java:159) >> at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogVa >> lve.java:962) >> at org.wso2.carbon.tomcat.ext.valves.CarbonContextCreatorValve. >> invoke(CarbonContextCreatorValve.java:57) >> at org.apache.catalina.core.StandardEngineValve.invoke(Standard >> EngineValve.java:116) >> at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAd >> apter.java:445) >> at org.apache.coyote.http11.AbstractHttp11Processor.process(Abs >> tractHttp11Processor.java:1115) >> at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler >> .process(AbstractProtocol.java:637) >> at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun >> (NioEndpoint.java:1775) >> at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run( >> NioEndpoint.java:1734) >> at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPool >> Executor.java:1142) >> at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoo >> lExecutor.java:617) >> at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable. >> run(TaskThread.java:61) >> at java.lang.Thread.run(Thread.java:748) >> TID: [-1234] [] [2017-10-24 05:28:50,782] INFO >> {JAGGERY.controllers.login-logout.SAML2SSOAuthenticationClient:jag} - >> JavaException: org.jaggeryjs.scriptengine.exceptions.ScriptException: >> Transport error: 401 Error: Unauthorized >> >> Thank You >> >> -- >> >> *Sashika WijesingheSoftware Engineer - QA Team* >> Mobile : +94 (0) 774537487 >> [email protected] >> > > > > -- > Thanks & Regards, > Asela > > ATL > Mobile : +94 777 625 933 <+94%2077%20762%205933> > +358 449 228 979 > > http://soasecurity.org/ > http://xacmlinfo.org/ > -- *Ashen Weerathunga* Software Engineer WSO2 Inc.: http://wso2.com lean.enterprise.middleware Email: [email protected] Mobile: +94716042995 <94716042995> LinkedIn: *http://lk.linkedin.com/in/ashenweerathunga <http://lk.linkedin.com/in/ashenweerathunga>* <http://wso2.com/signature>
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
