Hi The screenshot you attached is an expected warning message: > http://cxf.547215.n5.nabble.com/file/n5553575/page.gif
This reason is that the IDP uses a self signed certificate (for demo purposes) which is not imported into your browser's truststore. A production system won't (should not ;-) use self signed certificates but instead a certificate issued by a CA (certificate authority). So you don't have to import the server certificate into your truststore - only the CA certificate once. Just click: "Continue to this web site". Thanks ------ Oliver Wulff Blog: http://owulff.blogspot.com Solution Architect http://coders.talend.com Talend Application Integration Division http://www.talend.com ________________________________________ Von: scmakhaye [[email protected]] Gesendet: Montag, 12. März 2012 15:25 Bis: [email protected] Betreff: Re: AW: AW: AW: HTTP Status 403 - Requesting security token failed * IdP clatalina log * Mar 12, 2012 10:10:20 AM org.apache.catalina.core.AprLifecycleListener init INFO: The APR based Apache Tomcat Native library which allows optimal performance in production environments was not found on the java.library.path: C:\Program Files\Java\jdk1.6.0\bin;.;C:\Windows\Sun\Java\bin;C:\Windows\system32;C:\Windows;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\Java\jdk1.6.0\bin;%M2%C:\apache-maven-3.0.3\bin;%M2%C:\apache-maven-3.0.3\bin;C:\apache-maven-3.0.3\bin;C:\apache-ant-1.8.0\bin;C:\mule-standalone-3.2.0\bin;C:\apache-ode-jbi-1.3.5\apache-ode-jbi-1.3.5\bin\bin Mar 12, 2012 10:10:20 AM org.apache.coyote.AbstractProtocol init INFO: Initializing ProtocolHandler ["http-bio-9080"] Mar 12, 2012 10:10:20 AM org.apache.coyote.AbstractProtocol init INFO: Initializing ProtocolHandler ["http-bio-9443"] Mar 12, 2012 10:10:20 AM org.apache.catalina.startup.Catalina load INFO: Initialization processed in 461 ms Mar 12, 2012 10:10:20 AM org.apache.catalina.core.StandardService startInternal INFO: Starting service Catalina Mar 12, 2012 10:10:20 AM org.apache.catalina.core.StandardEngine startInternal INFO: Starting Servlet Engine: Apache Tomcat/7.0.22 Mar 12, 2012 10:10:20 AM org.apache.catalina.startup.HostConfig deployWAR INFO: Deploying web application archive fedizidp.war Mar 12, 2012 10:10:21 AM org.apache.catalina.startup.HostConfig deployWAR INFO: Deploying web application archive fedizidpsts.war Mar 12, 2012 10:10:21 AM org.apache.catalina.startup.HostConfig deployDirectory INFO: Deploying web application directory docs Mar 12, 2012 10:10:21 AM org.apache.catalina.startup.HostConfig deployDirectory INFO: Deploying web application directory examples Mar 12, 2012 10:10:22 AM org.apache.catalina.startup.HostConfig deployDirectory INFO: Deploying web application directory host-manager Mar 12, 2012 10:10:22 AM org.apache.catalina.startup.HostConfig deployDirectory INFO: Deploying web application directory manager Mar 12, 2012 10:10:22 AM org.apache.catalina.startup.HostConfig deployDirectory INFO: Deploying web application directory ROOT Mar 12, 2012 10:10:22 AM org.apache.coyote.AbstractProtocol start INFO: Starting ProtocolHandler ["http-bio-9080"] Mar 12, 2012 10:10:22 AM org.apache.coyote.AbstractProtocol start INFO: Starting ProtocolHandler ["http-bio-9443"] Mar 12, 2012 10:10:22 AM org.apache.catalina.startup.Catalina start INFO: Server startup in 1361 ms Mar 12, 2012 4:06:25 PM org.apache.catalina.core.AprLifecycleListener init INFO: The APR based Apache Tomcat Native library which allows optimal performance in production environments was not found on the java.library.path: C:\Program Files\Java\jdk1.6.0\bin;.;C:\Windows\Sun\Java\bin;C:\Windows\system32;C:\Windows;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\Java\jdk1.6.0\bin;%M2%C:\apache-maven-3.0.3\bin;%M2%C:\apache-maven-3.0.3\bin;C:\apache-maven-3.0.3\bin;C:\apache-ant-1.8.0\bin;C:\mule-standalone-3.2.0\bin;C:\apache-ode-jbi-1.3.5\apache-ode-jbi-1.3.5\bin\bin Mar 12, 2012 4:06:25 PM org.apache.coyote.AbstractProtocol init INFO: Initializing ProtocolHandler ["http-bio-9080"] Mar 12, 2012 4:06:25 PM org.apache.coyote.AbstractProtocol init INFO: Initializing ProtocolHandler ["http-bio-9443"] Mar 12, 2012 4:06:26 PM org.apache.catalina.startup.Catalina load INFO: Initialization processed in 734 ms Mar 12, 2012 4:06:26 PM org.apache.catalina.core.StandardService startInternal INFO: Starting service Catalina Mar 12, 2012 4:06:26 PM org.apache.catalina.core.StandardEngine startInternal INFO: Starting Servlet Engine: Apache Tomcat/7.0.22 Mar 12, 2012 4:06:26 PM org.apache.catalina.startup.HostConfig deployWAR INFO: Deploying web application archive fedizidp.war Mar 12, 2012 4:06:27 PM org.apache.catalina.startup.HostConfig deployWAR INFO: Deploying web application archive fedizidpsts.war Mar 12, 2012 4:06:28 PM org.apache.catalina.startup.HostConfig deployDirectory INFO: Deploying web application directory docs Mar 12, 2012 4:06:28 PM org.apache.catalina.startup.HostConfig deployDirectory INFO: Deploying web application directory examples Mar 12, 2012 4:06:28 PM org.apache.catalina.startup.HostConfig deployDirectory INFO: Deploying web application directory host-manager Mar 12, 2012 4:06:28 PM org.apache.catalina.startup.HostConfig deployDirectory INFO: Deploying web application directory manager Mar 12, 2012 4:06:28 PM org.apache.catalina.startup.HostConfig deployDirectory INFO: Deploying web application directory ROOT Mar 12, 2012 4:06:28 PM org.apache.coyote.AbstractProtocol start INFO: Starting ProtocolHandler ["http-bio-9080"] Mar 12, 2012 4:06:28 PM org.apache.coyote.AbstractProtocol start INFO: Starting ProtocolHandler ["http-bio-9443"] Mar 12, 2012 4:06:28 PM org.apache.catalina.startup.Catalina start INFO: Server startup in 2836 ms *IdP server after typing the https://localhost:8443/fedizhelloworld/secureservlet/fed * Mar 12, 2012 4:06:16 PM org.apache.catalina.core.AprLifecycleListener init INFO: The APR based Apache Tomcat Native library which allows optimal performanc e in production environments was not found on the java.library.path: C:\Program Files\Java\jdk1.6.0\bin;.;C:\Windows\Sun\Java\bin;C:\Windows\system32;C:\Windows ;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\Win dowsPowerShell\v1.0\;C:\Program Files\Java\jdk1.6.0\bin;%M2%C:\apache-maven-3.0. 3\bin;%M2%C:\apache-maven-3.0.3\bin;C:\apache-maven-3.0.3\bin;C:\apache-ant-1.8. 0\bin;C:\mule-standalone-3.2.0\bin;C:\apache-ode-jbi-1.3.5\apache-ode-jbi-1.3.5\ bin\bin Mar 12, 2012 4:06:17 PM org.apache.coyote.AbstractProtocol init INFO: Initializing ProtocolHandler ["http-bio-8080"] Mar 12, 2012 4:06:17 PM org.apache.coyote.AbstractProtocol init INFO: Initializing ProtocolHandler ["http-bio-8443"] Mar 12, 2012 4:06:17 PM org.apache.catalina.startup.Catalina load INFO: Initialization processed in 1450 ms Mar 12, 2012 4:06:17 PM org.apache.catalina.core.StandardService startInternal INFO: Starting service Catalina Mar 12, 2012 4:06:17 PM org.apache.catalina.core.StandardEngine startInternal INFO: Starting Servlet Engine: Apache Tomcat/7.0.21 Mar 12, 2012 4:06:17 PM org.apache.catalina.startup.HostConfig deployWAR INFO: Deploying web application archive fedizhelloworld.war Mar 12, 2012 4:06:17 PM org.apache.cxf.fediz.tomcat.FederationAuthenticator <ini t> FINE: WsFedAuthenticator() Mar 12, 2012 4:06:17 PM org.apache.catalina.authenticator.AuthenticatorBase star tInternal FINE: No SingleSignOn Valve is present Mar 12, 2012 4:06:18 PM org.apache.catalina.startup.HostConfig deployDirectory INFO: Deploying web application directory docs Mar 12, 2012 4:06:18 PM org.apache.catalina.startup.HostConfig deployDirectory INFO: Deploying web application directory examples Mar 12, 2012 4:06:18 PM org.apache.catalina.authenticator.AuthenticatorBase star tInternal FINE: No SingleSignOn Valve is present Mar 12, 2012 4:06:18 PM org.apache.catalina.startup.HostConfig deployDirectory INFO: Deploying web application directory host-manager Mar 12, 2012 4:06:18 PM org.apache.catalina.authenticator.AuthenticatorBase star tInternal FINE: No SingleSignOn Valve is present Mar 12, 2012 4:06:18 PM org.apache.catalina.startup.HostConfig deployDirectory INFO: Deploying web application directory manager Mar 12, 2012 4:06:18 PM org.apache.catalina.authenticator.AuthenticatorBase star tInternal FINE: No SingleSignOn Valve is present Mar 12, 2012 4:06:18 PM org.apache.catalina.startup.HostConfig deployDirectory INFO: Deploying web application directory ROOT Mar 12, 2012 4:06:18 PM org.apache.cxf.fediz.tomcat.FederationAuthenticator <ini t> FINE: WsFedAuthenticator() Mar 12, 2012 4:06:18 PM org.apache.catalina.authenticator.AuthenticatorBase star tInternal FINE: No SingleSignOn Valve is present Mar 12, 2012 4:06:18 PM org.apache.coyote.AbstractProtocol start INFO: Starting ProtocolHandler ["http-bio-8080"] Mar 12, 2012 4:06:18 PM org.apache.coyote.AbstractProtocol start INFO: Starting ProtocolHandler ["http-bio-8443"] Mar 12, 2012 4:06:18 PM org.apache.catalina.startup.Catalina start INFO: Server startup in 964 ms Mar 12, 2012 4:15:00 PM org.apache.cxf.fediz.tomcat.FederationAuthenticator invo ke FINE: WsFedAuthenticator:invoke() Mar 12, 2012 4:15:00 PM org.apache.catalina.authenticator.AuthenticatorBase invo ke FINE: Security checking request GET /fedizhelloworld/secureservlet/fed Mar 12, 2012 4:15:00 PM org.apache.catalina.realm.RealmBase findSecurityConstrai nts FINE: Checking constraint 'SecurityConstraint[Servlet Protected Area]' against GET /secureservlet/fed --> true Mar 12, 2012 4:15:00 PM org.apache.catalina.realm.RealmBase findSecurityConstrai nts FINE: Checking constraint 'SecurityConstraint[Protected Area]' against GET /se cureservlet/fed --> false Mar 12, 2012 4:15:00 PM org.apache.catalina.realm.RealmBase findSecurityConstrai nts FINE: Checking constraint 'SecurityConstraint[Servlet Protected Area]' against GET /secureservlet/fed --> true Mar 12, 2012 4:15:00 PM org.apache.catalina.realm.RealmBase findSecurityConstrai nts FINE: Checking constraint 'SecurityConstraint[Protected Area]' against GET /se cureservlet/fed --> false Mar 12, 2012 4:15:00 PM org.apache.catalina.authenticator.AuthenticatorBase invo ke FINE: Calling hasUserDataPermission() Mar 12, 2012 4:15:00 PM org.apache.catalina.realm.RealmBase hasUserDataPermissio n FINE: User data constraint has no restrictions Mar 12, 2012 4:15:00 PM org.apache.catalina.authenticator.AuthenticatorBase invo ke FINE: Calling authenticate() Mar 12, 2012 4:15:00 PM org.apache.cxf.fediz.tomcat.FederationAuthenticator auth enticate FINE: authenticate invoked Mar 12, 2012 4:15:00 PM org.apache.cxf.fediz.tomcat.FederationAuthenticator auth enticate FINE: Save request in session '3A7F4DE2986DB2C2FFAB0B6514A47F07' Mar 12, 2012 4:15:00 PM org.apache.cxf.fediz.tomcat.FederationAuthenticator redi rectToLoginPage INFO: Issuer url: https://localhost:9443/fedizidp/ Mar 12, 2012 4:15:00 PM org.apache.cxf.fediz.tomcat.FederationAuthenticator redi rectToLoginPage FINE: wtrealm=https://localhost:8443/fedizhelloworld/ Mar 12, 2012 4:15:00 PM org.apache.catalina.authenticator.AuthenticatorBase invo ke FINE: Failed authenticate() test Mar 12, 2012 4:15:05 PM org.apache.cxf.fediz.tomcat.FederationAuthenticator invo ke FINE: WsFedAuthenticator:invoke() Mar 12, 2012 4:15:05 PM org.apache.catalina.authenticator.AuthenticatorBase invo ke FINE: Security checking request GET /fedizhelloworld/secureservlet/fed Mar 12, 2012 4:15:05 PM org.apache.catalina.realm.RealmBase findSecurityConstrai nts FINE: Checking constraint 'SecurityConstraint[Servlet Protected Area]' against GET /secureservlet/fed --> true Mar 12, 2012 4:15:05 PM org.apache.catalina.realm.RealmBase findSecurityConstrai nts FINE: Checking constraint 'SecurityConstraint[Protected Area]' against GET /se cureservlet/fed --> false Mar 12, 2012 4:15:05 PM org.apache.catalina.realm.RealmBase findSecurityConstrai nts FINE: Checking constraint 'SecurityConstraint[Servlet Protected Area]' against GET /secureservlet/fed --> true Mar 12, 2012 4:15:05 PM org.apache.catalina.realm.RealmBase findSecurityConstrai nts FINE: Checking constraint 'SecurityConstraint[Protected Area]' against GET /se cureservlet/fed --> false Mar 12, 2012 4:15:05 PM org.apache.catalina.authenticator.AuthenticatorBase invo ke FINE: Calling hasUserDataPermission() Mar 12, 2012 4:15:05 PM org.apache.catalina.realm.RealmBase hasUserDataPermissio n FINE: User data constraint has no restrictions Mar 12, 2012 4:15:05 PM org.apache.catalina.authenticator.AuthenticatorBase invo ke FINE: Calling authenticate() Mar 12, 2012 4:15:05 PM org.apache.cxf.fediz.tomcat.FederationAuthenticator auth enticate FINE: authenticate invoked Mar 12, 2012 4:15:05 PM org.apache.cxf.fediz.tomcat.FederationAuthenticator auth enticate FINE: Save request in session '3A7F4DE2986DB2C2FFAB0B6514A47F07' Mar 12, 2012 4:15:05 PM org.apache.cxf.fediz.tomcat.FederationAuthenticator redi rectToLoginPage INFO: Issuer url: https://localhost:9443/fedizidp/ Mar 12, 2012 4:15:05 PM org.apache.cxf.fediz.tomcat.FederationAuthenticator redi rectToLoginPage FINE: wtrealm=https://localhost:8443/fedizhelloworld/ Mar 12, 2012 4:15:05 PM org.apache.catalina.authenticator.AuthenticatorBase invo ke FINE: Failed authenticate() test ----- _ _ _ _ _ _ _ Siboniso Makhaye -- View this message in context: http://cxf.547215.n5.nabble.com/HTTP-Status-403-Requesting-security-token-failed-tp5543684p5557931.html Sent from the cxf-user mailing list archive at Nabble.com.
