Can't login to uwc
Hi all,
I have installed JES 05Q4 Directory Server, Messaging Server, Calendar Server, Web Server, Access Manager, Delegated Admin.It's working fine.
I use schema 2, and havent hosted domains. My base dn on DS is o=isp, and my domain users is under o=isp.com,o=isp.
And now I installed Comm express. When I want to log in at http://test.isp.com/uwc, I get this message: Authentication Failed
Reenter your username and password.
I saw at /var/opt/SUNWuwc/log/uwc.log:
Jul 31, 2006 3:42:51 PM com.sun.uwc.common.auth.LDAPAuthFilter doFilter
FINE: username is... test_uesr01
Jul 31, 2006 3:42:51 PM com.sun.uwc.common.auth.LDAPAuthFilter doFilter
FINE: get uid and domain
Jul 31, 2006 3:42:51 PM com.sun.uwc.common.auth.LDAPDomainMap getDomainObject
FINE: domaindn is dc=isp,dc=com,o=isp
And I saw at ldap log:
[31/Jul/2006:15:42:51 +0200] conn=10631 op=1 msgId=72 - SRCH base="dc=com,o=isp" scope=0 filter="(|(objectClass=inetDomain)(objectClass=inetDomainAlias))" attrs="inetDomainBaseDN inetDomainStatus inetDomainSearchFilter domainUidSeparator preferredLanguage aliasedObjectName"
and
[31/Jul/2006:15:42:51 +0200] conn=10632 op=1 msgId=74 - SRCH base="dc=isp,dc=com,o=isp" scope=0 filter="(|(objectClass=inetDomain)(objectClass=inetDomainAlias))" attrs="inetDomainBaseDN inetDomainStatus inetDomainSearchFilter domainUidSeparator preferredLanguage aliasedObjectName"
In my uwcauth.properties:
defaultdomain = isp.com
...
ldapauth.dcroot = o=isp
Why search under dc=com,o=isp? How can I configure to search under o=isp or o=isp.com,o=isp?
Thanx,
Quad
[1691 byte] By [
Quad-93] at [2007-11-26 9:09:10]
# 4
Hi Jay,
I installed Web Server, Directory Server and Access Manager first.
AM install change DS to schema 2.
After it I ran DS Preparation Tool, and it saw the DS schema type is 2.
After it I installed Messaging and Calendar Server. It works fine.
Then I installed Delegated admin, and final I installed comm express.
While I configure it, after I set user/group ldap settings, I get an aswer for DC tree. In Appendix B Configuration Panel Sequence at Sun Java System Communications Express 6 2005Q4 Administration Guide i saw, it maybe an Web server + schema 1, but I have schema 2.
I dont know, why get an answer for DC tree, and who can I set uwc for use schema 2.
Can you help me, Jay?
Thanx,
Quad
# 8
Hi Jay,
Yes.
But a have some problem yet.
without sso I can logon, but i can only use mail tab. address book and options go to wrong page, and there wasnt calendar tab.
Then i configure sso (like doc 819-4879), and then i cant login again. I saw in log files, login is ok, but i got wrong page (page cannot displayed).
I now will disable sso - but then i will get first problem with address book, options and calendar tab.
But outlook connector works, and works address book, mail filter page and vacation message page too. I dont understand, why-
Q.
# 9
Things to check:
1. Does proxyauth work?
Use ME instead of UWC, and construct a url like this one:
http://yourserver.com/login.msc?user=admin&password=admin&fmt-out=text/ html&proxyauth=aa_user
"admin" is the store.admin user, as defined.
the password is whatever that user has assigned. (not the actual user, but the store.admin user)
You have turned proxy authentication on, for the store, right?
thenk you will need to check over your uwcauth.properties file, for all the correct entries. This is tricky, and a typo will kill your sso.
# 10
Hi Jay,
I add latest patch to Messaging server, and its workig now.
But its very interesting:
I configured CE and ME for SSO, but not Calendar Server
If I configure CS to SSO, sometimes it cant start - it hang on when cshttpd starting... (but not always)
But if I uncomment local.calendar.sso.amnamingurl (its value is: http://test.isp.com:80/amserver/namingservice like at ME config) its starting and work.
Now I have two other problem:
1. If I logout from uwc, then I get test.isp.com:81 page for ME, not for test.isp.com/uwc. And if I do it from Cal tab, it give me an empty page. And during te whole session in the address bar I saw test.isp.com:81(uwc is on port 80)
2. I configured uwc and cal for dont use virual domain. But if I create new user with DA, and configur it for calendar, it give icsCalendar value to user@doamin, and cant login with uwc. If I edit it on ldap, its working. How can I config DA for right icsCalendar attribute?
Thanx!
Q.
