Hi,
We configured the UserApp to support SSO. We implemented a custom SSO
provider. We installed and configured SAML authentication method as
explained in the point 9.3.2 of the RBPM installation guide.
We are using NIM 4.0.2, the UserApp is running on websphere.
He are the websphere logs:

[25/02/13 16:56:27:701 CET] 00000033 SystemOut O 16:56:27,701
TRACE [PasswordHelper] javax.naming.AuthenticationNotSupportedException:
SAML
com.sssw.fw.directory.api.EboInvalidCredentialsExc eption:
javax.naming.AuthenticationNotSupportedException: SAML
at
com.sssw.fw.directory.realm.impl.jndildap.EboLdapD irectoryConnection.createBaseContext(EboLdapDirect oryConnection.java:299)
at
com.sssw.fw.directory.realm.impl.jndildap.EboLdapD irectoryConnection.authenticate(EboLdapDirectoryCo nnection.java:167)
at
com.sssw.fw.directory.realm.impl.jndildap.EboLdapD irectoryConnectionManager.getUserConnection(EboLda pDirectoryConnectionManager.java:218)
at
com.sssw.fw.directory.realm.impl.jndildap.EboJndiL dapRealm.authUserPassword(EboJndiLdapRealm.java:67 6)
at
com.sssw.fw.directory.realm.impl.jndildap.EboJndiL dapCachingRealm.authUserPassword(EboJndiLdapCachin gRealm.java:318)
at
com.novell.pwdmgt.util.PasswordHelper.loginPortal( PasswordHelper.java:2732)
at
com.novell.pwdmgt.util.AuthenticationHelper.authen ticateUser(AuthenticationHelper.java:110)
at
com.novell.common.auth.PasswordBasedLoginModule.lo gin(PasswordBasedLoginModule.java:123)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Nativ e Method)
at
sun.reflect.NativeMethodAccessorImpl.invoke(Native MethodAccessorImpl.java:60)
at
sun.reflect.DelegatingMethodAccessorImpl.invoke(De legatingMethodAccessorImpl.java:37)
at java.lang.reflect.Method.invoke(Method.java:611)
at
javax.security.auth.login.LoginContext.invoke(Logi nContext.java:795)
at
javax.security.auth.login.LoginContext.access$000( LoginContext.java:209)
at javax.security.auth.login.LoginContext$5.run(Login Context.java:732)
at
java.security.AccessController.doPrivileged(Access Controller.java:284)
at
javax.security.auth.login.LoginContext.invokeCreat orPriv(LoginContext.java:729)
at javax.security.auth.login.LoginContext.login(Login Context.java:599)
at com.novell.common.auth.JAASManager.login(JAASManag er.java:126)
at com.novell.common.auth.JAASFilter.doFilter(JAASFil ter.java:82)
at
com.ibm.ws.webcontainer.filter.FilterInstanceWrapp er.doFilter(FilterInstanceWrapper.java:184)
at
com.ibm.ws.webcontainer.filter.WebAppFilterChain.d oFilter(WebAppFilterChain.java:116)
at
com.novell.common.auth.saml.AuthTokenGeneratorFilt er.doFilter(AuthTokenGeneratorFilter.java:153)
at
com.ibm.ws.webcontainer.filter.FilterInstanceWrapp er.doFilter(FilterInstanceWrapper.java:184)
at
com.ibm.ws.webcontainer.filter.WebAppFilterChain.d oFilter(WebAppFilterChain.java:116)
at com.novell.common.auth.sso.SSOFilter.doFilter(SSOF ilter.java:87)
at com.novell.common.auth.sso.SAPFilter.doFilter(SAPF ilter.java:37)
at
com.ibm.ws.webcontainer.filter.FilterInstanceWrapp er.doFilter(FilterInstanceWrapper.java:184)
at
com.ibm.ws.webcontainer.filter.WebAppFilterChain.d oFilter(WebAppFilterChain.java:116)
at com.bd.sso.CASSSO.doFilter(CASSSO.java:135)
at
com.ibm.ws.webcontainer.filter.FilterInstanceWrapp er.doFilter(FilterInstanceWrapper.java:184)
at
com.ibm.ws.webcontainer.filter.WebAppFilterChain.d oFilter(WebAppFilterChain.java:116)
at
edu.yale.its.tp.cas.client.filter.CASFilter.doFilt er(CASFilter.java:111)
at
com.ibm.ws.webcontainer.filter.FilterInstanceWrapp er.doFilter(FilterInstanceWrapper.java:184)
at
com.ibm.ws.webcontainer.filter.WebAppFilterChain.d oFilter(WebAppFilterChain.java:116)
at
com.bnpparibas.realestate.casmockupfilterog.CasMoc kupFilterOG.doFilter(CasMockupFilterOG.java:61)
at
com.ibm.ws.webcontainer.filter.FilterInstanceWrapp er.doFilter(FilterInstanceWrapper.java:184)
at
com.ibm.ws.webcontainer.filter.WebAppFilterChain.d oFilter(WebAppFilterChain.java:116)
at
com.ibm.ws.webcontainer.filter.WebAppFilterChain._ doFilter(WebAppFilterChain.java:77)
at
com.ibm.ws.webcontainer.filter.WebAppFilterManager .doFilter(WebAppFilterManager.java:908)
at
com.ibm.ws.webcontainer.servlet.ServletWrapper.han dleRequest(ServletWrapper.java:934)
at
com.ibm.ws.webcontainer.servlet.ServletWrapper.han dleRequest(ServletWrapper.java:502)
at
com.ibm.ws.webcontainer.servlet.ServletWrapperImpl .handleRequest(ServletWrapperImpl.java:179)
at
com.ibm.wsspi.webcontainer.servlet.GenericServletW rapper.handleRequest(GenericServletWrapper.java:12 1)
at
com.ibm.ws.jsp.webcontainerext.AbstractJSPExtensio nServletWrapper.handleRequest(AbstractJSPExtension ServletWrapper.java:259)
at
com.ibm.ws.webcontainer.webapp.WebApp.handleReques t(WebApp.java:3933)
at
com.ibm.ws.webcontainer.webapp.WebGroup.handleRequ est(WebGroup.java:276)
at
com.ibm.ws.webcontainer.WebContainer.handleRequest (WebContainer.java:931)
at
com.ibm.ws.webcontainer.WSWebContainer.handleReque st(WSWebContainer.java:1583)
at
com.ibm.ws.webcontainer.channel.WCChannelLink.read y(WCChannelLink.java:186)
at
com.ibm.ws.http.channel.inbound.impl.HttpInboundLi nk.handleDiscrimination(HttpInboundLink.java:452)
at
com.ibm.ws.http.channel.inbound.impl.HttpInboundLi nk.handleNewRequest(HttpInboundLink.java:511)
at
com.ibm.ws.http.channel.inbound.impl.HttpInboundLi nk.processRequest(HttpInboundLink.java:305)
at
com.ibm.ws.http.channel.inbound.impl.HttpICLReadCa llback.complete(HttpICLReadCallback.java:83)
at
com.ibm.ws.tcp.channel.impl.AioReadCompletionListe ner.futureCompleted(AioReadCompletionListener.java :165)
at
com.ibm.io.async.AbstractAsyncFuture.invokeCallbac k(AbstractAsyncFuture.java:217)
at
com.ibm.io.async.AsyncChannelFuture.fireCompletion Actions(AsyncChannelFuture.java:161)
at com.ibm.io.async.AsyncFuture.completed(AsyncFuture .java:138)
at com.ibm.io.async.ResultHandler.complete(ResultHand ler.java:204)
at
com.ibm.io.async.ResultHandler.runEventProcessingL oop(ResultHandler.java:775)
at com.ibm.io.async.ResultHandler$2.run(ResultHandler .java:905)
at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.j ava:1604)
Caused by:
javax.naming.AuthenticationNotSupportedException: SAML
at com.sun.jndi.ldap.sasl.LdapSasl.saslBind(LdapSasl. java:112)
at com.sun.jndi.ldap.LdapClient.authenticate(LdapClie nt.java:226)
at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:270 6)
at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:305)
at
com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapC txFactory.java:187)
at
com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(Ldap CtxFactory.java:205)
at
com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstanc e(LdapCtxFactory.java:148)
at
com.sun.jndi.ldap.LdapCtxFactory.getInitialContext (LdapCtxFactory.java:78)
at
javax.naming.spi.NamingManager.getInitialContext(N amingManager.java:235)
at
javax.naming.InitialContext.initializeDefaultInitC tx(InitialContext.java:318)
at
javax.naming.InitialContext.getDefaultInitCtx(Init ialContext.java:348)
at javax.naming.InitialContext.internalInit(InitialCo ntext.java:286)
at javax.naming.InitialContext.init(InitialContext.ja va:308)
at
javax.naming.ldap.InitialLdapContext.<init>(Initia lLdapContext.java:99)
at
com.sssw.fw.directory.realm.impl.jndildap.EboLdapD irectoryConnection.createBaseContext(EboLdapDirect oryConnection.java:297)
... 61 more

[25/02/13 16:56:27:701 CET] 00000033 SystemOut O 16:56:27,701
ERROR [JAASManager] chec du login pour l'utilisateur :
uid=380744,ou=FR,ou=Users,o=BNPPRE
com.novell.pwdmgt.api.LoginFailedException: ID utilisateur ou mot de
passe non valide
at
com.novell.pwdmgt.util.PasswordHelper.loginPortal( PasswordHelper.java:2850)
at
com.novell.pwdmgt.util.AuthenticationHelper.authen ticateUser(AuthenticationHelper.java:110)
at
com.novell.common.auth.PasswordBasedLoginModule.lo gin(PasswordBasedLoginModule.java:123)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Nativ e Method)
at
sun.reflect.NativeMethodAccessorImpl.invoke(Native MethodAccessorImpl.java:60)


--
moularbi
------------------------------------------------------------------------
moularbi's Profile: https://forums.netiq.com/member.php?userid=1196
View this thread: https://forums.netiq.com/showthread.php?t=46953