UA 4.0.1 with Patch C (yeah, I know, but we're on OES2 and the eDir reqs
weren't out at the time to do 4.0.2 IDM codebase).

Front-ended via NAM 3.2 doing SAML SSO into UA.

Works fine in my test lab, but not prod for some reason.

NAM federates the user from a third-party source, and then uses the
federated credentials to SSO into UA.

I'm THINKING it's a timing problem (like takes a second or two longer in
prod than test), and that perhaps it's trying to send the credentials to
UA before things are fully in eDir?

The UA log shows the following: Note, that the userid (once federated)
is
johna763-smith

But for some reason it looks like it's just doing the userid (johna763)
and doesn't do the SAML assertion until later.

This only seems to happen the VERY first login (when NAM federates into
eDir and ships you over to the UA).

Any help would be appreciated.

--Kevin


2013-11-13 13:59:34,623 INFO [STDOUT] (http-0.0.0.0-8180-7) INFO
[RBPM] [com.novell.pwdmgt.util.PasswordHelper:loginPortal]
[Login_Failure] johna763-smith failed to log in.
2013-11-13 13:59:34,665 INFO [STDOUT] (http-0.0.0.0-8180-7) 174177697
[http-0.0.0.0-8180-7] INFO com.novell.pwdmgt.util.PasswordHelper -
[Login_Failure] johna763-smith failed to log in.
2013-11-13 13:59:34,666 INFO [STDOUT] (http-0.0.0.0-8180-7) ERROR
[RBPM] [com.novell.common.auth.JAASManager:login] Login failed for user:
johna763-smith
2013-11-13 13:59:34,666 INFO [STDOUT] (http-0.0.0.0-8180-7) 174177740
[http-0.0.0.0-8180-7] ERROR com.novell.common.auth.JAASManager - Login
failed for user: johna763-smith
2013-11-13 13:59:34,728 INFO [STDOUT] (http-0.0.0.0-8180-7) INFO
[RBPM] [com.novell.pwdmgt.util.PasswordHelper:loginPortal]
[Login_Failure] johna763-smith failed to log in.
2013-11-13 13:59:34,767 INFO [STDOUT] (http-0.0.0.0-8180-7) 174177803
[http-0.0.0.0-8180-7] INFO com.novell.pwdmgt.util.PasswordHelper -
[Login_Failure] johna763-smith failed to log in.
2013-11-13 13:59:34,768 INFO [STDOUT] (http-0.0.0.0-8180-7) ERROR
[RBPM] [com.novell.common.auth.JAASManager:login] Login failed for user:
johna763-smith
2013-11-13 13:59:34,768 INFO [STDOUT] (http-0.0.0.0-8180-7) 174177843
[http-0.0.0.0-8180-7] ERROR com.novell.common.auth.JAASManager - Login
failed for user: johna763-smith
2013-11-13 14:01:01,170 INFO [STDOUT] (http-0.0.0.0-8180-7) Sending
assertion
2013-11-13 14:01:01,258 INFO [STDOUT] (http-0.0.0.0-8180-7) Evaluate
challenge called, m_sent == 1
2013-11-13 14:01:01,258 INFO [STDOUT] (http-0.0.0.0-8180-7) Response:
result={0}
2013-11-13 14:01:01,258 INFO [STDOUT] (http-0.0.0.0-8180-7) Result: 0
2013-11-13 14:01:01,260 INFO [STDOUT] (http-0.0.0.0-8180-7) INFO
[RBPM] [com.novell.pwdmgt.util.PasswordHelper:loginPortal]
[Login_Success] johna763-smith successfully logged in.
2013-11-13 14:01:01,299 INFO [STDOUT] (http-0.0.0.0-8180-7) 174264334
[http-0.0.0.0-8180-7] INFO com.novell.pwdmgt.util.PasswordHelper -
[Login_Success] johna763-smith successfully logged in.
2013-11-13 14:01:01,361 INFO [STDOUT] (http-0.0.0.0-8180-7) INFO
[RBPM] [com.novell.pwdmgt.util.PasswordHelper:loginPortal]
[Login_Failure] johna763 failed to log in.
2013-11-13 14:01:01,399 INFO [STDOUT] (http-0.0.0.0-8180-7) 174264435
[http-0.0.0.0-8180-7] INFO com.novell.pwdmgt.util.PasswordHelper -
[Login_Failure] johna763 failed to log in.
2013-11-13 14:01:01,400 INFO [STDOUT] (http-0.0.0.0-8180-7) ERROR
[RBPM] [com.novell.common.auth.JAASManager:login] Login failed for user:
johna763
2013-11-13 14:01:01,400 INFO [STDOUT] (http-0.0.0.0-8180-7) 174264474
[http-0.0.0.0-8180-7] ERROR com.novell.common.auth.JAASManager - Login
failed for user: johna763
2013-11-13 14:01:34,241 INFO [STDOUT] (http-0.0.0.0-8180-3) Sending
assertion
2013-11-13 14:01:34,362 INFO [STDOUT] (http-0.0.0.0-8180-3) Evaluate
challenge called, m_sent == 1
2013-11-13 14:01:01,258 INFO [STDOUT] (http-0.0.0.0-8180-7) Response:
result={0}
2013-11-13 14:01:34,362 INFO [STDOUT] (http-0.0.0.0-8180-3) Result: 0
2013-11-13 14:01:34,363 INFO [STDOUT] (http-0.0.0.0-8180-3) INFO
[RBPM] [com.novell.pwdmgt.util.PasswordHelper:loginPortal]
[Login_Success] johna763-smith successfully logged in.
2013-11-13 14:01:34,403 INFO [STDOUT] (http-0.0.0.0-8180-3) 174297438
[http-0.0.0.0-8180-3] INFO com.novell.pwdmgt.util.PasswordHelper -
[Login_Success] johna763-smith successfully logged in.


--
kjhurni
------------------------------------------------------------------------
kjhurni's Profile: https://forums.netiq.com/member.php?userid=322
View this thread: https://forums.netiq.com/showthread.php?t=49220