Hi,

Enviroment:

- eDir 8.8 SP8 Patch 5 (20806.06)
- IDM 4.5.1.0
- landing 4.5.1, r 891
- IDMProv 4.5.1, r 42287
- iManager 2.7.7.4
- SO: Windows 2012


Day 1
- Apply "NetIQ Identity Manager Service Pack 1 4.5.1"
(https://download.novell.com/Download...d=M6CnhtOpXeI~), finished
the installation, everything looks correct.
- Login correctly on the portal.

on Next Day
- Error to login in portal, on both nodes

Code:
--------------------
AM Identity Manager authentication is not correctly configured or Identity Manager to eDirectory SAML communication is not functioning correctly. Please contact an administrator to correct the problem.
--------------------


In Tomcat log (catalina.out), see attached

Code:
--------------------

2015-07-29 09:55:19,634 [http-bio-8543-exec-1] DEBUG password.pwm.util.Helper- {11a,HP9111} user UserIdentity: {"userDN":"cn=test1234,ou=users,o=data","ldapProfi le":"default"} is not a match for '(groupMembership=cn=IDM Administrators,ou=groups,o=data)' [10.???.???.223/uapp53.server.net]
2015-07-29 09:55:19,634 [http-bio-8543-exec-1] DEBUG password.pwm.SessionManager- {11a,HP9111} permission PWMADMIN for user HP9111 is DENIED [10.???.???.223/uapp53.server.net]
2015-07-29 09:55:20,212 [http-bio-8543-exec-5] INFO com.netiq.idm.auth.oauth.OAuthRestFilter- [RBPM] SSO Header issued by SSO Filter oauth for User cn=test1234,ou=users,o=data.
2015-07-29 09:55:20,259 [http-bio-8543-exec-5] INFO com.novell.common.auth.saml.AuthTokenGenerator- [RBPM] SAML Token is issued by the request from SSO filter oauth
2015-07-29 09:55:20,274 [http-bio-8543-exec-5] INFO com.novell.pwdmgt.util.PasswordHelper- [RBPM] [Login_Failure] cn=test1234,ou=users,o=data failed to log in.
2015-07-29 09:55:20,509 [http-bio-8543-exec-5] ERROR com.novell.common.auth.JAASManager- [RBPM] Login failed for user: cn=test1234,ou=users,o=data
2015-07-29 09:55:54,431 [LDAP Chai WatchdogWrapper timer thread] DEBUG com.novell.ldapchai.provider.WatchdogWrapper- ldap idle timeout detected, closing ldap connection for ChaiProvider #60 (JNDIProviderImpl), OPEN ldaps://meta57.server.net:636 cn=test1234,ou=users,o=data
2015-07-29 09:55:54,431 [LDAP Chai WatchdogWrapper timer thread] DEBUG com.novell.ldapchai.provider.WatchdogWrapper- ldap idle timeout detected, closing ldap connection for ChaiProvider #58 (JNDIProviderImpl), OPEN ldaps://meta57.server.net:636 cn=admin,ou=sa,o=system
2015-07-29 09:55:54,431 [LDAP Chai WatchdogWrapper timer thread] DEBUG com.novell.ldapchai.provider.WatchdogWrapper- exiting LDAP Chai WatchdogWrapper timer thread, no connections requiring monitoring are in use
--------------------


Any ideas?

Thanks in advance.


+----------------------------------------------------------------------+
|Filename: foroNovell.txt |
|Download: https://forums.netiq.com/attachment....tachmentid=318 |
+----------------------------------------------------------------------+

--
letroncoso
------------------------------------------------------------------------
letroncoso's Profile: https://forums.netiq.com/member.php?userid=743
View this thread: https://forums.netiq.com/showthread.php?t=53945