I've been trying to find a solution for a CAC authentication issue and the documentation has been insufficient. Just wanted to know if it's actually supported to work with CAC (Common Access Card) for SRC.
I get the an error when using Apache to make SRC authenticate with SSO through a virtual CAC (the user certificate credentials are embedded in the browser). The credentials are automatically passed from this embedded browser when the user tries to login. Service Manager is then expected to look for a matching operator record to bypass the login screen and authenticate the user into SRC. I was able to make ESS and the web client work perfectly using this method.
Would just like to see if there's a solution or a simple answer to let me know if this has been tested and supported.
This is the error in the log:
1128( 1928) 08/24/2015 12:15:52 JRTE I SSL connection accepted
1128( 1928) 08/24/2015 12:15:52 JRTE I Webservice API session - Thread ID: 7B1FF6E5AD754CCFF88E471E91B83D04; Client IP: 10.10.XXX.XX; session timeout: 1800 seconds
1128( 2484) 08/24/2015 12:15:52 RTE W Authentication failure - No "Authorization: Basic" header was supplied, or it contained a zero-length userid
1128( 2484) 08/24/2015 12:15:52 RTE W Exception occurred for method Create and XML request <?xml version="1.0" encoding="utf-8"?><SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/"><SOAP-ENV:Header/><SOAP-ENV:Body><ns2:CreateSvcCatOperatorRequest xmlns:ns2="http://schemas.hp.com/SM/7" xmlns:ns4="http://schemas.hp.com/SM/7/Common" xmlns:xmime="http://www.w3.org/2005/05/xmlmime"><ns2:model><ns2:keys><ns2:Name/></ns2:keys><ns2:instance/></ns2:model></ns2:CreateSvcCatOperatorRequest></SOAP-ENV:Body></SOAP-ENV:Envelope>
1128( 2484) 08/24/2015 12:15:52 RTE W Web Service Access Authorization failure.
1128( 1928) 08/24/2015 12:15:52 JRTE I AuthException: Not Authorized
1128( 1928) 08/24/2015 12:15:52 JRTE I Issuing a Basic Auth challenge...