SSO for WEB Tier

Can someone help with it

IIS8-TomCat8-SM 9.31

  • Looks like i did all what needed, but i think there is no redirection from IIS to Tomcat.

    And i dont know about capability for SM (APP) 9.31 with TomCat8 and what version of WebTier i can use (9.40 for example).

  • So that means you - what - have the webtier deployed via Tomcat 8 and you're able to login to the webtier by hitting the Tomcat URL (i.e. http://<machine with tomcat>:8080/<SM>/index.do and you also have IIS running, but have not configured the ISAPI redirector so your request isn't passed from IIS to Tomcat? 

  • I didn't see these attachments until now. I'll take a look.

  • Okay, so you followed that documents and when you go to http://<IIS server>/<sm>/index.do what happens? First I'd confirm that you can get to an SM webtier login screen first without TSO running and then login manually.  Are you able to get to a login screen? If not, what happens when you try?

  • 1) originally everything was set up and worked (Win 2008 R2, IIS 7 - TomCat 6 (and later 7) until the failed server with "web tier".

    2) Now we get new Windows 2012 R2 with IIS 8, i installed there JDK 8.162 and TomCat 8,5

    3) From crashed server was able to recover  next the folder(with files): TomCat (so all folders with we-inf) - so i have my web.xml, cacerts and client certificate and also files from Jakarta folder (/bin/isapi_redirect.dll; /conf/uriworkermap.properties and /conf/workers.properties)

    4) Using instructions i setup redirection for IIS

    As result:

    -using port 8080 (connect to tomcat without IIS) - it works

    -but redirection IIS-> tomcat do not work 

    500 - Internal server error.
    There is a problem with the resource you are looking for, and it cannot be displayed.

     

  •  BAGAss

    Thank you.

    i add here another instruction and jakarta files. (can be useful too)

     

    Jakarta and instructions.zip
  • I fix 500 error, but now when i go to URL loading SM logon screen and ask for login\password

  • Now i get error when try to load index.do^

    Authentication faild. Contact your system administrator for assistance.

    SOAP Fault occurred: Client Authentication failed

     

    In SM log: 

     

     2928( 4936) 02/19/2018 09:57:47 RTE I Thread 718AD76042F883761505933A0B906B62 initialization done.
     2928( 4936) 02/19/2018 09:57:47 RTE I Language ru is valid
     2928( 4936) 02/19/2018 09:57:47 RTE I SOAP client information scguiwweb 9.31.1034 () at 192.168.195.101 Browser MSIE 7.0 AppServer Apache Tomcat 8.5.27
     2928( 6252) 02/19/2018 09:57:47 JRTE E No SSL certificate was presented by the peer!
     2928( 6252) 02/19/2018 09:57:47 JRTE W Send error response: Client Authentication failed.
     2928( 4936) 02/19/2018 09:57:47 JRTE I Termination signal: 0
     2928( 4936) 02/19/2018 09:57:47 RTE I -Memory : S(497560) O(244964) MAX(1123644) - MALLOC's Total(3785)
     2928( 4936) 02/19/2018 09:57:47 RTE I Thread termination in progress
     2928( 4936) 02/19/2018 09:57:47 RTE I Thread termination cleanup complete
     2928( 6252) 02/19/2018 09:57:47 JRTE W Session 718AD76042F883761505933A0B906B62 is no longer valid. Sending SOAP fault
     2928( 6252) 02/19/2018 09:57:47 JRTE W Send error response: Session no longer valid
     2928( 6252) 02/19/2018 09:57:47 JRTE W Session 718AD76042F883761505933A0B906B62 is no longer valid. Sending SOAP fault
     2928( 6252) 02/19/2018 09:57:47 JRTE W Send error response: Session no longer valid
     2928( 6252) 02/19/2018 09:57:47 JRTE W Session 718AD76042F883761505933A0B906B62 is no longer valid. Sending SOAP fault
     2928( 6252) 02/19/2018 09:57:47 JRTE W Send error response: Session no longer valid
     2928( 6252) 02/19/2018 09:57:47 JRTE W Session 718AD76042F883761505933A0B906B62 is no longer valid. Sending SOAP fault
     2928( 6252) 02/19/2018 09:57:47 JRTE W Send error response: Session no longer valid
     2928( 6252) 02/19/2018 09:57:47 JRTE W Session 718AD76042F883761505933A0B906B62 is no longer valid. Sending SOAP fault
     2928( 6252) 02/19/2018 09:57:47 JRTE W Send error response: Session no longer valid
    In  

     

     

    Part of log4j (TomCat): 

     

    INFO localhost-startStop-1 com.hp.ov.cwc.web.ServerInfo - ###running on Tomcat
    INFO localhost-startStop-1 com.hp.ov.cwc.web.ServerInfo - ###server:Apache Tomcat/8.5.27
    INFO localhost-startStop-1 com.hp.ov.sm.client.webtier.SCLogging - фев 19, 2018 09:57:33 MSK [INFO] Instantiating Web Controller Servlet...
    INFO http-nio-8080-exec-3 com.hp.ov.cwc.web.bean.FrameworkBean - Missing resource: licenseLogos
    INFO ajp-nio-8009-exec-6 com.hp.sw.bto.ast.security.lwsso.utils.StringEncrypter - StringEncrypter [ isUseEncryption = false] : One or any of configuration files is not provided ... 
    INFO ajp-nio-8009-exec-6 com.hp.sw.bto.ast.security.lwsso.conf.LWSSOConfigurationManager - Building of configuration completed in 422 milliseconds.
    ERROR ajp-nio-8009-exec-6 com.hp.ov.sm.client.webtier.SCLogging - фев 19, 2018 09:57:47 MSK [ERROR] SOAP Failure - Client Authentication failed.
    ERROR ajp-nio-8009-exec-6 com.hp.ov.sm.client.webtier.SCLogging - фев 19, 2018 09:57:47 MSK [ERROR] request: <setPreferences>
     <name>setPreferences</name>
     <preferences>
      <preference name="viewactivenotes" value="false" />
      <preference name="viewpromptforsave" value="true" />
      <preference name="clientprinting" value="true" />
      <preference name="clientsideunload" value="true" />
      <preference name="viewrecordlist" value="false" />
      <preference name="heartbeatinterval" value="15" />
      <preference name="compress_soap" value="true" />
      <preference name="ssl" value="false" />
      <preference name="viewclassicmenu" value="false" />
      <preference name="useservertabs" value="false" />
      <preference name="recordlistcount" value="50" />
      <preference name="clientformcache" value="true" />
      <preference name="chartrefresh" value="60" />
      <preference name="essuser" value="false" />
     </preferences>
    </setPreferences>