Welcome Serena Central users! CLICK HERE
The migration of the Serena Central community is currently underway. Be sure to read THIS MESSAGE to get your new login set up to access your account.
Anonymous_User Absent Member.
Absent Member.
479 views

Identity Server port forwarding to Admin Console port


I am installing a dev NAM system and I have the Admin Console and ID
server on the same box. I followed the documentation and installed the
Admin Console to the default port of 8443. When installing the ID Server
the Admin Console port was automatically changes to 2443 and the ID
Server became 8443. I am on step 20 of the documentation
(http://tinyurl.com/objp67u) and I cannot verify the configuration
because when trying to go to 8443 I am automatically redirected to 2443.
I check with the server admins and there are no redirects set up on the
server and I cannot see anything in the Tomcat config. This box has only
been used to set this up and I have not deviated from the guide. Any
ideas on how to fix this?


--
bobbintb
------------------------------------------------------------------------
bobbintb's Profile: https://forums.netiq.com/member.php?userid=5629
View this thread: https://forums.netiq.com/showthread.php?t=51817

0 Likes
12 Replies
Anonymous_User Absent Member.
Absent Member.

Re: Identity Server port forwarding to Admin Console port


Have you tried restarting all AM services to see if everything comes up
on the correct port?

When you are redirected to port 2443, are you getting the identity
server, or the admin console?


--
MatthewEhle
------------------------------------------------------------------------
MatthewEhle's Profile: https://forums.netiq.com/member.php?userid=4
View this thread: https://forums.netiq.com/showthread.php?t=51817

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Identity Server port forwarding to Admin Console port

bobbintb wrote:

>
> I am installing a dev NAM system and I have the Admin Console and ID
> server on the same box. I followed the documentation and installed the
> Admin Console to the default port of 8443. When installing the ID
> Server the Admin Console port was automatically changes to 2443 and
> the ID Server became 8443. I am on step 20 of the documentation
> (http://tinyurl.com/objp67u) and I cannot verify the configuration
> because when trying to go to 8443 I am automatically redirected to
> 2443. I check with the server admins and there are no redirects set
> up on the server and I cannot see anything in the Tomcat config. This
> box has only been used to set this up and I have not deviated from
> the guide. Any ideas on how to fix this?


In addition to what Matthew is suggesting, if his step doesn't work,
check if the admin console tomcat instance is actually starting
properly.

Go to /opt/novell/nam/adminconsole/logs and check the catalina.out for
any errors/activity. If you have a look at
/opt/novell/nam/adminconsole/server.xml and search for
NIDP_Name="connector" the port for that connector should be set to 2443.



--
Cheers,
Edward
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Identity Server port forwarding to Admin Console port


I restarted both the Admin Console and ID Server and the problem
persists. To clarify, I am trying to access the ID Server on port 8443
but am redirected to the Admin Console on 2443. I do not see anything
immediately obvious in catalina.out. I'm not too familiar with the
output so I will keep looking.

I did check server.xml on the Admin Console and it does indeed show the
following:


Code:
--------------------
Connector NIDP_Name="connector" port="2443"
--------------------


However, there is no similar entry in the ID Server's server.xml.


--
bobbintb
------------------------------------------------------------------------
bobbintb's Profile: https://forums.netiq.com/member.php?userid=5629
View this thread: https://forums.netiq.com/showthread.php?t=51817

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Identity Server port forwarding to Admin Console port


Does the admin console report the tomcat server as healthy?

If you are running these on Linux, can you run:


Code:
--------------------
ps eaf | grep java
--------------------


You should see at least two processes, one for the AC and one for the
IDP. It should also show their respective ports. You can also double
check by running:


Code:
--------------------
fuser -n tcp 8443
--------------------
and
Code:
--------------------
fuser -n tcp 2443
--------------------
to verify the processes listening on those ports.


--
MatthewEhle
------------------------------------------------------------------------
MatthewEhle's Profile: https://forums.netiq.com/member.php?userid=4
View this thread: https://forums.netiq.com/showthread.php?t=51817

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Identity Server port forwarding to Admin Console port


Yes, it shows both processing running, one on port 8443 and one on port
2443:


Code:
--------------------
[root]# ps -eaf | grep java
root 6553 1 0 Sep08 ? 00:36:47 /opt/novell/java/bin/java -XX:-UseSplitVerifier -Dcom.novell.nam.common.util.DeploymentMode=MultipleMachines -Djava.util.logging.config.file=/opt/novell/devman/jcc/conf/logging.properties -Djava.security.manager -Djava.security.policy=/opt/novell/devman/jcc/conf/jcc.policy -cp .:/opt/novell/devman/jcc/lib/jcc.jar:/opt/novell/devman/jcc/lib/catalina.jar:/opt/novell/devman/jcc/lib/el-api.jar:/opt/novell/devman/jcc/lib/certmgr.jar:/opt/novell/devman/jcc/lib/NAMCommon.jar:/opt/novell/devman/jcc/lib/npki.jar:/opt/novell/devman/jcc/lib/commons-logging.jar:/opt/novell/devman/jcc/lib/jasper.jar:/opt/novell/devman/jcc/lib/jmx.jar:/opt/novell/devman/jcc/lib/jsp-api.jar:/opt/novell/devman/jcc/lib/junit-4.4.jar:/opt/novell/devman/jcc/lib/servlet-api.jar:/opt/novell/devman/jcc/lib/tomcat-coyote.jar:/opt/novell/devman/jcc/lib/tomcat-util.jar:/opt/novell/devman/jcc/lib/jaxen-1.1.jar:/opt/novell/devman/jcc/lib/tomcat-api.jar:/opt/novell/devman/jcc/lib/tomcat-juli.jar:/opt/novell/devman/jcc/lib/annotations-api.jar:/opt/novell/devman/jcc/lib/dcc-core.jar com.novell.jcc.server.JCCServerImpl
novlwww 28470 1 0 10:37 ? 00:00:51 /opt/novell/java/bin/java -Dnop -Djava.util.logging.manager=org.apache.juli.ClassLoaderLogManager -server -Xmx1024m -Xms512m -Xss256k -XX:-UseSplitVerifier -XX:MaxPermSize=256m -Dcatalina.config=file:///opt/novell/nam/adminconsole/conf/catalina.properties -Dcom.novell.socket.devmancacertslocation=/var/opt/novell/novlwww -Djava.library.path=/usr/lib64:/opt/novell/eDirectory/lib64:/opt/novell/lib64 -Dorg.apache.jasper.compiler.Parser.STRICT_WHITESPACE=false -Dsun.net.client.defaultConnectTimeout=29000 -Dsun.net.client.defaultReadTimeout=28000 -Djavax.net.ssl.sessionCacheSize=10000 -Djava.awt.headless=true -Dsun.net.http.allowRestrictedHeaders=true -Djsse.enableCBCProtection=false -Djava.endorsed.dirs=/var/opt/novell/tomcat7/endorsed -classpath /lib/tools.jar:/var/opt/novell/tomcat7/bin/bootstrap.jar:/var/opt/novell/tomcat7/bin/tomcat-juli.jar -Dcatalina.base=/opt/novell/nam/adminconsole -Dcatalina.home=/var/opt/novell/tomcat7 -Djava.io.tmpdir=/opt/novell/nam/adminconsole/temp org.apache.catalina.startup.Bootstrap -config /opt/novell/nam/adminconsole/conf/server.xml start
novlwww 28700 1 0 10:37 ? 00:00:41 /opt/novell/java/bin/java -Djava.util.logging.config.file=/opt/novell/nam/idp/conf/logging.properties -Djava.util.logging.manager=org.apache.juli.ClassLoaderLogManager -server -Xmx1024m -Xms512m -Xss256k -XX:-UseSplitVerifier -Dcatalina.config=file:///opt/novell/nam/idp/conf/catalina.properties -Dcom.novell.socket.devmancacertslocation=/var/opt/novell/novlwww -Djava.library.path=/usr/lib64:/opt/novell/eDirectory/lib64:/opt/novell/lib64 -Dsun.net.client.defaultConnectTimeout=29000 -Dsun.net.client.defaultReadTimeout=28000 -Djavax.net.ssl.sessionCacheSize=10000 -Djava.awt.headless=true -Daxis.EngineConfigFactory=com.novell.nidp.liberty.wsf.axis.NIDPAxisEngineConfigFactory -Dnids.freemem.threshold=10 -Dsun.net.http.allowRestrictedHeaders=true -Dsun.security.ssl.allowUnsafeRenegotiation=true -Djava.endorsed.dirs=/opt/novell/nam/idp/endorsed -classpath /lib/tools.jar:/var/opt/novell/tomcat7/bin/bootstrap.jar:/var/opt/novell/tomcat7/bin/tomcat-juli.jar -Dcatalina.base=/opt/novell/nam/idp -Dcatalina.home=/var/opt/novell/tomcat7 -Djava.io.tmpdir=/opt/novell/nam/idp/temp org.apache.catalina.startup.Bootstrap -config /opt/novell/nam/idp/conf/server.xml start
root 29796 28370 0 12:49 pts/0 00:00:00 grep java
[root]# fuser -n tcp 8443
8443/tcp: 28700
[root]# fuser -n tcp 2443
2443/tcp: 28470
[root]#

--------------------


--
bobbintb
------------------------------------------------------------------------
bobbintb's Profile: https://forums.netiq.com/member.php?userid=5629
View this thread: https://forums.netiq.com/showthread.php?t=51817

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Identity Server port forwarding to Admin Console port


Still haven't found a cause for this.


--
bobbintb
------------------------------------------------------------------------
bobbintb's Profile: https://forums.netiq.com/member.php?userid=5629
View this thread: https://forums.netiq.com/showthread.php?t=51817

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Identity Server port forwarding to Admin Console port

bobbintb wrote:

>
> Still haven't found a cause for this.


so when you browse to https://ip-address:2443/nps nothing happens?

--
Cheers,
Edward
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Identity Server port forwarding to Admin Console port


edmaa;249493 Wrote:
> bobbintb wrote:
>
> >
> > Still haven't found a cause for this.

>
> so when you browse to https://ip-address:2443/nps nothing happens?
>
> --
> Cheers,
> Edward


No, when I browse to https://ip-address:2443/nps I am taken to the Admin
Console, as it is supposed to do. When I browse to
https://ip-address:8443/nps (the ID Server) I am redirected to
https://ip-address:2443/nps.


--
bobbintb
------------------------------------------------------------------------
bobbintb's Profile: https://forums.netiq.com/member.php?userid=5629
View this thread: https://forums.netiq.com/showthread.php?t=51817

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Identity Server port forwarding to Admin Console port

bobbintb wrote:

>
> edmaa;249493 Wrote:
> > bobbintb wrote:
> >
> > >
> > > Still haven't found a cause for this.

> >
> > so when you browse to https://ip-address:2443/nps nothing happens?
> >
> > --
> > Cheers,
> > Edward

>
> No, when I browse to https://ip-address:2443/nps I am taken to the
> Admin Console, as it is supposed to do. When I browse to
> https://ip-address:8443/nps (the ID Server) I am redirected to
> https://ip-address:2443/nps.


Uhm...i'm confused now...what is the actual issue then?

--
Cheers,
Edward
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Identity Server port forwarding to Admin Console port


edmaa;249538 Wrote:
> bobbintb wrote:
>
> >
> > edmaa;249493 Wrote:
> > > bobbintb wrote:
> > >
> > > >
> > > > Still haven't found a cause for this.
> > >
> > > so when you browse to https://ip-address:2443/nps nothing happens?
> > >
> > > --
> > > Cheers,
> > > Edward

> >
> > No, when I browse to https://ip-address:2443/nps I am taken to the
> > Admin Console, as it is supposed to do. When I browse to
> > https://ip-address:8443/nps (the ID Server) I am redirected to
> > https://ip-address:2443/nps.

>
> Uhm...i'm confused now...what is the actual issue then?
>
> --
> Cheers,
> Edward


I am trying to access the ID Server but when I type in the URL for the
ID Server, I am redirected to the Admin Console.


--
bobbintb
------------------------------------------------------------------------
bobbintb's Profile: https://forums.netiq.com/member.php?userid=5629
View this thread: https://forums.netiq.com/showthread.php?t=51817

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Identity Server port forwarding to Admin Console port


Issue has been resolved.


--
bobbintb
------------------------------------------------------------------------
bobbintb's Profile: https://forums.netiq.com/member.php?userid=5629
View this thread: https://forums.netiq.com/showthread.php?t=51817

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Identity Server port forwarding to Admin Console port

bobbintb wrote:

>
> Issue has been resolved.


Ok, thanks for letting us know.

--
Cheers,
Edward
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.