vkhoury
New Member.
535 views

Cannot Access Self Service Password Reset web application

I'm using IDM4.5. I was trying to install SSPR but i couldn't access the web page.
I checked the logs there are no errors. The firewall is off .
I really don't get what's the issue.
The configuration file is as follows:
# Choose to install only, do not
# configure the databases.
# Set value to true, if install only
# Set Value to false, if configure and install
# Default = false
NETIQ_INSTALL_ONLY=false

# Choose Feature List
#--------------------
# Specify the feature list as a comma-separated list
# Allowable values are
# OSP
# SSPR
CHOSEN_FEATURE_LIST=OSP,SSPR

#Choose Install Folder
#---------------------
USER_INSTALL_DIR=C:\\NetIQ\\IdentityManager\\apps\\osp_sspr

#Tomcat Location
#---------------
NETIQ_TOMCAT_HOME=C:\\NetIQ\\IdentityManager\\apps\\tomcat

#Tomcat connection - Protocol
#----------------------------
# Allowed values:
# http
# https
NETIQ_SERVLET_PROTOCOL=http

#Tomcat connection - Host name
#-----------------------------
NETIQ_SERVLET_HOSTNAME=10.1.7.9

#Tomcat connection - Port
#------------------------
NETIQ_SERVLET_PORT=8180

#Choose the Tomcat Java Home
#---------------------------
NETIQ_JAVA_HOME=C:\\NetIQ\\IdentityManager\\jre

#Use SSL for Auth Server
#-----------------------
NETIQ_AUTH_USE_SSL=true

#Identity Vault Host
#-------------------
NETIQ_AUTH_LDAP_HOST=10.1.7.9

#Identity Vault Port
#-------------------
NETIQ_AUTH_LDAP_PORT=636

#Identity Vault User Container
#-----------------------------
NETIQ_AUTH_USER_CNTR=o=data
#Identity Vault Admin Container
#------------------------------
NETIQ_AUTH_ADMIN_CNTR=ou=sa,o=data
#Identity Vault Admin DN
#-----------------------
NETIQ_AUTH_ADMIN_DN=cn=admin,ou=sa,o=system
#Identity Vault Admin Password
#-----------------------------
NETIQ_AUTH_ADMIN_PWD=
#Authentication server's keystore Password
#-----------------------------------------
NETIQ_OSP_KEYSTORE_PWD=

#SSPR Configuration Password
#---------------------------
NETIQ_SSPR_CONFIG_PWD=

#SSPR Client OSP Password
#------------------------
NETIQ_SSPR_OSP_PWD=

#Truststore File
#---------------
# Used when using SSL for
# LDAP connection. Should
# point to the cacerts file.
NETIQ_SSL_KEYSTORE_FILE=C:\\NetIQ\\IdentityManager\\jre\\lib\\security\\cacerts

#Truststore Password
#-------------------
# Used when using SSL for
# LDAP connection. Should
# be the password for the
# cacerts file.
NETIQ_SSL_KEYSTORE_PWD=

# OSP Auditing
#----------------
# Set value to true, if you wish to enable Novell Auditing Server
# Default = false, Novell Audit enabled
NETIQ_OSP_USE_AUDIT=true

#Overwrite Logevent Config
#------------------
# Overwrite existing logevent Configuration file.
# Set value to true if the file should be replaced if it already exists
# Set value to false if the file should skipped if it already exists.
# Default is true
NETIQ_OSP_OVERWRITE_LOGEVENTS=true

# Audit Server
#-------------
# Enter the name of the server where Novell Auditing is running
# Default = localhost
NETIQ_OSP_AUDIT_SERVER=10.1.7.7

# Audit Java client Cache Folder
#-------------------------------
# Folder to contain logging cache
# Defaults:
# Windows: C:\Program Files\Novell\NsureAudit\jcache
# Linux: /var/opt/novell/naudit/jcache
NETIQ_OSP_AUDIT_LOG_JCACHE_FOLDER=C:\\Program Files\\Novell\\NsureAudit\\jcache

# Audit non-Java client Cache Folder
#-----------------------------------
# Folder to contain logging cache
# Defaults:
# Windows: C:\Program Files\Novell\NsureAudit
# Linux: /var/opt/novell/idm/audit
NETIQ_OSP_AUDIT_LOG_CACHE_FOLDER=C:\\Program Files\\Novell\\NsureAudit

# Use custom certificate
#-----------------------
# To use custom certificates value=true
# Default = false
NETIQ_OSP_USE_CUSTOM_CERT=false

# SSPR Auditing
#--------------
# Set value to true, if you wish to enable auditing
# for SSPR.
# Default = false, SSPR suditing disabled.
NETIQ_SSPR_USE_AUDIT=false

# Syslog Audit Host
#-------------
# The hostname of the server where the syslog server
# is running, when the NETIQ_SSPR_USE_AUDIT
# property is set to true.
# Default = localhost
NETIQ_SSPR_AUDIT_HOST=10.1.7.7

# Syslog Audit Port
#-------------
# The port of the server where the syslog server
# is running, when the NETIQ_SSPR_USE_AUDIT
# property is set to true.
# Default = 1443
NETIQ_SSPR_AUDIT_PORT=1443

#SSPR Forwarding URL
#------------------------
# Assign the value to the User App landing URL
# An example might be:
# NETIQ_SSPR_FWD_URL=http://127.0.0.1:8080/landing
NETIQ_SSPR_FWD_URL=http://10.1.7.9:8180/landing
Labels (1)
0 Likes
3 Replies
Knowledge Partner
Knowledge Partner

Re: Cannot Access Self Service Password Reset web applicatio

vkhoury;2488454 wrote:
I'm using IDM4.5. I was trying to install SSPR but i couldn't access the web page.
I checked the logs there are no errors. The firewall is off .
I really don't get what's the issue.
The configuration file is as follows:
# Choose to install only, do not
# configure the databases.
# Set value to true, if install only
# Set Value to false, if configure and install
# Default = false
NETIQ_INSTALL_ONLY=false

# Choose Feature List
#--------------------
# Specify the feature list as a comma-separated list
# Allowable values are
# OSP
# SSPR
CHOSEN_FEATURE_LIST=OSP,SSPR

#Choose Install Folder
#---------------------
USER_INSTALL_DIR=C:\\NetIQ\\IdentityManager\\apps\\osp_sspr

#Tomcat Location
#---------------
NETIQ_TOMCAT_HOME=C:\\NetIQ\\IdentityManager\\apps\\tomcat

#Tomcat connection - Protocol
#----------------------------
# Allowed values:
# http
# https
NETIQ_SERVLET_PROTOCOL=http

#Tomcat connection - Host name
#-----------------------------
NETIQ_SERVLET_HOSTNAME=10.1.7.9

#Tomcat connection - Port
#------------------------
NETIQ_SERVLET_PORT=8180

#Choose the Tomcat Java Home
#---------------------------
NETIQ_JAVA_HOME=C:\\NetIQ\\IdentityManager\\jre

#Use SSL for Auth Server
#-----------------------
NETIQ_AUTH_USE_SSL=true

#Identity Vault Host
#-------------------
NETIQ_AUTH_LDAP_HOST=10.1.7.9

#Identity Vault Port
#-------------------
NETIQ_AUTH_LDAP_PORT=636

#Identity Vault User Container
#-----------------------------
NETIQ_AUTH_USER_CNTR=o=data
#Identity Vault Admin Container
#------------------------------
NETIQ_AUTH_ADMIN_CNTR=ou=sa,o=data
#Identity Vault Admin DN
#-----------------------
NETIQ_AUTH_ADMIN_DN=cn=admin,ou=sa,o=system
#Identity Vault Admin Password
#-----------------------------
NETIQ_AUTH_ADMIN_PWD=
#Authentication server's keystore Password
#-----------------------------------------
NETIQ_OSP_KEYSTORE_PWD=

#SSPR Configuration Password
#---------------------------
NETIQ_SSPR_CONFIG_PWD=

#SSPR Client OSP Password
#------------------------
NETIQ_SSPR_OSP_PWD=

#Truststore File
#---------------
# Used when using SSL for
# LDAP connection. Should
# point to the cacerts file.
NETIQ_SSL_KEYSTORE_FILE=C:\\NetIQ\\IdentityManager\\jre\\lib\\security\\cacerts

#Truststore Password
#-------------------
# Used when using SSL for
# LDAP connection. Should
# be the password for the
# cacerts file.
NETIQ_SSL_KEYSTORE_PWD=

# OSP Auditing
#----------------
# Set value to true, if you wish to enable Novell Auditing Server
# Default = false, Novell Audit enabled
NETIQ_OSP_USE_AUDIT=true

#Overwrite Logevent Config
#------------------
# Overwrite existing logevent Configuration file.
# Set value to true if the file should be replaced if it already exists
# Set value to false if the file should skipped if it already exists.
# Default is true
NETIQ_OSP_OVERWRITE_LOGEVENTS=true

# Audit Server
#-------------
# Enter the name of the server where Novell Auditing is running
# Default = localhost
NETIQ_OSP_AUDIT_SERVER=10.1.7.7

# Audit Java client Cache Folder
#-------------------------------
# Folder to contain logging cache
# Defaults:
# Windows: C:\Program Files\Novell\NsureAudit\jcache
# Linux: /var/opt/novell/naudit/jcache
NETIQ_OSP_AUDIT_LOG_JCACHE_FOLDER=C:\\Program Files\\Novell\\NsureAudit\\jcache

# Audit non-Java client Cache Folder
#-----------------------------------
# Folder to contain logging cache
# Defaults:
# Windows: C:\Program Files\Novell\NsureAudit
# Linux: /var/opt/novell/idm/audit
NETIQ_OSP_AUDIT_LOG_CACHE_FOLDER=C:\\Program Files\\Novell\\NsureAudit

# Use custom certificate
#-----------------------
# To use custom certificates value=true
# Default = false
NETIQ_OSP_USE_CUSTOM_CERT=false

# SSPR Auditing
#--------------
# Set value to true, if you wish to enable auditing
# for SSPR.
# Default = false, SSPR suditing disabled.
NETIQ_SSPR_USE_AUDIT=false

# Syslog Audit Host
#-------------
# The hostname of the server where the syslog server
# is running, when the NETIQ_SSPR_USE_AUDIT
# property is set to true.
# Default = localhost
NETIQ_SSPR_AUDIT_HOST=10.1.7.7

# Syslog Audit Port
#-------------
# The port of the server where the syslog server
# is running, when the NETIQ_SSPR_USE_AUDIT
# property is set to true.
# Default = 1443
NETIQ_SSPR_AUDIT_PORT=1443

#SSPR Forwarding URL
#------------------------
# Assign the value to the User App landing URL
# An example might be:
# NETIQ_SSPR_FWD_URL=http://127.0.0.1:8080/landing
NETIQ_SSPR_FWD_URL=http://10.1.7.9:8180/landing


Not sure this is the right forum for SSPR questions, but we don't seem to have one for it. So...

Did the install complete? Any errors?

Is tomcat running?

Is anything listening on the connection ports you specified?

What happens when you point your web browser at it?
0 Likes
Knowledge Partner
Knowledge Partner

Re: Cannot Access Self Service Password Reset web application

On 10/05/2018 07:54 AM, dgersic wrote:
>
> Not sure this is the right forum for SSPR questions, but we don't seem
> to have one for it. So...


Sure we do, and it's here on the web side:
https://forums.novell.com/forumdisplay.php/1343-Self-Service-Password-Reset

> Did the install complete? Any errors?
>
> Is tomcat running?



ps aux | grep java


> Is anything listening on the connection ports you specified?



/usr/sbin/ss -planeto | grep 'LISTEN '


--
Good luck.

If you find this post helpful and are logged into the web interface,
show your appreciation and click on the star below.

If you want to send me a private message, please let me know in the
forum as I do not use the web interface often.
0 Likes
Knowledge Partner
Knowledge Partner

Re: Cannot Access Self Service Password Reset web application

SSPR uses OSP, and certificates are very important to both. URL's must
stay the same, match Certificate names, and the trusted roots need to be
in all keystores.

Usually that is the issue with SSPR and IDM.

On 10/5/2018 9:46 AM, vkhoury wrote:
>
> I'm using IDM4.5. I was trying to install SSPR but i couldn't access the
> web page.
> I checked the logs there are no errors. The firewall is off .
> I really don't get what's the issue.
> The configuration file is as follows:
> # Choose to install only, do not
> # configure the databases.
> # Set value to true, if install only
> # Set Value to false, if configure and install
> # Default = false
> NETIQ_INSTALL_ONLY=false
>
> # Choose Feature List
> #--------------------
> # Specify the feature list as a comma-separated list
> # Allowable values are
> # OSP
> # SSPR
> CHOSEN_FEATURE_LIST=OSP,SSPR
>
> #Choose Install Folder
> #---------------------
> USER_INSTALL_DIR=C:\\NetIQ\\IdentityManager\\apps\\osp_sspr
>
> #Tomcat Location
> #---------------
> NETIQ_TOMCAT_HOME=C:\\NetIQ\\IdentityManager\\apps\\tomcat
>
> #Tomcat connection - Protocol
> #----------------------------
> # Allowed values:
> # http
> # https
> NETIQ_SERVLET_PROTOCOL=http
>
> #Tomcat connection - Host name
> #-----------------------------
> NETIQ_SERVLET_HOSTNAME=10.1.7.9
>
> #Tomcat connection - Port
> #------------------------
> NETIQ_SERVLET_PORT=8180
>
> #Choose the Tomcat Java Home
> #---------------------------
> NETIQ_JAVA_HOME=C:\\NetIQ\\IdentityManager\\jre
>
> #Use SSL for Auth Server
> #-----------------------
> NETIQ_AUTH_USE_SSL=true
>
> #Identity Vault Host
> #-------------------
> NETIQ_AUTH_LDAP_HOST=10.1.7.9
>
> #Identity Vault Port
> #-------------------
> NETIQ_AUTH_LDAP_PORT=636
>
> #Identity Vault User Container
> #-----------------------------
> NETIQ_AUTH_USER_CNTR=o=data
> #Identity Vault Admin Container
> #------------------------------
> NETIQ_AUTH_ADMIN_CNTR=ou=sa,o=data
> #Identity Vault Admin DN
> #-----------------------
> NETIQ_AUTH_ADMIN_DN=cn=admin,ou=sa,o=system
> #Identity Vault Admin Password
> #-----------------------------
> NETIQ_AUTH_ADMIN_PWD=
> #Authentication server's keystore Password
> #-----------------------------------------
> NETIQ_OSP_KEYSTORE_PWD=
>
> #SSPR Configuration Password
> #---------------------------
> NETIQ_SSPR_CONFIG_PWD=
>
> #SSPR Client OSP Password
> #------------------------
> NETIQ_SSPR_OSP_PWD=
>
> #Truststore File
> #---------------
> # Used when using SSL for
> # LDAP connection. Should
> # point to the cacerts file.
> NETIQ_SSL_KEYSTORE_FILE=C:\\NetIQ\\IdentityManager\\jre\\lib\\security\\cacerts
>
> #Truststore Password
> #-------------------
> # Used when using SSL for
> # LDAP connection. Should
> # be the password for the
> # cacerts file.
> NETIQ_SSL_KEYSTORE_PWD=
>
> # OSP Auditing
> #----------------
> # Set value to true, if you wish to enable Novell Auditing Server
> # Default = false, Novell Audit enabled
> NETIQ_OSP_USE_AUDIT=true
>
> #Overwrite Logevent Config
> #------------------
> # Overwrite existing logevent Configuration file.
> # Set value to true if the file should be replaced if it already exists
> # Set value to false if the file should skipped if it already exists.
> # Default is true
> NETIQ_OSP_OVERWRITE_LOGEVENTS=true
>
> # Audit Server
> #-------------
> # Enter the name of the server where Novell Auditing is running
> # Default = localhost
> NETIQ_OSP_AUDIT_SERVER=10.1.7.7
>
> # Audit Java client Cache Folder
> #-------------------------------
> # Folder to contain logging cache
> # Defaults:
> # Windows: C:\Program Files\Novell\NsureAudit\jcache
> # Linux: /var/opt/novell/naudit/jcache
> NETIQ_OSP_AUDIT_LOG_JCACHE_FOLDER=C:\\Program
> Files\\Novell\\NsureAudit\\jcache
>
> # Audit non-Java client Cache Folder
> #-----------------------------------
> # Folder to contain logging cache
> # Defaults:
> # Windows: C:\Program Files\Novell\NsureAudit
> # Linux: /var/opt/novell/idm/audit
> NETIQ_OSP_AUDIT_LOG_CACHE_FOLDER=C:\\Program Files\\Novell\\NsureAudit
>
> # Use custom certificate
> #-----------------------
> # To use custom certificates value=true
> # Default = false
> NETIQ_OSP_USE_CUSTOM_CERT=false
>
> # SSPR Auditing
> #--------------
> # Set value to true, if you wish to enable auditing
> # for SSPR.
> # Default = false, SSPR suditing disabled.
> NETIQ_SSPR_USE_AUDIT=false
>
> # Syslog Audit Host
> #-------------
> # The hostname of the server where the syslog server
> # is running, when the NETIQ_SSPR_USE_AUDIT
> # property is set to true.
> # Default = localhost
> NETIQ_SSPR_AUDIT_HOST=10.1.7.7
>
> # Syslog Audit Port
> #-------------
> # The port of the server where the syslog server
> # is running, when the NETIQ_SSPR_USE_AUDIT
> # property is set to true.
> # Default = 1443
> NETIQ_SSPR_AUDIT_PORT=1443
>
> #SSPR Forwarding URL
> #------------------------
> # Assign the value to the User App landing URL
> # An example might be:
> # NETIQ_SSPR_FWD_URL=http://127.0.0.1:8080/landing
> NETIQ_SSPR_FWD_URL=http://10.1.7.9:8180/landing
>
>


0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.