Bajr Prakash Singh Posted June 26 Posted June 26 Hi All, We are in process of setting up out QA server for WF 9.1, during configuration of SSO using SAML Authentication with keycloak as IDP, I am getting weird login page and it does not work even after I provide my credentials. Few details to keep in mind: 1. Keycloak has new client ID specific for WebFOCUS 9.1 environment. 2. Proxy server has Location as '/ibi_apps_91/', I can't use 'ibi_apps' as it is used by our WF 8 Development server 3. keycloak-saml.xml file has been used from keycloak server 4. wfspmetadata has been generated 5. SSL certificate is valid Any insights on what could be the issue? Thanks in advance!
Clayton Peacock Posted June 27 Posted June 27 Taking a shot in the dark, check on the Admin Console--> Security --> Security Zones also click on the Default--> Authentication is SAML enabled?
Bajr Prakash Singh Posted June 28 Author Posted June 28 Just a thought, can we make alias change for 'ibi_apps' to lets say 'ibi_apps_91' in webfocus configuration?
Patrick Huebgen Posted June 28 Posted June 28 3 hours ago, Bajr Prakash Singh said: Just a thought, can we make alias change for 'ibi_apps' to lets say 'ibi_apps_91' in webfocus configuration? Yes you can use any alias you want to use
Patrick Huebgen Posted June 28 Posted June 28 @Bajr Prakash Singh - for the SAML issue please open a support ticket - to dig into this this would require exchanging log files and other sensitive information which should take place in a more secure environment than the public forum.
Bajr Prakash Singh Posted July 1 Author Posted July 1 Thanks @Patrick Huebgen, I have opened a case and following with support over this issue.
Pablo Alvarez Posted July 2 Posted July 2 Hi Bajr, In case you haven't change the alias yet, you can do it from the WebFOCUS Administration console: You can change that string to whatever you want, save the changes and restart your Application Server, once done, you'll need to use that alias to access the product.
Bajr Prakash Singh Posted August 20 Author Posted August 20 (edited) Hi Pablo, sorry for my delayed response. I got busy with coordinating with TIBCO support for this issue. Thanks for the suggestion btw. They suggested that post installation it is advised not to make the alias change, so I had to make changes in the Client ID of keycloak server and configure it with WF 9 server. Post that there were few files that WebFOCUS uses that were blocked by our firewall that I had get whitelisted to enable/access the feature of WF Client. Edited August 20 by Bajr Prakash Singh
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now