cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Windows AD authentication fails for BO

Go to solution
Former Member

on ‎08-01-2015 11:33 AM

0 Kudos

Hi,

Unable to logon to CMC using Windows AD authentication, error:

Account Information Not Recognized: The Active Directory Authentication plugin could not authenticate at this time. Please try again. If the problem persists, please contact your technical support department. (FWM 00005)

At tomcat log file we can see below error:

Debug is  true storeKey false useTicketCache false useKeyTab false doNotPrompt false ticketCache is null isInitiator true KeyTab is null refreshKrb5Config is false principal is null tryFirstPass is false useFirstPass is false storePass is false clearPass is false

        [Krb5LoginModule] user entered username: s057sd@AD.GREEN.COM

Acquire TGT using AS Exchange

principal is s057sd@AD.GREEN.COM

EncryptionKey: keyType=23 keyBytes (hex dump)=0000: A8 7F 3A 33 7D 73 08 5C   45 F9 41 6B E5 78 7D 86  ..:3.s.\E.Ak.x..

All steps are executed as per the standard guide.

Request you to guide further.

Regards,

Raj Mav

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎08-06-2015 8:15 AM
0 Kudos

Hi all,

We still have issue while logging using winAD, we are able to login via enterprise account.

•Account Information Not Recognized: Active Directory Authentication failed to log you on. Please contact your system administrator to make sure you are a member of a valid mapped group and try again. If you are not a member of the default domain, enter your user name as UserName@DNS_DomainName, and then try again. (FWM 00006)

Kindly suggest.

Regards,

Show replies
Show replies
Former Member
‎08-06-2015 9:02 AM
0 Kudos

Addition to this while we are trying to login in CCM it's fails with target name is unknown FWM 00003 and then we tried with NTLM in Ad authentication then CCM allow us to login. So look like Kerberos issue. Can somebody please help us to solve this further.

BillW
Participant
‎08-07-2015 12:08 AM
0 Kudos

HI Raj,

That KBASE I listed above has links to fix any issue you have. Have you tested the KRB file you created?

Thanks,

Bill

Former Member
‎08-07-2015 8:49 AM
0 Kudos

Hi Bill,

This issue has been fixed now, after deleting the duplicate SPN from AD.

Regards,

Raj

Answers (1)

Answers (1)

BillW
Participant
‎08-01-2015 9:54 PM
0 Kudos

HI Raj,

Can you login with the enterprise account? This KBA is very helpful in troubleshooting SSO. 1767629 - Is my SAP SSO connection working.

Thanks,

BW

Show replies
Show replies
Former Member
‎08-03-2015 10:26 AM
0 Kudos

Hi Bill,

Enterprise account is working.

Thanks and Regards,

R Mav

Ask a Question