"Invalid user ID or password." appears even when credentials are correct.
Hi,
User reported that everytime he would log in into RTC the error message invalid id or password appears. His password needs to be reset before he could log in again. Kindly help us in determining on what may cause this to happen. The user is using google chrome. Other info: JTS 4.0.5 WAS 7.0.0.27 |
3 answers
we actually had this kind of scenario for 2 users and 2 different use cases
1. One user had configured something in his "Social networking" connections in RTC which prevented the user to log in 2. Portuguese characters in the name prevented the user to login. And for this We had to raise a PMR to get it fixed I would recommend contacting IBM support Comments
Irell Carloe Santos
commented Jan 29 '15, 3:25 a.m.
Hi,
If this is only for one user and you are using LDAP and the LDAP record for the user is valid, this is likely to be an odd case. I would follow Karthiks suggestion and open a PMR with support.
What does "Reset Password in WebSphere" mean in this context? If you use LDAP, this does not make any sense, as the password is only managed in LDAP and nowhere else. You would have to use LDAP to do anything to passwords.
Irell Carloe Santos
commented Jan 29 '15, 4:09 a.m.
In WAS --> Manage Users --> search for user id --> by clicking the user id you will be directed to the users information, we reset the password by inputting the password into the password field and then apply the changes.
Since you say you manage the users in LDAP, this does not make any sense to me, except if WAS has something built in that then redirects the request to the LDAP system. Usually you would manage all that in the LDAP system with the LDAP related tools. E.g. if you use MS Active Directory, the password is managed by Windows. WAS has nothing to do with it. When I used LDAP, we did exactly that and never went through WAS.
Irell Carloe Santos
commented Jan 29 '15, 7:40 p.m.
Hi Ralph,
showing 5 of 6
show 1 more comments
|
Hi,
Yes, this only happens to one user. Everytime this happens we reset the password in Websphere Application Server and he can log in again. Below error message appears with regards to the username of the user in the logs. [1/29/15 9:39:16:173 SGT] 00000068 srt W com.ibm.ws.webcontainer.srt.SRTServletResponse setStatus WARNING: Cannot set status. Response already committed. [1/29/15 9:39:16:422 SGT] 00000068 srt W com.ibm.ws.webcontainer.srt.SRTServletResponse setStatus WARNING: Cannot set status. Response already committed. [1/29/15 9:43:20:865 SGT] 00000032 LTPAServerObj E SECJ0369E: Authentication failed when using LTPA. The exception is CWWIM4537E No principal is found from the 'srkarnabathula' principal name.. [1/29/15 9:43:20:880 SGT] 00000032 FormLoginExte E SECJ0118E: Authentication error during authentication for user srkarnabathula [1/29/15 9:44:20:973 SGT] 00000029 LTPAServerObj E SECJ0369E: Authentication failed when using LTPA. The exception is CWWIM4537E No principal is found from the 'srkarnabathula' principal name.. [1/29/15 9:44:20:989 SGT] 00000029 FormLoginExte E SECJ0118E: Authentication error during authentication for user srkarnabathula [1/29/15 9:44:41:831 SGT] 0000006b srt W com.ibm.ws.webcontainer.srt.SRTServletResponse addHeader WARNING: Cannot set header. Response already committed. [1/29/15 9:44:41:847 SGT] 0000006b srt W com.ibm.ws.webcontainer.srt.SRTServletResponse addHeader WARNING: Cannot set header. Response already committed. [1/29/15 9:44:41:847 SGT] 0000006b srt W com.ibm.ws.webcontainer.srt.SRTServletResponse setStatus WARNING: Cannot set status. Response already committed. |
Ralph Schoon (63.6k●3●36●47)
| answered Jan 29 '15, 3:15 a.m.
FORUM ADMINISTRATOR / FORUM MODERATOR / JAZZ DEVELOPER edited Jan 29 '15, 3:16 a.m.
The error message refers to LTPA, which is the SSO protocol used by WAS and IHS/WAS to do single sign on.
This is not an issue with CLM/RTC, this is an issue with your setup of was/authentication in WAS or something. https://www.google.com/search?q=CWWIM4537E Shows some entries that may be relevant. You haven't answered the question if you use LDAP or not. If "reset the password in Websphere Application Server" implies you are using the federated realm or file based authentication in WAS (without LDAP), I would suggest to look at the user entry in WAS for that user. |
Your answer
Dashboards and work items are no longer publicly available, so some links may be invalid. We now provide similar information through other means. Learn more here.
Comments
Irell,
it is very confusing if that only happens to one user. What does reset password mean in this context? Are you using LDAP? Are there any suspicious entries in the server logs? Has the user enabled cookies? Are there other users that see this problem?