Client login gives error CRJAZ0062I The user Unknown
I have configured Jazz RTC running on Linux to authenticate against test blupage server tstbluepages.mkm.can.ibm.com. Jazz is running on top of WAS 6.1, WAS global security is configured and enabled Standalone LDAP registry with the same tstbluepages.mkm.can.ibm.com. Also created two groups at https://tstbluepages.mkm.can.ibm.com/tools/groups/protect/groupsgui.wss?task=ViewGroup&gName=AFJazzF2Admins&showlist=true called AFJazzF2Admins and AFJazzF2Users to map in jazz admin. In Jazz.war under security role mapping I have added the above groups from LDAP. I am able to login to /jazz/admin console using my LDAP test Bluepages ID xxx@in.ibm.com and then setup the user registry there.
The strange problem is that i am able to logon to /jazz using web browser where as the Jazz client login fails with following message.
CRJAZ0062I The user "xxxxx@in.ibm.com" is unknown.
How can I troubleshoot the issue? All the jazz configuration is works fine, Jazz to LDAP Group Mapping is also checked, seems to be perfect. The similar configuration using production Bluepages works fine.
On web UI, i also checked is the case sensitive problem in user ID, no such case sensitive issue is there. I also checked the similar post https://jazz.net/forums/viewtopic.php?t=1710&highlight=crjaz0062i, but not helped.
I cannot see anything logged in WAS SystemOut.log file, if i try client connection with my user ID. When i tried with wrong password I got following error
00000027 FormLoginExte E SECJ0118E: Authentication error during authentication for user xxxxx@in.ibm.com
This means that the LDAP level authentication was successful, but can anyone help me why the Jazz client cannot able to logon. This happens to all users I have added to Jazz.
I also tried changing log level on log4j.properties, I couldnt get any clue about the problem from server logs.
Can it be a problem to Jazz Client and will there any setting on client can resolve such issue?
Thanks,
Rijesh.
Thanks,
Rijesh.
The strange problem is that i am able to logon to /jazz using web browser where as the Jazz client login fails with following message.
CRJAZ0062I The user "xxxxx@in.ibm.com" is unknown.
How can I troubleshoot the issue? All the jazz configuration is works fine, Jazz to LDAP Group Mapping is also checked, seems to be perfect. The similar configuration using production Bluepages works fine.
On web UI, i also checked is the case sensitive problem in user ID, no such case sensitive issue is there. I also checked the similar post https://jazz.net/forums/viewtopic.php?t=1710&highlight=crjaz0062i, but not helped.
I cannot see anything logged in WAS SystemOut.log file, if i try client connection with my user ID. When i tried with wrong password I got following error
00000027 FormLoginExte E SECJ0118E: Authentication error during authentication for user xxxxx@in.ibm.com
This means that the LDAP level authentication was successful, but can anyone help me why the Jazz client cannot able to logon. This happens to all users I have added to Jazz.
I also tried changing log level on log4j.properties, I couldnt get any clue about the problem from server logs.
Can it be a problem to Jazz Client and will there any setting on client can resolve such issue?
Thanks,
Rijesh.
Thanks,
Rijesh.
2 answers
Hi Rijesh,
When you log into the Web administrative UI, look in the top right
corner, where it shows the id of the current user. Do you see your user
id or "ADMIN"?
If you see ADMIN, I suspect the users do not exist in your repository.
You can import users from LDAP using the instructions here:
https://jazz.net/jazzdocs/index.jsp?topic=/com.ibm.team.platform.doc/topics/t_import_users.html
Thanks,
Craig Chaney
Jazz Server team
rijeshpp wrote:
When you log into the Web administrative UI, look in the top right
corner, where it shows the id of the current user. Do you see your user
id or "ADMIN"?
If you see ADMIN, I suspect the users do not exist in your repository.
You can import users from LDAP using the instructions here:
https://jazz.net/jazzdocs/index.jsp?topic=/com.ibm.team.platform.doc/topics/t_import_users.html
Thanks,
Craig Chaney
Jazz Server team
rijeshpp wrote:
I have configured Jazz RTC running on Linux to authenticate against
test blupage server tstbluepages.mkm.can.ibm.com. Jazz is running on
top of WAS 6.1, WAS global security is configured and enabled
Standalone LDAP registry with the same tstbluepages.mkm.can.ibm.com.
Also created two groups at
https://tstbluepages.mkm.can.ibm.com/tools/groups/protect/groupsgui.wss?task=ViewGroup&gName=AFJazzF2Admins&showlist=true
called AFJazzF2Admins and AFJazzF2Users to map in jazz admin. In
Jazz.war under security role mapping I have added the above groups
from LDAP. I am able to login to /jazz/admin console using my LDAP
test Bluepages ID xxx@in.ibm.com and then setup the user registry
there.
The strange problem is that i am able to logon to /jazz using web
browser where as the Jazz client login fails with following message.
CRJAZ0062I The user "xxxxx@in.ibm.com" is unknown.
How can I troubleshoot the issue? All the jazz configuration is works
fine, Jazz to LDAP Group Mapping is also checked, seems to be
perfect. The similar configuration using production Bluepages works
fine.
On web UI, i also checked is the case sensitive problem in user ID, no
such case sensitive issue is there. I also checked the similar post
https://jazz.net/forums/viewtopic.php?t=1710&highlight=crjaz0062i,
but not helped.
I cannot see anything logged in WAS SystemOut.log file, if i try
client connection with my user ID. When i tried with wrong password I
got following error
00000027 FormLoginExte E SECJ0118E:
Authentication error during authentication for user xxxxx@in.ibm.com
This means that the LDAP level authentication was successful, but can
anyone help me why the Jazz client cannot able to logon. This happens
to all users I have added to Jazz.
I also tried changing log level on log4j.properties, I couldnt get
any clue about the problem from server logs.
Can it be a problem to Jazz Client and will there any setting on
client can resolve such issue?
Thanks,
Rijesh.
Thanks,
Rijesh.
To import the users, you also need to use the setup wizard (https://myserver:9443/jazz/setup) to configure LDAP authentication in Jazz. You might want to take a look at https://jazz.net/wiki/bin/view/Main/LDAP4Dummies wiki. This document talks about configuring LDAP in tomcat and Jazz.
--- Balaji
Jazz Server Team
--- Balaji
Jazz Server Team
Hi Rijesh,
When you log into the Web administrative UI, look in the top right
corner, where it shows the id of the current user. Do you see your user
id or "ADMIN"?
If you see ADMIN, I suspect the users do not exist in your repository.
You can import users from LDAP using the instructions here:
https://jazz.net/jazzdocs/index.jsp?topic=/com.ibm.team.platform.doc/topics/t_import_users.html
Thanks,
Craig Chaney
Jazz Server team
rijeshpp wrote:
I have configured Jazz RTC running on Linux to authenticate against
test blupage server tstbluepages.mkm.can.ibm.com. Jazz is running on
top of WAS 6.1, WAS global security is configured and enabled
Standalone LDAP registry with the same tstbluepages.mkm.can.ibm.com.
Also created two groups at
https://tstbluepages.mkm.can.ibm.com/tools/groups/protect/groupsgui.wss?task=ViewGroup&gName=AFJazzF2Admins&showlist=true
called AFJazzF2Admins and AFJazzF2Users to map in jazz admin. In
Jazz.war under security role mapping I have added the above groups
from LDAP. I am able to login to /jazz/admin console using my LDAP
test Bluepages ID *@in.ibm.com and then setup the user registry
there.
The strange problem is that i am able to logon to /jazz using web
browser where as the Jazz client login fails with following message.
CRJAZ0062I The user "xxxxx@in.ibm.com" is unknown.
How can I troubleshoot the issue? All the jazz configuration is works
fine, Jazz to LDAP Group Mapping is also checked, seems to be
perfect. The similar configuration using production Bluepages works
fine.
On web UI, i also checked is the case sensitive problem in user ID, no
such case sensitive issue is there. I also checked the similar post
https://jazz.net/forums/viewtopic.php?t=1710&highlight=crjaz0062i,
but not helped.
I cannot see anything logged in WAS SystemOut.log file, if i try
client connection with my user ID. When i tried with wrong password I
got following error
00000027 FormLoginExte E SECJ0118E:
Authentication error during authentication for user xxxxx@in.ibm.com
This means that the LDAP level authentication was successful, but can
anyone help me why the Jazz client cannot able to logon. This happens
to all users I have added to Jazz.
I also tried changing log level on log4j.properties, I couldnt get
any clue about the problem from server logs.
Can it be a problem to Jazz Client and will there any setting on
client can resolve such issue?
Thanks,
Rijesh.
Thanks,
Rijesh.