Uploaded image for project: 'CDAP'
  1. CDAP
  2. CDAP-13782

ldaps Verify Certificate 401 error

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Open
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: 4.3.4
    • Fix Version/s: None
    • Component/s: CDAP, Security
    • Labels:
      None
    • Rank:
      1|i00enb:

      Description

      When configuring CDAP authentication to use LDAP with active directory we have seen issues with the property `security.authentication.handler.ldapsVerifyCertificate`. 

       

      We get a 401 error in the following two scenarios. (full log attached)

      • LDAPs with a self signed cert. ldapsVerifyCertificate=true
      • LDAP with no ssl. ldapsVerifyCertificate=false
      2018-07-17 18:57:42,381 - DEBUG [qtp348773548-33 - /token:o.e.j.s.Server@367] - RESPONSE /token 401 handled=true
      

      In order to see these logs org.eclipse.jetty.plus.jaas needs to be set to DEBUG in the logback.xml.
      <logger name="org.eclipse.jetty" level="DEBUG"/>

       

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                bhooshan Bhooshan Mogal
                Reporter:
                mattwuenschel Matt Wuenschel
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated: