miniOrange Kerberos Confluence. kerberoserror=user_not_found

  • Andreas Eide
    # 1 month, 4 weeks ago

    Hi.
    I have tried to set up a trial license of the miniOrange Kerberos authentication plugin for our Confluence site, but I’m not able to log on with it.

    Debug log:
    2019-10-15 09:41:28,196 DEBUG [https-jsse-nio-10.0.0.116-9443-exec-15] [miniorange.kerberos.Servlet.MoKerberosLoginServlet] doGet MoKerberosLoginServlet doGet called.
    2019-10-15 09:41:28,197 DEBUG [https-jsse-nio-10.0.0.116-9443-exec-15] [miniorange.kerberos.Servlet.MoKerberosLoginServlet] doGet confluenceUser : null
    2019-10-15 09:41:28,198 DEBUG [https-jsse-nio-10.0.0.116-9443-exec-15] [miniorange.kerberos.Servlet.MoKerberosLoginServlet] doGet Kerberos : Remote username: null
    2019-10-15 09:41:28,198 DEBUG [https-jsse-nio-10.0.0.116-9443-exec-15] [miniorange.kerberos.Servlet.MoKerberosLoginServlet] doGet Kerberos : Remote Username: null
    2019-10-15 09:41:28,199 DEBUG [https-jsse-nio-10.0.0.116-9443-exec-15] [miniorange.kerberos.Servlet.MoKerberosLoginServlet] doGet redirectUrl : https://confluence.sticos.no:9443
    2019-10-15 09:41:28,200 DEBUG [https-jsse-nio-10.0.0.116-9443-exec-15] [miniorange.kerberos.Servlet.MoKerberosLoginServlet] doGet confluenceUser before calling authoriseUserAndEstablishSession: null
    2019-10-15 09:41:28,200 DEBUG [https-jsse-nio-10.0.0.116-9443-exec-15] [miniorange.kerberos.Servlet.MoKerberosLoginServlet] doGet Calling redirectToLoginWithKerberosError(
    2019-10-15 09:41:28,201 DEBUG [https-jsse-nio-10.0.0.116-9443-exec-15] [miniorange.kerberos.Servlet.MoKerberosLoginServlet] redirectToLoginWithKerberosError Authentication failed.
    2019-10-15 09:41:28,202 DEBUG [https-jsse-nio-10.0.0.116-9443-exec-15] [miniorange.kerberos.Servlet.MoKerberosLoginServlet] redirectToLoginWithKerberosError Redirecting user to https://confluence.sticos.no:9443/login.action?kerberoserror=user_not_found

    do I have to set the principal name to confluense.sticos.no:9443 as that is my confluence address?
    the confluence server address is https://confluence.sticos.no:9443 but my internal domain is auticon.no
    Does this complicate settings for this plugin?

    Yours Andreas Eide

    Shradha
    # 1 month, 4 weeks ago

    Hi Andreas,

    Thanks for reaching out to us.

    This seems like an configuration issue, it could be while setting up the plugin configurations or while deploying files to tomcat.
    This is the reason you’re getting user not found error on login.

    If Confluence Server Address is https://confluence.sticos.no:9443 then your Service Principal Name would be confluence.sticos.no.

    Follow keytab file generation procedure provided in the plugin.
    Copy .keytab file created on AD Domain Controller (DC) and deploy it on “confluence_home/conf/” directory.

    Once everything is setup successfully. Restart your Confluence Server and try login.

    Let me know if this helps.

    Thanks,
    Shradha

Viewing 2 posts - 1 through 2 (of 2 total)

Reply