This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

User Portal show "Internal Server Error"

Hi All

 My customer upgrade to latest server then I reboot server then only testing user function by using external RADIUS (Fortigate VPN)

But customer resonse user portal show internal Server error like below:

======================

{"status":"error","errors":[{"location":"server","name":"Internal Server Error","description":"ConnectionError HTTPSConnectionPool(host='aa.sna.com.tw', port=443): Max retries exceeded with url: /osp/a/TOP/auth/oauth2/.well-known/openid-configuration (Caused by NewConnectionError('<urllib3.connection.HTTPSConnection object at 0x7fde99765430>: Failed to establish a new connection: [Errno -2] Name or service not known'))"}]}

=====================


my lab server also occur similar such issue.
Whether 6.4.2 has some exist known issue need fix ?

Wencheng
  • Suggested Answer

    0  

    Hello Wencheng,

    Not a known issue so far, but we have to take a look at the logs to see what happened exactly. It could well be a defect, so please can you open a ticket with Support so we can analyze the logs, check OSP status, proxy configuration, etc.?

    Thanks.

    Regards,

    Luciano Testa

  • 0

    Seems to be the same issue as explained in the following TID.

    support.microfocus.com/.../doc.php

  • 0   in reply to 

    Hello,

    Yes, it looks like, but Wencheng has noticed this after an upgrade to 6.4.2.

    We need to see why this happens after the upgrade and make sure it is not a defect.

    Hopefully that TID helps fixing the error. Thanks for finding it.

    Thanks.
    Regards,

    Luciano Testa

  • 0 in reply to   

    Hi

      I am leave  my office / customer product server. so I could not verify..

    But after upgrade 6.4.2 (old version is 6.4.1) , network setting do not modify anything. it work fine.

    I only run AA upgrade to 6.4.2 then reboot appliance..

    the admin console work fine...and AA mehtod function that user could auth well. (I only not verify userportal)

    P.S: if I return to my lab , I will verify this TID ASAP..

    Wencheng

  • 0 in reply to   

    Hi All

        Last Night , I read TID and set FQDN on lab DNS server(before set DNS record, AA6.4.1 version is work fine. production server same result).

       the user portal show ...but when I type AD account which as repository, it return username page (its mean could not show password page).

    even I reboot appliance. the result is same.

    Wencheng

  • 0 in reply to 

    Hi,

    Yes, the issue seems to happens only with 6.4.2 not with 6.4.1.x.

    With 6.4.2, against couple of independent AA Appliances which were updated/upgraded from previous versions, the issue happens if DNS server with FQDN for AA is powered off. Once the DNS server is powered on, the /account portal load fine without the error.

    The DNS server in my lab (SLES 12 SP4 with BIND) has both forward and reverse lookup zones with corresponding records for AA appliance.

    The issue does not happen with a 6.4.1.1 appliance irrespective of whether DNS server is powered or not. Will check further.

    Regards,

    John

  • 0 in reply to 

    At least in lab, on a basic 6.4.2.0 appliance, adding own FQDN as described in the following documentation link and rebooting the appliance clears the error.

    https://www.netiq.com/documentation/advanced-authentication-64/server-administrator-guide/data/host.html

    Will check with the team further on this option to see whether it is recommended/safe to use in production with many different configurations already implemented and in use.