IG 4.3.1, user igadmin cannot login,

hi all

i new in this product, and we planning had PoC for this to customer

everything follow base on doc, using helper to setup, and set as basic as possible even using http

but somehow user igadmin what did set in OSP, cannot login to inisiate, since this new product and i don't have the license to raise ticket, because i request from sales tool to demo

no significant error told what issue what i facing, already 1 week had no progress 

i attach also the logs

log 10122024.zip

  • 0  

    Pretty sure the issue is in the first page or so of the osp.log you included.

             10) Information:
                   AuthenticationService[OSP Configuration (id=auth)]/FileDataSource[CSV File Data Source (id=firstFile)]
                   No filename specified; assuming path specifies both path and filename.
             11) Information:
                   AuthenticationService[OSP Configuration (id=auth)]/JDBCIDataSource[File User Instance Datasource (id=ds-file-instance-data)]
                   No JNDI environment context name; JNDI datasource name specifies both context and name.
    
    Preamble: [OIDP idm]
    Priority Level: WARNING
    Java: internal.osp.oidp.service.source.AuthPluginManager.autoConfigure() [338] thread=main
    Time: 2024-12-10T09:02:53.444+0700
    Log Data: Unable to auto configure authentication plugins for 'Authentication Source for File Users' Instance Data(id=as-file-instance-data)' because no suitable authentication plugins were found.

    igadmin (no ,/ by the way, just igadmin) has its password stored in a file.  Which seems to not be properly configured.  I am not sure what the lines in the config file are supposed to say to specify the file properly.  I would try confiigupdate.sh and see if there is anywhere that specifies that. 

  • 0 in reply to   

    Hi

    i tried it before with only igadmin, but it asking for mail

    even in saba cloud training installation or manual nothing mention this thing

  • 0   in reply to 

    Hello,
    You are being asked for email in this case becasuse the id of "igadmin" exists more than once. Therefore, an additional value must be supplied to differentiate/resolve which specific user is attempting to login.

    You either have two (2) users defined in the Vault server where OSP is pointing to (eDirectory or Active Directory) or there is one (1) in the vault server and one (1) in the file [if you selected during the install that the bootstrap user was file based]

    Sincerely,
    Steven Williams
    Principal Enterprise Architect
    OpenText Cybersecurity

  • 0 in reply to   

    even the file that you mention also exist

  • 0 in reply to   

    yes in my AD, i create igadmin@net for testing purpose,

    so in my case, i should remove the igadmin in AD?

    even i try to extend the attribute

  • Suggested Answer

    0   in reply to 

    Hello,

    1) Either remove the user from AD or if you want the bootstrap user to be from the vault change the setting in configupdate.

    2) You included install logs and there I can see you specified upper case for host names.  That will cause failures because a host name will always go to lower case in the browser.  Hence the exact dns matching will fail.

    3) Related to #2, is see that you utilized as short dns name.  If that is not the actual dns name of the server, that will also cause failures.

    Sincerely,
    Steven Williams
    Principal Enterprise Architect
    OpenText Cybersecurity

  • 0 in reply to   

    i remove the users can show it was login