IG 4.3.1 Stuck at Login Page without any error message

Hi, I'm in the midst of setting up my IG 4.3.1 with a OSP in another server. When i try using bootstrap igadmin to do login, the login page seems redirecting itself back to the same page without letting me through. Any idea what is wrong with it?  The osp-idm-date.log showing that igadmin is indeed authenticated.

Preamble: [OIDP idm]
Txn: Bm-iMrcKEe-_DAAMKWUSuA
Priority Level: INFO
Java: internal.osp.oidp.service.authentication.classes.PasswordAuthenticationClass.authenticatePrincipal() [164] thread=http-nio-8080-exec-9
Time: 2024-12-10T23:18:35.771+0800
Log Data: Attempting to authenticate user igadmin with provided credentials.

Preamble: [OIDP idm]
Txn: Bm-iMrcKEe-_DAAMKWUSuA
Priority Level: INFO
Java: internal.osp.oidp.service.session.NIDPSession.authenticate() [1964] thread=http-nio-8080-exec-9
Time: 2024-12-10T23:18:35.778+0800
Elapsed time: 14.300 microseconds
Log Data: Authenticated user: igadmin

Thanks in advance. 

  • 0

    Preamble: [OIDP idm]
    Txn: NOt-ELiOEe-exQAMKR-8lQ
    Priority Level: INFO
    Java: internal.osp.oidp.service.authentication.classes.PasswordAuthenticationClass.authenticatePrincipal() [164] thread=http-nio-8080-exec-7
    Time: 2024-12-12T21:37:18.489+0800
    Log Data: Attempting to authenticate user igadmin with provided credentials.

    Preamble: [OIDP idm]
    Txn: NOt-ELiOEe-exQAMKR-8lQ
    Priority Level: INFO
    Java: internal.osp.oidp.service.session.NIDPSession.authenticate() [1964] thread=http-nio-8080-exec-7
    Time: 2024-12-12T21:37:18.547+0800
    Elapsed time: 18.700 microseconds
    Log Data: Authenticated user: igadmin

    Preamble: [OIDP idm]
    Txn: NPv40biOEe-exQAMKR-8lQ
    Priority Level: INFO
    Java: internal.osp.oidp.service.profile.LoginProfile.login() [394] thread=http-nio-8080-exec-4
    Time: 2024-12-12T21:37:18.557+0800
    Elapsed time: 8.700 microseconds
    Log Data: Processing login request:

    Preamble: [OIDP idm]
    Txn: NPv40biOEe-exQAMKR-8lQ
    Priority Level: INFO
    Java: internal.osp.oidp.service.profile.authentication.ContractExecutionProfile.exec() [823] thread=http-nio-8080-exec-4
    Time: 2024-12-12T21:37:18.558+0800
    Log Data: Executing contract User Name/Password Login

    Priority Level: INFO
    Java: internal.atlaslite.jcce.ldap.jndi.JNDIConnection.close() [2503] thread=osp-common-thread-1-4
    Time: 2024-12-12T21:37:19.979+0800
    Log Data: Close Conn: cId: 1

  • 0

    osp-idm.2024-12-13.logcatalina.2024-12-13.log

    Included debug logs for reference

  • 0  

    Run the configutil.sh tool in the idgov folder.   Are you using the local file to specify your igadmin credential, or are you using OSP/LDAP as the source?  I would suggest using a local file if possible for bootstrap.   That isn't supported if you are doing a much more complicated authentication setup, but if you are just relying on OSP, then local file for bootstrap may be the way to go. 

  • 0   in reply to   

    Actually, you should look at both of the config tools, configutil.sh as well as configupdate.sh.   They both reference the bootstrap file. 

    Also, there was another thread recently that has a lot of info about how that file works - you may get something out of looking through that.

    --Jim

  • 0 in reply to   

    I have attached the log from the OSP, and it shows that i am using the local file for bootstrap and the igadmin is also authenticated, it is just the login page keep on looping back to itself. I'm not sure if this is the problem using Windows version, but others who are using Linux has no issue. 

  • 0   in reply to 

    Hello,

    1.a) What browser are you using and what is the version?
    1.b) Have you tried with a Private Browser?

    2) To confirm, this set-up is currently utilizing HTTP and not HTTPS?

    Sincerely,
    Steven Williams
    Principal Enterprise Architect
    OpenText Cybersecurity


  • 0 in reply to   

    I have tried using Chrome, Edge and Firefox, and yes, i have tried with private browser with all of the browser as mentioned. This setup is just HTTP. 

  • Suggested Answer

    0   in reply to 

    Hello,

      Over the past couple of years, browsers are disabling the ability to utilize HTTP by default.    As a result  you will not be able to login when using HTTP.  Meaning you will be on the OSP login screen, provide the correct ID & Password press submit and not be forwarded into Identity Governance. You will be presented with the OSP login screen again.


    Overall, it is Best Practice to be configured with HTTPS.

    If you need to continue utilizing HTTP (non-secure) and your company's policies will allow for http, then search the web about how to enable HTTP utilization for your specific browser.

    Sincerely,
    Steven Williams
    Principal Enterprise Architect
    OpenText Cybersecurity