Self-Solve Knowledge Search

Minimize Maximize
Comparison report against CMDB is failing with authentication issue
This document has not been formally reviewed for accuracy and is provided as is
Title :
Comparison report against CMDB is failing with authentication issue
Document ID :
KM00978036
Product - Version:
universal cmdb ;
OS :
Updated :
Thu Jun 05 19:33:42 GMT 2014
Summary :
UCMDB 9.05 CUP14 has a problem with forwarding of HTTPS authentication requests to LDAP. It's forwarded as HTTP if AXIS2 context binded to both HTTP and HTTPS ports.
We have an-house report that we ran against CMDB. Its been running smoothly until recently (after applying uCMDB patch to CUP 14). We have been getting authentication issue as below
"System.ServiceModel.Security.MessageSecurityException: The HTTP request is unauthorized with client authentication scheme 'Basic'. The authentication header received from the server was 'Basic realm=""CMDB_OPEN_API""'. ---> System.Net.WebException: The remote server returned an error: (401) Unauthorized.
at System.Net.HttpWebRequest.GetResponse()
at System.ServiceModel.Channels.HttpChannelFactory.HttpRequestChannel.HttpChannelRequest.WaitForReply(TimeSpan timeout)
--- End of inner exception stack trace ---
Server stack trace:
at System.ServiceModel.Channels.HttpChannelUtilities.ValidateAuthentication(HttpWebRequest request, HttpWebResponse response, WebException responseException, HttpChannelFactory factory)
at System.ServiceModel.Channels.HttpChannelUtilities.ValidateRequestReplyResponse(HttpWebRequest request, HttpWebResponse response, HttpChannelFactory factory, WebException responseException, ChannelBinding channelBinding)
at System.ServiceModel.Channels.HttpChannelFactory.HttpRequestChannel.HttpChannelRequest.WaitForReply(TimeSpan timeout)
at System.ServiceModel.Channels.RequestChannel.Request(Message message, TimeSpan timeout)
at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs, TimeSpan timeout)
at System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage methodCall, ProxyOperationRuntime operation)
at System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage message)
Exception rethrown at [0]:
at System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg)
at System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type)
at uCMDB.Import.uCMDBService.UcmdbServicePortType.executeTopologyQueryByName(executeTopologyQueryByNameRequest request)
at uCMDB.Import.uCMDBService.UcmdbServicePortTypeClient.executeTopologyQueryByName(executeTopologyQueryByName executeTopologyQueryByName1) in c:\\TFS\\uCMDB\\uCMDB.root\\uCMDB\\uCMDB.Import\\Service References\\uCMDBService\\Reference.cs:line 7651
at uCMDB.Import.uCMDB_Client.executeRelationshipTopologyQueryByName(String QueryName) in c:\\TFS\\uCMDB\\uCMDB.root\\uCMDB\\uCMDB.Import\\uCMDB_Client.cs:line 721"
Solution
UCMDB 9.05 CUP14 has a problem with forwarding of HTTPS authentication requests to LDAP. It's forwarded as HTTP if AXIS2 context binded to both HTTP and HTTPS ports.
The workaround is easy -> remove HTTP from binded ports.
To do so please go to JMX console -> Port Management services -> mapComponentToConnectors -> use axis2 as componentName, mark HTTPSD as True all others as False.
UCMDB 10 has no problem like this.