Can't access Selfservice Portal
680 views
Skip to first unread message
HaTiM Chikhi
Jun 12, 2015, 11:21:17 AM6/12/15
to lin...@googlegroups.com
Hello,
I'm trying to access the Selfservice Portal but with no success.
I have activated the option "service.selfservice = True" in the linotp.ini conf file.
I have defined a policy with selfservice scope.
The user auth is well set, I can check it with http://myserver:5001/validate/check?user=hatim&pass=1234
I have no logs in /var/log/linotp/linotp.log file.
Any idea what would be missing in my configuration??
Thank you!
Hatim
I'm trying to access the Selfservice Portal but with no success.
I have activated the option "service.selfservice = True" in the linotp.ini conf file.
I have defined a policy with selfservice scope.
The user auth is well set, I can check it with http://myserver:5001/validate/check?user=hatim&pass=1234
I have no logs in /var/log/linotp/linotp.log file.
Any idea what would be missing in my configuration??
Thank you!
Hatim
Mirko Ahnert
Jun 15, 2015, 10:45:08 AM6/15/15
to lin...@googlegroups.com
Hi Hatim,
if you have followed the official setup guide from http://www.linotp.org/doc/latest/part-installation/server-installation/pip_install.html the selfservice portal should work "out of box". What happens exactly if you try to connect to the website of the selfservice portal?
Best regards,
Mirko
HaTiM Chikhi
Jun 15, 2015, 11:27:52 AM6/15/15
to Mirko Ahnert, lin...@googlegroups.com
Hi Mirko,
Thanks for your reply.2015/06/15 - 17:22:13 INFO {139638650615552} [useridresolver.SQLIdResolver][checkPass #357] [checkPass] checking password for user 1
2015/06/15 - 17:22:13 WARNI {139638650615552} [useridresolver.SQLIdResolver][checkPass #399] [checkPass] user 1 failed to authenticate.
2015/06/15 - 17:22:13 INFO {139638650615552} [linotp.lib.user][get_authenticated_user #760] user u'hatim' failed to authenticate.
2015-06-15 17:27 GMT+02:00 HaTiM Chikhi <chikhi...@gmail.com>:
Regards,I'm not sure which password to use. Is it just the PIN associated with the user's token or the normal password of the user??The authentication fails.Here are some logs:Hi Mirko,Thanks for your reply.
2015/06/15 - 17:22:13 INFO {139638650615552} [useridresolver.SQLIdResolver][checkPass #357] [checkPass] checking password for user 1
2015/06/15 - 17:22:13 WARNI {139638650615552} [useridresolver.SQLIdResolver][checkPass #399] [checkPass] user 1 failed to authenticate.
2015/06/15 - 17:22:13 INFO {139638650615552} [linotp.lib.user][get_authenticated_user #760] user u'hatim' failed to authenticate.
----
You received this message because you are subscribed to a topic in the Google Groups "LinOTP" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/linotp/yRCYM2wQQJQ/unsubscribe.
To unsubscribe from this group and all its topics, send an email to linotp+un...@googlegroups.com.
Visit this group at http://groups.google.com/group/linotp.
To view this discussion on the web visit https://groups.google.com/d/msgid/linotp/2c83f23e-a142-4ab9-808e-2bbc008283fd%40googlegroups.com.CHIKHI Hatim
Stage Administrateur Réseau et SécuritéLinkbynet
--
CHIKHI Hatim
Stage Administrateur Réseau et Sécurité
Stage Administrateur Réseau et Sécurité
Linkbynet
Mirko Ahnert
Jun 15, 2015, 12:06:54 PM6/15/15
to lin...@googlegroups.com, mirko....@lsexperts.de
Hi Hatim,
I'm not sure which password to use. Is it just the PIN associated with the user's token or the normal password of the user??
It is the normal password of the user. It seems like your configured SQL UserIdResolver can not sucessfully verify the user password.
Please check if the UserIdResolver does map the correct SQL column to the LinOTP attribute "password". Additionally the password hash has to be stored in a compatible format. LinOTP does provide the script "linotp-create-sqlidresolver-user" which dumps proper data on the command line for inserting into your database.
linotp-create-sqlidresolver-user :
create password entry for SQL databases
Parameter:
-u user name
-i user id
-p password
-s SHA512 : hash algorithm, either SHA256 or SHA512
-o output format : format could be SQL or CSV
If you like have look at https://groups.google.com/forum/#!topic/linotp/tteFdC4br_w - this seems to be a similar issue.
Kind regards,
Mirko
--
Mirko Ahnert
LSE Leading Security Experts GmbH, http://www.lsexperts.de
Postfach 100121, 64201 Darmstadt, Germany
Zentrale: +49 6151 86086-0 , Fax: -299
Support Hotline: +49 6151 86086-115
Unternehmenssitz: Weiterstadt Amtsgericht Darmstadt: HRB8649
Geschäftsführer: Oliver Michel, Sven Walther
HaTiM Chikhi
Jun 19, 2015, 4:12:29 AM6/19/15
to lin...@googlegroups.com
Hi Mirko,
I was able to access the Self Service Portal after using the script linotp-create-sqlidresolver-user.
Before, passwords were not in a compatible format.
To view this discussion on the web visit https://groups.google.com/d/msgid/linotp/49dfe982-27cb-4c6a-a685-15fe24fb14cc%40googlegroups.com.
Reply all
Reply to author
Forward
0 new messages