CA PAM HTTP Web SSO and JBOSS EAP

book

Article ID: 131450

calendar_today

Updated On:

Products

CA Privileged Access Manager - Cloakware Password Authority (PA) PAM SAFENET LUNA HSM CA Privileged Access Manager (PAM)

Issue/Introduction



JBOSS web portal is setup using TCP Service in PAM using "CA PAM HTTP Web SSO" as "auto login method" but the PAM browser just hangs there and does not auto-login.

Environment

Release:
Component: CAPAMX

Resolution

It was found JBoss Enterprise Application Server 6.1.1 was using "Digest" Authentication which looks the same as "Basic" Authentication but they are not the same. Basic Authentication uses BASE64 encoded ":" in the Authorization Header.

For example:
Authorization Basic AABBBCC=

But Digest Authentication is not just username and password.
As a result, the login would TIMEOUT and users would not login.

Please work with your JBOSS Administrator to setup a FORM Authentication. https://access.redhat.com/documentation/en-us/jboss_enterprise_application_platform/6.3/html/security_guide/enable_form-based_authentication