CA PAM HTTP Web SSO and JBOSS EAP
Article ID: 131450
Updated On:
Products
CA Privileged Access Manager - Cloakware Password Authority (PA)
PAM SAFENET LUNA HSM
CA Privileged Access Manager (PAM)
Issue/Introduction
JBOSS web portal is setup using TCP Service in PAM using "CA PAM HTTP Web SSO" as "auto login method" but the PAM browser just hangs there and does not auto-login.
Environment
Release:
Component: CAPAMX
Component: CAPAMX
Resolution
It was found JBoss Enterprise Application Server 6.1.1 was using "Digest" Authentication which looks the same as "Basic" Authentication but they are not the same. Basic Authentication uses BASE64 encoded ":" in the Authorization Header.
For example:
Authorization Basic AABBBCC=
But Digest Authentication is not just username and password.
As a result, the login would TIMEOUT and users would not login.
Please work with your JBOSS Administrator to setup a FORM Authentication. https://access.redhat.com/documentation/en-us/jboss_enterprise_application_platform/6.3/html/security_guide/enable_form-based_authentication
For example:
Authorization Basic AABBBCC=
But Digest Authentication is not just username and password.
As a result, the login would TIMEOUT and users would not login.
Please work with your JBOSS Administrator to setup a FORM Authentication. https://access.redhat.com/documentation/en-us/jboss_enterprise_application_platform/6.3/html/security_guide/enable_form-based_authentication
Feedback
Yes
No
Powered by
