Error : login.microsoftonline.com Name or service not known on WAOP
search cancel

Error : login.microsoftonline.com Name or service not known on WAOP

book

Article ID: 228963

calendar_today

Updated On:

Products

CA Single Sign On Federation (SiteMinder) SITEMINDER CA Single Sign On Agents (SiteMinder) CA Single Sign On Secure Proxy Server (SiteMinder)

Issue/Introduction

 

When running a Web Agent Option Pack as OAuth 2.0 client with Microsoft Azure AD as OAuth 2.0 Authorization server, Web Agent Option Pack reports error 500 when handling the Azure response:

  GET https://_host.example.com/affwebservices/public/oauthtokenconsumer/
  <Cliend_Id>?code=<Code#>
  [...]

    HTTP/1.1 500 Internal Error occured while trying to process the request.
    Transaction ID: <Transaction ID> failed.
    Date: Wed, 17 Nov 2021 15:47:43 GMT
    Server: Apache
    X-Powered-By: ServletExec/6.0.0.2_39, Servlet/2.5, JSP/2.1

    The following error occurred: 500 - Internal Error occured while trying to process the request. Transaction ID:
    <Transaction ID> failed.

FWSTrace.log :

[11/17/2021][16:47:43][3901][92698368][<Transaction ID>][OAuthUtils.java][traceSensitiveMessage][Access token request: grant_type=authorization_code&code=<Code#> [...] &redirect_uri=https%3A%2F%2F_host.example.com%2Faffwebservices%2Fpublic%2Foauthtokenconsumer%2F<Cliend_Id>&client_id=<Cliend_Id>&client_secret=<Value not shown>]

[11/17/2021][16:47:46][3901][92698368][<Transaction ID>][FWSBase.java][getAllCAcerts][Obtained CA certificates from policy server. Total Certs received: 3]

[11/17/2021][16:47:46][3901][92698368][<Transaction ID>][MessageDispatcher.java][dispatchMessage][Dispatcher object thrown unknown exception while processing the message. Message: login.microsoftonline.com: Name or service not known.]

[11/17/2021][16:47:46][3901][92698368][<Transaction ID>][MessageDispatcher.java][dispatchMessage][Exception:

     java.net.UnknownHostException: login.microsoftonline.com: Name or service not known
      at java.net.Inet4AddressImpl.lookupAllHostAddr(Native Method)
      at java.net.InetAddress$2.lookupAllHostAddr(InetAddress.java:928)
      at java.net.InetAddress.getAddressesFromNameService(InetAddress.java:1323)

[11/17/2021][16:47:46][3901][92698368][<Transaction ID>][OAuth20Utils][sendClientMessage][Exception occured while sending an OAuth message: Exception occurred while message dispatcher (srca) object trying to send SOAP request message to the SAML producer.]

[11/17/2021][16:47:46][3901][92698368][<Transaction ID>][TokenConsumer.java][setupFailureDefault][Ending OAuth service request processing with HTTP error 500]

 

Environment

 

  Policy Server 12.8SP5 on RedHat 7;
  Web Agent Option Pack 12.52SP1CR09 on ServletExec 6 on RedHat 6;

 

Resolution

 

  • Set up communication with the login.microsoftonline.com and make sure that the FQDN is fully resolved on the Web Agent Option Pack machine;
  • To diagnose the FQDN problem further, open a console on the Web Agent Option Pack machine and run the following commands as root (1):

    # nslookup login.microsoftonline.com
    # dig login.microsoftonline.com
    # host login.microsoftonline.com

    And check that each command as well as that from /etc/hosts file the login.microsoftonline.com is resolved.

 

Additional Information

 

(1)

    A strange UnknownHostException