How to disable OneClick SAML authentication from the command line.
search cancel

How to disable OneClick SAML authentication from the command line.

book

Article ID: 370785

calendar_today

Updated On:

Products

Network Observability Spectrum

Issue/Introduction

How to disable OneClick SAML authentication from the command line.

Disabling SAML from the command line

Post upgrade we're unable to access One Click. We get 500 errors trying to access the OC admin site or WebApp.

We see an error in the catalina.out suggesting SAML configurations are breaking tomcat and preventing successful access to the application.

How can we manually disable the SAML integration without OC admin site access to disable it?

Resolution

Disable SAML integrations with Spectrum OneClick by making the following file changes.

NOTE: Please backup the context.xml and  web.xml files before making any changes.

  1. Open the <SPECROOT>/tomcat/conf/context.xml file.
    1. Find the line that states:
      1. com.aprisma.tomcat.authenticator.Saml2FederationAuthenticator
    2. Change it to the following.
      1. com.aprisma.tomcat.authenticator.SpectrumAuthenticator
    3. Save the change to the file.
  2. Open the <SPECROOT>/tomcat/webapps/spectrum/WEB-INF/web.xml file.
    1. Find the line that defined the <auth-method></auth-method> parameter.
    2. Change it's value from WSFED to FORM
    3. Save the change to the file.
  3. Stop the tomcat web server service if not already down.
  4. Restart the tomcat web server service.
  5. Monitor the <SPECROOT>/tomcat/log/catalina.out log file for errors.

Log in to the OC admin web UI or WebApp.

Powered by Wolken Software