Implementing SSO with OBIEE. Cannot log in
717256Aug 13 2009 — edited Aug 21 2009Hello,
I configured SSO for OBIE: e.g created the impersonator user, added it to the credential store and modified instaconfig.xml to point to it:
<credentialStore>
<CredentialStorage type="file" path="/usr/local/OracleBIData/web/config/credentialstore.xml" passphrase="XXX"/>
</credentialStore>
<Auth>
<SSO enabled="true">
<ParamList>
<!--IMPERSONATE param is used to get the authenticated user's
username and is required -->
<Param name="IMPERSONATE" source="httpHeader" nameInSource="SSOUSERNAME"/>
</ParamList>
</SSO>
</Auth>
Now when I launch an http request with the httpheader called SSOUSERNAME with a value of a valid user (e.g Administrator), I still get a "Not logged in" message from my http://xxx.xxx.xx.x:7777/analytics/saw.dll?dashboard webpage.
After looking at the saw log, I can see that:
---------------------------------------
Type: Error
Severity: 40
Time: Thu Aug 13 16:13:26 2009
File: project/webodbcaccess/odbcconnectionimpl.cpp Line: 371
Properties: ConnId-6,6;ThreadID-91
Location:
saw.odbc.connection.open
saw.connectionPool.getConnection
saw.threadPool
saw.threads
Odbc driver returned an error (SQLDriverConnectW).
State: 08004. Code: 0. [NQODBC] [SQL_STATE: 08004] [nQSError: 10018] Access for the requested connection is refused.
[nQSError: 43001] Authentication failed for Administrator in repository zri: invalid user/password. (08004)
---------------------------------------
Type: Error
Severity: 42
Time: Thu Aug 13 16:13:26 2009
File: project/webconnect/connection.cpp Line: 276
Properties: ThreadID-91
Location:
saw.connectionPool.getConnection
saw.threadPool
saw.threads
Authentication Failure.
Odbc driver returned an error (SQLDriverConnectW).
---------------------------------------
It is weird since it talks about username and password and password shouldnt be requested when using SSO. So im kinda lost.
Any idea?
Thanks.