This topic has 0 replies, 1 voice, and was last updated 2 years, 11 months ago by VipinEV.

  • Author
    Posts
  • #27276
     VipinEV
    Participant

    Hi Team,

    I am using OpenAM 11.0.3 with Web Agent 4.0.0. Seems like my initial policy validation getting successful but the subsequent gets failed. Below is what debug log shows.

    First validation
    —————-

    /Endpoint is enforced
    2019-12-14 00:42:35.163 +0000 DEBUG [0x7f3496ff7700:42811][source/process.c:890] validate_policy(): for https://www-devdpint.allianz.co.uk:443/CustSellServ/Services/CorrespondenceService/v1/Endpoint (ignoring pathinfo: no), entry status: success
    2019-12-14 00:42:35.163 +0000 WARNING [0x7f3496ff7700:42811] am_get_session_policy_cache_entry(): failed to locate data for a key (AQIC5wM2LY4Sfczf5ucE2Rn8VZFMXeWs0ryjxgfSSNQLO2U.*AAJTSQACMDEAAlNLABM0Njk5ODM3NDMzMTQ3NjgyNjQ2*)
    2019-12-14 00:42:35.163 +0000 DEBUG [0x7f3496ff7700:42811][source/process.c:938] validate_policy(): get session cache status: not found
    2019-12-14 00:42:35.163 +0000 DEBUG [0x7f3496ff7700:42811][source/utility.c:1651] get_valid_openam_url(): active OpenAM service url: https://www-devam.allianz.co.uk:18081/opensso (0)
    2019-12-14 00:42:35.163 +0000 DEBUG [0x7f3496ff7700:42811][source/utility.c:1756] am_timer(): getaddrinfo took 0 seconds
    2019-12-14 00:42:35.163 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client.c:496] sync_connect(): connected to www-devam.allianz.co.uk:18081 (IPv4)
    2019-12-14 00:42:35.163 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv2/v3 write client hello B (23WCHB)
    2019-12-14 00:42:35.164 +0000 DEBUG [0x7f3496ff7700:42811][source/net_ops.c:559] send_session_request(): sending 700 bytes
    2019-12-14 00:42:35.175 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 read server hello B (3RSH_B)
    2019-12-14 00:42:35.175 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 read server certificate B (3RSC_B)
    2019-12-14 00:42:35.175 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 read server key exchange B (3RSKEB)
    2019-12-14 00:42:35.175 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client_ssl.c:331] show_server_cert(): server certificate subject: /C=DE/O=Allianz/CN=www-devam.allianz.co.uk
    2019-12-14 00:42:35.175 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client_ssl.c:338] show_server_cert(): server certificate issuer: /C=DE/O=Allianz/CN=Allianz Infrastructure CA V
    2019-12-14 00:42:35.175 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 read server certificate request B (3RCR_B)
    2019-12-14 00:42:35.183 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 write client key exchange B (3WCKEB)
    2019-12-14 00:42:35.183 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 write change cipher spec B (3WCCSB)
    2019-12-14 00:42:35.183 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 write finished B (3WFINB)
    2019-12-14 00:42:35.187 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 read finished A (3RFINA)
    2019-12-14 00:42:35.187 +0000 DEBUG [0x7f3496ff7700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 read finished B (3RFINB)
    2019-12-14 00:42:35.189 +0000 DEBUG [0x7f3496ff7700:42811][source/net_ops.c:577] send_session_request(): response status code: 200
    <?xml version=”1.0″ encoding=”UTF-8″ standalone=”yes”?>
    <ResponseSet vers=”1.0″ svcid=”session” reqid=”0″>
    <Response><![CDATA[<SessionResponse vers=”1.0″ reqid=”1″>
    <GetSession>
    <Session sid=”AQIC5wM2LY4Sfczf5ucE2Rn8VZFMXeWs0ryjxgfSSNQLO2U.*AAJTSQACMDEAAlNLABM0Njk5ODM3NDMzMTQ3NjgyNjQ2*” stype=”user” cid=”id=DP_CSS_USER,ou=user,o=services,ou=services,dc=opensso,dc=java,dc=net” cdomain=”o=services,ou=services,dc=opensso,dc=java,dc=net” maxtime=”1440″ maxidle=”1440″ maxcaching=”2″ timeidle=”167″ timeleft=”81160″ state=”valid”>
    <Property name=”CharSet” value=”UTF-8″></Property>
    <Property name=”UserId” value=”DP_CSS_USER”></Property>
    <Property name=”FullLoginURL” value=”/opensso/UI/Login?realm=services”></Property>
    <Property name=”successURL” value=”/opensso/console”></Property>

    Second Validation
    —————–

    2019-12-14 00:42:35.432 +0000 DEBUG [0x7f34947f3700:42811][source/process.c:890] validate_policy(): for https://www-devdpint.allianz.co.uk:443/DocMgmt/Services/CommunicationService_Private/v1/Endpoint/Service.wsdl (ignoring pathinfo: no), entry status: success
    2019-12-14 00:42:35.432 +0000 WARNING [0x7f34947f3700:42811] am_get_session_policy_cache_entry(): failed to locate data for a key (AQIC5wM2LY4SfcxPDMHqev6L9dqIojeX0SYiSoXwCJ01GiY.*AAJTSQACMDEAAlNLABQtNTI3NDg3NTY0NTA1MTcwMjQ5OQ..*, WebSessionID=10.16.144.64.1576231619853480)
    2019-12-14 00:42:35.432 +0000 DEBUG [0x7f34947f3700:42811][source/process.c:938] validate_policy(): get session cache status: not found
    2019-12-14 00:42:35.432 +0000 DEBUG [0x7f34947f3700:42811][source/utility.c:1651] get_valid_openam_url(): active OpenAM service url: https://www-devam.allianz.co.uk:18081/opensso (0)
    2019-12-14 00:42:35.432 +0000 DEBUG [0x7f34947f3700:42811][source/utility.c:1756] am_timer(): getaddrinfo took 0 seconds
    2019-12-14 00:42:35.432 +0000 DEBUG [0x7f34947f3700:42811][source/net_client.c:496] sync_connect(): connected to www-devam.allianz.co.uk:18081 (IPv4)
    2019-12-14 00:42:35.433 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv2/v3 write client hello B (23WCHB)
    2019-12-14 00:42:35.433 +0000 DEBUG [0x7f34947f3700:42811][source/net_ops.c:559] send_session_request(): sending 748 bytes
    2019-12-14 00:42:35.444 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 read server hello B (3RSH_B)
    2019-12-14 00:42:35.444 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 read server certificate B (3RSC_B)
    2019-12-14 00:42:35.445 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 read server key exchange B (3RSKEB)
    2019-12-14 00:42:35.445 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:331] show_server_cert(): server certificate subject: /C=DE/O=Allianz/CN=www-devam.allianz.co.uk
    2019-12-14 00:42:35.445 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:338] show_server_cert(): server certificate issuer: /C=DE/O=Allianz/CN=Allianz Infrastructure CA V
    2019-12-14 00:42:35.445 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 read server certificate request B (3RCR_B)
    2019-12-14 00:42:35.453 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 write client key exchange B (3WCKEB)
    2019-12-14 00:42:35.453 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 write change cipher spec B (3WCCSB)
    2019-12-14 00:42:35.453 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 write finished B (3WFINB)
    2019-12-14 00:42:35.457 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 read finished A (3RFINA)
    2019-12-14 00:42:35.457 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSLv3 read finished B (3RFINB)
    2019-12-14 00:42:35.460 +0000 DEBUG [0x7f34947f3700:42811][source/net_ops.c:577] send_session_request(): response status code: 200
    <?xml version=”1.0″ encoding=”UTF-8″ standalone=”yes”?>
    <ResponseSet vers=”1.0″ svcid=”session” reqid=”0″>
    <Response><![CDATA[<SessionResponse vers=”1.0″ reqid=”1″>
    <GetSession>
    <Exception>AQIC5wM2LY4SfcxPDMHqev6L9dqIojeX0SYiSoXwCJ01GiY.*AAJTSQACMDEAAlNLABQtNTI3NDg3NTY0NTA1MTcwMjQ5OQ..*, WebSessionID=10.16.144.64.1576231619853480 Invalid session ID.AQIC5wM2LY4SfcxPDMHqev6L9dqIojeX0SYiSoXwCJ01GiY.*AAJTSQACMDEAAlNLABQtNTI3NDg3NTY0NTA1MTcwMjQ5OQ..*, WebSessionID=10.16.144.64.1576231619853480</Exception>
    </GetSession>
    </SessionResponse>]]></Response>
    </ResponseSet>
    2019-12-14 00:42:35.460 +0000 DEBUG [0x7f34947f3700:42811][source/net_ops.c:598] send_session_request(): status: invalid session
    2019-12-14 00:42:35.460 +0000 DEBUG [0x7f34947f3700:42811][source/net_ops.c:1163] am_agent_policy_request(): closing connection after failure
    2019-12-14 00:42:35.460 +0000 DEBUG [0x7f34947f3700:42811][source/net_client_ssl.c:590] net_ssl_msg_callback(): SSL negotiation finished successfully (SSLOK )
    2019-12-14 00:42:35.460 +0000 WARNING [0x7f34947f3700:42811] validate_policy(): retry 0 (remote session/policy call failure: invalid session)
    2019-12-14 00:42:35.460 +0000 WARNING [0x7f34947f3700:42811] am_remove_cache_entry(): cache data is not available (AQIC5wM2LY4SfcxPDMHqev6L9dqIojeX0SYiSoXwCJ01GiY.*AAJTSQACMDEAAlNLABQtNTI3NDg3NTY0NTA1MTcwMjQ5OQ..*, WebSessionID=10.16.144.64.1576231619853480)
    2019-12-14 00:42:35.460 +0000 DEBUG [0x7f34947f3700:42811][source/process.c:1707] handle_exit(): (entry status: invalid session)
    2019-12-14 00:42:35.460 +0000 DEBUG [0x7f34947f3700:42811][source/process.c:1685] find_active_login_server(): selected login url: https://www-devam.allianz.co.uk:18081/opensso/UI/Login?realm=services&goto=https%3A%2F%2Fwww-devdpint.allianz.co.uk%3A443%2FDocMgmt%2FServices%2FCommunicationService_Private%2Fv1%2FEndpoint%2FService.wsdl
    2019-12-14 00:42:35.460 +0000 DEBUG [0x7f34947f3700:42811][source/process.c:2166] handle_exit(): find_active_login_server value: https://www-devam.allianz.co.uk:18081/opensso/UI/Login?realm=services&goto=https%3A%2F%2Fwww-devdpint.allianz.co.uk%3A443%2FDocMgmt%2FServices%2FCommunicationService_Private%2Fv1%2FEndpoint%2FService.wsdl
    2019-12-14 00:42:35.460 +0000 DEBUG [0x7f34947f3700:42811][source/apache/agent22.c:464] set_custom_response(): status: redirect (exit: redirect)

Viewing 1 post (of 1 total)

You must be logged in to reply to this topic.

©2022 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?