cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Showing results for 
Search instead for 
Did you mean: 

Community Tip - Need help navigating or using the PTC Community? Contact the community team. X

Unable to set up Form Based Authentication

tarik.wifak.p
13-Aquamarine

Unable to set up Form Based Authentication

Version: Windchill 13.0

 

Use Case: Switch from basic authentication in OOTB Windchill to form-based authentication following Help center instructions: https://support.ptc.com/help/windchill/r13.0.2.0/en/Windchill_Help_Center/WCAdvDeployGuide/WCAdvDepAuth_ConfigAltAuth_FormBasedAuth.html#


Description:

Hello,

 

First of all, when following the help center instructions, we couldn't found the resource without attribute in

<Windchill>/apacheConf/config/authResAdditions.xml file.

tarikwifakp_1-1730993145357.png

 

2- Where to put the configuration to let Tomcat knows that the app is configured with form-based, because it's not described in the help center page

 

3- The application url context does not redirect to the new form, it shows the following error:

 

tarikwifakp_0-1730992968266.png

 

 

 

ERROR : org.apache.catalina.core.ContainerBase.[Catalina].[localhost].[/Windchill].[MVCDispatcher]  - Servlet.service() for servlet [MVCDispatcher] in context with path [/Windchill] threw exception [wt.method.AuthenticationException] with root cause wt.method.AuthenticationException
        at wt.session.SessionAuthenticator.reauthenticateUser(SessionAuthenticator.java:251)
        at wt.session.SessionAuthenticator.getUserName(SessionAuthenticator.java:157)
        at wt.auth.AuthenticationServer.getUserName(AuthenticationServer.java:170)
        at wt.session.StandardSessionManager.getAuthenticationName(StandardSessionManager.java:500)
        at wt.session.StandardSessionManager.getPrincipal(StandardSessionManager.java:165)

 

 

The form is only displayed when requesting explicitly its URL: http://hostname/Windchill/login/login.jsp

 

tarikwifakp_2-1730993230572.png

 

 But after put the wcadmin credentials, it shows the following error:

tarikwifakp_3-1730993415596.png

 

Any help please!

 

@gdavid 

 

best regards,

ACCEPTED SOLUTION

Accepted Solutions

We finally found the issue in our case.

 

First of all, there is an ant command that execute all the configuration of FBA in a Windchill OOTB environment (to be executed in <tomcat>/configAuth :

ant -f authConfig.xml enable

This command update windchill properties and tomcat for a basic FBA.

 

In our case we detected that the realm was not well configured by this command and I added it manually in the tomcat server.xml and server.xml.default files.

 

After, it worked.

View solution in original post

3 REPLIES 3

Hi,

 

Have a look at this thread. 

https://community.ptc.com/t5/Windchill/Form-based-Authentication-or-Auto-quot-logoff-quot-after-10/m-p/964306#M81538

It may not solve your problem but it has lots of usefull info.

 

Cheers,

Bryan

gdavid
7-Bedrock
(To:BryanK)

Hello,

Thanks for you reply.

 

We checked this thread but it does not answer to our questions.

The goal is to configured the FBA in a standard Windchill PDMLink and it seems that we were unable to configure correctly the j_security_check mecanisum as in the topic you noticed.

After following the PTC documentation error page is always displayed (with HTTP code 200) and no logs from TOMCAT are generated:

gdavid_0-1731410211486.png

It seems that we missed a configuration.

We finally found the issue in our case.

 

First of all, there is an ant command that execute all the configuration of FBA in a Windchill OOTB environment (to be executed in <tomcat>/configAuth :

ant -f authConfig.xml enable

This command update windchill properties and tomcat for a basic FBA.

 

In our case we detected that the realm was not well configured by this command and I added it manually in the tomcat server.xml and server.xml.default files.

 

After, it worked.

Announcements


Top Tags