Single Sign-on issues

Hi

I’m trying to configure Kerberos based Single Sign-On authentication without success
Any hint would be appreciated.

Browsers tried: Firefox, Chrome and IE

Extract from tomcat stdout log file:

Looking for keys for: HTTP/@
Added key: 18version: 84

EType: sun.security.krb5.internal.crypto.Aes256CtsHmacSha1EType
KrbAsRep cons in KrbAsReq.getReply HTTP/ipcwt040.ecbt1.tadnet.net
principal is HTTP/@
Will use keytab
Commit Succeeded

Found KeyTab F:\Knime\Server\apache-tomcat-9.0.54\conf\tomcat.keytab for HTTP/@
Found KeyTab F:\Knime\Server\apache-tomcat-9.0.54\conf\tomcat.keytab for HTTP/@
Found ticket for HTTP/@ to go to krbtgt/@ expiring on Mon Oct 03 21:38:24 CEST 2022
[Krb5LoginModule]: Entering logout
[Krb5LoginModule]: logged out Subject

I interpret that a ticket was successfully found and authentication should indeed succeed

However, the message I get is that authentication failed

Any ideas about where to look for issues?

1 Like

Kerberos is rather difficult to debug via a forum post. I would suggest opening a support ticket, and setting up a call to work with the KNIME team interactively.

1 Like