Versions Compared

Old Version 1

changes.mady.by.user ubisebastian

Saved on

compared with

New Version Current

changes.mady.by.user ubisebastian

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Published by Scroll Versions from space IDS and version 8.4

...

The SSO Management API, Password Reset application, and Accounting Service reporting endpoints connect to the TLS secured SSO endpoints, so the SSO server certificate need to added to the trust store of the Java Runtime Environment. SSO and Accounting Service restart is required.

How to add the SSO server certificate to the JRE trust store

Finalize and verify Accounting Service installation

  1. Verify that Ubisecure SSO starts without errors. If you see the following kind of entry in the ubilogin/logs/uas3_diag.YYYY-MM-DD.log  file you have not updated LDAP with the new accounting.ldif added to the SSO 8.4. version and you need to return to this step in the installation / upgrade process and execute at least the import-changes script.

    Code Block
    languagetext
    YYYY-MM-DD hh:mm:ss,SSS init Server startup
control.ServiceUnavailableException: UAS
...
Caused by: login.InitException: Invalid SSO Accounting Service installation.
    at ubilogin.UAS.<init>(UAS.java:182)
    at servlet.Server.init(Server.java:348)
    ... 19 more
Caused by: com.ubisecure.ubilogin.service.spi.ServiceFactoryException: javax.naming.NameNotFoundException: [LDAP: error code 32 - No Such Object] [Root exception is LDAPException: No Such Object (32) No Such Object
LDAPException: Server Message: 0000208D: NameErr: DSID-03100288, problem 2001 (NO_OBJECT), data 0, best match of:
    'CN=Services,OU=System,<LDAP-suffix>'
 
LDAPException: Matched DN: CN=Services,OU=System,<LDAP-suffix>]; remaining name 'cn=Ubisecure Accounting,cn=Services,ou=System,<LDAP-suffix>'
    at com.ubisecure.ubilogin.service.spi.UbiloginServices.getEnvironment(UbiloginServices.java:123)
...

  2. If you see the following kind of entry in the ubilogin/logs/uas3_diag.YYYY-MM-DD.log  file Accounting Service has not properly started, check Troubleshooting Accounting Service.

    Code Block
    languagetext
    YYYY-MM-DD hh:mm:ss,SSS init Error in opening Accounting Service JMS connection in SSO startup. 
Accounting Service is a required component of SSO that needs to be functioning when running SSO.: 
javax.jms.JMSException: Could not connect to broker URL: tcp://localhost:36161?connectionTimeout=10. 
Reason: java.net.ConnectException: Connection refused (Connection refused): java.net.ConnectException: Connection refused (Connection refused)
YYYY-MM-DD hh:mm:ss,SSS init MessageQueueSender initialised with connection to Accounting Service broker URL: tcp://localhost:36161?connectionTimeout=10

  3. See Accounting Service finalization for the additional steps to accomplish.

...