Salesforce

How do I further debug AdminServer authentication problems?

Printable View
« Go Back

Information

 
TitleHow do I further debug AdminServer authentication problems?
URL NameP105328
Article Number000111835
EnvironmentProduct: Progress, OpenEdge
Version: 9.x, 10.x, 11.x
OS: All supported platforms
Question/Problem Description
How do I further debug adminserver authentication problems?
How do I turn on debugging for admin server authentication problems?
What switches can I use for admin server to assist in debugging authentication failure?
How to troubleshoot dbman asbman wtbman authentication error failure?
How to enable debug logging for openedge command line utilities where the user is authenticated with _oslocal authentication
Steps to Reproduce
Clarifying Information
Error Message
Defect Number
Enhancement Number
Cause
Resolution

To provide debug information for user authentication problems, set an environment variable:
PSC_AUTH_DEBUG. It just has to exist, the value doesn't matter.
 

[WINDOWS] set PSC_AUTH_DEBUG=D
[UNIX] PSC_AUTH_DEBUG=D; export PSC_AUTH_DEBUG
 

After setting the PSC_AUTH_DEBUG environment variable, authentication debugging information for the user account that tries to start or stop the AdminServer (proadsv) or run the *man cmds (dbman, asbman, wtbman, nsman) is created in an output file : "authdbg.log"

Example:  After starting the AdminServer successfully:

$   proadsv -start -port 22931 -adminport 22932

# authdbg.log

IN whoami
        {HOSTNAME} returns: DOMAIN\thisbeme
IN validate_account DOMAIN\thisbeme xxxxxx (null)
IN testUserPasswordForNull DOMAIN\thisbeme xxxxxx
        LookupAccountName for DOMAIN\thisbeme
        LookupAccountName returned domainNm = {DOMAIN}
IN {HOSTNAME}
        {HOSTNAME} returns: DOMAIN\thisbeme
IN validatePassword thisbeme xxxxxx {DOMAIN}
IN isGeneratedPassword = xxxxxxxx
IN authorizeUser thisbeme NULL {DOMAIN}
        Return status of authorizeUser = 1
        Return status of validate_account = 1


Example: Running an AdminServer Client that fails (example nsman)

$    nsman -query -name NS1 -port 22931 -user {username}

IN {HOSTNAME}
        {HOSTNAME} returns: DOMAIN\thisbeme
IN get_password Enter password for user [thisbeme] :  xxxxxx
IN GetConsoleInput
OUT GetConsoleInput
OUT get_password
Got password (length = 13)
IN validate_account thisbeme xxxxxx (null)
IN testUserPasswordForNull thisbeme xxxxxx
        LookupAccountName for thisbeme
        LookupAccountName returned domainNm = {DOMAIN}
IN {HOSTNAME}
        {HOSTNAME} returns: DOMAIN\thisbeme
IN validatePassword thisbeme xxxxxx {DOMAIN}
IN isGeneratedPassword = xxxxxxxx
IN validateUserPassword thisbeme xxxxxx {DOMAIN}
Failed to authenticate the user: The user name or password is incorrect.

        Return status of validate_account = 0
 

Since OpenEdge 10.2B authentication debugging was extended for process (permissions) on OpenEdge executable's, which provides the debugging output instead to PSCAUTH<pid>.log.  Further information is provided in Article:

Workaround
Notes
Keyword Phrase
Last Modified Date11/20/2020 6:57 AM
Powered by