Error: "Status : 403 Forbidden Error. Description : User Name Mismatch" using Token Authentication
(Last modified: 27Sep2005)
This document (10073011) is provided subject to the disclaimer at the end of this document.
fact
iChain 2.1
symptom
Error: "Status : 403 Forbidden Error. Description : User Name Mismatch" using Token Authentication
Problems getting RSA/SecureID and NMAS working with Token Authentication.
fix
Apply the following configuration changes from the README file on the iChain 2.0/2.1 Authorization Server CD:
2.3 Enabling RADIUS Authentication for RADIUS Servers that Do Not Return a Fully Qualified NDS Name
To enable RADIUS Authentication for RADIUS servers that do not return a fully qualified NDS name, two parameters in
the aclcheck authentication profile need to be set from the iChain command line:
set authentication aclcheck ldap bindanonymous=no
add authentication aclcheck ldap searchbase= o=novell (or appropriate container in your tree)
apply the changes
Alternatively, the iChain configuration wizard in ConsoleOne can be used to create/modify the RADIUS authentication profile. In the wizard, a text box will appear to add the searchbase.
note
To verify that the searchbase has been added, at the ICS Console type:
GET AUTHENTICATION ACLCHECK LDAP
and check the searchbase setting. It should appear similar to below:
>get authentication aclcheck ldap
authentication aclcheck ldap address = 137.65.2.1
authentication aclcheck ldap port = 390
authentication aclcheck ldap clientcertfile = acl.der
authentication aclcheck ldap enablesecure = No
authentication aclcheck ldap logintype = DN
authentication aclcheck ldap searchbase = O=novell
authentication aclcheck ldap bindanonymous = No
authentication aclcheck ldap bindusername = cn=admin;o=novell
authentication aclcheck ldap bindpassword = novell
authentication aclcheck ldap context = (currently no values assigned)
authentication aclcheck ldap fieldname = (currently no values assigned)
>
document
| Document Title: | Error: "Status : 403 Forbidden Error. Description : User Name Mismatch" using Token Authentication |
| Document ID: | 10073011 |
| Solution ID: | NOVL81215 |
| Creation Date: | 29Jul2002 |
| Modified Date: | 27Sep2005 |
| Novell Product Class: | Connectivity Products |
disclaimer
The Origin of this information may be internal or external to Novell. Novell makes all reasonable efforts to verify this information. However, the information provided in this document is for your information only. Novell makes no explicit or implied claims to the validity of this information.
Any trademarks referenced in this document are the property of their respective owners. Consult your product manuals for complete trademark information.