DX Unified Infrastructure Management

 View Only
Expand all | Collapse all

NPC SSO Config

  • 1.  NPC SSO Config

    Posted Apr 11, 2018 07:17 AM

    We have NFA & ADA integrated with NPC. Now I'm facing an issue with LDAP SSO, New NetQoS users are unable to log in NFA & ADA but able to log in to NPC. Existing users can access NPC, NFA and ADA with out any issue.

    LDAP test is success from NPC, but in NFA & ADA its showing "Clone failure" for new users.

    Can anybody help with troubleshooting this issue ?

     

    Thank you,

    Jishin



  • 2.  Re: NPC SSO Config

    Posted Apr 11, 2018 09:55 AM

    Hello Jishin,

     

    Can you confirm the versions of NFA/ADA and NPC being used here?

    Q/ The new users were created in NPC? with access to the data sources, NFA/ADA?

     

    Regards, Shaun.



  • 3.  Re: NPC SSO Config

    Posted Apr 11, 2018 10:06 AM

    Hello Shaun,

     

    NPC 6.2
    NFA 9.3.3
    ADA 11.0

    Yes, New users are created in NPC with access to the data sources.

     

    Regards,

    Jishin



  • 4.  Re: NPC SSO Config

    Broadcom Employee
    Posted Apr 11, 2018 10:14 AM

    The new users need to login to NPC first, then after the next NPC sync with the data sources it should allow them to login to NFA/ADA directly.  If not try deleting the user in NPC, do a full resync, then have them login to NPC again, allow for a data source sync and have them try to login again.



  • 5.  Re: NPC SSO Config

    Posted Apr 12, 2018 06:33 AM

    Christopher_Walsh

    I have tried that, but no luck.



  • 6.  Re: NPC SSO Config

    Broadcom Employee
    Posted Apr 16, 2018 11:28 AM

    If you use the SsoConfig.exe tool and Test LDAP what are the exact errors you are seeing?

     

    Check the users in NPC and make sure they have product privileges to NFA.



  • 7.  Re: NPC SSO Config

    Posted Apr 16, 2018 01:39 PM

    @Christopher_Walsh

     

    SSO LDAP Test error

     

    User is having product privilege to NFA



  • 8.  Re: NPC SSO Config

    Broadcom Employee
    Posted Apr 16, 2018 04:17 PM

    Try changing the "Account User Clone" to "user" instead of "nquser" in the NFA's SsoConfig tool with a local override. 



  • 9.  Re: NPC SSO Config

    Posted Apr 26, 2018 05:45 AM

    Christopher_Walsh

    I have tried that but still getting same error.

     

    I have deleted some users from NPC and the same is not getting removed from NFA and I tried creating local users (Product auth) and those are not getting updated in data sources.



  • 10.  Re: NPC SSO Config
    Best Answer

    Broadcom Employee
    Posted Apr 26, 2018 09:58 AM

    Are there any sync failures in the Device Manager service log in NPC or in the \NFA\Reporter\logs\productSyncWs.log ?

     

    I am really not sure we can troubleshoot this much further via a communities post, we would likely need access to logs and your databases. 



  • 11.  Re: NPC SSO Config

    Posted May 03, 2018 10:23 AM

    Jishinlal Christopher_Walsh - how did we make out on this one? was case opened?



  • 12.  Re: NPC SSO Config

    Posted May 04, 2018 08:08 AM

    Christopher_WalshMelissaPotvin - This issue has been resolved automatically.