Error Loading Web Sso Configuration Domino
on; session-based authentication; ltpa token; Domino Server; Internet; Web Server; http; http server; "HTTP Server: Error loading Web SSO Configuration 'LtpaToken' (Single Sign-On configuration is invalid)"; "HTTP: Error loading Web SSO configuration Reverting to single-server session authentication" Technote (FAQ) Question You enable a Lotus Domino server for multi-server session authentication, also called Single Sign-On (SSO), and create the Web SSO Configuration document. When you load the HTTP task, however, you notice the following error: "HTTP Server: Error loading Web SSO Configuration 'LtpaToken' (Single Sign-On configuration is invalid)" (for Domino 6.x) or "HTTP: Error loading Web SSO configuration Reverting to single-server session authentication" (for Domino 5.x) To troubleshoot the issue, you try the following steps: - Recreate the SSO document. - Create the SSO document with the Server ID instead of an Administrator ID. - Verify that the server you are testing with is listed in the "Participating Servers" section of the SSO document. - Verify that the public keys from the Server or Administrator ID match those from the Server or Person document. - Recreate the SSO document with only one participating server (the entry in the "Domino Server Names" field). While the error remains after trying the first four steps, SSO loads successfully after you list only one participating server. Why would removing certain servers from the "Domino Server Names" field allow SSO to load successfully? Answer In one particular case, the error occurred due to the presence of the Domino server's name as an alternate name in a Person document. When the SSO Configuration document is saved, it is encrypted for the creator of the document, the members of the Owners and Administrators fields, and the servers specified in the Domino Server Names field. In implementing the encryption, the Do
Training Support Forums & community Events Rational Tivoli WebSphere Java technology Linux Open source SOA and Web services Web development XML My developerWorks About dW Submit content Feedback developerWorks>Lotus>Forums & community>Notes/Domino 8 Forum Notes/Domino 8 Forum Sign in to participate Previous Next Subject: HTTP Server: Error loading Web SSO Configuration 'LtpaToken' (Single Sign-On configuration is invalid) Feedback Type: Problem Product Area: Domino Server Technical Area: Administration Platform: Windows 2003 server Release: 8.0.2 Reproducible: Always Hello, I'm triyng to configure a SSO between Websphere and Domino 8.5.2 But after configuring the server, when I restart the http://www-01.ibm.com/support/docview.wss?uid=swg21100774 http tasks the server shows the following message : HTTP Server: Error loading Web SSO Configuration 'LtpaToken' (Single Sign-On configuration is invalid) I followed these steps for the configuration: STEP1-I create the SSO configuration document In the server configuration document : Create Web button > SSO Configuration -------------------------- ---Token Configuration--- -------------------------- >Configuration: "CustomLtpaToken" >Organisation: blanck >DNS Domain : ".mycompanyname.com" >Maps Names in LTPA tokens : Disabled >Require http://www-10.lotus.com/ldd/nd8forum.nsf/DateAllFlatWeb/add104f8e517329785257a23003ba94e?OpenDocument SSL protected com. : Disabled >Restrict use of the SSO token[..]: Disabled -------------------------- --- Participating Servers--- -------------------------- >Domino server Names: black, because only the current server will be accessed by the WebSphere Server. > Windows single sign-on integration : Disabled -------------------------- --- Token Expiration------ -------------------------- Expiration : 30 Idle Session timeout : no enabled STEP2- I import the LTPAKey ... Keys>ImportWebsphere LTPA Key.. And the keys are succefully imported... ... a new section is created in the doc : -------------------------- --- Websphere Information- -------------------------- > Token Format:LtpaToken (compatible with Domino 7 and prior releases) > LDAP Real : "mycompany.com:389" (the same domain name value as in the DNS Domain Field..) > LTPA Version :1,0 The Web SSO Configuration document is located under the WEB\Web Server Configuration view.. STEP3 - I configure the SSO in the server document, Internet Protocol Tab > Domino webEngine Tab> HttpSession section > >Session Authentication: Multiple Servers (SSO) >Web SSO Configuration : I select the "mycustonLtpaToken" document just created before. The issue occurs when I restart the http task on the server I got no messages : HTTP Server: Error loading Web SSO Configuration 'customLtpaToken' (Single Sign-On configuration is invalid) There are no other message
category IBM iNotes 9.0 Social Edition - Administering IBM iNotes 9.0 Social Edition - Using IBM Notes 9.0 Social Edition IBM Notes https://www-10.lotus.com/ldd/dominowiki.nsf/dx/domino-webserver-authentication-troubleshooting Traveler 9.0 - Administering IBM Notes Traveler 9.0 - Using Lotus Notes 8.5.3 Documentation Lotus Notes Traveler 8.5.3 Administration Documentation Lotus Notes Traveler 8.5.3 Usage Documentation Custom Search Scope... Search Community Articles > Lotus Domino > Domino Web server > Domino Webserver Authentication Troubleshooting New Article Share ▼ Subscribe ▼ About the Original error loading AuthorLouis OrensteinContribution Summary:Articles authored: 1Articles edited: 1Comments Posted: 0 Recent articles by this author Domino Webserver Authentication Troubleshooting Domino Webserver Authentication Troubleshooting Table of Contents If you are having problems logging in Problems Moving Between Servers using SSO Problems with Timeouts when using SSO If you are having problems logging in to your Domino error loading web server using a web browser you can follow this script to ... Domino Webserver Authentication TroubleshootingAdded by Louis Orenstein | Edited by Amy Smith on July 31, 2012 | Version 4 Edit More Actions ▼ AbstractAbstractNo abstract provided.Tags: authentication, Domino, http, web, troubleshooting Domino Webserver Authentication Troubleshooting Table of Contents If you are having problems logging in Problems Moving Between Servers using SSO Problems with Timeouts when using SSO If you are having problems logging in to your Domino server using a web browser you can follow this script to try to diagnose the problem. Before beginning you should make sure Internet Explorer has it's "Show friendly HTTP error messages" option disabled: You can access this option using the "Tools -> Internet Options" menu in Internet Explorer. Sometimes these friendly error messages can mask more informative errors returned from the Domino server. If you are having problems logging in: 1. If you see the standard browser popup window promp