Problem

A Forum reader recently asked:

“I’ve created a simple acceleration in my NAM, following the instructions of adminguide.pdf. But I get this error from the accelerated web server:

300101047
An untrusted provider is being referenced in a request or a response"

And here is the response from Rowan Truscott …

Solution

To resolve the 300101047 issue,

1. Go to Access Gateways > Edit > Reverse Proxies / Authentication > Authentication Settings > Identity Server Cluster.

2. Verify the name of the IDP server/cluster here.

3. Make sure you can hit “http://dns-name:port/nesp/idff/metadata” with the browser, and that the ports match between the config of the IDP and AGW.

If the above two setting are correct, but you still have the problem,

4. Go to Access Gateways > Edit > Reverse Proxies / Authentication > Authentication Settings > Identity Server Cluster.

5. Set the Identity Server Cluster value to “None”.

6. Restart both the AGW and IDP service providers.

Go to Access Gateways > Edit > Reverse Proxies / Authentication > Authentication Settings > Identity Server Cluster:

7. Verify the name of the IDP server / cluster.

8. Restart both the AGW and IDP service providers

9. If you have reconfigured the IDP to use anything other than port 8080 or 8443, then you will need to add iptables commands to get the AG to talk to the IDP correctly:

iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j DNAT --to 
X.X.X.X:8080
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 443 -j DNAT --to 
X.X.X.X:8443

This Cool Solution also has some good info on some of these issues:

Changing Ports in Novell Access Manager 3.0.1

0 votes, average: 0.00 out of 50 votes, average: 0.00 out of 50 votes, average: 0.00 out of 50 votes, average: 0.00 out of 50 votes, average: 0.00 out of 5 (0 votes, average: 0.00 out of 5)
You need to be a registered member to rate this post.
Loading...Loading...
Categories: Uncategorized

Disclaimer: As with everything else at NetIQ Cool Solutions, this content is definitely not supported by NetIQ, so Customer Support will not be able to help you if it has any adverse effect on your environment.  It just worked for at least one person, and perhaps it will be useful for you too.  Be sure to test in a non-production environment.

Leave a Reply

No Comments
Jan 9, 2008
2:10 pm
Reads:
791
Score:
Unrated