This site contains the documentation that is relevant to older WSO2 product versions and offerings.
For the latest WSO2 documentation, visit https://wso2.com/documentation/.

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Next »

The following are the solutions and possible workarounds that you can use for errors that you encounter.

ErrorSolution

org.wso2.carbon.server.admin.module.handler.AuthenticationHandler - Illegal access attempt while trying to authenticate APIKeyValidationService {org.wso2.carbon.server.admin.module.handler.AuthenticationHandler}

Check the following:

  • Did you change the default admin password? If so, you need to change the credentials stored in the <APIKeyManager> element of the <APIM_HOME>/repository/conf/api-manager.xml file of the API Gateway node(s).
  • Have you set the priority of the SAML2SSOAuthenticator handler higher than that of the BasicAuthenticator handler? If so, due to an issue in the SAML2SSOAuthenticator handler, it tries to manage the basic authentication requests that come to the publisher/store acs.jag as well.

As a workaround, set a lower priority to the SAML2SSOAuthenticator than the BasicAuthenticator handler in the authenticators.xml file as follows:

<Authenticator name="SAML2SSOAuthenticator" disabled="false">
	 <Priority>0</Priority>
	 <Config>
		<Parameter name="LoginPage">/carbon/admin/login.jsp</Parameter>
		<Parameter name="ServiceProviderID">carbonServer</Parameter>
		<Parameter name="IdentityProviderSSOServiceURL">https://localhost:9444/samlsso</Parameter>
		<Parameter name="NameIDPolicyFormat">urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</Parameter>
		<Parameter name="ISAuthnReqSigned">false</Parameter>
 <!-<Parameter name="AssetionConsumerServiceURL">https://localhost:9443/acs</Parameter>->
	 </Config>
</Authenticator>
  • No labels