LTPA Token Is Not Being Created; Credentials Are Not Passed
 Technote (FAQ)
 
Problem
LTPA token is not being created upon authentication. Using SSO and server side LDAP authentication. Role information is not transferring to the other applications.

In this situation, you can log into the application ok the first time, but if it redirects to a protected resource it goes back to the login page instead of passing the credentials.
 
Cause
The ServerSideAuthenticator class was being used by this application. Server Side Authenticator does not create an LtpaToken cookie so the browser never receives authentication information to use on subsequent requests.
 
Solution
Use the SSOAuthenticator.login() method instead.

SSOAuthenticator has been deprecated in version 4.0, which means it will be removed in a future release. SSOAuthenticator is available for use in version 4.0; it is the only class available to perform custom-login for web clients when using LTPA, Single Sign-On(SSO), and WebSphere security.

SSOAuthenticator class is discussed in the WebSphere version 3.5 InfoCenter, section 5.4.3.3:

http://www-3.ibm.com/software/webservers/appserv/doc/v35/ae/infocenter/was/05040303.html

 
 
 


Document Information


Product categories: Software > Application Servers > Distributed Application & Web Servers > WebSphere Application Server > Security
Operating system(s): HP-UX
Software version: 4.0
Software edition:
Reference #: 1066811
IBM Group: Software Group
Modified date: Aug 1, 2004