After user tries to access protected resource webagent verified if user have valid cookie usually SMSESSION or not if user is having valid cookie or not. If user is not having valid cookie then according to Authentication Scheme configuration webagent throws Login page(login.fcc) to the user. Even after entering valid credentials if still user is getting same login page (login.fcc) then we need to perform following steps:
- Verify the flow with HTTP Watch or Firebug or Fiddler, verify at what point it is redirecting to login page and verify that resource in Polices.
- Check the polices that are configured for that particular resource where user is getting redirected to login page
- Verify if user moving from one domain to other domain during login, if yes verify ACO settings.
- Verify Policy server access logs if user is getting authenticated/authorized.
- Verify Domain response where is being redirected after login/unauthenticated/unauthorized.
- Verify Webagent and Webagent Trace log if there is any error.
Hope this helps !!
Thanks :)
No comments:
Post a Comment