Chat now with support
Chat with Support

Enterprise Single Sign-On 9.0.2 - Authentication Manager for Linux Thin Clients Installation Configuration Guide

Logging on with your Login and Password

Logging on with your Login and Password

Subject

This section explains how to connect to a roaming session on a Linux thin client with your login and password.

Description

To log on, the user needs to provide his login, password and domain.

Once the credentials are successfully checked by EAM, the start script is executed.

When a new authentication is requested, the end script is executed.

NOTE: No roaming session is started, only the scripts are started/ended.

 

Resetting your Password

Resetting your Password

Subject

You can reset your password by answering a series of personal questions.

Pre-requisite

You must have defined a series of personal questions & answers with Authentication Manager.

Description

You must answer your personal questions to be able to reset your password.

Once the questions are successfully checked by EAM, you must define a new password.

NOTE: A PFCP (Password Format Control Policy) may be displayed to help you define your new password.

A. Customizing Messages

Customizing Messages

Subject

The default message catalog file provided is rsUserAuth.cat. The text of the messages can be customized and located, therefore a new message catalog must be generated. When:

  • No message catalog path is set as rsUserAuth argument (through a command line or the configuration file), this new message catalog must be named rsUserAuth.cat and installed in the same directory as the rsUserAuth binary.
  • A message catalog path is set, you must install and name the message catalog according to the configuration parameter.

Procedure

  1. Edit the provided rsUserAuth.msg file.
  2. You can change the text for each message, but you must respect the format for each of them. Example:
    2 Internal error.\nPlease contact your administrator.

Can be changed into
2 Please contact the helpdesk.

  1. When you have finished with your modifications, save your updates in a new file (for example: my_rsUserAuth.msg) and then generate the message catalog (for example my_rsUserAuth.cat) as follows:
    gencat my_rsUserAuth.cat my_rsUserAuth.msg

NOTE: rsUserAuth cannot start if the message catalog is unavailable.

 

 

 

B. rsUserAuth Log File

rsUserAuth Log File

Each time rsUserAuth starts, a log file named rsUserAuth_pid.log is created.

Depending on your needs, different levels of trace can be selected: none, low, medium, high, details.

Each log information is preceded by the date and time.

IMPORTANT: No cleaning mechanism or control of space directory are implemented..

Here are the first lines of the rsUserAuth log file:

16/09/22 10:51:07.443 :START :0000 ***

16/09/22 10:51:07.444 :START :0000 *** Trace File for rsUserAuth

16/09/22 10:51:07.444 :START :0000 *** Trace Level=4

16/09/22 10:51:07.444 :START :0000 *** rsUserAuth version 1.4.6110

16/09/22 10:51:07.444 :START :0000 *** rsUserAuth pid 16747

16/09/22 10:51:07.444 :START :0000 ***

16/09/22 10:51:07.444 :START :0000 *** system name Linux

16/09/22 10:51:07.444 :START :0000 *** release 3.2.0-4-686-pae

16/09/22 10:51:07.444 :START :0000 *** version #1 SMP Debian 3.2.51-1

16/09/22 10:51:07.444 :START :0000 *** machine i686

16/09/22 10:51:07.444 :START :0000 ***

16/09/22 10:51:07.444 :RoamingEngine.cpp :0336 message catalog opening...(null)

16/09/22 10:51:07.444 :RoamingDisplay.cpp :0010 RoamingDisplay (null)

16/09/22 10:51:07.444 :RoamingDisplay.cpp :0034 the catalog of messages is open

16/09/22 10:51:07.444 :RoamingEngine.cpp 0339 message catalog ret 1

16/09/22 10:51:07.444 :RoamingEngine.cpp :0477

configuration parameters

url: https://129.182.77.106:9765/soap

startExec: /etc/rsUserAuth/start.bash

endExec: /etc/rsUserAuth/stop.bash

tapping mode: off

tappingDelay: 5

welcome: on

secret_Path:

messages_Path:

Cacert_Path: /etc/rsUserAuth

smartcard_pkcs_library:

PasswordAuthenticationMethod: on

 

16/09/22 10:51:07.444 :RoamingEngine.cpp :0592 list of web servers :

16/09/22 10:51:07.444 :RoamingEngine.cpp :0596 https://129.182.77.106:9765/soap

16/09/22 10:51:07.444 :RoamingEngine.cpp :0690 arg_caCrt is a directory

16/09/22 10:51:07.444 :RoamingSession.cpp :1175 selected protocol: https

16/09/22 10:51:07.444 :RoamingSession.cpp :1183 web service : https://129.182.77.106:9765/soap

16/09/22 10:51:07.444 :RoamingSession.cpp :1186 certificate: /etc/rsUserAuth

16/09/22 10:51:07.453 :RoamingSession.cpp :1249 soap_call___wgws__GetVersion (https://129.182.77.106:9765/soap) version = 9.1.0

16/09/22 10:51:07.453 :RoamingSession.cpp :0096 init_for_soap successful

16/09/22 10:51:07.453 :RoamingEngine.cpp :0775 InitSoap successful

16/09/22 10:51:07.456 :RoamingEngine.cpp :0791 InitSessionKey successful

16/09/22 10:51:07.460 :Cpkcsmon.cpp :0062 Pkcs is not configured

16/09/22 10:51:07.460 :Cpcscmon.cpp :0039 !m_Pkcs->IsInit

16/09/22 10:51:07.460 :Cpcscmon.cpp :0043 Pkcs is unavailable

16/09/22 10:51:07.460 :Cpcscmon.cpp :0051 Put Card on Reader

16/09/22 10:51:07.461 :Cpcscmon.cpp :0168 2 PC/SC readers found

16/09/22 10:51:07.461 :Cpcscmon.cpp :0272 Reader 0: OMNIKEY CardMan (076B:5321) 5321 00 00

 

16/09/22 10:51:07.461 :Cpcscmon.cpp :0275 Card state:

16/09/22 10:51:07.461 :Cpcscmon.cpp :0288 No card in the reader

16/09/22 10:51:07.461 :Cpcscmon.cpp :0272 Reader 1: OMNIKEY CardMan (076B:5321) 5321 00 01

 

16/09/22 10:51:07.461 :Cpcscmon.cpp :0275 Card state:

16/09/22 10:51:07.461 :Cpcscmon.cpp :0288 No card in the reader

16/09/22 10:51:09.436 :Cpcscmon.cpp :0272 Reader 1: OMNIKEY CardMan (076B:5321) 5321 00 01

 

16/09/22 10:51:09.436 :Cpcscmon.cpp :0275 Card state:

16/09/22 10:51:09.436 :Cpcscmon.cpp :0299 Card present

 

16/09/22 10:51:09.436 :Cpcscmon.cpp :0327 Card ATR:

16/09/22 10:51:09.436 :Cpcscmon.cpp :0334 3b8f8001804f0ca000000306030001000000006a

16/09/22 10:51:09.436 :Cpcscmon.cpp :0432 has_UID...

16/09/22 10:51:09.443 :RoamingEngine.cpp :1315 onCardInsert 9AF989A2

 

16/09/22 10:51:09.443 :RoamingEngine.cpp :1366 Badge inserted at 1474534269.

16/09/22 10:51:09.443 :RoamingEngine.cpp :1374 onCardInsert tapping mode false , badge no previous

16/09/22 10:51:09.443 :RoamingEngine.cpp :1082 getSession

16/09/22 10:51:09.443 :RoamingSession.cpp :0629 RetrieveRoamingSession ...

16/09/22 10:51:09.443 :RoamingSession.cpp :0649 RetrieveRoamingSession for badge started

16/09/22 10:51:09.443 :RoamingSession.cpp :0359 SetRetrieveRoamingSessionDataIN ret: 0x0

16/09/22 10:51:09.443 :RoamingSession.cpp :0662 soap_call___wgws__RetrieveRoamingSession...

 

16/09/22 10:51:09.523 :RoamingSession.cpp :0665 soap_call___wgws__RetrieveRoamingSession

 

16/09/22 10:51:09.523 :RoamingSession.cpp :0462 GetRetrieveRoamingSessionDataOUT ret: 0x0

16/09/22 10:51:09.523 :RoamingSession.cpp :0718 RetrieveRoamingSession ret: 0x0

16/09/22 10:51:09.523 :RoamingSession.cpp :1327 RetrieveRoamingSession 0x0

16/09/22 10:51:09.523 :RoamingSession.cpp :1328 Version : 2

16/09/22 10:51:09.523 :RoamingSession.cpp :1329 UserDomain : dev.ua.dom

16/09/22 10:51:09.523 :RoamingSession.cpp :1330 UserLogin : Alix

16/09/22 10:51:09.523 :RoamingSession.cpp :1331 UserPassword :

16/09/22 10:51:09.523 :RoamingSession.cpp :1332 UserPrincipalName : Alix@dev.ua.dom

16/09/22 10:51:09.523 :RoamingSession.cpp :1333 UserGUID : 05f5bbe53a62cd4e9b2a70529ebe6c77

16/09/22 10:51:09.523 :RoamingSession.cpp :1334 PINRequired : true

16/09/22 10:51:09.523 :RoamingSession.cpp :1335 PINNotInitialized : false

16/09/22 10:51:09.523 :RoamingSession.cpp :1336 RetrieveRoamingSession 0x0

16/09/22 10:51:09.523 :RoamingSession.cpp :1356 roaming session does not exist

16/09/22 10:51:09.523 :RoamingSession.cpp :1398 getRoamingSession result 0x0

16/09/22 10:51:09.523 :RoamingEngine.cpp :1112 getSession result : 0x0

16/09/22 10:51:09.523 :RoamingEngine.cpp :1172 getSession : password is empty

16/09/22 10:51:09.523 :RoamingEngine.cpp :1179 getSession : PIN is required

16/09/22 10:51:10.772 :Cpcscmon.cpp :0272 Reader 1: OMNIKEY CardMan (076B:5321) 5321 00 01

 

16/09/22 10:51:10.772 :Cpcscmon.cpp :0275 Card state:

16/09/22 10:51:10.772 :Cpcscmon.cpp :0288 No card in the reader

16/09/22 10:51:10.772 :RoamingEngine.cpp :1424 Badge withdrawn 1 s after detection.

16/09/22 10:51:10.772 :RoamingEngine.cpp :1435 onCardRemove bTapping true

16/09/22 10:51:10.772 :RoamingEngine.cpp :1468 onCardRemove (tapping mode) no previous

16/09/22 10:51:13.397 :RoamingEngine.cpp :3179 onRFIDPinCode

 

16/09/22 10:51:13.397 :RoamingEngine.cpp :2995 StartAndCheckSession : startNewSession ...

16/09/22 10:51:13.397 :RoamingSession.cpp :0728 InitiateRoamingSession ...

16/09/22 10:51:13.397 :RoamingSession.cpp :0749 InitiateRoamingSession for user '05f5bbe53a62cd4e9b2a70529ebe6c77' started

16/09/22 10:51:13.397 :RoamingSession.cpp :0527 SetInitRoamingSessionDataIN ret: 0x0

16/09/22 10:51:13.765 :RoamingSession.cpp :0597 GetInitRoamingSessionDataOUT ret: 0x0

16/09/22 10:51:13.765 :RoamingSession.cpp :0816 InitiateRoamingSession ret: 0x0

16/09/22 10:51:13.765 :RoamingSession.cpp :1595 InitiateRoamingSession 0x0

16/09/22 10:51:13.765 :RoamingSession.cpp :1615 roaming session does not exist

16/09/22 10:51:13.765 :RoamingSession.cpp :1676 startNewSession returns 0x0

16/09/22 10:51:13.765 :RoamingEngine.cpp :2999 startNewSession ret = 0

16/09/22 10:51:13.765 :RoamingEngine.cpp :3008 StartAndCheckSession : startNewSession successful

16/09/22 10:51:13.766 :RoamingEngine.cpp :3029 Roaming Session is valid -> Starting /etc/rsUserAuth/start.bash with its arguments

 

Related Documents