SAP Knowledge Base Article - Preview

1783663 - SPNego Authentication based relogin failed in same browser after logoff

Symptom

SPNego Authentication failed in same browser after logoff.

  • The following error message appears in the web diagtool trace:
Authorization header not received. Original URL cookie found in request.
SPNego running in fallback mode.
Caused by: javax.security.auth.login.LoginException: SPNego authentication has 
failed during previous attempt

You will find Exception below with logon module "SPNegoLoginModule" in Authentication Stack during login.

spnego previous attampt.JPG
    
  • The following information can be found in an HTTPWatch trace:

 Cookie "com.sap.engine.security.authentication.original_application_url" with value still found
after logoff portal->redirect to "google" website automatically->enter portal URL again and relogon portal.
See the capture below with the sample value (the value of this cookie is NOT fixed as below):


  cookie.JPG


Read more...

Environment

Netweaver Application Server Java 7.3 SP0

Product

SAP NetWeaver 7.3

Keywords

SPNego redirect previous attempt original_application_url , KBA , BC-JAS-SEC-LGN , Logon, SSO , How To

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.