2335279 - kapsel logon receives basic authentication when cert revoked

Symptom

When a certificate is revoked or expired, custom Kapsel application is receiving a 401 challenge from SMP server instead of a new request to Afaria to request new certificate.

#RequestResponse###The certificate (chain) is not valid. |
#RequestResponse###Using key store type jks |
#RequestResponse###Using key store ./configuration/smp_keystore.jks |
#RequestResponse###Authentication of the user using SSL_CLIENT_HEADER value failed |
#Request received to retrieve factory |
#Calling com.sybase.security.integration.tomcat7.TomcatFactoryRetriever |
#request received to retrieve context |
instantiating retriever com.sybase.security.integration.tomcat7.TomcatContextRetriever |
trying to load class com.sybase.security.integration.tomcat7.TomcatContextRetriever from loader org.eclipse.osgi.internal.baseadaptor.DefaultClassLoader@6646073f[com.sap.security.csi.core-osgi:5.4.0.M6(id=239)] |
#RequestResponse### found and assignable |
5#RequestResponse###Calling com.sybase.security.integration.tomcat7.TomcatContextRetriever |
#RequestResponse###No AuthenticationEntryPoint was set during login attempt. Falling back to HTTP 401 + WWW-Authenticate |
#RequestResponse#401##<< Status Code: 401 |

Environment

SMP 3.0
SMP 3.0 SDK
Afaria

Product

SAP Afaria 7.0 ; SAP Mobile Platform 3.0 ; SAP Mobile Platform SDK 3.0

Keywords

certificate expired revoked kapsel, SMP 401 Authentication Certs, Kapsel logon basic authentication, SAP Mobile Platform revoked Certificate, SMP revoked certs , KBA , MOB-ONP , SAP Mobile Platform on Premise , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.