?
Solved

Authentication failing after web domain change

Posted on 2003-03-06
11
Medium Priority
?
187 Views
Last Modified: 2013-12-18
Hi

We recently moved our website onto a different technology platform and server, and have subsequently pointed our domain name at the new server.

However, the Domino server that was providing the website is still serving our extranet.  We have pointed DNS to extranet.ourdomain.com, and changed the full Qualified host name to the same, along with the Host Name(s) on the the HTTP tab.

People can still not authenticate.  Previously, there was no problem going to www.ourdomain.com/extranet.

Anyone know of any other settings we need to change to resolve this.

Thanks in advance.
Ben
0
Comment
Question by:bjohns33
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 4
  • 2
  • +1
11 Comments
 
LVL 5

Expert Comment

by:AndrewJayPollack
ID: 8079795
they can't authenticate?  If its responding to them at all, (like asking for a password) then its not a dns or hostname binding issue.

It could be that passwords were not moved in the new configuration.

It could be that the new platform (is it unix based?) is case senstive on file names for databases where the old platform was not.

It could be that you have a security configuration document that specifies the old server name (look in the web configurations view in your nab).

Can you be more specific about the error you get?
0
 
LVL 1

Author Comment

by:bjohns33
ID: 8079959
Hi Andrew.

Sorry, I don't think I was clear enough.  The extranet is still sitting on the old server (the new website is .net based and unconnected to the exising server), so nothing has changed.

They are being prompted with the session authentication screen, but can never get past it.  Have checked the web configs, and nothing there other than a non-domain specific URL redirection.

The only thing that has changed in any of the configuration is that people are now accessing the server with the address extranet.domain.com instead of www.domain.com, and the two host name fields on the server doc to specify extranet.domain.com as the host.

Thanks again.
Ben
0
 
LVL 63

Expert Comment

by:Zvonko
ID: 8080182
This seams to be two or more errors coincidence.

To get a bit closer to what has happened I recommend this:
1.) Asking the user to access first this: http://extranet.domain.com/names.nsf
2.) If upper access is ok, then create a new Page in your server's names.nsf. Give this page a name like: myNames
On the page create two computed text fields. One should show @UserName and the other @UserNamesList

Compare the results to your ACL, especially the content of some extranet.dir if you use directory redirection.


Good luck,
Zvonko

Oh, and there are three places for internet host name in server document:
Basics\Fully qualified Internet host name
InternetProtocols\HTTP\Basic\Host name(s)
ServerTasks\InternetClusterManager\ICM hostname


The last one is mostly empty, but can bring confusion especially in search results.

0
Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 5

Expert Comment

by:AndrewJayPollack
ID: 8080755
yes.   I think this is a  coincidental ACL access issue, not an issue related to the domain or host name change.
0
 
LVL 1

Author Comment

by:bjohns33
ID: 8086866
Hi both, thanks so far!

Directory redirection isn't in place, so one less thing to worry about.  ICM host name is also blank.

With my notes id, accessing the NAB I have manager access.  I've reconfirmed my http password, and still can't even log into the NAB.

If it's any further clue, during the DNS change propogation, accessing the extranet through the www. prefix worked until the cutover, so it does seem to be tied into the change over to the extranet. prefix.

Very confused!

Thanks
Ben
0
 
LVL 1

Author Comment

by:bjohns33
ID: 8109919
The problem was eventually identified as a legacy SSO document that contained the domain name - this was used when we had Quickplace running, but was not removed when Quickplace was decommissioned.

Thanks
Ben
0
 
LVL 5

Expert Comment

by:AndrewJayPollack
ID: 8110285
DOH!  You got us, Ben.   We'll all file that one away for next time.  It honestly never occurred to me.
0
 
LVL 63

Expert Comment

by:Zvonko
ID: 8110305
Post a points refund request in this topic area:
http://www.experts-exchange.com/Community_Support/

Put the link to this question in that zero points request.

Regards,
Zvonko

0
 
LVL 5

Expert Comment

by:AndrewJayPollack
ID: 8110370
yeah, this is the first one that really deserves it.
0
 
LVL 1

Author Comment

by:bjohns33
ID: 8110448
Thanks both - wasn't deliberately trying to stump you!
0
 

Accepted Solution

by:
SpideyMod earned 0 total points
ID: 8253452
PAQ'd and all 200 points refunded

SpideyMod
Community Support Moderator @Experts Exchange
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

For Desktop Techs: How to retain a user's Notes configuration data when swapping out the end user's computer. (Assuming that you are not upgrading to a completely different version of Notes client) All you need to do is: 1) install Notes o…
You’ve got a lotus Domino web server, and you have been told that “leverage browser caching” is a must do. This means that we have to tell the browser everywhere in the web to use cache. In other words, we set (and send) an expiration date in the HT…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Have you created a query with information for a calendar? ... and then, abra-cadabra, the calendar is done?! I am going to show you how to make that happen. Visualize your data!  ... really see it To use the code to create a calendar from a q…
Suggested Courses

764 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question