DataPower AAA option "Use WS-Security Token First" for LTPA Authentication

Troubleshooting

Problem

Select AAA policy option "Use WS-Security Token First" when an LTPA token is provided in the SOAP header rather than in an HTTP header.

Symptom

Transaction processing may result in AAA failure and the following log messages

[aaa][warn] 0x83800015 ltpa authentication failed with (LTPA, )

[multistep][error] 0x01d30001 AAA Authentication Failure

if the input request is a SOAP message with an LTPA BinaryBinarySecurityToken in the SOAP header.

<soapenv:Header>

<wsse:Security>

<wsse:BinarySecurityToken ... ValueType="wsst:LTPA">

...

</wsse:BinarySecurityToken>

</wsse:Security>

</soapenv:Header>

[{"Product":{"code":"SS9H2Y","label":"IBM DataPower Gateway"},"Business Unit":{"code":"BU048","label":"IBM Software"},"Component":"General","Platform":[{"code":"PF009","label":"Firmware"}],"Version":"6.1;4.0.2;4.0.1;5.0.0;6.0.0;6.0.1","Edition":"","Line of Business":{"code":"LOB77","label":"Automation Platform"}}]

Log InLog in to view more of this document

This document has the abstract of a technical article that is available to authorized users once you have logged on. Please use Log in button above to access the full document. After log in, if you do not have the right authorization for this document, there will be instructions on what to do next.

Tips

DataPower AAA option "Use WS-Security Token First" for LTPA Authentication

Troubleshooting

Problem

Symptom

Log InLog in to view more of this document

Was this topic helpful?

Document Information

UID

Share your feedback

Need support?