IBM Support

Unable to authenticate using token login

Troubleshooting


Problem

WebSEAL has been configured for token authentication. However, when you try to login, you get the following error in the WebSEAL log.... xauthn_authenticate(): AceInit failed (201) 2005-08-29-10:52:10.215-06:00I----- 0x1321206E webseald WARNING ias general pdauthn.cpp 1646 0x0000003c HPDIA0110E An authentication mechanism module specific error occurred.

Resolving The Problem

The WebSEAL Administration Guide documents steps to enable access to the SecurID client library.....


To enable WebSEAL to access the SecurID client library, complete the following steps:
1. Change the permissions of the securid and sdconf.rec client configuration files to allow read access by the ivmgr group.

The following example assumes that the location of these files is the /opt/ace/data directory:

UNIX:

# cd /opt/ace/data
# chmod 444 securid
# chmod 444 sdconf.rec

Windows:

Set the Security Properties on the files to "Everyone".


2. Set the VAR_ACE environment variable to inform WebSEAL of the directory location of these two files.

The following example assumes the location of the files is the /opt/ace/data directory:

UNIX:

# export VAR_ACE=/opt/ace/data

Windows:

Start > Settings > Control Panel > System > Environment

If the VAR_ACE environment variable is not setup, as shown above, you will get the errors in question.

[{"Product":{"code":"SSPREK","label":"Tivoli Access Manager for e-business"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Component":"WebSEAL","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"All versions","Edition":"","Line of Business":{"code":"LOB24","label":"Security Software"}}]

Document Information

Modified date:
16 June 2018

UID

swg21215993

Page Feedback