Hello, I have setup ArcGIS Enterprise in a development environment that includes an ArcGIS web adaptor (IIS), portal and server all on separate virtual machines. For the web adaptor IIS settings, I have disable anonymous access and enabled windows authentication and have successfully tested IWA. Users are able to sign in through a web browser without providing any sort of credentials. I am now in the process of connecting Collector for ArcGIS to the portal on an iOS (iPad) device. The iPad is AirWatch enabled and successfully connects to our network. I select ArcGIS Enterprise and fill out the portal connection as https://.domain.com/portal , where portal is the name of the web adaptor. However, upon login I am unable to able to pass credentials through the sign in. I have try to include both the domain name formats (username@domain or domain\username) and without the domain with no luck. The only return is error "cancelled". I have some questions:
I am also having the same issue. We have one environment with IWA and are unable to pass credentials in Collector when trying to sign on to our Enterprise environment. We are also seeing the same issue when trying to sign in to Portal through a web browser. We have another environment without IWA and are able to sign in using Portal assigned credentials with no issues.
As it turns out, we need to open up both port 443 on the web adaptor box and port 7443 on the portal box for the AirWatch VPN clients. I'm not exactly sure, but it seemed as though even when you try to hit the web adaptor at 443, the client will still need to contact the portal box directly. Thus every time I was trying to hit the portal for authentication I was being denied by the fire wall and getting a canceled response.
Thank you for letting me know this Sam. We will give this a try.
Senior GIS Analyst | GeoEngineers, Inc.
8410 154th Avenue NE
Redmond, WA 98052
Did opening port 7443 on the web adaptor and portal boxes solve the issue?
The problem was resolved after opening up 7443 on the portal box. Only 443 is open on the web adaptor box.