Community

Problems in Windows Authentication with Portal 10.7

649
5
03-11-2020 02:05 PM
SoratoSouza_e_Silva
by
Occasional Contributor II
‎03-11-2020 02:05 PM

Hi all,

I'm having trouble configuring windows users with the portal for arcgis.

I´m using the JSON below, from documentation:

{   "type": "WINDOWS",   "properties": {     "userPassword": "xxxx",     "isPasswordEncrypted": "false",     "user": "xxxx\\xxxxx",     "userFullnameAttribute": "cn",     "userEmailAttribute": "mail",     "caseSensitive": "false"   } }

All user from my AD appear in list correctly. I can setup the role and user type for them.

The connection work properly, but in portal, in the last window,  the user can´t add. A red message appear in top of portal.

the following member cannot be added: user @ DOMAIN.

Why this happens?

Thank´s

Tags (1)
0 Kudos
5 Replies
ArchitSrivastava
by
Occasional Contributor II
‎03-11-2020 10:27 PM

Hello Sorato Marques‌,

It would be a good way to switch ArcGIS Enterprise Portal's Logging level to "DEBUG" and then reproduce the issue. This will allows up to understand more about what is happening and look into more details depending on that.

Can you share logs, would help in understanding the cause.

0 Kudos
SoratoSouza_e_Silva
by
Occasional Contributor II
‎03-12-2020 05:20 AM

Follows the logs files.

I can to connect the identity store outside Arcgis Server!

Thank´s

0 Kudos
JonathanQuinn
by Esri Notable Contributor
Esri Notable Contributor
‎03-12-2020 11:10 AM

Any firewall between the portal machine and your domain controller?

SoratoSouza_e_Silva
by
Occasional Contributor II
‎03-12-2020 11:24 AM

No, there is no firewall between the portal machine and domain controller.

0 Kudos
ArchitSrivastava
by
Occasional Contributor II
‎03-12-2020 10:13 PM

Sorato Marques‌,

Thanks for sharing the logs. There are several points, I think we can look at. I did some digging on the ports shown in the logs in regards to when these would be used, kindly find the doc URL below:

https://support.microsoft.com/en-in/help/179442/how-to-configure-a-firewall-for-domains-and-trusts  

As asked by Jonathan Quinn‌, I think, running a check for firewall and the ports could help.

Additionally, searching ESRI docs, I found only one mention of "Connectivity issue" which actually does not have the same error message, kindly find the doc below:

Common problems and solutions—Portal for ArcGIS (10.8) | Documentation for ArcGIS Enterprise 

The reason I think that the issue could be associated to this is "As mentioned in the initial post The connection work properly, but in portal, in the last window,  the user can´t add. A red message appear in top of portal. "

This makes me think that ArcGIS Enterprise Portal is able to connect to AD but that seems to be breaking (not sure of the reason). Hence, if possible you can try adding the parameter "domainControllerAddress" and "domainControllerMapping" and check if this helps

Configure the domain controller used by Portal for ArcGIS—Portal for ArcGIS (10.7 and 10.7.1) | Docu... 

Hope it helps!

0 Kudos