By output, I mean turn on the debug stuff in Spark so you can see the XML packets that go back and forth. If you want, just send all the server output. But Im looking for the step right before the client attempts to authenticate.
Here is the Raw Received Packets window contents:
<?xml version='1.0' encoding='UTF-8'?>stream:featuresPLAINANONYMOUSzlib</stream:features>
</stream:stream>
Openfire is not advertising GSSAPI. The old way was in the openfire.xml config file, but its now been moved into the System Properties (in the admin console). Set the property sasl.mechs to GSSAPI. You might need to restart Openfire, you might not. I dont recall how well that property is cached.
If that is already set as such, then check the openfire logs to see why it rejected it.
Ok so there was no System Property at all named that.
So I created **sasl.mechs **name and put the value of GSSAPI. I restarted the openfire server and it still failed but the spark debugger shows more activity back and forth than before. The new log from spark Raw Received packets show:
<?xml version='1.0' encoding='UTF-8'?>stream:features
zlib
</stream:features>
zlib
</stream:features>
thomas
thomasspark</r esource>
I still don’t see GSSAPI anywhere in that packet above.
Here is the latter part of openfire.xml:
org.jivesoftware.database.EmbeddedConnectionProvider
true
false
Here is a simplified version of that config from a working server:
GSSAPI,CRAM-MD5,DIGEST-MD5,PLAIN,EXTERNALDOMAIN.COM
true
C:\Program Files\Openfire\conf\gss.conf
false
Substitue your proper information into the tag, and the tag.
Ok added that and it didn’t work.
Spark raw received packet:
<?xml version='1.0' encoding='UTF-8'?>stream:features
GSSAPI</mechani sms>zlib
</stream:features>
GSSAPI</mechani sms>zlib
</stream:features>
thomas
thomasspark</r esource>
Current openfire.xml:
<?xml version="1.0" encoding="UTF-8"?>9090
9091
en
org.jivesoftware.database.EmbeddedConnectionProvider
GSSAPI,CRAM-MD5,DIGEST-MD5,PLAIN,EXTERNAL
TECHLINK.LOCAL
true
false
However notice that after the openfire server starts it COMPLETELY deletes the:
C:\Program Files\Openfire\conf\gss.conf
false
Several parts of the XML config have been moved into the server properties (stored in the database) from the original implementation. The solution Jive employed was to take the value from the file, import it into the DB, then delete it from the file. That is normal.
Now that Openfire is advertising the GSSAPI method, the focus is back on Spark, since it has decided to not use GSSAPI. Do the logs for spark show anything different now?
Which part of the debug log? I posted the new raw recieve packet above.
Raw Sent:
<stream:stream to=“techlinkserver.techlink.local” xmlns=“jabber:client” xmlns:stream=“http://etherx.jabber.org/streams” version=“1.0”>
<stream:stream to=“techlinkserver.techlink.local” xmlns=“jabber:client” xmlns:stream=“http://etherx.jabber.org/streams” version=“1.0”>
thomas
thomasspark</r esource>
Connection 1 Packet window shows(showing ‘type’ in brackets):
[Get]
thomas[Set]
thomas spark[Result]
thomas[Error]
thomas spark