Can someone please tell me how to make SSO work? I’m pulling my hair out
I am fairly new to openfire / spark. I now have Openfire 3.6.4 integrated by LDAP to my AD. I see an option in spark for SSO. But it just will not work. I have not found a thread yet on this forum or on google that helps.
After enabling sso option in Spark it does auto fill the correct username, but when I click Login the little icon twirls around for a bit saying it’s attempting to connect, but then an error pops up… Login Error… Unable to connect using Single Sign-On. Please check your principal and server settings.
Is there an easy fix? What are “principal and server settings”??
No, I have not, and how would I know I needed to do all that? I thought it was a simple a checking the option in Spark. Can someone point me to documentation on the steps I must take to make this work?
verify your dns records are correct. you’ll need to make sure you have a ptr records. Also, first try getting this working with a windows xp workstation. Do you have a 2003 domain controller? if not, you’ll need to do enabled DES encryption types on the 2008 domain controller. you can do this in the group policies or the local policy.
Thanks again, Speedy, but Spark still won’t sign in and gives the same error even after creating a pointer record and adjusting the encryption in the group policy. I don’t know if SSO is worth all this voodooooo…
ok, with the account you used to create the keytab file, try reseting the password. be sure to use the same password as before when you created the account and keytab.
also, after you forces a group policy refresh and rebooted your server?