If you have configured your authentication settings but still experience problems when trying to log in, you can use CentraSite's log files to analyze the problem. Some log file entries contain information about authentication problems in general, whereas other log file entries contain information about authentication problems related to individual CentraSite components.
You can configure the authentication logging mechanisms by modifying parameters in the file jaas.config, which is located in <SuiteInstallDir>/profiles/CTP/configuration. The parameters in this file allow you to make the following changes:
Switch authentication logging on or off for all CentraSite components.
Specify the depth of logging required.
The logging of authentication messages is controlled by properties you can set in the CentraSite module in the file jaas.config.
The CentraSite module consists of one or more actions, and each action introduced by a specification such as:
com.softwareag.security.jaas.login.ssx.SSXLoginModule ...
The first of these sections relates to the SIN component of the authentication mechanism. This is the top-level authentication component, and any logging properties that you specify here apply to the logging for all SIN authentication components that the login module applies to.
The properties that you can specify for the top-level SIN component are:
useLog
Specify "true" to switch logging on, or
"false" to switch logging off.
logLevel
Specify the level of logging information required. Possible values
are: "error" (log only error messages), "info" (log error and information
messages) and "debug" (log all messages with additional debug information).
logFile
Specify the path and file name of the log file.
The properties that you can specify for the individual authentication components are:
nativeLogLevel
Specify the level of logging information required. You can specify a
number from 0 to 6, with 6 providing the most logging information and 0 the
least.
nativeLogFile
Specify the path and file name of the log file.
Here is an example showing logging switched on for SIN and SSX:
CentraSite { com.softwareag.security.jaas.login.ssx.SSXLoginModule requisite useLog="true" logLevel="debug" logFile="C:/SoftwareAG/profiles/CTP/logs/sin.log" nativeLogLevel=6 nativeLogFile="C:/SoftwareAG/profiles/CTP/logs/cs_internal.log" options_url="http://MyServer:53307/CentraSite/CentraSite/ino:noauth:GetSinConfiguration=" CreateGroups="false" UseDomainForOptionsURL="true"; };
This configuration creates the following log files:
<SuiteInstallDir>/profiles/CTP/logs/sin.log
<SuiteInstallDir>/profiles/CTP/logs/cs_internal.log
The log shows whether login attempts are successful or not, and indicates the user domain where CentraSite attempted to find the login user credentials, for example:
...Authenticator (<domain>, ...) was created successfully ...login of user <username> (domain: <domain>) was successful.
If the authentication was not successful, a message such as the following is displayed:
Login of user <username> (host: <hostname>, port:<portnumber>) failed.