Web Server-to-Mid-Tier Authentication Issue
Posted: Wed May 25, 2016 4:13 pm
Here's the scenario: I'm developing a web app (.NET MVC, Framework version 4) which references the various Select DLLs locally. It attempts to open an order and perform various operations via the API.
On my local build machine, running as localhost, this works fine. However, when deployed out to one of the test web servers, authentication fails, throwing a SecurityException with the super helpful message "Security error." We attributed this to a possible double-hop authentication issue, so the server admins set up Kerberos delegation between the web server where the call to SelectServer.TryAuthenticate() originated and the Mid-Tier server that was targeted by the request (the web server was already set up to use Windows Authentication within IIS).
We're still getting the authentication failures, and have ensured that our credentials are set up within Select for the target Mid-Tier. What steps are we missing?
On my local build machine, running as localhost, this works fine. However, when deployed out to one of the test web servers, authentication fails, throwing a SecurityException with the super helpful message "Security error." We attributed this to a possible double-hop authentication issue, so the server admins set up Kerberos delegation between the web server where the call to SelectServer.TryAuthenticate() originated and the Mid-Tier server that was targeted by the request (the web server was already set up to use Windows Authentication within IIS).
We're still getting the authentication failures, and have ensured that our credentials are set up within Select for the target Mid-Tier. What steps are we missing?