9:44 a.m.
[
https://issues.jboss.org/browse/TEIID-3057?page=com.atlassian.jira.plugin...
]
Cristiano Nicolai commented on TEIID-3057:
------------------------------------------
These are the main changes I had to do:
# New socket bindings
{code:xml}
<socket-binding name="teiid-odbc-gssapi" port="5433"/>
{code}
# New transport
{code:xml}
<transport name="odbc-gssapi" socket-binding="teiid-odbc-gssapi"
protocol="pg">
<authentication security-domain="domain" type="GSS"
/>
<ssl mode="enabled" ssl-protocol="SSLv3"
keymanagement-algorithm="SunX509">
<keystore name="file.keystore"
password="changeit" key-alias="host"/>
</ssl>
</transport>
{code}
# New security domain
{code:xml}
<security-domain name="domain" cache-type="default">
<authentication>
<login-module code="SPNEGO" flag="requisite">
<module-option name="password-stacking" value="useFirstPass"
/>
<module-option name="serverSecurityDomain" value="host" />
<module-option name="removeRealmFromPrincipal"
value="true"/>
</login-module>
<login-module code="UsersRoles" flag="required">
<module-option name="password-stacking" value="useFirstPass"
/>
<module-option name="usersProperties" value="users.properties"
/>
<module-option name="rolesProperties" value="roles.properties"
/>
</login-module>
</authentication>
</security-domain>
{code}
# New security domain host
{code:xml}
<security-domain name="host" cache-type="default">
<authentication>
<login-module code="Kerberos" flag="required">
<module-option name="storeKey" value="true" />
<module-option name="useKeyTab" value="true" />
<module-option name="principal" value="principal@domain" />
<module-option name="keyTab" value="file.keytab" />
<module-option name="doNotPrompt" value="true" />
</login-module>
</authentication>
</security-domain>
{code}
Kerberos ODBC connection on Teiid 8.8.0
---------------------------------------
Key: TEIID-3057
URL: https://issues.jboss.org/browse/TEIID-3057
Project: Teiid
Issue Type: Bug
Security Level: Public(Everyone can see)
Affects Versions: 8.8
Environment: Teiid 8.8.0
EAP 6.1.1
Reporter: Cristiano Nicolai
Assignee: Steven Hawkins
Priority: Blocker
After upgrading from version 8.7.0.Final to version 8.8.0.Final connections via ODBC
using Kerberos/GSS stopped working.
When I try to connect with the new version, on the server I get the following error:
12:24:31,755 ERROR [org.teiid.ODBC] (New I/O worker #2) TEIID40015 Unexpected error
occurred: java.lang.NullPointerException
at java.util.Hashtable.put(Hashtable.java:514) [rt.jar:1.7.0_55]
at org.teiid.odbc.ODBCServerRemoteImpl.logon(ODBCServerRemoteImpl.java:244)
[teiid-runtime-8.8.0.Final.jar:8.8.0.Final]
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [rt.jar:1.7.0_55]
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)
[rt.jar:1.7.0_55]
at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
[rt.jar:1.7.0_55]
at java.lang.reflect.Method.invoke(Method.java:606) [rt.jar:1.7.0_55]
at org.teiid.transport.ODBCClientInstance.processMessage(ODBCClientInstance.java:127)
[teiid-runtime-8.8.0.Final.jar:8.8.0.Final]
at org.teiid.transport.ODBCClientInstance.receivedMessage(ODBCClientInstance.java:116)
[teiid-runtime-8.8.0.Final.jar:8.8.0.Final]
at
org.teiid.transport.SSLAwareChannelHandler.messageReceived(SSLAwareChannelHandler.java:211)
[teiid-runtime-8.8.0.Final.jar:8.8.0.Final]
From the client I get the following message: psql: duplicate GSS authentication request
--
This message was sent by Atlassian JIRA
(v6.2.6#6264)
3808
days inactive
3808
days old
0 comments
1 participants
participants (1)
-
Cristiano Nicolai (JIRA)