I really spent a lot of time trying to get SSO working in a small business environment.
We have a Windows Small Business Server 2008 (Windows 2008 x64) and Windows XP SP3 Clients. I tried the following documents many times:
http://www.igniterealtime.org/community/docs/DOC-1060
http://www.igniterealtime.org/community/docs/DOC-1362
http://www.igniterealtime.org/community/docs/DOC-1616
But I always get the same Spark Error:
“Unable to connect using Single Sign-On. Please check principal and server settings.”
And the warn.log shows:
30.01.2009 02:26:17 org.jivesoftware.spark.util.log.Log warning
WARNUNG: Exception in Login:
not-authorized(401)
at org.jivesoftware.smack.NonSASLAuthentication.authenticate(NonSASLAuthentication .java:94)
at org.jivesoftware.smack.SASLAuthentication.authenticate(SASLAuthentication.java: 227)
at org.jivesoftware.smack.XMPPConnection.login(XMPPConnection.java:341)
at org.jivesoftware.LoginDialog$LoginPanel.login(LoginDialog.java:828)
at org.jivesoftware.LoginDialog$LoginPanel.access$400(LoginDialog.java:196)
at org.jivesoftware.LoginDialog$LoginPanel$1.construct(LoginDialog.java:594)
at org.jivesoftware.spark.util.SwingWorker$2.run(SwingWorker.java:129)
at java.lang.Thread.run(Unknown Source)
and the Debug:
<username>userx</username>
<password/>
<resource>spark</resource>
<not-authorized xmlns="urn:ietf:params:xml:ns:xmpp-stanzas"/>
On the server the debug.log and error.log are empty and in the warning.log I can find the following:
2009.01.29 20:11:50 Autocreating jiveID row for type ‘25’
Is there a special port necessary which should be opened? Because the Win 08 server has a new firewall (the normal Spark login works correct).
Is it correct, that the … part must be insert in the part of the openfire.xml?
My server is also the Gateway to the Internet, so he has a second Lan Card, but in a different Network. Hopefully that´s no problem.
If anybody has any suggestions or experiences, that would be really great!
Thanks Lukas