https://connect.hyland.com/t5/alfresco-forum/can-t-create-edit-content-after-upgrade-to-acs-6-2-community/m-p/81017#M25001 <P>Any create/edit action will geneate the same exception. The one below is when I try to upload a document. The environment is using Kerberos if that is related?</P><P>May 29, 2020 4:51:46 PM org.apache.catalina.core.StandardWrapperValve invoke<BR />SEVERE: Servlet.service() for servlet [wcapiServlet] in context with path [/alfresco] threw exception<BR />org.alfresco.rest.framework.core.exceptions.NotFoundException: 04290003 /upload blev ikke fundet<BR />at org.alfresco.rest.api.PublicApiDeclarativeRegistry.findWebScript(PublicApiDeclarativeRegistry.java:250)<BR />at org.alfresco.repo.webdav.auth.BaseSSOAuthenticationFilter.doFilter(BaseSSOAuthenticationFilter.java:204)<BR />at jdk.internal.reflect.GeneratedMethodAccessor489.invoke(Unknown Source)<BR />at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)<BR />at java.base/java.lang.reflect.Method.invoke(Method.java:566)<BR />at org.alfresco.repo.management.subsystems.ChainingSubsystemProxyFactory$1.invoke(ChainingSubsystemProxyFactory.java:119)<BR />at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:186)<BR />at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:212)<BR />at com.sun.proxy.$Proxy153.doFilter(Unknown Source)<BR />at org.alfresco.repo.web.filter.beans.BeanProxyFilter.doFilter(BeanProxyFilter.java:89)<BR />at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)<BR />at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)<BR />at org.alfresco.web.app.servlet.WebScriptSSOAuthenticationFilter.doFilter(WebScriptSSOAuthenticationFilter.java:124)<BR />at jdk.internal.reflect.GeneratedMethodAccessor489.invoke(Unknown Source)<BR />at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)<BR />at java.base/java.lang.reflect.Method.invoke(Method.java:566)<BR />at org.alfresco.repo.management.subsystems.ChainingSubsystemProxyFactory$1.invoke(ChainingSubsystemProxyFactory.java:119)<BR />at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:186)<BR />at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:212)<BR />at com.sun.proxy.$Proxy153.doFilter(Unknown Source)<BR />at org.alfresco.repo.web.filter.beans.BeanProxyFilter.doFilter(BeanProxyFilter.java:89)<BR />at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)<BR />at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)<BR />at org.alfresco.web.app.servlet.WebscriptCookieAuthenticationFilter.doFilter(WebscriptCookieAuthenticationFilter.java:77)<BR />at jdk.internal.reflect.GeneratedMethodAccessor489.invoke(Unknown Source)<BR />at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)<BR />at java.base/java.lang.reflect.Method.invoke(Method.java:566)<BR />at org.alfresco.repo.management.subsystems.ChainingSubsystemProxyFactory$1.invoke(ChainingSubsystemProxyFactory.java:132)<BR />at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:186)<BR />at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:212)<BR />at com.sun.proxy.$Proxy153.doFilter(Unknown Source)<BR />at org.alfresco.repo.web.filter.beans.BeanProxyFilter.doFilter(BeanProxyFilter.java:89)<BR />at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)<BR />at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)<BR />at org.alfresco.web.app.servlet.GlobalLocalizationFilter.doFilter(GlobalLocalizationFilter.java:68)<BR />at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)<BR />at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)<BR />at org.alfresco.web.app.servlet.ClearSecurityContextFilter.doFilter(ClearSecurityContextFilter.java:53)<BR />at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)<BR />at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)<BR />at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:199)<BR />at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:96)<BR />at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:493)<BR />at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:137)<BR />at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:81)<BR />at org.apache.catalina.valves.AbstractAccessLogValve.invoke(AbstractAccessLogValve.java:660)<BR />at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:87)<BR />at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:343)<BR />at org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:798)<BR />at org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:66)<BR />at org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:808)<BR />at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1498)<BR />at org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49)<BR />at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128)<BR />at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628)<BR />at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)<BR />at java.base/java.lang.Thread.run(Thread.java:834)</P> Fri, 29 May 2020 18:53:39 GMT phivuu-2 2020-05-29T18:53:39Z https://connect.hyland.com/t5/alfresco-forum/can-t-create-edit-content-after-upgrade-to-acs-6-2-community/m-p/81017#M25001 <P>Any create/edit action will geneate the same exception. The one below is when I try to upload a document. The environment is using Kerberos if that is related?</P><P>May 29, 2020 4:51:46 PM org.apache.catalina.core.StandardWrapperValve invoke<BR />SEVERE: Servlet.service() for servlet [wcapiServlet] in context with path [/alfresco] threw exception<BR />org.alfresco.rest.framework.core.exceptions.NotFoundException: 04290003 /upload blev ikke fundet<BR />at org.alfresco.rest.api.PublicApiDeclarativeRegistry.findWebScript(PublicApiDeclarativeRegistry.java:250)<BR />at org.alfresco.repo.webdav.auth.BaseSSOAuthenticationFilter.doFilter(BaseSSOAuthenticationFilter.java:204)<BR />at jdk.internal.reflect.GeneratedMethodAccessor489.invoke(Unknown Source)<BR />at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)<BR />at java.base/java.lang.reflect.Method.invoke(Method.java:566)<BR />at org.alfresco.repo.management.subsystems.ChainingSubsystemProxyFactory$1.invoke(ChainingSubsystemProxyFactory.java:119)<BR />at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:186)<BR />at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:212)<BR />at com.sun.proxy.$Proxy153.doFilter(Unknown Source)<BR />at org.alfresco.repo.web.filter.beans.BeanProxyFilter.doFilter(BeanProxyFilter.java:89)<BR />at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)<BR />at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)<BR />at org.alfresco.web.app.servlet.WebScriptSSOAuthenticationFilter.doFilter(WebScriptSSOAuthenticationFilter.java:124)<BR />at jdk.internal.reflect.GeneratedMethodAccessor489.invoke(Unknown Source)<BR />at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)<BR />at java.base/java.lang.reflect.Method.invoke(Method.java:566)<BR />at org.alfresco.repo.management.subsystems.ChainingSubsystemProxyFactory$1.invoke(ChainingSubsystemProxyFactory.java:119)<BR />at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:186)<BR />at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:212)<BR />at com.sun.proxy.$Proxy153.doFilter(Unknown Source)<BR />at org.alfresco.repo.web.filter.beans.BeanProxyFilter.doFilter(BeanProxyFilter.java:89)<BR />at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)<BR />at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)<BR />at org.alfresco.web.app.servlet.WebscriptCookieAuthenticationFilter.doFilter(WebscriptCookieAuthenticationFilter.java:77)<BR />at jdk.internal.reflect.GeneratedMethodAccessor489.invoke(Unknown Source)<BR />at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)<BR />at java.base/java.lang.reflect.Method.invoke(Method.java:566)<BR />at org.alfresco.repo.management.subsystems.ChainingSubsystemProxyFactory$1.invoke(ChainingSubsystemProxyFactory.java:132)<BR />at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:186)<BR />at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:212)<BR />at com.sun.proxy.$Proxy153.doFilter(Unknown Source)<BR />at org.alfresco.repo.web.filter.beans.BeanProxyFilter.doFilter(BeanProxyFilter.java:89)<BR />at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)<BR />at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)<BR />at org.alfresco.web.app.servlet.GlobalLocalizationFilter.doFilter(GlobalLocalizationFilter.java:68)<BR />at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)<BR />at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)<BR />at org.alfresco.web.app.servlet.ClearSecurityContextFilter.doFilter(ClearSecurityContextFilter.java:53)<BR />at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193)<BR />at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166)<BR />at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:199)<BR />at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:96)<BR />at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:493)<BR />at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:137)<BR />at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:81)<BR />at org.apache.catalina.valves.AbstractAccessLogValve.invoke(AbstractAccessLogValve.java:660)<BR />at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:87)<BR />at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:343)<BR />at org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:798)<BR />at org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:66)<BR />at org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:808)<BR />at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1498)<BR />at org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49)<BR />at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128)<BR />at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628)<BR />at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)<BR />at java.base/java.lang.Thread.run(Thread.java:834)</P> Fri, 29 May 2020 18:53:39 GMT https://connect.hyland.com/t5/alfresco-forum/can-t-create-edit-content-after-upgrade-to-acs-6-2-community/m-p/81017#M25001 phivuu-2 2020-05-29T18:53:39Z https://connect.hyland.com/t5/alfresco-forum/can-t-create-edit-content-after-upgrade-to-acs-6-2-community/m-p/81018#M25002 <P>Hi&nbsp;<A href="https://migration33.stage.lithium.com/t5/user/viewprofilepage/user-id/16143">@phivuu-2</A>,</P> <P>This looks very similar to this issue =&gt;&nbsp;<A href="https://hub.alfresco.com/t5/alfresco-content-services-forum/kerberos-acs-6-2-community/td-p/294619" target="_blank" rel="nofollow noopener noreferrer">https://hub.alfresco.com/t5/alfresco-content-services-forum/kerberos-acs-6-2-community/td-p/294619.</A></P> <P>What does your&nbsp;<SPAN>share-config-custom.xml configuration look like? Is it setup correctly for&nbsp;</SPAN><SPAN>&nbsp;</SPAN><SPAN>Kerberos?</SPAN></P> <P><SPAN>HTH,</SPAN></P> Mon, 01 Jun 2020 11:03:43 GMT https://connect.hyland.com/t5/alfresco-forum/can-t-create-edit-content-after-upgrade-to-acs-6-2-community/m-p/81018#M25002 EddieMay 2020-06-01T11:03:43Z https://connect.hyland.com/t5/alfresco-forum/can-t-create-edit-content-after-upgrade-to-acs-6-2-community/m-p/81019#M25003 <P>Hi&nbsp;<A href="https://migration33.stage.lithium.com/t5/user/viewprofilepage/user-id/76783">@EddieMay</A>&nbsp;</P><P>Yes I also found this thread. I also suspect it might be Kerberos or&nbsp;<SPAN>share-config-custom.xml. Kerberos config is setup correctly and share-config-custom.xml is from Alfresco 5.2.7 before I upgraded. It worked fine on 5.2.7. I've compared the existing&nbsp;share-config-custom.xml with one from 6.2 and updated the remote end-points to match 6.2.</SPAN></P><P>The environment previously ran in a cluster with 2 repo servers. I've disabled clustering and updated the loadbalancer(haproxy) to point to one repository. The endpoint-url in share-config-custom.xml hasn't been changed since 5.2.7. Which is the URL to the load balancer. I have a feeling there's something wrong with the endpoints?</P><P>&lt;config evaluator="string-compare" condition="Remote"&gt;<BR />&lt;remote&gt;<BR />&lt;endpoint&gt;<BR />&lt;id&gt;alfresco-noauth&lt;/id&gt;<BR />&lt;name&gt;Alfresco - unauthenticated access&lt;/name&gt;<BR />&lt;description&gt;Access to Alfresco Repository WebScripts that do not require authentication&lt;/description&gt;<BR />&lt;connector-id&gt;alfresco&lt;/connector-id&gt;<BR />&lt;endpoint-url&gt;<A href="http://loadbalancer.net:9080/alfresco/s&lt;/endpoint-url" target="_blank" rel="nofollow noopener noreferrer">http://loadbalancer.net:9080/alfresco/s&lt;/endpoint-url</A>&gt;<BR />&lt;identity&gt;none&lt;/identity&gt;<BR />&lt;/endpoint&gt;</P><P>&lt;endpoint&gt;<BR />&lt;id&gt;alfresco&lt;/id&gt;<BR />&lt;name&gt;Alfresco - user access&lt;/name&gt;<BR />&lt;description&gt;Access to Alfresco Repository WebScripts that require user authentication&lt;/description&gt;<BR />&lt;connector-id&gt;alfresco&lt;/connector-id&gt;<BR />&lt;endpoint-url&gt;<A href="http://loadbalancer.net:9080/alfresco/s&lt;/endpoint-url" target="_blank" rel="nofollow noopener noreferrer">http://loadbalancer.net:9080/alfresco/s&lt;/endpoint-url</A>&gt;<BR />&lt;identity&gt;user&lt;/identity&gt;<BR />&lt;/endpoint&gt;</P><P>&lt;endpoint&gt;<BR />&lt;id&gt;alfresco-feed&lt;/id&gt;<BR />&lt;name&gt;Alfresco Feed&lt;/name&gt;<BR />&lt;description&gt;Alfresco Feed - supports basic HTTP authentication via the EndPointProxyServlet&lt;/description&gt;<BR />&lt;connector-id&gt;http&lt;/connector-id&gt;<BR />&lt;endpoint-url&gt;<A href="http://loadbalancer.net:9080/alfresco/s&lt;/endpoint-url" target="_blank" rel="nofollow noopener noreferrer">http://loadbalancer.net:9080/alfresco/s&lt;/endpoint-url</A>&gt;<BR />&lt;basic-auth&gt;true&lt;/basic-auth&gt;<BR />&lt;identity&gt;user&lt;/identity&gt;<BR />&lt;/endpoint&gt;</P><P>&lt;endpoint&gt;<BR />&lt;id&gt;alfresco-api&lt;/id&gt;<BR />&lt;parent-id&gt;alfresco&lt;/parent-id&gt;<BR />&lt;name&gt;Alfresco Public API - user access&lt;/name&gt;<BR />&lt;description&gt;Access to Alfresco Repository Public API that require user authentication.<BR />This makes use of the authentication that is provided by parent 'alfresco' endpoint.&lt;/description&gt;<BR />&lt;connector-id&gt;alfresco&lt;/connector-id&gt;<BR />&lt;endpoint-url&gt;<A href="http://loadbalancer.net:9080/alfresco/api&lt;/endpoint-url" target="_blank" rel="nofollow noopener noreferrer">http://loadbalancer.net:9080/alfresco/api&lt;/endpoint-url</A>&gt;<BR />&lt;identity&gt;user&lt;/identity&gt;<BR />&lt;/endpoint&gt;</P><P>&lt;/remote&gt;<BR />&lt;/config&gt;</P><P>&lt;!--<BR />Overriding endpoints to reference an Alfresco server with external SSO enabled<BR />NOTE: If utilising a load balancer between web-tier and repository cluster, the "sticky<BR />sessions" feature of your load balancer must be used.<BR />NOTE: If alfresco server location is not localhost:8080 then also combine changes from the<BR />"example port config" section below.<BR />*Optional* keystore contains SSL client certificate + trusted CAs.<BR />Used to authenticate share to an external SSO system such as CAS<BR />Remove the keystore section if not required i.e. for NTLM.<BR /><BR />NOTE: For Kerberos SSO rename the "KerberosDisabled" condition above to "Kerberos"<BR /><BR />NOTE: For external SSO, switch the endpoint connector to "AlfrescoHeader" and set<BR />the userHeader to the name of the HTTP header that the external SSO<BR />uses to provide the authenticated user name.<BR />--&gt;<BR />&lt;config evaluator="string-compare" condition="Remote"&gt;<BR />&lt;remote&gt;<BR />&lt;keystore&gt;<BR />&lt;path&gt;alfresco/web-extension/alfresco-system.p12&lt;/path&gt;<BR />&lt;type&gt;pkcs12&lt;/type&gt;<BR />&lt;password&gt;password&lt;/password&gt;<BR />&lt;/keystore&gt;<BR /><BR />&lt;connector&gt;<BR />&lt;id&gt;alfrescoCookie&lt;/id&gt;<BR />&lt;name&gt;Alfresco Connector&lt;/name&gt;<BR />&lt;description&gt;Connects to an Alfresco instance using cookie-based authentication&lt;/description&gt;<BR />&lt;class&gt;org.alfresco.web.site.servlet.SlingshotAlfrescoConnector&lt;/class&gt;<BR />&lt;/connector&gt;<BR /><BR />&lt;connector&gt;<BR />&lt;id&gt;alfrescoHeader&lt;/id&gt;<BR />&lt;name&gt;Alfresco Connector&lt;/name&gt;<BR />&lt;description&gt;Connects to an Alfresco instance using header and cookie-based authentication&lt;/description&gt;<BR />&lt;class&gt;org.alfresco.web.site.servlet.SlingshotAlfrescoConnector&lt;/class&gt;<BR />&lt;userHeader&gt;SsoUserHeader&lt;/userHeader&gt;<BR />&lt;/connector&gt;</P><P>&lt;endpoint&gt;<BR />&lt;id&gt;alfresco&lt;/id&gt;<BR />&lt;name&gt;Alfresco - user access&lt;/name&gt;<BR />&lt;description&gt;Access to Alfresco Repository WebScripts that require user authentication&lt;/description&gt;<BR />&lt;connector-id&gt;alfrescoCookie&lt;/connector-id&gt;<BR />&lt;endpoint-url&gt;<A href="http://loadbalancer.net:9080/alfresco/wcs&lt;/endpoint-url" target="_blank" rel="nofollow noopener noreferrer">http://loadbalancer.net:9080/alfresco/wcs&lt;/endpoint-url</A>&gt;<BR />&lt;identity&gt;user&lt;/identity&gt;<BR />&lt;!-- BUG, set to false or patch see <A href="https://issues.alfresco.com/jira/browse/MNT-15899" target="_blank" rel="nofollow noopener noreferrer">https://issues.alfresco.com/jira/browse/MNT-15899</A> --&gt;<BR />&lt;external-auth&gt;true&lt;/external-auth&gt;<BR />&lt;/endpoint&gt;</P><P>&lt;endpoint&gt;<BR />&lt;id&gt;alfresco-feed&lt;/id&gt;<BR />&lt;parent-id&gt;alfresco&lt;/parent-id&gt;<BR />&lt;name&gt;Alfresco Feed&lt;/name&gt;<BR />&lt;description&gt;Alfresco Feed - supports basic HTTP authentication via the EndPointProxyServlet&lt;/description&gt;<BR />&lt;connector-id&gt;alfrescoHeader&lt;/connector-id&gt;<BR />&lt;endpoint-url&gt;<A href="http://loadbalancer.net:9080/alfresco/wcs&lt;/endpoint-url" target="_blank" rel="nofollow noopener noreferrer">http://loadbalancer.net:9080/alfresco/wcs&lt;/endpoint-url</A>&gt;<BR />&lt;identity&gt;user&lt;/identity&gt;<BR />&lt;external-auth&gt;true&lt;/external-auth&gt;<BR />&lt;/endpoint&gt;</P><P>&lt;endpoint&gt;<BR />&lt;id&gt;alfresco-api&lt;/id&gt;<BR />&lt;parent-id&gt;alfresco&lt;/parent-id&gt;<BR />&lt;name&gt;Alfresco Public API - user access&lt;/name&gt;<BR />&lt;description&gt;Access to Alfresco Repository Public API that require user authentication.<BR />This makes use of the authentication that is provided by parent 'alfresco' endpoint.&lt;/description&gt;<BR />&lt;connector-id&gt;alfrescoHeader&lt;/connector-id&gt;<BR />&lt;endpoint-url&gt;<A href="http://loadbalancer.net:9080/alfresco/api&lt;/endpoint-url" target="_blank" rel="nofollow noopener noreferrer">http://loadbalancer.net:9080/alfresco/api&lt;/endpoint-url</A>&gt;<BR />&lt;identity&gt;user&lt;/identity&gt;<BR />&lt;external-auth&gt;true&lt;/external-auth&gt;<BR />&lt;/endpoint&gt;<BR />&lt;/remote&gt;</P> Mon, 01 Jun 2020 12:25:37 GMT https://connect.hyland.com/t5/alfresco-forum/can-t-create-edit-content-after-upgrade-to-acs-6-2-community/m-p/81019#M25003 phivuu-2 2020-06-01T12:25:37Z https://connect.hyland.com/t5/alfresco-forum/can-t-create-edit-content-after-upgrade-to-acs-6-2-community/m-p/81020#M25004 <P>I tried to enable alfresco default authentication&nbsp;authentication.chain=alfrescoNtlm1:alfrescoNtlm previously authentication.chain=nu1kerb:kerberos,ldap1:ldap,ldap3:ldap</P><P>And then tried to reproduce the issue with the local admin user. It works fine. So I guess it's either kerberos or ldap that is wrong? Do you think I need to look at share-custom-config.xml? Or perhaps I need to generate new kerberos keytabs? Maybe I can check if ldap works.</P> Tue, 02 Jun 2020 01:04:34 GMT https://connect.hyland.com/t5/alfresco-forum/can-t-create-edit-content-after-upgrade-to-acs-6-2-community/m-p/81020#M25004 phivuu-2 2020-06-02T01:04:34Z https://connect.hyland.com/t5/alfresco-forum/can-t-create-edit-content-after-upgrade-to-acs-6-2-community/m-p/81021#M25005 <P>I solved the issue by changed wcs endpoints to s.</P><P>Are the wcs endpoints deprecated or something? The default share-custom-config.xml for 6.2 Community contains them.</P> Thu, 04 Jun 2020 12:42:47 GMT https://connect.hyland.com/t5/alfresco-forum/can-t-create-edit-content-after-upgrade-to-acs-6-2-community/m-p/81021#M25005 phivuu-2 2020-06-04T12:42:47Z https://connect.hyland.com/t5/alfresco-forum/can-t-create-edit-content-after-upgrade-to-acs-6-2-community/m-p/81022#M25006 <P>Hi&nbsp;<A href="https://migration33.stage.lithium.com/t5/user/viewprofilepage/user-id/16143">@phivuu-2</A>,</P> <P>Glad you got it working. There's an explation of /wcs vs /s endpoints <A href="https://hub.alfresco.com/t5/alfresco-content-services-forum/difference-between-platform-endpoints/td-p/147315" target="_self" rel="nofollow noopener noreferrer">here</A> - hope that helps.&nbsp;</P> <P>Cheers,</P> Thu, 04 Jun 2020 13:15:11 GMT https://connect.hyland.com/t5/alfresco-forum/can-t-create-edit-content-after-upgrade-to-acs-6-2-community/m-p/81022#M25006 EddieMay 2020-06-04T13:15:11Z https://connect.hyland.com/t5/alfresco-forum/can-t-create-edit-content-after-upgrade-to-acs-6-2-community/m-p/81023#M25007 <P><A href="https://migration33.stage.lithium.com/t5/user/viewprofilepage/user-id/76783">@EddieMay</A>&nbsp;</P><P>Although I'm able to manually login with the synced user without any issue. I haven't tested SSO yet because I'm on a Linux environment. I took a look at the link you provided and it looks like /wcs endpoint is needed for Kerberos SSO to work correctly?</P> Thu, 04 Jun 2020 14:01:51 GMT https://connect.hyland.com/t5/alfresco-forum/can-t-create-edit-content-after-upgrade-to-acs-6-2-community/m-p/81023#M25007 phivuu-2 2020-06-04T14:01:51Z https://connect.hyland.com/t5/alfresco-forum/can-t-create-edit-content-after-upgrade-to-acs-6-2-community/m-p/81024#M25008 <P>The end user reported that SSO is not working. So it looks like the /wcs endpoint is needed for Kerberos SSO? Could this be a bug in 6.2 Community?</P><P>SSO is working with /wcs but with the exception in the repository as shown in the first post. Share is also showing an exception:<BR /><BR /></P><PRE>2020-06-09 13:00:40,781 WARN [site.servlet.KerberosSessionSetupPrivilegedAction] [http-nio-8080-exec-5] Caught GSS Error GSSException: No valid credentials provided (Mechanism level: KDC cannot accommodate requested option (13)) at java.security.jgss/sun.security.jgss.krb5.Krb5Context.initSecContext(Krb5Context.java:771) at java.security.jgss/sun.security.jgss.GSSContextImpl.initSecContext(GSSContextImpl.java:266) at java.security.jgss/sun.security.jgss.GSSContextImpl.initSecContext(GSSContextImpl.java:196) at org.alfresco.web.site.servlet.KerberosSessionSetupPrivilegedAction.run(KerberosSessionSetupPrivilegedAction.java:134) at org.alfresco.web.site.servlet.KerberosSessionSetupPrivilegedAction.run(KerberosSessionSetupPrivilegedAction.java:51) at java.base/java.security.AccessController.doPrivileged(Native Method) at java.base/javax.security.auth.Subject.doAs(Subject.java:361) at org.alfresco.web.site.servlet.SSOAuthenticationFilter.doKerberosLogon(SSOAuthenticationFilter.java:1326) at org.alfresco.web.site.servlet.SSOAuthenticationFilter.doFilter(SSOAuthenticationFilter.java:653) at org.alfresco.web.site.servlet.SSOAuthenticationFilter.doFilter(SSOAuthenticationFilter.java:443) at org.springframework.extensions.webscripts.servlet.BeanProxyFilter.doFilter(BeanProxyFilter.java:80) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) at org.alfresco.web.site.servlet.MTAuthenticationFilter.doFilter(MTAuthenticationFilter.java:81) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:193) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:166) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:199) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:96) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:493) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:137) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:81) at org.apache.catalina.valves.AbstractAccessLogValve.invoke(AbstractAccessLogValve.java:660) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:87) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:343) at org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:798) at org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:66) at org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:808) at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1498) at org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49) at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128) at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) at java.base/java.lang.Thread.run(Thread.java:834) Caused by: KrbException: KDC cannot accommodate requested option (13) at java.security.jgss/sun.security.krb5.KrbTgsRep.&lt;init&gt;(KrbTgsRep.java:70) at java.security.jgss/sun.security.krb5.KrbTgsReq.getReply(KrbTgsReq.java:251) at java.security.jgss/sun.security.krb5.KrbTgsReq.sendAndGetCreds(KrbTgsReq.java:262) at java.security.jgss/sun.security.krb5.internal.CredentialsUtil.acquireS4U2proxyCreds(CredentialsUtil.java:96) at java.security.jgss/sun.security.krb5.Credentials.acquireS4U2proxyCreds(Credentials.java:469) at java.security.jgss/sun.security.jgss.krb5.Krb5Context.initSecContext(Krb5Context.java:699) ... 32 more Caused by: KrbException: Identifier doesn't match expected value (906) at java.security.jgss/sun.security.krb5.internal.KDCRep.init(KDCRep.java:140) at java.security.jgss/sun.security.krb5.internal.TGSRep.init(TGSRep.java:65) at java.security.jgss/sun.security.krb5.internal.TGSRep.&lt;init&gt;(TGSRep.java:60) at java.security.jgss/sun.security.krb5.KrbTgsRep.&lt;init&gt;(KrbTgsRep.java:55) ... 37 more</PRE> Tue, 09 Jun 2020 14:25:01 GMT https://connect.hyland.com/t5/alfresco-forum/can-t-create-edit-content-after-upgrade-to-acs-6-2-community/m-p/81024#M25008 phivuu-2 2020-06-09T14:25:01Z