Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Error 401 Unauthorized When typing http://localhost:8080/manager/html (Alfresco Appl using Tomcat7)

Kiwi
Champ in-the-making
Champ in-the-making

‎12-25-2019 03:44 PM

Hello

Setup:  Alfresco application using tomcat 7.0.82 installed on Windows 2016 Server.

Problem: Error 401 Unauthorized - When typing http://localhost:8080/manager/html after entering manager
                 login credentials.
                 http://localhost:8080 works fine and returns the alfresco main page.

* \tomcat\conf\tomcat-users.xml file edited as follows:
<?xml version="1.0" encoding="UTF-8"?>
<tomcat-users>
   <role rolename="manager-gui"/>
   <role rolename="manager-status"/>
   <role rolename="manager-jmx"/>
   <role rolename="manager-script"/>
   <user username="manager" roles="manager-gui, manager-status, manager-jmx, manager-script" password="whatever"/>
</tomcat-users>

* \tomcat\conf\Catalina\localhost\manager.xml file was created as follows:
<?xml version="1.0" encoding="UTF-8"?>
<Context antiResourceLocking="false" privileged="true" useHttpOnly="true" override="true">
   <Valve className="org.apache.catalina.authenticator.BasicAuthenticator" securePagesWithPragma="false" />
</Context >

* \tomcat\webapps\manager\META-INF\context.xml file edited as follows:
<?xml version="1.0" encoding="UTF-8"?>
<Context antiResourceLocking="false" privileged="true" >
   <Valve className="org.apache.catalina.valves.RemoteAddrValve" allow="127\.\d+\.\d+\.\d+|::1|0:0:0:0:0:0:0:1" />
   <Manager sessionAttributeValueClassNameFilter="java\.lang\.(?:Boolean|Integer|Long|Number|String)|org\.apache\.catalina\.filters\.CsrfPreventionFilter\$LruCache(?:\$1)?|java\.util\.(?:Linked)?HashMap"/>
</Context>

* Restarted the Tomcat7 Windows Service after the above changes.

Question-1: What other files are involved in this  manager login process ?

Question-2: Shall I consider/look at the Folders/files permissions of the tomcat production server running the Alfresco application which may have tweaked file permissions for security reasons ?

Note-1: I have installed the same tomcat version on a Lab VM (Win 2016) and made the above changes/additions and it just worked fine (all the rest is kept by default)

Note-2: The difference I noticed between Alfresco Tomcat implementation and a plain default tomcat Server installation is that  Alfresco Tomcat grants only Read and Execute on the above files for All Users while the plain installation of tomcat grants Full control on these files by default.

Note-3: Even when Changing the above file permissions to "Full Control" for "All Users" on Alfresco Server, did not help.


Please advise

Thanks

Labels:
0 Kudos
0 REPLIES 0
Getting started

Explore our Alfresco products with the links below. Use labels to filter content by product module.

Copyright © 2024 Khoros, LLC