This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Upgrade issue from OnBase 18 SP1 to OnBase Foundation EP2

Go to answer
Narasimha_Cima1
Champ on-the-rise
Champ on-the-rise

‎01-03-2020 08:31 AM

We have upgraded our OnBase Development system from version 18 SP1 to OnBase Foundation EP2. After the upgrade we are having issues logging to the Web Client using Auto Login. When we set it Force OnBase Authentication it works and when set to Interactive User Authentication for Core Services it works fine.

The following is the error we get and "CD-OBS" is the domain admin account.

Hyland.Core.AuthenticationException: Failed to connect. User 'CD-OBS' does not belong to any group that exists in both 131586 and datasource.
at Hyland.Core.Authentication.CoreAuthnResultUserFinalizer.SyncUserGroups(Session session, User user, CoreAuthnResult result, Boolean throwIfNoMatchingGroupsFound, Boolean alwaysRemoveAllGroups)
at Hyland.Core.Authentication.AutoLogonHandler`2.FinalizeUser(IdPToken token, CoreAuthnResult result, UserType type, Session session)
at Hyland.Core.Authentication.CoreAuthnResultUserFinalizer.FinalizeUser(CoreAccessToken token, UserType type, Session session)
at Hyland.Core.Authentication.Login.CompleteUserValidation(Session session, CoreAccessToken token)
at Hyland.Core.Authentication.Authenticator.FinalizeAuthentication(Session session, CoreAccessToken token)
at Hyland.Core.Session.Connect(AuthenticationProperties authProps)
at Hyland.Services.AppServices.Connect(AuthenticationProperties properties)
at Hyland.Core.ServiceHandlers.Login.Connect(AuthenticationProperties authenticationProperties, Properties props, ClientMachineInfo clientMachineInfo)
at Hyland.Core.ServiceHandlers.Login.AuthenticateAutoLogin(AuthProps authProps, Properties props, ClientMachineInfo clientMachineInfo, SystemProperties systemProps)
at Hyland.Core.ServiceHandlers.Login.Authenticate()

Labels:
0 Kudos
1 ACCEPTED ANSWER

Go to answer
Scott_Johnson3
World-Class Innovator
World-Class Innovator

‎01-03-2020 10:24 AM

Hi Narasimha,

I am also dealing with these issues.  They broke a bunch of users setups with the new web server builds.   You should check out this white paper by Adam Shane: https://community.hyland.com/gallery/items/50913-network-security-white-paper

Hope this helps.

Scott

View answer in original post

8 REPLIES 8

Go to answer
Tony_Lovell
Champ in-the-making
Champ in-the-making

‎01-03-2020 09:01 AM

Hello,

Have you configured AD-Enhanced directory service authentication now that they're on Foundation?

0 Kudos

Go to answer
Scott_Johnson3
World-Class Innovator
World-Class Innovator

‎01-03-2020 10:24 AM

Hi Narasimha,

I am also dealing with these issues.  They broke a bunch of users setups with the new web server builds.   You should check out this white paper by Adam Shane: https://community.hyland.com/gallery/items/50913-network-security-white-paper

Hope this helps.

Scott

Go to answer
AdamShaneHyland
Employee
Employee
In response to Scott_Johnson3

‎01-03-2020 01:49 PM

To Scott's point,  there were changes made to the software which were implemented in OnBase 18.0.1.67 as part of a Security Bulletin (link) (including OnBase Foundation EP1 and higher).  The documentation referenced above covers all of the configuration steps need to implement the non-interactive autologon.  You can reference the section titled "Special Considerations for Optimized Windows Authentication and Autologon".

0 Kudos

Go to answer
Daniel_Hansen
Champ on-the-rise
Champ on-the-rise
In response to AdamShaneHyland

‎10-28-2022 10:23 AM

@Adam Shane , can you confirm if the SPN record is needed when both the web and app server are on the same machine?  Thanks.

0 Kudos
Getting started

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2024 Khoros, LLC