Environment
Novell Access Manager 3 Linux Novell Identity Server
Novell Access Manager 3.1 Linux Novell Identity ServerNovell Access Manager 3.1 Linux Access Gateway
Situation
Access Manager setup in a cluster.
When a user made an authentication request and when interaction between the 2 cluster IDPs was needed the following error was thrown:
"Error obtaining SOAP response. Reason: White spaces are required between publicId and systemId"
Resolution
The catalina.out of the IDP showed the following error at the time an attempt was made to forward the request to the other cluster member:
Forwarding HTTP request to cluster member at URL: https://192.168.1.1:443/nidp/idff/soap
"An error happened while forwarding a request to a cluster member. Error: java.security.cert.CertificateException: Untrusted Certificate-chain. Unable to forward request to cluster member. |"
The correct trusted root certificate belonging to the assigned certificate had not been placed in the correct keystore.
By placing the correct trusted root file in the appropriate keystore the problem was resolved.
By placing the correct trusted root file in the appropriate keystore the problem was resolved.
Additional Information
Make sure that connectivity exists to the /nidp/idff/soap service on the IDP servers.
If communication errors exist they can result in the error seen.