Access Manager retruns a HTTP 400 bad request error while running kerberos authenticaion

  • 7015031
  • 08-May-2014
  • 08-May-2014


NetIQ Access Manager 3.2
NetIQ Access Manager 3.2.2
NetIQ Access Manager 3.2.2IR2


  • NIDP server has been protected by an Access Gateway Proxy service (placed behind the NIDP server)

  • NDIP server does not log any error message in the catalina.out

  • The configured fall-back authentication method comes up in case the browser client does not pass a kerberos service ticket

  • NIDP connector configuration has been adjusted with tomcat directive: maxHttpHeaderSize="32768"

  • running the Apache in debug mode in the Access Gateway logged the following entry in the error_log file: "400 Bad Request “Size of a request header field exceeds server limit”