AAF protected by NAM reports the error: "405 Method Not Allowed" trying to execute smartphone authentication

  • Document ID:7018296
  • Creation Date:21-Nov-2016
  • Modified Date:21-Nov-2016
    • Micro Focus Products:
      Access Manager (NAM)
      Advanced Authentication

Environment


NetIQ Advanced Authentication Framework 5.4
NetIQ Access Manager 4.3
NetIQ Access Manager 4.2
NetIQ Access Manager 4.1

Situation

  • AAF server version 5.4 has been placed behind a NAM Access Gateway with a domain based proxy service configured with SSL
  • AAF DNS hostname is the same as the DNS name configured on the NAM proxy service (no rewriting required)
  • Smartphone Authentication has been enrolled using direct access to the AAF Server without any problems
  • Smartphone Authentication connecting to the NAM proxy service fails with: "405 Method Not Allowed"
    The server could not comply with the request since it is either malformed or otherwise incorrect
  • The AAF Smartphone method Server URL has been set to: "http://[DNS name]/smartphone"

Resolution

If SSL has been enabled on the proxy service protecting the AAF server the Scheme has to use https:
"https://[DNS name]/smartphone"

Cause

The AAF Smartphone method Server URL has been configured with the wrong HTTP scheme (HTTP/HTTPS)