DWP Catalog - RSSO Troubleshooting / Changing RSSO Default logging directory.

Version 12
    Share This:

    This document contains official content from the BMC Software Knowledge Base. It is automatically updated when the knowledge article is modified.


    PRODUCT:

    BMC Digital Workplace Advanced


    APPLIES TO:

    DWP Catalog 19.00 and beyond



    QUESTION:

     
        
    • How do we to change DWP Catalog RSSO Agent and Plugin Logging to another directory?
    •   
    • How do we change the RSSO agent logging level?
    •   
    • How do we confirm RSSO integration is properly configured?
    •  


    ANSWER:

     

       

    NOTE:

       
    Always make sure RSSO Server is able to communicate to RSSO agents hosts servers and viceversa.  
     
      NOTE: curl, ping, telnet wget are good commands to check this.  
     
      Example of a working connection -if SSL is in place, output will be longer, but it should should show something like   * Connected to rssoserver  (xxxxxxx) port 443 (#0)
    This is being executed from DWP Catalgo to RSSO. Check from RSSO to DWP Catalog.
     
        
       curl -vk http://rssoserver.domain:port/rsso  
      
    * About to connect() to http://rssoserver.domain:port/rsso port 8080 (#0)   
    *   Trying xxxxx...   
       * Connected to rssoserver  (xxxxxxx) port 8080 (#0)  
    > GET /rsso HTTP/1.1   
    > User-Agent: curl/7.29.0   
    > Host:/rssoserver.domain:port   
    > Accept: */*   
    >   
    < HTTP/1.1 302   
    < Location: /rsso/   
    < Transfer-Encoding: chunked   
    < Date: Mon, 09 Mar 2020 16:25:48 GMT   
    <   
    * Connection #0 to host rssoserver.domain left intact   
       
       
        
    • Check your DNS/Network/Certificates/Firewalls  settings and confirm communication is bidirectional.
    •  
       
     
      A good practice would be testing RSSO on non-ssl protocol first, then on SSL.   
        
    • You should be able to resolve/reach RSSO URL from DWP Server and viceversa, this includes Loadbalancer URL, Server alias, and FQDN.
    •   
    • Remember that localhost URL is not supported, you need to use Fully Qualified URLs at all times when RSSO is in place.
    •   
    • It is a good practice to have RSSO and the rest applications running on the latest and greatest available version there is.
    •   
    • Running GA versions could lead to some issues too.
    •   
    • If you have MSP in place, make sure that rsso-agents are configured
    •  
       

    https://docs.bmc.com/docs/rsso/2002/domain-entry-page-for-msp-users-908954574.html?src=search

           
     
      Confirm DWP Catalog AR Server is configured for RSSO 
        
        
    • You must have run the configure rsso script which is under </dwpcatalog>/sb/configure_rsso
    •  
       

     

       

    ./configure_rsso.sh
     

       
        
    • Example of the details you should've provided 
    •  
       

     

       

    Click on the image to enlarge

    User-added image
     

       
        
    • Log onto DWP Catalog  AR Server via Midtier/User Tool and check Common Server Configuration> Server Information > EA Tab  and Tenant Server Configuration > Server Information > EA Tab -  and check Cross Reference Blank Password and for Authentication Chaining Mode, select AREA - ARS from the drop down menu. Also, External Authentication Server RPC Program Number must bet 390695
    •  
       


    Click on the image to enlarge

    User-added image

       

     

       
        
    • Restart DWP Catalog Service
    •  
       


    https://docs.bmc.com/docs/display/dwpadv1911/Starting+and+stopping+the+BMC+Digital+Workplace+Catalog+server?src=search
     

       
        
    • Confirm EA RPC processes are running on 390695
    •  
       



    ps -auxwe | grep 390695

    root     29780  0.0  0.0 112712   972 pts/0    S+   10:21   0:00 grep --color=auto 390695 XDG_SESSION_ID=8161 HOSTNAME=clm-aus-ta8r7l TERM=xterm SHELL=/bin/bash HISTSIZE=1000 BMC_AR_SERVER_HOME=/opt/bmc/digitalworkplace SSH_CLIENT=172.21.51.179 1044 22 OLDPWD=/opt/bmc/digitalworkplace/db SSH_TTY=/dev/pts/0 USER=root LS_COLORS=rs=0:di=01;34:ln=01;36:mh=00:pi=40;33:so=01;35:do=01;35:bd=40;33;01:cd=40;33;01:or=40;31;01:mi=01;05;37;41:su=37;41:sg=30;43:ca=30;41:tw=30;42:ow=34;42:st=37;44:ex=01;32:*.tar=01;31:*.tgz=01;31:*.arc=01;31:*.arj=01;31:*.taz=01;31:*.lha=01;31:*.lz4=01;31:*.lzh=01;31:*.lzma=01;31:*.tlz=01;31:*.txz=01;31:*.tzo=01;31:*.t7z=01;31:*.zip=01;31:*.z=01;31:*.Z=01;31:*.dz=01;31:*.gz=01;31:*.lrz=01;31:*.lz=01;31:*.lzo=01;31:*.xz=01;31:*.bz2=01;31:*.bz=01;31:*.tbz=01;31:*.tbz2=01;31:*.tz=01;31:*.deb=01;31:*.rpm=01;31:*.jar=01;31:*.war=01;31:*.ear=01;31:*.sar=01;31:*.rar=01;31:*.alz=01;31:*.ace=01;31:*.zoo=01;31:*.cpio=01;31:*.7z=01;31:*.rz=01;31:*.cab=01;31:*.jpg=01;35:*.jpeg=01;35:*.gif=01;35:*.bmp=01;35:*.pbm=01;35:*.pgm=01;35:*.ppm=01;35:*.tga=01;35:*.xbm=01;35:*.xpm=01;35:*.tif=01;35:*.tiff=01;35:*.png=01;35:*.svg=01;35:*.svgz=01;35:*.mng=01;35:*.pcx=01;35:*.mov=01;35:*.mpg=01;35:*.mpeg=01;35:*.m2v=01;35:*.mkv=01;35:*.webm=01;35:*.ogm=01;35:*.mp4=01;35:*.m4v=01;35:*.mp4v=01;35:*.vob=01;35:*.qt=01;35:*.nuv=01;35:*.wmv=01;35:*.asf=01;35:*.rm=01;35:*.rmvb=01;35:*.flc=01;35:*.avi=01;35:*.fli=01;35:*.flv=01;35:*.gl=01;35:*.dl=01;35:*.xcf=01;35:*.xwd=01;35:*.yuv=01;35:*.cgm=01;35:*.emf=01;35:*.axv=01;35:*.anx=01;35:*.ogv=01;35:*.ogx=01;35:*.aac=01;36:*.au=01;36:*.flac=01;36:*.mid=01;36:*.midi=01;36:*.mka=01;36:*.mp3=01;36:*.mpc=01;36:*.ogg=01;36:*.ra=01;36:*.wav=01;36:*.axa=01;36:*.oga=01;36:*.spx=01;36:*.xspf=01;36: REMEDY_SSO_HOME=/opt/bmc/RemedySSO MAIL=/var/spool/mail/root PATH=/usr/java/latest/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/root/bin PWD=/opt/bmc/digitalworkplace/artools BMC_AR_SYSTEM_HOME=/opt/bmc/digitalworkplace JAVA_HOME=/usr/java/latest LANG=en_US.UTF-8 HISTCONTROL=ignoredups SHLVL=1 HOME=/root LOGNAME=root XDG_DATA_DIRS=/root/.local/share/flatpak/exports/share:/var/lib/flatpak/exports/share:/usr/local/share:/usr/share SSH_CONNECTION=172.21.51.179 1044 172.20.4.17 22 LESSOPEN=||/usr/bin/lesspipe.sh %s XDG_RUNTIME_DIR=/run/user/0 DISPLAY=localhost:10.0 _=/usr/bin/grep
     

       
        
    • Make sure has below ar.cfg with below values after dwpcontroller restart. If not, add and restart.
    •  
        
       External-Authentication-RPC-Socket: 390695  
       
       Authentication-Chaining-Mode: 1   
    Crossref-Blank-Password: T   
      
      
      
       
       
          
       
       Confirm DWP Catalog RSSO files are in place 
       
      
       Check that the following files exist under its corresponding directory 
       
        
         
          
           
            
            User-added image       
            
           
          
         
        
       
      
      
       
    •     
          Confirm slf4j-api-1.7.25.jar file entry is present in the       </dwpcatalog>/pluginsvr/pluginsvr_config.xml   
      

               <pathelement type="location">/opt/bmc/digitalworkplace/pluginsvr/slf4j-api-1.7.25.jar</pathelement>

      

     

      
       
    •     
          Check for the     ARSYS.AREA.RSSO tag in the     pluginsvr_config.xml. If it is not present, add it and restart DWP Catalog, i,e.    
           
           
      <name>ARSYS.AREA.RSSO</name>     
      <classname>com.bmc.rsso.plugin.area.RSSOPlugin</classname>     
       <pathelement type="location">/opt/bmc/digitalworkplace/pluginsvr/rsso-area-plugin-all.jar</pathelement>     
       <configFile>/opt/bmc/digitalworkplace/conf/rsso.cfg</configFile>   
      
     
     
     
      
      
      CONFIRM RSSO ADMIN Console Settings are in Place for DWP
      
     
      In some cases we were able to see that DWP Catalog provided Duplicate login page after integrating with RSSO - this can be because the backchannel URL was not defined under RSSO Admin Console or has an additional / at the end of the URL, and the Realm had no tenant defined which needs to be the same as the tenant you had defined for DWP Catalog (not the cookie domain). 
     
     
      https://communities.bmc.com/docs/DOC-120256 
     
     
     
      Enabling RSSO logging and setting a custom logging directory:


    1. Open /opt/bmc/digitalworkplace/bin/arserverd.conf

         -Go to the last of the jvm.option.xx.
         -On the next line, add this (make sure the number is +1 of the previous line. In this example, the previous line was 22):
        
         jvm.option.23=-Drsso.log.cfg.file=/opt/bmc/digitalworkplace/conf/rsso-log.cfg

     2. Create this file /opt/bmc/digitalworkplace/conf/rsso-log.cfg and add below values:
         
          rsso.log.name.format=rsso.%g.log
          rsso.log.level=FINEST 
          rsso.log.roll=10
          rsso.log.limit=5242880
          rsso.log.dir=/opt/bmc/digitalworkplace/db


     3. Create this new file /opt/bmc/digitalworkplace/conf/rsso-plugin.log and put below values in:
     
          rsso.log.name.format=rsso.plugin.%g.log
          rsso.log.level=FINEST
          rsso.log.roll=10
          rsso.log.limit=5242880
          rsso.log.dir=/opt/bmc/digitalworkplace/db



    4. Edit your armonitor.conf file. Tipically, this file is under /etc/arsystem/dwphostname/

        Add this line  -Drsso.log.cfg.file=/opt/bmc/digitalworkplace/conf/rsso-plugin.log as follows
      
     
      /usr/java/latest/bin/java -Drsso.log.cfg.file=/opt/bmc/digitalworkplace/conf/rsso-plugin.log -Xmx512m -classpath /opt/bmc/digitalworkplace/pluginsvr:/opt/bmc/digitalworkplace/pluginsvr/arpluginsvr192_build001.jar com.bmc.arsys.pluginsvr.ARPluginServerMain -x clm-aus-ta8r7l -i /opt/bmc/digitalworkplace 
      
      
      5. Restart DWP Catalog Service 
      
     
     
     
      To manage logging level update below files and values. 
     
     
       1. Update rsso.log.level=INFO to rsso.log.level=FINEST
         #THIS IS THE AGENT LOGGING
          rsso.log.name.format=rsso.%g.log
          rsso.log.level=FINEST 
          rsso.log.roll=10
          rsso.log.limit=5242880
          rsso.log.dir=/opt/bmc/digitalworkplace/db


     2. Update rsso.log.level=INFO to rsso.log.level=FINEST
     #THIS IS THE PLUGING LOGGING 
          rsso.log.name.format=rsso.plugin.%g.log
          rsso.log.level=FINEST
          rsso.log.roll=10
          rsso.log.limit=5242880
          rsso.log.dir=/opt/bmc/digitalworkplace/db
     
     
      3. Open </dwpinstall>/pluginsvr/log4j_pluginsvr.xml  and change level to debug
      
       
      
        
      
       
      
     
             <logger name="com.bmc.arsys.pluginsvr">
                    <level value="debug" />
            </logger>

            <root>
                <priority value ="error" />
                <appender-ref ref="PluginLog" />
            </root>

     
      
        
      
       
      
      4. Open </dwpinstall>/  conf/logback_server.xml   and change level to debug
      
       
      
        
      
       
      
        
      
              <logger name="com.bmc.rsso" level="DEBUG" additivity="false">
                    <appender-ref ref="BUNDLE" />
            </logger>
      
        
      
      5. Restart DWP Catalog Service if the logging is not updated automatically after 1 minute.  
     
     
      NOTE:  
    Revert back logging level back when troubleshooting is done. 
      
        

     


    Article Number:

    000183979


    Article Type:

    FAQ/Procedural



      Looking for additional information?    Search BMC Support  or  Browse Knowledge Articles