PowerProtect Data Manager - Reconfiguration de l’authentification unique OKTA après la mise à niveau
Summary: L’authentification unique OKTA ne fonctionne pas après la mise à jour de PowerProtect Data Manager de la version 19.13 vers la version 19.14. Le correctif est appliqué à PowerProtect Data Manager 19.13 comme (PPDMESC-3304) ...
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Symptoms
aaa.log :
./aaa.2023-08-23.0.log.gz:org.springframework.security.oauth2.jwt.JwtException: An error occurred while attempting to decode the Jwt: Signed JWT rejected: Another algorithm expected, or no matching keys found
Cause
L’erreur dans aaa.log :
2023-08-24T07:39:26.964Z ERROR [] [https-jsse-nio-9090-exec-1] [][][][TRACE_ID:97d2704ca1652f50][] [c.e.b.a.s.s.DefaultSsoService.lambda$1(71)] - SSO login issue: {}
org.springframework.security.oauth2.jwt.JwtException: An error occurred while attempting to decode the Jwt: Signed JWT rejected: Another algorithm expected, or no matching keys found
Cela signifie que AAA attend HS256, qui est sa valeur par défaut, mais OKTA renvoie toujours une signature RS256.
Resolution
- Connexion SSH à PowerProtect Data Manager
cd /usr/local/brs/lib/aaa/configvim application-sso.properties- Vérifiez si la variable aaa.sso.client.alg=RS256, sinon passez de HS256 à RS256.
- Quittez vim ( :wq !)
- AAA Restart
Article Properties
Article Number: 000218197
Article Type: Solution
Last Modified: 18 Mar 2025
Version: 1
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.