Unable to log in to NetWorker Web UI (NWUI) when launched from the NetWorker server
Summary:
Unable to log in to NWUI launched from the NetWorker server. “Failed to authenticate user administrator with the provided password on Authentication Server
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Symptoms
Unable to log in to NetWorker Web UI when launched from the NetWorker server
Error in nwui.log:
[https-jsse-nio-9090-exec-7] INFO c.e.n.c.n.impl.GlobalApi - Authenticating user administrator on authentication server <Server name>.
[https-jsse-nio-9090-exec-7] ERROR c.e.n.c.n.impl.GlobalApi - Failed to authenticate user administrator with the provided password on Authentication Server <Server name>. javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
nsrlogin works fine
Login works when NWUI is launched from another host
Error in nwui.log:
[https-jsse-nio-9090-exec-7] INFO c.e.n.c.n.impl.GlobalApi - Authenticating user administrator on authentication server <Server name>.
[https-jsse-nio-9090-exec-7] ERROR c.e.n.c.n.impl.GlobalApi - Failed to authenticate user administrator with the provided password on Authentication Server <Server name>. javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
nsrlogin works fine
Login works when NWUI is launched from another host
Cause
The tomcat certificate is missing from the Java keystore.
Resolution
Import the tomcat certificate "emcauthctomcat.cer" in the Java keystore.
keytool -import -alias emcauthctomcat -keystore cacerts -file emcauthctomcat.cer
In the example below, NRE 8.0.10 is installed, and the tomcat certificate is located in the default NetWorker path. The keytool command would be something like this --
keytool -import -alias emcauthctomcat -keystore "C:\Program Files\NRE\java\jre1.8.0_301\lib\security\cacerts" -file "C:\Program Files\EMC NetWorker\nsr\authc-server\tomcat\conf\emcauthctomcat.cer"
The default password for the Java keystore is changeit .
keytool -import -alias emcauthctomcat -keystore cacerts -file emcauthctomcat.cer
In the example below, NRE 8.0.10 is installed, and the tomcat certificate is located in the default NetWorker path. The keytool command would be something like this --
keytool -import -alias emcauthctomcat -keystore "C:\Program Files\NRE\java\jre1.8.0_301\lib\security\cacerts" -file "C:\Program Files\EMC NetWorker\nsr\authc-server\tomcat\conf\emcauthctomcat.cer"
The default password for the Java keystore is changeit .
Article Properties
Article Number: 000193323
Article Type: Solution
Last Modified: 10 Jan 2022
Version: 3
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.