beautypg.com

Performing a test search, Troubleshooting, You are prompted when testing impersonation – Google Search Appliance Enabling Windows Integrated Authentication version 6.8 User Manual

Page 23: Problem, Resolution

background image

Google Search Appliance: Enabling Windows Integrated Authentication

23

Ensuring Connectivity Between the Google Search
Appliance and SAML Bridge

It’s important to make sure that the two systems can communicate with each other, as follows:

1.

In the Admin Console, go to Administrator > Network Settings.

2.

In Network Diagnostics, enter the URL for the Login.aspx file into the URLs to Test box, as follows:
http://your_ac_host/virtual_directory_name/Login.aspx, where your_ac_host is the
name of the host on which the SAML Bridge is installed.

3.

Click Update Settings and Perform Diagnostics.

If you discover problems here, check for network connectivity issues as you would for any two hosts.

Performing a Test Search

Perform a search of secure content. You should not be prompted to log in. You can now proceed to
configure policy ACLs or a connector for authorization.

Troubleshooting

This section contains some troubleshooting tips. These are some general tips for narrowing your
problem:

If one account can’t be impersonated, try a different account.

If one URL doesn’t work, try another.

If one content server can’t be authorized, set up a very simple web server and use it as the content
server.

Set the log level in the SAML Bridge web.config file to “debug,” and then view the ac.log file for log
messages.

Monitor these additional files: the web server log, the Windows audit events in the event viewer,
and the results produced by Kerberos tracing tools.

You Are Prompted When Testing Impersonation

Problem

In the step in which you test impersonation and access http://your_saml_bridge_host:port/saml-bridge/
Login.aspx (see “Verifying the Configuration of the SAML Bridge”), you are prompted to enter your
username and password, although you should not be prompted.

Resolution

If you enter credentials and are granted access, the cause for this problem can be one of the following:

See also other documents in the category Google Software: