Home
TeamSite
Access denied
spiderman
i am on Teamsite 6.5 on win 2003 server. I have OD 6.0.1 on the box. I have configured my bootstrap and also added myself into the role files in od-admin.
i couldn't yet login. It throws an error as follows " Error: user BLDAL\username does not have role od-admin . Please suggest a possible solution for this. As far as my reasoning goes, i was thinking more in terms of domain name issues here, cuz box name is "blptccmscp01" but my domain name is "BLDAL" so i have to add myself as "BLDAL\username" in all my role files to get access to teamsite, and choose domain name of "BLDAL". Now the issue here with OD UI screen login is, In domain name section i can specify only "bltpccmscp01" or localhost. so it doen't allow me. Is this some what clear for you or please let me know if this make any sense.
Thank you
Find more posts tagged with
Comments
nipper
You may need to insert via the admin GUI. Do you know the bootstrap user ?
I am not certain, but I noticed if you add users via roles/od-users it does not work
Be helpful if I read the manual, but I do not feel like it.
Andy
spiderman
well i have configured the deploy.cfg in od-home directory, added myself as bootstrap admin. Still it doesn't allow me.
Any suggestions please/
Thanks
jed
You restart after you added yourself?
--
Jed Michnowicz
jedm@sun.com
Content Management Engineer
Sun Microsystems
nipper
What modifications have you made to CSF ?
For Unix, if you want to use LDAP for authenication, there are some modifications.
I do not know hat is required for DOS.
Can you log in with the local account (assuming it is in as a bootstrap)
Andy
spiderman
I haven't made any significant changes to the CSF, and we are not using LDAP. I am sure that its problem with domain naming. but couldn't get access as i though it would. Do you know how to add another domain in the list of domains for OD.?
thanks
Manish_Jain
Hi,
Please check the following:
1. The bootstrap username is correctly specified in the file "deploy.cfg" located in the folder "opendeploy\OpenDeployNG\etc" as per where you have installed OD.
2. The entry should be like Deploy.bootStrapUserName: <YOUR_DOMAIN>\\<USERNAME>
Note: There need to be double slashes in this line.
3. Ensure that Bootstrap Administrator is added to TeamSite Open API. Add a line <YOUR_DOMAIN>\<USERNAME> at the end of the file "...iw-home\conf\roles\od-admin.uid" Also add a line in the od-user.uid.
4. If all these are already in place, I suggest you restart the services "Interwoven OpenDeploy Service", "Interwoven OpenDeploy UI Admin" and Interwoven OpenAPI Service.
If you still can't login into the OD UI then please attach the following files with this case:
deploy.cfg
...iw-home\conf\roles\od-admin.uid
...iw-home\conf\roles\od-user.uid
Regards,
Manish
carnix
I'm having this exact same problem. OD 6.0.2 on Win2003. no LDAP, CSF was installed but nothing beyond that has changed with it.
The domain name is the machine name, nothing special or unusual: ATLTEAMSITE1. All users are local accounts on the server.
I can login as Administrator, which is also the bootstrap user. My master user account for TeamSite 6.5 is langford. It's in the roles files as ATLTEAMSITE1\langford and I can log into TeamSite just fine. That entry is ALSO in the od-admin.uid and od-user.uid file, and I've added langford as having permissions to the server and all deployments within the GUI using the bootstrap user.
I ran: iwchkrole od-admin langford
the result was YES
When I try to login, I get the following error:
"Error: user ATLTEAMSITE1\langford does not have role od-admin"
Any ideas?
Michael Langford, Webmaster - CARE USA
151 Ellis Street, Atlanta, GA, 30303
http://www.care.org/
Migrateduser
OD 6.0.2 does not consult the TeamSite roles files.
Instead, it authenticates against CSF and then does an authorization check against the selected OD server. So, to set up your user, first login as the bootstrap user.
Then, with the OD server selected, add your user with either the admin or user role. Be sure to use "domain\user" syntax if Windows.
When logging in as the newly added user, use "domain\user" syntax if Windows. Also be sure to select the role and OD server to which you assigned the user previously.
Todd Scallan
Director of Product Management
Interwoven
t: 408-530-7167
e:
tscallan@interwoven.com
carnix
That's it.
I guess I was used to previous version where you didn't need to add the domain when configuring user acccount inside the OD GUI. If it requires a domain, why doesn't it throw an error when trying to assign users to the server like it does when you try to login? I mean, it won't even try to authenticate without a domain, so why would it assume localhost (I assume that's what it's doing) when adding additional users? It really should throw an error for that too, don't you think?
Thanks for the help!
-mike
Michael Langford, Webmaster - CARE USA
151 Ellis Street, Atlanta, GA, 30303
http://www.care.org/
Migrateduser
No, because the authorization policy for the OD server is platform neutral. For example, if you authenticate a user on a Unix system, who then attempts to access an OD server running on a Windows system, then the authorization policy on the Windows-based OD server will have the Unix form of the user ID, i.e., without a domain prefix.
Todd Scallan
Director of Product Management
Interwoven
t: 408-530-7167
e:
tscallan@interwoven.com
