manifoldcf-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Karl Wright <daddy...@gmail.com>
Subject Re: SharePoint 2007 Connector - (401)HTTP/1.1 401 Unauthorized
Date Tue, 27 Nov 2012 12:53:50 GMT
Hi Luigi,

The warning is coming from the part of commons-httpclient that is
trying to set up communication with your SharePoint instance.  It
thinks it needs to use SPNEGO to figure out the authentication
mechanism, and it seems to be trying to load kerberos 5 configuration
information, which means that  it thinks Kerberos is the
authentication mechanism of choice.

(1) Are you sure that your SharePoint IIS is not configured to use
Kerberos auth?

(2) What command-line arguments are you giving to the JVM that is
running ManifoldCF?

Karl

On Tue, Nov 27, 2012 at 7:44 AM, Luigi D'Addario
<luigi.daddario@googlemail.com> wrote:
> Hello,
>
> I have installed apache-manifoldcf-1.0.1 on my Windows XP and
> apache-manifoldcf-sharepoint-2007-plugin on my SharePoint 2007 server.
>  (a virtual machine).
>
> I can see the Permissions Page when I enter
> http://xxxxx:xxxxx/sub_directory/_vti_bin/MCPermissions.asmx
> in my browser.
> When I try to make a "SharePoint Services 3.0 (2007)"
> connection to my SharePoint 2007 server in the ManifoldCF
> interface I get this error:
>
> Crawl user did not authenticate properly, or has insufficient permissions to
> accesshttp://vm-shpt2k7/KireyRep: (401)HTTP/1.1 401 Unauthorized
>
> Via curl i get first a 401 and then a 200 status:
>
> curl --ntlm -u vm-shpt2k7\\administrator
> http://vm-shpt2k7/KireyRep/_vti_bin/MCPermissions.asmx -v
> Enter host password for user 'vm-shpt2k7\\administrator':
> * About to connect() to vm-shpt2k7 port 80 (#0)
> *   Trying 192.168.30.42...
> * connected
> * Connected to vm-shpt2k7 (192.168.30.42) port 80 (#0)
> * Server auth using NTLM with user 'vm-shpt2k7\\administrator'
>> GET /KireyRep/_vti_bin/MCPermissions.asmx HTTP/1.1
>> Authorization: NTLM
>> TlRMTVNTUAABAAAAt4II4gAAAAAAAAAAAAAAAAAAAAAFASgKAAAADw==
>> User-Agent: curl/7.25.0 (i386-pc-win32) libcurl/7.25.0 OpenSSL/0.9.8u
>> zlib/1.2
> .6 libssh2/1.4.0
>> Host: vm-shpt2k7
>> Accept: */*
>>
> < HTTP/1.1 401 Unauthorized
> < Content-Length: 1539
> < Content-Type: text/html
> < Server: Microsoft-IIS/6.0
> < WWW-Authenticate: NTLM
> TlRMTVNTUAACAAAAHAAcADgAAAA1goniwKcRCkDsTOwAAAAAAAAAAMo
> AygBUAAAABQLODgAAAA9TAEUAUgBWAEkAQwBFAFMALQBLAEkAUgBFAFkAAgAcAFMARQBSAFYASQBDAEU
> AUwAtAEsASQBSAEUAWQABABQAVgBNAC0AUwBIAFAAVAAyAEsANwAEACQAcwBlAHIAdgBpAGMAZQBzAC0
> AawBpAHIAZQB5AC4AbABhAG4AAwA6AHYAbQAtAHMAaABwAHQAMgBrADcALgBzAGUAcgB2AGkAYwBlAHM
> ALQBrAGkAcgBlAHkALgBsAGEAbgAFACQAcwBlAHIAdgBpAGMAZQBzAC0AawBpAHIAZQB5AC4AbABhAG4
> AAAAAAA==
> < X-Powered-By: ASP.NET
> < MicrosoftSharePointTeamServices: 12.0.0.6421
> < Date: Mon, 26 Nov 2012 21:47:30 GMT
> <
> * Ignoring the response-body
> * Connection #0 to host vm-shpt2k7 left intact
> * Issue another request to this URL:
> 'http://vm-shpt2k7/KireyRep/_vti_bin/MCPerm
> issions.asmx'
> * Re-using existing connection! (#0) with host (nil)
> * Connected to (nil) (192.168.30.42) port 80 (#0)
> * Server auth using NTLM with user 'vm-shpt2k7\\administrator'
>> GET /KireyRep/_vti_bin/MCPermissions.asmx HTTP/1.1
>> Authorization: NTLM
>> TlRMTVNTUAADAAAAGAAYAJAAAAAYABgAqAAAABQAFABIAAAAHAAcAFwAAA
> AYABgAeAAAABAAEADAAAAANYKI4gUBKAoAAAAPdgBtAC0AcwBoAHAAdAAyAGsANwBcAGEAZABtAGkAbg
> BpAHMAdAByAGEAdABvAHIAUgBNAC0ARABBAEQARABBAFIASQBPAEwAVl9uuLABbMoAAAAAAAAAAAAAAA
> AAAAAAfxlYG/e4ds0BnEroh9Mto5NQBerxGktFfG5BOyKSh9Uth1nGuYbB3Q==
>> User-Agent: curl/7.25.0 (i386-pc-win32) libcurl/7.25.0 OpenSSL/0.9.8u
>> zlib/1.2
> .6 libssh2/1.4.0
>> Host: vm-shpt2k7
>> Accept: */*
>>
> < HTTP/1.1 200 OK
> < Date: Mon, 26 Nov 2012 21:47:32 GMT
> < Server: Microsoft-IIS/6.0
> < X-Powered-By: ASP.NET
> < MicrosoftSharePointTeamServices: 12.0.0.6421
> < X-AspNet-Version: 2.0.50727
> < Set-Cookie: WSS_KeepSessionAuthenticated=80; path=/
> < Cache-Control: private, max-age=0
> < Content-Type: text/html; charset=utf-8
> < Content-Length: 3253
> <
>
> On virtual machine, IIS is using NTLM authentication, but in manifoldcf.log
> I get this warning:
>
> WARN 2012-11-27 12:17:47,375 (Thread-6885) - NEGOTIATE authentication error:
> Invalid name provided (Mechanism level: Could not load configuration file
> C:\WINDOWS\krb5.ini (Impossibile trovare il file specificato))
>
>
> Any idea ?
>
> Thanks

Mime
View raw message