403 error on JBoss Negotiation Toolkit "Secured" test with SPNEGO authentication on EAP 6/7

Solution Verified - Updated -

Issue

  • The first two tests in the JBoss Negotiation Toolkit pass, but the 3rd test is giving a 403 error.
  • Can't get jboss-negotiation-toolkit to function properly, We can't get the "secured" option to work properly. The "Basic Negotiation" and "Security Domain Test" works fine.
  • When connecting using Kerberos, facing the following issue. Expect to have Kerberos Authetication work correctly but get the following errors:
>>>KRBError:
sTime is Tue May 05 14:51:56 CDT 2016 1462909916111
suSec is 773978
error code is 25
error Message is Additional pre-authentication
sname is krbtgt/MY.AD.DOMAIN.COM@MY.AD.DOMAIN.COM
eData provided.
msgType is 30
  • The message "PBOX00354: Setting security roles ThreadLocal: null" is logged in server.log

Environment

  • Red Hat JBoss Enterprise Application Platform 6
  • Red Hat JBoss Enterprise Application Platform 7
  • SPNEGO authentication
  • testing with JBoss Negotiation Toolkit

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In
Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.