MDM Self-Service-Portal

system · July 6, 2012, 9:55am

(imported topic written by SystemAdmin)

Hi

yesterday we did a update on our MDM System.

We installed the new MDM Self-Service-Portal.

LDAP Connection seams to work but when we try to login we get following Error Message: Could not connect to Trusted Services Provider.

What does that mean?

thank you for your help.

BenKus · July 6, 2012, 10:26am

(imported comment written by BenKus)

Hi Florian,

The Self-Service portal (SSP) needs to authenticate the users so it connects to the Trusted Service Provider (TSP) that gives access to LDAP. The reason for the TSP is to allow you to separate the computer that runs the TSP from the SSP for network or security reasons. However, it is easy to deploy them to the same computer for simplicity.

So if you haven’t deployed the TSP yet, then you should deploy it… and then make sure to run the “configure authentication” step in the configuration wizard.

You can check what is working with the diagnostic urls at:

https://sspurl/ssp/diag

and

https://tspurl/diag

More info here:

https://www.ibm.com/developerworks/mydeveloperworks/wikis/home?lang=en#/wiki/Tivoli%20Endpoint%20Manager/page/Troubleshooting%20Management%20Extender%20for%20iOS

Ben

system · July 6, 2012, 1:00pm

(imported comment written by SystemAdmin)

Hi Ben,

thanks for your reply.

TSP is installed and also the output from https://tspurl/diag looks ok for me (all is green)

TSP Connection test = Connect success

I think i have to tell you that i installed the TSP and SSP on the Server and TSP was working. But we had a Problem with the enrollment of IOS Devices (“enroll your device” is not working any more if you click nothing is happen) We openend a PMR for that Problem.

I tried to uninstalled the SSP TSP and reinstalled it. after this i get the error message “Could not connect to Trusted Services Provider”

i also deleted the folder: tsp,trusted_certs and ssp which are not deleted after the uninstall of SSP and TSP

here is the log from ssp.log

2012-07-06 10:48:25

INFO

SSP

Parameters: {“utf8”=>“âœ“”, “authenticity_token”=>“xxxxxxxxxxxxxxxxxxxxxxxxxxxxx”, “username”=>“email”, “password”=>"

FILTERED

", “commit”=>“Login”}

2012-07-06 10:48:25

INFO

SSP

Could not extract best supported locale: No accepted locales are supported

2012-07-06 10:48:25

INFO

http://SSP.TSPConnector

Submitting request to Trusted Services Provider: /auth/ldap

2012-07-06 10:48:25

INFO

SSP

Redirected to https://mydomain.com:8888/ssp/login

thx

system · July 6, 2012, 1:28pm

(imported comment written by SystemAdmin)

Hi

i did it

i think deleting the folders and a restart of the system did the trick.

i can now login to ssp.

The enrollment is still not working but for this i created a PMR

thx a lot