Question
Vivat
NL
Last activity: 20 Apr 2022 13:57 EDT
The portal configured in anonymous authentication service should not be used for anonymous authentication service
Hi,
I'm trying to get anonymous access working on an "Pega Personal Edition v8.2.1" installation. I think i've correctly setup everything, but always end up with the error:
"The portal configured in anonymous authentication service should not be used for anonymous authentication service"
I use the following script to create a new application:
1. Create new Application of type "Custom"
2. Create a copy of the Data Transform "pyDefaultForNonPegaOperator" and complete the property values.
3. Create a copy of the operator "PRPC:Unauthenticated" and select that operator in the "pega:Browser" requestortype.
4. I create a new anonymous "Create Authentication Service" and select the transform.
Upon calling the url of the authentication service i see the given error message.
Any idea how i can resolve this?
***Edited by Moderator Marije to add Capability tags***
Vivat
NL
This is the complete script i follow:
This is the complete script i follow:
Start with clean Pega Personal v8.2.1 installation:
# Create application
1. Login using "[email protected]" / "install"
2. Choose "Build application" on introduction screen"
3. Choose application type "Custom"
4. Confirm with "Use this application type"
5. Name your application: "pocdx"
6. Confirm with button "Create application"
7. Add user: "[email protected]" as "Administrator", click button "Add"
8. Keep generated password.
9. Click "Log off"
# Login to pocdx application
1. login user as "[email protected]"
2. Change password and keep
# Create new Data Transform for provisioning new operators
1. Switch to "Dev Studio"
2. Select "Records"
3. Expand "Data Model" > "Data Transform"
4. Filter on Column Name with value "pyDefaultForNonPegaOperator"
5. Click on the transform "pyDefaultForNonPegaOperator"
6. Click "Save as" button
7. Enter Identifier name: "pocdxDefaultUserForNonPegaOperator"
8. Enter Label: "default Model for PocDX external operator"
9. Click "Create and open"
10. Select value for ".pyWorkGroup": "default@OH245A" (depends on application setup)
11. Select value for ".pyDefaultTimeZone": "Europe/Amsterdam"
12. Select value for ".pyUseLocale": "nl_NL"
13. Select value for ".pyAccessGroup": "Pocdx:Administrators"
14. Select value for ".pyOrganization": "OH245A" (depends on application setup)
15. Select value for ".pyOrgDivision": "Div" (depends on application setup)
16. Select value for ".pyOrgUnit": "Unit" (depends on application setup)
17. Click the button "Save"
# Create Unauthenticated access group for application
1. Switch to "Dev studio"
2. Click "Records"
3. Expand "SysAdmin"
4. Select "Requestor Type"
5. Select "pega" "BROWSER", triple-click to open
6. It should say "PRPC:Unauthenticated", click the "Open" icon next to this field
7. Click "Save as" button
8. Give description: "POCDX:Unauthenticated"
9. Give Access Group Name: "POCDX:Unauthenticated"
10. Click "Create and open"
11. Select the "Application Name": "Pocdx"
12. Select the "Version": "01.01.01"
13. Change "PegaRULES:Guest" to "PegaRULES:Guest:Maximum"
14. Change Available portals from "pyCaseManager" to "pyCaseWorker"
15. Click button "Save"
16. On previous tab: "POCDX:Unauthenticated", change "Access Group Name" from "PRPC:Unauthenticated" in "POCDX:Unauthenticated"
17. Click "Save"
# Create Anonymous Authentication Service
1. Switch to "Dev Studio"
2. Click Configure > Org&Security > Authentication > Create Authentication Service
3. Authentication Type: "Anonymous"
4. Name: "anonymous"
5. Click "Create & Open"
6. Authentication service alias: "anonymous"
7. Select "Data transform" and transform "pocdxDefaultUserForNonPegaOperator"
8. Select Tab "History"
9. Description: "Lorem ipsum"
10. Usage: "Lorem ipsum"
11. Click button "Save"
Then i request: https://pega.xxxx.local/prweb/PRAuth/anonymous
This will display: "Login terminated because a post-authentication activity or policy failed."
In the logs i see:
Log snippet 1:
2019-07-24 11:10:23,835 [-jsse-nio-443-exec-6] [ STANDARD] [ ] [ Pocdx:01.01.01] (anonymous.AnonymousAuthHandler) ERROR pega.reaal.local| Proprietary information hidden - The portal configured in anonymous authentication service should not be used for anonymous authentication service
2019-07-24 11:10:23,835 [-jsse-nio-443-exec-6] [ STANDARD] [ ] [ Pocdx:01.01.01] (ngineinterface.service.HttpAPI) ERROR pega.reaal.local| Proprietary information hidden - Login terminated because a post-authentication activity or policy failed.
Log snippet 2:
2019-07-24 08:41:29,849 GMT*8*SECU0016*0*0*fbd956178a4b8d14e664956cdceb0230*NA*NA*HDF35696QON2IZKB50VYASF3USXY4X0PSA*[email protected]*PegaSample*PegaRULES:8*1ddea78d3ad0aadb4d67ad3aac67c46c*Y*8*HDF35696QON2IZKB50VYASF3USXY4X0PSA*327*https-jsse-nio-443-exec-3*STANDARD*URLTampering*pega.reaal.local| Proprietary information hidden*Activity=ReloadSection*Rule-Obj-Activity:ReloadSection*@BASECLASS RELOADSECTION #20180928T124801.444 GMT Step: 11 Circum: 0*0****NA*NA*Data-Portal-DesignerStudio*pyDisplayHarness*Data-Portal-DesignerStudio*pyDisplayHarness*java;RULE-OBJ-ACTIVITY @BASECLASS RELOADSECTION #20180928T124801.444 GMT Step: 11 Circum: 0;doActivity Rule-Obj-Activity:ReloadSection;initial Executable;0 additional frames in stack;*NA*Unauthorized access to the stream rule : Unauthorized access to the stream rule Data-Portal-DesignerStudio.pzRunTime_ControlPanel Rule-HTML-Section*
2019-07-24 08:49:06,352 GMT*8*SECU0016*0*0*fbd956178a4b8d14e664956cdceb0230*NA*NA*HZQS45T1T3XL16RXBT6XZ3F48ZF4161MZA*[email protected]*ONZSJJ-Pocdx-Work*Pocdx:01.01.01*533b57432e66703ddc3886c5fe2abfa4*Y*7*HZQS45T1T3XL16RXBT6XZ3F48ZF4161MZA*346*https-jsse-nio-443-exec-4*STANDARD*URLTampering*pega.reaal.local| Proprietary information hidden*Activity=ReloadSection*Rule-Obj-Activity:ReloadSection*@BASECLASS RELOADSECTION #20180928T124801.444 GMT Step: 11 Circum: 0*0****NA*NA*Data-Portal-PegaAdminStudio*pyPortalHarness*Data-Portal-PegaAdminStudio*pyPortalHarness*java;RULE-OBJ-ACTIVITY @BASECLASS RELOADSECTION #20180928T124801.444 GMT Step: 11 Circum: 0;doActivity Rule-Obj-Activity:ReloadSection;initial Executable;0 additional frames in stack;*NA*Unauthorized access to the stream rule : Unauthorized access to the stream rule Data-Portal-PegaAdminStudio.pzRunTime_ControlPanel Rule-HTML-Section*
2019-07-24 08:49:35,251 GMT*8*SECU0016*0*0*fbd956178a4b8d14e664956cdceb0230*NA*NA*HZQS45T1T3XL16RXBT6XZ3F48ZF4161MZA*[email protected]*ONZSJJ-Pocdx-Work*Pocdx:01.01.01*533b57432e66703ddc3886c5fe2abfa4*Y*15*HZQS45T1T3XL16RXBT6XZ3F48ZF4161MZA*349*https-jsse-nio-443-exec-5*OpenPortal_Developer*URLTampering*pega.reaal.local| Proprietary information hidden*Activity=ReloadSection*Rule-Obj-Activity:ReloadSection*@BASECLASS RELOADSECTION #20180928T124801.444 GMT Step: 11 Circum: 0*0****NA*NA*Data-Portal-DesignerStudio*pyDisplayHarness*Data-Portal-DesignerStudio*pyDisplayHarness*java;RULE-OBJ-ACTIVITY @BASECLASS RELOADSECTION #20180928T124801.444 GMT Step: 11 Circum: 0;doActivity Rule-Obj-Activity:ReloadSection;initial Executable;0 additional frames in stack;*NA*Unauthorized access to the stream rule : Unauthorized access to the stream rule Data-Portal-DesignerStudio.pzRunTime_ControlPanel Rule-HTML-Section*
I attached:
- an export after i followed the script to create the application.
- I also attached the log-files.
When i have got anonymouse-access working for the portal, my intention is to see if it's possible to use this authentication for the DX API.
LTIMindtree
DE
1. Create new Access group , without any Portal
2. Create new operator and associate that newly created access group
3. Create Authentication Service : Anonymous and use operator which is recently created and Enable Service and collect Auth URL
4. GoTo Channels and create mashup, in the URL. use Anonymous Authentication service URL and Select any action: Display a Page / Create a new case...
5. Collect Mashup Code and embed it in HTML or any web page
6. It will render without login page and without any kind of authentication issue.
Updated: 24 Feb 2022 7:11 EST
Areteans
BE
@Vachan.Chauhan Tried the same thing in our system but its going to login page
1.Created anonymous authentication service
2.Added a operator and access group added a new Anonymous portal in the access group
3.in the mash up gave this anonymous url
its always opening login page.where did i go wrong here?
Pegasystems Inc.
IN
Hi,
Custom portal should be configured in Access group. Can you create a custom portal and add the newly created custom portal to the Access group. Portal should not be OOTB.
AI4Process
GB
Hello Nayar,
I am facing similar issue as described above. I am using Pega 8.3. And access group- whihc I am using in the pega:BROWSER requester type does not contain any OOTB portal.
Can you please suggest anything?
My log -
(anonymous.AnonymousAuthHandler) ERROR localhost| Proprietary information hidden - The portal configured in anonymous authentication service should not be used for anonymous authentication service
(ngineinterface.service.HttpAPI) ERROR localhost| Proprietary information hidden - Login terminated because a post-authentication activity or policy failed.
Updated: 12 Dec 2020 15:19 EST
AI4Process
GB
The issue is fixed now. I was using incorrect AG for Guest user. The issue is fixed as per comments from Marty.
Thank for the Help.
Best Regards
Chandramouli Mukherjee
Virtusa Corporation
US
Hi @ChandramouleeM, I am also facing same the issue. the webpage html having mashup code always shows Pega login page. Do we need to update anything in pega:BROWSER requester type?
LTIMindtree
DE
@GanapathyG Please share screen shot of Access group, Operator, Mashup configuration page and Authentication service.
Virtusa Corporation
US
@Vachan.ChauhanThanks for your response. And I figured it out. I had kept the access group in the model operator ID empty and that was causing the issue. After I updated that access group with custom portal, it worked.
Pegasystems Inc.
US
The access group of the operator used must not contain any of the following portals - Developer, pxAdminStudio, pyCaseManager7, pyCaseWorker, pxExpress.
Areteans
BE
I tried the below steps in 8.7 but its navigating to login page always
1.Created anonymous authentication service
2.Added a operator and access group added a new Anonymous portal in the access group
3.in the mash up gave this anonymous url
its always opening login page.where did i go wrong here?
LTIMindtree
DE
@MrudulaP7041 Please share screen shot of Access group, Operator, Mashup configuration page and Authentication service.
Accenture
GB
@Vachan.Chauhan Hi, Greetings. I am trying to use anonymous Authentication Service and i get the below message all the time
Invalid URL
The application has been upgraded to use a new URL. Use the following URL: https://acn-fs-retail-e2e.pegatsdemo.com/prweb/PRAuth/app/sbk-demo/
This is my configuration
When i embed in a HTML, i see as below
Any ideas on what's causing that issue?