Testing a third-party authentication setup - Security Center 5.12

Security Center Administrator Guide 5.12

Product
Security Center
Content type
Guides > Administrator guides
Version
5.12
Language
English
Last updated
2024-09-13

You can test your third-party authentication setup and troubleshoot issues with the configuration.

Your third-party authentication setup can fail even though the system validates the properties at each step. The Test logon tool indicates where in the process the authentication has failed. The tool offers logs related to user authentication and a browser console that can display warnings and errors.

About using the Test logon tool

To access the tool, your user account must be a member of the Administrators group.

Creating a role: Authentication Service window in Config Tool shows the Test logon button.

During the Authentication Service role creation process, you can test the configuration using the Test logon button in the Test the configuration page of the Creating a role: Authentication Service window. If you need to test an Authentication Service role after the configuration, click Test logon at the bottom of the window.

The tool opens in a separate window that is divided into three views:
  • Logon process preview
  • Output logs
  • Browser console messages

Logon preview view

The Logon preview view allows you to preview the logon process to Security Center using your third-party Authentication Service provider. The preview helps you to troubleshoot and identify issues with the configuration.

Logon preview page of the Test logon troubleshooter tool.

To access logs from the server console, you must enter your Server Admin password. If you need to bypass this step, click Skip. In that case, you can only access the client-side logs and the server-side logs are disabled.

To display personally identifiable information in logs, you can enable the Log Personally Identifiable Information (PII) option. If you enable this option, you must enter the Server Admin password to proceed.
CAUTION:
Logging PII can cause significant privacy risks because it might disclose information such as security tokens, email addresses, or anything that can identify a user. We recommend that you manually deactivate PII logging when it is no longer required. PII logging stops automatically in 30 minutes or when the authentication test is finished.

If you connect using the Server Admin password or skip this step, the sign-in page of your third-party service provider opens. Enter your username and password to test the logon.

If the Authentication Service role is properly configured, the following message appears: Result: Logon was successful. Otherwise, the message Result: Connection failed appears with the corresponding solution that indicates where in the process that the authentication has failed.
Logon preview view in the Test logon window shows error in the third-party service provider configuration.

Output view

The Output view shows a list of messages, errors, and warnings from Security Center. It can display logs from both the server and the client. The server-side logs are displayed only when the Server Admin password has been entered in the Logon preview view.