Bug 1367592

Summary: No logs registered for external auth login failure.
Product: Red Hat CloudForms Management Engine Reporter: amogh <amavinag>
Component: ApplianceAssignee: Joe Vlcek <jvlcek>
Status: CLOSED WORKSFORME QA Contact: Matt Pusateri <mpusater>
Severity: medium Docs Contact:
Priority: medium    
Version: 5.6.0CC: abellott, dajohnso, jhardy, jvlcek, mpusater, obarenbo
Target Milestone: GA   
Target Release: cfme-future   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard: auth:ldap
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2017-12-18 22:46:57 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description amogh 2016-08-16 21:35:54 UTC 
Description of problem:
No logs registered for failed user login when external auth is configured. logs are registered correctly for "admin" user with wrong password.

Version-Release number of selected component (if applicable):
5.6.1.2.20160810181333_8ba817b

How reproducible:
always.

Steps to Reproduce:
1. configure CFME for external auth, enable "get user groups from external auth"
2. login to appliance_console and configure IPA external auth for cfme.
3. launch cfme webui, and try to login with any username and password or correct username and wrong password. example: "testuser"
4. Observe that web ui displays error "Incorrect Username or Password" as expected.
5. Observe that there is no error/warning messages related to "testuser" login failure in audit.log or evm.log.
6. repeat, step #3 to step #5 for "admin" user with wrong password.
5. observe webui displays error. check the audit.log and evm.log, observe that there is "[----] W, [2016-08-16T16:38:54.724109 #17156:17c6e00]  WARN -- Failure: MIQ(Authenticator.authenticate) userid: [admin] - Authentication failed for userid admin" is displayed.

Actual results:
No logs registered for failed user login. Logs are displayed correctly for "admin" user.

Expected results:
Proper error/earning messages needs to be updated to the audit and evm logs when user Authentication fails.

Additional info:
steps to configure IPA external auth for cfme are documented here: http://file.rdu.redhat.com/abellott/manageiq_docs/master/auth/ipa_ad_trust.html
Comment 2 Joe Vlcek 2017-11-06 22:29:03 UTC 
Matt
Please confirm if this is still an issue. I suspect it very likely has been addressed by improvements in this since it had been initially reported over a year ago.

Thank you, JoeV
Comment 3 Joe Vlcek 2017-12-18 22:46:57 UTC 
It seems this issue has been resolved. When using an incorrect password the following is seen in the evm.log file:

[----] W, [2017-12-18T17:43:56.971636 #13567:d0fb88]  WARN -- : <AuditFailure> MIQ(Base.authenticate) userid: [jvlcek] - Authentication failed for userid jvlcek: Failure setting user credentials
[----] W, [2017-12-18T17:43:56.971771 #13567:d0fb88]  WARN -- : MIQ(Authenticator::Httpd#authenticate) Authentication failed
[----] E, [2017-12-18T17:43:56.972216 #13567:d0fb88] ERROR -- : MIQ(dashboard_controller-external_authenticate): Sorry, the username or password you entered is incorrect.

I am marking this as CLOSED/WORKSFORME

Please reopen with more information if it is still an issue.
Comment 4 Matt Pusateri 2018-01-10 18:33:45 UTC 
clearing the needs info b/c it seems fixed in later version than reported and closed by Dev.