question

TonyStrother-2074 avatar image
0 Votes"
TonyStrother-2074 asked TonyStrother-2074 answered

SCOM 2019 UR3 Web Console SSL sign in not working

Afternoon,
Environment: 4 servers, all Windows Server 2019
Management Servers-2-SCOM 2019 UR3
2nd Mgmt Server also has Web Console installed with SSL option elected at install time
3rd server is SCOM reporting server, SQL Native Reporting Services, 2019
4th is SQL 2019 server

After running the install, updating to UR3 and restarting, open the console, go to Administration/Settings/Web Console:
Web Console Address is correct, FQDN of server, followed by/OperationsManager
When I select Test, I get the expected Sign In with the two options.
I select Use Alternate Credentials (selecting use Windows does not work), enter domain\account then password, nothing happens...
I have restarted the server numerous times as well as uninstall/reinstall Web Console once.

I cannot seem to find a resolution, so your assistance and guidance is greatly appreciated!
Tony

msc-operations-manager
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

TonyStrother-2074 avatar image
0 Votes"
TonyStrother-2074 answered XinGuo-MSFT commented

Evening, Restarted the SCOM servers, cleared Stored passwords (again) on my Win 10 WS, tried again and the InPrivate Browsing worked in Edge.

Why would it take InPrivate for this to work?

Thank you!!
Tony

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

When we use the InPrivate mode, the previous browsing history, download history, cookies and other site data, cached images and files, passwords, auto-fill form data, site permissions, and hosted application data will not be recalled (similar to clear cache).


0 Votes 0 ·
XinGuo-MSFT avatar image
0 Votes"
XinGuo-MSFT answered

Hi,

  • Please try to clear Windows Credential Manager Stored Passwords.

Accessing Credential Manager
https://support.microsoft.com/en-us/windows/accessing-credential-manager-1b5c916a-6a16-889f-8581-fc16e8165ac0

  • Use the InPrivate windows to browse the Web Console

Browse InPrivate in Microsoft Edge
https://support.microsoft.com/en-us/microsoft-edge/browse-inprivate-in-microsoft-edge-e6f47704-340c-7d4f-b00d-d0cf35aa1fcc

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

TonyStrother-2074 avatar image
0 Votes"
TonyStrother-2074 answered

Morning, I looked in Credential Manager, nothing stored there for Web. I removed everything under Windows and tried again, no success.
Going to recreate the Web Cert this morning and see if that might be an issue.
Then I will also try the In Private browsing.
Will post the result.
Thank you again very much!
Tony

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

TonyStrother-2074 avatar image
1 Vote"
TonyStrother-2074 answered TonyStrother-2074 commented

Morning,
YAY!!! It is working, sort of??!

I fixed the certificate issue with a new cert.
Also changed the dns "c record" which pointed to the web console server to an "a record" with the IP of the Netscaler VIP. This was in a service request that I thought was done correctly, but was not.

I should also have explained that all of our web infrastructure is behind a Netscaler, so we use "VIPs" to redirect what a user types is, in this case, a friendly name for the SCOM 2019 Web Console, which translates to the actual server where the web console piece is installed.

So, since I have gotten past this, another issue presents itself.
When I enter the "https://friendly name/OperationsManager" that gets translated by the Netscaler and goes to the 2019 Web Console, I do not get prompted for credentials. I am guessing it is reading my cached windows credentials(??) and it passes me right through to the web console. Not good!!
This works with both the "friendly name" and the "https://servername/OperationsManager".
Any ideas on this one?
I am continuing to work on it.
Thanks!!
Tony

· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

As mentioned above, we could try to clear the Stored Passwords and use the In Private browsing.

0 Votes 0 ·

Evening, I tried your suggestion, It did not work, for me.

Tony

0 Votes 0 ·
TonyStrother-2074 avatar image
0 Votes"
TonyStrother-2074 answered

Morning, that part I understand.
However, I cannot tell my users they have to use InPrivate browsing when they need to access the Web Console. There has to be another solution or reason why this is working this way.
I have another SCOM 2019 UR3 environment, however it is Server 2016. It does not behave this way.

Continuing to work on this, but you solution does work for now.

Thank you,
Tony

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.