Jump to content
Welcome to our new Citrix community!
  • 0

Linux FAS Login issue


Jeff Riechers

Question

Setting up FAS for SAML on my demo farm.  Works great for Windows,  but doesn't work for any of my linux distros. 

 

I successfuly authenticate with NetScaler, but then get Invalid Login.  Looking at the troubleshooting guides mine is not exhibiting the same problems.  Its acting almost like it can't process the information correctly.

 

Trying with gmail shadow accounts and Azure AD SAML.  Here is what I have done so far.

 

Followed FAS for Linux setup directions and have proper cert placement and configuration.

 

Looking in the hdx.log files this is what I see during login.

 2023-12-19 08:03:07.642 <P10580:S6> citrix-ctxlogin: : failed to get value or value invalid! 
2023-12-19 08:03:07.642 <P10580:S6> citrix-ctxlogin: : failed to get login greeter title 
2023-12-19 08:03:07.644 <P10580:S6> citrix-ctxlogin: : failed to get value or value invalid! 
2023-12-19 08:03:07.644 <P10580:S6> citrix-ctxlogin: : failed to get login greeter body 
2023-12-19 08:03:07.688 <P10580:S6> citrix-ctxlogin: : socket accept failed: Interrupted system call 
2023-12-19 08:03:07.688 <P10580:S6> citrix-ctxlogin: : skip this time since loginui cannot be exited now 
2023-12-19 08:03:07.688 <P10580:S6> citrix-ctxlogin: : nanosleep() failed: Interrupted system call 

<these repeat many times until the following shows up>

2023-12-19 08:03:07.895 <P10580:S6> citrix-ctxlogin: : failed to connect to passwd server: No such file or directory. 

<then some more repeating of the sleep and skip>

2023-12-19 08:03:09.628 <P10580:S6> citrix-ctxlogin: : failed validation of user '<username>@HOME.LAB': INVALID_PASSWORD 
2023-12-19 08:03:09.628 <P10580:S6> citrix-ctxlogin: : socket accept failed: Interrupted system call 
2023-12-19 08:03:09.628 <P10580:S6> citrix-ctxlogin: : skip this time since loginui cannot be exited now 

 

The thing is, that is not the proper UPN.  It seems to be stripping out everything after the @ and replacing it with the DNS domain name of my AD.  HOME.LAB.

Link to comment

1 answer to this question

Recommended Posts

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...