Sitecore 9.1 and Identity Server
I install Sitecore XP 9.1 using SIF but identity server doesn't work. If I delete the IIS site for it I can still log into Sitecore.
Nothing in log for Sitecore or identity server. Anyone help?
sitecore-install-framework installation
New contributor
add a comment |
I install Sitecore XP 9.1 using SIF but identity server doesn't work. If I delete the IIS site for it I can still log into Sitecore.
Nothing in log for Sitecore or identity server. Anyone help?
sitecore-install-framework installation
New contributor
add a comment |
I install Sitecore XP 9.1 using SIF but identity server doesn't work. If I delete the IIS site for it I can still log into Sitecore.
Nothing in log for Sitecore or identity server. Anyone help?
sitecore-install-framework installation
New contributor
I install Sitecore XP 9.1 using SIF but identity server doesn't work. If I delete the IIS site for it I can still log into Sitecore.
Nothing in log for Sitecore or identity server. Anyone help?
sitecore-install-framework installation
sitecore-install-framework installation
New contributor
New contributor
New contributor
asked 4 hours ago
Elton PElton P
61
61
New contributor
New contributor
add a comment |
add a comment |
1 Answer
1
active
oldest
votes
The most likely cause if you're not seeing any errors is that the new security configuration is disabled in Web.Config. It needs to be:
<add key="security:define" value="Sitecore" />
You can still log in to Sitecore as if it's disabled or it can't connect to the identity server it will fall back to the old sitecore login page.
You should be able to see an error in the logs if this config is enabled, but it still can't connect to the identity server:
ERROR Unable to reach an external identity provider
The identity server URL is set by default on the identityServerAuthority
Sitecore variable in App_ConfigSitecoreOwin.Authentication.IdentityServerSitecore.Owin.Authentication.IdentityServer.config
Make sure that it is set correctly, that the identity server is up and running. If you go directly to your identity server URL, it should show the sitecore login page. If not, check your identity server config in ConfigproductionSitecore.IdentityServer.Host.xml
which should have correct settings for CertificateThumbprint, ConnectionString, AllowedCorsOrigins, and ClientSecrets. The ClientSecret value needs to be matching in Sitecore's ConnectionStrings.config sitecoreidentity.secret
.
add a comment |
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "664"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: false,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Elton P is a new contributor. Be nice, and check out our Code of Conduct.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
var $window = $(window),
onScroll = function(e) {
var $elem = $('.new-login-left'),
docViewTop = $window.scrollTop(),
docViewBottom = docViewTop + $window.height(),
elemTop = $elem.offset().top,
elemBottom = elemTop + $elem.height();
if ((docViewTop elemBottom)) {
StackExchange.using('gps', function() { StackExchange.gps.track('embedded_signup_form.view', { location: 'question_page' }); });
$window.unbind('scroll', onScroll);
}
};
$window.on('scroll', onScroll);
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsitecore.stackexchange.com%2fquestions%2f16117%2fsitecore-9-1-and-identity-server%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
1 Answer
1
active
oldest
votes
1 Answer
1
active
oldest
votes
active
oldest
votes
active
oldest
votes
The most likely cause if you're not seeing any errors is that the new security configuration is disabled in Web.Config. It needs to be:
<add key="security:define" value="Sitecore" />
You can still log in to Sitecore as if it's disabled or it can't connect to the identity server it will fall back to the old sitecore login page.
You should be able to see an error in the logs if this config is enabled, but it still can't connect to the identity server:
ERROR Unable to reach an external identity provider
The identity server URL is set by default on the identityServerAuthority
Sitecore variable in App_ConfigSitecoreOwin.Authentication.IdentityServerSitecore.Owin.Authentication.IdentityServer.config
Make sure that it is set correctly, that the identity server is up and running. If you go directly to your identity server URL, it should show the sitecore login page. If not, check your identity server config in ConfigproductionSitecore.IdentityServer.Host.xml
which should have correct settings for CertificateThumbprint, ConnectionString, AllowedCorsOrigins, and ClientSecrets. The ClientSecret value needs to be matching in Sitecore's ConnectionStrings.config sitecoreidentity.secret
.
add a comment |
The most likely cause if you're not seeing any errors is that the new security configuration is disabled in Web.Config. It needs to be:
<add key="security:define" value="Sitecore" />
You can still log in to Sitecore as if it's disabled or it can't connect to the identity server it will fall back to the old sitecore login page.
You should be able to see an error in the logs if this config is enabled, but it still can't connect to the identity server:
ERROR Unable to reach an external identity provider
The identity server URL is set by default on the identityServerAuthority
Sitecore variable in App_ConfigSitecoreOwin.Authentication.IdentityServerSitecore.Owin.Authentication.IdentityServer.config
Make sure that it is set correctly, that the identity server is up and running. If you go directly to your identity server URL, it should show the sitecore login page. If not, check your identity server config in ConfigproductionSitecore.IdentityServer.Host.xml
which should have correct settings for CertificateThumbprint, ConnectionString, AllowedCorsOrigins, and ClientSecrets. The ClientSecret value needs to be matching in Sitecore's ConnectionStrings.config sitecoreidentity.secret
.
add a comment |
The most likely cause if you're not seeing any errors is that the new security configuration is disabled in Web.Config. It needs to be:
<add key="security:define" value="Sitecore" />
You can still log in to Sitecore as if it's disabled or it can't connect to the identity server it will fall back to the old sitecore login page.
You should be able to see an error in the logs if this config is enabled, but it still can't connect to the identity server:
ERROR Unable to reach an external identity provider
The identity server URL is set by default on the identityServerAuthority
Sitecore variable in App_ConfigSitecoreOwin.Authentication.IdentityServerSitecore.Owin.Authentication.IdentityServer.config
Make sure that it is set correctly, that the identity server is up and running. If you go directly to your identity server URL, it should show the sitecore login page. If not, check your identity server config in ConfigproductionSitecore.IdentityServer.Host.xml
which should have correct settings for CertificateThumbprint, ConnectionString, AllowedCorsOrigins, and ClientSecrets. The ClientSecret value needs to be matching in Sitecore's ConnectionStrings.config sitecoreidentity.secret
.
The most likely cause if you're not seeing any errors is that the new security configuration is disabled in Web.Config. It needs to be:
<add key="security:define" value="Sitecore" />
You can still log in to Sitecore as if it's disabled or it can't connect to the identity server it will fall back to the old sitecore login page.
You should be able to see an error in the logs if this config is enabled, but it still can't connect to the identity server:
ERROR Unable to reach an external identity provider
The identity server URL is set by default on the identityServerAuthority
Sitecore variable in App_ConfigSitecoreOwin.Authentication.IdentityServerSitecore.Owin.Authentication.IdentityServer.config
Make sure that it is set correctly, that the identity server is up and running. If you go directly to your identity server URL, it should show the sitecore login page. If not, check your identity server config in ConfigproductionSitecore.IdentityServer.Host.xml
which should have correct settings for CertificateThumbprint, ConnectionString, AllowedCorsOrigins, and ClientSecrets. The ClientSecret value needs to be matching in Sitecore's ConnectionStrings.config sitecoreidentity.secret
.
edited 4 hours ago
answered 4 hours ago
Mark GibbonsMark Gibbons
842219
842219
add a comment |
add a comment |
Elton P is a new contributor. Be nice, and check out our Code of Conduct.
Elton P is a new contributor. Be nice, and check out our Code of Conduct.
Elton P is a new contributor. Be nice, and check out our Code of Conduct.
Elton P is a new contributor. Be nice, and check out our Code of Conduct.
Thanks for contributing an answer to Sitecore Stack Exchange!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
var $window = $(window),
onScroll = function(e) {
var $elem = $('.new-login-left'),
docViewTop = $window.scrollTop(),
docViewBottom = docViewTop + $window.height(),
elemTop = $elem.offset().top,
elemBottom = elemTop + $elem.height();
if ((docViewTop elemBottom)) {
StackExchange.using('gps', function() { StackExchange.gps.track('embedded_signup_form.view', { location: 'question_page' }); });
$window.unbind('scroll', onScroll);
}
};
$window.on('scroll', onScroll);
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsitecore.stackexchange.com%2fquestions%2f16117%2fsitecore-9-1-and-identity-server%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
var $window = $(window),
onScroll = function(e) {
var $elem = $('.new-login-left'),
docViewTop = $window.scrollTop(),
docViewBottom = docViewTop + $window.height(),
elemTop = $elem.offset().top,
elemBottom = elemTop + $elem.height();
if ((docViewTop elemBottom)) {
StackExchange.using('gps', function() { StackExchange.gps.track('embedded_signup_form.view', { location: 'question_page' }); });
$window.unbind('scroll', onScroll);
}
};
$window.on('scroll', onScroll);
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
var $window = $(window),
onScroll = function(e) {
var $elem = $('.new-login-left'),
docViewTop = $window.scrollTop(),
docViewBottom = docViewTop + $window.height(),
elemTop = $elem.offset().top,
elemBottom = elemTop + $elem.height();
if ((docViewTop elemBottom)) {
StackExchange.using('gps', function() { StackExchange.gps.track('embedded_signup_form.view', { location: 'question_page' }); });
$window.unbind('scroll', onScroll);
}
};
$window.on('scroll', onScroll);
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
var $window = $(window),
onScroll = function(e) {
var $elem = $('.new-login-left'),
docViewTop = $window.scrollTop(),
docViewBottom = docViewTop + $window.height(),
elemTop = $elem.offset().top,
elemBottom = elemTop + $elem.height();
if ((docViewTop elemBottom)) {
StackExchange.using('gps', function() { StackExchange.gps.track('embedded_signup_form.view', { location: 'question_page' }); });
$window.unbind('scroll', onScroll);
}
};
$window.on('scroll', onScroll);
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown