Hi,
We have recently upgraded from Pega 8.1 to 8.4, and also moved to a different server, so on this new server and updated version, when a user who was able to login successfully in old server (Code base remains same), the user is getting Pega login page after logging in on the SSO login page
Old server:
Hit Pega URL → directed to SSO Login Page->Enters credentials->show respective portal based on access group
New Server:
Hit Pega URL → directed to SSO login page ->Enters credentials->directed back to Pega login page,
@SwarnalathaG0699
Are you running on Tomcat? The issue may be related with the Tomcat version. It appears that tomcat 8.5.42 or below requires certain DSS settings.
See details here:
If your instance is running on tomcat 8.5.42 or below, Please apply/set the following DSS and restart the server:
Owning Ruleset: Pega-Engine
Purpose: prconfig/authentication/usepreauthenticationcookie/default
Value: false
Also set the below:
security/csrf/samesitecookieattributevalue = None ((Note none is different from empty))
prconfig/http/setsecurecookie/default = true
prconfig/authentication/redirectguests/default = False
----> Does that resolve the issue?
If it does resolve by turning off samesite, then issue is with specific tomcat version being used.
If you still encounter issues could you share the network trace?
@MarijeSchillern Thanks for you response and the info, we are using Tomcat 9.0.50
@SwarnalathaG0699 that all seems fine according to the Platform Support Guide and the Installation Guide for Tomcat
Please could you try the DSS workarounds to see if that makes a difference?
If you still encounter issues could you log a support incident and share the network trace and full configuration details?
Please let us know the INC number so that we can help track it if no further suggestions are provided to your question on the forum.
@MarijeSchillern Sure, I will try the DSS changes if not we will raise an SR, Thanks!