Steps for fixing SSO certificate issue on Cisco CloudCenter 4.7

Updated guide:

1) Upload attached file (samlKeystore.jks). In case of HA mode it needs to do on both CCMs.

# cd /usr/local/tomcat/webapps/ROOT/WEB-INF/lib/

# cp /tmp/samlKeystore.jks security/

version of library based on CCC version:

# cp cliqr-security-4.7.2.jar ~/

# jar uf cliqr-security-4.7.2.jar security/samlKeystore.jks

# chown -R cliqruser.cliqruser cliqr-security-4.7.2.jar

# rm –rf security

2) /etc/init.d/tomcat restart

a)      For HA mode stop tomcat service on second CCM

3) log in to CCM with admin@osmosix.com user and on Manage Vendor Admins go to Authentication settings click on Update button. That would update corresponding metadata file.

4) Download SP Metadata XML file

            a) for HA mode copy xml file from CCM1 to CCM2, make sure permissions are the same as CCM1. Location of xml is  /usr/local/osmosix/metadata/sp/

            b) start tomcat service on second CCM

5) Upload that XML file to IDP

6)Validate solution

In case of multy tenants – it needs to repeat steps 3-5 for each tenant.

Network connection automatically keeps down and up on Centos7

You can find below error on /var/log/message/

Issue:: 

NetworkManager[642]: <info> Activation (enp0s3) successful, device activated.

avahi-daemon[531]: Registering new address record for fe80::a00:27ff:fe6a:55a4 on enp0s3.*.

qidiziCentos kernel: e1000: enp0s3 NIC Link is Down

NetworkManager[642]: <info> (enp0s3): link disconnected (deferring action for 4 seconds)

NetworkManager[642]: <info> (enp0s3): link disconnected (calling deferred action)

NetworkManager[642]: <info> (enp0s3): device state change: activated -> unavailable (re

fix ::

$ systemctl restart networkmanager

$ systemctl restart network

$ ifdown <devicename, e.g. enp0s8>

$ ifup <devicename, e.g. enp0s8>