Do you use local windows user accounts and local ePO user accounts or is your install integrated into AD?
Are you able to log into ePO with an account thats a global administrator? I would also check to see what user account is used to start the ePO services.
As a test i was able to create an ePO user and a permission set that set access only to contacts.
As far as I know, the account I'm logging in as is a global administrator, and it's a Windows user account. (I didn't configure any of it).
I don't think there were any other accounts made, so I can't test with any other type of user.
Message was edited by: rx-78-2 on 7/15/12 8:53:11 AM CDT
This does sound very much like an inability to communicate with SQL. Can you restart the ePO services, then once you are able to log in, zip up and attach a copy of the orion.log?
Definity a username issue
2012-07-06 10:03:48,827 WARN [http-8443-Processor21] server.OrionLoginModule - User did not have any permission sets or mapped groups: jade\JADServiceABB. Rejecting login.
2012-07-06 10:03:48,842 WARN [http-8443-Processor21] realm.JAASRealm - Login exception authenticating username "jade\JADServiceABB"
javax.security.auth.login.LoginException: com.mcafee.orion.core.auth.AuthorizationException: User has no permission sets.
Use the KB entry below to check the security settings on the DB
When you tried the https://localhost:8443/core/config check was the user 'jade\JADServiceABB'?
that account is not the correct user account. I was just testing that one in case it had been used as a secondary account.
1 of 1 people found this helpful
Actually, this doesn't look like an authentication issue, but more like one or more of the core extensions is missing or damaged. I would recommend opening a case with Support for this, as they will need to go through the list of extensions in your environment to identify the culprit.
Thanks for the help. I'll open up a support case.
Please could you delete this discussion, I'd rather not have account names lingering on the net.