Unable to authenticate Relay user. Multiple authentication exceptions.

Unable to authenticate Relay user. Multiple authentication exceptions.

When applying a password policy or login policy, customer’s stand-alone relay(s) will not load properly. They are giving an Unable to authenticate Relay user error. 

ERROR (12/03) 15:05:42 [com.stoneware.service.application.Relay[relay-SWRelay1]]: Unable to authenticate Relay user. 
com.stoneware.server.auth.AuthenticatorException: Multiple authentication exceptions. 
at com.stoneware.kernel.level2.CoreService$CoreServiceImpl.a(Noseeum:646) 
at com.stoneware.kernel.level2.CoreService$CoreServiceImpl.authenticate(Noseeum:537) 
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) 
at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source) 
at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source) 
at java.lang.reflect.Method.invoke(Unknown Source) 
at sun.rmi.server.UnicastServerRef.dispatch(Unknown Source) 
at sun.rmi.transport.Transport$1.run(Unknown Source) 
at java.security.AccessController.doPrivileged(Native Method) 
at sun.rmi.transport.Transport.serviceCall(Unknown Source) 
at sun.rmi.transport.tcp.TCPTransport.handleMessages(Unknown Source) 
at sun.rmi.transport.tcp.TCPTransport$ConnectionHandler.run0(Unknown Source) 
at sun.rmi.transport.tcp.TCPTransport$ConnectionHandler.run(Unknown Source) 
at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(Unknown Source) 
at java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source) 
at java.lang.Thread.run(Unknown Source) 
at sun.rmi.transport.StreamRemoteCall.exceptionReceivedFromServer(Unknown Source) 
at sun.rmi.transport.StreamRemoteCall.executeCall(Unknown Source) 
at sun.rmi.server.UnicastRef.invoke(Unknown Source) 
at com.stoneware.kernel.level2.PortalService$PortalServiceImpl_Stub.authenticate(Unknown Source) 
at com.stoneware.beans.a.f.authenticate(Noseeum:76) 
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) 
at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source) 
at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source) 
at java.lang.reflect.Method.invoke(Unknown Source) 
at com.stoneware.beans.a.d.invoke(Noseeum:67) 
at $Proxy7.authenticate(Unknown Source) 
at com.stoneware.beans.CoreServicesBean.authenticate(Noseeum:260) 
at com.stoneware.relay.managers.RelayManager.a(Noseeum:712) 
at com.stoneware.relay.managers.RelayManager.getServerSession(Noseeum:628) 
at com.stoneware.relay.managers.e.a(Noseeum:179) 
at com.stoneware.relay.managers.RelayManager.getRelayConfiguration(Noseeum:232) 
at com.stoneware.jetty.RelayImpl.startup(Noseeum:117) 
at com.stoneware.kernel.b.e.c(Noseeum:209) 
at com.stoneware.kernel.a.f(Noseeum:170) 
at com.stoneware.kernel.f.a(Noseeum:795) 
at com.stoneware.kernel.f.e(Noseeum:447) 
at com.stoneware.kernel.StonewareLoader.(Noseeum:123) 
at com.stoneware.kernel.StonewareLoader.main(Noseeum:157) 
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) 
at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source) 
at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source) 
at java.lang.reflect.Method.invoke(Unknown Source) 
at com.zerog.lax.LAX.launch(DashoA10*..) 
at com.zerog.lax.LAX.main(DashoA10*..)



The customer has multiple Stoneware licenses available for download (one for each licensed loader) and had downloaded and installed a separate license on each loader. 

Part of the relay user authentication at startup involves hashing the license file on the relay and loader, then comparing the hashes. If the hashes match, it is assumed that the relay user is authenticating during start-up and therefore the policies are not applied. If the hashes do not match, it is assumed the relay user is logging in from a browser and the policies are applied. 

For this reason, a customer will need to download only one of their available license files and install it on all their servers. 

Customers see multiple license files available for download purely for book keeping purposes, as some customers prefer to have something physical to reflect each purchase they have made.

    Can't find the KB

    Unable to find the KB to address your issue ?  

      • Recent Articles

      • Lenovo Unified Workspace End-of-Life Questions and Answers

        Will the shutdown of LUW servers and access to downloads affect my server licensing? No, the shutdown of the customer servers and access to the product and licensing downloads will not affect your server licensing. This license is downloaded and ...

      • How do I determine my Unified Workspace license expiration date?

        The best method for determining the licensing information including the expiration date of your Unified Workspace license: Login to your 8090 management console on each server This may take remoting into each LUW server and relay, opening a browser, ...

      • Lenovo Unified Workspace 7.0.2.13 Released

        Highlights of Unified Workspace 7.0.2.13 Before you install: Please view the installation notes here. 7.0.2.13 requires a 7.0 license file. Below is a list of enhancements and fixes released in Unified Workspace 7.0.2.13 Fixed external storage ...

      • LanSchool Documentation Guides

        LanSchool Classic Teacher Console The LanSchool Teacher Console is the interface teachers will use to manage their classroom and students. It contains all the tools necessary for a teacher to effectively interact with students and create a ...

      • Lenovo Unified Workspace 7.0.1.41 Released

        Highlights of Unified Workspace 7.0.1.41 Before you install: Please view the installation notes here. 7.0.1.41 requires a 7.0 license file. Below is a list of enhancements and fixes for Unified Workspace 7.0.1.41 Updated Log4j Updated Java Updated ...

      • Related Articles

      • Unable to start Relay Service

        Question: The Relay Service will not start on the server.  The /stoneware/config/webNetworkTrace.log file shows the following FATAL errors: FATAL (06/16) 09:09:57 [com.stoneware.server.Kernel](Thread Thread-97): Unable to start service: ...

      • Unable to authenticate admin user - Illegal key size

        This means that the user is using a Java encryption level that does not match the license file being used.  This can happen if a different version of Java is being used other than what is shipped with webNetwork.  If this is the case then you have to ...

      • Debug relay startup problems.

        1) If you have your loaders clustered, make sure the cluster status is in sync by using the 8090 management console and checking the cluster status. 2) Use the 8090 console on the relay to turn on com.stoneware.client.stonewareclient debug.  When the ...

      • Issues with NTLM Authentication

        Are there any issues with using NTLM authentication when doing SSO to a back end application ? Update 10-31-2014 : With webNetwork 6.2.1.182 and higher there have been many updates made to handle NTLM v2 applications that do not also maintain a ...

      • Desktop Authentication known issues and recommendations

        Problem:  What are the known issues of using Desktop Authentication feature to automatically log users into the portal? Cause:  Desktop Authentication feature uses Windows Integrated Authentication (NTLMv1).  Most browsers do not support auto-login ...