Skip to main content
N
netpez
Participating Frequently
September 15, 2020
Question

Issues with Coldfusion 2018 after clean installation.

  • September 15, 2020
  • 3 replies
  • 707 views

Hello... I am having issues with logging into the CFIDE Admin after a clean installation.

I have developed puppet scripts to perform clean installations of apache and coldfusion (silently). The installations and execution of wsconfig go well, however there is an "invalid password" error occuring when attempting to login to the admin (and yes the password I am using is correct as specified in the installer.profile file).

 

Has anyone run into this issue?

    This topic has been closed for replies.

    3 replies

    N
    netpezAuthor
    Participating Frequently
    September 15, 2020

    FYI, this is a Red Hat Linux environment... With apache 2.4 in front of coldfusion. 

    D
    Community Expert
    Dave WattsCommunity Expert
    Community Expert
    September 15, 2020

    Are you trying to log in manually after the installation? If so, it's possible that you have some special characters in the password that are being escaped during the installation.

     

    Or, are you trying to log in via the admin API? If so, there are all kinds of things that could go wrong.

     

    Dave Watts, Eidolon LLC

    Dave Watts, Eidolon LLC
    N
    netpezAuthor
    Participating Frequently
    September 15, 2020

    Dave,

     

    I have scripted puppet to perform the installation silently. I have gotten it to a state where puppet is installing and configuring apache, installing Coldfusion (silently) and performing wsconfig steps. 

     

    All is complete and I am attempting to login (manually by going to https://<MY_FQDN>/CFIDE/administrator)

     

    The password does contain the following special characters: @ : (

    This password is stored in puppet encrypted, however when the installer.profile file is generated (for the silent installation), I can verify the password is decrypted and is correct, and does not have any space at the end (I heard spaces in this file can cause havoc).

     

    Any recommendations?

    N
    netpezAuthor
    Participating Frequently
    September 15, 2020

    And to add to Dave's helpful comment (which I agree is likely the first issue to address), when he refers to the "internal port", he means the built-in web server for CF. Prior to CF2016, that was optional (asked during the installer, and perhaps addressable as well during the silent installer).

     

    Since CF2016, you are no longer asked. It (the built-in, or "Tomcat", web server) is enabled by default, regardless of any choice (in the installer UI or silent installer), and its default port would be 8500 (in a "clean install", within nothing blocking that port).

     

    Note as well that beyond a possible firewall issue, or it being a non-standard http port (which you could of course resolve with ssh or other port forwarding solutions), there is also the matter that since at least CF2016, the CF admin "security" page for "allowed ip addresses" is set by default to allow only access from 127.0.0.1. You can tweak that in the underlying neo-runtime.xml file, or via the Admin API (and perhaps also as a silent installer option).

     

    It is POSSIBLE that the error you are getting is because of THAT. To be clear, the IP limitation does NOT control whether one SEES the CF admin login page (which I think is very curious), only whether it allows you to login or not.

     

    Let us know if any of this gets you going. 


    Issue 1: password 

    I tried changing to a password without special characters, but the installation actually ended up failing. I am not sure if there is an internal function that ensures certain password requirements, but after putting a special character back in (! - bang sign), the installation worked. Still no luck on the authentication however.

     

    Issue 2: CFADMIN ports

    I am going from coldfusion 11 to coldfusion. We had things setup with the legacy system where the CFIDE was mapped in the mod_jk.conf (see config below). I put the same config in the mod_jk.conf rolled out to this system. Is there any reason this cannot work? We try to limit the number of open ports, but if you say something has changed with CF, please let me know exactly what that is.

     

    I would also like to mention that I specified the following in the silent installer.profile (# numbers are a VPN range we use for web administrators):

    SILENT_ADMIN_IP='###.###.###.###-###,127.0.0.1'
    SILENT_JETTY_IP='###.###.###.###-###,127.0.0.1'

     

    MOD_JK CONFIG=======

    AddHandler jakarta-servlet .cfm .cfml .cfc .cfr .cfswf

    DirectoryIndex index.cfm

    Alias /CFIDE "/app/coldfusion11/cfusion/wwwroot/CFIDE"

    <Directory "/app/coldfusion11/cfusion/wwwroot/CFIDE">

    Options -Indexes FollowSymLinks

    AllowOverride None

    Order allow,deny

    Allow from all

    </Directory>

    <Files ~ ".hbmxml$">

    Order allow,deny

    Deny from all

    </Files>

     

     

     

    N
    netpezAuthor
    Participating Frequently
    September 15, 2020

    coldfusion.out: 

    Sep 15, 2020 10:09:05 AM Information [ajp-nio-8018-exec-10] - Session rotated successfully.

    Sep 15, 2020 10:09:05 AM Information [ajp-nio-8018-exec-10] - Invalid login for Default User

     

    application.log

    "Information","ajp-nio-8018-exec-10","09/15/20","10:09:05","","Session rotated successfully."

    "Information","ajp-nio-8018-exec-10","09/15/20","10:09:05","CFADMIN","Invalid login for Default User"

     

    I KNOW I am using the correct password.

    Terms & ConditionsAccessibility statement
    Using the community Terms of use Privacy Cookie preferences Do not sell or share my personal information ad choicesAdChoices