NFA menu pick not working from within CAPC

Document ID : KB000094597
Last Modified Date : 04/05/2018
Show Technical Document Details
Issue:
From within CAPC when choosing Administration > Network Flow Analysis you are not automatically logged into NFA as you should be
Environment:
Any version of CAPC and NFA
Cause:
Systems times were different between CAPC and NFA
Resolution:
  1. Log into CAPC
  2. F12 to launch chrome developer
  3. Click on "Network" tab
  4. Click "Preserve Log"
  5. Go to Administration > Network Flow Analysis to open the NFA console
  6. You will see output like this:
    • SsoProductCode: ra
    • SsoRedirectUrl: http://nfa/RA/Admin/SystemStatus.aspx
    • SsoErrorCode: 3
  7.  SsoErrorCode: 3 means "CookieExpired"
The cookie has expired by the time it reaches NFA.  Confirm the date and time is in sync between CAPC and the NFA server.  If not, you can synch ntp with the following commands:
  • Run ntpq -p to see the ntp servers and determine the preferred ntp server designated by the *
  • Run ntpdate -u <ip address> tp update to the current time per the ntp server
Additional Information:
SSO error codes:
  •          None = 0;
  •          AutomaticallySignedIn = 1;
  •          CookieDecryption = 2;
  •          CookieExpired = 3;
  •          UserIdInvalid = 4;
If CAPC gets one of those errors back from the other datasource then it will redirect to the login page on the remote datasource