Troubleshoot Tableau Server Authentication
Applies to Write-Back Server
Troubleshoot
How to troubleshoot the authentication error when Write-Back does not trust Tableau Server
It's possible that when attempting to log in to Write-Back you get an error when using the Tableau Server authentication if your Tableau Server is using a custom SSL certificate.
These instructions are for Windows.
Solution
If you are getting an error when logging in using Tableau Server Authentication that is related to SSL handshake, please follow the following steps. It is necessary to add the Tableau Server certificate to the Java truststore.
Step 1: Get the Tableau Server Certificate
First, we need to get the Tableau Server certificate. An easy way to do that is to 2 to 5 of the Troubleshoot Self-Signed Certificate article. Be sure to remember the location of the certificate.
Step 2: Add the certificate to the truststore
Navigate to the installation folder
Then navigate to: <installation_folder>\openjdk-8u252-b09\jre\lib\security
Notice that we have a cacerts file in here
Open a command prompt as an administrator on this location
The following command imports the certificate to the cacerts truststore:
keytool -import -trustcacerts -alias tableaucert -file <path\to\the\tableau_certificate> -keystore <installation_folder>\openjdk-8u252-b09\jre\lib\security\cacerts
When it prompts for a password, by default it is "changeit" (without the quotes)
When it asks to trust the certificate, type "yes" (without the quotes)
Step 3: Instruct Tomcat to read that truststore
Navigate to: <installation_folder>\apache-tomcat-8.5.45\bin
Double click on WriteBackServerw.exe
Go to the Java tab
Under Java options, scroll to the bottom and add these two lines (changing the installation path to your own):
(again, by default, the cacerts password is changeit)
-Djavax.net.ssl.trustStore=<installation_folder>\openjdk-8u252-b09\jre\lib\security\cacerts
-Djavax.net.ssl.trustStorePassword=changeit
It should look similar to this:
- Instruct Tomcat to read that truststore
Click Apply and OK.
Step 4: Restart the WriteBackServer
After performing these actions, go to the services, restart WriteBackServer and you should now be able to login.