-
Notifications
You must be signed in to change notification settings - Fork 21
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
406 Error - Not acceptable / client browser does not accept the MIME Type #7
Comments
Hey there @Mati7777777, it may be that Kerberos isn't working. Have you verified your SPNs have been established correctly? |
Hi @thomashouston ! |
Hey @Mati7777777, it does sound like there's a slight config difference between your two environments. The other thing that has caught me out in the past is ensuring that the PAM API websites app pool identity is delegated auth privileges to the Bastion domain controllers. @fimguy blogged about the issue here. |
Hey @thomashouston, |
Well apparently it is not a pam sample problem : "Invoke-RestMethod -Uri "http://pamapi:8086/api/pamresources/pamroles" -Method Get -UseBasicParsing -UseDefaultCredentials" is dropping the same error, so bypassing the pam sample pb do not resolve this. I'll dig this and get back to you. |
@Mati7777777, you can test the MIM PAM REST API by opening a browser and navigating to http://pamapi:8086/api/pamresources/pamroles/ - the browser should ask you if you want to download pamroles.json. |
yes that's it, remotely the download does not occur, with the error about 406 not acceptable MIME Type. |
@Mati7777777, double-check the SPNs for the account that's running the PAM REST API app pool. This is the command I use to create the app pool group managed service account:
|
@thomashouston many thanks ! let me have a look |
@thomashouston the API is working now (I add the msDS-AllowedToDelegateTo = HTTP/pamapi.bastion.net), so PAM API delegate to itself. |
Thank you guys for solutions, that worked for me! However i am facing same issue when trying to authenticate at sample portal from Corp Domain PC. Could you please advise what could be the problem? |
Hello,
Everything is working fine locally, but the sample portal does not work remotely with an 406 error.
"The client browse does not accept the MIME Type of the requested page".
I checked with others machines / browsers / users, but same issue...
Does someone have an idea about that ?
Thanks
The text was updated successfully, but these errors were encountered: