I am trying to configure SSO as per document, but I am getting complain saying “The forward URL does not exist or it has failed validation”, is this normal?
What else should I configure? I have already done the configuration on tm1web.html, variables_tm1.xml, no luck neither, TM1Web, Perspective can connect normally.
One thing that is a little different is that this customer is forbidden to expose any IP address, machine name as well as port number, everything needs to be done via Reverse Proxy.
First, that page is definitely Cognos BI saying that the URL is not in its allowed. The areas to check for here now is logs in Cognos BI server about how it processes it.
Have you added the Canvas/Proxy server into the CAF configuration?
From Canvas point of view, it will just construct a URL and handover to that (the URL that you see from above). So from this point, it will be all BI that is processing the request. Canvas will only begin to handle it again once it comes back from Cognos BI with a CAM Passport in the URL.
With Cognos Analytics, I think this has handled during the backend and I am only getting the CAM Passport in the URL during the authentication process.
If the above URL is the final one, then it should still be alright with Canvas as the cam_passport parameter is still in there. This is where the Canvas application is trying to get at. But as of previous post, Cognos BI / Analytics is not allowing it to be redirected.
What you can check though, if possible, is to grab what URL is tm1web passing the address bar prior to coming back with the above URL.