Issues with logging into cPanel using cookie authentication
I have having issues logging into cPanel, WHM, and Webmail. When I go to log in, it will take the correct password, but it will still keep prompting. It seems like it for some reason is having me log in for every object on the page. Has anyone had this issue before? It seems really weird to me. I have the following...
cPanel 11.25.0-R42399 - WHM 11.25.0 - X 3.9
CENTOS 5.4 x86_64 standard
can you post the output of
Code:grep "FAILED LOGIN" /usr/local/cpanel/logs/login_log
I get a bunch of the following errors. I am assuming my connection is being load balanced on the way out and cPanel doesn't like this?
I proxied the connection so I can have the same IP every time and that seems to have resolved the issue.x.x.x.162 - username[01/11/2010:17:23:40 -0000] "GET /images/awstats/flags/it.png HTTP/1.1" FAILED LOGIN cpaneld: cookie ip check: IP address has changed
x.x.x.61 - username[01/11/2010:17:23:40 -0000] "GET /images/awstats/flags/nl.png HTTP/1.1" FAILED LOGIN cpaneld: cookie ip check: IP address has changed
Last edited by mindcruft; 01-11-2010 at 11:28 AM.
for anyone else having this problem, you can also disable "Validate the IP addresses used in all cookie based logins" in tweak settings under security in your whm.
Thank you for the resolution detail. Out of curiosity, do you know if the Internet connection being used utilizes a dynamically-assigned IP address? I could imagine that if the IP address changed frequently this may also trigger the IP validation security mechanism.Originally Posted by mindcruft
While disabling IP validation will work I caution that it would come at the cost of reduced security; however, to augment the suggested alternative, if disabling IP validation I would, at minimum, ensure that security tokens are enabled. Security tokens may be toggled using WHM Tweak Settings via the following menu path: WHM: Main >> Server Configuration >> Tweak Settings >> Security. When considering security changes or re-evaluating security configurations I recommend taking into account the desired or required levels of security versus that of convenience.
Last edited by cPanelDon; 01-15-2010 at 10:16 PM. Reason: Clarification
cPResources: Submit a Support Request - Submit a Bug Report - Review existing Tickets-- Donald cPanelDon Holl - Analyst, cPanel Quality Assurance
Re: Issues with logging into cPanel using cookie authentication
Thanks for this.
Re: Issues with logging into cPanel using cookie authentication
I have a customer who has been with me for several years and just started experencing this same exact problem during the past few weeks.
Any time they log into their cPanel and attempt to navigate around they are constantly presented with a login prompt and have to re-login.
And the same type of errors show in my logs for them like this:
xx.xxx.xx.xxx - xxxxxxx [01/17/2011:21:46:13 -0000] "GET /cpsess9940196709/ HTTP/1.1" FAILED LOGIN cpaneld: cookie ip check: IP address has changed
xx.xxx.xx.xxx - xxxxxxx [01/17/2011:21:47:04 -0000] "GET /cpsess6567700538/frontend/x3/stats/awstats_landing.html HTTP/1.1" FAILED LOGIN cpaneld: cookie ip check: IP address has changed
I have yet to find a solution other than turning off IP Validation which I do not want to do.
The user is running Windows Vista with IE7
The server is running WHM/cPanel 11.28.64 REDHAT Enterprise 4
So far, only one customer is experiencing this and their connection IP address is very dynamic, changing by the minute.
Last edited by Metro2; 02-07-2011 at 06:35 PM.
Re: Issues with logging into cPanel using cookie authentication
Some ISPs are have very short DHCP life times. This can cause the behavior described. In cPanel & WHM version 11.28 we added a new option to the Cookie IP validation setting. Change this setting to 'loose' and it should cause the reauthentication frequency to diminish or go away.
Kenneth
Product Manager
cPanel, Inc.
Re: Issues with logging into cPanel using cookie authentication
Thanks for the tip!
LinkBack URL
About LinkBacks
Reply With Quote