Hi Neil,
I havn't impemented SPNEGO but I have used SAML on some implementations. SPNEGO is tied to the Domain and this is likely the casuse of your issue.
Here is a reccomendation from IBM which will be really simple sa it does not require any structureal chage, rather an alternate authenticaiton path that can be implemented from the device. Hopefully you have Mobile device management or some other way of controlling the link to simplify access for users for mobile access?
in short the following URL shoudl allow you to bypass the SPNEGO authenticaiton from mobile
http://<hostname>/maximo/webclient/login/login.jsp?appservauth=trueThis have come directly from the IBM documentaiton and I dont have an environment to verify it for you. Reference included below.
ibm.com/support/pages/spnego-authentication-not-supported-during-mobile-login
It may be worth consiudering SAML or similar for a full SSO expreience as this will work across devices.
------------------------------
Michael Kasteel
Director
ISW
0402830412
------------------------------
Original Message:
Sent: Fri December 04, 2020 08:53 AM
From: Neil Wornes
Subject: Access an Everyplace application from iPhone
Hi All,
I'm working with a client to implement an Everyplace version of a Maximo application so that they can access via a corporate iPhone.
Getting a "SPNEGO authentication" error as a result of using AD authentication for SSO. From the online documentation, if the authentication used on the corporate iPhone cannot be brought into the AD domain for the organization then SSO cannot be used and only a direct link to the Maximo login screen can be used.
Is there anything within the Maximo configuration that can be used to address the SPNEGO authentication?
Thanks,
Neil
------------------------------
Neil Wornes
------------------------------
#AssetandFacilitiesManagement
#Maximo