Need to implement the alternative login if Kerberos authentication fails.
Need to implement the alternative login if Kerberos authentication fails.
In our case, we are sure that Kerberos will fail because we allow agencies 'B' to access this application of reliable source.
Kerberos fails and the application should display the name of user and password page and then authenticate.
In the web.xml file changed auth method basic with Kerberos, set up successfully.
'A' agency users can make successful Kerberos SSO. But when an agency "B" SSO access will fail with 401 and the application appears pop base with the name of user and password fields.
When the user provides the details and present application returns 401 again. not able to go beyond these steps.
Please provide your inputs.
can you please enable security ATN debug and share the newspapers?
Who will be telll us why the authentication will fail.
Replace the CLIENT-CERT, BASIC authentication method in the web.xml and try.
What is the default authenticator control indicator? I think that its just / optional.
-Faisal
Tags: Fusion Middleware
Similar Questions
-
need to implement the Canadian French language (FRC) to 11.5.10.2
Hello
We have an obligation to respond to the Canadian French language (FRC) to 11.5.10.2 on OEL4.5
Please let me know complications and suggestions.
Our current char set is
SQL > select value from nls_database_parameters where parameter = "NLS_CHARACTERSET";
VALUE
----------------------------------------
WE8ISO8859P1Hello
Please refer to these docs.
Oracle Applications 11i Internationalization Guide [333785.1 ID] - FRC research find the list of the charactersets that you can use.
Oracle Applications NLS Release Notes, version 11i (11.5.10.2) [ID 316804.1]
How to get directions to install or add the new language NLS on E-Business Suite 11i or R12? [1254325.1 ID]
How to solve the problems of translation NLS in an e-Business Suite 11i and R12 environment [394112.1 ID]
Request for translation synchronization Patches [ID 252422.1]Thank you
Hussein -
need to reformat the drive hard after that installation fails
After several futile attempts to update my computer and I couldn't was the first get the bad image of SLIU.exe error, I tried ccleaner, malware nothing has worked, so I decided to do a reinstall = so I have inserted the windows cd and started doing an installation, but it would not install service pack 1 not even the stand-alone version.
so I decided to install win 7 again and got a corrupt c:\windows.old.001\windows\servicing\sessions file setup.exe is corrupt and unreadable, please run chkdsk utility
executing the ckdks and now he says it's error correction in the index file $SII 9
I want to just reformat the drive and do a fresh install.
the drive hard seagate [passed all test
What is the step by step to reformat the hard drive
I have an external hard drive with all my backup files. that I don't worry, I want just the computer working again.
Plug
Home build
Win 7 ultimate
card mother p45 MSI neo
4 GB corsair ddr d
1 TB of Seagate hard drive
Intel dual caore 8400 cpu
NVIDIA g8400 video card
Boot from the Windows 7 DVD
Click Install now
Accept the license agreement
When the option is displayed to select a type of installation, click (Custom advanced)
Click on drive Options
Select the disc/s click on Delete
Click new
Click on apply
Click OK
Click Format, and then click next to proceed with the installation
-
Kerberos authentication and use the KTPASS tool
I work in support to a network analysis software company. We have the ability to use Kerberos authentication for our product. Recently, we found that when you generate the keytab file using ktpass on a Windows Server 2003 or 2008, it is a step backwards in the process. Eventually do you run the ktpass twice to get the keytab file good.
Our external authentication module is software that uses Kerberos authentication and then he puts it on a remote client computer to access our software. We configure our Kerberos application and then read from the file keytab generated on a Windows Server 2003 or 2008 domain controller by using Kerberos V5 found in the AD domain controllers.
When you run the ktpass tool, you must submit the username and password to generate the keytab file. When it is generated, there is a generated KVNO number / incremented in the keytab file. But it writes the file first and then updates the KVNO + 1 number in the actual key stored in AD. If your keytab file is always number 1 behind what is actually stored in AD!
We can fix it by running ktpass once,
Examine the properties for the KVNO number in the last keytab file
Re-run the ktpass, but number KVNO + 1
The keytab file is generated, AD wrote the new KVNO + 1 number in AD
But now our keytab file matches KVNO number generated by AD
We lose a step in the ktpass tool?
is there a way to see what the current number of KVNO is set in AD
We have tested extensively with Windows 2003 and Windows 2008 R2 domain controllers
The guests were the two Windows 7 Prof 64 bit
Was just curious if anyone has had this experience?
Thanks in advance,
Terry Ball
Hello Terry,
According to the description of the problem, it seems that you are working on Windows server 2003 and 2008. I would recommend posting your query on the Server Forums TechNet for Windows.
TechNet is watched by other computing professionals who would be more likely to help you. Please check the below link which will redirect you to the appropriate forum.
http://social.technet.Microsoft.com/forums/WindowsServer/en-us/home?Forum=winserver8gen
Hope that the information provided is useful. Let us know if you have questions related to Windows, we will be happy to help you.
Kind regards
-
In VRA7 Kerberos authentication configuration
Hello
I'm trying to configure Kerberos authentication in my environment VRA7. I followed the instructions of the reference documentation. I have install the connector, workers and Kerberos authentication providers... and can connect with my domain user name and password via the password authentication provider.
However, when you try to login, I get the following error message: access.policy.auth.methods.not.valid.
Access denied because no valid authentication methods have been found 404
When I try the test URL: https://connector-instance.domain.host/authenticate , I got a HTTP 404 status - / authenticate error message.
Any ideas?
Best
Guido
Solved: all accounts that are synchronized with the Identity Manager must have a name, surname and email configured.
-
Authentication Failed: the Proxy to fail
What's the matter, authentication fails and the message is this:
Authentication Failed: the Proxy to fail
Thank you
Go to network settings > under 'Groups of network devices' click "(non attribué)" "
Under servers "(Not Assigned) AAA", note the name of the IP address of your machine, which can be confirmed from the DOS command prompt "
using the command "ipconfig/all".
Then, return to the Network Configuration > under "Distribution of Proxy table", click on "(default)".
And make sure you name server entry AAA for your machine is in the column 'Forward To '. If it isn't, then move your entry of the column machines and ensure that all other entry is under "AAA servers. Press 'submit + Restart.
Finally, try authenticate a client bit against this ACS server.
Kind regards
Prem
-
How to get the Kerberos ticket in the post login Windows?
Installation program:
- MIT Kerberos server running on Centos 7 VM
- Samba under Centos 7 VM service. This Samba server relies on the KDC to auth.
- Demon of authentication personalized running on the same Centos 7 VM
- Windows clients that are part of the Kerberos realm. (implemented using Ksetup binary)
We have a use case where we want that users log on to their Windows computers by using their local account credentials. Job opening, users start a custom binary client, previously installed by us. Then, they enter their username and password (which can be different from their logon user names) through the user interface of the binary custome that are sent via HTTPS to the demon of authentication currently running on the computer virtual 7 of Centos. The authentication daemon checks the validity of the credentials via a Cloud Computing service. Once authenticated, we add the name of user and password for the main database of the Kerberos server running on the virtual machine the Centos 7.
Then we want the custom Windows binary running on the Windows client for the user to request a Kerberos ticket so that later this ticket can be used to access the SMB service running on the virtual machine the Centos 7.
How do we get the Windows client to ask the TGT Kerberos KDC MIT? Do we not have to implement the Windows SSPI APIs? How it interacts the Windows LSA and SSP?
This issue is beyond the scope of this site (for consumers) and to be sure, you get the best (and fastest) reply, we have to ask either on Technet (for IT Pro) or MSDN (for developers)
If you give us a link to the new thread we can point to some resources it -
Hi all
I'm new to the development of Blackberry and I'm writing a relatively simple application to run on 7.1.
So far the development was interesting, I managed to create my user interface using resources online (mainly this forum), but today I tried to implement some of the network classes that I need and now I just met constant problems.
I use Eclipse SDK 3.7.2 (the one that comes with the plugin RIM)
First question:
I'm not sure what I changed, but today I noticed that whenever I start the Simulator (by sim 9360) my application is started during the initial startup process. I don't think he did this before, but to be honest, I wasn't paying much attention. I think it starts at the start of the device is because I put a breakpoint in the constructor for my class from the main screen, which is hit before the Simulator happens even to the point where it is ready for user interaction. In addition, once it is ready, if I press the BB button, I see my registered application.
I don't have it set to automatic start in .xml descriptior enforcement.
I started this application on the HelloBlackBerry sample, here is my main method for the entry of the application:
public static void main( String[] args ) { appSettings = AppSettings.fetch(); // Create a new instance of the application and make the currently // running thread the application's event dispatch thread. HelloBlackBerry theApp = new HelloBlackBerry(); theApp.enterEventDispatcher(); //openConnection(); }
As far as I know, this is the only entry point for the application.
More code
public HelloBlackBerry() { // Push a screen onto the UI stack for rendering. mainScreen = new ScreenHelloBlackBerry(); pushScreen( mainScreen ); }
Here is the method of. my class AppSettings fetch()
// Retrieves a copy of the effective properties set from storage. public static AppSettings fetch() { AppSettings savedSettings = (AppSettings) _store.getContents(); return new AppSettings(savedSettings); }
Some of this code that I wrote myself, the persistence store cause the launch of my car?
I tried to reset the Simulator to the factory settings, no change.
All applications initialized during the startup of the device and then closed shortly after?
Part 2: Need advice for the implementation of functions of network in the application
I need to implement some methods that will retrieve data from a web service, and I also need to send data to this service. What I've read, the ConnectionFactory is the way to go. I want my application to make a request when the application is open and can check on a set interval. I didn't know exactly how to go about adding another thread for networking, I understand that network connections should not be created on the thread main event, so I tried to do this:
The constructor of my class that implements screen (ScreenHelloBlackBerry), I use the following to create a modal dialog box to prompt the user for a username, I also try networking wire in the same segment of spawning:
public ScreenHelloBlackBerry(){...initialize fields and managers, add it all together...then near the end //This will open the confirm dialog when the application is launched UiApplication.getUiApplication().invokeLater(new Runnable() { public void run() { openConfirmDialog(); //start connection - Possibly broken ConnectionThread ct = new ConnectionThread(); ct.start(); } });
I don't know if it's somehow OK to do, but it seems to work for what I need. I want a user who launches the application at the prompt, and if a user switch applications, when they come back they wondered again (unless they close the app and reopen it).
Here is my ConnectionThread:
public class ConnectionThread extends Thread { public void run() { ConnectionFactory connFact = new ConnectionFactory(); ConnectionDescriptor connDesc; connDesc = connFact.getConnection("http://www.google.com"); if (connDesc != null) { HttpConnection httpConn; httpConn = (HttpConnection)connDesc.getConnection(); try { final int iResponseCode = httpConn.getResponseCode(); UiApplication.getUiApplication().invokeLater(new Runnable() { public void run() { Dialog.alert("Response code: " + Integer.toString(iResponseCode)); } }); httpConn.close(); } catch (IOException e) { System.err.println("Caught IOException: " + e.getMessage()); } } } }
At the moment it has basically unmodified code from a sample that I found, I'll be retooling to meet my needs whenever I can make it work. I HAD this work to the point where, after the closed user confirm this dialog, a few moments later a an alert dialog appears with the 302 response code. I don't know what changed, but now it doesn't work at all, and if I try to scroll with the debugger, I can't past the httpCon.getResponseCode (). I've seen some mistakes earlier on "no record of service was set up", and I also had once a timeout exception.
I'm sure I'm doing this wrong, but at the same time as I said WAS working, and now it is not. If someone has done this far, thank you very much for your time and advice are much appreciated.
Also, should I try to start the thread of the network of the UIApplication class instead of the screen? There is currently very little happening in the class that extends UIApplication, do I spend most of my business logic out of the class of the screen and in the UIApplication class?
Thanks in advance!
Hi all
Just to conclude this topic for those who are interested, I found an excellent guide to the implementation of networks in applications of BB, click here for a link.
About my application being started at the start of the simulator of the device, I found that on a device real this behavior is not complied with, and in addition, the behaviour seems to have stopped after uninstallation and reinstallation of my Simulator.
See you soon,.
-
I need to know the process to implement encryption for Windows 8, on a HP Pavilion
Original title:
Encryption
There is a choice in my control panel to set up encryption, but I have to go through the TPM module to be able to put in place, and my PC is not safe and has never been, I need to know the process to implement encryption for Windows 8, on a HP Pavilion
Hello
Protect your files with the encryption device
http://Windows.Microsoft.com/en-us/Windows-8/using-device-encryptionProtect your files using BitLocker Drive encryption
http://Windows.Microsoft.com/en-us/Windows/protect-files-BitLocker-Drive-Encryption#1TC=Windows-8I hope this helps.
Rob Brown - Microsoft MVP<- profile="" -="" windows="" expert="" -="" consumer="" :="" bicycle="" -="" mark="" twain="" said="" it="">->
-
Hi all
This is regarding the approval of invoice AP I need in my project where the user selects the users/people approval when creating the invoice based on logic. There may be any number of users who could be part of the approval group.
Approval users information is stored in a table with a single Bill.
When the user initiates invoice approval, approval of the Bill should go to all the people/users selected in the invoice.
I created the dynamic of approval group which is the result of a java class. This java class implements IDynamicApprovalGroup. (what is the oracle Developer Guide).
I called PL/SQL to java class package to get all the details of users of custom for the current invoice table.
I used the DriverManager.getConnection method by hard coding (JDBC URL, Username, Pwd) connection details that works perfectly fine.
But I don't want to hard-code the connection details because it will change in bodies SIT/UAT/PROD.
Please ask you to guide me if there is no solution for the information of connection without hard coding it.
Following code used to get the connection details
try {}
Class.forName ("oracle.jdbc.driver.OracleDriver");
System.out.println ("= class loaded");
}
catch (ClassNotFoundException ex) {}
System.out.println ("= class loading error");
ex.printStackTrace ();
}
Fitting out = null;
CallableStatement cstmt = null;
Try
{
connection = DriverManager.getConnection ("jdbc:oracle:thin:@xxhostname:1521/SID", "FUSION", "*");
Connection = GetConnection ();
System.out.println ("= connection =" + connection);
prepare the call
cstmt = connection.prepareCall ("{call XX_AP_INV_DYN_APPROVAL_PKG. {GET_GROUP_PARTICIPANTS (?,?)} ») ;
cstmt.setString (1, '12345'); ID on invoice
Exit of the register
cstmt.registerOutParameter (2, java.sql.Types.VARCHAR);
Call the stored procedure
cstmt. Execute();
System.out.println ("= procedure being executed");
approvalGroupMembers = cstmt.getString (2).split("#");
System.out.println ("= output:" + cstmt.getString (2));
}
catch (Exception ex) {}
ex.printStackTrace ();
}
Finally
{
Try
{
If (cstmt! = null)
close the callable statement
{
cstmt. Close();
cstmt = null;
}
System.out.println ("= stmt closed");
}
catch (SQLException ex)
{
System.out.println ("= stmt close err");
ex.printStackTrace ();
}
Try
{
If (connection! = null)
close the connection
{
Connection.Close;
connection = null;
}
System.out.println ("= closed conn");
}
catch (SQLException ex)
{
System.out.println ("= Close conn err");
ex.printStackTrace ();
}
}
Thank you
Dipak.
HI Dembélé - you should be able to call the provider database from the java class. Documentation is here. However, you need to specify the name of the data provider that is the same in all environments. Do you know what it is? If it's not I'll take a look and get back to you.
__
Peter Maurer
Relationship with the developers of Applications in fusion
-
I need to edit the existing customer's site, I only have their login information and new photos. I can't change it with the editor in the browser as it was exported by using an older version of muse and I have not all the other files of the Web site. Help, please.
In this case, you will need to ask the client to share the muse file and have the same updated file, and then publish on the customer site. When you are added as an administrator, you will see the option site > site list.
-
OBIEE 11 g: 1. need to hide the selection of the language of the login page option
Hi Experts,
I have some customization of OBIEE requirements:
1. need to hide the login page language selection option (or if not English should be maintained as static selection)
-J' tried to comment on content languagenames.xml of the/opt/fmw01/obiee/Oracle_BI1/bifoundation/web/msgdb/messages locatinon
but now instead of English... now actually appeared... even for others too.
2. need to hide my account tab option within the application.
Thank you
Deep' hisHello
All point one: try to edit instanceconfig.xml by inserting the tags:
en
Now chosen language will be English, and given only one language is allowed no selection will not appear.
Hope it's useful.
-
I need to implement Drag N Drop between two tables that saves the two records
I need to implement Drag N Drop between two tables that saves the two records on a third page, using drag 'n drop.Check out this video http://baigsorcl.blogspot.com/2011/01/drag-and-drop-collection-in-oracle-adf.html
-
Need assistance on the implementation of Multi level menu
Hi all
Need assistance on the implementation of Multi level menu
Thank you
ANUHi Anu,
Please go through this link Multilevelmenu to implement navigation
Thank you
-
Need some explanations on the alternative entry points
Hello world.
I'm rather new to BB development, as well as to development in general. Just trying to get how everything works and sometimes unable to understand.
I already have a request. For now, it only uses one main screen, no matter go, where it is running (icon of application by the systemwide menu item that I added). What I need is to push the different screens on different ways of running the application:
1. when the application is run from the icon in the home screen, I need to push the screen, which is fine (at least it's done for now and I know how it goes).
2. when the application is run from the menu item, I need push a completely different screen, which is actually a popup screen (designed for popup on the application is executed). I have already written the popup screen class, but don't really get how I should handle two screens in the MyApp class...
Any help will be appreciated.
what you do with the second entry point, it's up to you. a background thread is an option, but not the only one.
Maybe you are looking for
-
How can I save an iPod on an iPhone?
My daughter got an iPhone and I'm trying to back up and restore on iPhone, but it does not work for me...
-
Cannot access Deskjet 3050 has with Hp Envy M4
I am trying to connect laptop Envy my daughter to a Deskjet 3050 x a M4. I downloaded the x recommended software from the HP driver software and when the software said installation was successful, I chose a recipe to print, but it does not print. I h
-
No sound on my Satellite P100 with XP
I spent from Vista to XP, and now I have no sound! I downloaded the Toshiba s Web site drivers, but I run the Setup and "Driver Installation Failed: could not find the MEDIA device for this driver" message appears... Can someone help me, please? I ca
-
How iupgrade to media center 2005?
I have a HP that came with media center 2002 and could spend in 2005 and just formatted the hard drive and I can't seem to find the center of media, 2005. Thanks for any help
-
I am offered a grant from Cargill, in Malaysia. Is - is this legitimate?
This grant should be used for the improvement of life and Culture.