PHP User Login DW & quot; User authentication & quot;
Hello!I use CEP user behavior of authentication server for a dial-up connection to 6 pages. I use a PHP page and I set up MySQL database and are working properly. I even put in place of access levels if only certain users can see some pages.
However, what I can't understand is how to direct users to a specific page. The behavior of user login allows you to choose a successful login page. I want the user to be directed to a page designated for that user. (there are only four users - using user group connection names - 1 login and pw by group)
How can I do? Y at - it a variable type, I can use for the $MM_redirectLoginSuccess = "choir.php"; command?
1 million thanks!
Hello-
The best thing I found is to send all users to a single page.
example: www.example.com/secure/index.php. Once they are directed towards the
page - you can then generate the content on this page that
It is the user.
Using the Dreamweaver server behaviors (for example, Log In user, restrict access
to Page) - on the page (secure/index.php) - put this piece of code after the
the code generated by Dreamweaver (restrict access to the Page):
<>
session_start();
$authorized = array ();
$authorized [] = "Admin";
$authorized [] = "user";
{if (! in_array($_SESSION['MM_Username'],$Authorized))}
Header ('Location: http://www.example.com/login.php');
"exit";
}
?>
That validates that the user is "Admin" or "User", and if they are
No - it redirects to the login page. Then, to generate the content
in view of the user, you can either hardcode it directly into the
/Secure/index.php page, as follows:
<>
If ($_SESSION ['MM_Username'] == 'Admin') {$var = 1 ;}
ElseIf ($_SESSION ['MM_Username'] == 'User') {$var = 2 ;}
{Switch ($var)}
case 1:
?>
All content "Admin" goes here
<>
break;
case 2:
?>
All 'User' content goes here
<>
break;
}
?>
All the information here will be visible to users
The other option you have is to use the same configuration except instead of typing
in all the code of the content (for example,
...
) - you can remove from yourMySQL database.
If you want more details, David and Gary are here, too. ;)
HTH, take care.
--
Shane H
[email protected]
http://www.avenuedesigners.com
=============================================
GAWDS proud member
http://www.GAWDS.org/showmember.php?MemberId=1495
Delivering Web sites accessible to all...
=============================================
News:e9mqok$JSE$1@forums. Macromedia.com...
> Hello!
>
> I use DWs user behavior of authentication server for a dial-up connection to 6
> pages. I use a PHP page and I have the database MySQL, put in place and
> work
> properly. I even put access levels if only certain user can see
> some pages.
>
> What I can't understand, however, is to know how to run that some users a
> specific
> page. The behavior of user login allows you to choose a successful login page. I have
> want to
> the user to be directed to a page designated for that user. (there are only
> four
(> users - using user group connection - 1 login and pw by group names)
>
> How can I do? Y at - it a variable type, for I can use for the
> $MM_redirectLoginSuccess = "choir.php"; command?
>
> 1 million thanks!
>
Tags: Dreamweaver
Similar Questions
-
Hi guys.
I have been working on this now for a few days and still not got that right. I'm trying to implement JAAS custom authentication provider.
To do this, I created a jar file and place it under WebLogic\wlserver\server\lib\mbeantypes\. Provider shows everything by creating the new Kingdom, so that's good.
I created the new Kingdom (webRealm) and changed web.xml to get the inside webRealm:
<>login-config
FORM < auth-method > < / auth-method >
< domain name > webRealm < / realm-name >
< form-login-config >
Login.jsp < form-login-page > < / form-login-page >
LoginError.jsp < form-error-page > < / form-error-page >
< / form-login-config >
< / login-config >
webRealm default security model: is DDOnly.
Here is the configuration of domain:
< domain >
" < sec: authentication - provider xmlns:sam = ' http://www.BEA.com/ns/90/WebLogic/security/samples "xsi: type =" sam:db - user-authenticatorType "> ".
< sec: name > serenadeAuth < / sec: name >
< sec: control - flag > REQUIRED < / sec: control - flag >
< / sec: authentication - provider >
" < sec: role - Mapper = xmlns:xac ' http://xmlns.Oracle.com/WebLogic/security/XACML "xsi: type =" xac:xacml - role-mapperType "> ".
< sec: name > XACMLRoleMapper < / sec: name >
< sec: role - deployment-enabled > true < / sec: role - deployment-enabled >
< / sec: role - Mapper >
" < sec: authorizer = xmlns:xac ' http://xmlns.Oracle.com/WebLogic/security/XACML "xsi: type =" xac:xacml - authorizerType "> ".
< sec: name > XACMLAuthorizer < / sec: name >
< sec: policy - deployment-enabled > true < / sec: policy - deployment-enabled >
< / sec: authorizer >
< sec: adjudicator xsi: type = "wls:default - adjudicatorType" >
< sec: name > DefaultAdjudicator < / sec: name >
< / sec: adjudicator >
< sec: credential - Mapper xsi: type = "wls:default - credential-mapperType" >
< sec: name > DefaultCredentialMapper < / sec: name >
< sec: credential - mapping-deployment-enabled > true < / sec: credential - mapping-deployment-enabled >
< / sec: credential - Mapper >
< sec: cert - path-provider xsi: type = "wls:web - logic-cert-path-providerType" >
< sec: name > WebLogicCertPathProvider < / sec: name >
< / sec: cert - path-supplier >
< sec: cert - road-builder > WebLogicCertPathProvider < / sec: cert - road-builder >
< dry: use-locking-manager >
< sec: lockout - active > false < / sec: lockout - active >
< / dry: use-locking-manager >
< s: deploy-role-ignored > false < / sec: deploy-role-ignored >
< s: deploy-strategy-ignored > false < / sec: deploy-strategy-ignored >
< s: deploy-credential-mapping-ignored > false < / sec: deploy-credential-mapping-ignored >
< s: entirely delegate-permission-> true < / dry: completely delegate-permission->
< sec: security - dd-model > DDOnly < / sec: security - dd-model >
< s: handset-role-mapping-activated > false < / sec: handset-role-mapping-enabled >
< sec: name > serenadeRealm < / sec: name >
< sec: delegate - m-bean-authorization > false < / sec: delegate - m-bean-authorization >
< s: deployable-provider-synchronization-enabled > false < / sec: deployable-provider synchronization-compatible >
< sec:auto-restart-on-non-dynamic-changes > true < /sec:auto-restart-on-non-dynamic-changes >
< s: retirement-timeout-seconds > 60 < / sec: retirement-timeout-seconds >
< / domain >
Please note that by default realm is myrealm.
When I try to login, I get following exception:
< 30 November 2015 14:25:49 EST > < Debug > < SecurityAtn > < EKAMOLID-US > < myserver > < ExecuteThread [ASSETS]: '7' for the queue: "(self-adjusting) weblogic.kernel.Default" > < < WLS Kernel > > < 64905dec-c109-4df8-8f2a-7dd696508bc9-0000002f > <>< 1448911549362 > < [gravity-value: 128] [RID: 0] [partition id: 0] [name of the partition: DOMAIN] > < BEA-000000 > < javax.security.auth.login.FailedLoginException : [Security: 090302] authentication failure: specified by the user the user refused
at weblogic.security.providers.authentication.LDAPAtnLoginModuleImpl.login(LDAPAtnLoginModuleImpl.java:343)
to com.bea.common.security.internal.service.LoginModuleWrapper$ 1.run(LoginModuleWrapper.java:117)
at java.security.AccessController.doPrivileged (Native Method)
at com.bea.common.security.internal.service.LoginModuleWrapper.login(LoginModuleWrapper.java:114)
at sun.reflect.GeneratedMethodAccessor1698.invoke (unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:497)
at javax.security.auth.login.LoginContext.invoke(LoginContext.java:755)
to javax.security.auth.login.LoginContext.access$ 000 (LoginContext.java:195)
to javax.security.auth.login.LoginContext$ 4.run(LoginContext.java:682)
to javax.security.auth.login.LoginContext$ 4.run(LoginContext.java:680)
at java.security.AccessController.doPrivileged (Native Method)
at javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:680)
at javax.security.auth.login.LoginContext.login(LoginContext.java:587)
at com.bea.common.security.internal.service.JAASLoginServiceImpl.login(JAASLoginServiceImpl.java:113)
at sun.reflect.GeneratedMethodAccessor1696.invoke (unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:497)
to com.bea.common.security.internal.utils.Delegator$ ProxyInvocationHandler.invoke (Delegator.java:64)
to com.sun.proxy. $Proxy48.login (unknown Source)
to weblogic.security.service.internal.WLSJAASLoginServiceImpl$ ServiceImpl.login (WLSJAASLoginServiceImpl.java:92)
at com.bea.common.security.internal.service.JAASAuthenticationServiceImpl.authenticate(JAASAuthenticationServiceImpl.java:83)
at sun.reflect.GeneratedMethodAccessor1700.invoke (unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:497)
to com.bea.common.security.internal.utils.Delegator$ ProxyInvocationHandler.invoke (Delegator.java:64)
to com.sun.proxy. $Proxy67.authenticate (unknown Source)
at weblogic.security.service.WLSJAASAuthenticationServiceWrapper.authenticate(WLSJAASAuthenticationServiceWrapper.java:40)
at weblogic.security.service.PrincipalAuthenticatorImpl.authenticate(PrincipalAuthenticatorImpl.java:349)
at sun.reflect.NativeMethodAccessorImpl.invoke0 (Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:497)
at weblogic.security.service.ServiceHandler.invoke(ServiceHandler.java:55)
to com.sun.proxy. $Proxy77.authenticate (unknown Source)
to weblogic.servlet.security.CSSServletSecurityServices$ CSSApplicationServices.authenticate (CSSServletSecurityServices.java:318)
at weblogic.servlet.security.internal.AbstractAppSecurity.authenticateAndSaveCredential(AbstractAppSecurity.java:63)
at weblogic.servlet.security.internal.SecurityModule.checkAuthenticate(SecurityModule.java:313)
at weblogic.servlet.security.internal.SecurityModule.checkAuthenticate(SecurityModule.java:260)
at weblogic.servlet.security.internal.FormSecurityModule.processJSecurityCheck(FormSecurityModule.java:261)
at weblogic.servlet.security.internal.FormSecurityModule.checkUserPerm(FormSecurityModule.java:198)
at weblogic.servlet.security.internal.FormSecurityModule.checkAccess(FormSecurityModule.java:96)
at weblogic.servlet.security.internal.SecurityModule.isAuthorized(SecurityModule.java:712)
at weblogic.servlet.security.internal.WebAppSecurity.checkAccess(WebAppSecurity.java:576)
at weblogic.servlet.security.internal.WebAppSecurity.checkAccess(WebAppSecurity.java:536)
at weblogic.servlet.internal.WebAppServletContext.doSecuredExecute(WebAppServletContext.java:2369)
at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2280)
at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2258)
at weblogic.servlet.internal.ServletRequestImpl.runInternal(ServletRequestImpl.java:1626)
at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1586)
to weblogic.servlet.provider.ContainerSupportProviderImpl$ WlsRequestExecutor.run (ContainerSupportProviderImpl.java:270)
at weblogic.invocation.ComponentInvocationContextManager._runAs(ComponentInvocationContextManager.java:348)
at weblogic.invocation.ComponentInvocationContextManager.runAs(ComponentInvocationContextManager.java:333)
at weblogic.work.LivePartitionUtility.doRunWorkUnderContext(LivePartitionUtility.java:54)
at weblogic.work.PartitionUtility.runWorkUnderContext(PartitionUtility.java:41)
at weblogic.work.SelfTuningWorkManagerImpl.runWorkUnderContext(SelfTuningWorkManagerImpl.java:617)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:397)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:346)
>
The problem is why the system tries to use LDAPAtnLoginModuleImpl when webRealm it does not use for the supplier?
My client provider is not called at all, I know that because I put System.out.print () messages in there to see if it goes off.
No idea why weblogic does not use my custom (webRealm) area?
Thank you.
webRealm configuration in the web.xml file has no effect on the authentication process with WLS.You can create your authentication provider in the default domain itself.
Make sure that your custom authentication works.
Also change the default authenticator control indicator and your authenticator personalized sufficient / option so that even wls default users can connect to the console of wls.
You can see my article for more details on the custom authenticator.
Hope you found my answer helpful.
Thank you
Faisal
-
I tried to login to my account to update to Windows Live Messenger and got this error message. What should I do to correct this? I have not attempted to identify some time, so I'm afraid it says "multiple pending user authentications.
According to me, whereas it has proved to be a problem of Blackberry App World (or BB in general). A battery lawn mower folding to solve the problem... Thanks for your suggestion though
-
Denied weblogic user authentication
I can't start node managerd server from the command prompt.
I have installed the Version of the WebLogic Server: 12.1.2.0.0 on Windows 2008 R2 Sp1 EN
I started Server Administration succesfully.
C:\Weblogic\Oracle\config\domains\wl_server\bin\startWebLogic.cmd
I created ihale Managed server but I could not start server managed by.
C:\Weblogic\Oracle\config\domains\wl_server\bin
startManagedWebLogic.cmd ihale http://192.168.1.29:7431I am getting following error.
# < 25 December 2013 12:51:13 AM PST > < critical > < WebLogicServer > < umman > < ihale > < principal > < < WLS Kernel > > <><>< 1387961473813 > < BEA-000386 > < server subsystem failed. Reason: weblogic.security.SecurityInitializationException: authentication of user weblogic has denied.
weblogic.security.SecurityInitializationException: user weblogic authentication denied.
.....
....
Caused by: javax.security.auth.login.FailedLoginException: [Security: 090303] authentication failed: user weblogic weblogic.security.providers.authentication.LDAPAtnDelegateException: [Security: 090295] caught unexpected exception
at weblogic.security.providers.authentication.LDAPAtnLoginModuleImpl.login(LDAPAtnLoginModuleImpl.java:257)
I am able to connect console username and password administration. Username: weblogic password: xxxxx
I changed the password to the user weblogic and tried again. He was unseccesfull.
I created the boot.properties file in the C:\Weblogic\Oracle\config\domains\wl_server\servers\ihale\security folder.
I put the user name and password.
After I tried to start the managed server ihale, boot.properties file has not been quantified and managed server also did not start.
I deleted the cache, data, records of tmp save file logs in \\192.168.1.29\c$\Weblogic\Oracle\config\domains\wl_server\servers\ihale and I tried again. He was unseccesfull.
I found something on
Ganesh wrote:
Did you reboot AdminServer after deleting the LDAP authentication provider?
I think that your managed server is always try to authenticate the user via ldap authentication provider.Torrado answers:
I found that there is a definition in the security policy of the osb_server1 for a user belonging to deleted LDAP authenticator.
I removed it and started server.
Thank you.How can I delete definition in security policy of ihale for a user belonging to deleted LDAP authenticator?
Could you please help to solve this problem?
Best regards.
Hi again;
I found the problem in fact it is my mistake.
While I said the managed server, I wrote the incorrect port number.
Port of the server, I wrote the managed instead of the Admin Server port.
Thank you Kal.
-
VPN3002 PAT-Mode and individual user authentication
Hi all
I have three questions about the VPN3002 connected to a VPN3005 in the PAT mode
and with authentication of the individual user.
First of all:
Is it possible to use this function for several users to the
private LAN.
Because I tried this, but when we the second user has been authenticated one could not work more.
Second:
When we first meet is YES, can be the users in a group of dispute as the
VPN3002 Client it self?
Third:
That is, when there is a router between the local private network and users?
Because the field of authentication of user appears only when users
are directly connected to the private lan.
I tried with PAT, but this was not possible because the VPN3002 can
different users.
I think that it will be possible with NAT, but then I ran to my first question.
concerning
Karlheinz
1 > it is the main function of the user authentication feature see here:
http://www.Cisco.com/univercd/CC/TD/doc/product/VPN/vpn3002/3_5/get_star/gs1under.htm#xtocid13
2 > users cannot be in the other group. Group is dependent of the what the 3002 cumulates in.
3 > it wouldn't send other subnets connected to the private sector. The design of the 3002 is such that only the subnet behind it, is what it can do vpn for.
Kind regards
-
User authentication with AD Director
Hey!
Am having a problem with the management groups.
I try to make external authentication with users of the AD but fails with one: user authentication failed: Eric: no group admin
Everything seems fine, political authorization, Menu access, liaison group AD with ISE Super Admin to access the data group
My user is ok on AD (not locked, expired, or anything)
Anyone had this problem before?
THX
Possibility of vice.
CSCud31796 ISE - External RBAC fails if Member user from the group containing the apostrophe
Symptom:
RBAC using a storage of external identity (AD, LDAP) group mapping fails for a correct user with the groups to access the GUI of the ISE. The following message will appear:
"User authentication failed: username: admin group.
Conditions:
The user is a member of a group that contains the apostrophe character.
Workaround solution:
There is no work around in ISE.
1 rename all groups in the external identity store such that they do not contain apostrophes
2 remove users participating in the administration of all external groups containing apostrophes ISE
Jatin kone
-Does the rate of useful messages- -
TimesTen - 7001: user authentication failed when using XLA
I installed TimesTen 11.2.1.8.0 on AIX 5.3 System.* user 'oracle '. I created another user of the application 'risk' to use in my application with TimesTen.
When running my application with the user 'risk' to connect with TimesTen it is OK. But when I want to use the XLA feature, when I call the createDurableSubscriber function, it returns the error
javax.jms.JMSException: failure of SQLDriverConnect (XlaCommon.c, line 48): S1000 7001 [TimesTen] [driver ODBC of TimesTen 11.2.1.8.0] TT7001 [TimesTen]: user authentication failed - file "db.c", lineno 9722, procedure 'sbDbConnect '.
It is strange that if I switch to user 'oracle', it works fine.
Can someone please help understand the reason why.
Thank you
You created the user 'at risk' within your TimesTen database?
CREATE a USER risk IDENTIFIED BY 'some password'?
You granted the privilege of the user risk to use XLA?
XLA GRANT at risk;
Have you used this user name and password in the JDBC URL when connecting to the database application JMS/XLA?
The 'oracle' user is probably your admin user of the instance (which is the database root) and therefore can use all the features without special action (but of course you never run application as that user).
Chris
-
Connection of the user authenticated to the external proxy
Hi Experts,
I created an externally authenticated user in the database. And can connect without a password with the syntax below.
SQL > connect / @TESTDB
Connected.
SQL > show user;
The USER is 'SCOTT '.
That user scott has a power of attorney to an another DBuser PROXY_USER authorization.
I got the syntax but that works only from BONES of the database.
sqlplus [proxy_user].
SQL * more: Production version 11.1.0.6.0 on Mon 15 Nov 16:28:47 2010
Copyright (c) 1982, 2010, Oracle. All rights reserved.
Connected to:
Oracle Database 11 g Release 11.1.0.6.0 - 64 bit Production
I can log in as a user authenticated outside windows CLIENT running on Release 10.2.0.1.0
SQL > connect / @TESTDB
Connected.
But the syntax of connectivity above Proxy fails with below the CUSTOMER
SQL > connect [proxy_user] / @TESTDB
SP2-0306: invalid Option.
Usage: CONN [ECT] [connection] [AS {SYSDBA |}] SYSOPER}]
where < logon >: = < user > [< password >] [@ < connect_identifier >] | /
But works the same syntax of database OS!
I can connect to TOAD, but can not connect from SQLDEVELOPER or SQLPLUS
My sqldeveloper version is:
Version 2.1.1.64
Build a HAND - 64.45
and sqlplus:
SQL * more: Release 10.2.0.1.0
Any idea?
Thank you.
Published by: najet November 18, 2010 15:09Hi najet
If you get SQLPLUS work SQLDeveloper (thickness jdbc/oci/instant customer) is definitely worth a try.
I don't know what the problem with your configuration of the proxy usecases that I am familiar are:
Through the UI SQLDeveloperThere are two ways to make proxy connections:
where p1 is user proxy and c1 is a client of the proxy:method 1/single session (if no 2nd password or unique name required)
Main connection popup
user: p1 [c1]
password: p12/two method session
Main connection popup
user: p1
password p1context connection authentication
client proxy: c1
no password or unique name-Turloch
Team SQLDeveloper -
Rendering of the elements in a JSP page only to users authenticated on adf-security
Greetings
This is a simple question?
I need to display a link only if I'm with a user authenticated on adf security. could someone provide me with the EL that I have to set the RENDER in my JSP
Thank youTry something like:
ADFContext.getCurrent () .getSecurityContext () .isAuthenticated)Therefore, EL must be:
adfContext.securityContext.authenticated
You should be able to use the EL generator.
Vincent
-
Hello
I'm on IOM 9102 + Websphere, I ran the patch_websphere and redeploy the .ear file. But now when I try to connect to the IOM, his throw invalid user authentication and I am not able to connect to the IOM. When I enter the password, its not taking the password and the cursor goes back to the user name text box.
Thank you
SurenThis means that it is already disabled. To check, from the command line, run the following:
wsadmin - port NONEThis will connect you to the websphere administration tool. Next type:
securityoffThis will stop the security that allows you to connect with any username and password. Restart WebSphere.
From this point you must enable security. Follow these steps:
-Once WebSphere returns upwards, connect with any what user name and password in the console of websphere.
-Access security--> user records--> custom
-Enter the user name "XELSYSADM" and then make sure to ignore case is marked
-Enter the password xelsysadm for "Server User Password"
-Click 'OK' and 'Save' in the master configuration.I don't have a console of websphere that I have, but this will allow security for the application again. Restart and see what happens.
-Kevin
-
Hi I was wondering how adapt or change the log in the behaviour of the user in PHP to add session variables or url; I did it with ASP, but not PHP.
I can call I want the database or just text, I put it right there and use with no matter what page I give the floor to my site.
How I do in the PHP login page?
I can send you a copy of my script for ASP.Hi I was wondering how adapt or change the log in the behaviour of the user in PHP to add session variables or url; I did it with ASP, but not PHP.
I can call I want the database or just text, I put it right there and use with no matter what page I give the floor to my site.
How I do in the PHP login page?
I can send you a copy of my script for ASP. -
How to create a login for PHP users
How to create a login for users to access their data, currently, I don't see the first user each time I connect with a different user name. I know that I need session stuff but don't know how to use, add or where to put them.
Thanks in advance.Hello
Find this in your login page:
session_register ("MM_Username");
and then you add a session variable in MX called it:
MM_Username
then on any of your pages that calls the base to make sure that you use the = MM_Username and then you're all set; Make sure that the tables have a field to reference the session MM_Username variable.
See you soon
Let me know if you just come! -
For the WLC domain user authentication
Hi guru
Im having a problem in the configuration of my WLC domain users. I have ACS v3.3 and WLC 4112.
I followed these instructions, but still I keep to authenticate whenever I tried to connect my laptop to some SSID. And in addition, the windows login me invite only once. Please help me
Thank you.
What says "Machine Authentication is not allowed"?
Make sure that ACS helped him:
-
Trying of authenticating to a LDAP group users - all users authenticated
ASA successfully authenticates all users if they are in the OKCVPNAccess user group, and the ASA correctly sees the LDAP map attribute. There is that a single policy.
[54] memberOf: value = CN = VPNAccess-OKC, OR = Groups, OU = OU = xxx, xxx, DC = xxx, DC = local
[54] mapped to IETF-RADIUS-class: value = LDAPPolicyI been through a lot of documentation on the web sites of Cisco but also looked at several forums, but I'm coming up with a blank as to what I can try next. I know that it will work with RADIUS and RADIUS I've used several times in the past, so this isn't an option. I was asked to do with LDAP. Any suggestions? I've included the part of the Setup, and I tried to sanitize it somewhat, so there may be an inconsistency of name here or there.
Thank you
LDAP attribute-map LDAPMAP
name of the memberOf IETF-Radius-class card
memberOf card-value CN = VPNAccess-OKC, OR = Groups, OU = xxx, OU = xxx, DC = xxx, DC is local LDAPPolicy
dynamic-access-policy-registration DfltAccessPolicy
AAA-Server LDAP protocol ldap
AAA-Server LDAP (inside) host 10.12.34.248
Server-port 389
LDAP-scope subtree
LDAP-naming-attribute sAMAccountName
LDAP-login-password *.
LDAP-connection-dn xxx\vpn.auth
microsoft server type
LDAP-attribute-map LDAPMAPCrypto ipsec transform-set esp-SHA-ESP-3DES-3des esp-sha-hmac
life crypto ipsec security association seconds 28800
Crypto ipsec kilobytes of life - safety 4608000 association
Crypto-map dynamic outside_dyn_map 20 set pfs
Crypto-map dynamic outside_dyn_map 20 the value transform-set ESP-3DES-SHA
crypto CRYPTO card - card 1000 ipsec-isakmp dynamic outside_dyn_map
CRYPTO-card interface card crypto outsidecrypto isakmp identity address
crypto ISAKMP allow outside
crypto ISAKMP policy 10
preshared authentication
3des encryption
sha hash
Group 2
life 86400
crypto ISAKMP disconnect - notifyinternal CRYPTOGP group policy
CRYPTOGP group policy attributes
banner value of using this system is... Please log out immediately!
value of 10.12.34.248 DNS server 10.129.8.136
Protocol-tunnel-VPN IPSec
enable PFS
Split-tunnel-policy tunnelspecified
value of Split-tunnel-network-list SPLITTUNNEL
xxx.local value by default-fieldtype tunnel-group CRYPTO-OKC-VPN remote access
General-attributes of CRYPTO-OKC-VPN Tunnel-group
LDAP authentication group-server
IPPOOL address pool
Group Policy - by default-CRYPTOGP
LDAP authentication group-server
tunnel-group CRYPTOOKC-VPN ipsec-attributes
pre-shared-key *.In my view, using the map LDAP is just for an LDAP attribute to an appropriate group policy, you can control access user group policy.
Here is an example.
After the user is connected, vpn can you use "show vpn-sessiondb" to check what group policy is used?
Moreover, I did not see 'LDAPPolicy' has been defined in your configuration.
-
After authentication check after user authentication using authentication SSO OAM
Hi all
We have recently configured all our apex oracle with OAM SSO application. Authentication works fine but the problem is, after the connection of users, we redirect users to different pages of the application based on their user role that is defined in the database table. This step is a failure because we use is no longer the Page 101 for a connection. We use the SSO OAM, which automatically connects the users when they launch the URL of the application. Please help on how to achieve this functionality. What other options are available.
Previously, I had the sub process in Page 101 because we use page 101 of connection for users using LDAP authentication and we redirect users to different pages depending on their role.
DECLARE
v_role VARCHAR2 (30);
v_page NUMBER;
BEGIN
BEGIN
SELECT user_role
IN v_role
Of user_tbl
WHEN USER_ID = UPPER (TRIM (: P101_USERNAME));
EXCEPTION WHEN NO_DATA_FOUND THEN
v_role: = NULL;
END;
IF v_role = "ADMIN" OR v_role = "POWER_ADMIN".
THEN
v_page: = 1;
ELSIF v_role = "USER".
THEN
v_page: = 32;
ON THE OTHER
v_page: = 200;
END IF;
APEX_UTIL.set_session_state (p_name = > 'FSP_AFTER_LOGIN_URL', p_value = > NULL);
wwv_flow_custom_auth_std. Login (P_UNAME = >: P101_USERNAME,)
P_PASSWORD = >: P101_PASSWORD,.
P_SESSION_ID = > v ("APP_SESSION").
P_FLOW_PAGE = >: APP_ID | ':' || v_page);
END;
Thank you
Rami
Hi ragu_s,
ragu_s wrote:
We have recently configured all our apex oracle with OAM SSO application. Authentication works fine but the problem is, after the connection of users, we redirect users to different pages of the application based on their user role that is defined in the database table. This step is a failure because we use is no longer the Page 101 for a connection. We use the SSO OAM, which automatically connects the users when they launch the URL of the application. Please help on how to achieve this functionality. What other options are available.
Previously, I had the sub process in Page 101 because we use page 101 of connection for users using LDAP authentication and we redirect users to different pages depending on their role.
The "wwv_flow_custom_auth_std.login" procedure is intended to address the process of connecting to an application based on the set of "authentication scheme. A good way to do this will be to allow the user to authenticate and log in to the application home page and write a header PLSQL treat on the application homepage that redirects the user appropriate to its APEX_UTIL from landing page. REDIRECT_URL.
Reference: Re: Re: Branch works not properly
Kind regards
Kiran
Maybe you are looking for
-
Why Web pages show nbsp; all the pages after the last update?
My operating system is Windows XP. After the last update for Firefox 29,0, web pages started showing nbsp; through, including my home page. I've never seen until the last update. Internet research indicate that this indicates a space when the web pag
-
Problems of synchronization of the sample clock with a frequency of a PXI-6229 counter!
Hi all, I'm having some problems with the synchronization of a frequency meter connected to a liquid flow meter (sensor only have 1 open collector output) with the sample of a PXI-6229 map clock. Someone there willing to give me a little help here wo
-
How can I open the .dll files?
Hello I'm opening a .dll file, because I just downloaded drivers for a digital camera, and this is part of the process. The instructions tell me to click on this file to set up the installation. I had to open the .dll files before, and I could fin
-
TMSPE & Java compatibility
In the process of migrating from former officer of TMS TMSPE 1.0, I was prompted to install Java 6 on Win Server 2008R2. Also fix TMS 14.2.1 and TMSPE 1.1. Since Java 7 is the latest version that I prefer to install that. Are TMSPE 1.0 and 1.1 comp
-
On the interactive report currency symbol
HelloI have an interactive report where I showed the book sterlling £ as currency symbol for sal column. By default sing it currency appears as $. To replace it, I used the below stated as a front page header:run immediately "alter session set NLS_CU