Document Security UI

Similar Messages

• Document Security API Issue

  I have developed a web application through which I can apply a policy to a set of documents present on my server's file system,(using APS and DSS API's ) and it is working fine on my jboss.I want to develop an application through which i can apply policy to documents from remote client's file system. And I don't want to upload my files to the server. Imagine if i have a 100 mb document
  Document Security service can't be accessed remotely.
  Is there any solution to this

  Acrobat and Acrobat Professional can both apply policies to documents. The engine on the server side that does this is called PDF Manipulation but the same technology is built into Acrobat.

• Document Security settings - conflicting information

  A PDF has been created in a process where Security is applied by itext sharp; and all values should be set to Allowed.
  When I check File > Properties > Security Tab (in adober reader 8 ) I can see:
  1) At the bottom a 'Document Restrictions Summary' section, but not all my values are "Allowed". So possibly something isn't right with the itext sharp process. However what is more confusing and the purpose of this post is that I can also see....
  2) At the top the Document Security section and a Show Details button. Selecting this brings up the Document Security dialog with another list of settings - some of which are a contradiction of those shown in the Summary list (point 1 above) e.g. Document Assembly is Not Allowed in 1) above, but is shown as Allowed in the separate Document Security dialog?????
  I can't find any information on the difference between these two sections and which Value is correct.
  I'm not sure if this is the correct forum, I've also posted this in the adobe reader group.
  Any help appreciated.
  ej.

  >When I check ...in adober reader 8
  >1) At the bottom a 'Document Restrictions Summary' section, but not all my values are "Allowed".
  This is normal in Reader, because its functions are limited. It's
  confusing, but it says "disabled" for things it can't do as well as
  those things which are forbidden. To actually confirm the settings use
  Acrobat instead.
  Aandi Inston

• "Document Security" and "Document Restrictions Summary" different

  Why is there a mismatch of permissions between 'Document Security' and Document Restrictions Summary'?
  I have a pdf file generated with the following security options enabled -- Printing, Commenting (Annotations), fill-in, Content Modification, Assembly. Even though these options show up as enabled in 'Document Security' section of Security tab in Properties (File->Properties->Security->Document Security), they are different to the ones in 'Document Restriction Summary'.
  This results in the inability to use highlighting/commenting tools of Adobe Acrobat Reader (ver. 7 and 8).
  The pdf file is generated using Open Office 3.0 Writer from a file in a .doc (word) format. I have also tried using tools like 'pdftk' with same results.
  According to my interpretation, the 'Document Restrictions Summary' should be in tandem with the 'Document Security'. Am I missing something obvious here? Could anyone kindly clarify how to enable the commenting feature and use it within Acrobat Reader (the free tool)?
  Needless to say this will be environment friendly option, which Adobe has been a strong advocate of.
  Rahul Iyer

  Yes, thats right. I used Open Office 3 to generate the pdf. I have also tried using pdftk and Adobe Distiller 5 with the same result.
  Your statement implies, the 'Adobe Reader' features cannot be fully utilized without a valid Adobe Acrobat Pro.
  This is a document to which I have the source. I have been able to create the pdf with the required set of permissions based on standards. But I am being hassled because I didn't generate it with Adobe Pro! Well, I suppose this must have been a business decision, but its one thats standards contrary and morally low!
  Adobe just lost an avid Reader user. I shall circulate my findings within my work and social circles. Thanks to competition and open source, I am sure to find a standards compliant reader without much delay.
  Thanks for your help - graffiti
  Rahul Iyer

• Document Security Not Retaining Permissions

  I have created a form in 7.0 and published it to my repository on my hard drive. I've uploaded the form to my site for my users. The form has three signature boxes as it's used in a workflow. I have full blown Acrobat 7 but my users don't. I can sign the forms but my users can't. My doc security says that signing is permitted. Their doc security says signing is not permitted. I'M LOST! I've read all the help files regarding digital signatures and document security - nothing is helping me. Is there a guru on this forum that could assist me?
  Trace
  [email protected]

  Hi Alex,
  when you create a library and then go to the permissions settings for it it's set to not inherit permissions?
  Ans : It Does not have any inherited permissions from the parent site.
  Does it have a copy of the standard permissions set? If not what does it have and what is it missing from the site default?
  Ans : No. Empty permissions.
  But whenever i stop and start apply inherited permissions on the parent site works fine (I mean apply to all document library). but i could not do it all time whenever the new library create. I hope whenever the permissions changes on the parent site may
  affect the document lib permissions. pls help how to proceed ?
  Manikandan

• Reader extensions vs Document security order

  Hi!
  I need to process the document by both the Reader extensions and Document security. If I do first Reader extensions and than certify document, reader extensions becomes invalid. If I certify document first and than proceed reader extensions, big warning about invalid signature is displayed.
  How to solve this problem?
  Thank you,
  --- Jaroslav

  The correct order is Certify->ARES

• Purchasing document security problem

  we are on 12.0.6
  There are four document security options [Purchasing, hierarchy, Private and Public]
  We had hierarchy set for Standard Purchase orders which means only the doc owner, subsequent approvers, and individuals above the document owner in the security hierarchy can access the document
  Now there are people from finance dept and planning dept who want to vie PO`s and PO summary but this is not possible due to the hierarchy option set
  If we change the setting to purchasing, than all buyers can view eachother documents which again we dont want to happen
  whats the solution for it
  Any suggestions plz

  the same reply from another user was mines too as now i have two accounts due to the migration thing that happened a month back
  "suppose one of the parts of hierarchy is as follows
  User C with approval group assigned, below him is user B and then user A..
  User A makes the PO and submits for approval, user B gets it in the notification summary and approves it which then routes to user C who when approves it is finally approved
  now where to put the accounts and audit users in the hierarchy..on the level with user B, if so then still they cannot see PO`s because hierarchy security option means "only the doc owner, subsequent approvers, and individuals above the document owner in the security hierarchy can access the document"
  If i put the users between user B and C than the PO routing would go through them and that is not needed at all
  so what to do"

• Document Security in web service.

  Hi all,
  I am trying to implement document security in the web service. here for that i have create a Ejb and exposed it as web service. now that i have enabled the Document security for the SOAP message. i want to know that which certificate (Keys) are used for the encryption and decryption of the message.
  I saw in help.sap.com that i have to use view WebServiceSecurity in which their is a key XMLEncryption.
  Now i have following issues with it.
  <b>I found no key in the view with name XMLEncryption</b>
  Should i create one or not.
  Now i created one key with that name.
  Now when i am using that key from .Net client to access the web service i get following responce form the web service.
  <b>0002E3562FFE004A00000012000003200003FB109FE6903A : Found 0 operation definitions using keys: Key name:'first-body-element-ns' key value:'urn:CostCenterSecureSignatureVi'; Key name:'SoapRequestWrapper' key value:'getDetail'</b>
  How do i correct above problem?.

  sorry for the post in wrong area.....

• WS And Web Dynpro: Error while processing document security

  Hi all,
  We have a problem when use Web Services (stateless session bean) in Web Dynpro.
  When two users calls  the same web dynpro in the same time we have this error:
  Errore in: it.sap.mdm.pdcmodelcomponent.wdp.InternalLookUpModelController getLookUpTable: 
    Class___: com.sap.tc.webdynpro.model.webservice.api.WDWSModelExecuteException  Additional Info:
    Message_: Exception on execution of web service on destination 'FS_MDM_PDC' for operation 'getLookupTable' in interface 'ZMDM_FS_PDCVi_Document'
    Causa__:
  Error while processing document security. The error was class com.sap.engine.frame.core.configuration.ConfigurationException Configuration webservices/proxies/sap.com/ mapping is not valid - configuration is closed.. See trace entry [no trace for com.sap.security.core.client.ws.DeployableSecurityProtocol (severity above PATH)].; nested exception is: com.sap.engine.services.webservices.jaxrpc.wsdl2java.ClientProtocolException: Error while processing document security. The error was class com.sap.engine.frame.core.configuration.ConfigurationException Configuration webservices/proxies/sap.com/ mapping is not valid - configuration is closed.. See trace entry [no trace for com.sap.security.core.client.ws.DeployableSecurityProtocol (severity above PATH)].
  If I call the same web dynpro ,without other user, it's ok.
  Where is the problem?
  I have to congigure some parameter in J2ee???

  Hi
  Use this pdf to implement Mutual Exclusion
  http://java.sun.com/developer/Books/performance2/chap3.pdf
  http://navet.ics.hawaii.edu/~casanova/courses/ics432_fall08/slides/ics432_jmonitors.ppt#313,10,Synchronizing on Multiple Objects
  thanks

• Livecycle Policy Server and Livecycle Document Security

  Do I need Document Security to use Policy Server??

  Hello,
  I've been hunting around but can't find it. Is there a concise refernce for how to use Adobe Acrobat8 Security features with the Adobe Document Center? Is it so new that there's no book (Quick Start, etc.) on it?
  I send PDFs to people. But I only want them to be able to print the PDF, not copy any of its content. I also want the PDF to "self destruct" after a 3 month period. I was going to use Pinion Software's AutoShred product, but then I stumbled upon Adobe8 and the Document Center, which seemed like a perfect fit. So I immediately upgraded to Adobe8 and signed up for the trial at the Document Center.
  I have created security policies. But when I look at the policy, there is nothing allowing the detailed modifications permitted in Acrobat8 - Secure / Show Security Properties / SecurityTab / and the list for Document Restrictions Summary.
  For some reason, when I set up a security policy - most restrictive to only permit printing and file non-access after 3 months - the "page extraction: allowed" always shows up when I examine Show Security Properties / Security Tab / Document Restrictions Summary, even though for everything else it is "Not allowed" which is what I want.
  I thought maybe its a bug, because when I close the file and then reopen it, the page extraction is grayed out. But I don't know if people I send the file to will be able to extract the pages, thus getting around my objective of not allowing them to copy/paste any of my proprietary content onto some other file format.
  Any help on this?
  Thanks,
  Robert

• Add certificate to document security

  hi,
  i want to certify documents through document securirty.
  i am familar with the api, and there are no questions so far.
  1. a x.509 certificate will be ok for certifying documents, isn't it?
  2. i read the documentation of document security. i know how to sign the trust.xml, but i do not know how does the entry for my certifcate must look like. i was searching for an example of trust xml, but i couldnt find one. can someone post a valid trust.xml as an example?
  3. my servlet will sing the document. how do i manage credential, who are allowed to connect to my servlet.
  i am running win2003 and jboss environment.
  thaks

  This a sample for Form Server6 Developers guide<br /><br />Sample content for trust.xml<br />The following example demonstrates the content of the trust.xml file:<br /><trust><br /><trustAnchors><br /><cerrecord cerFile="JohnSmithDER.cer" TrustedFor="Signatures<br />CertifiedDocuments Identity"/><br /><cerrecord cerFile="Alice.cer" TrustedFor="Identity Signatures"/><br /></trustAnchors><br /><CRLs><br /><crl URL="http://crl.adobe.com/testCA3.crl" filename="testCA3.crl"/><br /><crl URL="http://crl.adobe.com/testCA4.crl" filename="testCA4.crl"/>|<br /><crl URL="http://crl.adobe.com/cds.crl" filename="cds.crl"/><br /></CRLs><br /><credentials><br /><p12record alias="alice" p12="alice.pfx"/><br /><p12record alias="bob" p12="bob.pfx"/><br /><p12record alias="charlie" p12="Charlie.pfx"/><br /><p12record alias="doug" p12="Doug.pfx"/><br /><hsmrecord alias="Alicehsm" slot="17"<br />dllpath="root dir/Luna/cryst211.dll"/><br /><p12record alias="GoodUbiquity" p12="alpha-2.pfx"/><br /><p12record alias="johnsmith" p12="johnsmith.pfx"/><br /><MSCAPIrecord alias="AliceCertify"<br />sha1='c4500e618f4fc1cef417020bb3638bd82a78ccec'/><br /><p12record alias="UBFormsEval" p12="UBFormsEval.pfx"/><br /></credentials><br /></trust>

• Remove Document Security Rich Client 3.1

  Hi:
  We are using Webi Rich Client 3.1 Service Pack 4 is there a way to have the default for Remove Document Security always checked vs. unchecked?
  Thanks in advance.

  Hi Rose,
  Login to Central Management Console. Go to Access Levels and open the Access Level for the member experiencing this issue. Grant access to the "Web Intelligence Rich Client: Remove document security" in "Web Intelligence" entry under "Application" section.
  All the Best,
  Madhu....

• Permanent Regional Formatting, Save for all users, Remove Document Security

  Dear Experts,
  I have read the Documentation of Permanent Regional Formatting, Save for all users, Remove Document Security in Document Properties.
  Can anyone explain me in simple way all the above three. (More on Permanent Regional Formatting with example).
  Regards
  Sam

  There's no unmanaged Web Intelligence functionality support via .NET as far as I know.
  You might want to open a support case with SAP to get confirmation.
  Sincerely,
  Ted Ueda

• Technical Details And Success Story of Adobe LiveCycle Document Security

  First of all I am sorry if my subject is not related to the previous topics.
  I am a master student of Media Informatics in RWTH Aachen University. Now I am taking a seminar course of Digital Management Rights, and I have a topic: Adobe LiveCycle Document Security to be presented next week.
  I do not have details information on how it works/technical aspect about it that I really need to well prepare of my presentation. I have read all the document in adobe website but unfortunately I could not find much more details explanation.
  I also need user stories when they use Adobe LiveCycle Document Security. I read also the success story from adobe web site but it has no success story of customer who use the specific product of Adobe LiveCycle Document Security.
  Thank you for your help.

  There is a good case study on Penn State that would probably make a good addition to your presentation:
  http://www.adobe.com/cfusion/showcase/index.cfm?event=finder&productid=101104&loc=en_us

• SSL & Document Security Server

  Hi -
  Previously I had successfully implemented a solution to allow me to apply a policy to a PDF remotely. I did this by creating an EJB to interact with the Document Security server. The EJB takes a byte[] as input (which is the unprotected PDF) and returns a byte[] as output (which is the protected PDF). This was working well.
  I've now implemented SSL on JBoss/Document Security server and although the certificate seems fine, the application no longer works. At the point where it's writing the data back to the client the following error is presented within the server.log file:
  2006-10-17 14:18:54,973 INFO [STDOUT] omniORB: From endpoint: giop:tcp:192.168.1.103:3528. Detected GIOP 1.2 protocol error in input message. Connection is
  closed.
  2006-10-17 14:18:55,116 INFO [STDOUT] omniORB: From endpoint: giop:tcp:192.168.1.103:3528. Detected GIOP 1.2 protocol error in input message. Connection is
  closed.
  2006-10-17 14:18:55,137 ERROR [com.adobe.document.PDFManipulation] Service PDFManipulation: Native process (PID=0) /opt/semantico/slot/Adobe/1/LiveCycle_7.0.
  2/PolicyServer/jboss-3.2.5/server/all/svcnative/PDFManipulation/bin/PDFManipulation.exe terminated abnormally with error code 1
  2006-10-17 14:18:55,140 INFO [com.adobe.service.logging.Logger] $$$/server/service/logging/msg.LogSvcInit=Logger com.adobe.service.logging.Logger initialize
  d
  The system doesn't actually seem to terminate as my client just sits there waiting for a response that doesn't seem to come.
  Has anyone seen this before? Have I done something wrong when implementing the certificate? Is it unrelated to the SSL work that I've been doing?
  I'm really confused and can't seem to find any forum topics addressing this issue so am very stuck. If anyone could offer any ideas as to how to solve this issue I'd be most grateful.
  The steps I took to implement SSL were:
  - generated a new certificate
  - generated a CSR to get signed by a trusted authority
  - added the signed certificate into my java environment
  - performed an 'expert' installation of document security server to incorporate the new certificate (I had to do this as configtool doesn't seem to work on my machine)
  - added the certificate to the JBoss installation & configured JBoss
  If anyone could help me with this I'd be very grateful.
  Anil.

  Hi Steve (and anyone that can help!) - <br /><br />I've installed my SSL certificate onto JBoss etc, and when I go to:<br /><br />https://<machine>:8433/edc/Main.do<br /><br />I see the certificate and it is trusted etc. The certificate appears fine.<br /><br />But when I run my application to apply a policy to a PDF (which works without the SSL connection) I get a problem being displayed in the server.log file.<br /><br />It initially says it has a problem retrieving the trust info (I assume that it's related) and then when it tries to do the work I get an SSLHandshakeException. <br /><br />javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure  vmcid: 0x0  minor code: 0  completed: No<br />        at org.jacorb.orb.iiop.IIOPConnection.to_COMM_FAILURE<br /><br />I'm confused as to why the certificate seems fine for the browser but there is a problem with the system communicating internally in order to apply the policy to the document.<br /><br />-------------<br /><br />2006-11-03 16:09:21,409 WARN  [com.adobe.document.PDFManipulation] problem retrieving trust info, security functions will not work<br />2006-11-03 16:09:21,422 DEBUG [org.jboss.mx.loading.UnifiedClassLoader] New jmx UCL with url null<br />2006-11-03 16:09:21,422 DEBUG [org.jboss.mx.loading.UnifiedClassLoader] setRepository, r=org.jboss.mx.loading.HeirarchicalLoaderRepository3@1944379, ucl=org.jboss.mx.loading.HeirarchicalLoaderRepository3$CacheClassLoader@1002a9d{ url=null ,addedOrder=0}<br />2006-11-03 16:09:21,422 DEBUG [org.jboss.mx.loading.UnifiedClassLoader] New jmx UCL with url null<br />2006-11-03 16:09:21,422 DEBUG [org.jboss.mx.loading.UnifiedClassLoader] setRepository, r=org.jboss.mx.loading.HeirarchicalLoaderRepository3@1944379, ucl=org.jboss.mx.loading.UnifiedClassLoader3@71edc8{ url=null ,addedOrder=0}<br />2006-11-03 16:09:21,432 INFO  [com.adobe.document.PDFManipulation] @@@ Starting PDFManipulation Services @@@<br />2006-11-03 16:09:21,434 DEBUG [com.adobe.document.PDFManipulation] Service PDFManipulation: Signal READY received<br />2006-11-03 16:09:21,435 DEBUG [org.jboss.mx.loading.UnifiedClassLoader] New jmx UCL with url null<br />2006-11-03 16:09:21,435 DEBUG [org.jboss.mx.loading.UnifiedClassLoader] setRepository, r=org.jboss.mx.loading.HeirarchicalLoaderRepository3@1944379, ucl=org.jboss.mx.loading.HeirarchicalLoaderRepository3$CacheClassLoader@1c4ecb7{ url=null ,addedOrder=0}<br />2006-11-03 16:09:21,435 DEBUG [org.jboss.mx.loading.UnifiedClassLoader] New jmx UCL with url null<br />2006-11-03 16:09:21,435 DEBUG [org.jboss.mx.loading.UnifiedClassLoader] setRepository, r=org.jboss.mx.loading.HeirarchicalLoaderRepository3@1944379, ucl=org.jboss.mx.loading.UnifiedClassLoader3@7c0754{ url=null ,addedOrder=0}<br />2006-11-03 16:09:21,490 INFO  [com.adobe.document.PDFManipulation] Service PDFManipulation: Exception while allocating a connection.<br />2006-11-03 16:09:21,494 INFO  [com.adobe.document.PDFManipulation] org.omg.CORBA.COMM_FAILURE: IOException: javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure  vmcid: 0x0  minor code: 0  completed: No<br />org.omg.CORBA.COMM_FAILURE: IOException: javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure  vmcid: 0x0  minor code: 0  completed: No<br />        at org.jacorb.orb.iiop.IIOPConnection.to_COMM_FAILURE(Unknown Source)<br />        at org.jacorb.orb.iiop.IIOPConnection.flush(Unknown Source)<br />        at org.jacorb.orb.giop.GIOPConnection.sendMessage(Unknown Source)<br />        at org.jacorb.orb.giop.GIOPConnection.sendRequest(Unknown Source)<br />        at org.jacorb.orb.giop.ClientConnection.sendRequest(Unknown Source)<br />        at org.jacorb.orb.giop.ClientConnection.sendRequest(Unknown Source)<br />        at org.jacorb.orb.Delegate.invoke_internal(Unknown Source)<br />        at org.jacorb.orb.Delegate.invoke(Unknown Source)<br />        at org.omg.CORBA.portable.ObjectImpl._invoke(ObjectImpl.java:457)<br />        at com.adobe.service._ControlAgentStub.newRequestHandler(_ControlAgentStub.java:23)<br />        at com.adobe.service.ProcessResource.allocateConnection(ProcessResource.java:561)<br />        at com.adobe.service.ConnectionResource.getConnection(ConnectionResource.java:39)<br />        at com.adobe.service.J2EEConnectionFactoryManagerPeerImpl.getConnection(J2EEConnectionFactor yManagerPeerImpl.java:106)<br />        at com.semantico.depp.drm.documentsecurity.server.PolicyApplicationBean.applyPolicy(Unknown Source)<br />        at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)<br />        at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)<br />        at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)<br />        at java.lang.reflect.Method.invoke(Method.java:324)<br />        at org.jboss.ejb.StatelessSessionContainer$ContainerInterceptor.invoke(StatelessSessionConta iner.java:683)<br />        at org.jboss.resource.connectionmanager.CachedConnectionInterceptor.invoke(CachedConnectionI nterceptor.java:185)<br />        at org.jboss.ejb.plugins.AbstractTxInterceptor.invokeNext(AbstractTxInterceptor.java:84)<br />        at org.jboss.ejb.plugins.AbstractTxInterceptorBMT.invokeNext(AbstractTxInterceptorBMT.java:1 44)<br />        at org.jboss.ejb.plugins.TxInterceptorBMT.invoke(TxInterceptorBMT.java:62)<br />        at org.jboss.ejb.plugins.StatelessSessionInstanceInterceptor.invoke(StatelessSessionInstance Interceptor.java:72)<br />        at org.jboss.ejb.plugins.SecurityInterceptor.invoke(SecurityInterceptor.java:120)<br />        at org.jboss.ejb.plugins.LogInterceptor.invoke(LogInterceptor.java:191)<br />        at org.jboss.ejb.plugins.ProxyFactoryFinderInterceptor.invoke(ProxyFactoryFinderInterceptor. java:122)<br />        at org.jboss.ejb.StatelessSessionContainer.internalInvoke(StatelessSessionContainer.java:331 )<br /><br />--------------<br /><br />Can anyone shed any light on what's going on here? I've configured my system as documented by a few people but I don't seem to be able to get it working.<br /><br />Many thanks,<br />Anil.