External spam authentication

Similar Messages

• External Table Authentication in OBIEE 11g

  Hi ,
  I have a security table, which contains userid,displayname,group . I have imported Security table in Physical Layer. I'm creating session variables based on condition.
  When am trying to logging into analytic s getting an error, invalid username and password . I'm using 11.1.1.6.0 version
  How to handle external table authentication in OBIEE 11g version.
  Regards,
  Malli

  Hi fiaz,
  That links talks about 10g version.
  Step1: We have imported a secutiry table in Physical layer.
  Step2: Creating a session variable by selecting initilazation block.
  Select user_name,group from security_table where user_id=':USER' and pwd=':password';
  step3: created DISPLAYNAME,GROUP & USER VARIABLES in edit target window
  After these modifications i was trying to logging with new user, which is there in security table.
  I am getting an error that is invalid user or password.
  Is there any other changes does it required here.
  Regards,
  Malli
  Edited by: user10675696 on Dec 26, 2012 9:39 PM

• External Table Authentication

  Hi I am using OBIEE 11g.
  In my project we have to implement external table authentication. For that we have import the external table to physical layer. and build the repository variable using initialization block. In that i have written a following SQL -
  SELECT loginid
  ,grp
  ,display_name
  ,2
  FROM external_auth
  WHERE loginid = ':USER'
  and password = ':PASSWORD'.
  I have also create the variable target - LOGID, Group, Display Name and Log Level.
  and save the variable.
  My table structure like this - LoginID,Password,Grp, Display Name.
  When i am trying to save the RPD following error message raised.
  ERRORS:
  GLOBAL:
  [38095] The initialization string in the Repository Initialization Block '"Auth Variable"' contains the use of :USER or :PASSWORD.
  Any one to help to come out from this issue.
  Kindly provide any link for step by step guide.
  Thanks
  Gauthaman

  Hi Gautham,
  i think you created Repository Variable.
  Create a Session variable and Session initilization bliock. give the same query in Session Initialize block. it will work.
  Thnaks
  GSR

• External Table Authentication - Not Able to Login to Presentation services

  Hi ,
  I am trying to setup External table Authentication and in Rpd file I have setup session Variable as described in the OBIEE Server Admin Guide (http://download.oracle.com/docs/cd/E10415_01/doc/bi.1013/b31770.pdf -- Page 326 ) ..
  But when I try to logon to Presentation services Iget the following error.
  State: 08004. Code: 10018. [NQODBC] [SQL_STATE: 08004] [nQSError: 10018] Access for the requested connection is refused. [nQSError: 13024] Successful completion of init block 'TableLDAP' is required. (08004)
  what am I doing wrong ? Please adivce.
  Thanks
  SS

  Hello,
  I Have setup system session User and group variables in a Initialazation block. No LDAP is tied. I have just created a table and added bunch of users and their passwords and their groups they belongs to.When I test my initialization block in rpd by suppling Uid/Pwd I see correct group they belongs to.
  But When I try in Presentation layer it doesn't work and throwing same error I mentioned.I tried various things but no luck .Not sure why intialization block is not firing off.
  Thanks
  SS

• Issue in External Table Authentication and Authorization in OBIEE11G

  Hello Gurus,
  Can anyone help me how to configure External Table Authentication and Authorization in OBIEE11g through weblogic server not like in 10g style(Through INIT Blocks).
  I've followed the (Doc ID 1338007.1) document. But when i'm restart the Managed servers and Admin servers after configuring the SQLAuthenticator all my services are showing down.
  I already raised the SR (SR 3-6286054151) on this issue. But still i didn't get any reply from them.
  Can anyone help me out on this issue or can anyone me send the document for "how to configure External Table Authentication and Authorization in OBIEE11g" . It's really appreciate for your quick response.
  my mail ID [email protected]
  Thanks,
  Syam.
  Edited by: 942658 on Oct 13, 2012 10:55 AM

  Hi John,
  Thanks for your quick response.
  We configured "ReadOnlySQL Provider" by following the Oracle's white paper(Doc ID 1338007.1) Please find the below steps what we configured in weblogic console.
  1. Created the Data Source
  2. In the data source specified the Database driver--> *Oracle's Driver Thin for service connections: Versions:9.0.1 and later.
  3. Defined the connection Properties .
  4. Selected targets as Admin server and bi_server.
  Then Activate changes
  5. Created new provider by using ReadOnlySQL Authenticator
  6. In the provider specific tab we given the SQL statements and saved it.
  7. Restarted the Admin and Managed servers.
  After restarted the services when we open the Enterprise Manager page all the services are showed as Undefined - means red.
  Apart from that we followed your suggested link http://askjohnobiee.blogspot.com/2012/09/how-to-oid-authentication-with-groups.html
  For External table authentication do we need to configure BISQLAuthenticator or ReadOnlySQLAuthenticator ?
  If we configure BISQLAuthenticator we just import Groups from database to Console application. Then how can it Authenticated to the User ?
  Please let me know your ideas on this.
  Thanks,
  Syam

• External database Authentication Issue

  Hello Experts
  I have omplemented external database authentication in my PC and somehow its not working
  Do we have to configure the details in NQSconfig file in the security section for implementing External Database Authentication .

  Hello Thanks for your concern .
  Steps i have followed
  *1)* use that table. If not, create the following table in your database.
  CREATE TABLE OBI_USER
  USERNAME VARCHAR2(255 BYTE),
  PASSWORD VARCHAR2(255 BYTE),
  GROUPNAME VARCHAR2(255 BYTE),
  DISPLAYNAME VARCHAR2(255 BYTE),
  LOGLEVEL NUMBER,
  CREATED_DT DATE sysdate,
  **2)**Created New ODBC Connection to use Separate Connection pool for OBIEE Security .
  *3)* Created New Session Initialization Block for Authentication and gave
  (SELECT USERNAME, GROUPNAME, DISPLAYNAME, LOGLEVEL FROM CPR_OBI_USER WHERE UPPER( USERNAME) =UPPER(':USER') AND UPPER(PASSWORD) =UPPER(':PASSWORD') ) by selection the new BI Security connection pool
  In the variable Traget i have defined 'USER', 'GROUP', 'LOGLEVEL','DISPLAYNAME'
  *4)* Created another Session Initialization Block for Authorization and gave (SELECT 'GROUP', GROUPNAME FROM OBI_USER WHERE UPPER( USERNAME) =UPPER(':USER'))
  And selected row wise initialization in variable target AND assigned Authentication Initialization block in the Execution Precedence .
  *5)* Created Groups in Manage-> Security-> Groups with the same group names as given in OBI_USER Table
  *6)* Added Groups in Manage Catalog and groups in Presentation Services .
  *7)* When i log on with the user which is assigned to the group in the OBI_USER Table then its giving
  (Unable to Log In     
  An invalid User Name or Password was entered.
  Please enter your User ID and Password below, and then press the Log In button.)
  Edited by: newbi on Sep 28, 2010 9:53 AM

• Need help with external user authentication

  Hello,
  I need some help to set up an external user authentication in Oracle DB 10g. Using the documentation at
  http://www.oracle-base.com/articles/misc/OsAuthentication.php
  I added the user alex to my linux system and checked the parameter os_authent_prefix:
  SQL> show parameter os_authent_prefix
  NAME TYPE VALUE
  os_authent_prefix string ops$
  SQL>
  I created the oracle user alex using
  CREATE USER alex IDENTIFIED EXTERNALLY;
  as well as
  CREATE USER ops$alex IDENTIFIED EXTERNALLY;
  The parameters in the sqlnet.ora are set to
  NAMES.DIRECTORY_PATH = (TNSNAMES, HOSTNAME, EZCONNECT)
  SQLNET.AUTHENTICATION_SERVICES = (ALL)
  Being the local user alex on the linux server I can login:
  $ sqlplus /
  SQL*Plus: Release 10.2.0.1.0 - Production on Tue Aug 30 08:56:26 2011
  Copyright (c) 1982, 2005, Oracle. All rights reserved.
  Connected to:
  Oracle Database 10g Release 10.2.0.1.0 - 64bit Production
  SQL>
  Now using a Windows Client:
  C:\>sqlplus alex@<netservicename>
  SQL*Plus: Release 10.2.0.1.0 - Production on Di Aug 30 10:31:37 2011
  Copyright (c) 1982, 2005, Oracle. All rights reserved.
  Kennwort eingeben:
  ERROR:
  ORA-01017: invalid username/password; logon denied
  - So, what's wrong?
  - Do I always have to create oracle users with the prefix "ops$" to the local username? How do these users login - with or without the prefix 'ops$'?
  - I read that kerberos authentication is only available through oracle advanced security addon. What about authentication through ldap?

  Obviously it doesn't work from any remote system.
  For this to happen the parameter remote_os_authent would have been set to true.
  Warning: this poses a security risk.
  As far as I know you should have been logged in as alex on the client, and using sqlplus /
  However, from 10g onwards Oracle comes with Oracle Wallet, which stores the password encrypted outside the database in a file, called wallet, and which is accessible from anywhere.
  You would better use that.
  Sybrand Bakker
  Senior Oracle DBA

• Aironet 1140 FLEXCONNECT External Web Authentication and Apple Devices

  Hi!
  I'm having an issue with this Access Point.
  I've configured this access point with WLC in mode FlexConnect with web authentication.
  It's all right, i'm connecting with my PC in wireless, i open my web browser in windows, then the Access Point redirect me to External Web Authentication Page,
  i put my credentials, and  i'm redirected to my access point ( https:/1.1.1.1/login.html i accept the certificate) and then the Access Point redirect me to Internet.
  I do this with my android phone, it's all right again.
  I try to connect with iphone or ipad , i'm  redirected to External Web Authentication Page, i put my credentials, and i'm  redirected to https://1.1.1.1/login.html where the web browser don't ask me anything and i'm not redirected to Internet.
  Have you any idea?

  Thx you Scott, i understand what are you talking about, but my problem is different.
  I try to explain..
  I see the wireless network, i associate the iphone to this network, so i'm  redirected to Login page,
  as i use the "Apple Login" or i Open a Web Page .
  In this page , that i reach with all devices i put my credentials, then i will be redirected with all devices
  back to Access Point (https://1.1.1.1/login.html).
  In this page i should be   redirected to internet after Radius Authentication, but with Apple Devices this doesn't work.
  This is thw WEB AUTHENTICATION from Cisco Documents.
  The user associates to the web authentication SSID.
  The user opens their browser.
  The WLC redirects to the guest portal (such as ISE or NGS) as soon as a URL is entered.
  The user authenticates on the portal.
  The guest portal redirects back to the WLC with the credentials entered.
  The WLC authenticates the guest user via RADIUS.
  The WLC redirects back to the original URL.

• Query related to external table authentication

  Hi Gurus,
  I am new to OBIEE. When we login to the Oracle Business intelligence, we used to give user as Administrator and password as Administrator.
  At this point, can we authentication the userid and password which is stored in external table in a users schema?
  ~ John

  "Administrator" will always be a user which is registered in the repository. All other users can be authenticated by external table authentication.
  You can create an init block which sets the USER system variable by
  SELECT user FROM users WHERE user = ':USER' and password = ':PASSWORD'

• Obiee 11g external table authentication

  Hi,
  I try to create external table authentication but it is not working.
  I have created this table
  CREATE TABLE OBI_SECURITY_USERS
  USER_NAME VARCHAR2(100 BYTE),
  USER_PASSWORD VARCHAR2(20 BYTE) NOT NULL
  and I defined Initialization Block it is below
  select USER_NAME FROM obi_security_users
  where USER_NAME=UPPER(':USER')
  and USER_PASSWORD=':PASSWORD'
  and I set Variable target for USER
  I restart services but it is not working.
  Anybody help me?

  Thanks for your reply Suman.
  it is ok I login in answer from my OBI_SECURITY_USERS tables.
  I have new problem about user groups.
  My group table like this
  CREATE TABLE OBI_SECURITY_USER_GROUPS
  USER_NAME VARCHAR2(100 BYTE) NOT NULL,
  USER_GROUP VARCHAR2(100 BYTE) NOT NULL
  I insert to this table user and Group and my Initialization Block is here.
  select 'GROUP',user_group from obi_security_user_groups
  where UPPER(user_name )= UPPER(':USER')
  I have created two application role from em.
  I want to define role this group
  how can i do?
  Thanks

• How Can We Achieve External Table Authentication

  Hai Guru's
  I want Know The External Table Authentication By Step By Step
  Thanks

  Hi Friend,
  For External table authentication you can follow this link:
  http://obieeblog.wordpress.com/2009/06/18/obiee-security-enforcement-%E2%80%93-external-database-table-authorization/
  Thanks
  Don

• External Radius Authentication

  Has anyone else setup the external radius authentication for their administrators?  I am thinking about turning it on to get better accounting of who made specific changes to the appliance and would rather use an existing authentication database.  If I read correctly the communication to the radius box only connects over interface M1?

  I have radius configured, I am unable to get any communication from the applicance to my radius server.  Have done packet captures and cannot see any traffic whatsoever leaving the appliance.

• External table authentication not updating user group changes

  Hello
  I have a question..
  In OBIEE, i am using external table authentication. I have user and user group tables where users and groups are stores.. Every Time I create a new user and assign them to a group, these records get inserted immediately to these tables with the correct user and group ID that matches with each other.. Then in my initialization block I have the query that fetches the user name and psswd as well as groups names..
  All these are working at the initial user creation. For example, when I create user A and assign it to group A, the DB table has all of the records inserted correctly. When I log in to OBIEE using User A login, I see it is assigned to Group B.
  The problem comes when I change the user A from Group B to Group C. When I did that, although the DB table gets updated correctly, OBIEE session seems to still be the previous one. As a result, when I log in the second time, I see the user A is still assigned to Group B instead of Group C.. This seems to be cached..
  I double check these user tables in OBIEE, none of them are cache enabled.. The connection pool setting of the isolation level is set as default..
  When I reinstall OBIEE all over again and re-log in the first time, this User is now assigned to Group C..
  So seems to be that it is caching issue.
  How should I go about solving this issue
  Appreciate in advance

  Make sure you check the box for 'Required for authentication' and also 'Use caching' should not check.
  Edited by: Srini VEERAVALLI on May 15, 2013 9:05 PM

• Adding external SPAM quarantine on C370

  Hi,
  I have C370 with Internal SPAM quarantine up and working.
  Now, we need to use M160 as external SPAM, I have configured both devices and we are waiting for maintenance window to cutover.
  I have one question about it:
  Documents are saying that I need to disable local one (easy, under C370 quarantines, I will go to SPAM and uncheck enable box) but it is a little unclear what comes after that.
  My mail policy will change to deliver or not? If it does, should I put IP address of M160 to Alternate Host, and if I do, will it use port 6025 as configured or 25 for SMTP?
  Since I have external SPAM already configured, shouldn't my mail policy stay that all SPAM & SPAM suspected should still be quarantined?
  Bottom line is, what should be in my mail policy?
  Thanks.
  David

  Hello David,
  Before configuring an external spam quarantine please ensure that the Security Management Appliance (M160)
  is configured to receive quarantined spam messages from this appliance. Once that has been configured, not only will you disable the local Spam Quarantine in your C370(GUI: Monitor tab > Quarantines), but you will need to add an External Quarantine(C370 GUI: Network tab). The IP address that you add as the External Quarantine will be the IP address of the Interface that you would have configured on your Security Management Appliance-as the default Spam Quarantine interface.
  You will not need to change your Mail Policies' Ant-Spam settings. Spam, Suspect Spam, Etc. - will continue to be routed to which ever quarantine the C370 is currentlt set to use. The port number that is used(6025, by default) was determined when you configured an Interface on your Security Management Appliance to accept spam from C370.
  Regards,
  -Jerry Orona

• IronPort SMA: External Spam Quarantine SSO Login

  Can external spam quarantine accomodate SSO login, if it's tied with AD? As far as I know- it cannot.

  Found the answer:
  Accessing the Quarantine via the Quarantine URL
  If LDAP Auth is configured, then the users AD username and password get them into the quarantine. There is no SAML SSO integration at this time.
  Accessing the quarantine via the Notifcation Digest
  When the user clinks on the link of a notification email, the URL has an auth token in it which authenticates the user to the quarantine. No popup login required.
  https://sma.quarantine.com:83/Search?h=8d392bb51780c3f7ebe0fa388eb9db2a&email=[email protected]