Radius wont Authenticate Default Users

I am using free radius on ubuntu 12.04 LTS. 
The AAA configs I have, I  used on all of my Layer 2 devices, and it works successfully, however I can not get users to authenticate on a Layer 3 device.... here is some info... I can ping to and from my server, also I have rules on the asa 5510 allowing devices to talk to the radius server... as well as an access-list permit on the router....what am I missing. 
Cisco Internetwork Operating System Software
IOS (tm) s72033_rp Software (s72033_rp-ADVIPSERVICESK9_WAN-M), Version 12.2(18)SXF13, RELEASE SOFTWARE (fc1)
the configs---
aaa new-model
aaa group server radius RadiusGrp
 server X.X.X.X auth-port 1812 acct-port 1813
aaa authentication login default group RadiusGrp
aaa authorization exec default group RadiusGrp
aaa accounting exec default start-stop group RadiusGrp
aaa accounting system default start-stop group RadiusGrp
radius-server host X.X.X.X auth-port 1812 acct-port 1813 key secret
radius-server retransmit 3
Debugging AAA authentication ---
May  1 13:22:24: AAA/AUTHEN/START (3020837816): port='tty1' list='' action=LOGIN service=LOGIN
May  1 13:22:24: AAA/AUTHEN/START (3020837816): using "default" list
May  1 13:22:24: AAA/AUTHEN/START (3020837816): Method=RadiusGrp (radius)
May  1 13:22:24: AAA/AUTHEN (3020837816): status = GETUSER
May  1 13:22:26: AAA/AUTHEN/CONT (3020837816): continue_login (user='(undef)')
May  1 13:22:26: AAA/AUTHEN (3020837816): status = GETUSER
May  1 13:22:26: AAA/AUTHEN (3020837816): Method=RadiusGrp (radius)
May  1 13:22:26: AAA/AUTHEN (3020837816): status = GETPASS
May  1 13:22:30: AAA/AUTHEN/CONT (3020837816): continue_login (user='thull')
May  1 13:22:30: AAA/AUTHEN (3020837816): status = GETPASS
May  1 13:22:30: AAA/AUTHEN (3020837816): Method=RadiusGrp (radius)
May  1 13:22:51: AAA/AUTHEN (3020837816): status = ERROR
May  1 13:22:51: AAA/AUTHEN/START (2366780039): port='tty1' list='' action=LOGIN service=LOGIN
May  1 13:22:51: AAA/AUTHEN/START (2366780039): Restart
May  1 13:22:51: AAA/AUTHEN/START (2366780039): no methods left to try
May  1 13:22:51: AAA/AUTHEN (2366780039): status = ERROR
May  1 13:22:51: AAA/AUTHEN/START (2366780039): failed to authenticate
May  1 13:22:53: AAA/MEMORY: free_user_quiet (0x44BFCBB8) user='thull' ruser='NULL' port='tty1' rem_addr='X.X.X.X' authen_type=1 service=1 priv=1
May  1 13:22:53: AAA: parse name=tty1 idb type=-1 tty=-1
May  1 13:22:53: AAA: name=tty1 flags=0x11 type=5 shelf=0 slot=0 adapter=0 port=1 channel=0
May  1 13:22:53: AAA/MEMORY: create_user (0x44BFCBB8) user='NULL' ruser='NULL' ds0=0 port='tty1' rem_addr='X.X.X.X.' 100authen_type=ASCII service=LOGIN priv=1 initial_task_id='0', vrf= (id=0)
May  1 13:22:53: AAA/AUTHEN/START (1597653700): port='tty1' list='' action=LOGIN service=LOGIN
May  1 13:22:53: AAA/AUTHEN/START (1597653700): using "default" list
May  1 13:22:53: AAA/AUTHEN/START (1597653700): Method=RadiusGrp (radius)
May  1 13:22:53: AAA/AUTHEN (1597653700): status = GETUSER

It seems that your radius server is not listening on udp 1812 port. Try to use 1645 and 1646 port for radius authen/author and accounting respectively and also apply firewall rules to allow traffic on these udp ports.
HTH
"Please rate helpful posts"

Similar Messages

  • Messages (Jabber) Refuses to Authenticate AD Users after 10.9.2/Server 3.0.3 update

    Once again, an update appears to have broken Messages/Jabber's ability to authenticate AD users after the 10.9.2/Server 3.0.3 update even though it was working well before. Hoping someone here has some ideas for how to help!
    I can log in just fine as a local user (e.g. [email protected]), but no luck with AD users (e.g. [email protected]). As always, it fails with no intelligible error message whatsoever:
    Mar  1 09:46:00 comet.ADdomain.private jabberd/c2s[604]: [9] [::ffff:76.24.227.229, port=58658] connect
    Mar  1 09:46:01 comet.ADdomain.private jabberd/c2s[604]: [9] [::ffff:76.24.227.229, port=58658] disconnect jid=unbound, packets: 0
    Mar  1 09:48:00 comet.ADdomain.private jabberd/c2s[604]: [9] [::ffff:76.24.227.229, port=58667] connect
    Mar  1 09:48:01 comet.ADdomain.private jabberd/c2s[604]: [9] [::ffff:76.24.227.229, port=58667] disconnect jid=unbound, packets: 0
    I reset the jabber server configuration as described here to no avail: https://discussions.apple.com/thread/5354428
    The DNS configuration looks good:
    changeip -checkhostname
    Primary address     = 10.0.17.15
    Current HostName    = comet.ADdomain.private
    DNS HostName        = comet.ADdomain.private
    The names match. There is nothing to change.
    dirserv:success = "success"
    The Jabber status from jabber:
    serveradmin fullstatus jabber
    jabber:state = "RUNNING"
    jabber:roomsState = "RUNNING"
    jabber:logPaths:PROXY_LOG = "/private/var/jabberd/log/proxy65.log"
    jabber:logPaths:MUC_STD_LOG = "/var/log/system.log"
    jabber:logPaths:JABBER_LOG = "/var/log/system.log"
    jabber:proxyState = "RUNNING"
    jabber:currentConnections = "0"
    jabber:currentConnectionsPort1 = "0"
    jabber:currentConnectionsPort2 = "0"
    jabber:pluginVersion = "10.8.211"
    jabber:servicePortsAreRestricted = "NO"
    jabber:servicePortsRestrictionInfo = _empty_array
    jabber:hostsCommaDelimitedString = "comet.ADdomain.private"
    jabber:hosts:_array_index:0 = "comet.ADdomain.private"
    jabber:setStateVersion = 1
    jabber:startedTime = "2014-03-01 17:39:06 +0000"
    jabber:readWriteSettingsVersion = 1
    Full jabber server startup log:
    Mar  1 09:52:19 comet.ADdomain.private servermgrd[180]: servermgr_jabber[N]: waiting for jabberd to finish startup...
    Mar  1 09:52:19 comet.ADdomain.private jabberd/router[1785]: starting up
    Mar  1 09:52:19 comet.ADdomain.private jabberd/router[1785]: loaded user table (1 users)
    Mar  1 09:52:19 comet.ADdomain.private jabberd/router[1785]: couldn't open filter file /etc/jabberd/router-filter.xml: No such file or directory
    Mar  1 09:52:19 comet.ADdomain.private servermgrd[180]: servermgr_jabber[N]: jabberd service startup completed.
    Mar  1 09:52:19 comet.ADdomain.private jabberd/c2s[1786]: starting up
    Mar  1 09:52:19 comet.ADdomain.private jabberd/s2s[1787]: starting up (interval=60, queue=60, keepalive=0, idle=86400)
    Mar  1 09:52:19 comet.ADdomain.private jabberd/sm[1784]: starting up
    Mar  1 09:52:19 comet.ADdomain.private jabberd/c2s[1786]: modules search path: /Applications/Server.app/Contents/ServerRoot/usr/libexec/jabberd/modules
    Mar  1 09:52:19 comet.ADdomain.private jabberd/c2s[1786]: initialized auth module 'apple_od'
    Mar  1 09:52:19 comet.ADdomain.private jabberd/sm[1784]: initialised storage driver 'sqlite'
    Mar  1 09:52:19 comet.ADdomain.private jabberd/sm[1784]: modules search path: /Applications/Server.app/Contents/ServerRoot/usr/libexec/jabberd/modules
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'iq-last' added to chain 'sess-end' (order 0 index 0 seq 0)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'validate' added to chain 'in-sess' (order 0 index 1 seq 0)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'privacy' added to chain 'in-sess' (order 1 index 2 seq 0)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'roster' added to chain 'in-sess' (order 2 index 3 seq 0)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/router[1785]: [127.0.0.1, port=5347] listening for incoming connections
    Mar  1 09:52:20 comet.ADdomain.private jabberd/c2s[1786]: [comet.ADdomain.private] configured; realm=comet.ADdomain.private, registration disabled, using PEM:/etc/certificates/mail.ADdomainbio.com.E41BBC081993E348B26181D9CB334A28137A8D8D.concat.pem
    Mar  1 09:52:20 comet.ADdomain.private jabberd/c2s[1786]: attempting connection to router at 127.0.0.1, port=5347
    Mar  1 09:52:20 comet.ADdomain.private jabberd/router[1785]: [127.0.0.1, port=49353] connect
    Mar  1 09:52:20 comet.ADdomain.private jabberd/router[1785]: [127.0.0.1, port=49353] authenticated as jabberd
    Mar  1 09:52:20 comet.ADdomain.private jabberd/c2s[1786]: connection to router established
    Mar  1 09:52:20 comet.ADdomain.private jabberd/router[1785]: [c2s] online (bound to 127.0.0.1, port 49353)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/c2s[1786]: [::, port=5222] listening for connections
    Mar  1 09:52:20 comet.ADdomain.private jabberd/c2s[1786]: [::, port=5223] listening for SSL connections
    Mar  1 09:52:20 comet.ADdomain.private jabberd/c2s[1786]: ready for connections
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'vacation' added to chain 'in-sess' (order 3 index 4 seq 0)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/s2s[1787]: attempting connection to router at 127.0.0.1, port=5347
    Mar  1 09:52:20 comet.ADdomain.private jabberd/router[1785]: [127.0.0.1, port=49354] connect
    Mar  1 09:52:20 comet.ADdomain.private jabberd/router[1785]: [127.0.0.1, port=49354] authenticated as jabberd
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'iq-vcard' added to chain 'in-sess' (order 4 index 5 seq 0)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/s2s[1787]: connection to router established
    Mar  1 09:52:20 comet.ADdomain.private jabberd/router[1785]: [s2s] set as default route
    Mar  1 09:52:20 comet.ADdomain.private jabberd/router[1785]: [s2s] online (bound to 127.0.0.1, port 49354)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/s2s[1787]: ready for connections
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'iq-ping' added to chain 'in-sess' (order 5 index 6 seq 0)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'iq-private' added to chain 'in-sess' (order 6 index 7 seq 0)
    Mar  1 09:52:20 comet.ADdomain.private Rooms[1792]: Starting up...
    Mar  1 09:52:20 comet.ADdomain.private Rooms[1792]: Loading persistent rooms from disk...
    Mar  1 09:52:20 comet.ADdomain.private Rooms[1792]: Finished loading rooms from disk
    Mar  1 09:52:20 comet.ADdomain.private Rooms[1792]: Connecting to XMPP server at 'comet.ADdomain.private' as 'rooms.comet.ADdomain.private'...
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'disco' added to chain 'in-sess' (order 7 index 8 seq 0)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'amp' added to chain 'in-sess' (order 8 index 9 seq 0)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'offline' added to chain 'in-sess' (order 9 index 10 seq 0)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'announce' added to chain 'in-sess' (order 10 index 11 seq 0)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'presence' added to chain 'in-sess' (order 11 index 12 seq 0)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'deliver' added to chain 'in-sess' (order 12 index 13 seq 0)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'session' added to chain 'in-router' (order 0 index 14 seq 0)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'validate' added to chain 'in-router' (order 1 index 1 seq 1)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'presence' added to chain 'in-router' (order 2 index 12 seq 1)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'privacy' added to chain 'in-router' (order 3 index 2 seq 1)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'privacy' added to chain 'out-router' (order 0 index 2 seq 2)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'iq-last' added to chain 'pkt-sm' (order 0 index 0 seq 1)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'iq-ping' added to chain 'pkt-sm' (order 1 index 6 seq 1)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'iq-time' added to chain 'pkt-sm' (order 2 index 15 seq 0)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'iq-version' added to chain 'pkt-sm' (order 3 index 16 seq 0)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'amp' added to chain 'pkt-sm' (order 4 index 9 seq 1)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'disco' added to chain 'pkt-sm' (order 5 index 8 seq 1)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'announce' added to chain 'pkt-sm' (order 6 index 11 seq 1)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'help' added to chain 'pkt-sm' (order 7 index 17 seq 0)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'echo' added to chain 'pkt-sm' (order 8 index 18 seq 0)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'presence' added to chain 'pkt-sm' (order 9 index 12 seq 2)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'roster' added to chain 'pkt-user' (order 0 index 3 seq 1)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'presence' added to chain 'pkt-user' (order 1 index 12 seq 3)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'iq-vcard' added to chain 'pkt-user' (order 2 index 5 seq 1)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'amp' added to chain 'pkt-user' (order 3 index 9 seq 2)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'deliver' added to chain 'pkt-user' (order 4 index 13 seq 1)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'vacation' added to chain 'pkt-user' (order 5 index 4 seq 1)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'offline' added to chain 'pkt-user' (order 6 index 10 seq 1)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'iq-last' added to chain 'pkt-user' (order 7 index 0 seq 2)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'session' added to chain 'pkt-router' (order 0 index 14 seq 1)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'disco' added to chain 'pkt-router' (order 1 index 8 seq 2)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'active' added to chain 'user-load' (order 0 index 19 seq 0)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'autobuddy' added to chain 'user-load' (order 1 index 20 seq 0)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'roster' added to chain 'user-load' (order 2 index 3 seq 2)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'roster-publish' added to chain 'user-load' (order 3 index 21 seq 0)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'privacy' added to chain 'user-load' (order 4 index 2 seq 3)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'vacation' added to chain 'user-load' (order 5 index 4 seq 2)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'active' added to chain 'user-create' (order 0 index 19 seq 1)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'template-roster' added to chain 'user-create' (order 1 index 22 seq 0)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'active' added to chain 'user-delete' (order 0 index 19 seq 2)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'announce' added to chain 'user-delete' (order 1 index 11 seq 2)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'offline' added to chain 'user-delete' (order 2 index 10 seq 2)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'privacy' added to chain 'user-delete' (order 3 index 2 seq 4)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'roster' added to chain 'user-delete' (order 4 index 3 seq 3)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'vacation' added to chain 'user-delete' (order 5 index 4 seq 3)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'iq-last' added to chain 'user-delete' (order 6 index 0 seq 3)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'iq-private' added to chain 'user-delete' (order 7 index 7 seq 1)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'iq-vcard' added to chain 'user-delete' (order 8 index 5 seq 2)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'iq-version' added to chain 'disco-extend' (order 0 index 16 seq 1)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: module 'help' added to chain 'disco-extend' (order 1 index 17 seq 1)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: version: jabberd sm 2.2.17-409
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: [comet.ADdomain.private] configured
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: attempting connection to router at 127.0.0.1, port=5347
    Mar  1 09:52:20 comet.ADdomain.private jabberd/router[1785]: [127.0.0.1, port=49355] connect
    Mar  1 09:52:20 comet.ADdomain.private jabberd/router[1785]: [127.0.0.1, port=49355] authenticated as jabberd
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: connection to router established
    Mar  1 09:52:20 comet.ADdomain.private jabberd/router[1785]: [sm] online (bound to 127.0.0.1, port 49355)
    Mar  1 09:52:20 comet.ADdomain.private jabberd/sm[1784]: sm ready for sessions
    Mar  1 09:52:20 comet.ADdomain.private jabberd/router[1785]: [comet.ADdomain.private] online (bound to 127.0.0.1, port 49355)
    Mar  1 09:52:22 comet.ADdomain.private jabberd/router[1785]: [127.0.0.1, port=49356] connect
    Mar  1 09:52:22 comet.ADdomain.private jabberd/router[1785]: [127.0.0.1, port=49356] authenticated as proxy65.comet.ADdomain.private
    Mar  1 09:52:22 comet.ADdomain.private jabberd/router[1785]: [proxy65.comet.ADdomain.private] online (bound to 127.0.0.1, port 49356)
    Mar  1 09:52:23 comet.ADdomain.private jabberd/router[1785]: [127.0.0.1, port=49357] connect
    Mar  1 09:52:24 comet.ADdomain.private jabberd/router[1785]: [127.0.0.1, port=49357] authenticated as rooms.comet.ADdomain.private
    Mar  1 09:52:24 comet.ADdomain.private jabberd/router[1785]: [rooms.comet.ADdomain.private] online (bound to 127.0.0.1, port 49357)
    Mar  1 09:52:24 comet.ADdomain.private Rooms[1792]: Successfully connected to XMPP server, ready for activity
    I am not sure if it's attempting to authenticate to AD or not, and if so, why it might be failing. Any suggestions would be greatly appreciated!

    uscadvit wrote:
    Here is the output without the name of our AD:
    Advanced Options - User Experience
      Create mobile account at login = Disabled
         Require confirmation        = Enabled
      Force home to startup disk     = Enabled
         Mount home as sharepoint    = Enabled
      Use Windows UNC path for home  = Enabled
         Network protocol to be used = smb
      Default user Shell             = /bin/bash
    Advanced Options - Mappings
      Mapping UID to attribute       = not set
      Mapping user GID to attribute  = not set
      Mapping group GID to attribute = not set
      Generate Kerberos authority    = Enabled
    Advanced Options - Administrative
      Preferred Domain controller    = not set
      Allowed admin groups           = not set
      Authentication from any domain = Enabled
      Packet signing                 = allow
      Packet encryption              = allow
      Password change interval       = 14
      Restrict Dynamic DNS updates   = not set
      Namespace mode                 = domain
    That looks correct. Lets collect a few more config items.
    Copy / paste the output of this command when run against c2s.xml:
    sudo grep '<id require-starttls="true" pemfile="' /Library/Server/Messages/Config/jabberd/c2s.xml
    Ours looks like this:
    <id require-starttls="true" pemfile="/etc/certificates/chat.example.com.1234567890.concat.pem" private-key-password="12345678-1234-1234-12345678" cachain="/etc/certificates/chat.example.com.1234567890.chain.pem" realm="example.com">example.com</id>
    Copy / paste the output of this command when run against sm.xml. To give us context, it will display the 6 lines above and below the text:
    sudo grep -C 6 'If not set, the SM id is used. -->' /Library/Server/Messages/Config/jabberd/sm.xml
    Ours looks like this:
    <!-- Local network configuration -->    <local>        <!-- Who we identify ourselves as.         Users will have this as the domain part of their JID.         If you want your server to be accessible from other         Jabber servers, this IDs must be FQDN resolvable by DNSes.         If not set, the SM id is used. -->        <id>example.com</id>        <!--    <id>vhost1.localdomain</id>    <id>vhost2.localdomain</id>    -->    </local>
    Copy / paste the output of this command:
    sudo serveradmin settings jabber
    Ours looks like this:
    jabber:dataLocation = "/Library/Server/Messages"jabber:s2sRestrictDomains = nojabber:jabberdDatabasePath = "/Library/Server/Messages/Data/sqlite/jabberd2.db"jabber:sslCAFile = "/etc/certificates/chat.example.com.1234567890.chain.pem"jabber:jabberdClientPortTLS = 5222jabber:sslKeyFile = "/etc/certificates/chat.example.com.1234567890.concat.pem"jabber:initialized = yesjabber:enableXMPP = nojabber:savedChatsArchiveInterval = 7jabber:authLevel = "STANDARD"jabber:hostsCommaDelimitedString = "example.com"jabber:jabberdClientPortSSL = 5223jabber:requireSecureS2S = nojabber:savedChatsLocation = "/Library/Server/Messages/Data/message_archives"jabber:enableSavedChats = nojabber:enableAutoBuddy = yesjabber:s2sAllowedDomains = _empty_arrayjabber:logLevel = "ALL"jabber:hosts:_array_index:0 = "example.com"jabber:eventLogArchiveInterval = 7jabber:jabberdS2SPort = 0
    Also, while you're troubleshooting, I found Adium's debug window to be invaluble for showing errors during logon (even if you plan to use Messages).
    You can open it in debug mode by holding option + click Adium.app, select "start in debug mode". Then in Adium menu > Debug window.

  • How can I authenticate a User In Windows Active Directory?

    I need to authenticate a user in Windows Active Directory, but I found use the code below will return true if the user name and password are both correct and false if one of them is wrong. But when I input a user name which is not exist in Active Driectory with a blank password, it will also return true. What shall I do? Ask every user must input a password withnot blank?
    Please give me some help to solve this problem. Thanks a lot.
    Code:
    private Context ctx = null;
    Hashtable env = new Hashtable ();
    boolean isValid = false;
    try {
    this.setEnvironmentProperties();
    String domainName = AuthenticateResources.getString("mydomain.com");
    //set the name of domain with the user name
    String fullName = name + "@" + domainName;
    env.put(Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory");
    env.put(Context.PROVIDER_URL,"ldap://mydomain:389");
    env.put(Context.SECURITY_AUTHENTICATION,"simple");
    //set user related information
    env.put(Context.SECURITY_PRINCIPAL, fullName);
    //set user password
    env.put(Context.SECURITY_CREDENTIALS, password);
    //validate user
    ctx = new InitialDirContext(env);
    isValid = true;
    }catch (AuthenticationException ex){
    isValid = false;
    catch (NamingException ex) {
    throw ex;
    }finally{
    this.freeContext();
    return isValid;

    This is usually a problem if Anonymous Binding is enabled. I have faced this in other Directory Servers, but I am not familiar with Active Directory.
    I think by default Active Directory disables Anonymous Binding, but you may want to check.

  • RADIUS Authentication for Guest users

    Hi,
    I currently use a 4402 WLC located in our DMZ to authenticate Guest users - local authentication is in place.  I would not like to setup RADIUS authentication via a Cisco NAC server.  In order not to affect current guest users, I created a new WLAN and configured with RADIUS server details under WLANs->Edit->Security.  I can associate to new WLAN and obtain a DHCP address no problem, but when I browse to an external website, I do not get prompted for authentication from the RADIUS server.  I don't see any auth requests hitting our firewal, so am assuming the problem is with the WLC config.
    Can anyone provide any details of what config is required?
    Security Policy - Web-Auth
    Security-> L2 - None
    Security-> L3 - Authentication
    Security-> AAA Servers - Auth and Acc server set
    Many thanks
    Liam

    your setup sounds pretty okay. have you got local user accounts set up on the WLC for the test WLAN? if you do, check to see that the priority order for web authentication for the test WLAN prefers the AAA account. you will have to do it directly on your controller as i do not think you have that option in WCS.
    hope that helps

  • Why must I set the AD as "default user store " when use Kerberos scheme ???

    Hi ,
    I am using kerberos scheme to authenticate user by OAM after user logged into the AD domain . It works well when there is only 1 AD domain ,for I can set that AD as the default identity store so that OAM can find user from the store and set the header .
    But when there are two totally different AD domains with different users , there will be a question. That is , I can only set one AD domain as the default identity store. So when I use the other AD domain to visit webgate protected resource, OAM notice me the the user/password error. But if the AD user exist in both AD domains, it will be OK, because the user mapping is finished correctly.
    logs here:
    [2011-07-26T22:19:18.599+08:00] [oam_server1] [ERROR] [OAMSSA-20040] [oracle.oam.user.identity.provider] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: cbefca7cded5e992:3fca7bfd:131657b3817:-8000-0000000000000c19,0] [APP: oam_server] Could not modify user attribute for user : sAMAccountName, attribute : smicer, value : {2} .
    [2011-07-26T22:19:18.600+08:00] [oam_server1] [ERROR] [] [oracle.oam.engine.authn] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: <anonymous>] [ecid: cbefca7cded5e992:3fca7bfd:131657b3817:-8000-0000000000000c19,0] [APP: oam_server] Failure getting users by attribute : sAMAccountName, value : smicer.[[
    oracle.security.am.engines.common.identity.provider.exceptions.IdentityProviderException: OAMSSA-20016: Failure getting users by attribute : sAMAccountName, value : smicer.
         at oracle.security.am.engines.common.identity.provider.impl.UserProviderImpl.getUsersByAttribute(UserProviderImpl.java:342)
         at oracle.security.am.engines.common.identity.provider.impl.IdentityProviderImpl.getUsersByAttribute(IdentityProviderImpl.java:656)
         at oracle.security.am.engines.common.identity.provider.impl.OracleUserIdentityProvider.getUsersByAttribute(OracleUserIdentityProvider.java:288)
         at oracle.security.am.engine.authn.internal.executor.KerberosModuleExecutor.execute(KerberosModuleExecutor.java:254)
         at oracle.security.am.engine.authn.internal.executor.AuthenticationSchemeExecutor.execute(AuthenticationSchemeExecutor.java:94)
         at oracle.security.am.engine.authn.internal.controller.AuthenticationEngineControllerImpl.validateUser(AuthenticationEngineControllerImpl.java:261)
         at oracle.security.am.engines.enginecontroller.AuthnEngineController.authenticateUser(AuthnEngineController.java:669)
         at oracle.security.am.engines.enginecontroller.AuthnEngineController.processEvent(AuthnEngineController.java:294)
         at oracle.security.am.controller.MasterController.processEvent(MasterController.java:354)
         at oracle.security.am.controller.MasterController.processRequest(MasterController.java:517)
         at oracle.security.am.controller.MasterController.process(MasterController.java:457)
         at oracle.security.am.pbl.PBLFlowManager.delegateToMasterController(PBLFlowManager.java:209)
         at oracle.security.am.pbl.PBLFlowManager.handleBaseEvent(PBLFlowManager.java:147)
         at oracle.security.am.pbl.PBLFlowManager.processRequest(PBLFlowManager.java:107)
         at oracle.security.am.pbl.transport.http.AMServlet.handleRequest(AMServlet.java:168)
         at oracle.security.am.pbl.transport.http.AMServlet.doPost(AMServlet.java:133)
         at oracle.security.am.pbl.transport.http.AMServlet.doGet(AMServlet.java:673)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:707)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
         at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
         at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
         at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:300)
         at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:183)
         at weblogic.servlet.internal.RequestDispatcherImpl.invokeServlet(RequestDispatcherImpl.java:523)
         at weblogic.servlet.internal.RequestDispatcherImpl.forward(RequestDispatcherImpl.java:253)
         at oracle.security.am.pbl.transport.http.CredCollectServlet.getCredentials(CredCollectServlet.java:148)
         at oracle.security.am.pbl.transport.http.CredCollectServlet.doPost(CredCollectServlet.java:84)
         at oracle.security.am.pbl.transport.http.CredCollectServlet.doGet(CredCollectServlet.java:71)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:707)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
         at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
         at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
         at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:300)
         at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
         at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
         at oracle.security.am.agent.wls.filters.OAMServletAuthenticationFilter.doFilter(OAMServletAuthenticationFilter.java:265)
         at oracle.security.am.agent.wls.filters.OAMValidationSystemFilter.doFilter(OAMValidationSystemFilter.java:133)
         at oracle.security.wls.oamagent.OAMAgentWrapperFilter.doFilter(OAMAgentWrapperFilter.java:120)
         at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
         at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:111)
         at java.security.AccessController.doPrivileged(Native Method)
         at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:313)
         at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUtil.java:413)
         at oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.java:94)
         at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:161)
         at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:71)
         at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
         at oracle.dms.servlet.DMSServletFilter.doFilter(DMSServletFilter.java:136)
         at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
         at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.wrapRun(WebAppServletContext.java:3715)
         at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3681)
         at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
         at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:120)
         at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2277)
         at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2183)
         at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1454)
         at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
         at weblogic.work.ExecuteThread.run(ExecuteThread.java:178)
    Caused by: oracle.security.idm.ObjectNotFoundException: No User found matching the criteria
         at oracle.security.idm.providers.stdldap.util.DirectSearchResponse.initSearch(DirectSearchResponse.java:174)
         at oracle.security.idm.providers.stdldap.util.NonPagedSearchResponse.<init>(NonPagedSearchResponse.java:52)
         at oracle.security.idm.providers.stdldap.util.NonPagedSearchResponse.<init>(NonPagedSearchResponse.java:43)
         at oracle.security.idm.providers.stdldap.util.LDAPRealm.searchUsers(LDAPRealm.java:489)
         at oracle.security.idm.providers.stdldap.LDIdentityStore.search(LDIdentityStore.java:274)
         at oracle.security.idm.providers.stdldap.LDIdentityStore.searchUsers(LDIdentityStore.java:367)
         at oracle.security.am.engines.common.identity.provider.impl.UserProviderImpl.getUsersByAttribute(UserProviderImpl.java:314)
         ... 57 more
    It seems OAM must set the AD as "default user store " , and only if so , AD domain users can login to webgate protected resources by kerberos .
    So, how can I make 2 AD available together ? Can you kindly give some advice? It will be very appreciated.
    Thanks !!

    1) Should my setup be defaulting to 32-bit compilersYes. On Solaris compilers generate 32-bit code by default
    2) I have read that adding -m64 to the compile command will make it 64-bit, is this accurate?It will make compiler produce 64-bit binaries.
    Compiler itself will stay 32-bit ;-)
    3) Is there a way to set the compilers to default to 64-bit so that the user doesn't have to specify -m64?No. At least no compiler-specific way. Only UNIX general tricks (shell alias, shell script etc)
    4) Does everyone just use -m64 and forget about it?Yep. They have no choice

  • Edit Default User Killed Leopard Default User folder completely disapeared

    I was trying to create a custom default user for network users to login to because I was learning how to set up a Mac for use as a campus public PC.
    We do not have a Mac server but do have a Novell server set as Open directory. I was the first to figure out how to LDAP authenticate users.
    The next step was to customize the default user template for network users to login into on the Mac. Then all went dead.
    I copied in settings from the root user to the default user location and repaired permissions on the hard drive. I was following proceedures I found online the best I could. These:
    http://discussions.apple.com/thread.jspa?threadID=2105869&tstart=0
    http://discussions.apple.com/thread.jspa?threadID=2056194&tstart=0
    It seemed to be going well then I went to go to system preferences and
    the OS slowed then froze and after a reset would not boot.
    It would go to the gray Null sign circle with a line through several times and would try to boot other partitions.
    A verbose boot said something about the Boot.efi being in some trashes folder.
    I booted from a USB back up of the OS and searched for the folder that holds the default user profile and it was not there at all.
    When trying to set a boot device it would no longer let me select the internal hard disk.
    Any ideas? I am reinstalling the OS but does anyone know what happened? Was this a Mac virus, a hack attack, does repairing permissions as the root user cause destruction? Are there system boot files in the default user profile location?

    Thanks for your reply those sound like good emergency aid procedures. I need to know more of those.
    I did a full reinstall and tried the same procedure but they system is running well this time. My goal of a custom user profile for network users though still does not work. For this issue I will search other threads or start a new one.
    Situation I can authenticate network users to LDAP on our Novell server. Our Novell server does not have mappings for Apple computers though so it is just basic authentication. I was able to script mapping of the appropriate volumes as a start up item in the doc.
    The problem is after they authenticate through LDAP at the login screen they all get dumped into the root users profile and they have root user powers. Even after I disabled the root user.
    I wanted them to use the custom default profile I made. I created a temp user called student customized it copied its profile to the default user profile location. If I create a new user in account preferences it uses that custom profile fine BUT network users always login as the / a root user.
    I could use that because we want to lock down the harddrive with deepfreeze. BUT the novell iPrint program required for users to print does not work at all in this crazy Fake Root user environment.

  • Leopard Default User Template

    Hi,
    I used to be able to create a customised default user template in Tiger by copying my customised account to the /System/Library/User\ Template/English.lproj folder.
    In leopard however new accounts are not getting the customised settings.
    My method is as follows:
    Create temp account
    Login to temp account and customise all my settings such as desktop image, icons, finder preferences, dock, program preferences, printers, etc.
    before logging out I delete the login keychain, references and files. Clear out the ~/Library/Caches folder.
    logout and into and admin account.
    Run terminal
    su - to enable root user
    copy the current default template to a backup area using..
    cp -R /System/Library/User\ Template/English.lproj/* /backup are path
    Then clear it out
    rm -R /System/Library/User\ Template/English.lproj/*
    Then copy the new one in
    cp -R /Users/Temp/* /System/Library/User\ Template/English.lproj
    All the files and folders copy over but when I login with a new account none of the customised settings are used.
    Any ideas on how to get this working?

    Situation I can authenticate network users to LDAP on our Novell server. Our Novell server does not have mappings for Apple computers though so it is just basic authentication. I was able to script mapping of the appropriate volumes as a start up item in the dock because some of our servers can connect as AFP servers.
    The problem is after they authenticate through LDAP at the login screen they all get dumped into the root users profile and they have root user powers. Even after I disabled the root user.
    I wanted them to use the custom default profile I made. I created a temp user called student customized it copied its profile to the default user profile location. With the instructions you posted above. If I create a new user in account preferences it uses that custom profile fine BUT network users always login as the / a root user.
    I could possibly use the root user because we want to lock down the harddrive with deepfreeze. BUT the Novell iPrint program required for users to print does not work at all in this crazy Fake Root user environment.
    What am I missing to get my Mac to use my custom profile.

  • I have created a user in oracle BPM but it is not reflected in system-jazn-data.xml file and I am unable to authenticate that user to create context as needed in workflow client

    I have created a user in oracle BPM but it is not reflected in system-jazn-data.xml file and I am unable to authenticate that user to create context as needed in workflow client

    weblogic credentials are different.
    and using thode credentials I am able to login to weblogic server
    the users I am talking about is the process users defined in realm.
    in realm those users are defined as Default authenticator and OID authenticator.
    and I am trying to authenticate one of those users defined in realm using java api so that I an access a process defined In Oracle BPM 11g

  • ACS cannot Authenticate Aironet Users against Exernal DB (LDAP)

    ACS cannot Authenticate Aironet Users against Exernal DB (LDAP)
    Can anyone point me to a technical explanation of why this is true?
    All I have found so far is one small note in a help file and something that might be related under EAP-FAST explanation.
    I have posed this question to our Cisco account team but no response yet.
    Just need to have a good explanation when explaining to mgmt why we need to have a special setup for WLAN users.

    Hmmm....you should be getting more than that from debug radius and debug aaa authen if your AP is truly attempting EAP authentication. The debugs I generally use for this are 'debug aaa authen', 'debug radius', and 'debug dot11 aaa dot1x all' coupled with gathering the detailed support logs from ACS. A warning about 'debug dot11 aaa dot1x all'....it is VERY verbose and cryptic if you don't have alot of experience looking at it so it may be best to open up a TAC case. With these debugs turned on, you should see an EAPOL logon show up from the client (usually says 'received EAPOL packet...') and then a request for identity from the switch and a response from the client with a username and password. Then a series of RADIUS challenge/response packets will be passed which consists of the server cert being passed to the client for validation and then the client sending the username and password to the server. Then you will finally get an access-reject or access-accept packet from the RADIUS server. The failed and passed attempts logs in ACS can also provide good info as to what the source of the failure may be. Do you get any passed or failed attempts for these authentications?

  • Authenticate windows users via ACS

    Hi,
    Expert insight required for Cisco ACS, Is it possible to authentication windows user via ACS & apply ACL policies over network devices.
    I would appreciate valued inputs.
    Regards,

    Yes, it's possible to authenticate windows users via ACS and push DACL via radius.
    Seems you are looking for DACL. Here is a document that can help you to understand the same
    http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080a9eddc.shtml#user
    Let me know if you need any further help.
    Jatin Katyal
    - Do rate helpful posts -

  • ACS 4.2 failure to authenticate windows users

    Hi all , we have a bit of a problem which we cannot seem to resolve.
    The ACS can authenticate people using local database , it can also authenticate a single user (using windows database) if you are fast after the service is restarted , however after a few secounds, it fails to authenticate any users , the error we are seeing on the logs appear as authentication failure type : internal error. Also on the log files, the authentication request from the user does not appear in the correct group, it is thrown into the default group.
    Any ideas on where we should look to the problem?

    Hi,
    Its running on windows 2003 server, is running as the system account.
    Auth.log details below on a failed authentication
    AUTH 04/09/2009 17:02:13 A 5789 3000 0x69 Worker 0 waiting for work
    AUTH 04/09/2009 17:02:13 A 5789 1400 0x6 Worker 3 waiting for work
    AUTH 04/09/2009 17:02:13 A 5789 0368 0x4 Worker 1 waiting for work
    AUTH 04/09/2009 17:02:23 E 6028 3888 0x0 AllocateThread returned 0
    AUTH 04/09/2009 17:02:23 A 5821 3000 0x69 Worker 0 established conn 166 with 127.0.0.1:1879
    AUTH 04/09/2009 17:02:23 E 6028 3888 0x0 AllocateThread returned 1
    AUTH 04/09/2009 17:02:23 A 5821 0368 0x4 Worker 1 established conn 167 with 127.0.0.1:1881
    AUTH 04/09/2009 17:02:23 E 6028 3888 0x0 AllocateThread returned 3
    AUTH 04/09/2009 17:02:23 A 5821 1400 0x6 Worker 3 established conn 168 with 127.0.0.1:1883
    AUTH 04/09/2009 17:02:24 A 5853 0236 0x51 Worker 4 error/timeout, forcing API disconnect of connection 165.
    AUTH 04/09/2009 17:02:24 A 5887 0236 0x51 Worker 4 closing conn 165 endpoint. Handled 2 messages.
    AUTH 04/09/2009 17:02:24 A 5789 0236 0x51 Worker 4 waiting for work
    AUTH 04/09/2009 17:02:30 E 2100 4080 0x6d External DB [NTAuthenDLL.dll]: Windows authentication FAILED (error 1783L)

  • Why have a default user password feauture?

    Hi,
      I (understood) read in the manual that there could be a default user password -
    28 BF 4E 5E 4E 75 8A 41 64 00 4E 56 FF FA 01 08
    2E 2E 00 B6 D0 68 3E 80 2F 0C A9 FE 64 53 69 7A.
    If the file is encrypted based one this key, readers can open the file without having to prompt for password though the file is encrypted. I want to know whats the point of this? It provides no security. All it ensures is the reader be sophisticated enough to have a security handler. I don't see the point. Is there any advantage of having such a pdf with default user password?.What was the motivation behind this?
    Thanks

    The Standard Security method of PDF supports TWO passwords - the user/open password and the owner/permissions password.  In addition, an encrypted PDF can have a set of rights (DRM) associated with it (eg. Don't print, don't copy, etc.)
    If you wish to control WHO can open the PDF, then you assign a user/open password.  If you wish to allow ANYONE to open the PDF, then you leave it as the default.
    Once the PDF is open (regardless of the open password), then the reader is responsible for respecting the DRM settings on the document.  However, if you are the owner of the PDF (and there is a permissions password), then you can get back FULL permissions by simply providing the owner password.
    Make sense now?

  • How to Change Default User Directory without changing System Directory

    Hi Everyone,
    I need to change default User Directory for my JDeveloper 11.1.1.0.2.
    Default User Directory = C:/JDeveloper/mywork
    Default System Directory = *<JDEV_HOME>/System*
    Now I Need to Change it to
    My Default User Directory = C:/Monty/JDev11g2/
    But System's Default Dir = *<JDEV_HOME>/System*(Same)
    For this i explicitly Set variable ide.user.dir to C:/Monty/JDev11g2/ in JDev.boot file as explained in Installation document.
    Working fine but it contains System Folder too. I don't want this.
    Any Help to find me separate these both as it works for Single User.
    Thanks,
    Fizzz...

    Hi John, You must be right if i'd believe in ghost, A Ghost of System's Folder :-). Well that's true, We should ignore it. But still If someone finds any Clue then let me know.
    Thanks
    Fizzz...

  • Help- After upgrading to Mountain Lion 10.8.4 all of my default user pictures are missing

    Hello,
    After ugrading to Mountain LIon 10.8.4 on my 2010 1.4 GHz Macbook air and now all of my default user pictures are missing.
    I found a similar situation on the net in which the guy says to do this: "logged in as root and trashed the old user icon images file the copied the folder froma ML factory disk image".  I have no idea what any of that means or if is for real as an answer or just a way to screw up my computer even more. I need help, and really basic simple instructions like your talking to some one who barely know how to turn on a computer.  I would be really grateful to anyone who will help me. Thank you for your time.

    I found a simple solution that worked on my Macbook Air running 10.8.4 which was missing all the User pictures when I tried to access them as the computer administrator even through they wer all there in the User Pictures folder in the Library.
    I went into the Library Folder and trashed the "User Pictures" Folder.
    I then copied the User Pictures folder from my Macbook Pro (also running 10.8.4) that did not have this issue and installed in on the Macbook Air in place of the User Pictures folder I had trashed.    Then it all worked fine.

  • How do you change the default User in Windows 7 on a non-RAIDed 4 disk setup?

    Hi.
    I have installed Windows 7 Ultimate 64bit on Darling my new machine, which has a four-disk setup without RAID, like this:
    SSD OCZ -OS, Programs (C:)
    WD 2002FEAX - Media Projects (D:)
    WD 1002FAEX - Pagefile, Media Cache (E:)
    WD 1002FAEX - Previews, Exports (F:)
    This setup, and because it’s unRAIDed (four separate disks), created the User file in the OS disk, right under the Programs (x86) folder, which at times causes files, which are not programs, to automatically be saved in the User file that's in the Programs disk, when in fact Programs disk is NOT meant for storage.
    Further, I cannot save stuff in My Documents because that directory leads the files (that I am saving) to the User folder in the OS disk, forcing me to navigate out of there and into an alternative disk, which is time consuming, more so than if i had a directory leading to D disk.
    So, I am wondering, can anyone help me change my directory to establish the default User folder in any folder other than C?
    Or, if can someone refer me to Windows 7 tutorials, resourses, that are a tad more than Dummy level.
    I have heard that changing around the directory as such can mess with the OS, and though not at Dummy level, I’m quite new to PC and profusely insecure about making changes to Darling at all.
    Thanks.

    Hi folks.
    I would like to update you about what happened regarding my wish to move the User location to another hard disk. Heeding your warning, i did NOT attempt that, but rather, moved the location of the My Documents folder in my Library, from its default place on (SSD) disk C:/ (which is the default location because that's where i installed Windows 7,) to another disk -  D:/ called "Media Projects".
    Here is how my directory looked before i made the change, my three hard disks were outside the Library directory that's on my SSD (Programs disk):
    (I did that by right-clicking the My Documents folder in the left column of a browser window, to access the Location tab.)
    What this did is, it put driver D:/ under Documents, which is under Library, see picture, which now enables saving documents quickly, by going from my Library directly to my D drive, however it eliminated the "My Documents" folder/possibility all together from the left-column list of folders in the Windows Explorer browser pane.
    I am now trying to do the same with Music, Pictures, and Videos, i.e. to move them to D drive, but am unable to do so because right-clicking those icons in the directory does not produce the Location tab in Properties panel, and nor does right-clicking inside the files themselves.
    Similarly, right-clicking Downloads, which i also want to have residing in my D drive, does NOT produce a Location tab in properties pane, though it does seem possible to change the directory manually...see picture.....but am wary....
    I am still monitoring my new system, and will see if and how this change effects my system's performance.
    Thanks.

Maybe you are looking for

  • How do I add my work email to thunderbird?

    I'm trying to add my work email to Thunderbird, but every time I try to connect the email account to Thunderbird it says "cannot configure, are you sure you're using the right username/password." I know I am because I use the same information to log

  • Usb speakers dont work after installing windows 8.1

    speakers not working and not getting recognized. Make: Bose . Normal jack input works pls help

  • How to use "subscribe to photo feed" in iPhoto?

    Apple really created some headaches when they dumped Gallery before Photo Stream Sharing was ready. So I have been looking for a substitute. I see under iPhoto's File menu a feature called "Subscribe to Photo Feed".  But I can't find anything about h

  • Nokia E5 wireless connectivity is plain bad

    I have compared wifi connectivity of Nokia E5 with other P*d brand on our corporate wifi network. Both phones were on my desk  next to each other so wifi signal and interference was the same for both. Result: Nokia E5, packet loss 30% Packet sent wit

  • Why Mac Pro's 1,1 from 2007 can't run Mountain Lion?

    I understand that they can't run, but nobody is able to explain why. I can't just through my Mac Pro in garbage because I can't upgrade. Why do I have to upgrade? Well, Sibelius 7 works only in Mountain Lion, and soon, many other software will. What