11g TP3 / ADF BC / Support for database type in column

Similar Messages

• Dose ODI 11g 32bit software will support for windose7 OS??

  Dear All,
  for window7 OS which ODI 11g version of software need to be installed?? ODI 32bit or ODI 64 bit???
  dose ODI 11g 32bit software will support for windose7 OS??
  I hope that windose7 it is 64bit OS.
  Please suggest me
  Thanks in advance
  zakeer

  Dear Dev..
  Thanks for your Information...
  but along with ODI 11g i need to install OBIEE 11g and Oracle 11g Database also. dose this softwares will work fine...
  i hope that windos7 is server based OS?
  Please clarify me
  Thanks in advance
  Zakeer

• ADF 10g support for Internet Explorer 8

  hi
  Working with Oracle support (in SR 7732252.994) we first reached this conclusion ...
  "Microsoft Internet Explorer 8 is not a supported for the ADF Faces applications built using JDeveloper 10.1.3.5.0"
  When I subsequently asked ...
  "Will there be a JDeveloper 10g release (post 10.1.3.5.0) that will support IE8 ?"
  ... the answer was ...
  "Jdeveloper 10.1.3.5 is the last release in the Jdeveloper 10g branch and there will be no more releases after 10.1.3.5.
  Therefore, there will be no support for IE 8 in the Jdeveloper 10g branch."
  question
  (q1)What is supposed to happen to ADF 10g production applications deployed in an environment that allows little control over the browser that is used (extranet/internet)?
  many thanks
  Jan Vervecken

  Thanks for your reply Shay.
  We plan to officially support IE8 with the next patch release to JDeveloper 11g - currently planned for later this year.That matches what I wrote in my initial post in this forum thread about IE8 support.
  We usually only certify browsers after they officially go production.That does not really answer my question (q1) in this forum thread.
  It is more like, how can I assess that Oracle will support any successor(s) of IE8 or successor(s) of any currently supported browsers for ADF 11g applications in the future? How long will Oracle support "commonly used browsers" for an ADF 11g application I build today, so how long will I be able to use that application?
  How do I answer such questions for ADF 11g applications that should be deployed on the internet (where, as some extranet environments, you typically have not that much (or no) control over which browsers your users use ... although some would like to argue with that, see forum thread "ADF Faces RC browser support and browser market share")?
  (By the way, do you have any feedback for the forum thread "ADF 10g support for Internet Explorer 8"?)
  regards
  Jan

• KDC has no support for encryption type (14)

  I have come across a posting on "KDC has no support for encryption type (14)" - " http://www.webservertalk.com/message1277232.html"
  and believe that I am hitting the same problem. However, there is no solution. Can anybody help?
  I have done all the necessary steps suggested, including changing the registry and removing the unwanted SPN, but the error still there. The only different is probably I combined WebLogic and AD in one machine. But, does that make any difference?
  Client
  ====
  Name: ssoclient.ssow2k.com
  OS: Win XP SP2
  Server
  =====
  Name: ssow2kserver.ssow2k.com
  OS: Windows 2000 Advanced Server SP4
  WLS: BEA WebLogic 8.1.4
  <<Registry>>
  HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa\Kerberos\Parameters
  Value Name: allowtgtsessionkey
  Value Type: REG_DWORD
  Value: 0x01
  The following is the WebLogic myserver log for your reference:
  ========================================================================================
  ####<Apr 6, 2006 2:55:20 PM GMT+08:00> <Debug> <SecurityDebug> <ssow2kserver> <myserver> <main> <<WLS Kernel>> <> <000000> <Default Authorization deployPolicy(): Resource: type=<url>, application=console, contextPath=/console, uri=/*>
  ####<Apr 6, 2006 2:55:20 PM GMT+08:00> <Debug> <SecurityDebug> <ssow2kserver> <myserver> <main> <<WLS Kernel>> <> <000000> <Default Authorization deployPolicy(): Role:>
  ####<Apr 6, 2006 2:55:20 PM GMT+08:00> <Debug> <SecurityDebug> <ssow2kserver> <myserver> <main> <<WLS Kernel>> <> <000000> < roleName: Admin>
  ####<Apr 6, 2006 2:55:20 PM GMT+08:00> <Debug> <SecurityDebug> <ssow2kserver> <myserver> <main> <<WLS Kernel>> <> <000000> < roleName: Operator>
  ####<Apr 6, 2006 2:55:20 PM GMT+08:00> <Debug> <SecurityDebug> <ssow2kserver> <myserver> <main> <<WLS Kernel>> <> <000000> < roleName: Deployer>
  ####<Apr 6, 2006 2:55:20 PM GMT+08:00> <Debug> <SecurityDebug> <ssow2kserver> <myserver> <main> <<WLS Kernel>> <> <000000> < roleName: Monitor>
  ####<Apr 6, 2006 2:55:20 PM GMT+08:00> <Debug> <SecurityDebug> <ssow2kserver> <myserver> <main> <<WLS Kernel>> <> <000000> <Default Authorization deployPolicy(): Built role expression of {Rol(Admin,Operator,Deployer,Monitor)}>
  ####<Apr 6, 2006 2:55:20 PM GMT+08:00> <Debug> <SecurityDebug> <ssow2kserver> <myserver> <main> <<WLS Kernel>> <> <000000> <Default Authorization deployPolicy(): policy {Rol(Admin,Operator,Deployer,Monitor)} successfully deployed for resource type=<url>, application=console, contextPath=/console, uri=/*>
  ####<Apr 6, 2006 2:55:22 PM GMT+08:00> <Debug> <SecurityDebug> <ssow2kserver> <myserver> <main> <<WLS Kernel>> <> <000000> <Default Authorization deployPolicy(): Resource: type=<url>, application=mySampleWebApp, contextPath=/mysamplewebapp, uri=/*, httpMethod=GET>
  ####<Apr 6, 2006 2:55:22 PM GMT+08:00> <Debug> <SecurityDebug> <ssow2kserver> <myserver> <main> <<WLS Kernel>> <> <000000> <Default Authorization deployPolicy(): Role:>
  ####<Apr 6, 2006 2:55:22 PM GMT+08:00> <Debug> <SecurityDebug> <ssow2kserver> <myserver> <main> <<WLS Kernel>> <> <000000> < roleName: DCMS_ROLE>
  ####<Apr 6, 2006 2:55:22 PM GMT+08:00> <Debug> <SecurityDebug> <ssow2kserver> <myserver> <main> <<WLS Kernel>> <> <000000> <Default Authorization deployPolicy(): Built role expression of {Rol(DCMS_ROLE)}>
  ####<Apr 6, 2006 2:55:22 PM GMT+08:00> <Debug> <SecurityDebug> <ssow2kserver> <myserver> <main> <<WLS Kernel>> <> <000000> <Default Authorization deployPolicy(): policy {Rol(DCMS_ROLE)} successfully deployed for resource type=<url>, application=mySampleWebApp, contextPath=/mysamplewebapp, uri=/*, httpMethod=GET>
  ####<Apr 6, 2006 2:55:22 PM GMT+08:00> <Debug> <SecurityDebug> <ssow2kserver> <myserver> <main> <<WLS Kernel>> <> <000000> <Default Authorization deployPolicy(): Resource: type=<url>, application=mySampleWebApp, contextPath=/mysamplewebapp, uri=/*, httpMethod=POST>
  ####<Apr 6, 2006 2:55:22 PM GMT+08:00> <Debug> <SecurityDebug> <ssow2kserver> <myserver> <main> <<WLS Kernel>> <> <000000> <Default Authorization deployPolicy(): Role:>
  ####<Apr 6, 2006 2:55:22 PM GMT+08:00> <Debug> <SecurityDebug> <ssow2kserver> <myserver> <main> <<WLS Kernel>> <> <000000> < roleName: DCMS_ROLE>
  ####<Apr 6, 2006 2:55:22 PM GMT+08:00> <Debug> <SecurityDebug> <ssow2kserver> <myserver> <main> <<WLS Kernel>> <> <000000> <Default Authorization deployPolicy(): Built role expression of {Rol(DCMS_ROLE)}>
  ####<Apr 6, 2006 2:55:22 PM GMT+08:00> <Debug> <SecurityDebug> <ssow2kserver> <myserver> <main> <<WLS Kernel>> <> <000000> <Default Authorization deployPolicy(): policy {Rol(DCMS_ROLE)} successfully deployed for resource type=<url>, application=mySampleWebApp, contextPath=/mysamplewebapp, uri=/*, httpMethod=POST>
  ####<Apr 6, 2006 3:02:07 PM GMT+08:00> <Debug> <SecurityDebug> <ssow2kserver> <myserver> <ExecuteThread: '14' for queue: 'weblogic.kernel.Default'> <<WLS Kernel>> <> <000000> < PrincipalAuthenticator.assertIdentity - Token Type: Authorization>
  ####<Apr 6, 2006 3:02:07 PM GMT+08:00> <Debug> <SecurityDebug> <ssow2kserver> <myserver> <ExecuteThread: '14' for queue: ' weblogic.kernel.Default'> <<WLS Kernel>> <> <000000> <Found Negotiate with SPNEGO token>
  ####<Apr 6, 2006 3:02:08 PM GMT+08:00> <Debug> <SecurityDebug> <ssow2kserver> <myserver> <ExecuteThread: '14' for queue: ' weblogic.kernel.Default'> <<WLS Kernel>> <> <000000> <GSS exception GSSException: Failure unspecified at GSS-API level (Mechanism level: KDC has no support for encryption type (14))
  GSSException: Failure unspecified at GSS-API level (Mechanism level: KDC has no support for encryption type (14))
  at sun.security.jgss.krb5.Krb5Context.acceptSecContext(Krb5Context.java:734)
  at sun.security.jgss.GSSContextImpl.acceptSecContext(GSSContextImpl.java:300)
  at sun.security.jgss.GSSContextImpl.acceptSecContext (GSSContextImpl.java:246)
  at weblogic.security.providers.utils.SPNEGONegotiateToken.getUsername(SPNEGONegotiateToken.java:371)
  at weblogic.security.providers.authentication.SinglePassNegotiateIdentityAsserterProviderImpl.assertIdentity (SinglePassNegotiateIdentityAsserterProviderImpl.java:201)
  at weblogic.security.service.PrincipalAuthenticator.assertIdentity(PrincipalAuthenticator.java:553)
  at weblogic.servlet.security.internal.CertSecurityModule.checkUserPerm (CertSecurityModule.java:104)
  at weblogic.servlet.security.internal.SecurityModule.beginCheck(SecurityModule.java:199)
  at weblogic.servlet.security.internal.CertSecurityModule.checkA(CertSecurityModule.java:86)
  at weblogic.servlet.security.internal.ServletSecurityManager.checkAccess(ServletSecurityManager.java:145)
  at weblogic.servlet.internal.WebAppServletContext.invokeServlet(WebAppServletContext.java:3685)
  at weblogic.servlet.internal.ServletRequestImpl.execute(ServletRequestImpl.java:2644)
  at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:219)
  at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:178)
  >
  ####<Apr 6, 2006 3:02:08 PM GMT+08:00> <Debug> <SecurityDebug> <ssow2kserver> <myserver> <ExecuteThread: '14' for queue: 'weblogic.kernel.Default'> <<WLS Kernel>> <> <000000> <Exception weblogic.security.providers.utils.NegotiateTokenException: GSSException: Failure unspecified at GSS-API level (Mechanism level: KDC has no support for encryption type (14))
  weblogic.security.providers.utils.NegotiateTokenException : GSSException: Failure unspecified at GSS-API level (Mechanism level: KDC has no support for encryption type (14))
  at weblogic.security.providers.utils.SPNEGONegotiateToken.getUsername(SPNEGONegotiateToken.java:419)
  at weblogic.security.providers.authentication.SinglePassNegotiateIdentityAsserterProviderImpl.assertIdentity(SinglePassNegotiateIdentityAsserterProviderImpl.java:201)
  at weblogic.security.service.PrincipalAuthenticator.assertIdentity (PrincipalAuthenticator.java:553)
  at weblogic.servlet.security.internal.CertSecurityModule.checkUserPerm(CertSecurityModule.java:104)
  at weblogic.servlet.security.internal.SecurityModule.beginCheck(SecurityModule.java :199)
  at weblogic.servlet.security.internal.CertSecurityModule.checkA(CertSecurityModule.java:86)
  at weblogic.servlet.security.internal.ServletSecurityManager.checkAccess(ServletSecurityManager.java:145)
  at weblogic.servlet.internal.WebAppServletContext.invokeServlet(WebAppServletContext.java:3685)
  at weblogic.servlet.internal.ServletRequestImpl.execute(ServletRequestImpl.java:2644)
  at weblogic.kernel.ExecuteThread.execute (ExecuteThread.java:219)
  at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:178)
  >
  ========================================================================================
  The following are some krb5 packets captured. I suspected it is due to the encryption type used - RC4-HMAC:
  ========================================================================================
  KRB5 (AS-REQ)
  ============
  No. Time Source Destination Protocol Info
  125 10.301166 10.122.1.2 10.122.1.200 KRB5 AS-REQ
  Frame 125 (345 bytes on wire, 345 bytes captured)
  Arrival Time: Apr 6, 2006 13:49:54.848903000
  Time delta from previous packet: 0.008330000 seconds
  Time since reference or first frame: 10.301166000 seconds
  Frame Number: 125
  Packet Length: 345 bytes
  Capture Length: 345 bytes
  Protocols in frame: eth:ip:udp:kerberos
  Ethernet II, Src: 10.122.1.2 (00:0c:29:17:9a:be), Dst: Vmware_59:2c:e6 (00:0c:29:59:2c:e6)
  Destination: Vmware_59:2c:e6 (00:0c:29:59:2c:e6)
  Source: 10.122.1.2 (00:0c:29:17:9a:be)
  Type: IP (0x0800)
  Internet Protocol, Src: 10.122.1.2 (10.122.1.2), Dst: 10.122.1.200 (10.122.1.200)
  Version: 4
  Header length: 20 bytes
  Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00)
  0000 00.. = Differentiated Services Codepoint: Default (0x00)
  .... ..0. = ECN-Capable Transport (ECT): 0
  .... ...0 = ECN-CE: 0
  Total Length: 331
  Identification: 0x0158 (344)
  Flags: 0x00
  0... = Reserved bit: Not set
  .0.. = Don't fragment: Not set
  ..0. = More fragments: Not set
  Fragment offset: 0
  Time to live: 128
  Protocol: UDP (0x11)
  Header checksum: 0x208d [correct]
  Source: 10.122.1.2 (10.122.1.2 )
  Destination: 10.122.1.200 (10.122.1.200)
  User Datagram Protocol, Src Port: 1075 (1075), Dst Port: kerberos (88)
  Source port: 1075 (1075)
  Destination port: kerberos (88)
  Length: 311
  Checksum: 0x1133 [correct]
  Kerberos AS-REQ
  Pvno: 5
  MSG Type: AS-REQ (10)
  padata: PA-ENC-TIMESTAMP PA-PAC-REQUEST
  Type: PA-ENC-TIMESTAMP (2)
  Type: PA-PAC-REQUEST (128)
  KDC_REQ_BODY
  Padding: 0
  KDCOptions: 40810010 (Forwardable, Renewable, Canonicalize, Renewable OK)
  Client Name (Principal): ssouser
  Realm: SSOW2K.COM
  Server Name (Service and Instance): krbtgt/SSOW2K.COM
  till: 2037-09-13 02:48:05 (Z)
  rtime: 2037-09-13 02:48:05 (Z)
  Nonce: 1870983219
  Encryption Types: rc4-hmac rc4-hmac-old rc4-md4 des-cbc-md5 des-cbc-crc rc4-hmac-exp rc4-hmac-old-exp
  Encryption type: rc4-hmac (23)
  Encryption type: rc4-hmac-old (-133)
  Encryption type: rc4-md4 (-128)
  Encryption type: des-cbc-md5 (3)
  Encryption type: des-cbc-crc (1)
  Encryption type: rc4-hmac-exp (24)
  Encryption type: rc4-hmac-old-exp (-135)
  HostAddresses: SSOCLIENT<20>
  KRB5 (AS-REP)
  ============
  No. Time Source Destination Protocol Info
  126 10.303156 10.122.1.200 10.122.1.2 KRB5 AS-REP
  Frame 126 (1324 bytes on wire, 1324 bytes captured)
  Arrival Time: Apr 6, 2006 13:49:54.850893000
  Time delta from previous packet: 0.001990000 seconds
  Time since reference or first frame: 10.303156000 seconds
  Frame Number: 126
  Packet Length: 1324 bytes
  Capture Length: 1324 bytes
  Protocols in frame: eth:ip:udp:kerberos
  Ethernet II, Src: Vmware_59:2c:e6 (00:0c:29:59:2c:e6), Dst: 10.122.1.2 (00:0c:29:17:9a:be)
  Destination: 10.122.1.2 (00:0c:29:17:9a:be)
  Source: Vmware_59:2c:e6 (00:0c:29:59:2c:e6)
  Type: IP (0x0800)
  Internet Protocol, Src: 10.122.1.200 (10.122.1.200), Dst: 10.122.1.2 (10.122.1.2)
  Version: 4
  Header length: 20 bytes
  Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00)
  0000 00.. = Differentiated Services Codepoint: Default (0x00)
  .... ..0. = ECN-Capable Transport (ECT): 0
  .... ...0 = ECN-CE: 0
  Total Length: 1310
  Identification: 0x0a0f (2575)
  Flags: 0x00
  0... = Reserved bit: Not set
  .0.. = Don't fragment: Not set
  ..0. = More fragments: Not set
  Fragment offset: 0
  Time to live: 128
  Protocol: UDP (0x11)
  Header checksum: 0x1403 [correct]
  Source: 10.122.1.200 (10.122.1.200)
  Destination: 10.122.1.2 (10.122.1.2)
  User Datagram Protocol, Src Port: kerberos (88), Dst Port: 1075 (1075)
  Source port: kerberos (88)
  Destination port: 1075 (1075)
  Length: 1290
  Checksum: 0xb637 [correct]
  Kerberos AS-REP
  Pvno: 5
  MSG Type: AS-REP (11)
  Client Realm: SSOW2K.COM
  Client Name (Principal): ssouser
  Ticket
  enc-part rc4-hmac
  Encryption type: rc4-hmac (23)
  Kvno: 1
  enc-part: E3610239EACDD0E6D4E89AA7D81A355F6C93B95D95B13B56...
  KRB5 (TGS-REQ)
  ============
  No. Time Source Destination Protocol Info
  127 10.309350 10.122.1.2 10.122.1.200 KRB5 TGS-REQ
  Frame 127 (1307 bytes on wire, 1307 bytes captured)
  Arrival Time: Apr 6, 2006 13:49:54.857087000
  Time delta from previous packet: 0.006194000 seconds
  Time since reference or first frame: 10.309350000 seconds
  Frame Number: 127
  Packet Length: 1307 bytes
  Capture Length: 1307 bytes
  Protocols in frame: eth:ip:udp:kerberos
  Ethernet II, Src: 10.122.1.2 (00:0c:29:17:9a:be), Dst: Vmware_59:2c:e6 (00:0c:29:59:2c:e6)
  Destination: Vmware_59:2c:e6 (00:0c:29:59:2c:e6)
  Source: 10.122.1.2 (00:0c:29:17:9a:be)
  Type: IP (0x0800)
  Internet Protocol, Src: 10.122.1.2 (10.122.1.2), Dst: 10.122.1.200 (10.122.1.200)
  Version: 4
  Header length: 20 bytes
  Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00)
  0000 00.. = Differentiated Services Codepoint: Default (0x00)
  .... ..0. = ECN-Capable Transport (ECT): 0
  .... ...0 = ECN-CE: 0
  Total Length: 1293
  Identification: 0x0159 (345)
  Flags: 0x00
  0... = Reserved bit: Not set
  .0.. = Don't fragment: Not set
  ..0. = More fragments: Not set
  Fragment offset: 0
  Time to live: 128
  Protocol: UDP (0x11)
  Header checksum: 0x1cca [correct]
  Source: 10.122.1.2 (10.122.1.2)
  Destination: 10.122.1.200 ( 10.122.1.200)
  User Datagram Protocol, Src Port: 1076 (1076), Dst Port: kerberos (88)
  Source port: 1076 (1076)
  Destination port: kerberos (88)
  Length: 1273
  Checksum: 0xd085 [correct]
  Kerberos TGS-REQ
  Pvno: 5
  MSG Type: TGS-REQ (12)
  padata: PA-TGS-REQ
  Type: PA-TGS-REQ (1)
  KDC_REQ_BODY
  Padding: 0
  KDCOptions: 40800000 (Forwardable, Renewable)
  Realm: SSOW2K.COM
  Server Name (Service and Instance): HTTP/ssow2kserver.ssow2k.com
  till: 2037-09-13 02:48:05 (Z)
  Nonce: 1871140380
  Encryption Types: rc4-hmac rc4-hmac-old rc4-md4 des-cbc-md5 des-cbc-crc rc4-hmac-exp rc4-hmac-old-exp
  Encryption type: rc4-hmac (23)
  Encryption type: rc4-hmac-old (-133)
  Encryption type: rc4-md4 (-128)
  Encryption type: des-cbc-md5 (3)
  Encryption type: des-cbc-crc (1)
  Encryption type: rc4-hmac-exp (24)
  Encryption type: rc4-hmac-old-exp (-135)
  KRB5 (TGS-REP)
  ============
  No. Time Source Destination Protocol Info
  128 10.310791 10.122.1.200 10.122.1.2 KRB5 TGS-REP
  Frame 128 (1290 bytes on wire, 1290 bytes captured)
  Arrival Time: Apr 6, 2006 13:49:54.858528000
  Time delta from previous packet: 0.001441000 seconds
  Time since reference or first frame: 10.310791000 seconds
  Frame Number: 128
  Packet Length: 1290 bytes
  Capture Length: 1290 bytes
  Protocols in frame: eth:ip:udp:kerberos
  Ethernet II, Src: Vmware_59:2c:e6 (00:0c:29:59:2c:e6), Dst: 10.122.1.2 (00:0c:29:17:9a:be)
  Destination: 10.122.1.2 (00:0c:29:17:9a:be)
  Source: Vmware_59:2c:e6 (00:0c:29:59:2c:e6)
  Type: IP (0x0800)
  Internet Protocol, Src: 10.122.1.200 (10.122.1.200), Dst: 10.122.1.2 (10.122.1.2)
  Version: 4
  Header length: 20 bytes
  Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00)
  0000 00.. = Differentiated Services Codepoint: Default (0x00)
  .... ..0. = ECN-Capable Transport (ECT): 0
  .... ...0 = ECN-CE: 0
  Total Length: 1276
  Identification: 0x0a10 (2576)
  Flags: 0x00
  0... = Reserved bit: Not set
  .0.. = Don't fragment: Not set
  ..0. = More fragments: Not set
  Fragment offset: 0
  Time to live: 128
  Protocol: UDP (0x11)
  Header checksum: 0x1424 [correct]
  Source: 10.122.1.200 (10.122.1.200)
  Destination: 10.122.1.2 (10.122.1.2)
  User Datagram Protocol, Src Port: kerberos (88), Dst Port: 1076 (1076)
  Source port: kerberos (88)
  Destination port: 1076 (1076)
  Length: 1256
  Checksum: 0x1318 [correct]
  Kerberos TGS-REP
  Pvno: 5
  MSG Type: TGS-REP (13)
  Client Realm: SSOW2K.COM
  Client Name (Principal): ssouser
  Ticket
  enc-part rc4-hmac
  Encryption type: rc4-hmac (23)
  Kvno: 1
  enc-part: 4D2A9E8590CC716EA6571B093B6FAF89537B0B89F832C073...
  ========================================================================================
  Can anybody enlighten me on how you solve this problem? Thanks.

  I ran into this error and caught the error code to remind me to edit the registry.
  if (sError.contains("KDC has no support for encryption type (14)")){
                      JOptionPane.showMessageDialog(null,"Error " + ThisErrorCode.myErrorCode() + '\n' +
                      " http://support.microsoft.com/default.aspx?scid=kb;en-us;308339" + '\n' + '\n' +
                      "There is a known issue involving Windows clients running Windows 2000 SP4, XP SP2." + '\n' +
                      "To avoid the error, administrators need to update the Windows registry." + '\n' +
                      "The registry key, allowtgtsessionkey, should be added, and its value set correctly" + '\n' +
                      "to allow session keys to be sent in the Kerberos Ticket-Granting Ticket." + '\n' + '\n' +
                      "Windows XP SP2, add the registry entry:" + '\n' +
                      "HKEY_LOCAL_MACHINE\\System\\CurrentControlSet\\Control\\Lsa\\Kerberos\\" + '\n' +
                      "Value Name: allowtgtsessionkey" + '\n' +
                      "Value Type: REG_DWORD" + '\n' +
                      "Value: 0x01" ,null, JOptionPane.ERROR_MESSAGE);
                      System.exit(-1);

• No default driver for database type: jdbc:weblogic:jts problem

            Here is what we are trying to do. We have two Weblogic servers running on 2 different
            machines. Lets call them A and B. A has 2 beans lets call them Abean1, Abean2.
            and B has one bean called Bbean1. Now Abean1 has to contact Bbean1 which in turn
            has to contact Abean2 (dont ask why :) . We are running into transcation issues
            namely ' No default driver for database type: jdbc:weblogic:jts'. Abean1 has Container
            transaction and Bbean1 has Bean managed transaction. We set Abean2 methods transaction
            attribute to NotSupported. However no luck. Has anyone come across this kind of
            situation? Any clues as to what might be going on? Abean1 can contact Bbean1 successfully
            ie if we dont force Bbean1 to contact Abean2. However when Bbean1 tries to contact
            Abean2 thats when the fun starts.
            thanks
            

  Report to [email protected] It could be related to some JTS driver bugs that
            have been / are being fixed recently.
            Regards,
            Priscilla
            musman <[email protected]> wrote in message
            news:3bd74f33$[email protected]..
            >
            > Here is what we are trying to do. We have two Weblogic servers running on
            2 different
            > machines. Lets call them A and B. A has 2 beans lets call them Abean1,
            Abean2.
            > and B has one bean called Bbean1. Now Abean1 has to contact Bbean1 which
            in turn
            > has to contact Abean2 (dont ask why :) . We are running into transcation
            issues
            > namely ' No default driver for database type: jdbc:weblogic:jts'. Abean1
            has Container
            > transaction and Bbean1 has Bean managed transaction. We set Abean2 methods
            transaction
            > attribute to NotSupported. However no luck. Has anyone come across this
            kind of
            > situation? Any clues as to what might be going on? Abean1 can contact
            Bbean1 successfully
            > ie if we dont force Bbean1 to contact Abean2. However when Bbean1 tries to
            contact
            > Abean2 thats when the fun starts.
            >
            > thanks
            

• WebLogic SSO receiving "KDC has no support for encryption type (14)" error

  Hello,
  I am trying to implement SSO using an Off-the-Shelf app running on WebLogic, but receiving "KDC has no support for encryption type (14)" error. I have set the AD Server to “Use DES encryption types for this account” . I have added 'allowtgtsessionkey' registry entry on the client machine as well as the Windows Server on which WebLogic is running. My klist results on the client machine still seems to indicate AD is sending RC4 encryption format (please confirm looking at the results below). I am also attaching the WebLogic error log. I am slo seeing 2 errors at the very beginning of the WebLogic log when I restart the appserver.
  % KLIST output
  C:\Program Files\Resource Kit>klist tickets
  Cached Tickets: (2)
  Server: krbtgt/[email protected]
  KerbTicket Encryption Type: RSADSI RC4-HMAC(NT)
  End Time: 8/27/2008 1:52:56
  Renew Time: 9/2/2008 15:52:56
  Server: HTTP/[email protected]
  KerbTicket Encryption Type: RSADSI RC4-HMAC(NT)
  End Time: 8/27/2008 1:52:56
  Renew Time: 9/2/2008 15:52:56
  % WebLogic Error
  <Aug 28, 2008 8:43:02 AM MDT> <Debug> <SecurityDebug> <000000> <java.security.krb5.realm was not defined, this could cause problems using Kerberos for negotiation>
  <Aug 28, 2008 8:43:02 AM MDT> <Debug> <SecurityDebug> <000000> <java.security.krb5.kdc was not defined, this could cause problems using Kerberos for negotiation>
  <Aug 26, 2008 8:26:18 AM MDT> <Debug> <SecurityDebug> <000000> <Default Authorization isAccessAllowed(): returning PERMIT>
  <Aug 26, 2008 8:26:18 AM MDT> <Debug> <SecurityDebug> <000000> <DefaultAdjudicatorImpl.adjudicate results: PERMIT >
  <Aug 26, 2008 8:26:18 AM MDT> <Debug> <SecurityDebug> <000000> <AuthorizationManager.isAccessAllowed returning adjudicated: true>
  <Aug 26, 2008 8:26:27 AM MDT> <Debug> <SecurityDebug> <000000> <PrincipalAuthenticator.assertIdentity - Token Type: Authorization>
  <Aug 26, 2008 8:26:27 AM MDT> <Debug> <SecurityDebug> <000000> <Found Negotiate with SPNEGO token>
  Debug is true storeKey true useTicketCache false useKeyTab true doNotPrompt false ticketCache is null KeyTab is devmax01.http.keytab refreshKrb5Config is false principal is HTTP/[email protected] tryFirstPass is false useFirstPass is false storePass is false clearPass is false
  KeyTab: load() entry length: 60
  KeyTabInputStream, readName(): DEV.DENVERWATER.ORG
  KeyTabInputStream, readName(): HTTP
  KeyTabInputStream, readName(): devmax01principal's key obtained from the keytab
  principal is HTTP/[email protected]
  EType: sun.security.krb5.internal.crypto.DesCbcMd5EType
  KrbAsReq calling createMessage
  KrbAsReq in createMessage
  KrbAsReq etypes are: 3 1 1
  KrbKdcReq send: kdc=10.143.60.1 UDP:88, timeout=30000, number of retries =3, #bytes=252
  KDCCommunication: kdc=10.143.60.1 UDP:88, timeout=30000,Attempt =1, #bytes=252
  KrbKdcReq send: #bytes read=1311
  KrbKdcReq send: #bytes read=1311
  EType: sun.security.krb5.internal.crypto.DesCbcMd5EType
  KrbAsRep cons in KrbAsReq.getReply HTTP/devmax01Added server's keyKerberos Principal HTTP/[email protected] Version 4key EncryptionKey: keyType=3 keyBytes (hex dump)=
  0000: B3 86 A4 E5 83 0E 6D 9E
  [Krb5LoginModule] added Krb5Principal HTTP/[email protected] to Subject
  Commit Succeeded
  Found key for HTTP/[email protected]
  Entered Krb5Context.acceptSecContext with state=STATE_NEW
  <Aug 26, 2008 8:26:27 AM MDT> <Debug> <SecurityDebug> <000000> < GSS exception GSSException: Failure unspecified at GSS-API level (Mechanism level: KDC has no support for encryption type (14))
  GSSException: Failure unspecified at GSS-API level (Mechanism level: KDC has no support for encryption type (14))
  at sun.security.jgss.krb5.Krb5Context.acceptSecContext(Krb5Context.java:734)
  at sun.security.jgss.GSSContextImpl.acceptSecContext(GSSContextImpl.java:300)
  at sun.security.jgss.GSSContextImpl.acceptSecContext(GSSContextImpl.java:246)
  at weblogic.security.providers.utils.SPNEGONegotiateToken.getUsername(SPNEGONegotiateToken.java:371)
  at weblogic.security.providers.authentication.SinglePassNegotiateIdentityAsserterProviderImpl.assertIdentity(SinglePassNegotiateIdentityAsserterProviderImpl.java:201)
  at weblogic.security.service.PrincipalAuthenticator.assertIdentity(PrincipalAuthenticator.java:553)
  at weblogic.servlet.security.internal.CertSecurityModule.checkUserPerm(CertSecurityModule.java:104)
  at weblogic.servlet.security.internal.SecurityModule.beginCheck(SecurityModule.java:199)
  at weblogic.servlet.security.internal.CertSecurityModule.checkA(CertSecurityModule.java:86)
  at weblogic.servlet.security.internal.ServletSecurityManager.checkAccess(ServletSecurityManager.java:145)
  at weblogic.servlet.internal.WebAppServletContext.invokeServlet(WebAppServletContext.java:3685)
  at weblogic.servlet.internal.ServletRequestImpl.execute(ServletRequestImpl.java:2644)
  at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:219)
  at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:178)
  >
  <Aug 26, 2008 8:26:27 AM MDT> <Debug> <SecurityDebug> <000000> <PrincipalAuthenticator.assertIdentity - IdentityAssertionException>

  dins wrote:Do you think the klist output in my original posting confirms that AD is not encrypting tickets in DES format ?Yes, the current line prove it :
  KerbTicket Encryption Type: RSADSI RC4-HMAC(NT)The fact is that Microsoft seems to use by default the RC4-HMAC-MD5 encryption type for AD.
  Try to specify only des for encryption type in both your krb5.conf
  [libdefaults]
      default_realm = ...
      default_tkt_enctypes = des-cbc-md5 des-cbc-crc des3-cbc-sha1
      default_tgs_enctypes = des-cbc-md5 des-cbc-crc des3-cbc-sha1
      ...and kdc.conf
  [realms]
     REALM = {
          kadmind_port = ...
          max_life = ...
          max_renewable_life = ...
          master_key_type = ddes-cbc-md5 des-cbc-crc des3-cbc-sha1
          supported_enctypes = des-cbc-md5 des-cbc-crc des3-cbc-sha1
          kdc_supported_enctypes = des-cbc-md5 des-cbc-crc des3-cbc-sha1
      }If it still does not work, I'm out of ammo ;-).

• Problem: KDC has no support for encryption type (14)

  hi, I have dealing the problem for long time and no response in bea forum.
  I feel very exhausted when checking mit's kerberos mailist and sun forum. Any try every method they provide but not success.
  first I generate the keytab using w2k's ktpass
  ktpass -princ HTTP/[email protected] -mapuser weblogic -pass weblogic -out dlsvr_keytab -crypto des-cbc-crc
  and it turn out to be successful.
  My W2KSP4 KDC Config is:
  c:\winnt\krb5.ini-----------------------------
  [libdefaults]
  default_realm = DLSVR.COM
  default_tkt_enctypes = des-cbc-crc
  default_tgs_enctypes = des-cbc-crc
  ticket_lifetime = 600
  [realms]
  DLSVR.COM = {
  kdc = 192.168.2.231
  admin_server = dlserver
  default_domain = DLSVR.COM
  [domain_realm]
  .dlsvr.com= DLSVR.COM
  [appdefaults]
  autologin = true
  forward = true
  forwardable = true
  encrypt = true
  i also set des type in AD Accout and also reset password after that
  i create my keytab using des-cbc-crc as you can see in the log below :
  <2005-11-8 ����06��09��39�� CST> <Debug> <SecurityDebug> <000000> <Found Negotiate with SPNEGO token>
  KeyTab: load() entry length: 50
  KeyTabInputStream, readName(): DLSVR.COM
  KeyTabInputStream, readName(): host
  KeyTabInputStream, readName(): weblogic
  KeyTab: load() entry length: 44
  KeyTabInputStream, readName(): dlsvr.com
  KeyTabInputStream, readName(): weblogic
  EType: sun.security.krb5.internal.crypto.DesCbcCrcEType
  crc32: e9889c7a
  crc32: 11101001100010001001110001111010
  KrbAsReq calling createMessage
  KrbAsReq in createMessage
  KrbAsReq etypes are: 1
  KrbKdcReq send: kdc=192.168.2.231 UDP:88, timeout=30000, number of retries =3, #bytes=216
  KDCCommunication: kdc=192.168.2.231 UDP:88, timeout=30000,Attempt =1, #bytes=216
  KrbKdcReq send: #bytes read=1217
  KrbKdcReq send: #bytes read=1217
  EType: sun.security.krb5.internal.crypto.DesCbcCrcEType
  crc32: 54c176ae
  crc32: 1010100110000010111011010101110
  KrbAsRep cons in KrbAsReq.getReply host/weblogicFound key for host/[email protected]
  Entered Krb5Context.acceptSecContext with state=STATE_NEW
  <2005-11-8 ����06��09��39�� CST> <Debug> <SecurityDebug> <000000> <GSS exception GSSException: Failure unspecified at GSS-API level (Mechanism level: KDC has no
  support for encryption type (14))
  GSSException: Failure unspecified at GSS-API level (Mechanism level: KDC has no support for encryption type (14))
  at sun.security.jgss.krb5.Krb5Context.acceptSecContext(Krb5Context.java:734)
  at sun.security.jgss.GSSContextImpl.acceptSecContext(GSSContextImpl.java:300)
  at sun.security.jgss.GSSContextImpl.acceptSecContext(GSSContextImpl.java:246)
  at weblogic.security.providers.utils.SPNEGONegotiateToken.getUsername(SPNEGONegotiateToken.java:371)
  at weblogic.security.providers.authentication.SinglePassNegotiateIdentityAsserterProviderImpl.assertIdentity(SinglePassNegotiateIdentityAsserterProvider
  Impl.java:201)
  at weblogic.security.service.PrincipalAuthenticator.assertIdentity(PrincipalAuthenticator.java:553)
  at weblogic.servlet.security.internal.CertSecurityModule.checkUserPerm(CertSecurityModule.java:104)
  at weblogic.servlet.security.internal.SecurityModule.beginCheck(SecurityModule.java:199)
  at weblogic.servlet.security.internal.CertSecurityModule.checkA(CertSecurityModule.java:86)
  at weblogic.servlet.security.internal.ServletSecurityManager.checkAccess(ServletSecurityManager.java:145)
  at weblogic.servlet.internal.WebAppServletContext.invokeServlet(WebAppServletContext.java:3685)
  at weblogic.servlet.internal.ServletRequestImpl.execute(ServletRequestImpl.java:2644)
  at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:219)
  at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:178)
  So i don't know why win2k's KDC not support the des-cbc-crc,
  Any Help or Clue woud be highly appreciated!
  david

  Exception was: javax.naming.AuthenticationException: KDC has no support for encryption type (14) [Root exception is KrbException: KDC has no support for encryption type (14)]
  at com.sco.tta.server.security.java14.KerberosAuth.login(KerberosAuth.java:286)
  at com.sco.tta.server.login.ADLoginAuthority.authenticate(ADLoginAuthority.java:39 0)
  Cause 2: This exception is thrown when using native ticket cache on some Windows platforms. Microsoft has added a new feature in which they no longer export the session keys for Ticket-Granting Tickets (TGTs). As a result, the native TGT obtained on Windows has an "empty" session key and null EType. The effected platforms include: Windows Server 2003, Windows 2000 Server Service Pack 4 (SP4) and Windows XP SP2.
  Solution 2: You need to update the Windows registry to disable this new feature. The registry key allowtgtsessionkey should be added--and set correctly--to allow session keys to be sent in the Kerberos Ticket-Granting Ticket.
  On the Windows Server 2003 and Windows 2000 SP4, here is the required registry setting:
  HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa\Kerberos\Parameters
  Value Name: allowtgtsessionkey
  Value Type: REG_DWORD
  Value: 0x01 ( default is 0 )
  By default, the value is 0; setting it to "0x01" allows a session key to be included in the TGT.

• GSSException"KDC has no support for encryption type (14)" on token exchange

  I'm stumped. Just started working with an MIT KDC v5 1.3.1 running on Linux and trying to get the IBM sample apps (GSSClient and GSSServer) working. The apps are here: http://www-106.ibm.com/developerworks/java/library/j-gss-sso/
  I have two principals set up using defaults: one for the client and one for the server. The GSSClient, GSSServer and KDC are all running on the same machine in the same Realm.
  I start the server just fine and it waits with:
  GSSServer starts... Waiting for incoming connectionWhen I run the client the client authentictes and the context is successsfully created. However, the GSSServer throws an Exception:
  GSSException: Failure unspecified at GSS-API level (Mechanism level: KDC has no support for encryption type (14))
  at sun.security.jgss.krb5.Krb5Context.acceptSecContext(Unknown Source)
  at sun.security.jgss.GSSContextImpl.acceptSecContext(Unknown Source)
  at sun.security.jgss.GSSContextImpl.acceptSecContext(Unknown Source)
  at com.ourcorp.caa.security.GSSServer.run(GSSServer.java:138)
  at java.security.AccessController.doPrivileged(Native Method)
  at javax.security.auth.Subject.doAs(Unknown Source)
  at com.ourcorp.caa.security.GSSServer.startServer(GSSServer.java:98)
  at com.ourcorp.caa.security.GSSServer.main(GSSServer.java:71)
  The client also throws an Exception:
  GSSClient... Getting client credentials
  GSSClient... GSSManager creating security context
  GSSClient...Sending token to server over secure context
  GSSClient...Secure context initialized
  GSSClient...Written 511 bytes
  GSSClient...Exception nulljava.io.EOFException
  at java.io.DataInputStream.readInt(DataInputStream.java:448)
  at com.ourcorp.caa.security.GSSClient.run(GSSClient.java:184)
  at java.security.AccessController.doPrivileged(Native Method)
  at javax.security.auth.Subject.doAs(Subject.java:320)
  at com.ourcorp.caa.security.GSSClient.login(GSSClient.java:117)
  at com.ourcorp.caa.security.GSSClient.main(GSSClient.java:63)
  Client authentication denied...
  This happens consistently and I cannot get passed this point! The weird thing is, is that the same thing happens using the Windows 2003 Server KDC! Same Exception.
  Can anyone help me understand what is causing this? The Exception mentions "KDC has no support for encryption type (14)" but we're not specifying any encryption type other than the defaults. The principals are the same as far as I know.
  Thanks.

  Interesting I managed to get this example to work but I had to create two principals (one for the client one for the server) with encryption types of "des-cbc-crc:normal" only . It seems that a with principal with "des-cbc-crc:normal" and "des3-hmac-sha1:normal" encryption types causes the Exception. So, the question I have is: does the GSS API support TripleDES or what? The KDC is obviosuly trying to use it for the user-user exchange but fails.
  Anyone got any ideas? Thanks.

• KDC has no support for encryption type (14) in windows 2008

  The active directory is a windows 2008 box. I am not mentioning any encryption types in krb5.ini. I know that we should add some registry entries in Windows 2003 and XP. But I was not able to find something similar to those, corresponding to windows 2008. I also tried adding the registry that was meant for windows 2003. But it din't work.
  Any help appreciated.
  Thanks in advance

  Sorry for a very late response and for not providing adequate information in my question.
  I have Active Directory is in windows 2008 box and my application runs in a windows 2003 box. Its a very simple configuration and there is just one domain configured in the AD(no forest, no parent-child domains).
  my login.config file looks like this
  KerbAuth4Portal{
  com.sun.security.auth.module.Krb5LoginModule required debug=true refreshKrb5Config=true;
  and the krb5.conf looks like this
  [libdefaults]
  default_realm = KERB.WHIGFIELD.COM
  [domain_realm]
  .kerb.whigfield.com = KERB.WHIGFIELD.COM
  [realms]
  KERB.WHIGFIELD.COM = {
  kdc = Ferrari-w2k8Vm1.kerb.whigfield.com
  This is my method
       public void authenticateForPortal(String userName, String password)
                 throws AuthenticationException {
            LoginContext lc = null;
            Subject subject = null;
            try {
                 // String pwd= EncryptData.decryptString(password);
                 // userName = "[email protected]";
                 // userName = helper.convertDN2KerberosPrincipal(userName);
                 // password = "control";
                 lc = new LoginContext("KerbAuth4Portal", new LdapCallbackHandler(
                           userName, password));
                 lc.login();
                 logTicketAttributes(lc);
                 subject = lc.getSubject();
                 log.debug("Authenticated subject" + subject);
            } catch (LoginException le) {
                 log.error("Login failed-", le);
                 throw new AuthenticationException("Failed to login -"
                           + le.getMessage());
  and this is the exception I am getting
  javax.naming.AuthenticationException: Failed to login -KDC has no support for encryption type (14)
  But if I set the useTicketCache to true, then I am not getting this issue, but it the authentication happens with the user present in ticket cache and not with the user passed in my method
  Any help appreciated.
  Thanks in advance

• KDC has no support for encryption type

  Hi,
  I hope not too much people are not reading this post because of the very common error message. But I'm really somewhat confused:
  For testing Kerberos 5 SSO I set up a little domain controller running Windows 2003 Server and a client in the domain running Windows XP. In the active directory I created a service account with the logon test-service and a user account test-user. The switch "Use DES encryption types for this account" is set for both accounts and I reseted the passwords after setting the switch. Additionally I added a service principal name test/test.krbtest.local to the service account.
  On the client machine I execute a very simple JAVA client program that tries to obtain a service ticket for the service test/test.krbtest.local. If I configure the client to prompt for a password, the service ticket is obtained without a problem using etype 3 (sun.security.krb5.internal.crypto.DesCbcMd5EType). But when trying to read the existing TGT from the native windows cache the client exits with:
  KDC has no support for encryption type (14)The debug output tells the following:
  >>> Obtained TGT from LSA: Credentials:
  [email protected]
  server=krbtgt/[email protected]
  authTime=20070413112833Z
  startTime=20070413112833Z
  endTime=20070413212833Z
  renewTill=20070420112833Z
  flags: FORWARDABLE;RENEWABLE;INITIAL;PRE-AUTHENT
  EType (int): 0
  Principal is [email protected]
  Commit Succeeded
  Found ticket for [email protected] to go to krbtgt/[email protected] expiring on Fri Apr 13 23:28:33 CEST 2007
  Entered Krb5Context.initSecContext with state=STATE_NEW
  Found ticket for [email protected] to go to krbtgt/[email protected] expiring on Fri Apr 13 23:28:33 CEST 2007
  Service ticket not found in the subject
  Credentials acquireServiceCreds: same realmUsing builtin default etypes for default_tgs_enctypes
  default etypes for default_tgs_enctypes: 3 1 23 16 17.
  CksumType: sun.security.krb5.internal.crypto.RsaMd5CksumType
  EType: sun.security.krb5.internal.crypto.NullEType...Note that it says "Etype (int): 0" which I think is no valid encryption type at all. klist (from the windows resource kit) tells me that my tickets look like:
  Server: krbtgt/[email protected]
      KerbTicket Encryption Type: RSADSI RC4-HMAC(NT)
      End Time: 4/13/2007 23:28:33
      Renew Time: 4/20/2007 13:28:33
  ...But as mentioned above I set the option "Use DES encryption types for this account" for both the user and service account. Am I doing something wrong here??
  Additionally I thought JAVA 1.5.11 would support RC4-HMAC, is that wrong?
  Even more confusing:
  If I remove the "Use DES encryption types for this account" switch for the two accounts and configure my JAVA client program to prompt for a password, a ticket is obtained using the RC4-HMAC encryption type 23 (sun.security.krb5.internal.crypto.ArcFourHmacEType). But using the ticket from the cache again does not work.
  I'd appreciate any comments on that since I'm totally confused by now and have no idea on how to get this SSO thing working correctly in JAVA.
  Cheers
  P.S.:
  I just wanted to mention that adding
  default_tkt_enctypes = rc4-hmac
  default_tgs_enctypes = rc4-hmacto my krb5.ini has no effect on the desribed behaviour
  Message was edited by:
  sherazade

  Ok,
  perhaps I should have looked around the forum a little bit more in-depth...
  Setting the AllowTGTSessionKey registry key to 1 solves this issue...
  thanks

• CF10 Failover support for database

  Hi all,
  I've been using ColdFusion 10 Standard for some time and recently noticed that there is Failover support for databases on CF10 Standard
  CF10 Enterprise edition can enable Cluster for load balancing and fail over for application and sessions
  What is this failover support for database on CF10 Standard edition all about?
  Can't seem to find any documents or discussion about this

  Try this :
  jdbc:macromedia:oracle:@(description=(address_list= (address=(host=xxxxx.xxx.local) (protocol=tcp)(port=1568))(address=(host=xxx.xxx.local)(protocol=tcp) (port=1569)) (load_balance=yes)(failover=yes))(connect_data=(service_name=xxxxx)))
  For further details check here : https://blogs.oracle.com/theshortenspot/entry/advanced_oracle_jdbc_connectio
  HTH
  Thanks
  VJ

• CS4 drops support for databases?

  I just got off a lengthy call with Dreamweaver tech support,
  and they confirmed that there is no longer any support for database
  connectivity using ASP.Net VB in the new CS4 version. The only
  connectivity that is supported is through a Spry Dataset. The
  technician said that this appears to be a security related issue
  and that Adobe has no intentions of changing this.
  Why would Adobe do this?
  I have used Dreamweaver for many years, and this was one of
  the strongest parts of the program, and the decision ends our
  company’s use of any newer version of the product.

  MCUlloa wrote:
  > I just got off a lengthy call with Dreamweaver tech
  support, and they confirmed
  > that there is no longer any support for database
  connectivity using ASP.Net VB
  > in the new CS4 version. The only connectivity that is
  supported is through a
  > Spry Dataset. The technician said that this appears to
  be a security related
  > issue and that Adobe has no intentions of changing this.
  >
  > Why would Adobe do this?
  >
  > I have used Dreamweaver for many years, and this was one
  of the strongest
  > parts of the program, and the decision ends our
  company?s use of any newer
  > version of the product.
  The dropping of support for ASP.NET was announced in August
  2007, but
  support for ASP, PHP and CF hasn't been dropped. The reason
  for .NET to
  be dropped isn't just security, its down to Adobe never being
  able to
  keep up with all the updates from Microsoft for .NET. They
  just can't
  compete with Microsoft's own products.
  I am still on CS3, and don't have any plans to get CS4, as
  the features
  don't make a big enough difference for me, yet. So if you
  need .NET
  support, stick with CS3, but you will only be using getting
  .NET v1.1 so
  you will be far behind everyone else.
  Dooza
  Posting Guidelines
  http://www.adobe.com/support/forums/guidelines.html
  How To Ask Smart Questions
  http://www.catb.org/esr/faqs/smart-questions.html

• ADF RC support for IE 8 & FF 3?

  Hi!
  I wonder if ADF RC will support new generation of popular browsers? While ADF RC is still in "tech preview" phase, it is aimed to current browsers (IE 7 & FF 2). But, it is expected that new browsers will "go live" during Q2 (MS announced IE 8 for summer, while FF is now in beta 5 phase pointing to conclusion that it will be ready to go in similar time-frame as IE 8).
  So, the question is: will ADF RC, in TP4 or R1, support the new browsers?
  PaKo

  Hello Pavle,
  I think you should calm down a little bit, take a deep breath and think rationally about what you're asking here. Let take care of all the points, one by one:
  Jan pointed out that even 10g is not certified for current browsers (more than 1.5 years from release and with market share of more than 40%), and you agree with him.
  You must put that in context also. ADF Faces 10g evolution is pretty much dead, beside some maintenance fixes. ADF Faces was given to Apache a while back as project Trinidad, actively maintained by Oracle, that supports Firefox 2 and IE 7 and did so for a while. Comparing ADF Faces 10g status with ADF Faces RC at this time is unfair. It's going to be more legitimate if and only if all the following hold true:
  1. FF3 and IE8 goes in production before the code grant to Apache RCF;
  2. At that time ADF Faces RC is not yet FF3 and IE8 certified;
  3. The code maintenance on ADF Faces RC stop or drastically slow down after the code grant.
  customers that we are working with during the beta is that none of them yet has the plan to standardize on IE8 or FF3
  Sorry to tell you, but that's pretty true (although quite irrelevant imho). standardize either if we go right down to the semantics here would meant that they would force the usage of either, hence why I find it irrelevant. On the other hand, if the meaning was that no customer actively plan to support IE8 and FF3, then I agree that something is wrong, especially for widely public applications.
  Second, as I pointed out, the ADF 11g rich-ajax-based components are unpleasantly slow on "current" browsers.
  Actually the performances are ok. Not great, I agree, but ok, unless you have Firebug running, then yes it get sluggish. However, to ADF Faces RC defense, even GMail dislikes Firebug now and warns you if you're using it.
  So, what you say sounds like logical contradiction to me: you are developing the platform for "new wave" apps while you refuse to make it compatible with new browsers that are just aimed for that "new wave"???
  As far as I know, Frank never said anything like that. What would you like, have Frank say something like "Yes, we certify that it's going to work! They're in beta, we have no clue when they're going to get in production, we have no clue what is going to change in their API by then, they might be more bugged than Netscape 1.0 alpha, but hey! It's going to work for sure! You can put Oracle's reputation on that!"... please... Oracle developers are still working on fixing issues, improving performances and functionalities for current browser and maybe add support for other current browser like maybe Safari or Opera which, although having small market shares, do have larger market shares than IE8 and FF3 for now. Once either of those browsers get RC maybe I'll give more credits to your complains, but for now I think you should be more aware of some market and management realities. Whining about hypothetical situation that might potentially arise in an uncertain future is not very constructive imho.
  Is there any way that we can, beside this forum, influence the Oracle strategy? I personally think that there are some issues on that side...
  Well, once JDeveloper 11g goes in production (or beta, dunno, I'm not an Oracle support expert), then there's always Metalink.
  My 2¢,
  ~ Simon

• No support for content-type in response header?

  When loading both movies and images Strobe Media Playback does not recognize content-type from the response header.I can't find any documentation for this, but when i look in the source code, there sees to be support for this kind of metadata. For example in the "canHandelResource" function for ImageLoader has a "MIME_TYPES_SUPPORTED" vector that contains the type "image/jpeg". I can't see way, but this function is always falling back to checking the URL for file extensions.
  override public function canHandleResource(resource:MediaResourceBase):Boolean
              var rt:int = MediaTypeUtil.checkMetadataMatchWithResource(resource, MEDIA_TYPES_SUPPORTED, MIME_TYPES_SUPPORTED);
              if (rt != MediaTypeUtil.METADATA_MATCH_UNKNOWN)
                  return rt == MediaTypeUtil.METADATA_MATCH_FOUND;
              var urlResource:URLResource = resource as URLResource;
              if (urlResource != null &&
                  urlResource.url != null)
                  var url:URL = new URL(urlResource.url);
                  return (url.path.search(/\.gif$|\.jpg$|\.png$/i) != -1);
              return false;
  This makes it impossible to load an image (or movie) from a web-service that don't contain a file extension. Even though the response header from the request contains the correct "Content-type". Example response header:
  Date: Wed, 13 Jul 2011 08:07:26 GMT
  Server: Apache/2.2.17 (Unix)
  Cache-Control: max-age=60
  Expires: Wed, 13 Jul 2011 08:08:26 GMT
  Content-Length: 34010
  Content-Type: image/jpeg
  X-Pad: avoid browser bug
  200 OK
  Anybody that know way this is the case?

  There is no need for a constructor when all attributes are assigned.Unless there is a date value, apparently ;)
  It also works if you explicitly <tt>CAST(SYSDATE AS DATE)</tt> so perhaps the internal limitation is to do with the two internal DATE types (type 12 and 13, if you check DUMP output).

• Support for database objects shall be installed

  Hello,
  my problem is the following:
  Support for Repository (Core) Objects is installed,
  but I want to install the support database objects, too.
  Can you help me with that?
  Thanks

  Henrik,
  I assume you mean the Designer model, as this provides a structured database model, along with many other elements. You are given the option to install the Designer model along with the Core model when you initially installed the repository using the Repository Administration Utility.
  regards,
  David