2-way SSL and access control using the client certificate

Similar Messages

• Does OS installed through boot camp or in virtual machine has access and full control of the peripherals like native OS X Lion?

  I am planning to buy new PC for my faculty needs and this time I am thinking to buy Apple laptop like Mac book Pro 13" or so ( I owe already IPhone and Ipad 2)
  To make final decision I need few information . These are:
  1. May I use Boot Camp or similar utility software to install Windows 7 OS next to OS X Lion, or use some kind of virtual box software to create virtual machines with diverse guest OS in them like Windows , Linux etc.?
  2. Does OS installed through Boot camp or in virtual machine has access and full control of the peripherals like native OS X Lion?
  3. May I use the same disk partitions to access to the files regardless if I am using Windows 7 or OS X Lion operating system?
  4. Is there full compatibility between Microsoft Office under OS X Lion and Windows 7 M. Office?
  5. What is general user experience with OS X Lion operating system comparing to Windows 7?
  Thanks for  sharing your experience with me.
  Adnan S

  adnans wrote:
  I am planning to buy new PC for my faculty needs and this time I am thinking to buy Apple laptop like Mac book Pro 13" or so ( I owe already IPhone and Ipad 2)
  To make final decision I need few information . These are:
  1. May I use Boot Camp or similar utility software to install Windows 7 OS next to OS X Lion, or use some kind of virtual box software to create virtual machines with diverse guest OS in them like Windows , Linux etc.?
  2. Does OS installed through Boot camp or in virtual machine has access and full control of the peripherals like native OS X Lion?
  3. May I use the same disk partitions to access to the files regardless if I am using Windows 7 or OS X Lion operating system?
  4. Is there full compatibility between Microsoft Office under OS X Lion and Windows 7 M. Office?
  5. What is general user experience with OS X Lion operating system comparing to Windows 7?
  Thanks for  sharing your experience with me.
  Adnan S
  1. Yes. You can install Windows 7 natively using Boot Camp Assistant or you can install Windows 7 in a virtual machine using Parallels, Fusion, or VirtualBox
  2. If installed using Boot Camp Assistant Windows 7 uses all your computer's resources just as OSx does. If installed using a VM Windows 7 will share the computer's resources with OSx.
  3. A Boot Camp partition is separate from the OSx partition. The VMs allow sharing of files across partitions since both OS are running at the same time.
  4. No, not 100%.
  5. Too broad a question. Be specific about what feature you are asking about or search the Internet for comparisons. I use both and find they both work well.

• I scanned an image and want to use the image trace tool, but it doesn't pick up all the lines.  Is there a way to darken the lines before using the image trace tool?

  I scanned an image and want to use the image trace tool, but it doesn't pick up all the lines.  Is there a way to darken the lines before using the image trace tool?  Help!

  If the scan is in B&W, then play with the Threshold setting here
  If it's in Color, then you will have to open the scan in a Raster editing software (like Photoshop) and play with the Brightness/Contrast settings to make the lines bolder.

• TS4036 I purchased an iphone for my daughter and we are using the same account and she deleted some contacts from her phone and they were deleted off of my contacts as well. Is there a way to use icloud backup to reinstall the contacts to my phone?

  I purchased an iphone for my daughter and we are using the same account and she deleted some contacts from her phone and they were deleted off of my contacts as well. Is there a way to use icloud backup to reinstall the contacts to my phone?

  Welcome to the Apple community.
  You can only restore them from a Computer backup. This has occurred because you are sharing an iCloud account. ideally you should each have your own iCloud account, that way you can each manage your own mail, contacts, calendars, documents etc and avoid unintentional deletions and unwanted editing. If there is information you wish to share between you, this can be done with a secondary account.
  Having separate iCloud accounts, doesn't mean you have to have separate iTunes accounts, so whilst you keep your personal data separate, you can continue to share music, apps, books, TV shows, movies etc.

• HT204053 my boyfriend and i are using the same apple account, i was wondering if there is a way for him to stop recieving txt msgs thats are sent to me through email accounts without removing him from my account altogether?

  my boyfriend and i are using the same apple account, i was wondering if there is a way to stop him recieveing txt msgs that are sent through email addresses without removing him from my account altogether?

  gemmie87 wrote:
  my boyfriend and i are using the same apple account, i was wondering if there is a way to stop him recieveing txt msgs that are sent through email addresses without removing him from my account altogether?
  Or remove you from his, it's moot because You and He are the same account, either get him his own (they are free) or live with this cozy but privacy compromised method.

• My ipod is stuck on do not disconnect, and it won't respond when plugged in to imac or wall.  Is there a way to restart it without using the computer?

  My ipod is stuck on do not disconnect, and it won't respond when plugged in to imac or wall.  Is there a way to restart it without using the computer?

  You can reset your iPod with these instructions:  http://support.apple.com/kb/HT1320

• I just set an administrators name (my full name) and password for parental controls (using the one I always use) and now after restarting and trying to make changes to aprental controls it does not recognize my password

  I just set an administrators name (my full name) and password for parental controls (using the one I always use) and now after restarting and trying to make changes to aprental controls it does not recognize my password

  Hello, do you have another admin account to log into for a test?

• I have 3 computers...Window PC, PowerBook G3 (old) and MacBook Pro. I use firefox for all of them and have for quite some time. Is there a way for them all to use the same toolbar? Each of them have differnet bookmark/ settings etc.,

  I have 3 computers...Window PC, PowerBook G3 (old) and MacBook Pro. I use firefox for all of them and have for quite some time. Is there a way for them all to use the same toolbar? Each of them have differnet bookmark/ settings etc.,

  Open Media Encoder and add your Sequences:
  File > Add Premiere Pro Sequence
  Navigate to your Premiere Project and select it in the list.
  You can then select multiple Sequences from the Project (Ctrl+Click)
  and load them all at once into Media Encoder and apply
  the same encoding preset to all Sequences at the same time.

• Is there a way my two daughters can use the same laptop and have their own individual I Tune music??

  Is there a way my two children can use the same laptop and have their own individual music accounts?

  Do you mean different music collections, camille?
  If so, there's several options given in the following document:
  How to use multiple iPods, iPads, or iPhones with one computer

• I change ISP and use ms explorer to set on to new ISP. Internet options has the new ISP address but Firefox does not pick it up and is still using the old ISP. Can find no way to set firefox to new ISP. How do i do it?

  I changed ISP and used ms explorer to set up on to new ISP. Internet options has the new ISP address but Firefox does not pick it up and is still using the old ISP address. Can find no way to set firefox to new ISP address. How do I do it? edit

  -> Tap ALT key or press F10 to show the Menu Bar
  -> go to Tools Menu -> Options -> Advanced -> Network -> Connection section -> click '''Settings...''' button -> change these settings in accordance with Internet Options settings that work on MS Internet Explorer -> click OK
  Check and tell if its working.

• Is there any way to unlock iPhone besides using the slide?

  Is there any way to unlock iPhone besides using the slide? My vision impaired Dad is slowly learning to feel his way to the approximate position of the slide and learn how to flick his thumb to unlock the iphone. Is there any other way to unlock an iPhone from sleep?

  If you activate "Voiceover", your Dad can use the voiceover gestures to control the phone. These are different from normal gestures. For example, Unlock iPhone: Select the Unlock switch, then double-tap the screen.
  To learn about voiceover, see this: http://www.apple.com/iphone/how-to/#accessibility.using-voiceover

• How can I have different access control for the guest network (different than the main network)?

  I am trying to control my main wireless network with access control via mac id with no password. I wanted a separate guest network with password access and no access control. However, the only way that the guest network works is if I specify unlimited access as the default. Is what I am trying to do possible.

  I am trying to control my main wireless network with access control via mac id with no password.
  Definitely not a recommended method for security. MAC addresses are easily cloned by anyone who wants to do so with free tools available on the Internet. An unwanted guest will be on your network in less than a minute if they want to be.
  Strongly recommend that you use WPA2 Personal security with a non-dictionary password to protect your network.
  I wanted a separate guest network with password access and no access control. However, the only way that the guest network works is if I specify unlimited access as the default. Is what I am trying to do possible.
  Unfortunately, Apple does not allow separate Access Control for the "main" and "guest" networks. It's all or nothing, I am afraid.
  Likely, the  "best" way to set up Access Control is change the default rule to No Access, Then you will need to enter in the details for every device that you want to allow to connect for both the "main" and "guest" networks with the time limits for each device.

• Discuss Identity and Access Management in the Cloud

  Identity and access management in the cloud refers to the processes, technologies, and policies for managing cloud systems identities and controlling how these identities can be used to access cloud resources. Three separate processes are used in most cloud
  identity and access management solutions:
  Identity provisioning and storage
  Authentication
  Authorization
  Identity management in a cloud system requires a complex collection of technologies to manage authentication, authorization and access control across distributed environments. These environments might include assets both on the internal cloud, which would
  be an on-premises private cloud, and services accessed on the public cloud. These environments can also cross-security domains, as when two enterprise-level organizations collaborate and enable cross-domain access to users from the partner security domain.
  You can learn more about these topics in the article Identity and Access Management in the Cloud.
  Let's talk about that article and the topics of identity and access management in the cloud! Use this thread to get it started.
  Thanks!
  Tom
  Learn more about Private Cloud at the
  Private Cloud Solutions Hub

  Tom,
  I am a novice and attempting to achieve a proof of concept of single sign on.  One example I read stated one should install Identity and Access on VS2012.  I did this on two different machines.   One was in the office domain and it shows the
  item "Identity and Access..." in the context menu of the MVC project I created.  The other machine is my laptop.  I followed the same procedure that worked on the desktop, yet the Identity and Access item in the project context menu does not show.
   One difference is that the laptop is not part of a domain, but I am attempting this proof of concept in Windows Azure with the laptop, since we do not have a test AD in our corporate domain.
  Is this the right forum to inquire about this issue?  Do you have a recommendation about a better forum?
  Stephen Pidgeon

• 2-Way SSL and Webservices

  Greetings,
  After spending some time searching the docs and several dev2dev newsgroups I haven't been able to find a clear cut answer to an urgent question:
  I have a two webservices, the client (.jpd) and the server (.jws) which are installed on a separate weblogic 8.1 instances on different machines. The requirement is that the webservices must communicate with one another only over a 2-Way SSL connection.
  My question is how to setup this 2-way SSL configuration between the client and sever webservices. Do I need to write code or can I configure it using the web.xml files of the two webservies? I don't think it would make sense to configure the two weblogic instances to always use 2-WaySSL (via the startup script or config.xml), in which case the webservies might not inherit the truststore and other SSL connfiguration of the respective instances.
  If someone has already solved this problem, I would appreaciate to hear from you. This is an urgent problem and I am stumped. Any help would be appreciated!
  Regards

  Hi,
  I am trying to use 2 way ssl using webservices client , here is my code :
  AxisProperties.setProperty("org.apache.axis.components.net.SecureSocketFactory","org.apache.axis.components.net.SunFakeTrustSocketFactory");
  SSLAdapterFactory factory = SSLAdapterFactory.getDefaultFactory();
  WLSSLAdapter adapter = (WLSSLAdapter) factory.getSSLAdapter();
  // clientCredentialFile stores in PEM format the public key and
  // all the CAs associated with it + then the private key. All this in // a concatenated manner
  FileInputStream clientCredentialFile = new FileInputStream ("C:\\sslcert\\client-pub3.pem");
  // private key password
  String pwd = "password";
  adapter.loadLocalIdentity(clientCredentialFile, pwd.toCharArray());
  adapter.setVerbose(true);
  adapter.setTrustedCertificatesFile("C:\\certificate\\server\\server.jks");
  adapter.setStrictCheckingDefault(false);
  factory.setDefaultAdapter(adapter);
  factory.setUseDefaultAdapter(true);
  boolean idAvailability = false;
  UNSLocator locator = new UNSLocator();
  URL portAddress = new URL("https://localhost:7002/smuSSWeb/UNSResponse.xml");
  UNSPort unsprt = locator.getUNSPort(portAddress);
  idAvailability = unsprt.isIDAvailable("Yulin125", "C");
  System.out.println("Got from method :"+idAvailability);
  After runing this code i am getting the following exception :
  AxisFault
  faultCode: {http://schemas.xmlsoap.org/soap/envelope/}Server.userException
  faultSubcode:
  faultString: java.net.SocketException: Software caused connection abort: socket write error
  faultActor:
  faultNode:
  faultDetail:
  I am using .pem (clientsigned,clientinter,clientroot, root-key) files for client authentication and i am using server.jks as a keystore for my server authentication.Once i run this code , i am able to present the server certificate chain to the client but i am not able to present the client certificate chain to server.
  I am stuck with for quite sometime.
  Some insight needed from the guru's

• User management and Access Control in HCM Cloud

  Hello,
  Information is scarce about User management and Access Control in Oracle Cloud generally. Today, I have two questions :
  - How can I bridge HCM Cloud user store with my on-premise IDM or security repository in order to allow identty governance to flow to HCM Cloud service ?
  The only information I got was that you can declare manually and by bulk import through files my users. This is not really interresting as I have an automatic IDM with workflows and identity control on provisioning and de-provisioning.
  Is there a SPML or proprietary endpoint to do it automatically ? What are the prerequisites ? Do I have to implement OIM on my side ?
  - Once my users are created, how can I do webSSO from my internal security repositories to the HCM Cloud service ?
  I do not want to distribute new set of login / passwords to my users. Is it possible to do Identity Federation (SAML 2.0 or WS-Fed) with HCM Cloud service ? What are the prerequisites ? Do I have to implement OAM on my side ?
  I accept all pieces of information you can give me on this topic to help me understand the funcitonalites, limits and options offered by Oracle Cloud and more precisely by HCM Cloud service.
  Best regards,

  OIDDAS has limited capability of access control and information hiding. Presently, the permissions and privileges can be set at a realm level, and fine grained access control / information hiding cannot be done.
  At present, the only way to restrict view and access control is by appplying ACLs (which is not the safest bet).