A Web application + API for non web clients

Similar Messages

• Application hangs for non existing value

  Hi,
  At the DB level I tried to query non existing value from the table, query came out with "no rows selected" . But when I try to do the same from front end, application hangs! I just checked in the statspack report it shows like query is taking more cpu time to execute. what could be the reason for this?
  when I join the v$session,v$sql to get the currently running query on database, it shows the query which try to execute from the application as active.
  why it is hanging in application and why not in DB?
  can any one brief me on this regard? why does application hangs for non exsting value?
  With Regards
  Boo

  Hi,
  At the DB level I tried to query non existing value from the table, query came out with "no rows selected" . But when I try to do the same from front end, application hangs! I just checked in the statspack report it shows like query is taking more cpu time to execute. what could be the reason for this?
  when I join the v$session,v$sql to get the currently running query on database, it shows the query which try to execute from the application as active.
  why it is hanging in application and why not in DB?
  can any one brief me on this regard? why does application hangs for non exsting value?
  With Regards
  Boo

• Sharing Primary Site and Secondary Site's SUP WSUS for non-SCCM client use

  I was wondering if the WSUS deployed for the SCCM's SUP can also be (re)used for non-SCCM clients.
  Our SCCM infrastructure are mainly used to manage Workstations whereas our back-end servers are not deployed with SCCM agents due to overlapping SLAs and responsibilities. However, we would like to take advantage of WSUS's centralized update repository without
  each back-end servers initiating connection to the Internet to get their updates.
  Is this possible?

  No. WSUS servers that are used for SUPs are controlled by ConfigMgr and cannot be used outside ConfigMgr.
  Torsten Meringer | http://www.mssccmfaq.de

• Risk Management & Process controls for non SAP client

  Hi Forum Gurus,
  I need clarity on the following:  Can Risk managment 3.0 and Process controls be implemented for a non-SAP client?
  i.e. Our client does not run SAP, but they are interested in RM and PC, so is this possible to implement?
  Any advice would be highly appreciated.
  Kind regards,
  PREVO.

  Hi Prevo,
  Process control and Risk management 3.0 are delivered within same installation package files so it is same for both the applications .
  Also real time agents for Oracle or peoplesoft are avaialble if you want to leverage the automated control functionality of PC 3.0 in non SAP environment.
  Remember the automated control functionality is the optional feature of PC3.0.If you wish only to use the manual controls features of PC 3.0 you dont need RTAs(real time agent).
  You can find further information about manual controls at http://service.sap.com
  use the quicklink '/rkt' then the following menu path: SAP Business Objects for GRC Solutions -> SAP BO Process Control 3.0 -> Technology Consultant
  Regards
  Debraj

• DSCP marking for non WMM-clients

  hello,
  i just made several tries but didn´t find the result which i expected. i have the following scenario:
  non WMM-clients in branches in our WAN
  traffic over the wan line must be shaped
  there is no local breakout, the traffoic should be tunneled to the central datacenter
  so what i want to achieve is that every traffic from this non WMM-clients (which are using a special SSID (i call it here "EXTERNAL")) is getting marked in that way that the CAPWAP-packets are holding dscp-values so that i can refer on these packets beforer they are going over the WAN-connection
  what i did:
  the ssid uses the QOS-Profile "bronze"
  WMM is disabled
  the QOS-Profile itself has 802.1p enabled with a value of 1
  so i expected that every traffic via this ssid "EXTERNAL" gets a dscp marking in the capwap packet of 10 (perhaps also 12 or 14, i´m not sure whcih value really is used). in reality i see 0.
  i´m using Wismv1 with version 7.0.230. i also tried it with 5508 with the same version but it didn´t work. APs are 1142.
  is my expectation wrong that this scenario is working in this way? do i forget something??
  thanks for your help

  The WLAN can only re-mark client traffic that has existing DSCP values in the original packet, typically at the application layer. The platinum profile itself has 46 as VoWLAN, 48 as Mgmt traffic (CAPWAP etc), and 56 as network traffic, classifying them as such based on the original marking. The values are only remarked if the configured SSID is different.
  This link provides a few more details:
  http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a00807e9717.shtml

• DHCP configuration for non-compliant clients

  So your question isn't for a live situation, but because you are studying for a test?

  hello!
  i have a question about network policy server..
  that is , how to configure DHCP server to lease IP address to non-compliant client??
  specifically for access to remediation servers
  thank you..
  This topic first appeared in the Spiceworks Community

• Windows Domain Controller certificate for non domain clients

  Hi,
  Is it possible that we can export windows domain certificate and use it for non domain computers without joining domain, so that they can communicate each others without joining domain controller?
  Regards

  Hi,
  Is it possible that we can export windows domain certificate and use it for non domain computers without joining domain, so that they can communicate each others without joining domain controller?
  Not sure that what you want to achieve here.
  However, yes, it is possible to export certificates (with private keys) from domain machines then import them to non-domain machines, and some certificates can even function well based on key usages. Please note that Domain Controller certificates are only
  meaningful to Domain Controllers. Possession of domain certificates doesn’t indicate machines are part of domain.
  Without joining a machine to a domain (or without a trust), the machine is always treated as untrusted by the domain members no matter what kind of certificates it holds.
  Best Regards,
  Amy
  Please remember to mark the replies as answers if they help and un-mark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact [email protected]

• Assembler API for non-spring based development?

  Has anyone used the Assembler API to develop applications that dont leverage the spring framework? Even better, is there any way the Assembler API can be leveraged without using any framework (just pojos)?
  Trying to understand how a UI migration from the presentation API or the content API to Assembler API would look like for legacy Endeca implementations.

  Certainly possible to do this and I believe there are customers who choose to go this route. One application off the top of my head that does this is the ATG/Endeca sample app. Also, if you attempt to integrate Endeca into the Commerce Reference Store (CRS), it's typically a more POJO style experience (.properties files instead of Spring XML, etc.).
  Now, both of those probably have too much "overhead" and may not really apply to non-ATG implementations. All of the API calls are documented, i think the key is probably to start it as a "conversion project" and start to port over the different elements of the configuration (Assembler Factory initialization, etc.) to something POJO-based.
  If the question is simply integrating the existing assembler logic in a non-Spring application, you should be able to hit the RESTful service to get JSON/XML back and forth to your application. Your cartridges and templates would still be managed inside Spring and via the assembler-context but you could grab the content and use it in pretty much any scenario.
  EX: http://localhost:8006/assembler/json/pages/browse
  Note that the assembler service, by default, uses a different set of configuration files (reference/discover-service/WEB-INF/*) than the Discover Data or Discover Authoring applications.
  Hope that helps,
  Patrick Rafferty
  http://branchbird.com

• Cross-Certification for Non-Windows Clients

  Still trying to get more information on getting my SHA256 root CA certificate signed by my SHA1 root CA (temporarily), and having non-Windows entities recognize that:
  Creating Cross-Certification between two root CA's within the same organization (one hierarchy is all SHA1 and the other is all SHA256) and distributing the CrossCA certificate is painless enough for Forest members because it gets published to
  AD and from their comes down to the Forest member certificates store (Trusted Intermediary).  But what is the best way to get non-Windows end entities to also recognize the CrossCA certificate?  The RFC (http://tools.ietf.org/html/rfc5280#section-4.2.2.1)
  states you can configure the AIA extension to point to a collection of certificates, but then that means (unless I am missing something) I need to modify the AIA extensions configuration on my SHA256 root CA to point to the PKCS7 container on my http location,
  then issue my SHA256 SubCA certificates to my subordinate CA's.  So this way when my SHA256 subordinate CA's issue end entity certificates to non-Windows entities the chain of trust will go back to my SHA1 root CA.
  Both hierarchies are 2-tier.
  End Entity cert from SHA256 Subordinate CA --> http location specifying the location of the SHA256 SubCA .crt --> http location specifying the location of the exported Cross-Certification certificate in PKCS7 format (which contains the
  SHA256 root CA certificate and the SHA1 root CA certificate).
  Does this seem like the correct configuration?  If so, how easy will it be to remove this configuration when the cutover is complete?  If this is all correct then I assume the only way to remove this configuration is to modify the AIA extension
  of the SHA256 root CA and then issue new SubCA certificates to my SHA256 subordinates.

  Elke,
  Thank you for the information.  I defintely have some other options to consider now.
  One odd thing I noticed in my lab is my setup appears to work differently than you described.  In my lab I have a crossCA certificate which was published automatically into AD when it was issued.  Since that has happened even when issuing
  new certificates to end entities that are aware of the new SHA256 CA's (and Trust them), all certificates still chain back to my SHA1 root CA.  They don't take the short route anymore.
  And because of the above behavior I ran a quick test:
  - I installed a Windows 7 machine and never joined it to AD (kept it in a workgroup)
  - I manually imported the SHA1 root CA certificate into its certificates store
  - Then I accessed a web site running on a Windows web server which had an SSL certificate from one of the new SHA256 Subordinate CA's (and was part of the domain so it trusted the new SHA256 CA's).
  The result was the Windows 7 machine trusted the certificate just fine.
  When I looked at the certificate through IE on that Windows 7 machine, it showed the SSL certificate chaining back to my SHA1 root CA which I manually imported earlier, so it was trusted.
  Perhaps this is where setting constraints in the policy.inf file come into play...not 100% sure.
  Anyway, for the reasons you pointed out to me and the fact that anchoring my SHA256 environment with a SHA1 CA isn't really recommended, I am going to explore some other ways to get this done.
  Thank you.

• App-V 5 over https for non-domain clients

  Hello, Is this scenario possible?

  Hi,
  here's how I have it set in my lab. Your mileage may vary, but hopefully this should give you all the different components of how I managed to get it to work, and allow you to try something similar.
  Firstly, my publishing server is: HTTPS://CSC-APPV5.CSC.local:8016
  I have an application published through the app-v console, with the package URL configured to be:
  HTTPS://CSC-APPV5.CSC.local/APPVSHARE/Notepadplusplusx86/notepadplusplusx86.appv
  This is published to the AD group CSC.local\notepadplusplus, of which the user CSC.local\appvuser is a member of.
  On my Windows 8 non domain joined computer, Press Start, type "credential manager", and click on this option under settings.
  Click on "Windows Credentials", then click "Add a Windows credential".
  It will ask you for the Internet or network address. Based on the information I stated earlier, I entered the address: CSC-APPV5.CSC.local
  for User name, I entered: CSC.local\appvuser
  and lastly for password I entered the current valid credentials for this user.
  To test this, I then browsed to the publishing server mentioned above, but found that it still prompted me for a password (but remembered the user ID I had specified), and that the app-v client would not sync through powershell.
  I then added http://csc-appv5.csc.local into this devices local intranet zone (im sure you can avoid this step by adjusting a various number of settings, this was just the first quick test I performed).
  Browsing to the publishingserver address now no longer prompted for a username/pw - correctly showing the application published to this user. I then performed a restart (unlikely to be required, but I just wanted to have a clean run from a user perspective),
  and straight away, there was my shortcut to the appv application, and running it resulted in the normal streaming you would expect.
  The one thing I will add is I was very particular around fully quilifying everything, to eliminate this as a potential issue, and would be one of the first places I would start if you are attempting to troubleshoot why you were not able to get this to work.

• Deliverables for non-Java clients

  I'm trying to write my first web service. My server code can be in Java but the client system cannot use Java anything. I'm looking at the Java web services tutorial provided by Sun and it seems to assume a Java client. Do I need to go elsewhere for a tutorial that will show me how to construct a web service that does not assume a Java client? I also won't be using the Sun ap server but tomcat, so I wonder if again that's a reason to not use the tutorial. Suggestions? Thanks.

  I'm trying to write my first web service. My server code can be in Java but the client system cannot use Java anything. I'm looking at the Java web services tutorial provided by Sun and it seems to assume a Java client. Do I need to go elsewhere for a tutorial that will show me how to construct a web service that does not assume a Java client? I also won't be using the Sun ap server but tomcat, so I wonder if again that's a reason to not use the tutorial. Suggestions? Thanks.

• 1240AG WPA2 and PSK for non radius clients

  does this device support this options?
  We want to move to WPA2 enterprise and use our radius server (windows IAS), but we want to hand out a key to non domain computers. We have production machines that arent on the domain for various reasons.
  2nd question, does the AP allow for creating a 2nd "Guest" wireless for visitors?
  thanks!

  Hi Shayne,
  The Cisco 1240 supports WPA2/AES.Yes, the can provide different security policys via different SSIDs. For example:
  SSID#1 - Corporate - WPA2/AES 802.1X
  SSID#2 - CorporatePSK - WPA2/AES PSK
  SSID#3 - Guest
  There is a good deal of configuration to make this happen. But yes this is supported..
  Here is a link how to configure SSIDs on a autonomous access points
  http://www.cisco.com/en/US/docs/wireless/access_point/12.3_7_JA/configuration/guide/s37ssid.html
  Please be so kind to rate helpful post!

• Non-ACC client for WSIT enabled services

  Hallo All,
  Can anyone tell me how I could develop a non-ACC java client for SSL enabled web service/Reliable Messaging enabled web services.
  As of now, I am able to access these services with clients deployed in ACC containers of Glassfish V2UR1.
  I read some thing about glassfish connectors, but did not get a clear picture. I don't believe that Glassfish doesn't have support for non-ACC clients.
  Thanks a lot in advance.

  Hallo All,
  Can anyone tell me how I could develop a non-ACC java client for SSL enabled web service/Reliable Messaging enabled web services.
  As of now, I am able to access these services with clients deployed in ACC containers of Glassfish V2UR1.
  I read some thing about glassfish connectors, but did not get a clear picture. I don't believe that Glassfish doesn't have support for non-ACC clients.
  Thanks a lot in advance.

• "SSO" for non-sap web application using SAPGUI to browse?

  I have a web application (non SAP) and the user base are also SAP users in an ABAP system.
  To strengthen the authentication in the web app, I wanted to implement SSO 
  authentication as we pity the users for having to remember so many strong pw's and I
  dont like LDAP based pw sync or other technology I dont understand, because then we are
  just yet another application with the same pw...
  We are having technical problems implementing SSO on the web app side, and are anyway a
  bit sceptical about the user admin / role admin assignment if we get it to work.
  So I have created a transaction in SAP which browses the web app and the intention is to
  send the SAP sy-uname as the web app user. We can control this using s_tcode, and
  an own auth object on the WAS side and a check on the session type before the connection is
  established. In this sense we are dependent on the SAP concept implemented, but even so:
  The role assignment is controlled in the web app itself -> so assume that I am not overly
  worried about unauthorized access to the web application, as they would not have any
  system role for it as their sy-uname does not exist. (Infact we can monitor this)
  The browser on the front end is the SAPGUI with html controls on the SAP side.
  I would be interested in knowing whether anyone else has experience with this approach, and
  whether there are any areas to be carefull of?
  I would also like to know whether this is a strategic error?
  Kind regards,
  Julius

  Hi Julius,
  well, if that web application would run on the same ABAP backend system then the solution described in <a href="http://service.sap.com/~iron/fm/011000358700000431401997E/0612670">SAP Note 612670</a> would be applicable:
  a so-called "Re-entrance ticket" (based on the "SAP logon ticket" SSO proceedings) is issued, transported via the SAPGUI connection and back to the system via the invoked HTML control.
  But for non-SAP web applications that does not help.
  In that case only X.509 client certificates can be used for SSO. Actually, the web application could then also be invoked directly (independent from the SAPGUI session). The user is authenticated based on the X.509 client certificate - and not based on the ABAP userID (of the SAPGUI session).
  Well, if you don't mind the effort you could also use the "SAP Logon Ticket evaluation library" (sapssoext, see <a href="http://service.sap.com/~iron/fm/011000358700000431401997E/0304450">SAP Note 304450</a>) to evalute the SAP logon ticket externally. You'll then need to have a "stub application" at the ABAP side that triggers the http redirect to your external web application. Not a nice solution but a possible one.
  In the future SAML browser artifacts would be an option (preferable to integrate non-SAP applications). But currently that's not available (for NWAS ABAP).
  Cheers, Wolfgang

• Memory Monitor API for web application

  Hello All,
  Does any one knows any API for monitoring memory of a certain web application ??
  Thanks in advance

  Are there any other ways to monitor jvm state besides JMX? I wonder if there is a specific API to monitor jvm's memory. JMX is the specific API used to create software that monitors the memory in the JRE.
  If you want to monitor memory of an application, and don't feel like writing a program to monitor memory, you can use the JConsole application that comes with the Java JDK.