AAA confusion - local username access
Hey all,
I am a little confused.
I have the following commands on my device:
username blah privilege 15 secret 5 blah!@#$%%
aaa new-model
aaa authentication login default group tacacs+ local
aaa authentication enable default group tacacs+ enable
aaa authorization config-commands
aaa authorization commands 0 default group tacacs+
aaa authorization commands 15 default group tacacs+ local
aaa accounting exec default start-stop group tacacs+
aaa accounting commands 0 default stop-only group tacacs+
aaa accounting commands 15 default start-stop group tacacs+
aaa accounting connection default start-stop group tacacs+
Everything works fine.
However when I bring down the TACACS server I am able to login into the device with the local username but it fails when I enter the enable command. How can I have access when in case of emergency that TACACS fails? I have researched online and have tried multiple commands. Is there anything I am missing? I do have an enable secret password configured as well. But don't even get a chance to enter. when entering "en" at > prompt:
% Authentication failed.
Thanks in advance for your help.
My testing has led to frustration.
Hi Geo,
First please give the fall back method for command 0.
aaa authorization commands 0 default group tacacs+
add local
aaa authorization commands 0 default group tacacs+ local
Make sure you are putting in right enable password, try to reset it and give it a shot.
If issue is there then get the output of debug tacacs and debug aaa authentication
Regards,
~JG
Do rate helpful posts
Similar Messages
-
ASDM Access and local username/PW
Ok, I happened upon this today and thought it was a bit weird. We have a pair of ASA5520 as our primary firewalls.
We are using EasyVPN,and the usernames authenticate via the local username / PW configured on the firewall. All of these usernames have Privilege 0, however, these usernames are able to log into the firewall via SSH, AND when I use one of them to log into ASDM, they can go in and make config changes. I don't like that.I'm sure you can see why... How do I make it so that only my level 15 priv username can get logged in via ASDM? I've looked into AAA command authorization, but I don't see how that would apply to ASDM access.
Firewall setup:
aaa authentication http console LOCAL
aaa authentication ssh console LOCAL
aaa authentication enable console LOCAL
username user password password priv 15
username user1 password password1 priv 0
username user2 password password2 priv 0
username user3 password password3 priv 0To achieve this you need to enable authorization.
aaa authorization command LOCAL
Let me know if you have any questions.
Regards,
~JG
Do rate helpful posts -
I have AAA running on my router and I can authenticate/authorize using the ACS server. I wanted test my config so I turned off the ACS server and tried logging in using the local username and password, I authenticate fine but then I get %Authentication failed. And then the username prompt comes up. This concerns me because I have to have a back door into my routers in case the ACS server goes down for whatever reason.
I am sorry it does say AUTHORIZATION FAILED. I am also posting my config.
Building configuration...
Current configuration : 1384 bytes
version 12.2
service timestamps debug uptime
service timestamps log uptime
service password-encryption
hostname BIZNESS
aaa new-model
aaa authentication login default group tacacs+ local
aaa authorization exec default group tacacs+ local
aaa authorization commands 5 default none
enable password xxx
username xxx password xxx
ip subnet-zero
call rsvp-sync
interface FastEthernet0/0
ip address 165.x.x.x 255.255.255.0
duplex auto
speed auto
interface Serial0/0
no ip address
shutdown
ip classless
no ip http server
menu ADMIN1 prompt ^CSELECT AN OPTION PUNK^C
menu ADMIN1 text 1 SHO IP INTERFACE BRIEF
menu ADMIN1 command 1 SHOW IP INTERFACE BRIEF
menu ADMIN1 text 2 SHOW INTERFACE FA0/0
menu ADMIN1 command 2 SHO INT FA0/0
menu ADMIN1 text 3 SHOW RUN INTERFACE FA0/0
menu ADMIN1 command 3 SHOW RUN INT FA0/0
menu ADMIN1 text 4 SHOW ARP
menu ADMIN1 command 4 SHOW ARP
menu ADMIN1 text 5 EXIT
menu ADMIN1 command 5 LOGOUT
tacacs-server host 165.110.30.15 key 7 00071A1507545A545C
tacacs-server directed-request
dial-peer cor custom
privilege exec level 5 show ip interface brief
privilege exec level 5 show interface fa0/0
privilege exec level 5 show show run interface fa0/0
privilege exec level 5 show show arp
line con 0
line aux 0
line vty 0 4
password xxx
end -
Ability to add secret password to local usernames 2511
We have a 2511 that I have been tasked with setting up as our access server. I was not comfortable using telnet and making it publicly accessible so I searched for an IOS that had the SSH feature.
Originally, the IOS version was 12.3 (c2500-is-l.123.3.bin). With this version, there was no SSH. However, I could assign a secret to local usernames (i.e. username jsmith privilege 15 SECRET 5 <&#(sSJ*((#*&@> )
Now that I have loaded the latest available version that has SSH (c2500-ik8os-l.122-29b.bin) I cannot assign secrets to the usernames. I can only assign passwords with the level 7 encryption. (i.e. username jsmith privilege 15 PASSWORD 7 <password> )
I was under the impression that anything above 12.2 had md5 password capabilities (the enable secret is encrypted at level 5, but I cannot do the same to my username accounts for local logins)
Question: Is there a version that has both? I am not turning something on where I should be? What is the name of the feature that enables local login username/password level 5 secret encryption?
Thank you for your attention.Hi Steven,
I apologize, as I do not have an IOS device in front of me to test this. However, does your device have the 'service password-encryption' command? If so, this should encrypt the passwords in your configuration using MD5.
Let me know if that works.
-Mike -
E4200v2: Local Management Access via Wireless *ALWAYS* Enabled
I just found a slightly unsettling bug in the E4200v2 (running the latest firmware 2.0.36 build 126507).
Administration > Local Management Access > Access via Wireless ... set to DISABLED.
HOWEVER, when I attempted to access the web interface on a handy iPAD I had absolutely no problem getting through to the web interface (after providing username and passsword).
Limiting access to wired clients seems like a simple a prudent measure ... which is why this option is there for the paranoid among us.
This seems like a black-and-white bug. Comments welcome. Fix in the next firmware revisio even more welcome.It was mentioned in another thread that disabling wireless management does indeed disable http access over port 80. However, if you're using https access--which uses port 443, that access is not blocked. So for anyone who wants to disable wireless management access, you need to enable management access via http only, and then disable the wireless access. That combination will indeed work.
I have confirmed this on my own router and can now only manage via wired connections over http.
Strange bug/oversight! -
Local MS Access file and SET COUNT
I have a small app that relies on a local MS Access database file for retrieving and storing information.
I've used the "Add new data source" wizard in Visual Studio and then I've bound a couple of richtextboxes to the one (1) table in the database file.
I use this code to let the user save updated text to the file, however it sometimes keeps throwing an error. The code is:
MyDataBindingSource.EndEdit()
CustomersTableAdapter.Update(CustomerdatabaseDataSet)
The error thrown, seemingly at random, but probably occuring when the users edit multiple values, is this: "An unhandled exception of type 'System.Data.DBConcurrencyException' occurred in System.Data.dll". According to http://support2.microsoft.com/kb/310375/en-us
I should set "NOCOUNT" to OFF instead of ON, but no amount of googling is able to tell me how to do that. I've been all over my code and the queries/code generated by the VS wizard, but I cant find any NOCOUNT setting anywhere.
Help, please?Hello again
Does this output help? I've also pasted the code I'm using below. Many thanks, really out in the deep end here
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\Microsoft.Net\assembly\GAC_32\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.dll', Skipped loading symbols. Module is optimized and the debugger option 'Just My Code' is enabled.
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.HostingProcess.Utilities\11.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.HostingProcess.Utilities.dll', Skipped loading symbols. Module is optimized
and the debugger option 'Just My Code' is enabled.
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\Microsoft.Net\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll', Skipped loading symbols. Module is optimized and the debugger option 'Just My Code'
is enabled.
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\Microsoft.Net\assembly\GAC_MSIL\System.Drawing\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll', Skipped loading symbols. Module is optimized and the debugger option 'Just My Code' is enabled.
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\Microsoft.Net\assembly\GAC_MSIL\System\v4.0_4.0.0.0__b77a5c561934e089\System.dll', Skipped loading symbols. Module is optimized and the debugger option 'Just My Code' is enabled.
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.HostingProcess.Utilities.Sync\11.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.HostingProcess.Utilities.Sync.dll', Skipped loading symbols. Module is
optimized and the debugger option 'Just My Code' is enabled.
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\assembly\GAC_MSIL\Microsoft.VisualStudio.Debugger.Runtime\11.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.Debugger.Runtime.dll', Skipped loading symbols. Module is optimized and the debugger
option 'Just My Code' is enabled.
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\Users\rbl\Documents\Visual Studio 2012\Projects\RuBe Ktj\RuBe Ktj\bin\Debug\RuBe Ktj.vshost.exe', Skipped loading symbols. Module is optimized and the debugger option 'Just My Code' is enabled.
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\Microsoft.Net\assembly\GAC_32\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll', Skipped loading symbols. Module is optimized and the debugger option 'Just My Code' is enabled.
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\Microsoft.Net\assembly\GAC_MSIL\System.Core\v4.0_4.0.0.0__b77a5c561934e089\System.Core.dll', Skipped loading symbols. Module is optimized and the debugger option 'Just My Code' is enabled.
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\Microsoft.Net\assembly\GAC_MSIL\System.Deployment\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll', Skipped loading symbols. Module is optimized and the debugger option 'Just My Code' is
enabled.
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\Microsoft.Net\assembly\GAC_MSIL\System.Xml\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.dll', Skipped loading symbols. Module is optimized and the debugger option 'Just My Code' is enabled.
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\Microsoft.Net\assembly\GAC_MSIL\System.Xml.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Linq.dll', Skipped loading symbols. Module is optimized and the debugger option 'Just My Code' is enabled.
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\Microsoft.Net\assembly\GAC_MSIL\System.Data.DataSetExtensions\v4.0_4.0.0.0__b77a5c561934e089\System.Data.DataSetExtensions.dll', Skipped loading symbols. Module is optimized and the debugger option
'Just My Code' is enabled.
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\Microsoft.Net\assembly\GAC_MSIL\Microsoft.VisualBasic\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll', Skipped loading symbols. Module is optimized and the debugger option 'Just My
Code' is enabled.
The thread 'vshost.NotifyLoad' (0x1674) has exited with code 0 (0x0).
The thread 'vshost.LoadReference' (0x1e80) has exited with code 0 (0x0).
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\Users\rbl\Documents\Visual Studio 2012\Projects\RuBe Ktj\RuBe Ktj\bin\Debug\RuBe Ktj.exe', Symbols loaded.
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\Microsoft.Net\assembly\GAC_MSIL\System.Runtime.Remoting\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll'
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\Microsoft.Net\assembly\GAC_MSIL\System.Numerics\v4.0_4.0.0.0__b77a5c561934e089\System.Numerics.dll', Skipped loading symbols. Module is optimized and the debugger option 'Just My Code' is enabled.
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\Microsoft.Net\assembly\GAC_MSIL\System.Windows.Forms.resources\v4.0_4.0.0.0_sv_b77a5c561934e089\System.Windows.Forms.resources.dll'
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\Microsoft.Net\assembly\GAC_MSIL\mscorlib.resources\v4.0_4.0.0.0_sv_b77a5c561934e089\mscorlib.resources.dll'
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\Microsoft.Net\assembly\GAC_MSIL\Accessibility\v4.0_4.0.0.0__b03f5f7f11d50a3a\Accessibility.dll'
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\Microsoft.Net\assembly\GAC_32\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll', Skipped loading symbols. Module is optimized and the debugger option 'Just My Code' is
enabled.
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\Microsoft.Net\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll', Skipped loading symbols. Module is optimized and the debugger option 'Just
My Code' is enabled.
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\Microsoft.Net\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll', Skipped loading symbols. Module is optimized and the debugger option
'Just My Code' is enabled.
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\Microsoft.Net\assembly\GAC_MSIL\System.Configuration\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Configuration.dll', Skipped loading symbols. Module is optimized and the debugger option 'Just My Code'
is enabled.
StackTrace: ' vid System.Environment.GetStackTrace(Exception e, Boolean needFileInfo)
vid System.Environment.get_StackTrace()
vid RuBe_Ktj.Form1.Form1_Load(Object sender, EventArgs e) i C:\Users\rbl\Documents\Visual Studio 2012\Projects\RuBe Ktj\RuBe Ktj\Form1.vb:rad 20
vid System.EventHandler.Invoke(Object sender, EventArgs e)
vid System.Windows.Forms.Form.OnLoad(EventArgs e)
vid System.Windows.Forms.Form.OnCreateControl()
vid System.Windows.Forms.Control.CreateControl(Boolean fIgnoreVisible)
vid System.Windows.Forms.Control.CreateControl()
vid System.Windows.Forms.Control.WmShowWindow(Message& m)
vid System.Windows.Forms.Control.WndProc(Message& m)
vid System.Windows.Forms.ScrollableControl.WndProc(Message& m)
vid System.Windows.Forms.ContainerControl.WndProc(Message& m)
vid System.Windows.Forms.Form.WmShowWindow(Message& m)
vid System.Windows.Forms.Form.WndProc(Message& m)
vid System.Windows.Forms.Control.ControlNativeWindow.OnMessage(Message& m)
vid System.Windows.Forms.Control.ControlNativeWindow.WndProc(Message& m)
vid System.Windows.Forms.NativeWindow.DebuggableCallback(IntPtr hWnd, Int32 msg, IntPtr wparam, IntPtr lparam)
vid System.Windows.Forms.SafeNativeMethods.ShowWindow(HandleRef hWnd, Int32 nCmdShow)
vid System.Windows.Forms.Control.SetVisibleCore(Boolean value)
vid System.Windows.Forms.Form.SetVisibleCore(Boolean value)
vid System.Windows.Forms.Control.set_Visible(Boolean value)
vid System.Windows.Forms.Application.ThreadContext.RunMessageLoopInner(Int32 reason, ApplicationContext context)
vid System.Windows.Forms.Application.ThreadContext.RunMessageLoop(Int32 reason, ApplicationContext context)
vid System.Windows.Forms.Application.Run(ApplicationContext context)
vid Microsoft.VisualBasic.ApplicationServices.WindowsFormsApplicationBase.OnRun()
vid Microsoft.VisualBasic.ApplicationServices.WindowsFormsApplicationBase.DoApplicationModel()
vid Microsoft.VisualBasic.ApplicationServices.WindowsFormsApplicationBase.Run(String[] commandLine)
vid RuBe_Ktj.My.MyApplication.Main(String[] Args) i 17d14f5c-a337-4978-8281-53493378c1071.vb:rad 81
vid System.AppDomain._nExecuteAssembly(RuntimeAssembly assembly, String[] args)
vid System.AppDomain.ExecuteAssembly(String assemblyFile, Evidence assemblySecurity, String[] args)
vid Microsoft.VisualStudio.HostingProcess.HostProc.RunUsersAssembly()
vid System.Threading.ThreadHelper.ThreadStart_Context(Object state)
vid System.Threading.ExecutionContext.RunInternal(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
vid System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
vid System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state)
vid System.Threading.ThreadHelper.ThreadStart()'
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\Microsoft.Net\assembly\GAC_MSIL\Microsoft.VisualBasic.resources\v4.0_10.0.0.0_sv_b03f5f7f11d50a3a\Microsoft.VisualBasic.resources.dll'
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\Microsoft.Net\assembly\GAC_MSIL\System.Data.resources\v4.0_4.0.0.0_sv_b77a5c561934e089\System.Data.resources.dll'
A first chance exception of type 'System.Data.DBConcurrencyException' occurred in System.Data.dll
'RuBe Ktj.vshost.exe' (Managed (v4.0.30319)): Loaded 'C:\windows\Microsoft.Net\assembly\GAC_MSIL\System.Transactions.resources\v4.0_4.0.0.0_sv_b77a5c561934e089\System.Transactions.resources.dll'
System.Transactions Critical: 0 : <TraceRecord xmlns="http://schemas.microsoft.com/2004/10/E2ETraceEvent/TraceRecord" Severity="Critical"><TraceIdentifier>http://msdn.microsoft.com/TraceCodes/System/ActivityTracing/2004/07/Reliability/Exception/Unhandled</TraceIdentifier><Description>Ohanterat
undantag</Description><AppDomain>RuBe Ktj.vshost.exe</AppDomain><Exception><ExceptionType>System.Data.DBConcurrencyException, System.Data, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089</ExceptionType><Message>Simultankörningsfel:
UpdateCommand inverkade på 0 i stället för 1 poster.</Message><StackTrace> vid System.Data.Common.DbDataAdapter.UpdatedRowStatusErrors(RowUpdatedEventArgs rowUpdatedEvent, BatchCommandInfo[] batchCommands, Int32 commandCount)
vid System.Data.Common.DbDataAdapter.UpdatedRowStatus(RowUpdatedEventArgs rowUpdatedEvent, BatchCommandInfo[] batchCommands, Int32 commandCount)
vid System.Data.Common.DbDataAdapter.Update(DataRow[] dataRows, DataTableMapping tableMapping)
vid System.Data.Common.DbDataAdapter.UpdateFromDataTable(DataTable dataTable, DataTableMapping tableMapping)
vid System.Data.Common.DbDataAdapter.Update(DataSet dataSet, String srcTable)
vid RuBe_Ktj.KunddatabasDataSetTableAdapters.KunderTableAdapter.Update(KunddatabasDataSet dataSet) i C:\Users\rbl\Documents\Visual Studio 2012\Projects\RuBe Ktj\RuBe Ktj\KunddatabasDataSet.Designer.vb:rad 1409
vid RuBe_Ktj.Form1.Button6_Click(Object sender, EventArgs e) i C:\Users\rbl\Documents\Visual Studio 2012\Projects\RuBe Ktj\RuBe Ktj\Form1.vb:rad 152
vid System.Windows.Forms.Control.OnClick(EventArgs e)
vid System.Windows.Forms.Button.OnClick(EventArgs e)
vid System.Windows.Forms.Button.OnMouseUp(MouseEventArgs mevent)
vid System.Windows.Forms.Control.WmMouseUp(Message&amp; m, MouseButtons button, Int32 clicks)
vid System.Windows.Forms.Control.WndProc(Message&amp; m)
vid System.Windows.Forms.ButtonBase.WndProc(Message&amp; m)
vid System.Windows.Forms.Button.WndProc(Message&amp; m)
vid System.Windows.Forms.Control.ControlNativeWindow.OnMessage(Message&amp; m)
vid System.Windows.Forms.Control.ControlNativeWindow.WndProc(Message&amp; m)
vid System.Windows.Forms.NativeWindow.DebuggableCallback(IntPtr hWnd, Int32 msg, IntPtr wparam, IntPtr lparam)
vid System.Windows.Forms.UnsafeNativeMethods.DispatchMessageW(MSG&amp; msg)
vid System.Windows.Forms.Application.ComponentManager.System.Windows.Forms.UnsafeNativeMethods.IMsoComponentManager.FPushMessageLoop(IntPtr dwComponentID, Int32 reason, Int32 pvLoopData)
vid System.Windows.Forms.Application.ThreadContext.RunMessageLoopInner(Int32 reason, ApplicationContext context)
vid System.Windows.Forms.Application.ThreadContext.RunMessageLoop(Int32 reason, ApplicationContext context)
vid System.Windows.Forms.Application.Run(ApplicationContext context)
vid Microsoft.VisualBasic.ApplicationServices.WindowsFormsApplicationBase.OnRun()
vid Microsoft.VisualBasic.ApplicationServices.WindowsFormsApplicationBase.DoApplicationModel()
vid Microsoft.VisualBasic.ApplicationServices.WindowsFormsApplicationBase.Run(String[] commandLine)
vid RuBe_Ktj.My.MyApplication.Main(String[] Args) i 17d14f5c-a337-4978-8281-53493378c1071.vb:rad 81
vid System.AppDomain._nExecuteAssembly(RuntimeAssembly assembly, String[] args)
vid System.AppDomain.ExecuteAssembly(String assemblyFile, Evidence assemblySecurity, String[] args)
vid Microsoft.VisualStudio.HostingProcess.HostProc.RunUsersAssembly()
vid System.Threading.ThreadHelper.ThreadStart_Context(Object state)
vid System.Threading.ExecutionContext.RunInternal(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
vid System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
vid System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state)
vid System.Threading.ThreadHelper.ThreadStart()</StackTrace><ExceptionString>System.Data.DBConcurrencyException: Simultankörningsfel: UpdateCommand inverkade på 0 i stället för 1 poster.
vid System.Data.Common.DbDataAdapter.UpdatedRowStatusErrors(RowUpdatedEventArgs rowUpdatedEvent, BatchCommandInfo[] batchCommands, Int32 commandCount)
vid System.Data.Common.DbDataAdapter.UpdatedRowStatus(RowUpdatedEventArgs rowUpdatedEvent, BatchCommandInfo[] batchCommands, Int32 commandCount)
vid System.Data.Common.DbDataAdapter.Update(DataRow[] dataRows, DataTableMapping tableMapping)
vid System.Data.Common.DbDataAdapter.UpdateFromDataTable(DataTable dataTable, DataTableMapping tableMapping)
vid System.Data.Common.DbDataAdapter.Update(DataSet dataSet, String srcTable)
vid RuBe_Ktj.KunddatabasDataSetTableAdapters.KunderTableAdapter.Update(KunddatabasDataSet dataSet) i C:\Users\rbl\Documents\Visual Studio 2012\Projects\RuBe Ktj\RuBe Ktj\KunddatabasDataSet.Designer.vb:rad 1409
vid RuBe_Ktj.Form1.Button6_Click(Object sender, EventArgs e) i C:\Users\rbl\Documents\Visual Studio 2012\Projects\RuBe Ktj\RuBe Ktj\Form1.vb:rad 152
vid System.Windows.Forms.Control.OnClick(EventArgs e)
vid System.Windows.Forms.Button.OnClick(EventArgs e)
vid System.Windows.Forms.Button.OnMouseUp(MouseEventArgs mevent)
vid System.Windows.Forms.Control.WmMouseUp(Message&amp; m, MouseButtons button, Int32 clicks)
vid System.Windows.Forms.Control.WndProc(Message&amp; m)
vid System.Windows.Forms.ButtonBase.WndProc(Message&amp; m)
vid System.Windows.Forms.Button.WndProc(Message&amp; m)
vid System.Windows.Forms.Control.ControlNativeWindow.OnMessage(Message&amp; m)
vid System.Windows.Forms.Control.ControlNativeWindow.WndProc(Message&amp; m)
vid System.Windows.Forms.NativeWindow.DebuggableCallback(IntPtr hWnd, Int32 msg, IntPtr wparam, IntPtr lparam)
vid System.Windows.Forms.UnsafeNativeMethods.DispatchMessageW(MSG&amp; msg)
vid System.Windows.Forms.Application.ComponentManager.System.Windows.Forms.UnsafeNativeMethods.IMsoComponentManager.FPushMessageLoop(IntPtr dwComponentID, Int32 reason, Int32 pvLoopData)
vid System.Windows.Forms.Application.ThreadContext.RunMessageLoopInner(Int32 reason, ApplicationContext context)
vid System.Windows.Forms.Application.ThreadContext.RunMessageLoop(Int32 reason, ApplicationContext context)
vid System.Windows.Forms.Application.Run(ApplicationContext context)
vid Microsoft.VisualBasic.ApplicationServices.WindowsFormsApplicationBase.OnRun()
vid Microsoft.VisualBasic.ApplicationServices.WindowsFormsApplicationBase.DoApplicationModel()
vid Microsoft.VisualBasic.ApplicationServices.WindowsFormsApplicationBase.Run(String[] commandLine)
vid RuBe_Ktj.My.MyApplication.Main(String[] Args) i 17d14f5c-a337-4978-8281-53493378c1071.vb:rad 81
vid System.AppDomain._nExecuteAssembly(RuntimeAssembly assembly, String[] args)
vid System.AppDomain.ExecuteAssembly(String assemblyFile, Evidence assemblySecurity, String[] args)
vid Microsoft.VisualStudio.HostingProcess.HostProc.RunUsersAssembly()
vid System.Threading.ThreadHelper.ThreadStart_Context(Object state)
vid System.Threading.ExecutionContext.RunInternal(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
vid System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx)
vid System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state)
vid System.Threading.ThreadHelper.ThreadStart()</ExceptionString></Exception></TraceRecord>
An unhandled exception of type 'System.Data.DBConcurrencyException' occurred in System.Data.dll
Additional information: Simultankörningsfel: UpdateCommand inverkade på 0 i stället för 1 poster.
The program '[7824] RuBe Ktj.vshost.exe: Managed (v4.0.30319)' has exited with code 0 (0x0).
Adding a new row:
Private Sub Button6_Click_1(sender As Object, e As EventArgs) Handles SkapanyrutinBtn.Click
Dim newrow As DataRow = KunddatabasDataSet.Tables("Kunder").NewRow()
Dim newrowname As Object = InputBox("Skriv in (kund)namn på den nya rutinen")
newrow("Kundnamn") = newrowname
If newrowname = "" Then
Exit Sub
End If
KunddatabasDataSet.Tables("Kunder").Rows.Add(newrow)
KunderBindingSource.EndEdit()
KunderTableAdapter.Update(KunddatabasDataSet)
End Sub
Attempting to save:
Private Sub Button6_Click(sender As Object, e As EventArgs) Handles SavechangedBtn.Click
KunderBindingSource.EndEdit()
KunderTableAdapter.Update(KunddatabasDataSet) ' <--- This is where the error is thrown!
End Sub -
Cisco ASA 5505 VPN help for local lan access.
Hi all,
I am very new to Cisco systems. Recently I was tasked to enable local lan access for one of my server. The problem is this. I have this server with 2 interfaces. One interface to my FTP server(192.168.2.3) and the other to the Cisco ASA(192.168.1.1). Whenever I connect the server to Cisco Anyconnect VPN, I am unable to access the FTP server anymore.
I googled and found out that the problem is because the metric level is 1 for Ciscoanyconnect network interface which causes all traffic to go through the Cisco VPN Interface. Another problem is I can't change the metric of the Cisco VPN Interface as whenever I reconnect to the VPN, the metric resets back to 1 again. I tried to follow some guides to configure split tunnel but my traffic is still going through the VPN connection.
Anyone can tell me what I am missing here? Sorry I am very new to Cisco systems. Spent about 5 days troubleshooting and I feel I am getting it soon. Anyone can guide me what else I am supposed to do?
What I did> Configuration>> Remote access VPN>> Network Client Access>> Group Policies>> Advanced>> Split Tunneling>> Uncheck Inherit and select "Exclude Network List below.>> Uncheck Network List and select Manage, Add 192.168.2.0/24 to permit.
Really appreciate if anyone can tell me what else I can do to ensure my server has access the my FTP Server after connecting to the VPN.
Thanks all!
Wen QiHi,
Try adding the following configuration
policy-map global_policy
class inspection_default
inspect pptp
And then try again.
I'm not 100% would you need to perhaps allow GRE through the firewall even after that. (Protocol 47)
- Jouni -
Vista Ultimate: Local Network Access Only (Wired and Wireless)
Alright, I am not very experienced working with Windows Vista, and I'm having serious trouble solving this problem. I've been searching for solutions for two days and not found anything that works.
The computer is a Compaq Presario A900 running Windows Vista Ultimate (Service Pack 2). My brother used the computer's wireless internet connection for four years without problems, but lost all internet access when he returned home a couple months ago. The
computer will connect to any network, but has the message "Unidentified Network - Access: Local Only".
The computer first had the problem trying to connect to the Internet through an iPhone's Wifi connection. It happened again on the wireless network at my home. I took the computer to work to test it with a wired connection and had the same result.
I originally thought this was only a wireless problem and completely uninstalled and reinstalled the Atheros wireless card drivers.
I have completely disabled the Windows Firewall and removed all Anti-Virus (Avira free was installed - Norton is not on the computer). I have tried Safe Mode with Networking, and it does not fix the problem.
I ran a Fix-It yesterday that was supposed to fix specific registry errors, but that did not solve the problem either.
I also found a solution on this website that involved enabling sharing. One user said it fixed the problem, but it did not solve it for me.
The only thing I am certain of is that this cannot be a problem with the router. All three places I have connected have various other computers connected constantly: The iPhone regularly connects a different Windows Vista-powered laptop, Windows XP Desktop,
and Windows 7 netbook to the Internet. My wireless router successully connects a Windows XP Desktop, Windows 7 laptop, and Macbook. Obviously, the wired connection at work successfully connects over a dozen computers.
I'm out of ideas on this one...thanks.Hi,
I've been having a similar problem; am not able to connect via wifi at our new home, but am able to connect easily at an internet cafe. Obviously, I'd like the convenience of getting connected at home! :) Getting "unidentified networK"
and local only access. Also had the same problem with the yellow ethernet cable & LAN, but finally found a partial fix online somehow so am at home using the internet now. But it is still a PITA, because every time I step away to take
a break from the computer, it goes to "sleep" and loses the connection, so I have to do a restart to get the internet connection back. And it would be much nicer to get the Wifi problem fixed, so I can move around the house to a more comfy spot rather
than being shackled in the corner by the yellow cable! :D
I will attach a screenshot of the ipconfig as suggested above, but am not all that savvy, so would appreciate step-by-step instruction how to solve this problem. I've tried a lot of suggestions, but nothing has worked yet... hoping someone here can help. Thanks
in advance! :)
oops! edit to add: grrrr, it wouldn't let me include the screenshot unless I verify my account, which I have not figured out how to do yet... another hurdle! -
Transparent Tunneling and Local Lan Access via VPN Client
Remote users using Cisco VPN 4.2 connect successfully to a Cisco Pix 515 (ver. 6.3). The client is configured to allow Transparent Tunneling and Local Lan access, but once connected to the Pix, these two options are disabled. What configuration changes are required on the Pix to enable these options? Any assistance will be greatly appreciated.
Mike BowyerHi Mike,
"Transparent Tunneling" and "Local Lan Access" are two different things. "Transparent Tunneling" is dealing with establishing an IPSec Tunnel even if a NAT device is between your client and the VPN-Headend-Device. "Local LAN Access" is dealing with access to devices in the LAN your VPN-Client-Device is connected to.
What do you mean exactly with "disabled once the connection is made" ?
You can check the local LAN Access by having a look at the Route-Table of the VPN-Client:
Right Click the yellow VPN-lock Icon in System-Tray while the VPN-Connection is active and select "Statistics ...". Have a look at the second register page "route details".
Are any local LAN routes displayed when your are connected ?
And - always remember two important restrictions the Online Help of the VPN-Client is mentioning:
1: This feature works only on one NIC card, the same NIC card as the tunnel.
2: While connected, you cannot print or browse the local LAN by name; when disconnected, you can print and browse by name.
Carsten
PS: Removing Split Tunnel won't enable local LAN access as all traffic would be sent into the IPSec tunnel. -
3750X Prompts for Device/Enable Password Instead of Local Username/Password
I've got two 3750X switches that were built from a fairly basic template from my existing 3750/3560 switches. However, these new switches ONLY prompt for the device/enable passwords instead of the configured local username/password when connecting by console/telnet/ssh. Here's the config that I think is relevant, sans password strings. Only real difference is that the new switches are running an IOS 15.2 build, the 3750 switches are running 12.4, and the 3560 is currently running 15.0 (pending an update).
enable secret 5 string
username Administrator privilege 15 secret 5 string
line con 0
password 7 string
login local
line vty 0 4
password 7 string
login local
length 0
line vty 5 15
password 7 string
login
length 0
Any way to correct this?
Thanks!usually you need "login local" under all the vty lines in order to authenticate locally unless you use ACS server for authentication.
HTH -
WRV200 can be administered wireless in spite of Local Remote Access DISABLED.
I have a WRV200 with Local Remote Access disabled (HTTPS= Disable and Allow Wireless Web Access= Disable).
When I go and connect wireless to the router, I still can access the configuration in wireless mode.
What do I need to do such as to not allow the router to be administered wireless.
Message Edited by RQ on 05-17-2008 02:49 PMThe main thing to do is to stop using "admin" for your router password. Instead, put a strong password on the router, then don't tell anyone the password. Then, no one will be able to access the router's setup pages except you.
By strong password, I mean a password with 15 or more random characters, including capital letters, small letters, and digits.
Write down your password and lock it in a file cabinet. After the router has been setup, you will only need the password a few times a year.
Message Edited by toomanydonuts on 05-18-2008 06:34 AM -
Need to provide local administrator access without domain administrator rights
Hi All,
I need to provide local admin access to one account in windows environment without providing domain administrator rights.
Windows 2008 DC. Desktops : windows 7
So that we can use this account to install agents like SCCM\SCOM in all servers & desktops.
Need suggestions.Hi,
I agree with Senne, in addition, we can also use net command to perform local group management.
More information for you:
Add a member to a local group
http://technet.microsoft.com/en-us/library/cc772524.aspx
How to Make a Domain User the Local Administrator for all PCs
http://social.technet.microsoft.com/wiki/contents/articles/7833.how-to-make-a-domain-user-the-local-administrator-for-all-pcs.aspx
Best Regards,
Amy
Please remember to mark the replies as answers if they help and un-mark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact [email protected] -
Saving Opened attachments in a secure environment (no local drive access)
We are evaluating Windows 7 and Office 2010 in a secure environment and have a strange issue when saving opened Office attachments from Outlook 2010.
If an Office (Word, Excel or Powerpoint) file is opened from a received email within Outlook 2010 and a user then attempts to save, they are presented with a restriction error message as below:
This operation has been cancelled due to restrictions in effect on this computer. Please contact your system administrator.
Upon clicking OK, they are then presented with a Save As dialogue box in the correct location (i.e. their redirected Home Drive location on a network share).
We block any access to the C:\ drive (or any local drives other than the optical drive) and the users have a roaming non-cached profile.
The OutlookSecureTempFolder value in the registry is C:\Users\%username%\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Outlook\RANDOMSTRING\
I tried altering this to a network location which I knew the user would have write access over, but Outlook just overwrote my custom value with a new one of its own.
I ran ProcMon and determined that the machine is getting ACCESS_DENIED when trying to create files in that location.
Any ideas?I've the same problem too.
to have more than one approuved locations displayed, you have to enable this policy too:
Places Bar Locations
the office 2010 GPO.
Specify the same locations you have approuved in the other GPO
click User
Configuration, click Administrative
Templates, click Microsoft
Office 2010, double-click File
Open/Save dialog box, and then click Places
Bar Locations.
Problem solved for me.
Thanks to all of you. I've spend a lot of time on this problem. -
Aaa authentication for https access
I have several Catalyst 3750 switches that I'm running Tacacs on. I set the switch up to be an http server so that some of our admins could administer the switches through the web gui. Is it possible to login to the web console via your Tacacs login (in our case, our Windows username/password)? I found the "ip http authentication aaa" command but this doesn't seem to do it. I just don't want to share the local passwords if I don't have to.
Thanks in advance,
EricMy experience of the web interface is that it uses the local password on the device and not the aaa authentication IDs and passwords.
HTH
Rick -
ACS AAA and LOCAL AAA database...
Hello,
We have implimented an 5520 device and configured it for ACS successfully. I want to also have a local database with a few accounts in the event our ACS server went down. I am having trouble finding documentation for the syntax I need to enter on this 5520 device configuration so I can have redundacy for AAA...can some help with this? TIA, GaryHi ,
Check this example
aaa-server SERVER protocol tacacs+
aaa-server SERVER host 1.1.1.1
key $har3dK3y
This command applies the server group to the vty or
console lines:
==========
aaa authentication ssh console SERVER LOCAL <---
For SSH sessions
aaa authentication serial console SERVER LOCAL
<--- For console access
Hope that helps
Regards,
JG~
Please rate helpful posts
Maybe you are looking for
-
End of File reached error message when running report
I am running this report in two different places. On my own machine it seems to run fine however when I run it for a client on their server I get a message saying end of file reached and the report won't come up. Any suggestions?
-
JButton Background in 1.4.2
Anyone else noticed that when you set the background of a JButton with Java version 1.4.2 and the L&F of Windows (now XP look and feel) that only the edges of the buttons background are colored? This seems like a bug to me. Is there a way to work aro
-
EXCEPTION_DURING_EXECUTE runtime exception in mssage mapping transformatio
Hi, I am facing a problem in RFC-XI-SOAP synchronous scenario. In SXMB_Moni i see the response <?xml version="1.0" encoding="UTF-8" standalone="yes" ?> - <!-- Request Message Mapping --> - <updateResponse xmlns="http://hemxwebui5-d:8580/ematrix/serv
-
ITune does not allow to change file names
greetings bros' since a couple days ago I notice that my iT does not allow me to edit the files and sometimes neither recognize new files or folders. Any clue why this?? muchas gracias LAB
-
How do I maketotally custom e-mails that everyone can see without downloadi
I run a website made on iweb. It is http://Ostyn-Newman.com I send out periodic annoucements to several hundred clients announcing new products on the site. I currently use IPhoto to process photos and send them via e-mail from that application. They