Access control not enabled

Similar Messages

• "Assign access control" not appearing under Essbase in shared services

  Hi Everyone,
  Can anyone point out the reason behind this? This is leading to all sorts of problems. Configuration is as follows:
  App Server: Foundation, EAS, Planning, Reporting, Web Analysis, Workspace on Tomcat
  DB Server: Essbase and SQL Server
  Essbase is on Shared Services mode.
  This is actually very urgent. Would be grateful for any help.
  Thanks,
  Sayantan

  This has been posted in the essbase forum > "Assign access control" not appearing under Essbase in shared services
  Cheers
  John
  http://john-goodwin.blogspot.com/

• Home Hub 3 Access Control not working

  Not sure if anyone can help with this, but here goes!
  I have access control enabled on my HomeHub 3 which should stop my daughter from using the Internet between 9:00pm and 3:00pm - it seems to be working in as much as she isn't able to access the internet from her laptop from the time she gets up until 3:00pm, but it doesn't stop her using the internet at 9:00pm, in fact she can still quite happily access the internet up until 10:30 or even later.
  I have tried restarting the hub, switching access control off and back on and delting and re-instating the device block but none of these seem to work properly, so any advice would be gratefully received.
  I'm also having problems with wireless connectivity, but I've put that in a different post as I think it probably needs different expertise

  It could be because the time on the hub is an hour slow because it has not updated to BST. This is a known problem which BT were going to sort out within a few days! See here and elsewhere in these forums: http://community.bt.com/t5/Other-BB-Queries/Clocks-Forward/td-p/448429.
  Pending resolution of the problem, putting the Access Control times back an hour might do it. (It has been reported that the alternative of setting the time manually can result in the hub not keeping time very well.)  
  You can click the white star next to this message if you think it was helpful.

• Airport time access control not working for iPhones-

  Hi,
  I use a 3rd generation Airport Extreme base for my WiFi hme network.
  For parental control, I'd like to allow one iPhone and iMac to be connected only for some hours of the day.
  So I have activated the timed access control and entered the relevant MAC addresses and the time to be connected.
  It seems that the iMac is well restricted as it should, but the iPhone has no limitation…
  Why is it not effective for the iPhone ? The iPhone MAC address (Wi-Fi Address) doen't work in this case ?
  (I have Lion up to date)
  Thanks for your help
  Eric

  Sorry, my fault:
  I wrote the Bluetooth adress instead of the WiFi address…
  It works perfectly now for me

• Access Control not working as expected after upgrade to 7.5.2

  I have a Time Capsule set up with mac address access control on the main network plus a guest network. After the upgrade to 7.5.2, it seems that the access control is applying to my guest network and the main network is allowing all devices on it. Has anyone else seen anything like this and/or know what to do about it?

  I am also seeing this behavior. The workaround is to add all the guest network devices to your ACL. But this is a regression - there isn't much point in having a guest network that requires updating the base station each time a new device joins.

• SCSM View access control not working

  I have 15 odd each SCSM Incident and SR roles, one for each support group.  Each role contains an AD group, populated with users.  No OTB roles contain any users other than the admin role.
  Each role is granted access to only the views for SR and IM that they need. 
  All the views are stored in one MP, that is one top level folder with all the views inside it.  So when they expand the folder, they should only see the views assigned to the roles of which they are a member.
  However, more and more often, Users are opening their console to find that they see all the views, for all roles.
  Sometime if they shut down the console, and restart it, the views will return to normal.
  But that is starting not to work anymore as well.  And its very odd that it will happen to one user in the role, but not the other users.
  Any ideas?
  SCSM2012 R2
  Joshua Fuente

  Never mind, I did find that they added a group to an OTB role... Removed, Fixed.  Created a new role, and removed the view access....
  Joshua Fuente

• MAC address access control

  Why does my airport express/time capsule show more wireless clients than I've authorized via the MAC address access control?

  Sorry, but I have to re-awaken this old thread.
  1. I recently purchased a new iPad.
  2. With a) a hidden SSID, b) a MAC address-based access control list and c) a WPA2 secured network, I am assuming that no new device should be able to access my WiFi network.
  3. When I got home with the new iPad on Friday evening, and started it, it was online without even asking me whether to connect, or what the WPA2 key was.
  I find this strange.
  Additional information:
  4. I also have an iPhone 4S.
  5. I used the personal hotspot feature of the iPhone 4S to connect the WiFi-only iPad to the Internet while on the road.
  6. That personal hotspot feature was still enabled when I got home with the iPhone and the new iPad.
  7. Home network setup:
  7a) Fritz.Box 7270 as DSL modem/router (WiFi disabled)
  7b) Apple Airport Extreme (v 7.6.4) connected via LAN to DSL router, (in bridge mode, create wireless network), Access control on this base station.
  7c) Apple Airport Express (v 7.6.4) connecte to Airport Extreme via WiFi (extend wireless network), Access control not an option on this base station.
  8. Native IPv6 enabled on all devices (and provided by ISP).
  Any suggestion and help is highly appreciated.

• Got ORA-00439:  feature not enabled: Fine-grained access control

  Trying to implement VPD, I've got ORA-00439 when implementing Fine-grained access control. Will this be available on XE?

  Hi,
  lewisc: Yes. I mean "persistent package variables" and I know this feature is available in any version of Oracle. But, I don't know how It works whith HTMLDB when using "HTMLDB Authentication Scheme".
  i.e.: when I connect to an HTMLDB Application, I can see a new session on
  V$SESSION with username=ANONYMOUS with SID=xxx and SERIAL#=yyyy.
  1.-Will HTMLDB use the same session until User Press "logout" link?
  2.-Will this particular Database session be exclusive or shared for any HTMLDB sessions?
  3.-If I Logout from HTMLDB App, then Login again, Will HTMLDB reuse the same session?
  or will create a new one?
  -About VPD.
  VPD is a Personal Edition feature too. All features of EE is
  available on Personal Edition except RAC and a few others
  specials features.
  After all:
  Maybe with these examples you can see my question.
  CREATE OR REPLACE VIEW myviewname
  AS
  SELECT *
  FROM mytablename
  WHERE somecolumn = V('Fxxx_HTMLDB_ITEM_NAME')
  CREATE OR REPLACE TRIGGER mytriggername
  BEFORE
  INSERT
  ON mytablename
  FOR EACH ROW
  BEGIN
  :new.mycolumn1 := V('Fxxx_HTMLDB_ITEM_NAME');
  END;
  Can these two examples work? If so, maybe there is something wrong in my applications.
  Thanks GaryM for your issues and I already know this can be done that way

• Issue while enabling Access Control for a Coherence server node

  Hi
  Im trying to enable access control for a Coherence server node, using the default Keystore login method shipped with Coherence. When i start the server i get the error "java.security.AccessControlException: Unsufficient rights to perform the operation". Please see below for the sequence of steps I've followed to enable access control. I just need to be enable Authentication (not authorization) at this stage
  1. I have added the following entry in the Coherence Operational override file
  <security-config>
            <enabled system-property="tangosol.coherence.security">true</enabled>
            <login-module-name>Coherence</login-module-name>
            <access-controller>
                 <class-name>com.tangosol.net.security.DefaultController</class-name>
                 <init-params>
                      <init-param id="1">
                           <param-type>java.io.File</param-type>
                           <param-value>keystore.jks</param-value>
                      </init-param>
                      <init-param id="2">
                           <param-type>java.io.File</param-type>
                           <param-value>permissions.xml</param-value>
                      </init-param>
                 </init-params>
            </access-controller>
            <callback-handler>
                 <class-name>com.sun.security.auth.callback.TextCallbackHandler</class-name>
            </callback-handler>
       </security-config>
  2. The following is the entry in the Permissions.xml
  <?xml version='1.0'?>
  <permissions>
  <grant>
  <principal>
  <class>javax.security.auth.x500.X500Principal</class>
  <name>CN=admin,OU=Coherence,O=Oracle,C=US</name>
  </principal>
  <permission>
  <target>*</target>
  <action>all</action>
  </permission>
  </grant>
  </permissions>
  3. The following is the content of the Login configuration file "Coherence_Login.conf"
  Coherence {
  com.tangosol.security.KeystoreLogin required
  keyStorePath="keystore.jks";
  4. The following is the command line tag for starting the server
  java -server -showversion -Djava.security.auth.login.config=Coherence_Login.conf -Xms%memory% -Xmx%memory% -Dtangosol.coherence.cacheconfig=PROXY-cache-config.xml -Dtangosol.coherence.override=FOL-coherence-override.xml -Dcom.sun.management.jmxremote.port=6789 -Dcom.sun.management.jmxremote.authenticate=false -Dtangosol.coherence.security=true -cp "%coherence_home%\lib\coherence.jar" com.tangosol.net.DefaultCacheServer %1
  Following is the output on the Console when running the command. It asks for a username and password for the JKS store (If i provide the wrong password, it gives a different error, which shows that it is able to authenticate aganst the Keystore). After i put in the password, it throws the error as shown below "java.security.AccessControlException: Unsufficient rights to perform the operation"
  D:\Coherence\FOL_CacheServer>fol-cache-server
  java version "1.6.0_20"
  Java(TM) SE Runtime Environment (build 1.6.0_20-b02)
  Java HotSpot(TM) 64-Bit Server VM (build 16.3-b01, mixed mode)
  Username:admin
  Password:
  Exception in thread "main" java.security.AccessControlException: Unsufficient ri
  ghts to perform the operation
  at com.tangosol.net.security.DefaultController.checkPermission(DefaultCo
  ntroller.java:153)
  at com.tangosol.coherence.component.net.security.Standard.checkPermissio
  n(Standard.CDB:32)
  at com.tangosol.coherence.component.net.Security.checkPermission(Securit
  y.CDB:11)
  at com.tangosol.coherence.component.util.SafeCluster.ensureService(SafeC
  luster.CDB:6)
  at com.tangosol.coherence.component.net.management.Connector.startServic
  e(Connector.CDB:20)
  at com.tangosol.coherence.component.net.management.gateway.Remote.regist
  erLocalModel(Remote.CDB:10)
  at com.tangosol.coherence.component.net.management.gateway.Local.registe
  rLocalModel(Local.CDB:10)
  at com.tangosol.coherence.component.net.management.Gateway.register(Gate
  way.CDB:6)
  at com.tangosol.coherence.component.util.SafeCluster.ensureRunningCluste
  r(SafeCluster.CDB:46)
  at com.tangosol.coherence.component.util.SafeCluster.start(SafeCluster.C
  DB:2)
  at com.tangosol.net.CacheFactory.ensureCluster(CacheFactory.java:998)
  at com.tangosol.net.DefaultConfigurableCacheFactory.ensureServiceInterna
  l(DefaultConfigurableCacheFactory.java:923)
  at com.tangosol.net.DefaultConfigurableCacheFactory.ensureService(Defaul
  tConfigurableCacheFactory.java:892)
  at com.tangosol.net.DefaultCacheServer.startServices(DefaultCacheServer.
  java:81)
  at com.tangosol.net.DefaultCacheServer.intialStartServices(DefaultCacheS
  erver.java:250)
  at com.tangosol.net.DefaultCacheServer.startAndMonitor(DefaultCacheServe
  r.java:55)
  at com.tangosol.net.DefaultCacheServer.main(DefaultCacheServer.java:197)

  Did you create the weblogic domain with the Oracle Webcenter Spaces option selected? This should install the relevant libraries into the domain that you will need to deploy your application. My experience is based off WC 11.1.1.0. If you haven't, you can extend your domain by re-running the Domain Config Wizard again (WLS_HOME/common/bin/config.sh)
  Cappa

• "Access Control - Do Not Inherit" Grayed out when setting up a backup on Server 2008 R2 when trying to use remote NAS

  I see one response here:
  http://social.technet.microsoft.com/Forums/en-US/c99eead0-e2fc-4c83-8cb2-959d03512667/server-2008-r2-dc-backup-greys-out-do-not-inherit-option-for-file-share-backup
  But it makes no sense to me. Running that command doesn't do anything.
  How do I make the box stop graying out when setting up a backup with the GUI interface? This should be really simple I would think and for some reason the backup utility is graying out the "Do Not Inherit" option so I can backup to the NAS
  device that has access control enabled in order to backup to the NAS.
  Thanks in advance!

  Hi,
  From this article, it mentioned that it is by design that we cannot choose "do not inherit" in backup schedule when backup target is a remote shared folder.
  Checklist: Schedule Automatic Backups
  http://technet.microsoft.com/en-us/library/cc732540.aspx
  If you use a remote shared folder, make sure that the folder is available, that you have write access to the folder, and that you are a member of the Administrators group or Backup Operators group on the computer hosting the folder. Each time you create
  a backup, it will overwrite the older backups so that you will only have one backup at a time.
  The backup will inherit the access control list (ACL) permissions of the folder.
  For the account it required, as mentioned above, it should be "a member of Admin group or Backup Operators group, and it should have write permission on target folder".
  Also map a network folder as a drive will not help show the mapped drive letter in backup destination. It is still a remote shared folder.
  TechNet Subscriber Support in forum |If you have any feedback on our support, please contact [email protected]

• "Enable Access Control" for shared directory is grayed out

  For shared directories in WorkGroup Manager, the checkbox "Enable Access Control" is grayed out. I want to enable ACL on a directory I have moved from another volume. The "Enable disk quotas" is also grayed out.
  How do I turn on Enable ACL?
  Dennis

  ACLs are enabled at the volume level. In the Sharing panel of WGM, you need to click the "All" tab so that you see more than just your sharepoints. Select the disk volume upon which your directory is located and then the "Enable Access Control" option should become available to you.
  Note that enabling the ACLs doesn't apply them. Your directory will continue to use POSIX permissions until you specifically apply ACLs to it.
  Xserve G5   Mac OS X (10.4.5)  

• One website says java not enabled , yet it is in the control panel

  When trying to access a puzzle site, it states that java is not enabled.
  Ihave enabled java for the firefox browser in my control panel but am still denied website access. Now what?

  The message is "Sorry, you must have javascript enabled to view this site."
  Despite similar names, Java and javascript are completely unrelated. Unfortunately, even with javascript enabled on my system, I get this message when using Safari, on 10.4.10.
  I don't know if the bug is in Safari or the website itself, but a simple solution is to install Firefox. Having a second browser installed is a handy thing for situations like this.
  gopednation.com works with Firefox.

• I am trying to allow guests on windows to connect to shares on my Lion server but it keeps asking for a password for guest. I have allow guest users to access this share enabled but it still does not work.

  I am trying to allow guests on windows to connect to shares on my Lion server but it keeps asking for a password for guest. I have allow guest users to access this share enabled but it still does not work.

  Ditto. Guest accounts shouldn't have a password. No way to enter one in System Prefs...

• Access control exception only on Linux/Debian not on Windows!?

  We have a rmi server application with a webstart rmi swing client that we have been running successfully on Windows. The client is downloaded and running without any problems on Windows platforms (W2003, Win2K, WinXP). The client webstart jar is signed and all permissions is set in the jnlp file.
  As soon as we setup a server on linux/debian sarge we get these access control exceptions when the server tries to send events back to the client. It complains on
  file permssions not being set on the server jar file and the strange thing is that the path separator is backslash on linux?
  I've tried the following:
  1) java.policy. Added All permssions to the server jar file and/or bin the folder.
  2) Running without any security manager, i.e., System.setSecurityManager(null)
  3) Explicitly setting the policy on the server. Policy.setPolicy(...)
  4) Explicitly setting a policy on the client. URL policyUrl = Thread.currentThread().getContextClassLoader().getResource("server.policy");
  5) Building the server and client on debian
  I'm at my wits end... I've searched these forums and it seems that this is might be a common problem but I've not found a solution yet.
  Our system works 100% on Windows without any problems, it's only on linux/debian that we get these access control problems.
  2005-sep-19 09:39:19 se.xxx.xxx.admin.AdminManager change
  ERROR: java.security.AccessControlException: access denied (java.io.FilePermission \\usr\local\XXX\bin\server.jar read)
  java.security.AccessControlContext.checkPermission(Unknown Source)
  java.security.AccessController.checkPermission(Unknown Source)
  java.lang.SecurityManager.checkPermission(Unknown Source)
  java.lang.SecurityManager.checkRead(Unknown Source)
  java.io.File.exists(Unknown Source)
  sun.net.www.protocol.file.Handler.openConnection(Unknown Source)
  sun.net.www.protocol.file.Handler.openConnection(Unknown Source)
  java.net.URL.openConnection(Unknown Source)
  sun.rmi.server.LoaderHandler.addPermissionsForURLs(Unknown Source)
  sun.rmi.server.LoaderHandler.access$300(Unknown Source)
  sun.rmi.server.LoaderHandler$Loader.<init>(Unknown Source)
  sun.rmi.server.LoaderHandler$Loader.<init>(Unknown Source)
  sun.rmi.server.LoaderHandler$1.run(Unknown Source)
  java.security.AccessController.doPrivileged(Native Method)
  sun.rmi.server.LoaderHandler.lookupLoader(Unknown Source)
  sun.rmi.server.LoaderHandler.loadClass(Unknown Source)
  sun.rmi.server.LoaderHandler.loadClass(Unknown Source)
  java.rmi.server.RMIClassLoader$2.loadClass(Unknown Source)
  java.rmi.server.RMIClassLoader.loadClass(Unknown Source)
  sun.rmi.server.MarshalInputStream.resolveClass(Unknown Source)
  java.io.ObjectInputStream.readNonProxyDesc(Unknown Source)
  java.io.ObjectInputStream.readClassDesc(Unknown Source)
  java.io.ObjectInputStream.readOrdinaryObject(Unknown Source)
  java.io.ObjectInputStream.readObject0(Unknown Source)
  java.io.ObjectInputStream.readObject(Unknown Source)
  sun.rmi.server.UnicastRef.unmarshalValue(Unknown Source)
  sun.rmi.server.UnicastServerRef.dispatch(Unknown Source)
  sun.rmi.transport.Transport$1.run(Unknown Source)
  java.security.AccessController.doPrivileged(Native Method)
  sun.rmi.transport.Transport.serviceCall(Unknown Source)
  sun.rmi.transport.tcp.TCPTransport.handleMessages(Unknown Source)
  sun.rmi.transport.tcp.TCPTransport$ConnectionHandler.run(Unknown Source)
  java.lang.Thread.run(Unknown Source)
  sun.rmi.transport.StreamRemoteCall.exceptionReceivedFromServer(Unknown Source)
  sun.rmi.transport.StreamRemoteCall.executeCall(Unknown Source)
  sun.rmi.server.UnicastRef.invoke(Unknown Source)
  se.xxx.xxx.client.XXXApplication_Stub.notify(Unknown Source)
  )

  I have two suggestions. The first is that you didn't indicate the permissions of the file and the directories above it along with the user you're running the program as. In Unix it is easier to get an access issue as you're probably not running as root. In a traditional Windows environment everything runs with admin permission allowing access to anything. While the error comes from the security manager it has nothing to do with traditional J2SE security - it may be an O/S level thing.
  But the second suggestion touches on the other question you have - why is this showing up as backslashes? Is there perhaps an issue with the JNLP file? Is there any code that should be using System.getProperty( "file.separator") and is instead just using the backslash?

• Link does not work for-End-of-Sale and End-of-Life Announcement for the Cisco Secure Access Control System 5.4

  Link does not work for
  End-of-Sale and End-of-Life Announcement for the Cisco Secure Access Control System 5.4
  How do we get Cisco to fix?
  see attachment

  Give it a couple of days - it looks like they just sent out the notification before the notice was published on the public page.
  Once the ACS 5.4 EoS/EoL notice is published you should see it linked from this page.