ACS external database question

Similar Messages

• ACS external database issue

  Hi
  I have the following issue, user exists on both the ACS and token server authenication is set to external database with no unknown user policy as the user is known to the ACS! this fails authenication error message is CS user unknown... Now if the unknown user policy is set to the external database the authenication works fine this is on 3.3. I have checked for bugs to no avail.
  Any assistance would be good...
  Thanks MJ

  Hi JG
  Many thanks for your response, it is configured this way due the documentation below:
  Known Users -Users explicitly added, either manually or automatically, into the CiscoSecureACS database.
  These are users added through User Setup in the HTML interface, by the RDBMS Synchronization feature, by the Database Replication feature, or by the CSUtil.exe utility. For more information about CSUtil.exe, see "CSUtil Database Utility".
  CiscoSecureACS attempts to authenticate a known user with the single database that the user is associated with. If the user database is the CiscoSecure user database and the user does not represent a Voice-over-IP (VoIP) user account, a password is required for the user. If the user database is an external user database or if the user represents a VoIP user account, CiscoSecureACS does not have to store a user password in the CiscoSecure user database.
  This is from the following link....
  http://www.cisco.com/univercd/cc/td/doc/product/access/acs_soft/csacs4nt/acs32/user/qu.htm
  Many thanks MJ

• ACS : external database config. (AD)

  Hello,
  I installed the last version of Cisco ACS 4.0 and I have a problem with the "Windows database configuration". I want to authenticate users on an active directory, but when I want to configure it I have an error message:
  "An error has occured while processing the Authen DLL
  Default Group Page because of an internal error ..."
  I tried to find why I have this error but until now I have nothing that can help me to solve this issue.
  Who can help me?
  Thanks in advance for any help.
  Rui

  The dll should be logging an error message into the csadmin service log
  CSAdmin/Logs/admn.log
  Sounds like something is broken - this will need TAC + escalated support I suspect.
  Darran

• ACS 4.2 appliance external database configuration with AD

  Dear All,
  How to configure external database in ACS 4.2 appliance for Windows Active Directory.Active Directory is configured in Windows 2012.ACS internal database is working fine without interruption.What configuration is requred to configure external database(Active Directory).It would be highly appreciated if you share your experience with me.
  Thanks,
  AS

  Please check
  Supported Interoperable Devices and Software Tables for Cisco Secure ACS Release 4.2
  http://www.cisco.com/c/en/us/td/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4-2/device/guide/sdt42.html

• ABAP report  from fields connecting to an external database

  Hi All,
  The requirement is to connect some GL data with external audit data which is stored in an oracle database.  These two table data has to be merged and a report has to be generated.
  I heard we could connect to the external database from the R/3 4.7 version through DBconnect.  Has anyone come across any such requirement and done a similar report, could you give me the inputs please.
  regards
  Girish

  Questions like yours are best asked over at the webOS Developer's Forum.  The Palm Support Community here is geared to answering end-user questions about devices, not programming information.
  https://developer.palm.com/
  WyreNut
  I am a Volunteer here, not employed by HP.
  You too can become an HP Expert! Details HERE!
  If my post has helped you, click the Kudos Thumbs up!
  If it solved your issue, Click the "Accept as Solution" button so others can benefit from the question you asked!

• Exracting data from two tables existing in external database

  Hi SDN friends,
  I have 2 tables in external database system. I cannot create a view as I am using Netweaver Java Dictionary. I therefore would like to get the data on BI side & perform join there. TABLE1 & TABLE2 has many to many relationship.
  <b>TABLE1</b> - FieldA, FieldB
  <b>TABLE2</b> - FieldB, FieldC(texts)
  Please help me find the best approach to populate the data into the BI infoobjects.
  I assure I will give full points to anyone who replies.
  Thanks,
  Sunil

  Hi
  If you are having data into 2 infoobjects, then its as good as having data nto tables. So now the question comes, whts the scenario?
  You can use these twe infoobjects in ODS ..create update rule and so on....
  Sunil, I m not able to understand further whts the problem you are facing exactly....
  You want help with ODS or wht?
  If you want to have join on infobjects then we can go ahead with infosets...
  Plz expain problem so tht we can work ahead
  Regards
  Sorabh
  Dont forgot to assign points in SDN -****
  Message was edited by: Sorabh Arora

• API for connecting  to an external database object

  Hi,
  Can anyone provide me with the API for connecting to the external database table and to create , update and delete data with an Oracle external database object.
  Wish you great time.
  Best Regards
  Sid

  Questions like yours are best asked over at the webOS Developer's Forum.  The Palm Support Community here is geared to answering end-user questions about devices, not programming information.
  https://developer.palm.com/
  WyreNut
  I am a Volunteer here, not employed by HP.
  You too can become an HP Expert! Details HERE!
  If my post has helped you, click the Kudos Thumbs up!
  If it solved your issue, Click the "Accept as Solution" button so others can benefit from the question you asked!

• Authenticating Guest Users Using External Database.

  Folks, greetings.
  Due to the limitations imposed by wlc's database size, we decided to go for an external authentication server.
  Since this external database is for guest access, we are considering in using a Linux box with LDAP, along with a web-based application which will be presented to the user for authentication purposes. This way, the user would type in his/her credentials on this portal and the same box would process the authentication.
  In such a scenario, we would buid an application for the "Lobby Amabassadors" input the guest data (for auditing purposes we need to enter the user's SSN, passport # or any other official ID), and this application would generate the password to be used during the authentication process.
  I've used web-auth before, with the users database loaded on the WLC (local net users). Even using an external web-auth portal, the user is still authenticated by the controller that in turn, will control whether the traffic is to be allowed or not, based on the authentication results.
  That's exactly where our question lies: how should we configure the WLAN so that the WLC would receive the access request and forward it to the authentication portal/server? Would it envolve radius?
  This same Linux would be the DHCP server for this guest WLAN.
  WLC vesion: 4.2.130.0
  Regards,
  AL

  Using the Web Authentication feature on a Cisco wireless LAN controller, we can authenticate a guest user on the wireless LAN controller, on an external web server or on an external database on a RADIUS server. We can configure the wireless LAN used for guest traffic to authenticate the user from an external RADIUS server.
  To enable an external RADIUS server to authenticate traffic using the GUI, follow this link.
  http://www.cisco.com/en/US/docs/wireless/technology/guest_access/technical/reference/4.1/GAccess_41.html#wp1001207

• ACS External Windows Authentication: Pre-Windows 2000 name only works

  Hello. I have attempted to map ACS to Windows AD 2003 as an External Database. That works, but only if I authenticate using the Pre-Windows 2000 name (sometimes called the "down-level" name).
  If I use the Windows 2003 login name, I get a 529 error in the event viewer, stating the username/password is incorrect. This error appears on the Windows 2003 SP1 server running ACS.
  Curiously, if I authenticate using the down-level name, the successful event shows the same authentication package (MICROSOFT_AUTHENTICATION_PACKAGE_V1_0) and "Workstation" and "Login Process" name (CISCO).
  I cannot determine if this is an ACS or Windows problem. Any one have a clue?

  Win2003 logon name: [email protected]
  A Pre-Windows2000 name: [email protected]
  Interestingly, the down-level name will authenticate, but the "up-level" name will not.
  Here are excerpts from AUTH.log:
  Failed up-level name:
  AUTH 01/19/2006 07:52:04 I 4817 3604 Attempting authentication for Unknown User '[email protected]'
  AUTH 01/19/2006 07:52:04 I 0365 3604 External DB [NTAuthenDLL.dll]: Starting authentication for user [[email protected]]
  AUTH 01/19/2006 07:52:04 I 0365 3604 External DB [NTAuthenDLL.dll]: Attempting Windows authentication for user bob.smith
  AUTH 01/19/2006 07:52:04 E 0365 3604 External DB [NTAuthenDLL.dll]: Windows authentication FAILED (error 1326L)
  AUTH 01/19/2006 07:52:04 I 0365 3604 External DB [NTAuthenDLL.dll]: Reattempting authentication at domain COMPANY
  AUTH 01/19/2006 07:52:04 I 0365 3604 External DB [NTAuthenDLL.dll]: Attempting Windows authentication for user bob.smith
  AUTH 01/19/2006 07:52:04 E 0365 3604 External DB [NTAuthenDLL.dll]: Windows authentication FAILED (error 1326L)
  AUTH 01/19/2006 07:52:04 I 2124 3604 Unknown User '[email protected]' was not authenticated
  Passed down-level name:
  AUTH 01/19/2006 07:52:23 I 0365 3604 External DB [NTAuthenDLL.dll]: Starting authentication for user [[email protected]]
  AUTH 01/19/2006 07:52:23 I 0365 3604 External DB [NTAuthenDLL.dll]: Attempting Windows authentication for user bsmith
  AUTH 01/19/2006 07:52:23 I 0365 3604 External DB [NTAuthenDLL.dll]: Windows authentication SUCCESSFUL (by WINDC02)
  AUTH 01/19/2006 07:52:23 I 0365 3604 External DB [NTAuthenDLL.dll]: Obtaining RAS information for user bsmith from WINDC02

• Accessing any external database

  How can I connect to any external database from portal.

  To further dd_Ram's question..here is our dilema. We want start exploring the use of native Oracle Portal Portlets to replace some of the Discoverer reports we have built. We have come across a ton of limitations/bugs/enhancement requests (whatever oracle wants to spin them as) using the Discoverer > Portlet Provider integration. We are evaluating Report Builder Portlet vs. Omni Portlet as an option. The report builder portlet gives us extra functionality and control than the omni portlet does. We have configured the omni portlet to connect to our ERP database by creating a new connection. What we would like to explore, is if the Report Builder Portlet is only connected to the Portal Repository database, or if there was a configuration to possible point it towards another database directly.

• Contractor information not generate in external database application.

  Hi all,
  I'm new in IDM, and now doing some Labs.
  When I was doing this Lab [http://codigoctm.files.wordpress.com/2012/09/lab-04-event-handler-development.pdf], I met a problem:
  After a user has been created, no contractor information generated in the external database application.
  Can anybody tell me how to check this problem and fix it?
  Any suggestions are appreciated.
  Many thanks,
  Arvin

  Did you restart ACS services after addingthe new ODBC database?

• Password Protection of PDF with multiple passwords stored in external database.

  Ok, here is what I need to do.
  I need to find a way to embed a script into a PDF using LifeCycle Designer so if someone downloads my PDF they won't be able to access it unless they are a registered user in my MSAccess or MySQL database.
  Link from PDF to external database to authenticate USER before allowing the PDF to be opened (in case they have downloaded it to their desktop).
  Is there a creative way or alternative to accomplish this? Just looking to prevent the average person (not the security savy webmaster).
  Thank you.

  The Bouncy Castle JCE provider (www.bouncycastle.org) has Base64 encoder/decoder classes that 'just work'.
  import org.bouncycastle.util.encoders.Base64;
  String base64encodedString = "ABCKD4632adcomd";
  byte[] decoded = Base64.decode(base64encodedString);
  String reencoded = new String(Base64.encode(decoded));As for your second question re: how should you re encrypt the passwords? The standard, quite secure way of doing this is to use a one-way cipher. This will encrypt the password text to an unintelligible mess, that CANNOT be decrypted back to the original.
  When a new user enters their password for the first time, you use your cipher to encrypt it, and store this (not the actual password).
  To verify this user, you take the password they give you, encrypt it in the same way, and compare the results.
  Unix/Linux can use a shell command called 'crypt' to do exactly this... MySQL will also do it for you... INSERT INTO blah VALUES(CRYPT('blahpasswordstring'), and SELECT * FROM blah WHERE password=CRYPT('enteredpassword')).
  ... and its far too early in the morning, and I cant for the life of me remember the JCE equivalent of this function :(

• Cross Reference within external Database using XREF API

  Hi Experts,
     Can we do Cross Reference within external Database using  XREF API uses JDBC to access the Oracle Database Stored Procedures in SAP PI? How to use a JNDI Data source to access the DB and how to do the Connection Pooling will be done by the SAP J2EE server? Kindly let me know step by step proceedings.
  Regards
  Archana

  Hello Archana,
  It can be done with a Lookup call in a mapping.
  Here's a little article about the topic in the SAP wiki:
  http://wiki.sdn.sap.com/wiki/display/XI/HowtouseCrossReferencewithinexternal+Database
  With kind regards
                   Sebastian

• How to connect external database(Ex:SQL Server/Tivoli)  from ABAP Webdynpro

  Hi,
  Any one have idea how to connect external database like SQL Server/Tivoli to access tables from WebDynPro ABAP.
  Please point to me some links if you have
  Thanks
  Praveen

  Hi,
  Please check out this link -
  FETCH DATA FROM ORACLE DATABASE USING Web Dynpro
  Regards,
  Lekha.

• How to access tables/views of an external database provider..

  After much trouble I finally managed to setup a second Database Provider that doesn't display the "0 out of 0 connections are good" error by filling in the "Configuration Class" field with "intradoc.server.DbProviderConfig".
  But now the problem is actually accessing the tables/views in my newly configured external database provider...
  In the Configuration Manager applet when I try to add a new Table or View it only lists the tables contained in the schema of the SystemDatabase database provider (the original one), I've tried running Queries via components trying stuff like SELECT * FROM provider_name.table_name and other similar but obviously it doesn't work...
  So... with that said, I just want to know how I access tables or views in my "supposedly" well conected (15 out of 15 connections are good, no errors on the Test Query) Oracle external Database Provider - After searching I was unable to find any information regading any post-provider-setup actions in the Content Server documentation - Does anyone know how to do this?
  On a side note, if the database is SQLServer instead of Oracle, with the same configuration and apparently no errors on the database side (other clients access it well) the Query Test of the new database provider returns the following error:
  "The provider 'TestSqlSrv' is in error. Unable to create database connection for JDBC:ODBC:SqlSrv. Unable to create result set for query 'select * from dummy'. Invalid Fetch Size Unable to create result set for query 'select * from dummy'. Invalid Fetch Size java.sql.SQLException: Invalid Fetch Size".But I won't even go there yet.... for now I would settle with just knowing how to reference information in the Oracle external database provider...
  Message was edited by:
  user602700

  if you are able to, pick up Bex Huff's book the Definitive Guite to Stellent Content Server Development (amazon link: http://www.amazon.com/Definitive-Stellent-Content-Server-Development/dp/1590596846/ref=sr_1_1?ie=UTF8&s=books&qid=1196365101&sr=8-1)
  chapter 11 is all about this.