Admin users not authorized to install software updates?
A couple of colleagues in my office are having a weird problem. They all have administrative access to their computers, but when Software Update asks them for an administrative password to install the updates, it says they don't have administrative access.
Any ideas?
TonyInSF wrote:
They're company computers, but I configured them myself and checked "Allow user to administer this computer".
This is not happening with all computers, just some of them. Most users (of company computers) update their software quite regularly without any problems.
Interesting.
Try creating a new admin account on one of the machines from scratch and see if it allows updating.
If so, it might simply be a corrupted preference file.
Similar Messages
-
Brand New 27" iMac i5 will not boot after installing software updates
I just purchased my new iMac 2 nights ago. I have been getting it setup with my apps, mobile me account, etc, and luckily just setup time machine and let it do a full backup.
I just ran Software Update for the first time, and now the machine will not boot. It hangs on the grey screen for about 1 minute before the Apple logo comes up. About 30 seconds after the Apple logo comes up, the grey spinning gear shows up, and about 1 minute after that I get the grey screen of death (You must restart your computer).
Any suggestions? A little frustrated here....If you mean did I receive error messages, No, I didn't. However, the desktop reverted to the default purple night-sky looking thing, my applications and such all disappeared from the dock, and I couldn't open any files or folders (you don't have permission to ...), etc. I tried signing out and back in, rebooting, using a second admin account on the computer, creating a new admin account, etc. I ran Disk Utility, hardware checker, etc. No errors were found, and nothing changed. I could see all my files and folders, but they had a small red circle in the corner, indicating "locked" or "no permission".
I'll find the lines from the console log if that will help. The error showed up immediately and is in the computer's attempt to access the user/library/application support/sync services and same path to user/library/logs/sync services/log. (or something reasonably close to this. If you can use the exact path, I will get it) The link between my settings and files, and a password is apparently corrupted or something, so that the computer won't even let me change the desktop or any file, so I can't save, edit or discard anything, and can't drag files to another computer on the home network.
At least I'm still under the 90 day warranty, so I can call tomorrow. At this point, the SMART check says the drive is good, so I assume it's software. The only things new are the three auto Apple software updates I installed yesterday, so I immediately suspect them. But who knows?
Does this help you at all? -
When attempting to install "Software Update" from Apple, the process stalls at "Configuring Installation". Even allowing it to run for 24 hours does not result in any progress.
Thanks for the straightforward tip. I had restarted once already, but the second time was a charm. The install button now works. Don't know if it mattered, but I also repaired disk permissions and then restarted in safe mode this time.
The printer driver is apparently a different issue in itself. It turns out that the my printer, the HP Deskjet F380, has some fluke that makes it incompatible in 10.6. A new driver is coming out from HP according to Rickmeister in this thread: http://discussions.apple.com/thread.jspa?messageID=10076690�
In case anyone else has the same problem with the F380: Like the user in the aforementioned thread, I downloaded and installed the old HP drivers for 10.5, and now at least I can print in the meantime. -
The user admin is not authorized to make the Create Order request
Hi,
I have deployed the PiP and trying to create the order. But i am getting the below error
The user admin is not authorized to make the Create Order request>
Please note :--
I have assigned roles in administrator
I have assigned permissions in Weblogic.
ThanksHi,
Click on the user admin under user and groups , go to the tab Passwords. Give the password for the admin user and save it. Restart the server and try to login.
Regards
Marg -
When I try to install software update to my phone, it sends the message that I am not connected to the internet. What am I doing wrong?
Settings > iTunes & App Stores > Apple ID: > View Apple ID > Country/Region...change here.
-
I accidentally hit the install software update on my IPad and I am not by my computer and won't be for 2 weeks. Is there any way I can get my IPad off the picture of connecting to ITunes?
No. You must connect your iPad to a computer (it does not have to be yours) in order to restore it to factory settings.
Once you're home, you can restore it from a backup.
Any content that you did not backup has been lost.
~Lyssa -
HT1338 Can't quit Safari so that I can install software updates; option not highlighted
I am trying to install Software update and am unable to Quit Safari; the option is not highlighted?
Choose Force Quit from the Apple menu and shut it down from there.
(86076) -
Can anyone give me a suggestion how to restart my system if possible or stop the installing software update that has been idle for over 6 hours?
Press and hold the power button for 10 seconds.
-
" User not authorized" error while deploying webdynpro application on WAS
I am getting following error while deploying dyn pro application on WAS
Error
May 17, 2005 6:37:21 PM /userOut/deploy (com.sap.ide.eclipse.sdm.threading.DeployThreadManager) [Thread[Deploy Thread,5,main]] ERROR:
[002]Deployment aborted
Settings
SDM host : DYNPRO
SDM port : 50018
URL to deploy : file:/C:/DOCUME1/720359/LOCALS1/Temp/temp50603PVTOSAP.ear
Result
=> deployment aborted : file:/C:/DOCUME1/720359/LOCALS1/Temp/temp50603PVTOSAP.ear
Aborted: development component 'PVTOSAP'/'local'/'LOKAL'/'0.2005.05.17.18.37.08':
Caught exception while checking the login credentials for SAP J2EE Engine. Check whether the SAP J2EE Engine is up and running.
com.sap.engine.deploy.manager.DeployManagerException: ERROR: Cannot connect to Host: [DYNPRO] with user name: [J2EE_ADMIN] Check your login information. Exception is: com.sap.engine.services.jndi.persistent.exceptions.NamingException: Exception while trying to get InitialContext. [Root exception is com.sap.engine.services.security.exceptions.BaseLoginException: User not authorized.]
(message ID: com.sap.sdm.serverext.servertype.inqmy.extern.EngineApplOnlineDeployerImpl.checkLoginCredentials.DMEXC)
Deployment exception : The deployment of at least one item aborted
Additional Log :
May 17, 2005 6:37:21 PM /userOut/deploy (com.sap.ide.eclipse.sdm.threading.DeployThreadManager) [Thread[Deploy Thread,5,main]] INFO:
[002]Additional log information about the deployment
<!LOGHEADER[START]/>
<!HELP[Manual modification of the header may cause parsing problem!]/>
<!LOGGINGVERSION[1.5.3.7162 - 630_SP]/>
<!NAME[D:\usr\sap\DYN\DVEBMGS00\SDM\program\log\sdmcl20050517131312.log]/>
<!PATTERN[sdmcl20050517131312.log]/>
<!FORMATTER[com.sap.tc.logging.TraceFormatter(%24d %s: %m)]/>
<!ENCODING[Cp1252]/>
<!LOGHEADER[END]/>
May 17, 2005 6:43:12 PM Info: -
Starting deployment -
May 17, 2005 6:43:12 PM Info: Loading selected archives...
May 17, 2005 6:43:12 PM Info: Loading archive 'D:\usr\sap\DYN\DVEBMGS00\SDM\program\temp\temp50603PVTOSAP.ear'
May 17, 2005 6:43:14 PM Info: Selected archives successfully loaded.
May 17, 2005 6:43:14 PM Info: Actions per selected component:
May 17, 2005 6:43:14 PM Info: Update: Selected development component 'PVTOSAP'/'local'/'LOKAL'/'0.2005.05.17.18.37.08' updates currently deployed development component 'PVTOSAP'/'local'/'LOKAL'/'0.2005.05.17.09.04.27'.
May 17, 2005 6:43:15 PM Info: Error handling strategy: OnErrorStop
May 17, 2005 6:43:15 PM Info: Update strategy: UpdateAllVersions
May 17, 2005 6:43:15 PM Info: Starting: Update: Selected development component 'PVTOSAP'/'local'/'LOKAL'/'0.2005.05.17.18.37.08' updates currently deployed development component 'PVTOSAP'/'local'/'LOKAL'/'0.2005.05.17.09.04.27'.
May 17, 2005 6:43:15 PM Info: SDA to be deployed: D:\usr\sap\DYN\DVEBMGS00\SDM\root\origin\local\PVtoSAP\LOKAL\0.2005.05.17.18.37.08\temp50603PVTOSAP.ear
May 17, 2005 6:43:15 PM Info: Software type of SDA: J2EE
May 17, 2005 6:43:15 PM Info: ***** Begin of SAP J2EE Engine Deployment (J2EE Application) *****
May 17, 2005 6:43:15 PM Info: ***** End of SAP J2EE Engine Deployment (J2EE Application) *****
May 17, 2005 6:43:15 PM Error: Aborted: development component 'PVTOSAP'/'local'/'LOKAL'/'0.2005.05.17.18.37.08':
Caught exception while checking the login credentials for SAP J2EE Engine. Check whether the SAP J2EE Engine is up and running.
com.sap.engine.deploy.manager.DeployManagerException: ERROR: Cannot connect to Host: [DYNPRO] with user name: [J2EE_ADMIN]
Check your login information.
Exception is:
com.sap.engine.services.jndi.persistent.exceptions.NamingException: Exception while trying to get InitialContext. [Root exception is com.sap.engine.services.security.exceptions.BaseLoginException: User not authorized.]
(message ID: com.sap.sdm.serverext.servertype.inqmy.extern.EngineApplOnlineDeployerImpl.checkLoginCredentials.DMEXC)
May 17, 2005 6:43:17 PM Error: -
At least one of the Deployments failed -Hi Abhijeet,
1. Execute the remoteGUI
<<Installed drive>>:\usr\sap\J2E\JC00\SDM\program\RemoteGui.bat
2. Click the "Connect to SDM server" (Menu "SDM GUI --> Login")
3. Give the hostname (DYNPRO) and port (50018)
4. Enter the password and click login.
Check whether you are able to login or not. If you are not able to login through the RemoteGUI, then the password might be wrong. Check the password.
Regards,
Santhosh.C -
Hello all, new to the forums.
I've been recieving the error message "itunes could not contact the ipod software update server because you are not connected to the internet". This problem didn't occur at all for the past 2 years of using itunes.
I've already scanned through numerous websites and forums for help, but none of them worked.
This set of instructions resulted in no change to any of the problems, though iTunes lists that as the supposed solution.
# Open Internet Options from control panel.
# Click the Connections tab.
# Click the LAN Settings button.
# Select the Automatically detect settings checkbox.
Others include installing IE7, which that didn't work either.
Can anyone help?Here it is:
Microsoft Windows 7 x64 Ultimate Edition (Build 7600)
LENOVO 2537FC4
iTunes 10.3.1.55
QuickTime 7.6.9
FairPlay 1.11.17
Apple Application Support 1.5.2
iPod Updater Library 10.0d2
CD Driver 2.2.0.1
CD Driver DLL 2.1.1.1
Apple Mobile Device 3.4.1.2
Apple Mobile Device Driver 1.57.0.0
Bonjour 2.0.5.0 (214.3)
Gracenote SDK 1.8.2.457
Gracenote MusicID 1.8.2.89
Gracenote Submit 1.8.2.123
Gracenote DSP 1.8.2.34
iTunes Serial Number 003DB3100363E3C0
Current user is not an administrator.
The current local date and time is 2011-06-16 17:03:57.
iTunes is not running in safe mode.
WebKit accelerated compositing is enabled.
HDCP is supported.
Core Media is supported.
Video Display Information
NVIDIA, NVIDIA NVS 3100M
**** External Plug-ins Information ****
No external plug-ins installed.
iPodService 10.3.1.55 (x64) is currently running.
iTunesHelper 10.3.1.55 is currently running.
Apple Mobile Device service 3.3.0.0 is currently running.
**** Network Connectivity Tests ****
Network Adapter Information
Adapter Name: {505BB17D-FA14-4FA0-9D77-F7998FEBB435}
Description: Intel(R) Centrino(R) Advanced-N 6200 AGN
IP Address: 192.168.0.3
Subnet Mask: 255.255.255.0
Default Gateway: 192.168.0.1
DHCP Enabled: Yes
DHCP Server: 192.168.0.1
Lease Obtained: Thu Jun 16 16:54:56 2011
Lease Expires: Fri Jun 17 16:54:56 2011
DNS Servers: 192.168.0.1
68.94.156.1
Adapter Name: {610821DE-0532-4C65-839B-B74B65859FBA}
Description: Intel(R) 82577LM Gigabit Network Connection
IP Address: 0.0.0.0
Subnet Mask: 0.0.0.0
Default Gateway: 0.0.0.0
DHCP Enabled: Yes
DHCP Server:
Lease Obtained: Wed Dec 31 16:00:00 1969
Lease Expires: Wed Dec 31 16:00:00 1969
DNS Servers:
Adapter Name: {10983C8A-FCDA-4B2F-8A89-E1596BA6B7BA}
Description: Bluetooth Device (Personal Area Network)
IP Address: 0.0.0.0
Subnet Mask: 0.0.0.0
Default Gateway: 0.0.0.0
DHCP Enabled: Yes
DHCP Server:
Lease Obtained: Wed Dec 31 16:00:00 1969
Lease Expires: Wed Dec 31 16:00:00 1969
DNS Servers:
Active Connection: Broadband Connection
Connected: No
Online: No
Using Modem: Yes
Using LAN: No
Using Proxy: No
SSL 3.0 Support: Enabled
TLS 1.0 Support: Enabled
Firewall Information
Windows Firewall is on.
iTunes is NOT enabled in Windows Firewall.
Connection attempt to Apple web site was successful.
Connection attempt to browsing iTunes Store was successful.
Connection attempt to purchasing from iTunes Store was successful.
Connection attempt to iPhone activation server was successful.
Connection attempt to firmware update server was successful.
Connection attempt to Gracenote server was successful.
Last successful iTunes Store access was 2011-06-16 15:35:33. -
Please help: Cannot update iPod though it says one is available.
I receive the following alert message:
iTunes could not contact the iPod software update server because you are not connected to the Internet. Make sure your Internet connection is active and try again.
I am connected and am even able to purchase songs on through iTunes.
The "solution" in (Article: 304468) DOESN'T WORK!!!!!
(From Article: 304468:
"Symptom: Some customers may notice the following alert message when trying to update or restore an iPod in iTunes 7 or later:
iTunes could not contact the iPod software update server because you are not connected to the Internet. Make sure your Internet connection is active and try again.
Internet access is required to download iPod software updates. However, if you are able to connect to the Internet with Internet Explorer and can also access the iTunes Store, see the solution below to resolve this issue.
Products affected
* iTunes 7 or later for Windows
* Any iPod model
Solution
1. From the Start menu, choose Control Panel.
2. Open the Internet Options control panel.
3. Click the Connections tab.
4. Click the LAN Settings button.
5. Select the Automatically detect settings checkbox.
6. Click OK in both windows.
7. Reopen iTunes and connect your iPod.
8. Update or Restore your iPod.
THIS DOESN'T WORK. Any other ideas as to what I can do to solve this? Thank you for any & all help in this matter.I had a similar problem and your link helped me to solve the problem. Recently I changed my ethernet network card and since then my itunes worked strangely: itunes store worked, podcasts worked, mini-store doesn't, ipod update doesn't and diagnostics says that I had no Internet connection. Attached you can see the report.
It's weired that itunes is based in LAN Connections for sometinhgs and not for the others. Crazy!
Thanks and good luck with your problem.
Javier
Microsoft Windows XP Professional Service Pack 2 (Build 2600)
Dell Computer Corporation Dimension 4600i
iTunes 7.6.0.29
QuickTime 7.4
CD Driver 2.0.6.1
CD Driver DLL 2.0.6.2
Apple Mobile Device 1.1.3.26
Bonjour 1.0.4.12 (118.4)
iTunes Serial Number 6968E7753F46D042
Current user is an administrator.
The current local date and time is 2008-01-21 21:05:41.
iTunes is not running in safe mode.
Video Display Information
NVIDIA GeForce FX 5200
** External Plug-ins Information **
No external plug-ins installed.
** Network Connectivity Tests **
Network Adapter Information
Adapter Name: {649F8F53-CE87-4891-A18A-A2A215ADB095}
Description: Realtek RTL8139 Family PCI Fast Ethernet NIC - Packet Scheduler Miniport
IP Address: 192.168.0.2
Subnet Mask: 255.255.255.0
Default Gateway: 192.168.0.1
DHCP Enabled: No
DHCP Server: 255.255.255.255
Lease Obtained: Thu Jan 01 01:00:00 1970
Lease Expires: Thu Jan 01 01:00:00 1970
DNS Servers: 87.216.1.65
87.216.1.65
87.216.1.66
Active Connection: (none)
Connected: No
Online: No
Using Modem: No
Using LAN: No
Using Proxy: No
Firewall Information
Windows Firewall is off.
Connection attempt to Apple web site was successful.
Connection attempt to iTunes Store was successful.
Secure connection attempt to iTunes Store was successful.
Secure connection attempt to iPhone activation server was successful.
Last successful store access was 2008-01-21 08:09:20. -
I can't install software Update for iOS 7.1.1. for iPad because I was forgot my password. How I can change my password?
These are user to user forums. Apple does not participate here and does not respond to posts. For the record, since the iPad 2 supports iOS 8 any attempt to update the iPad 2 will result in an update to 8.1. Apple only supports updating to the latest version of the operating system that the device supports.
-
Hi everyone,
it's probably just me but I have tried real hard to get a simple AnyConnect setup working in a lab environment on my ASA 5505 at home, without luck. When I connect with the AnyConnect client I get the error message "User not authorized for AnyConnect Client access, contact your administrator". I have searched for this error and tried some of the few solutions out there, but to no avail. I also updated the ASA from 8.4.4(1) to 9.1(1) and ASDM from 6.4(9) to 7.1(1) but still the same problem. The setup of the ASA is straight forward, directly connected to the Internet with a 10.0.1.0 / 24 subnet on the inside and an address pool of 10.0.2.0 / 24 to assign to the VPN clients. Please note that due to ISP restrictions, I'm using port 44455 instead of 443. I had AnyConnect working with the SSL portal, but IKEv2 IPsec is giving me a headache. I have stripped down certificate authentication which I had running before just to eliminate this as a potential cause of the issue. When running debugging, I do not get any error messages - the handshake completes successfully and the local authentication works fine as well.
Please find the current config and debugging output below. I appreciate any pointers as to what might be wrong here.
: Saved
ASA Version 9.1(1)
hostname ASA
domain-name ingo.local
enable password ... encrypted
xlate per-session deny tcp any4 any4
xlate per-session deny tcp any4 any6
xlate per-session deny tcp any6 any4
xlate per-session deny tcp any6 any6
xlate per-session deny udp any4 any4 eq domain
xlate per-session deny udp any4 any6 eq domain
xlate per-session deny udp any6 any4 eq domain
xlate per-session deny udp any6 any6 eq domain
passwd ... encrypted
names
name 10.0.1.0 LAN-10-0-1-x
dns-guard
ip local pool VPNPool 10.0.2.1-10.0.2.10 mask 255.255.255.0
interface Ethernet0/0
switchport access vlan 2
interface Ethernet0/1
interface Ethernet0/2
interface Ethernet0/3
interface Ethernet0/4
interface Ethernet0/5
interface Ethernet0/6
interface Ethernet0/7
interface Vlan1
nameif Internal
security-level 100
ip address 10.0.1.254 255.255.255.0
interface Vlan2
nameif External
security-level 0
ip address dhcp setroute
regex BlockFacebook "facebook.com"
banner login This is a monitored system. Unauthorized access is prohibited.
boot system disk0:/asa911-k8.bin
ftp mode passive
clock timezone PST -8
clock summer-time PDT recurring
dns domain-lookup Internal
dns domain-lookup External
dns server-group DefaultDNS
name-server 10.0.1.11
name-server 75.153.176.1
name-server 75.153.176.9
domain-name ingo.local
object network obj_any
subnet 0.0.0.0 0.0.0.0
object network LAN-10-0-1-x
subnet 10.0.1.0 255.255.255.0
object network Company-IP1
host xxx.xxx.xxx.xxx
object network Company-IP2
host xxx.xxx.xxx.xxx
object network HYPER-V-DUAL-IP
range 10.0.1.1 10.0.1.2
object network LAN-10-0-1-X
access-list 100 extended permit tcp any4 object HYPER-V-DUAL-IP eq 3389 inactive
access-list 100 extended permit tcp object Company-IP1 object HYPER-V-DUAL-IP eq 3389
access-list 100 extended permit tcp object Company-IP2 object HYPER-V-DUAL-IP eq 3389
tcp-map Normalizer
check-retransmission
checksum-verification
no pager
logging enable
logging timestamp
logging list Threats message 106023
logging list Threats message 106100
logging list Threats message 106015
logging list Threats message 106021
logging list Threats message 401004
logging buffered errors
logging trap Threats
logging asdm debugging
logging device-id hostname
logging host Internal 10.0.1.11 format emblem
logging ftp-bufferwrap
logging ftp-server 10.0.1.11 / asa *****
logging permit-hostdown
mtu Internal 1500
mtu External 1500
ip verify reverse-path interface Internal
ip verify reverse-path interface External
icmp unreachable rate-limit 1 burst-size 1
icmp deny any echo External
asdm image disk0:/asdm-711.bin
no asdm history enable
arp timeout 14400
no arp permit-nonconnected
object network obj_any
nat (Internal,External) dynamic interface
object network LAN-10-0-1-x
nat (Internal,External) dynamic interface
object network HYPER-V-DUAL-IP
nat (Internal,External) static interface service tcp 3389 3389
access-group 100 in interface External
timeout xlate 3:00:00
timeout pat-xlate 0:00:30
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
timeout tcp-proxy-reassembly 0:01:00
timeout floating-conn 0:00:00
dynamic-access-policy-record DfltAccessPolicy
aaa-server radius protocol radius
aaa-server radius (Internal) host 10.0.1.11
key *****
radius-common-pw *****
user-identity default-domain LOCAL
aaa authentication ssh console radius LOCAL
http server enable
http LAN-10-0-1-x 255.255.255.0 Internal
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart
crypto ipsec ikev2 ipsec-proposal DES
protocol esp encryption des
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal 3DES
protocol esp encryption 3des
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal AES
protocol esp encryption aes
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal AES192
protocol esp encryption aes-192
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal AES256
protocol esp encryption aes-256
protocol esp integrity sha-1 md5
crypto ipsec security-association pmtu-aging infinite
crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set ikev2 ipsec-proposal AES256 AES192 AES 3DES DES
crypto map External_map 65535 ipsec-isakmp dynamic SYSTEM_DEFAULT_CRYPTO_MAP
crypto map External_map interface External
crypto ca trustpoint srv01_trustpoint
enrollment terminal
crl configure
crypto ca trustpoint asa_cert_trustpoint
keypair asa_cert_trustpoint
crl configure
crypto ca trustpoint LOCAL-CA-SERVER
keypair LOCAL-CA-SERVER
crl configure
crypto ca trustpool policy
crypto ca server
cdp-url http://.../+CSCOCA+/asa_ca.crl:44435
issuer-name CN=...
database path disk0:/LOCAL_CA_SERVER/
smtp from-address ...
publish-crl External 44436
crypto ca certificate chain srv01_trustpoint
certificate <output omitted>
quit
crypto ca certificate chain asa_cert_trustpoint
certificate <output omitted>
quit
crypto ca certificate chain LOCAL-CA-SERVER
certificate <output omitted>
quit
crypto ikev2 policy 1
encryption aes-256
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 policy 10
encryption aes-192
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 policy 20
encryption aes
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 policy 30
encryption 3des
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 policy 40
encryption des
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 enable External client-services port 44455
crypto ikev2 remote-access trustpoint asa_cert_trustpoint
telnet timeout 5
ssh LAN-10-0-1-x 255.255.255.0 Internal
ssh xxx.xxx.xxx.xxx 255.255.255.255 External
ssh xxx.xxx.xxx.xxx 255.255.255.255 External
ssh timeout 5
ssh version 2
console timeout 0
no vpn-addr-assign aaa
no ipv6-vpn-addr-assign aaa
no ipv6-vpn-addr-assign local
dhcpd dns 75.153.176.9 75.153.176.1
dhcpd domain ingo.local
dhcpd option 3 ip 10.0.1.254
dhcpd address 10.0.1.50-10.0.1.81 Internal
dhcpd enable Internal
threat-detection basic-threat
threat-detection scanning-threat shun except ip-address LAN-10-0-1-x 255.255.255.0
threat-detection statistics access-list
threat-detection statistics tcp-intercept rate-interval 30 burst-rate 400 average-rate 200
dynamic-filter use-database
dynamic-filter enable interface Internal
dynamic-filter enable interface External
dynamic-filter drop blacklist interface Internal
dynamic-filter drop blacklist interface External
ntp server 128.233.3.101 source External
ntp server 128.233.3.100 source External prefer
ntp server 204.152.184.72 source External
ntp server 192.6.38.127 source External
ssl encryption aes256-sha1 aes128-sha1 3des-sha1
ssl trust-point asa_cert_trustpoint External
webvpn
port 44433
enable External
dtls port 44433
anyconnect image disk0:/anyconnect-win-3.1.02026-k9.pkg 1
anyconnect profiles profile1 disk0:/profile1.xml
anyconnect enable
smart-tunnel list SmartTunnelList1 mstsc mstsc.exe platform windows
smart-tunnel list SmartTunnelList1 putty putty.exe platform windows
group-policy DfltGrpPolicy attributes
vpn-tunnel-protocol ikev1 ikev2 l2tp-ipsec ssl-client ssl-clientless
webvpn
anyconnect profiles value profile1 type user
username write.ingo password ... encrypted
username ingo password ... encrypted privilege 15
username tom.tucker password ... encrypted
class-map TCP
match port tcp range 1 65535
class-map type regex match-any BlockFacebook
match regex BlockFacebook
class-map type inspect http match-all BlockDomains
match request header host regex class BlockFacebook
class-map inspection_default
match default-inspection-traffic
policy-map type inspect dns preset_dns_map
parameters
message-length maximum client auto
message-length maximum 1500
id-randomization
policy-map TCP
class TCP
set connection conn-max 1000 embryonic-conn-max 1000 per-client-max 250 per-client-embryonic-max 250
set connection timeout dcd
set connection advanced-options Normalizer
set connection decrement-ttl
policy-map type inspect http HTTP
parameters
protocol-violation action drop-connection log
class BlockDomains
policy-map global_policy
class inspection_default
inspect ftp
inspect h323 h225
inspect h323 ras
inspect rsh
inspect rtsp
inspect esmtp
inspect sqlnet
inspect skinny
inspect sunrpc
inspect xdmcp
inspect sip
inspect netbios
inspect tftp
inspect ip-options
inspect dns preset_dns_map dynamic-filter-snoop
inspect http HTTP
service-policy global_policy global
service-policy TCP interface External
smtp-server 199.185.220.249
privilege cmd level 3 mode exec command perfmon
privilege cmd level 3 mode exec command ping
privilege cmd level 3 mode exec command who
privilege cmd level 3 mode exec command logging
privilege cmd level 3 mode exec command failover
privilege cmd level 3 mode exec command vpn-sessiondb
privilege cmd level 3 mode exec command packet-tracer
privilege show level 5 mode exec command import
privilege show level 5 mode exec command running-config
privilege show level 3 mode exec command reload
privilege show level 3 mode exec command mode
privilege show level 3 mode exec command firewall
privilege show level 3 mode exec command asp
privilege show level 3 mode exec command cpu
privilege show level 3 mode exec command interface
privilege show level 3 mode exec command clock
privilege show level 3 mode exec command dns-hosts
privilege show level 3 mode exec command access-list
privilege show level 3 mode exec command logging
privilege show level 3 mode exec command vlan
privilege show level 3 mode exec command ip
privilege show level 3 mode exec command failover
privilege show level 3 mode exec command asdm
privilege show level 3 mode exec command arp
privilege show level 3 mode exec command ipv6
privilege show level 3 mode exec command route
privilege show level 3 mode exec command ospf
privilege show level 3 mode exec command aaa-server
privilege show level 3 mode exec command aaa
privilege show level 3 mode exec command eigrp
privilege show level 3 mode exec command crypto
privilege show level 3 mode exec command ssh
privilege show level 3 mode exec command vpn-sessiondb
privilege show level 3 mode exec command vpnclient
privilege show level 3 mode exec command vpn
privilege show level 3 mode exec command dhcpd
privilege show level 3 mode exec command blocks
privilege show level 3 mode exec command wccp
privilege show level 3 mode exec command dynamic-filter
privilege show level 3 mode exec command webvpn
privilege show level 3 mode exec command service-policy
privilege show level 3 mode exec command module
privilege show level 3 mode exec command uauth
privilege show level 3 mode exec command compression
privilege show level 3 mode configure command interface
privilege show level 3 mode configure command clock
privilege show level 3 mode configure command access-list
privilege show level 3 mode configure command logging
privilege show level 3 mode configure command ip
privilege show level 3 mode configure command failover
privilege show level 5 mode configure command asdm
privilege show level 3 mode configure command arp
privilege show level 3 mode configure command route
privilege show level 3 mode configure command aaa-server
privilege show level 3 mode configure command aaa
privilege show level 3 mode configure command crypto
privilege show level 3 mode configure command ssh
privilege show level 3 mode configure command dhcpd
privilege show level 5 mode configure command privilege
privilege clear level 3 mode exec command dns-hosts
privilege clear level 3 mode exec command logging
privilege clear level 3 mode exec command arp
privilege clear level 3 mode exec command aaa-server
privilege clear level 3 mode exec command crypto
privilege clear level 3 mode exec command dynamic-filter
privilege cmd level 3 mode configure command failover
privilege clear level 3 mode configure command logging
privilege clear level 3 mode configure command arp
privilege clear level 3 mode configure command crypto
privilege clear level 3 mode configure command aaa-server
prompt hostname context
no call-home reporting anonymous
call-home
profile CiscoTAC-1
no active
destination address http https://tools.cisco.com/its/service/oddce/services/DDCEService
destination address email [email protected]
destination transport-method http
subscribe-to-alert-group diagnostic
subscribe-to-alert-group environment
subscribe-to-alert-group inventory periodic monthly
subscribe-to-alert-group configuration periodic monthly
subscribe-to-alert-group telemetry periodic daily
Cryptochecksum:41a021a28f73c647a2f550ba932bed1a
: end
Many thanks,
IngoHi Jose,
here is what I got now:
ASA(config)# sh run | begin tunnel-group
tunnel-group DefaultWEBVPNGroup general-attributes
address-pool VPNPool
authorization-required
and DAP debugging still the same:
ASA(config)# DAP_TRACE: DAP_open: CDC45080
DAP_TRACE: Username: tom.tucker, aaa.cisco.grouppolicy = DfltGrpPolicy
DAP_TRACE: Username: tom.tucker, aaa.cisco.username = tom.tucker
DAP_TRACE: Username: tom.tucker, aaa.cisco.username1 = tom.tucker
DAP_TRACE: Username: tom.tucker, aaa.cisco.username2 =
DAP_TRACE: Username: tom.tucker, aaa.cisco.tunnelgroup = DefaultWEBVPNGroup
DAP_TRACE: Username: tom.tucker, DAP_add_SCEP: scep required = [FALSE]
DAP_TRACE: Username: tom.tucker, DAP_add_AC:
endpoint.anyconnect.clientversion="3.1.02026";
endpoint.anyconnect.platform="win";
DAP_TRACE: Username: tom.tucker, dap_aggregate_attr: rec_count = 1
DAP_TRACE: Username: tom.tucker, Selected DAPs: DfltAccessPolicy
DAP_TRACE: Username: tom.tucker, DAP_close: CDC45080
Unfortunately, it still doesn't work. Hmmm.. maybe a wipe of the config and starting from scratch can help?
Thanks,
Ingo -
Drag and Drop not working since last software update
Drag and Drop not working since last software update - this is occuring on Outlook for the mac and I just tried moving an icon on the doc and the same thing occured. YOu can drag but the items will not drop.
Please read this whole message before doing anything.
This procedure is a test, not a solution. Don’t be disappointed when you find that nothing has changed after you complete it.
Step 1
The purpose of this step is to determine whether the problem is localized to your user account.
Enable guest logins and log in as Guest. For instructions, launch the System Preferences application, select Help from the menu bar, and enter “Set up a guest account” (without the quotes) in the search box.
While logged in as Guest, you won’t have access to any of your personal files or settings. Applications will behave as if you were running them for the first time. Don’t be alarmed by this; it’s normal. If you need any passwords or other personal data in order to complete the test, memorize, print, or write them down before you begin.
Test while logged in as Guest. Same problem(s)?
After testing, log out of the guest account and, in your own account, disable it if you wish. Any files you created in the guest account will be deleted automatically when you log out of it.
Note: If you’ve activated “Find My Mac” or FileVault in Mac OS X 10.7 or later, then you can’t enable the Guest account. Create a new account in which to test, and delete it, including its home folder, after testing.
Step 2
The purpose of this step is to determine whether the problem is caused by third-party system modifications that load automatically at startup or login.
Disconnect all wired peripherals except those needed for the test, and remove all aftermarket expansion cards. Boot in safe mode and log in to the account with the problem. The instructions provided by Apple are as follows:
Be sure your Mac is shut down.
Press the power button.
Immediately after you hear the startup tone, hold the Shift key. The Shift key should be held as soon as possible after the startup tone, but not before the tone.
Release the Shift key when you see the gray Apple icon and the progress indicator (looks like a spinning gear).
Safe mode is much slower to boot and run than normal, and some things won’t work at all, including wireless networking on certain Macs.
The login screen appears even if you usually log in automatically. You must know your login password in order to log in. If you’ve forgotten the password, you will need to reset it before you begin.
Test while in safe mode. Same problem(s)?
After testing, reboot as usual (i.e., not in safe mode) and verify that you still have the problem. Post the results of steps 1 and 2. -
The screen is frozen while installing software updates. Say about 2 minutes and it has been more than hour. How can I cancel or do something about it? Is it ok to unplugg it? Please advise.
Really?
Is there no other option? No magic key combo that brings up a secret menu?
My imac just froze during a software update install and I too do not know what to do.
Maybe you are looking for
-
Letter of credit aginst Open item and Oldest open items
I raise the sales order against Letter of Credit. when i am saving the order throughs a message that Maximum open item value is exceeded for static credit check. When i am doing delivery system throughs an error that order is blocked Can u suggest me
-
Windows Client Binding Failure in a different subnet - Snow Leopard Server
hi all, We are running SL 10.6.6 mini mac on a subnetted domain - The svr subnet is 10.20.10.xxx Clients (mac & win xp) are in subnets 10.20.12.xxx & 10.20.13.xxx Linux Firewalls separate the subnets although for the purposes of this topic and setup
-
How to start gcalctool in solaris in scientific mode by default
Hi Alll, How can I start the gcalctool in the scientific mode by defualt. Currenlty its getting started in Basic mode. I checked the man page for gcalctol but could not get much information from that Thanks in advance Bye Pradeep
-
Lookup vo based on sql query or on Entity?
Hello all, which is better for performance to build a view object to be used as lookup [LOV] based on SQL query or build an Entity object and a view object based on it? and why? regards,
-
FW CS3 Could not render the database
Hi all. Anyone come across this one? I keep getting an error message in FW CS3. "Could not render the database, Not enough memory". Now, when this started I had a number of apps running so I closed them all down except for FW and the problem remained