Administration ports without SSL
Hi!
Is there any way of using administration ports (to get the separation of real/admin traffic) without using SSL?
We have a secured network (good enough anyway) so the SSL is not of any great use for us, it's just a complex factor that creates a lot of work.
thanks.
H. Waller
The port setting under the Advanced tab for the account preferences is for the incoming mail server only. You can select "Use SSL" for the .Mac incoming mail server which will change the incoming mail server port from 143 to 993 automatically.
To change the port setting for the account's SMTP server, go to Mail > Preferences > Accounts and under the Account Information tab for the account preferences at the SMTP server selection, select the Server Settings button below for the .Mac SMTP server.
Enter 587 in place of 25 in the Server Port field and when finished, select OK to save the changed setting.
Similar Messages
-
Weblogic redirects to administration port, not ssl port, for confidential
Using WLS 9.2 MP2.
I added the following into web.xml to make sure all requests are using https.
It works fine when the administration port is not enabled (weblogic redirects the request to the ssl port).
But when the administration port is enabled, weblogic redirects the request to the administration port, not the ssl port, and hence get a 404 error for the page.
I opened BEA case 759384 in Nov last year, and CR354916 was filed, but have not heard back.
<security-constraint>
<web-resource-collection>
<web-resource-name>All Pages</web-resource-name>
<description>These pages are only accessible by over SSL.</description>
<url-pattern>/*</url-pattern>
<http-method>GET</http-method>
<http-method>POST</http-method>
</web-resource-collection>
<user-data-constraint>
<description>This is how the user data must be transmitted</description>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>setting the setDomainEnv solved the issue.
set MEM_ARGS=-Xms256m -Xmx512m -XX:PermSize=128m
Regards,
Sam. -
How can I disable administration port?
Hello
By a mistake I enabled the domain-wide administration port, and now I can't log into the console.
Which file can I edit to disable the domain-wide administration port, without using the console?
Thanks!Never mind. I finally managed to use the console again...
Edited by ejac at 12/07/2007 5:42 AM -
Not able to connect with port 143 without SSL
Hello ,
I am using javaMail API. i want to access the class IMAPStore with this constuctor
public IMAPStore(Session session, URLName url) {
this(session, url, "imap", false);
it has SSL false.
But as i set the property as - imapProps.setProperty("mail.store.protocol", "imaps");
so it always called constructor from class IMAPSSLStore as -
public IMAPSSLStore(Session session, URLName url) {
super(session, url, "imaps", true); // call super constructor
when i debug the code it load the class IMAPSSLStore always since its property has been set.
Actually i want to use both port 993(with ssl) and 143 (without ssl)
I know that if i get the correct provider then i will be able to get the correct class IMAPSSLStore or IMAPStore, but for that a property has to be set like
props.getProperty("mail."+protocol+".class");
which i am not making out.
any help?You never need to use the constructors directly, and you rarely need to
use the classes directly. Most of the time you can just use the Store class.
Store store = session.getStore("imap"); // or "imaps"
You'll find lots of examples in the JavaMail FAQ and in the demo programs
that come with JavaMail. -
Hi all,
I installed JES2 and selected AM, Directory Service.
when installer configure web server, at
Enter SSL Administration Port [-1] {"<" goes back, "!" exits}I can't changed it to be 8989 or other ports.
Enter SSL Administration Port [-1] {"<" goes back, "!" exits}: 8989
Error: The SSL Admin Port could not be validated. Please specify a different
Port.
Enter SSL Administration Port [8989] {"<" goes back, "!" exits}: 1000
Error: The SSL Admin Port could not be validated. Please specify a different
Port.
Enter SSL Administration Port [1000] {"<" goes back, "!" exits}: 100001
Error: The SSL Admin Port specified is out of range. Please enter a valid Port.
Enter SSL Administration Port [100001] {"<" goes back, "!" exits}: 10002
Error: The SSL Admin Port could not be validated. Please specify a different
Port.Anybody help me plz.try the following
ssl-server 90 vip address 10.1.2.136
ssl-server 90 urlrewrite 1 10.1.2.136
ssl-server 90 rsacert xxxxcert
ssl-server 90 rsakey xxxxkey
ssl-server 90 cipher rsa-export-with-rc4-40-md5 10.1.2.136 4443
service esl0011-4443
ip address 10.1.1.120
port 4443
keepalive type http
keepalive uri "/"
active
content HTTP-4443
vip address 10.1.2.136
port 4443
protocol tcp
add service esl0011-4443
active
BTW, I also corrected your urlrewrite command as it was incorrect. You need to specify the host. So not http or https in front.
Gilles. -
Domain-wide administration port?
Hi,
I tried to start a cluster of 2 servers across 2 physical machines, I got error and server starting failed:
"Starting Managed Servers in Standby mode requires the domain-wide administration port."
My topology is as following:
Domain A is created in machine A and copy to machine B:
Machine A: admin serverr at port 8001. Managed server at port 8088 of cluster1.
Machine B: Managed server at port 8088 of the same cluster1.
What is wrong? Why I cannot start cluster? Why I got error " need domain-wide administration port"? What is "domain-wide administration port"? Why my created domain admin server at Machine A didn't work?
Your prompt help is highly appreciated. I am waiting for your help.
Thank you in advanceHi,
First of all the domain-wide administration port enables you to start a WebLogic Server instance in STANDBY state. It also allows you to separate administration traffic from application traffic in your domain.
so check in ur console whether u have specified the start up mode as STANDBY.if so change it to Running and try restarting the server:-
You can do that by chking the below link:-
http://e-docs.bea.com/wls/docs92/ConsoleHelp/taskhelp/startstop/SpecifyAStartupMode.html.
Domain-wide administration port is used when you have configured ssl for ur servers. Refer http://e-docs.bea.com/wls/docs103/ConsoleHelp/taskhelp/domainconfig/EnableTheDomainwideAdministrationPort.html for more info. -
Administration port - network channel for admin traffic
I am trying to configure a separate channel for Administration traffic on weblogic. I followed the oracle docos and configured the SSL, domain wide admin port, server listen address, ‘admin’ channel.
The issue is admin traffic in not happening through the newly created channel.
L2 network is not getting used. I can’t see any activity in the monitoring tab of new Channel. Also the netstat is showing that the port 9101/9102 is getting used on the 192.168.100.218 and not on 10.254.252.849.
I also tried by setting up the newly created channel weight as 51, but no luck.
Is JMX connectivity related to admin channel?
Any help is highly appreciated. Thanks.
Ipconfig:
Admin: adminserver701.mycompany.internal, 192.168.100.238, 10.254.252.808
Managed: appserver701.mycompany.internal, :192.168.100.218, 10.254.252.849
Domain wide admin port: 9101
Admin:
Listen address –> adminserver701.mycompany.internal
Channel –> admin -> 10.254.252.808/9101
Startup -> -Dweblogic.admin.ListenAddress=admin://10.254.252.808:9101
Managed:(appserver701)
Listen address –> appserver701.mycompany.internal
Admin port override: 9102
Channel –> admin -> 10.254.252.849/9102
Startup -> -Dweblogic.admin.ListenAddress=admin://10.254.252.849:9102
AdminServer Logs:
####<Feb 18, 2013 1:53:33 PM EST> <Info> <JMX> <adminserver701.mycompany.internal> <soa_as> <[STANDBY] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1361159613346> <BEA-149512> <JMX Connector Server started at service:jmx:iiop://adminserver701.mycompany.internal:9101/jndi/weblogic.management.mbeanservers.runtime .>
####<Feb 18, 2013 1:53:33 PM EST> <Info> <JMX> <adminserver701.mycompany.internal> <soa_as> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1361159613353> <BEA-149512> <JMX Connector Server started at service:jmx:iiop://adminserver701.mycompany.internal:9101/jndi/weblogic.management.mbeanservers.edit .>
####<Feb 18, 2013 1:53:33 PM EST> <Info> <JMX> <adminserver701.mycompany.internal> <soa_as> <[STANDBY] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1361159613367> <BEA-149512> <JMX Connector Server started at service:jmx:iiop://adminserver701.mycompany.internal:9101/jndi/weblogic.management.mbeanservers.domainruntime .>
####<Feb 18, 2013 1:53:36 PM EST> <Notice> <Server> <adminserver701.mycompany.internal> <soa_as> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1361159616699> <BEA-002613> <Channel "DefaultAdministration" is now listening on 192.168.100.238:9101 for protocols admin, ldaps, https.>
####<Feb 18, 2013 1:53:36 PM EST> <Notice> <Server> <adminserver701.mycompany.internal> <soa_as> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1361159616700> <BEA-002613> <Channel "Channel-0" is now listening on 10.254.252.808:9101 for protocols admin, ldaps, https.>
####<Feb 18, 2013 1:55:12 PM EST> <Notice> <Server> <adminserver701.mycompany.internal> <soa_as> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <cd259038c7dcf5a8:-26ac3ba0:13ceb6f767d:-8000-000000000000001a> <1361159712920> <BEA-002613> <Channel "Default" is now listening on 192.168.100.238:7001 for protocols iiop, t3, ldap, snmp, http.>
####<Feb 18, 2013 1:55:12 PM EST> <Notice> <Server> <adminserver701.mycompany.internal> <soa_as> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <cd259038c7dcf5a8:-26ac3ba0:13ceb6f767d:-8000-000000000000001a> <1361159712920> <BEA-002613> <Channel "DefaultSecure" is now listening on 192.168.100.238:7002 for protocols iiops, t3s, ldaps, https.>
ManagedServer Logs:
####<Feb 18, 2013 2:54:19 PM EST> <Info> <JMX> <appserver701.mycompany.internal> <adp_ms01> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1361163259911> <BEA-149512> <JMX Connector Server started at service:jmx:iiop://appserver701.mycompany.internal:9102/jndi/weblogic.management.mbeanservers.runtime .>
####<Feb 18, 2013 2:54:20 PM EST> <Notice> <Server> <appserver701.mycompany.internal> <adp_ms01> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1361163260350> <BEA-002613> <Channel "Channel-0" is now listening on 10.254.252.849:9102 for protocols admin, CLUSTER-BROADCAST-SECURE, ldaps, https.>
####<Feb 18, 2013 2:54:20 PM EST> <Notice> <Server> <appserver701.mycompany.internal> <adp_ms01> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1361163260350> <BEA-002613> <Channel "DefaultAdministration" is now listening on 192.168.100.218:9102 for protocols admin, CLUSTER-BROADCAST-SECURE, ldaps, https.>
####<Feb 18, 2013 2:54:58 PM EST> <Notice> <Server> <appserver701.mycompany.internal> <adp_ms01> <[STANDBY] ExecuteThread: '3' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <d3208ed6c2482016:-46ac5fed:13ceba69a8e:-7ffe-000000000000000e> <1361163298045> <BEA-002613> <Channel "DefaultSecure" is now listening on 192.168.100.218:7102 for protocols iiops, t3s, CLUSTER-BROADCAST-SECURE, ldaps, https.>
####<Feb 18, 2013 2:54:58 PM EST> <Notice> <Server> <appserver701.mycompany.internal> <adp_ms01> <[STANDBY] ExecuteThread: '3' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <d3208ed6c2482016:-46ac5fed:13ceba69a8e:-7ffe-000000000000000e> <1361163298045> <BEA-002613> <Channel "Default" is now listening on 192.168.100.218:7101 for protocols iiop, t3, CLUSTER-BROADCAST, ldap, snmp, http.>
AdminServer logs update while starting managed:
####<Feb 18, 2013 2:54:57 PM EST> <Info> <JMX> <adminserver701.mycompany.internal> <soa_as> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <cd259038c7dcf5a8:-26ac3ba0:13ceb6f767d:-8000-0000000000000162> <1361163297488> <BEA-149506> <Established JMX Connectivity with adp_ms01 at the JMX Service URL of service: jmx:admin://appserver701.mycompany.internal:9102 /jndi/weblogic.management.mbeanservers.runtime.>
Admin Server :
[oracle@adminserver701 bin]$ netstat -an | grep 9101
tcp 0 0 10.254.252.808:9101 0.0.0.0:* LISTEN
tcp 0 0 192.168.100.238:9101 0.0.0.0:* LISTEN
tcp 0 0 192.168.100.238:9101 192.168.100.218:59038 ESTABLISHED
I am wondering if the JMX connectivity is using the server listen address (adminserver701.mycompany.internal) which will by default resolve to 192.168.100.238. Is there a way to force JMX to use 10.254.252.808?Hi
For first question the answer is no. With the administration port, you enable the SSL between the admin server and Node manager-managed Servers. You can still use the web console.
For teh second question, you can use ANT or can use the WLS Scripting ..you can get more details in dev2dev.bea.com
Jin -
Use of domain administration port breaks session access?
WLS 8.1.2;
We have a third-party app deployed in a pretty basic cluster setup (two managed servers, each on a separate machine). When accessing the main web app, it works fine. If/when we enable the domain-wide administration port (DAP)(after enabling SSL on each server), we can no longer access the application - we get the exception shown below.
Note - if we shut down one of the two managed servers with DAP enabled, the app works. If we disable DAP and run both managed servers using SSL, the app works.
What have done wrong?
tia,
Rick
<snip>
####<Jun 9, 2005 10:26:49 AM EDT> <Error> <HTTP Session> <OYARSA4> <ep01> <ExecuteThread: '9' for queue: 'weblogic.kernel.Default'> <<WLS Kernel>> <> <BEA-100060> <An unexpected error occurred while retrieving the session for Web application: ServletContext(id=247422,name=eprovision-client,context-path=/eprovision-client).
java.lang.SecurityException: User <anonymous> does not have access to the administrator port.
at weblogic.rjvm.BasicOutboundRequest.sendReceive(BasicOutboundRequest.java:108)
at weblogic.rmi.internal.BasicRemoteRef.invoke(BasicRemoteRef.java:138)
at weblogic.cluster.replication.ReplicationManager_812_WLStub.create(Unknown Source)
at weblogic.cluster.replication.ReplicationManager.trySecondary(ReplicationManager.java:1064)
at weblogic.cluster.replication.ReplicationManager.createSecondary(ReplicationManager.java:997)
at weblogic.cluster.replication.ReplicationManager.register(ReplicationManager.java:391)
at weblogic.cluster.replication.ReplicationManager.register(ReplicationManager.java:376)
at weblogic.cluster.replication.ReplicationManager.register(ReplicationManager.java:370)
at weblogic.servlet.internal.session.ReplicatedSessionData.<init>(ReplicatedSessionData.java:95)
at weblogic.servlet.internal.session.ReplicatedSessionContext.getNewSession(ReplicatedSessionContext.java:304)
at weblogic.servlet.internal.ServletRequestImpl.getNewSession(ServletRequestImpl.java:2472)
at weblogic.servlet.internal.ServletRequestImpl.getSession(ServletRequestImpl.java:2169)
at weblogic.servlet.security.internal.SecurityModule$SessionRetrievalAction.run(SecurityModule.java:637)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:317)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:118)
at weblogic.servlet.security.internal.SecurityModule.getUserSession(SecurityModule.java:612)
at weblogic.servlet.security.internal.FormSecurityModule.stuffSession(FormSecurityModule.java:404)
at weblogic.servlet.security.internal.FormSecurityModule.checkUserPerm(FormSecurityModule.java:391)
at weblogic.servlet.security.internal.SecurityModule.beginCheck(SecurityModule.java:197)
at weblogic.servlet.security.internal.FormSecurityModule.checkA(FormSecurityModule.java:181)
at weblogic.servlet.security.internal.ServletSecurityManager.checkAccess(ServletSecurityManager.java:145)
at weblogic.servlet.internal.WebAppServletContext.invokeServlet(WebAppServletContext.java:3539)
at weblogic.servlet.internal.ServletRequestImpl.execute(ServletRequestImpl.java:2585)
at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:197)
at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:170)
Caused by: java.lang.SecurityException: User <anonymous> does not have access to the administrator port.
at weblogic.rjvm.RJVMImpl.dispatchRequest(RJVMImpl.java:910)
at weblogic.rjvm.RJVMImpl.dispatch(RJVMImpl.java:844)
at weblogic.rjvm.ConnectionManagerServer.handleRJVM(ConnectionManagerServer.java:222)
at weblogic.rjvm.ConnectionManager.dispatch(ConnectionManager.java:794)
at weblogic.rjvm.t3.T3JVMConnection.dispatch(T3JVMConnection.java:570)
at weblogic.socket.SSLFilter.dispatch(SSLFilter.java:281)
at weblogic.socket.NTSocketMuxer.processSockets(NTSocketMuxer.java:105)
at weblogic.socket.SocketReaderRequest.execute(SocketReaderRequest.java:32)
</snip>An unexpected error occurred while retrieving the session for Web application: logContext.
Cause might Failed to retrieve the session from persistent store.
pl. check your configuration
Prasanna Yalam -
Administration Port Definition
Hello,
I have create 1 admin server & 1 manager server on same UNIX box. Can both instance
have same Administration Port number ?
Thanks
Kumar,
I am more confused with Admin Port.
Here is my Configuration :
Domain : Admn_srvr
Server Name : Admn_srvr ( Admin Server )
Port : 4401
SSL Port : 4402
Admin Port : 4501.
Server Name : Admn_srvr1 ( Managed Server )
Port : 4403
SSL Port : 4404
Admin Port : 4502.
In stead of using 4501 on Admin server, we have to set it 0 ?
In above configuration, Everything works fine. We are getting following error
message in admn_srvr.log file. I don't understand, Why Admin server tries to
contact Managed server ?
We are not passing Discover=True on commmand line.
++++++++++++++++++++
vr> <ExecuteThread: '1' for queue: '__weblogic_admin_rmi_queue'> <system> <> <170008>
<Unable to contact managed server - admn_srvr1, at 10.0.192.182:4403. Domain logfile
will not contain messages from this server.>
java.lang.IllegalArgumentException: Invalid user name or password
at weblogic.management.logging.DomainLogHandler.getMBeanHome(DomainLogHandler.java:281)
at weblogic.management.logging.DomainLogHandler.subscribeToServer(DomainLogHandler.java:243)
++++++++++++++
Thanks
Kumar Allamraju <[email protected]> wrote:
>Don't set administration port (via console) in 6.0. This is broken in 6.0 For
now just use Listen Port
>Also you can have admin & managed server's running on the same port,
>but they should be
>binded to a unique IP.
>
>--
>Kumar
>
>wlstech wrote:
>
>> Hello,
>>
>> I have create 1 admin server & 1 manager server on same UNIX box. Can
>both instance
>> have same Administration Port number ?
>>
>> Thanks
>
-
Administration Port / command line / console gui question
In the Admin_ref.pdf doc it says "After enabling the administration port, all Administration Console traffic must connect via the administration port". Does this mean that you can no longer use the web gui console to manage the servers?
I would like the option to script deployments (deploy ears, stop start servers etc.) via command line to reduce the possibility of user error during routine deployments.
I do config mgmt. and am not a developer so I may be getting hung up on the language here.
Thanks,
gjHi
For first question the answer is no. With the administration port, you enable the SSL between the admin server and Node manager-managed Servers. You can still use the web console.
For teh second question, you can use ANT or can use the WLS Scripting ..you can get more details in dev2dev.bea.com
Jin -
Error: All administrative tasks must go through an Administration Port
Hi,
I run weblogic's example MedRec as a cluster. I follow the
instruction and it works.
I have a java application (swing) connecting to the cluster.
When I set MedRec to use 7001 port for both admin and other
tasks, it works fine.
Now, I set weblogic to have separated administration port
(9002). I set ssl as requested. I can deploy ejbs to the
cluster from my swing application. So, the cluster setting
seems okay.
But I want to access ejbs from my swing application. When I
try to get InitialContext using url like "t3://mymachine:8001"
or "t3s://mymachine:7002" I get error:
"All administrative tasks must go through an Administration Port"
For my understanding, request an instance of InitialContext
is not an administration task. What is wrong here? What should I do?
Any information would be appreciated. Thanks in advance.Jimmy Ivanov <[email protected]> writes:
If you use the admin credentials then its an admin task. Try using a
different user.
andy
Hi,
I run weblogic's example MedRec as a cluster. I follow the
instruction and it works.
I have a java application (swing) connecting to the cluster.
When I set MedRec to use 7001 port for both admin and other
tasks, it works fine.
Now, I set weblogic to have separated administration port
(9002). I set ssl as requested. I can deploy ejbs to the
cluster from my swing application. So, the cluster setting
seems okay.
But I want to access ejbs from my swing application. When I
try to get InitialContext using url like "t3://mymachine:8001"
or "t3s://mymachine:7002" I get error:
"All administrative tasks must go through an Administration Port"
For my understanding, request an instance of InitialContext
is not an administration task. What is wrong here? What should I do?
Any information would be appreciated. Thanks in advance.-- -
How to monitor WebLogic Server when enable the Administration Port
It works fine when use Listenport 7001, but when enable the Administration Port(9002), it does not work.
Maybe I should do something to set the system environment property, but how?
help~
Sorry for my poor English~
Thanks~HI,
If the admin port is enabled then you have to use these parameters to run any scripts
-Dweblogic.security.SSL.ignoreHostnameVerification=true
-Dweblogic.security.TrustKeyStore=DemoTrust
-The you can use Admin URL: t3s://localhost:9002 with Admin Port and Secure Protocol.
Example:
java -Dweblogic.security.SSL.ignoreHostnameVerification=true -Dweblogic.security.TrustKeyStore=DemoTrust weblogic.WLST application_status.py
Initializing WebLogic Scripting Tool (WLST) ...
Welcome to WebLogic Server Administration Scripting Shell
Type help() for help on available commands
Connecting to t3s://localhost:9002 with userid weblogic ...
Successfully connected to Admin Server 'AdminServer' that belongs to domain 'Domain_7001'.
.Regards,
Ravish Mody
http://middlewaremagic.com/weblogic
Come, Join Us and Experience The Magic… -
POP without SSL on Exchange Online
Has anyone figured out a way to use POP without SSL?
Just like many things with Microsoft, I'm getting conflicting answers from Microsoft reps. Originally, sales people said it's supported, but when we started implementing, we couldn't get it to work so we opened a ticket and were told, once again, that
it's supported. I finally spoke to another rep who said it's not supported.
We have a ticketing system that uses POP and doesn't support SSL so we're stuck with having to set up a POP server in-house just for. Kind of defeats the whole purpose of the cloud.
I am very frustrated with Microsoft and regretting going with them for the outsourced email and the random restrictions they come up with using "security" as an excuse.Has anyone figured out a way to use POP without SSL?
Just like many things with Microsoft, I'm getting conflicting answers from Microsoft reps. Originally, sales people said it's supported, but when we started implementing, we couldn't get it to work so we opened a ticket and were told, once again, that
it's supported. I finally spoke to another rep who said it's not supported.
We have a ticketing system that uses POP and doesn't support SSL so we're stuck with having to set up a POP server in-house just for. Kind of defeats the whole purpose of the cloud.
I am very frustrated with Microsoft and regretting going with them for the outsourced email and the random restrictions they come up with using "security" as an excuse.
The guys from messageops.com has a guide how to I copy some of the Info
You can install stunnel on a server or workstation in your environment and configure your devices which don’t support TLS or POP3 over SSL to connect through that server to the Microsoft Online Services. Continue reading for details on how to
configure and use stunnel.
Getting stunnel up and running is pretty straight forward.
Step 1 – Install stunnel
You can download the stunnel Windows binaries from
http://www.stunnel.org/download/binaries.html
After downloading and installing the exe, you will likely want to configure it to run as a service. To do that, go to Start->All Programs->stunnel->Service Install.
Step 2 – Configure the stunnel configuration file
You can download a configuration file that has been preconfigured for use with Microsoft Online here.
The configuration file looks like:
# Stunnel configuration file for Microsoft Online POP3 and SMTP
# Author: MessageOps
# GLOBAL OPTIONS
client = yes
output = stunnel-log.txt
debug=4
taskbar=yes
[POP3 Incoming]
#Accept connections on port 110 and send to Microsoft Online on port 995 over SSL
accept = 127.0.0.1:110
connect = pop.mail.microsoftonline.com:995
[SMTP Outgoing]
#Accept connections on port 25 and send to Microsoft Online on port 587 over TLS
protocol = smtp
accept = 127.0.0.1:25
connect = Smtp.mail.microsoftonline.com:587
What this configuration file does is tells stunnel to listen or ports 110 and 25 and it then redirects connections on those ports to the appropriate SSL ports.
You might need to modify a few settings in the file:
The Microsoft Online Server names are for customers in the North America Datacenter. If you are in a different datacenter, update to the appropriate values.
With this configuration, stunnel will only listen on the address 127.0.0.1. This is only useful if the application that needs to connect to Microsoft Online resides on the system that stunnel is running on. You can remove the 127.0.0.1 portion
of the address to have the service listen on all IP Addresses. That would look like:
accept = 25
After the file has been modified, replace the existing stunnel.conf in the Program Files\stunnel directory with the new one.
Finally start the stunnel service. -
[SOLVED] unrealircd without ssl?
Hey guys, I recently picked up a raspberry pi and decided to try out running archlinux for my needs which are basically a mumble server, unrealircd server and a web server. I've run into an issue with unrealircd, one that's happened to me on windows as well. For whatever reason I can't get the configuration to work with unrealircd + ssl. The second i install the non ssl server and run my .conf it's fine and i can connect. Is there a package without ssl? I'm still new to the whole pure command line linux and all that so i'm not sure how to easily browse the different packages. So either if there's a non ssl package, or a way to disable ssl in the .conf would be lovely to know about. Thanks guys!
Last edited by hotlikedimes (2012-07-27 01:25:29)What error messages specifically are you getting with unrealircd and ssl? I don't remember that being much of a challenge to set up.
Looking at my configuration file, just had to tell it where to find the certificate and key:
set {
ssl {
certificate ssl.crt;
key ssl.key;
If you really want to disable it, try removing the "ssl;" line from the port configuration section and link section (not sure if anything else needs to be done, but that's the only references I can find to ssl). -
Email will not setup "Do you want to try setting up the account without SSL"
email will not setup, get message "Do you want to try setting up the account without SSL"
Is that a question? hard to tell
How about some info
What email (yahoo? gmail? compuserve?)
On what (the ipad? vista?)
Did you do anything in response to the question other than post here?
Maybe you are looking for
-
Call Manager 8.0 to 9.1 upgrade
We are currently running Call Manager 8, UCCE 8, and CVP 8. ICM/CTI 8. We would like to upgrade Call Manager 8 to 9.1 first before upgrading UCCE, CVP, etc., it could be months before these are upgraded. Does anyone know or foresee any issues if UCC
-
HOw do you change the Apple Password ro several Apple devices wit the same user name?
I am trying to change the Apple password for four Apple devices, including an iPhone, iPad, iMac Air, and Desktop MAC. The iPhone password is corrupted so it is interfering with the synching of the four devices on the iCloud. I want to reset the pa
-
Using expression in Default Value for Parameter in BI Publisher Model
Hi Everyone, I have created a BI publisher data model with bind parameters. It works fine, however, I need to put a default value in the parameter that is the result of a query. I have a month and a year parameter and for month parameter, I want the
-
Error while drag and drop in OAWD transaction
Hi Expert, One of my user is trying to attach a document through Drag and Drop in OAWD transaction after he attaches a document and when he cancels on the cancel button he is getting the following error: Crtical error during Archiving: Archiving Dire
-
Installation of Xcelsius Engage 2008 was successful, but cannot run it.
Xcelsius Engage2008 was installed successfully with given key code, it has no problem. However, when I run the product, the system pops up information like key code missing/expired and required to input key code again. then when I enter keycode, it s