AppleCare policy problem

Similar Messages

• Aging Policy Problem

  Dear All
  I am facing problem with the aging policy in iplanet messaging server.My aging policy is not working
  Please find the below information for your reference
  1) bash-2.03# ./imsimta version
  iPlanet Messaging Server 5.2 Patch 1 (built Aug 19 2002)
  libimta.so 5.2 Patch 1 (built 23:25:07, Aug 19 2002)
  2)configutil Output
  store.expirerule.19042k7i.createtimestamp = 20070419051559Z
  store.expirerule.19042k7i.creatorsname = "cn=msg-mymessaging,cn=iplanet messaging suite,cn=server group,cn=mymessaging.mydomain.com,ou=mydomain.com,o=netscap
  eroot"
  store.expirerule.19042k7i.folderpattern = user/%@mydomain.com/*
  store.expirerule.19042k7i.messagedays = 90
  store.expirerule.19042k7i.modifiersname = "cn=msg-mymessaging,cn=iplanet messaging suite,cn=server group,cn=mymessaging.mydomain.com,ou=mydomain.com,o=netsca
  peroot"
  store.expirerule.19042k7i.modifytimestamp = 20070419051614Z
  store.expirerule.19042k7i.objectclass = nsmsgcfgexpirerule
  store.expirerule.createtimestamp = 20030427141705Z
  store.expirerule.creatorsname = "uid=admin,ou=administrators,ou=topologymanagement,o=netscaperoot"
  store.expirerule.modifiersname = "uid=admin,ou=administrators,ou=topologymanagement,o=netscaperoot"
  store.expirerule.modifytimestamp = 20030427141705Z
  store.expirerule.objectclass = nsmsgCfgContainer
  store.expirerule.santosh.createtimestamp = 20090317095139Z
  store.expirerule.santosh.creatorsname = "cn=msg-mymessaging,cn=iplanet messaging suite,cn=server group,cn=mymessaging.mydomain.com,ou=mydomain.com,o=netscape
  root"
  store.expirerule.santosh.folderpattern = user/[email protected]/*
  store.expirerule.santosh.messagecount = 5
  store.expirerule.santosh.messagedays = 1
  store.expirerule.santosh.modifiersname = "cn=msg-mymessaging,cn=iplanet messaging suite,cn=server group,cn=mymessaging.mydomain.com,ou=mydomain.com,o=netscap
  eroot"
  store.expirerule.santosh.modifytimestamp = 20090317095315Z
  store.expirerule.santosh.objectclass = nsmsgcfgexpirerule
  store.expirestart = 1530
  Any one can help me ?

  Prashant_wagh wrote:
  1) bash-2.03# ./imsimta version
  iPlanet Messaging Server 5.2 Patch 1 (built Aug 19 2002)
  libimta.so 5.2 Patch 1 (built 23:25:07, Aug 19 2002)Seriously? I would say you should upgrade but I would be probably wasting my time.
  2)configutil Output
  store.expirerule.19042k7i.folderpattern = user/%@mydomain.com/*
  store.expirerule.19042k7i.messagedays = 90
  store.expirerule.santosh.folderpattern = user/[email protected]/*
  store.expirerule.santosh.messagecount = 5
  store.expirerule.santosh.messagedays = 1You have two overlapping rules. Only one rule can be applied to a folder. You could try setting:
  store.expirerule.santosh.exclusive = yeshttp://docs.sun.com/source/816-6009-10/store.htm
  Regards,
  Shane.

• Implementing own Policy - Problems occur.

  I am implementing my own Policy class (via the -Xbootclasspath and
  java.security file). (Using jdk 1.4)
  I have two problems:
  1. My Policy class is not instantiated unless I call Policy.getPolicy()
  a. I have run the app as such:
  java -Djava.security.manager -Xbootclasspath:d:\JavaProjects;d:\jdk1.4\jre\l
  ib\rt.jar -Djava.security.policy=d:\javaprojects\com\zeno\security\policy\po
  licyfile.policy  MyAppb. I have set (in java.security):
  policy.provider=com.MyTest.SecurityPolicy
  c. I have in the constructor: System.out.println("Policy Instanitated");
  d.When I run the app, I do not get "Policy Instantiated" until AFTER I
  call Policy.getPolicy() (and I never get it if I don't call getPolicy())
  2. For some reason, when I do the following, it never calls getPermissions()
  or implies() on my Policy file:
      FileInputStream fis = new FileInputStream("d:\\testfile.txt");
      int ch;
      while ( (ch = fis.read()) != -1 )
          System.out.println(ch);
      }a. Inside my Policy class' methods I have a System.out.println() for
  each one, and they're never called.
  Thank you

  I am experiencing almost exactly the same problem. The documentation seems a little spotty on this, so we're probably missing something. I am using the following syntax:
  java -Djava.security.manager -Dpolicy.provider=security.MyPolicy -Xbootclasspath/a:c:\jdk1.3.0_02\jre\classes -Djava.security.policy=java.policy security.Test
  The -Xbootclasspath/a: option appends (at the beginning) instead of replacing, so you don't have to specify rt.jar. I put my custom Policy class (security.MyPolicy) in c:\jdk1.3.0_02\jre\classes, thinking that this path was searched by default (b/c that's what the documentation claims.) But, my Test class was not able to instantiate it directly until I specifically added the -Xbootclasspath option, but even then my Policy class is not used. In fact, it seems to still be using the default Policy implementation and still respects entries in the java.policy file even though my custom security.MyPolicy class does not do this.
  In general, the behavior I'm seeing (we're seeing?) is consistent with the -Dpolicy.provider being ignored completely. I get the same behavior if I set this to "asdf". So this must be wrong somehow, even though it is consistent with all the documentation I can find...

• CX Policy Problems

  Hello,
  I am in the process of implementing content filtering on the ASA CX module. I have a lot of problems unfortunetly and I have TAC and my account team engaged but I also want to reach out to the community and see who else is using CX and what their experiences have been.
  For the sake of this post I will pose the follwoing question:
  I have a "working" policy that is atleast  taking appropriate action and filtering some of the users I specified filtering for in an identity object that is an AD group. This group is my test group and my AD account is a member of that group. Filtering worked for me 100% the time until a code upgrade to 9.2.1.1-48. No I am ot filtered and the events associated for my user show an implicit allow policy. I can't find this implicit allow policy but I assume this is a the default policy. It doesn't seem like the CX module has any problem identifying my user ID but maybe it doesn't see me as a group memeber or maybe my identity object has been currupted. I just setup and got my hands on this product so I'm a bit out of my element. I have high hopes for using this product but I need to prove it can actually work first!
  Anyone have any suggestions or experiences with CX they would like to share?
  Regards,
  -Dan   

  Thanks for the reply Collin,
  I did fix this issue a few days ago by blowing away and re-configuring the rule. I use the ADA for AD auth and I have not seen any problems with CX identifying users.
  Collin, do you use the CX in a large production environment? How long have you been using it to filter content? Would love to chat with you a bit out of band if you have time let me know.
  Regards,
  -Dan

• Fine-Grained Password Policy problem

  Hi All,
  I'm testing a Fine-Grained Password Policy for a group of users.
  I created a test PSO using ASDI Edit and applied the PSO to a global security group.
  Test user has been added to this group.
  The PSO settings include "Enforce password history: 5"
  The user has changed the password.
  After 24h when I logged in as the user and changed the password - for example: Password1.
  After another 24 hours I changed the password to Password2.
  One day later I've been asked to change the password again.
  In theory I shouldn't be able to use any of the 5 previous passwords (password history = 5) but when I entered Password1 it was accepted.
  Do you know where can be the problem ?
  System info: Windows Server 2008 R2 (forest/domain level is also 2008)
  Regards,
  Marcin

  This is very interesting. I don't have any lab to repro though... So I can't look at it closer.
  From an LDAP perspective, when you change your password on AD, you have to comply with the password history policy. This requirement is send by the server to the client thanks to the supported control: LDAP_SERVER_POLICY_HINTS_OID that you can see just by
  looking at the RootDSE of one of your DC (http://msdn.microsoft.com/en-us/library/cc223320.aspx Used with an LDAP operation to enforce password history policies during password set). I am
  aware of issues with AD-LDS not honoring it, but not AD... I am not sure if the situation described with FIM here matches your issue:
  http://support.microsoft.com/kb/2443871 in this article:
  "The "Enforce password history" and "Minimum password age" Group Policy settings do not work when you reset the password for a Windows Server 2008 R2-based or a Windows Server 2008-based computer."
  But it would mean that it also affects users not having a FGGP (because this isn't specific to FGGP), ad the minimum password age as well. If you have a chance to try this in a lab, let us now... In the mean time, if you can share logs or code from your
  app? Like the section that does the password change?
  Note: Posts are provided “AS IS” without warranty of any kind, either expressed or implied, including but not limited to the implied warranties of merchantability and/or fitness for a particular purpose.

• RMI application policy problem..

  Hi;
  Because i am very new in eclipse and java i will ask you an easy question which is realy hard to find out for me.
  I created an RMI project in eclipse and i put the codes inside. When i am trying to run it is says
  Security Manager loaded
  Exception in thread "main" java.security.AccessControlException: access denied (java.net.SocketPermission 127.0.0.1:1099 connect,resolve)
  I searched a solution and they are saying create a policy file with same code inside and run with it .
  But i got no clue about how i will write
  java -Djava.security.policy=policy.all SampleServerImpl
  java -Djava.security.policy=policy.all SampleClient
  in eclipse to run code . And i put the policy inside of project folder but id didn't recognize it automaticly.
  Thank you ...
  Edited by: seray.uzgur on Jul 10, 2008 6:55 AM

  Hi,
  What i could see the solution to your problem is.
  create a file name policy.all having the code
  grant {
  // Allow everything for now
  permission java.security.AllPermission;
  & when u call a client call like if u r calling a client through Ant
  do llike this
  <target name="run" >
            <java classname="test.Sample" fork="yes" failonerror="true">
                 <jvmarg value="-Djava.security.manager"/>
       <jvmarg value="-Djava.security.policy=policy.all"/>
                 <classpath refid="src.classpath" />
            </java>
       </target>
  See if that works for you.

• WS Policy problem for encryption

  Hello,
  1- I'm using osb 10g3 and I have problems to configure ws policy for encryption.
  I have configured weblogic realm security to provide my keystore and also certificat path provider to register my trusted key
  and PKI credential mapper .but I have always the same soap fault :
  java.security.cert.CertPathBuilderException: [Security:090686]The CertificateRegistry could not build a certificate path for the subject key identifier
  My certif X509V3 public key
  . This indicates that either someone is trying to access the server with an untrusted subject key identifier or that the administrator has forgotton to register a certificate with this subject key identifier in the CertificateRegistry.
  Someone can help me to configure this step ?
  (i'm using soapui and for testing my proxy and the policy used is encrypt.xml policy
  Edited by: user11144716 on Jul 28, 2009 6:19 AM

  Can you post more details, like the annotations you used or the policy?

• WS Policy problem for encryption at proxy side

  Hello ,
  I'm using osb - weblogic 10g3 and I have problem to configure ws policy for encryption in my proxy.
  I have configured weblogic reaml security to provide my keystore, also certificat path to register my trusted key
  and PKI credential mapper .but I have always the same soap fault :
  Trace:
  java.security.cert.CertPathBuilderException: Security:090686The CertificateRegistry could not build a certificate path for the subject key identifier
  My certif X509V3 public key
  . This indicates that either someone is trying to access the server with an untrusted subject key identifier or that the administrator has forgotton to register a certificate with this subject key identifier in the CertificateRegistry.
  Someone can help me to configure this step ?
  The policy is enable at the proxy side. and the the registry is set to trust my certificate (.pem).
  Thanks !

  Hello ,
  I'm using osb - weblogic 10g3 and I have problem to configure ws policy for encryption in my proxy.
  I have configured weblogic reaml security to provide my keystore, also certificat path to register my trusted key
  and PKI credential mapper .but I have always the same soap fault :
  Trace:
  java.security.cert.CertPathBuilderException: Security:090686The CertificateRegistry could not build a certificate path for the subject key identifier
  My certif X509V3 public key
  . This indicates that either someone is trying to access the server with an untrusted subject key identifier or that the administrator has forgotton to register a certificate with this subject key identifier in the CertificateRegistry.
  Someone can help me to configure this step ?
  The policy is enable at the proxy side. and the the registry is set to trust my certificate (.pem).
  Thanks !

• PXE Policy problem

  For a couple of weeks ago our old Netware6 Zen 7.0.1 PXE server died. At the same time we were restoring our ZEN environment we upgraded the server to SLES10.2 / OES2. After that upgrade our Server PXE policy isn't responding on some workstations.
  Turning on the debug mode I can see that the server isnt reading the Workstation information correctly. And a Image match will not be fullfilled.
  Is there any way to set how the server will read the information?
  Is there any way to use the ProductName in the C1 policy?
  As it is now we are not able to deliver machines to our clients.
  Any ideas?
  "Wed Feb 25 14:54:43 2009 -- [RPM] Workstation Information:
  Dumping Workstation Information:
  WorkstationInformation.signature ............ ZENWSINF
  WorkstationInformation.version .............. 6
  WorkstationInformation.length ............... 5176
  WorkstationInformation.Chipset ..............
  WorkstationInformation.Video ................ Intel Corporation
  WorkstationInformation.Network .............. Intel Corporation
  WorkstationInformation.Soundcard ............ Intel Corporation HD Audio Controller
  WorkstationInformation.Diskcontroller .......
  WorkstationInformation.MACAddress............ 001e:330b:cd8f:0000:0a10:0384
  WorkstationInformation.ipAddress ............ 10.16.3.132
  WorkstationInformation.BiosAssetTag ......... Tag 12345
  WorkstationInformation.BiosSerialnumber ..... YKKT006813
  WorkstationInformation.BiosVersion .......... Phoenix M118D0FR.104 - R061 - 1659 11/27/2008
  WorkstationInformation.SystemManufacturer ... FUJITSU SIEMENS
  WorkstationInformation.ProductName .......... ESPRIMO Mobile M9410
  WorkstationInformation.HarddriveSizeMB ...... 152627
  WorkstationInformation.RAM .................. 2048
  WorkstationInformation.BootMedia ............ 3
  WorkstationInformation.zenPartitionType...... 0x00
  Wed Feb 25 14:54:43 2009 -- [GPM]

  Originally Posted by jorgensj
  Is there any way to use the ProductName in the C1 policy?
  Agree, I would also like to use the ProductName in policies...!
  And another thing for Novell, I have stated this many times before:
  Why not ALWAYS put in the pci PID in the string?
  Our problem is that when running on new hardware, we often get h/w detected as 0x2214... Then after the next update, this has suddenly changed in to "Intel bla bla bla network card"
  That's OK, being able to see hardware string that make sense is always better, but why not put it in the format "[0x2214] Intel bla bla bla network card"
  That way our policys wouldn't stop working just because the hardware is correctly identified after an upgrade..!

• WSDL Policy Problem

  Hi All
  I'm  facing this issue...
  My Process Integration version is: 7.1 EHP1
  When create a WSDL, this comes with the WS_POLICY by default in true!
  and thats my problem....
  I'll try to explain all my Steps:
  1.- in the ESR I Have created all the necesary (DT, MT, SI, MM, OP)
  2.- in te Directory, i Have created all objects: Receiver, Sender, I.Det, R.Det.
  3.- Right click on Sender Agreement -> Display WSDL
  4.- this windows comes with 2 things: 1 the WSDL URL and 2, the WSDL per se
  if I download the WSDL, I can change manually  the ws_policy from "true" to "standard" or "false", and with this it works fine... but this solutions doesn't works for me... I need to use the WSDL URL (http://XXXXX:50100/dir/wsdl?p=sa/10eee4f1d18632f182bf5eb4b42cfcdb)
  but, if I use, the WSDL URL, the definition inside it comes with ws_policy = TRUE and I can't change it.
  I have followed this link: /people/holger.stumm2/blog/2010/03/19/wsdl-wspolicy--what-is-it-und-how-can-i-get-rid-of-it-in-pi
  wich talks about how to replace the call of WS_POLICY with STANDARD,
  this is my real URL:
  http://XXXXX:8000/sap/bc/srt/wsdl/sdef_ZSI_LABORATORIO_GS02_REQUEST_S/wsdl11/ws_policy/document?sap-client=100
  this is my URL changed.
  http://XXXXX:8000/sap/bc/srt/wsdl/sdef_ZSI_LABORATORIO_GS02_REQUEST_S/wsdl11/STANDARD/document?sap-client=100
  but I see than this is pointing to SAP ECC and not to PI... here I'm confused.
  if this works I could see the messages from Legacy to PI in the SXI_MONITOR???
  basically what I can see with this is: a direct call to the "service interface" wich I have activated in the SPROXY.
  But I think than the Policy status can't be changed in PI...
  when I look in the Service Interface WSDL TAB I can see, than already it has the policy in true, I have set the Security profile to "NO" but the WSDL TAB shows: <wsp:UsingPolicy wsdl:required="true" />
  if someone knows how to fix it I'll apreciate it
  Thanks and Regards

  Hello,
  I know it's an old topic, but we've got the exact same problem here.
  We want to remove the policy tags in the WSDL generated by PI (7.11), or at least set  <wsp:UsingPolicy wsdl:required="false" />
  Our webservice is consumed by another application that stumbles upon these tags. Now, everytime we have to remove these tags manually. Hope someone can provide me with a solution. Thanks in advance.
  Regards,
  Floris

• Routing policy problem !!!

  Hi everybody,
  Sr because my English skill is not good so much.
  Pls help me to solve the problem like this: I create the Network  with policy routing with source address. The policy is: packet from 172.16.6.1 to 4.4.4.4 must go to next-hop Pigpen (172.16.4.3). And when link from SW to Pigpen down, traffic must go to Lucy.
  But it cannot switchover from the next-hop address that I config to the normal routing when the next-hop not available. I have config set ip next-hop verify-availability with track, but it not ok. CDP enable on all router.
  Config on Linus:
  Linus#show ip access-lists
  Standard IP access list 1
      10 permit 172.16.6.0, wildcard bits 0.0.0.255 (581 matches)
  Linus#show run | sec route-map
   ip policy route-map 172.16.6.1
  route-map 172.16.6.1 permit 10
   match ip address 1
   set ip next-hop verify-availability 172.16.4.3 10 track 1
   set ip next-hop 172.16.4.3
  Linus#show run inter e0/1
  Building configuration...
  Current configuration : 144 bytes
  interface Ethernet0/1
   no switchport
   ip address 172.16.5.1 255.255.255.0
   ip ospf 1 area 0
   ip policy route-map 172.16.6.1
  Linus#show run | sec ip sla
  track 1 ip sla 1 reachability
  ip sla 1
   icmp-echo 172.16.4.3 source-ip 172.16.4.1
  ip sla schedule 1 life forever start-time now
  Linus#show run | sec track
  track 1 ip sla 1 reachability
   set ip next-hop verify-availability 172.16.4.3 10 track 1
  Trace result from 172.16.6.1
  172.16.6.1#traceroute 4.4.4.4
  Type escape sequence to abort.
  Tracing the route to 4.4.4.4
  VRF info: (vrf in name/id, vrf out name/id)
    1 172.16.6.2 8 msec 4 msec 4 msec
    2 172.16.5.1 4 msec 8 msec 4 msec
    3  *  *  *
    4  *  *  *
    5  *  *  *
    6  *  *
  Debug log from Linus
  Linus#
  *Jul  7 10:10:48.359: IP: s=172.16.6.1 (Ethernet0/1), d=4.4.4.4, len 28, FIB policy match
  *Jul  7 10:10:48.359: IP: s=172.16.6.1 (Ethernet0/1), d=4.4.4.4, len 28, PBR Counted
  *Jul  7 10:10:48.359: IP: s=172.16.6.1 (Ethernet0/1), d=4.4.4.4, g=172.16.4.3, len 28, FIB policy routed
  Linus#
  *Jul  7 10:10:51.367: IP: s=172.16.6.1 (Ethernet0/1), d=4.4.4.4, len 28, FIB policy match
  *Jul  7 10:10:51.367: IP: s=172.16.6.1 (Ethernet0/1), d=4.4.4.4, len 28, PBR Counted
  *Jul  7 10:10:51.367: IP: s=172.16.6.1 (Ethernet0/1), d=4.4.4.4, g=172.16.4.3, len 28, FIB policy routed
  Linus#
  *Jul  7 10:10:54.359: IP: s=172.16.6.1 (Ethernet0/1), d=4.4.4.4, len 28, FIB policy match
  *Jul  7 10:10:54.359: IP: s=172.16.6.1 (Ethernet0/1), d=4.4.4.4, len 28, PBR Counted
  *Jul  7 10:10:54.359: IP: s=172.16.6.1 (Ethernet0/1), d=4.4.4.4, g=172.16.4.3, len 28, FIB policy routed
  Linus#
  *Jul  7 10:10:57.367: IP: s=172.16.6.1 (Ethernet0/1), d=4.4.4.4, len 28, FIB policy match
  *Jul  7 10:10:57.367: IP: s=172.16.6.1 (Ethernet0/1), d=4.4.4.4, len 28, PBR Counted
  *Jul  7 10:10:57.367: IP: s=172.16.6.1 (Ethernet0/1), d=4.4.4.4, g=172.16.4.3, len 28, FIB policy routed
  I attach my network picture.
  Config on
  Pls help me !
  Thanks so much !

  Absolutely
  #show access-list 102
  Extended IP access list 102
      10 deny ip 192.168.100.0 0.0.0.255 192.168.110.0 0.0.0.255
      20 permit ip 192.168.100.0 0.0.0.255 any (1 match)
      30 permit ip 192.168.0.0 0.0.0.255 any
      40 permit ip 10.0.0.0 0.0.0.255 any
  R1#show access-list 103
  Extended IP access list 103
      10 deny ip 192.168.100.0 0.0.0.255 192.168.110.0 0.0.0.255
      20 deny ip host 192.168.100.7 any (2775 matches)
      30 permit ip 192.168.100.0 0.0.0.255 any (44855 matches)
      40 permit ip 192.168.0.0 0.0.0.255 any (3561 matches)
      50 permit ip 10.0.0.0 0.0.0.255 any

• Wireless Group Policy Problem - Half the policy applying

  Hi
  I'm at a loss for where to investigate this one so I'm hoping for some suggestions.
  We have a single GPO to send out settings for wireless access to our network. On the wireless we have two SSIDs as below.
  1. Staff SSID
  My manager wanted to reduce the security issues with this as much as possible, so I've generated a GUID for the SSID name, set it not to broadcast the SSID and set the group policy to show the network as "<company
  name> Staff". It uses WPA2-Enterprise with RADUIS authentication to silently pass the authentication credentials of the currently logged on user providing SSO.
  2. Guests SSID
  This uses a preshared WPA2 key and provides guests with internet access and is blocked from the local LAN.
  The GPO is applied in such a way that company laptops are have the Staff SSID displayed in the available connection list, they're allowed to connect to it (as long as they're in the appropriate AD group for RADIUS authentication) but they are blocked from
  connecting their laptops to the Guests SSID. The important thing is that this single GPO controls both settings.
  On a few laptops we have been noticing that the blocking of the Guests SSID is working fine, but the Staff SSID is failing to show. Its as if only half the policy is applying. This is happening to only a small number of laptops which reside in the same AD
  OUs and it doesn't matter who logs on, the same problem occurs. The laptop is able to view all other wireless networks in the vicinity.
  I have logged in to one as myself (with Domain Admin permissions) and I get this problem, but on other laptops, the policy applies completely allowing me to connect to the Staff SSID while blocking the Guests SSID, as it should.
  I've run a RSOP against the laptop which shows that the policy is applying (confirmed by the fact that the Guests SSID is blocked) and the only problem I can find in the event logs are for the EapHost service with event ID of 2002. I've followed the advice
  in a few forum posts below but have been unsucccessful (not even sure if it's related to the GPO issue).
  http://www.eventid.net/display-eventid-2002-source-Microsoft-Windows-EapHost-eventno-10874-phase-1.htm
  http://www.sevenforums.com/network-sharing/336450-event-id-2002-source-eaphost-eap-method-dll-path-name-failed.html
  Any suggestion would be greatly appreciated.

  Hi Daverino,
  Since RSOP shows that the policy has been applied, it should not be a grouppolicy issue.
  According yourdescription, it seems that the system of the laptop has been changedby the user data.
  Could you please post the original information about event 2002? It is useful for further troubleshooting.
  Best Regards.
  Steven Lee
  TechNet Community Support

• AppleCare Registration Problem

  I got a new 13'' MacBook Pro for Christmas this year (2012), and my parents got me the AppleCare Protection Plan with it. When I got to register it online, it says:
  We're sorry, but the registration number does not match the product or agreement type you have selected. Please check your agreement type or serial number and re-enter the information. If the information is correct, you may need to contact us.
  I know I am entering all the information correctly, so I don't know what's wrong.
  If anyone has had the same problem, I would love help!
  Thanks so much ya'll!

  This has happened to others... Give AppleCare a call.

• Active-X update group policy problem

  I am having problems distributing
  install_flash_player_active_x.msi via a group policy in our MS AD.
  I am familiar with creating GPOs. I used a GPO to distribute
  Adobe Reader without any problems, but this active-X update will
  not apply via a gpo. The error I get is: The install of application
  Adobe Flash Player 9 ActiveX (2) from policy Adobe_Flash_Patch
  failed. The error was : The installation source for this product is
  not available. Verify that the source exists and that you can
  access it.
  I created an administration install and used the same shared
  distribution folder as I did for Adobe Reader so I know that this
  error is not due to permissions. Any help would be gratefully
  appreciated.

  >  9. The Database Security Editor appears. You need to add the user or
  >     group that you want the *Security* tab to be removed from.
  What EXACT group was entered in your GPO there?
  And if you want to revert, it is most probably NOT sufficient to simply
  unlink the GPO, but you need to implement a second GPO that grants the
  required read rights (aka "removes the deny entry")
  Martin
  Mal ein
  GUTES Buch über GPOs lesen?
  NO THEY ARE NOT EVIL, if you know what you are doing:
  Good or bad GPOs?
  And if IT bothers me - coke bottle design refreshment :))

• AppleCare versus AppleCare Plus problems purchasing

  Hello everyone!!!
  I've bought each and every iPhone that has come out---in all variations and I've really never had any problems.  Naturally, when the iPhone 4S came out in October 2011, I bought one from the Apple Store online.  At that time, the original Apple Care was still available and there was NO requirement to add it at the time of purchase or within 30 days. 
  Now, it's several months later and I want to buy the original Apple Care for my iPhone 4S. My iPhone 4S is still under the original warranty until 10-12-12.  However, the staff at Apple Store online is repeatedly telling me that I can't buy the original Apple Care.  That is does not exist and because it's been over 30 days since I bought my iPhone 4S, I can't buy AppleCare +.
  (Which THAT I understand.)
  My question is------- has anyone else run into this problem and how was it resolved??  Since there was NO AppleCare Plus offered at the time of the iPhone 4S release, why am I being denied the option to further protect my iPhone as I have EVERY OTHER iPHONE IN THE PAST??????
  The girl I spoke to tonight essentially told me I had no idea what I was talking about and referred me to Customer Service----but since I've been buying Apple products for 25+ years and I've been buying AppleCare for EVERY product I have since that has been offered, I don't understand why I'm going to be stuck in limbo with this phone.  It is really frustrating me.
  Any ideas that anyone has I would really appreciate!  If you've had a similar problem, please let me know how you solved it.
  THANK YOU!!!
  PDUB OKC

  Well Good news everyone!! I called Technical Support with AppleCare and they sold me the original AppleCare coverage for both my iPad 2 and my iPhone 4S.  I spoke to a VERY nice gentleman named Miguel who told me they had been running into this problem with some customers that had just been in limbo because of the status change of AC----but that the original AC was still available if the original warranty was still intact.  So, YEAH!  Apple came through and this is yet another reason I am such an Apple devotee!
  GOLD STAR FOR APPLE AND MIGUEL IN TECH SUPPORT--SAN ANTONIO!
  PDUB OKC