Authentification question

Similar Messages

• User authentification question ?

  hi,
  i am using wsad, i want to protect some ressources, for this i add all
  security tags needed in the web.xml, except the informations about user,
  because it server specific (username, passwod, role), i am using websphere
  contained in the wsad, my question is at which location i have to put this
  information, is it in the server-cfg.xml file ????
  thanks for your help

  In WebSphere App. Server you have three options for storing user information (user name and passwords).
  1. LDAP server (any supported by WAS)
  2. You can use local operating system or domain accounts.
  3. You can implement inteface com.ibm.websphere.security.CustomRegistry
  This interface has ~14-16 methods, like getUsers(), getUser(String), checkUserPassword(String user,String password)... etc
  If you choose 3rd option - you obviously have to write a class with all these methods, and its really limited only to your imagination where you store user info in this case:)
  Oleg.

• Erratic authentification failure

  My computer has ceased to recognize my admin password when I try to run certain tasks, but not all tasks. Installers particularly are subject to failure. One VISE installer will request the system.privilege.admin right and tell me that "The software to be installed requires Administrator or higher level access privileges." Another installer (Stuffit Expander 10.0) requesting the same right will not give an error, but will just quit directly after I enter my password.
  I have tried repairing permissions, creating a new admin account, and would try running other maintenance a la MacJanitor, but that application also quits directly after I enter my password.
  Any help is appreciated. Thanks.

  I posted the same query again under the title "Authentification Question" and got some responses. You can find it (maybe) at:
  http://discussions.apple.com/thread.jspa?threadID=267636&tstart=0
  None of the suggestions helped my problem, so if you get anywhere with yours I would love to know.

• Question : got stuck on authentification on Adobe BrowserLab

  I am currently evaluating dreamweaver cs5.5 (before deciding whether buying or not).
  When I want to get a preview of my page in BrowserLab, I get stuck  on authentification with only the blue bar working.
  What should I do ? I do not know where to start for a check ? I am a brain new beginner in creating web pages.
  Thanks for your help

  Hi Sophie,
  to BrLab I can switch so too, my steps are these (screenshots from my German DW):
  or this way:
  From there DW leads me per this blue bar to (I inserted the English/USA-link for you, maybe you can use it directly): https://browserlab.adobe.com/en-us/index.html. From there I'll get this form:
  where I can accept or not "CS Services Additional Terms of Use".
  Good luck!
  Hans-Günter

• Authentification problem. Can't remember my security questions and con't remember my alternative email where sign in info has been sent

  I can't remember my security questions, neither my email address where sign in information has been sent?

  Authentication into what account?  If it's iTunes, good luck with trying to contact Apple about that.  All the contact info for the various departments is here.  http://www.apple.com/contact/

• General question on uning JAAS for webApp authentification

  Hi,
  I am new to the world of JAAS and its usage on securing web services like servlets on tomcat or ejbs on jBoss.
  I want to write a loginModule that allows login via JavaCard. Therefore I want to use a challenge and response authentication mechanism, sending some random data to the JavaCard (challenge), sign it and return it to the Web server (response).
  Programming the JavaCard was the easiest part. Now I am confused on some details of the JAAS authentication process:
  Sending the challenge from the server to the client looks for me as a perfect job for a callback object. The object would be created on the server, filled with random and transmitted (via RMI?) to the client that activates it via its CallbackHandler, adds the signature and return it to the server.
  Is this the way it goes?
  Jan

  We are trying to use roles such as GUEST and CUSTOMER using one principal
  for each role.
  However we find that this approach doesnt work and maybe someone can explain
  why.
  If in role (or principal) GUEST if have a permission say:
  DummyPermission view
  and in role CUSTOMER
  DummyPermission view, update, create
  If a subject has both "roles" i.e. both principals, the following happens:
  Depending on the order of principals in the policy file a check
  on DummyPermission create
  will fail or succeed.
  If GUEST is the first principal of course the check will fail. Unfortunately this
  means the whole check will fail.
  If CUSTOMER is the first principal in the policy file, the check for this principal will succeed and the whole check will proceed.
  That is really strange and I would consider it a bug. Can anyone help?
  and

• Questions about example "Dynamic JDBC Credentials for Model 1 and Model 2"

  Hello,
  i am trying to set up dynamic JDBC authentication in my ADF BC application - i want that it'll work like in Forms - a dababase user with the proper priveleges can log into my ADF BC application using his database login and password, and work with application.
  I've read the paper "How To Support Dynamic JDBC Credentials" at
  http://www.oracle.com/technology/products/jdev/howtos/10g/dynamicjdbchowto.html
  and test the very useful example, created by Steve Muench, which i've got from
  http://radio.weblogs.com/0118231/stories/2004/09/23/notYetDocumentedAdfSampleApplications.html#14
  The example works, but when i'm transfer its realisation in my application - it doesnt work the right way. The problems is the following:
  1. I can connect and work successfully only under the owner of the schema - the username and password of which i've wrote in the "jbo.server.internal_connection" string of the AM configuration.
  2. When i'm connecting under other users, which have all the rights to work with the db objects, used by application, i got the main page with the "Access Denied" message - as i have no priveleges to the tables.
  3. The big surprise is that if i am entering the fake username and password - the random letter combination - then i am getting the same behavior as in p.2 - the main page with the "Access Denied" message!
  And the last question is:
  4. Is it possible to set up the dynamic jdbc authentication using the build-in JDeveloper functions - i mean not to use that additional code, not override the ADF Binding Filter, and so on, but set up the similar behaviour (users log in using their db names and passwords) in several minutes following the standart documentation?
  Thanks in advance!

  One more question:
  I have 2 independent Application Modules in my application - to make the 2 transactions independent one form another, when working with different parts of project - and while using dinamic JDBC authentification, the user connects only in the first AM under the username he's entered, but the 2nd AM works under the predefined earlier (during development) connection for that AM.
  How can i make the 2nd AM to be connected under the logging in user (same as the 1rst AM)?

• Authentification does not appear

  Dear all,
  have set up the trial version of flash access 2.0. But at the ent I run into a problem: The media I stream into the player does not have an authentification mask. First of all the facts:
  1.) I set up the the REferencimplementation of the license Server - works fine and http://ip.adress.com/flashaccess/license/v1 says License Server is setup correctly
  2.) I created a file test_pol according to the document "protect Content.pdf"
  3.) I packaged a file (xyz.f4v) file with the command line packager.
  4) Now I trying to stream the packaged version (xyz_pack.f4v ) via our web application and the OSMF-Player.
  5.) It is buffering ... and buffering ... and buffering - noithing else happens, but the file is only 5 seconds, so that can't be it.
  6.) The only indication that I have is, that it says in the AdobeFlashAccess.log that the Packager Thread is not started because it doesn't find the *.pfx file.
  - Fisrt of all I do not understand that,cause the path it is looking at the file is there!
  - second I thought the license server is fine since it gaves the right message (according to 1.)
  7.) The setup is based on an earlier trial setup with an older certificate. I needed to reactivate the certificate because it wasn't valid anymore and actually just rebuild the certificates and changed them.
  Is there any log file I need to have a look to. What else could be the reason for that?
  Thans for any help!!
  A

  Dear Wang,
  thanks a lot for your input!
  Here my answers to your questions:
  - Have you ever played any encrypted content on your computer?
  => Yes I did with the older certificates
  If not, please try to play the default content in http://drmtest.adobe.com/SVP/SampleVideoPlayer_FP.html and see what happens. Please remember to check the "show DRM events" check box.
  => I tried that. It didn't play and it said in the messagebox for the events:
  What does that mean?
  BTW, are you using Flash Player? If yes, what is the version number of it?
  => Yes I am using Flashplayer, I have version 10,1,53,64
  I am looking forward to your help!
  Thanks
  Alex

• Basic Questions from Prospective Lion Server Switcher

  I have five servers I am running right now using Windows 2003 Server and various 3rd party packages.     Several years ago I became a Mac fan, moved all of my client based stuff to Mac, and now want to start moving my server based equipment to the OSX platform.
  I stopped by my local Apple Store, and they had a version of OSX Lion Server running on a MacMini, but couldn't seem to answer the most basic of questions because as their business people stated "We are not Server Certified" ... they recommended I talk to an outside consultant to get these basic questions answered which seems a little extreme.
  So I'm hoping the group can help.
  (1) I read through most of the Lion Server Advanced Administrative manual.    Lion server appears from the manual to do most of what I need.   However, when I tried doing some of the functions in the manual on the demo Lion Server at the Apple Store, many of the functions I wanted to do did not seemed to either be installed, or their were buttons missing in the Server App.     I do not know if this was a permission level problem, because the account I setup for myself had administrative rights.
  (2) In the mail app, it only appeared you could setup one mail domain.    It appeared you could setup virtual domains and users through the user app, but not through the mail domain itself?
  (3) I could not find any where to enable DNS services.    The manual seems pretty straight forward in turning on DNS, but the Lion Server I saw had no DNS services running, or any way to enable them?
  (4) Same for mailman listserv type function ... manual seems to be straight forward on enabling under the mail server, but again, no signs of the settings or enabling under the mail service.
  (5) Under the mail app, didn't find any way to setup alternative SMTP ports  ( I allow now Port 26 besides the standard Port 25 and SSL ports for my users.) ... I find port 26 gets past most firewalls at hotels etc.      Didn't see any way to control SMTP authentification too.
  (6) Under the Lion Server tech description, it talk about a built in web editor, saw nothing of the kind.
  So did the apple store have a limited install or am I missing something that the lion server manual does not match the capabilities of lion server.
  Love to get a straight answer before purchasing hardware to replace 5 present machines.
  Thank you.
  David

  Thanks for quick response.   Indeed, in hindsight, it appears that they had only installed the Server App, but not the Server Admin tools.
  Unfortunately, I am not a system admin, but I played one on TV <grin>
  All kidding aside ... I'm willing to learn, but would need most of the basics controlled through the GUI ... and then feel comfortable reading up and editting configuration files and running commands from the Terminal.
  On this line, is there good documentation of this, or is this something that you know because you are familiar with Unix?    ie something like the alternate port issue ... is this something in the GUI, or something I would have to edit via Terminal?
  Just trying to make an informed decision before jumping platforms.
  Thanks
  David

• Reporting Services authorisation, authentification

  I would like to use Reporting Services in our business application. I'm new with it and I'm not sure can we do it or not. We are using SQL Server authentification and our stored procedure retrives different information for different users (users have
  pseudopriveleges on tables rows), so our report server should go the same way. I've read some information about custom authentification and want to ask - If I login to SSRS with custom username and password how this credentials could
  be used in Report DataSources? What type of authentification should I select in Data Source? Does SSRS automaticaly send user credentials to datasources?
  Thanks for reading :-)

  I see.
  Those constraints were not clear from your original question.
  Thank you for clarifying.
  A bit more clarification is required, though:
  Do you plan to use SSRS embedded in your application (by using the Reporting Services API)?
  If so, you might find it easier to simply deliver an additional parameter to your reports which would serve as a sort of "User Token" (like "UserID" for example), so that your reporting queries would know which user is querying them;
  and the "User Token" will be delivered by your application code - hidden away from the user. Based on this "User Token", you might want to use
  impersonation for your existing procedures to work properly.
  Please note that you'd might want to use SSL in order to encrypt your traffic over the network in such a case.
  Also note that I'm only suggesting these convoluted suggestions because you mentioned that it must be SQL Authentication. If you'd accept Windows Authentication, you'd be able to use the built-in Windows NT authentication mechanism which would be much easier
  for you to implement in your reports.
  Eitan Blumin; SQL Server Consultant - Madeira Data Solutions;

• EAP-TLS User and machine authentication question

  Hello,
  i have a question regarding EAP TLS authentication in a wireless environment. We use Cisco AnyConnect NAM client and an ACS 5.1 to do EAP-TLS authentification. The Laptop and the user can be successfully authenticated using a certificate from our internal CA. i can also check the in our corporate AD if the user and machine are member of a certain group and based on the membership a can grant access to the network.
  i can see in the ACS when the laptops after a reboot logs on to the network, but i don't see a log when the laptop comes back from hibernate mode, i guess this is normal because the laptop sends only the autentication equest after rebooting.
  What i'd like to achive is, when a user logs on the it should always be checked if the machine was authenticated prior the user can get access to the network. Is there a way to do this with EAP-TLS and a LDAP connection to Active Directory.
  thanks in advanced
  alex

  Sounds like you rather want to use PEAP/MSChapV2

• Howto use two Authentification Schemes at once?

  I'm still new to certain Apex aspects. At the moment I'm struggeling with the implementation of different Authentification algorithms.
  I currently have a small APEX application that does the user authentification by LDAP (AD). However I want to add a few special users (GUEST, ADMIN, etc.) that are not in the active directory/LDAP but that exists as "normal" APEX user.
  Question is: How can I use two different Authentification schemas for one application at the same time?
  So that a user with a valid windows login is authenficated by its windows username/pwd
  and a guest user who is not in the LDAP but is configured as APEX user will be authorized too.
  The order of the different authorization schemas might also play a certain role here.
  Any hints/links how to achieve this are very welcome.
  Edited by: Sven W. on Nov 6, 2009 12:49 PM: Changed Autorization to Authentification

  Together with a fellow collegue we created a database function that checks for the application, fetches the current authentication schema and uses the LDAP information from there. It is not perfect, but serves our purpose well. Feel free to reuse or comment on it.
  create or replace package body SYN_UTIL
  as
      FUNCTION apex_ldap_authenticate (
        p_username in varchar2,
        p_password in varchar2
      ) return boolean as
        v_login_result  boolean := false;
        v_ldap          raw(32);
        v_ldapres       binary_integer;
        v_un            varchar2(100);
        v_ldap_port     varchar2(100);
        v_ldap_host     varchar2(100);
        v_app_id        integer;
      BEGIN
         -- test for empty variables
           if p_username is null then
                 raise_application_error(-20001, 'Please insert Username and Password!');
           end if;
           if p_password is null then
                 raise_application_error(-20001, 'Please insert Username and Password!');
           end if;
           -- check for APEX-workspace-users
          if  not v_login_result then
            if APEX_UTIL.IS_LOGIN_PASSWORD_VALID(
              P_USERNAME => p_username,
              P_PASSWORD => p_password
            ) then v_login_result := true;
            end if;
          end if;
          if not v_login_result then
            -- LDAP-Login
            dbms_ldap.use_exception :=true;
            -- get application-id    
            v_app_id := NV('APP_ID');
            -- get LDAP information from views     
            select auth.ldap_host, auth.ldap_port, auth.ldap_dn_string
            into v_ldap_host,v_ldap_port,v_un
            from APEX_APPLICATIONS ap
            join apex_application_auth auth on ap.application_id = auth.application_id
                and ap.AUTHENTICATION_SCHEME = auth.AUTHENTICATION_SCHEME_NAME -- current authentication
            where ap.application_id =  v_app_id;
            -- LDAP init
            v_ldap := DBMS_LDAP.INIT(
              HOSTNAME => v_ldap_host
             ,PORTNUM  => v_ldap_port
            -- extract domain from v_un and add p_username
            v_un := replace(v_un,'%LDAP_USER%',p_username);
            -- connect to LDAP-server
             begin   
              v_ldapres := DBMS_LDAP.SIMPLE_BIND_S(
                  LD     => v_ldap,
                  DN     => v_un,
                  PASSWD => p_password
             exception
              -- only handle defined exceptions
              when others then
                   v_login_result := false;
             end;
             -- disconnect from LDAP
             v_ldapres := DBMS_LDAP.UNBIND_S(LD => v_ldap);
             v_login_result := true;
          end if;  -- not v_login_result
        return v_login_result;
      END;
  end SYN_UTIL;THis function is put where usually the default LDAP logic is used.
  In the field Authentication Function instead of -LDAP- this function is called.
  return syn_util.apex_ldap_authenticate; A minor point still is that any entry in "LDAP Username Edit Function" is not considered.
  But since we don't use that currenty we didn't made the effort to integrate it.
  Edited by: Sven W. on Nov 10, 2009 3:20 PM

• URL Authentification every time in the session

  Hi,
  I have protected an URL with AD authentification. So, I've created an "Authentification
  Provider " and I put in web.xml the name of the url.It works fine but I would
  like the application to ask for authentification every time we go to this URL
  in the same session(without closing the browser).
  any idea ?
  thanks
  malik

  of course it will be a public kiosk :)
  In fact the JSP page I would like to protect is a form allowing the user to send
  some private informations by e-mail.
  Users may use the same PC to access to this web application and my client doesn't
  want for example this situation: if user do not close the browser and another
  user comes, goes to this page and send an email using his name.
  that's why client would like this scenario: user goes to this page send his e-mail
  and uses the menu to go to another page in the application. after this, he leaves
  the office to take a cofee without closing the browser. A new user comes and ask
  the protected page through the menu and aha it is protected !!! :)
  Another question?
  Thanks. Malik
  "Neil" <Neil-reply-in-newsgroup> wrote:
  Malik - This is the first time I've heard of such a request. Could you
  explain to me exactly what the situation is that has caused it? Do you
  have
  a browser that is being used as a public kiosk? What would you like to
  have
  happen if a page has embedded content such a images in it? Would you
  like to
  have the use authenticate for each requested URL even if it is embedded?
  If
  not for each requested URL, then what?
  Thanks - Neil
  "Malik" <[email protected]> wrote in message
  news:[email protected]...
  Hi Carmen and thanks a lot for your help.
  Sorry but I don't want the user to be re-authenticated for forwardonly. I
  would
  like this Re-authentification every time I type my url in the browseror
  in every
  "href".
  I read the documentation in the url you sent me and I didn't find anyadvice about
  my problem.
  I've also put the information you gave me in my weblogic.xml. I triedwith
  a simple
  forward and it doesn't work. I don't understand. I'm going to searchagain
  and
  I'll let you know.
  Cheers,
  Malik
  "Carmen" <[email protected]> wrote:
  Hi Malik,
  You will need to add to your weblogic.xml:
  <container-descriptor>
  <check-auth-on-forward/>
  </container-descriptor>
  There is some documentation on this on line.
  Look for Forward requests at the following link:
  http://e-docs.bea.com/wls/docs81/jsp/reference.html#59070
  and look also at weblogic.xml Deployment Descriptor Elements
  http://e-docs.bea.com/wls/docs81/webapp/weblogic_xml.html#1038823
  Let me know if that did not solve the problem.
  Carmen
  "Malik" <c> wrote:
  Thanks for your reply Carmen,
  Yes I put in my web.xml this element:
  <login-config>
  <auth-method>BASIC</auth-method>
  </login-config>
  The first time I go to my protected url a "windows screen" appears
  for
  authentification
  ( which is good).The problem is: if I go to an another URL and comeback
  to it
  this "windows screen" doesn't appear again. I would like this screen
  everytime
  I go to my protected URL.
  I don't know how to resolve his problem
  "Carmen" <[email protected]> wrote:
  Hi Malik,
  You may want to add to your web.xml:
  <login-config>
  <auth-method>BASIC</auth-method>
  </login-config>
  Look for more information at:
  http://e-docs.bea.com/wls/docs81/webapp/web_xml.html#1019996
  Carmen
  "malik" <[email protected]> wrote:
  Hi,
  I have protected an URL with AD authentification. So, I've created
  an
  "Authentification
  Provider " and I put in web.xml the name of the url.It works fine
  but
  I would
  like the application to ask for authentification every time we
  go
  to
  this URL
  in the same session(without closing the browser).
  any idea ?
  thanks
  malik

• Authentification over Win NT User

  I've a Question about authentification in a Oracle over a windows NT Domain User.
  I tried it with user identified EXERNALLY option, but when I use this, i must be loged on at the NT Client and have to be a local USER on this NT Client.
  Must The Oracle Server be in the same Domain Like the Users are ore can it be in Different one's ?
  Is There an other way to Authenticate in Oracle with the NT Domain Users ?
  Are there some Resources where i can find help ?
  Best Tanks Felix

  my E-Mail is [email protected]
  null

• Authentification errors and timeouts!

  Anybody else suffering again on the forum today?
  I'm getting authentification errors galore atm .....
  Will be bailing out soon methinks .... 

  Hi Guys
  Really sorry you are still having problems.  I'll send you both a PM so I can gather some specific info about this error and when you are seeing it.
  I haven't experienced it myself today so need to understand more about how and when it is happening so we can get it fixed.
  Appreciate your patience with this - I know it's frustrating to get errors and timeouts when you are posting responses etc. 
  Thx
  Kerry
  Retired BTCare Community Manager - StephanieG and SeanD are your new Community Managers
  If you like a post, or want to say thanks for a helpful answer, please click on the Ratings star on the left-hand side of the post.
  If someone answers your question correctly please let other members know by clicking on ’Mark as Accepted Solution’.