Cann't enable security on listen socket

Similar Messages

• How do you globally enable security?

  I defined a port 443 listen socket, a virtual server class and virtual server for SSL. However when I apply the changes I get the following error:
  <web-server>/config/server.xml, line 25, column 407: Security is globally disabled in this server instance. Secure servers cannot be enabled
  How can I enable security? Where is "globally disabled"?
  Thank you!

  I figured it out. It's in chapter 6 of the Admin Guide. There is a section called "Configuring Security Globally".

• Virtual server listen socket

  n SUN Webserver6.1, Listen socket(port) 80, 8080, and 8888 are
  enabled. But after created some virtual servers, I would like to
  dedicate port 8080 to one virtual server and port 8888 to another one.
  But it seems that I cannot do this. Even in the server.xml file I saw
  that port 8080 is only used by one virtual server, but this virtual
  server still response to port 8888. Just wonder why? or say can I setup
  that one virtue server is only response to one por and how?
  Another question is: in the SUN Webserver 6.1 documentation, it says "
  if you want to create a listen socket for IP-address-based virtual
  servers, the IP address must be 0.0.0.0, ANY, any or INADDR_ANY,
  meaning it listens on all IP address on that port."
  Does that mean in an IP-based virutal server, cannot use a specific IP
  when creating a listen socket? I am a bit confusing here. IP base
  virtual server is that you need to specifiy an IP when creating listen
  socket, isn't it?
  Thanks for advice!

  You can define virtuals in your server.xml file manually. You can have one virtual listening to one or many ports(LS) and you can have several virtuals listening to the same port. And you can assign IP address to virtual as well.
  For example with YourServerIP listening to 4 ports you can do the following:
  <LS id="ls1" ip="YourServerIP" port="8088" security="off" servername="YourServerName" defaultvs="YourDefaultVS"/>
  <LS id="ls2" ip="YourServerIP" port="8089" security="off" servername="YourServerName" defaultvs="YourDefaultVS"/>
  <LS id="ls3" ip="YourServerIP" port="8080" security="off" servername="YourServerName" defaultvs="VS3"/>
  <LS id="ls4" ip="YourServerIP" port="80" security="off" servername="YourServerName" defaultvs="VS5"/>
  <VSCLASS id="vsclass1" objectfile="obj.conf">
  <VS id="YourDefaultVS" connections="ls1 ls2" mime="mime1" aclids="acl1" urlhosts="www.YourURL.com">
  <PROPERTY name="docroot" value="/PathToYourDocumentRoot1"/>
  <USERDB id="default"/>
  </VS>
  <VS id="VS3" connections="ls3" mime="mime1" aclids="acl1" urlhosts="www.AnotherURL.com">
  <PROPERTY name="docroot" value="/PathToYourDocumentRoot2"/>
  <USERDB id="default"/>
  </VS>
  <VS id="VS4" connections="ls4" mime="mime1" aclids="acl1" urlhosts="YourServerIP">
  <PROPERTY name="docroot" value="/PathToYourDocumentRoot3"/>
  <USERDB id="default"/>
  </VS>
  <VS id="VS5" connections="ls4" mime="mime1" aclids="acl1" urlhosts="www.YetAnotherURL.com YetAnotherURL.com">
  <PROPERTY name="docroot" value="/PathToYourDocumentRoot4"/>
  <USERDB id="default"/>
  </VS>     
  <VS id="VS6" connections="ls4" mime="mime1" aclids="acl1" urlhosts="www.AsManyURLsAsNeddedSeparatedBySpace.com">
  <PROPERTY name="docroot" value="/PathToYourDocumentRoot5"/>
  <USERDB id="default"/>
  </VS>          
  </VSCLASS>
  Hope it helps.
  Alexander aka ttalex

• Changes are not saved under 'listen sockets' - Webserver 6.1 SP2

  Hi all,
  I'm running Webserver 6.1 SP2 on Solaris 9 and face a strange behaviour when I make changes under 'Listen sockets'. I want to enable nearly everything regarding SSL2 and SSL3 to serve older IE browser versions.
  My config is like
  SSL Version 2 - [enabled]
  Use the default set of SSL version 2 ciphers [enabled]
  <here I check every checkbox>
  <also with SSL Version 3 and TLS Ciphers>
  Then I choose OK - "listen sockets edited" - Apply changes - the server gets restarted.
  But when I view my changes again I see that
  SSL Version 2 [enabled] ... (which is ok )
  <but here all following checkboxes are disabled>
  Mmmh, strange.
  Because of that I still can't connect with IE5.0 SSL2, SSL3 enabled (simulating a customer with an older version).
  The error log says "...SSLv2 is on, but no SSLv2 ciphers are enabled. SSLv2 connections will fail."
  But the checkbox for SSL2 is enabled!
  Someone else with this situation??
  Greetings Nick

  It's an admin gui bug you are running into. The admin gui is not making the proper config changes into the server.xml for turning on the SSL2 ciphers.
  Workaround: edit your server.xml file, find the line for SSLPARAMS and look for the ciphers for sslv2 and change all '-' signs to '+' to turn on the sslv2 ciphers.

• Unable to enable security and create admin user after reset - px4-300d

  Our px4-300d became inaccessible a few days ago.  I couldn't get to any shares from any machine, and I couldn't get to the admin console.  When I checked the unit, there was no indication that anything was wrong (ie - the panel didn't show any failure, I didn't get any emails indicating a failure, and there were no lights offering a clue to what was wrong).  However the unit was completely frozen...the buttons on the front would not scroll through the different information on the panel.
  I attempted to reset the device using the pinhole on the back, but the device wouldn't respond, so I had to power it down using the button on the front.  When I tried to power it back up, it would come on for about one second, then immediately power off.  I pulled all 4 drives out and powered it on again without any drives.  This time it came up completely and I got a message on the panel that drives were missing.  I started putting the drives in one at a time and the device recognized them all and I was able to login to the admin console.  However, all the shares were missing and I received an email that the Storage Pool was degraded.  I rebooted the device from the admin console and when it came back up, it started reconstruction.  After a few hours, it completed, but I still had no shares and couldn't create any new shares.  I also did not see any of my users, including the admin account I was logged in with.  I tried to create a new user, and also tried creating a user I knew existed and neither one worked.  The screen would just flash but nothing would show up.  At this point, I decided to try to reset using the pinhole on the back of the device to reset the admin user so I could just create a new one.  So, now I'm stuck at the 'Enable Security' screen.  Every time I try to create an admin account, it just flashes and returns me to the same 'Enable Security' window.  
  Now what?
  Solved!
  Go to Solution.

  If you are unable to get into it you will not be able to do the factory reset. You can try booting in buy removing one disk at a time. If you are still unable to then tech support should be able to supply you with the imager and try flashing it. I would keep it at 4.0.8 also,

• Windows 8.1 Ent eval enabled Secure Boot I think

  I want to get my laptop back to its original format.
  Currently dual booting Windows7/8.1
  During the installation of Windows 8.1 Enterprise evaluation it paused to say it was going to enable secure boot.  I did'nt think much of it I thought I could change it back from the bios.  Did it flash my firmware?  I checked the system status
  with msinfo32.exe; was legacy mode and with powershell; secure boot not supported.  I don't have any options to disable secure boot in the bios nor from within Windows -"I know how to disable it in windows 8.1".  I can't boot a foreign
  operating system, but I can boot a Microsoft OS which sounds like secure boot to me.  I want to get it back to running Windows 7 dual booting with Linux.  I use both at work and need both.  I made the mistake by loading the Eval on my primary
  laptop.  I read I need to revert back to Windows 7 completely, formating and re-installing the OS.  Will this clear my secure boot simulation issue?  I have not changed the partitions or removed any O/S's.   What's the best way
  to proceed?

  Hi,
  I want to explain that, Secure Boot is indepent with system, you can disable it in UEFI interface.
  To disable Secure Boot, you can follow the steps below:
  1.Before disabling Secure Boot, consider whether it is necessary. From time to time, your manufacturer may update the list of trusted hardware, drivers, and operating systems for your PC. To check for updates, go to Windows Update, or check your manufacturer's
  website.
  2.Open the PC BIOS menu. You can often access this menu by pressing a key during the bootup sequence, such as F1, F2, F12, or Esc.
  Or, from Windows, hold the Shift key while selecting Restart. Go to Troubleshoot > Advanced Options: UEFI Firmware Settings.
  3.Find the Secure Boot setting, and if possible, set it to Disabled. This option is usually in either the Security tab, the Boot tab, or the Authentication tab.
  4.Save changes and exit. The PC reboots.
  I found an aticle that teach how to install dual-boot Windows 7 and Ubuntu 12.04 on a PC with UEFI hardware:
  http://www.linuxbsdos.com/2012/10/11/dual-boot-windows-7-and-ubuntu-12-04-on-a-pc-with-uefi-hardware/
  Hope this helps.
  Roger Lu
  TechNet Community Support

• How to enable security in HRMS

  Hello
  I want to know is there any way we can enable security in HRMS such a way that we can hide/mask National Identification Number/Salary etc from application and also from back end.
  Thanks!

  Security could be enable in HRMS in various ways . Using Security profile in Oracle HRMS controls the list of Employees that are visible to a given user from “Employee/Person Screen”.
  For hide/mask National Identification Number/Salary information you can go with Form personlization.
  Thanks

• How to Enable Secure Boot on UEFI Systems?

  SymptomsWhen attempting to enable Secure Boot, the system does not allow you to select the option to enable or disable Secure Boot.  This is due to the way Acer's UEFI implementation requires a Supervisor Password be set in order to access this option.
  UEFI is a newer technology that replaces the older standard BIOS.
  DiagnosisCreating a Supervisor Password in UEFI will allow you to access the Secure Boot options. It is important that you remember this password as it will be required to make any changes in the UEFI interface.
  SolutionCreate a Supervisor Password to gain access to the Secure Boot option. 
  Refer to our FAQ for all the steps on how to access Secure Boot on Desktops, Notebooks, and Tablets:
  Enable or Disable Secure Boot in Windows 8

  Das macht man 2-3 mal und dann ist nix mehr mit Bios. Dann kommt Passwort ist falsch und das war's dann. Hab ich schon auf verschiedenen Lappis gehabt. Sprich TOSHIBA... und Aspire E1-571g. Beim Toshi den Baustein ausgelötet neuen gekauft, beschrieben und wieder eingelötet. Kostet schlappe 150,-€. Mal schauen was beim Acer rauskommt.Vielleicht gibt es ja noch einen Jumper um das UEFI BIOS zurückzusetzen

• Two Range Expanders - How to enable security?

  I have a linksys router (wrt54g ver 2) and two WRE54G range expanders both version 3.  Everything is working fine but I can't enable security because I can't access the set up webpage of one of the expanders.  Any ideas?  Or maybe I can use Mac Filtering but would I use the mac address of the expanders or the wireless computers? Or any other way to make my little network secure? 
  I have Windows XP and broadband.
  Thanks.

  First of all you need to setup your router, and get your wireless computers working.  Then later, we can work on the range expanders.
  To setup WEP security, do the following:
  Turn off all your computers, except for one computer that it wired to the WRT54G.
  Make sure the computer is wired to one of the numbered ports on the WRT54G, not the Internet port.  Also, make sure the wireless card in the computer is turned off.
  In the computer, temporarily turn off your software firewall.
  Point your browser to 192.168.1.1
  Enter your user name (if any) and password.
  This will take you to the router's setup pages.
  Go to the "Wireless" tab, "Basic Wireless Settings" subtab.
  Change your SSID to a unique name.  Do not use "linksys".  This is the name of your wireless network, and eventually, you will need to enter it into all your network devices (computers, router, expanders, etc.).
  Set "SSID Broadcast" to "enabled".
  Write down the "Wireless channel" that you are using, and save the paper.
  Click on the "Save Settings" button, then wait (3-60 seconds) for the screen to refresh.
  Next go to the "Wireless MAC filter" subtab.
  Set the "Wireless MAC filter" to "disabled" for now.  (If you want to use this feature, we will need to come back later to set it up).
  If you changed anything on this page, click the "Save Setting" button, and again wait for a screen refresh.
  Next go to the "Security" tab, "Wireless Security" subtab.
  Set the "Security Mode" to "WEP".
  Click the "Save Settings" button, and again wait for a screen refresh.  (Note: the "Save Settings" might not work until you do the rest of the stuff in this paragraph.)
  Set the "Default Transmit Key" to "1".
  Set the WEP encryption to "64bit 10 hex digits"
  Insert your passphrase of 8 to 16 characters (no spaces), then click the "Generate" button.
  Copy down "key 1"  (it should be 10 hex digits) on a piece of paper and save it.
  Click on the "Save Settings" button, and again wait for a refresh.
  Exit your browser.
  Power cycle your modem, router, and computer.
  Login to your router again.  Now verify that all of the above settings are still present in the router.  If not, put them in again, and be sure to click on the "Save Settings" button on each page that you update.  After you have your router setup correctly, disconnect the wire between your computer and router, then power cycle your entire system again.
  Now, you must setup your computer for wireless.  This setup varies from system to system.  So you may have to try a few things to get it to work.
  First, in the computer, temporarily turn off your software firewall.
  Next, turn on your wireless card and try to display the available networks in your area.  Look for the network with your SSID.  If you see it, the display will probably also say "encrypted" or "WEP".  Click on your network, then click on "Connect".  The computer will then ask for your password.  At this point, enter your 10 hex digit WEP "key 1", not your WEP password or passphrase.  It should then connect.  If it does connect, verify that you have a properly working wireless Internet connection.
  If it does not connect, then go to your wireless settings and look for something called "Preferred Networks" or "Profiles".  In this area, you will be able to enter the info on your network (SSID, WEP, and your "key 1" ).  Also, setup your network as your default network, with automatic login.  You may need to right click on your network and set this up in "Properties" or perhaps in "settings".  Also, while you are here, delete any networks named "linksys", and also delete any other network that you do not recognize, or that you no longer use.
  Once you get one computer working, then setup your other computers for wireless.  Get all your wireless computers working properly first, and verify that they have a properly working wireless Internet connection.
  When you have this done, let me know, then we can setup the range expanders.
  But you must have a properly working wireless system before you can expand the range.
  Message Edited by toomanydonuts on 08-13-2007 06:30 PM

• Enable Security Audit Log

  Hi All,
  If we will enable Security Audit Log, does it affect the performance of the SAP System.
  Please clarify my doubt.
  Thanks

  Hello Anil, Security audit log is creates archive log file on daily basis. No performance issues will come if you take care of some parameters
  The system does not delete or overwrite audit files from previous days, it keeps them until manually deleted. Due to the amount of information that may accumulate, we should archive these files on a regular basis and delete the originals from the application server.
  You define the name and location of the files in the profile parameter haanrsau/local/file. When an event occurs that is to be audited, the system generates a corresponding audit record, also called an audit message, and writes it to the file. The audit record contains the following information.
  We can define the maximum size of the audit file in the profile parameter rsau/maxdiskspace/local_. The default is 1000000 bytes (= 1 MB). If the maximum size is reached, then the auditing process stops.
  Hope it helps.
  Regards, Amber S | ITL

• Enable secure session cookie on Sun ONE Web Server 6.1

  How can I enable secure session cookie (JSESSIONID) on Sun ONE Web Server 6.1?.
  For 6.0 is <session-cookie is-secure="true"/> inside the <web-app> tags in web-apps.xml but I'm not able to find this setting for 6.1.

  There is a fix in 6.1sp5 that enables the session cookie to be marked as secure.
  See the release notes and search for 6262885 under Issues Resolved in 6.1sp5:
  http://docs.sun.com/app/docs/doc/819-2479/6n4p1bdea?a=view

• How to change mail-enabled security group to security group

  Hi,
  As a test I have configured on the properties page of a security group an email adres. By doing this converted a security group to a mail-enabled security group. Also this group has been transferd to Office 365. But after testing I want to make the distribution
  groups on the Exchange in Office 365. So I deleted the emaila dres of the security group, but it still synchronized to Office 365 as a mail-enabled security group. How can I change in AD the mail-enabled security group to a security group?
  Thanks in advance

  Hi StijnS,
  For the O365 question there are Office 365 technical forums available at
  http://community.office365.com/en-us/f/default.aspx.
  The related article:
  Office 365 Forum Assistant
  http://blogs.technet.com/b/neilhobson/archive/2011/09/20/office-365-forum-assistant.aspx
  Hope this helps.
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• Listening socket class freezes my program

  i originaly created a listening socket in my main gui class but everytime i execute it, my gui appears with no visible components inside and freezes. i am not able to close the gui window by clicking on the x button at teh top right hand corner.
  i then removed my listening socket and made a new class altogether that listens to socket connection. i get the same problem when i execute both my gui and listening socket class. any suggestions?
  heres my socket listening class
  package icomm;
  import java.net.*;
  import java.io.*;
  import javax.swing.*;
  import java.awt.event.*;
  import java.awt.*;
  public class listening {
      /** Creates a new instance of listening */
      public listening() {
       public void listeningSocket()
              ServerSocket server = null;
              boolean listening = true;
              try
                  //listen in port 4444;
                  server = new ServerSocket(14);
              catch(IOException x)
                  JOptionPane.showMessageDialog(null, "cannot listen to port 4444", null, JOptionPane.ERROR_MESSAGE);
              while(true)
                   ChatDialog w;
                  try
                    w = new ChatDialog(server.accept());
                    Thread t = new Thread(w);
                    w.setVisible(true);
                    t.start();
                   // server.close();
                  catch(IOException x)
                      JOptionPane.showMessageDialog(null, "could not open chat window", null, JOptionPane.ERROR_MESSAGE);
  }and here is the code that launches the gui and the listening class from my login button..
  //laod main gui
                      show_main_gui(text_username.getText());
                      //run listening socket
                      listening listen = new listening();
                      listen.listeningSocket();

  you do not need any thread for this - the socket will not block your frame. here is an example which works:
  import java.net.ServerSocket;
  import javax.swing.JFrame;
  public class Sockframe extends JFrame{
       public Sockframe(){
         super("Socket using Application");
         setDefaultCloseOperation(EXIT_ON_CLOSE);
         setSize(100,100);
        * @param args
       public static void main(String[] args) {
            // show new Frame
            Sockframe f = new Sockframe();
            f.setVisible(true);
            try{
                 // do socket stuff
                 ServerSocket s = new ServerSocket(4567);
                 s.accept();
            } catch(Exception exc){
                 exc.printStackTrace();
  }Did you provide some default close operation for the frame? The frame needs this to know how to behave when the X-button os pressed.

• Work email field not filling in for mail enabled security groups in sharepoint

  I've recently been trying to setup alerts to send to mail enabled security groups on our sharepoint site.
  I've created universal mail enabled security groups for this purpose, and populated them with users, and then set those in the alert field, but no one is getting alerts.
  After a lot of investigation, I've found that this is likely because the security groups listed under sharepoint in the people and groups section don't have work email fields filled in. Theres a couple of groups that work which do have this field filled
  in, but everything created recently is missing this. I can't seem to set this field up to be editable instead of importing from AD either. I've confirmed the AD import is working fine, all user details and work email fields are filled out correctly, it is
  only the security groups that are having problems.
  Does anyone have any experience with this?

  As per your description I assume that individual user gets email alert, right ?
  If no then go to central administration > operation > timer job definitions > “web application” view > select your web application in the menu bar to check if Immediate alerts working fine
  If not, please run the following operations:
  stsadm -o setproperty -propertyname alerts-enabled -propertyvalue false -url http://...
   stsadm -o setproperty -propertyname alerts-enabled -propertyvalue true -url http://...
   stsadm -o setproperty -propertyname job-immediate-alerts -propertyvalue "every 5 minutes"  -url http://...
  And then try again.
   At last, if the issue is still there, please check your email server settings in terms of the following articles:
  http://www.sharepoint-tips.com/2007/10/email-alerts-not-getting-sent-while.html
  http://social.technet.microsoft.com/Forums/en-US/sharepointworkflow/thread/36c3b5b5-af03-4f8a-b202-b62db330c21c/
   And if individual user gets an alert then you can create cutomized alert for Sec group
   Please refer
   http://sptoolbox.codeplex.com/releases/view/8255
   hope this will help you
  Regards, Pratik Vyas | SharePoint Consultant | http://sharepointpratik.blogspot.com/

• Secure Boot Status: DISABLED. Cannot enable Secure Boot via BIOS.

  BIOS Security Page displays:
  Secure Boot ENABLED
  Secure Boot Status DISABLED
  I have attempted to ENABLE Secure Boot multiple times but Secure Boot Status remains DISABLED
  This problem occured after BIOS Upgrade to v3.07
  I have Lenovo G510 Laptop
  Windows 8.1
  BIOS Version 79CN48WW (v3.07)
  I have tried the recommended solution of "Reset to Setup Mode" and "Restore Factory Keys".
  This did not solve the problem, Secure Boot Status still indicates DISABLED.
  Please suggest an alternative solution to this problem.

  I was scared to attempt the recommended solution of "Reset to Setup Mode" and "Restore Factory Keys", but it actually worked for me!
  U430p