CE7305 - Transparent mode authentication does not work.
Hi,
Im doing a trial content engine 7305 for my customer. Everything worked well so far with the box except with the authentication feature.
Authentication work well on proxy mode but when I turned it on with transparent mode it does not work. My customer is using LDAP for user authentication.
I suspect there is something that I did not turn on in the configuration.
Attached herewith is the show tech of the Cisco 7305 content engine.
Please advise!
Thanks in advance,
Raymond Hew
Hi Zach,
My customer is using Novell LDAP.
Right at the moment the CE is already working with the auth. after rebooted the CE 7305. Just can't explain why but it works after rebooting.
Thanks for your fast respond.
Best regards,
Raymond Hew
Similar Messages
-
MAC Authentication does not work
My MAC Authentication does not work.
I have a ACS 3.0 server set. the MAC address is set in the user name field and in the password field.
I can ping the ACS, I can ping my AP, I can ping my client.
I don't want WEP and I don't want LEAP just MAC. So I set my authentication to "Open with MAC" My client has WEP set to NO WEP and authentication to OPEN
I have the latest drivers for both AP and my 350 Client.
I see that the client is associating and disassociating back and forth non stop. My AP log is full with the following message:
Station 0009.7c9f.xxxx Authentication failed
this is my config:
version 12.2
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
hostname GOM_1200IOS
aaa new-model
aaa group server radius rad_eap
aaa group server radius rad_mac
server 10.1.2.197 auth-port 1812 acct-port 1812
aaa group server radius rad_acct
aaa group server radius rad_admin
aaa group server tacacs+ tac_admin
aaa group server radius rad_pmip
aaa group server radius dummy
aaa group server radius wlccp_rad_infra
aaa group server radius wlccp_rad_eap
aaa group server radius wlccp_rad_leap
aaa group server radius wlccp_rad_mac
aaa group server radius wlccp_rad_any
aaa group server radius wlccp_rad_acct
aaa authentication login eap_methods group rad_eap
aaa authentication login mac_methods local
aaa authentication login wlccp_infra group wlccp_rad_infra
aaa authentication login wlccp_eap_client group wlccp_rad_eap
aaa authentication login wlccp_leap_client group wlccp_rad_leap
aaa authentication login wlccp_mac_client group wlccp_rad_mac
aaa authentication login wlccp_any_client group wlccp_rad_any
aaa authorization exec default local
aaa authorization ipmobile default group rad_pmip
aaa accounting network acct_methods start-stop group rad_acct
aaa accounting network wlccp_acct_client start-stop group wlccp_rad_acct
aaa session-id common
enable secret xxxxxx
username Cisco password xxxx
ip subnet-zero
iapp standby timeout 5
bridge irb
interface Dot11Radio0
no ip address
no ip route-cache
encryption key 1 size 40bit 7 9DF1C10BF11A transmit-key
ssid GOM_1230
authentication open mac-address mac_methods
speed basic-1.0 basic-2.0 basic-5.5 basic-11.0
rts threshold 2312
channel 2462
station-role root
no cdp enable
dot1x reauth-period server
dot1x client-timeout 600
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled
interface FastEthernet0
no ip address
no ip route-cache
duplex auto
speed auto
no cdp enable
bridge-group 1
no bridge-group 1 source-learning
bridge-group 1 spanning-disabled
interface BVI1
ip address 172.16.43.45 255.255.240.0
no ip route-cache
ip default-gateway 172.16.47.254
ip http server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag/ivory/1100
ip radius source-interface BVI1
access-list 700 permit 000a.b74c.e8c9 0000.0000.0000
access-list 700 permit 0009.7c9f.d6e0 0000.0000.0000
access-list 700 permit 0006.25b1.2f79 0000.0000.0000
access-list 700 permit 000a.b78b.2d19 0000.0000.0000
access-list 700 permit 000b.5f6e.77c8 0000.0000.0000
access-list 700 deny 0000.0000.0000 ffff.ffff.ffff
access-list 701 deny 000b.5f6e.77c8 0000.0000.0000
access-list 701 permit 0000.0000.0000 ffff.ffff.ffff
no cdp run
snmp-server community GOM_AP1230 RO
snmp-server enable traps tty
radius-server local
group AP1230
user brazil nthash 7 1249523544595F517972017912677A3055325A25770B08770D5C5B4E4478087605 group AP1230
radius-server host 10.1.2.197 auth-port 1812 acct-port 1812 key 7 00233C2B
radius-server retransmit 3
radius-server attribute 32 include-in-access-req format %h
radius-server authorization permit missing Service-Type
radius-server vsa send accounting
bridge 1 route ip
line con 0
line vty 5 15
end
What is wrong?
Thanks very much for your help.I figured out what was wrong so thank you for stopping by.
I will publish the config for other people to see.
Regards, -
Paid subscription, but all products still in trial mode and does not work!
Hello!
I paid subscription, but all products still in trial mode and does not work! In Adobe ID manage page i don't see my subscription Screenshot “Adobe ID”
I received an email confirmation of my payment subscription. Order number 12984126025, my adobe id
[personal information removed... Mod - https://forums.adobe.com/docs/DOC-3731]
[This is an open forum, not Adobe support, please do not post personal information]
Why so?! This is very important! My current project at risk, I can lose moneyPlease try the below mentioned steps
1) Sign out of the Creative Cloud app
2) delete the opm.db file*
3) update to the latest version of the Creative Cloud app.
*On Windows 7, the opm.db file is located here:
C:\Users\YourUserName\AppData\Local\Adobe\OOBE
*On a Mac, go here:
[Userdir]:Library:Application Support:Adobe
~Deepak -
Installing Firefox with windows 7 64bit mode just does not work.
I have windows 7 64bit mode. I cannot install firefox, it crashes all the time when I open it. I know the problem is because my windows 7 is in 64bit mode. Can you (firefox support) or someone on this forum provide the simple and easy steps of getting it to work. Also can you (firefox) hurry up and release a 64bit version. I'm using google chrome and crazy browser as they seem to have no problems at all. I really want to use firefox but it just won't set up for me because I'm running win7 64bit mode. If I was running win7 32bit mode I wouldn't be having any issues. Has anyone out there got a simple step by step solution for this? It it mind boggling that with todays technology no one has a simple fix for this issue. Help!!!!!
== User Agent ==
Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US) AppleWebKit/533.4 (KHTML, like Gecko) Chrome/5.0.375.70 Safari/533.4I have been running Win 7 64 bit on an HP Pavilion lap for several months. The whole browser thing has been a nightmare. My work involves heavy duty internet research. Firefox crashes every few minutes. There is no specific event I can find that kicks this off, but running the latest Flash Players and Adobe Reader makes it a lot worse. In fact, I had to set up the adobe reader to not run within the Firefox window. I had to back off to an old version of adobe Reader and Flash Player to accomplish this. I love Firefox. I was disappointed to have to uninstall it as it was impossible to run searches with it.
So then it proved to be that IE either version 8 or 9 was even worse. I could not keep it up long enough to run a search.
So I installed Chrome which has some nice features, but it also crashes, albeit more gracefully so I do not lose my place and it makes a quick recovery but there are many online applications where Chrome just does not work.
My son also has Win7 64 bit and says he is also having the same problems.
I want my Firefox back! Please fix it. -
NGS Sponsors authentication does not work in case user has non-English character in his password
Hi,
we are using the NAC Guest Server v 2.0.1 and have Sponsors authentication done through Radius servers. Radius servers are Microsoft IAS using AD.
Sponsors user authentication works okay in case user's password includes English characters, but does not work in case an user uses national characters like for example Umlauts in German.
On Radius server I can see these error messages:
User XXXX was denied access.
Reason = Authentication was not successful because an unknown user name or incorrect password was used.
As soon as an user changes his password and uses English characters only, it resolves.
I guess this might be that NGS uses different coding while sending a password to Radius server, but not sure.
Appreciate if anyone knows a root cause and what could be a workaround. Unfortunately our AD policy allows users to use national characters and we can hardly change it. So a change on NGS or Radius side would be more viable.
Many thanks for your help.A case has been opened at Cisco and it is now quite clear that it is a problem with coding.
According to Cisco development team NGS uses UTF-8 coding to send the password, of course encrypted, to the Radius server. This cannot be changed within NGS. We use Radius Microsoft IAS Version 5.2.3790.3959 running on VMWare Windows 2003 SP2. More tests are scheduled to be performed. -
Some sites load fine. But some sites will not load when linked from another web site, or, occasionally, even from my bookmarks. I went through troubleshooting routine--cleared cache and cookies, history, checked in Safe Mode for extensions, etc., but still will not work in Safe Mode. No other problems with computer or browser.
What happens when you click the link that does not open up the new page? Is it a blank page? Does this also happen if you Shift Click the link?
Sometimes a problem with Firefox may be a result of malware installed on your computer, that you may not be aware of.
You can try these free programs to scan for malware, which work with your existing antivirus software:
* [http://www.microsoft.com/security/scanner/default.aspx Microsoft Safety Scanner]
* [http://www.malwarebytes.org/products/malwarebytes_free/ MalwareBytes' Anti-Malware]
* [http://support.kaspersky.com/viruses/disinfection/5350 Anti-Rootkit Utility - TDSSKiller]
* [http://general-changelog-team.fr/en/downloads/viewdownload/20-outils-de-xplode/2-adwcleaner AdwCleaner] (for more info, see this [http://www.bleepingcomputer.com/download/adwcleaner/ alternate AdwCleaner download page])
* [http://www.surfright.nl/en/hitmanpro/ Hitman Pro]
* [http://www.eset.com/us/online-scanner/ ESET Online Scanner]
[http://windows.microsoft.com/MSE Microsoft Security Essentials] is a good permanent antivirus for Windows 7/Vista/XP if you don't already have one.
Further information can be found in the [[Troubleshoot Firefox issues caused by malware]] article.
Did this fix your problems? Please report back to us! -
Firefox 3.6.3 does not save history, nor passwords. I have read the forum and checked my settings in Privacy (all ok), I restarted Firefox in Safe mode (it still does not remember history or passwords). Running on XP. I think these problems started when I upgraded to 3.6.3.
I had the same problem after an upgrade to 3.6.3.
I was using password manager for a number of web sites before. Not using cookies but password manager.
After 3.6.3 auto upgrade it did not work.
I could not enter private browsing mode.
When I looked in tools>options>security at my saved passwords the list was blank. The button in the saved passwords dialog that normally says "Show saved passwords" was actually blank (the button was there but there was no text on it).
I did have my old bookmarks and was able to create new ones but oddly the bookmark all tabs menu function wouldn't work.
I decided to reinstall firefox 3.6.3. There is no way something with that many bugs got out!
I was able to get the full firefox executable from http://mozilla.com
I closed all firefox windows and ran the installation.
After re-running the install and starting firefox everything was fine. It must have been a bad download or the original install got messed up somehow.
I hope you have the same good fortune I had! -
Web Service Call with Basic Authentication does not work
If I try to use Basic Authentication in my Web Service Client with the automatically created methods
setUsername(inUserName)
setPassword(inPassword)
setAddress(inAddress)
the application does not make a call. Did I forget something?
Is it possible to use "Test Method" with Basic Authentication?
Thank you.Thank you for your answer.
But: I already read this article. And it doesn't help me.
I use the following code:
getMyServiceClient1().setUsername(inUserName);
getMyServiceClient1().setPassword(inPassword);With this code I always get a java.lang.NullPointerException.
The methods setUsername and setPassword are definded as follows:
public void setUsername(String inUserName) {
myStub._setProperty(Stub.USERNAME_PROPERTY, inUserName);
public void setPassword(String inPassword) {
myStub._setProperty(Stub.PASSWORD_PROPERTY, inPassword);
}But if I look at the methods which are generated automatically by Sun Java Studio Creator I cannot find _setProperty.
I also found this thread in your forum:
http://swforum.sun.com/jive/thread.jspa?forumID=123&threadID=54773 -
9.0.2 JAZN SSO doasprivileged-mode=true does not work
I've been trying to deploy an application to my "fresh" 9iR2 App Server that has been installed on Solaris 8 with all the patches 9.0.2. (I also have a second Solaris 8 machine with the 9iR2 Infrastructure installed, also patched up to the latest rev of 9.0.2). I'm deploying my EAR file with the Enterprise Manager deployment tool, and it works great (except for the following problem). I want to make my servlets run in "doasprivileged-mode" as described in
http://otn.oracle.com/tech/java/oc4j/doc_library/902/servicesjun02/jaas_j2a.htm
I believe I have everything setup correctly, but when I try (in my servlet) to try to access JAAS like this:
AccessControlContext acc = AccessController.getContext()
OR, do this:
AccessController.checkPermission(new FilePermission("/tmp/test.txt", "read"));
I get the following exception in my browser and then another exception in the opmn log. I believe the root cause is this: "The system is unable to retreive the specified role(s)." But I have no idea what role it's talking about... When I run the JAZN shell commands and look around in the "llnl" realm, I see the AUTHENTICATED_USERS group and the user I'm logging into SSO as, is a member of this group.
Thanks for any info/help on this matter. Also, if someone has a working example that shows the use of the doasprivliged-mode="true" that would really help. The callerInfo and ssoInfo examples don't seem to address this additional use of the JAAS environment (past asking the HttpServletRequest for the Principal object)
--Leif
java.security.PrivilegedActionException: javax.servlet.ServletException: A JAZN internal error has occurred.
at oracle.security.jazn.oc4j.JAZNFilter$1.run(JAZNFilter.java:256)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.Subject.doAsPrivileged(Subject.java:558)
at oracle.security.jazn.oc4j.JAZNFilter.doFilter(JAZNFilter.java:269)
at com.evermind[Oracle9iAS (9.0.2.0.0) Containers for J2EE].server.http.ServletRequestDispatcher.invoke(ServletRequestDispatcher.java:523)
at com.evermind[Oracle9iAS (9.0.2.0.0) Containers for J2EE].server.http.ServletRequestDispatcher.forwardInternal(ServletRequestDispatcher.java:269)
at com.evermind[Oracle9iAS (9.0.2.0.0) Containers for J2EE].server.http.HttpRequestHandler.processRequest(HttpRequestHandler.java:735)
at com.evermind[Oracle9iAS (9.0.2.0.0) Containers for J2EE].server.http.AJPRequestHandler.run(AJPRequestHandler.java:151)
at com.evermind[Oracle9iAS (9.0.2.0.0) Containers for J2EE].util.ThreadPoolThread.run(ThreadPoolThread.java:64)
Root cause is; java.lang.IllegalStateException: A JAZN internal error has occurred.
at oracle.security.jazn.spi.ldap.LDAPGranteeEntry.checkValidity(LDAPGranteeEntry.java:286)
at oracle.security.jazn.spi.ldap.LDAPGranteeEntry.getGranteeEntry(LDAPGranteeEntry.java:297)
at oracle.security.jazn.spi.ldap.LDAPLocalPolicy.getGrantees(LDAPLocalPolicy.java:316)
at oracle.security.jazn.spi.ldap.LDAPLocalPolicy.getGranteeEntries(LDAPLocalPolicy.java:264)
at oracle.security.jazn.spi.ldap.LDAPLocalPolicy.getPermissions(LDAPLocalPolicy.java:1029)
at oracle.security.jazn.spi.ldap.LDAPJAZNPolicy.getPermissions(LDAPJAZNPolicy.java:649)
at oracle.security.jazn.spi.ldap.LDAPJAZNPolicy.getPermissions(LDAPJAZNPolicy.java:680)
at oracle.security.jazn.spi.PolicyProvider.getPermissions(PolicyProvider.java:218)
at javax.security.auth.SubjectDomainCombiner$3.run(SubjectDomainCombiner.java:253)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.SubjectDomainCombiner.combine(SubjectDomainCombiner.java:249)
at java.security.AccessControlContext.goCombiner(AccessControlContext.java:516)
at java.security.AccessControlContext.combineWithPrivilegedContext(AccessControlContext.java:305)
at java.security.AccessControlContext.optimize(AccessControlContext.java:404)
at java.security.AccessController.checkPermission(AccessController.java:398)
at gov.llnl.ais.test.TestServlet.doPost(TestServlet.java:59)
at gov.llnl.ais.test.TestServlet.doGet(TestServlet.java:44)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:244)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:336)
at com.evermind[Oracle9iAS (9.0.2.0.0) Containers for J2EE].server.http.ResourceFilterChain.doFilter(ResourceFilterChain.java:59)
at oracle.security.jazn.oc4j.JAZNFilter$1.run(JAZNFilter.java:252)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.Subject.doAsPrivileged(Subject.java:558)
at oracle.security.jazn.oc4j.JAZNFilter.doFilter(JAZNFilter.java:269)
at com.evermind[Oracle9iAS (9.0.2.0.0) Containers for J2EE].server.http.ServletRequestDispatcher.invoke(ServletRequestDispatcher.java:523)
at com.evermind[Oracle9iAS (9.0.2.0.0) Containers for J2EE].server.http.ServletRequestDispatcher.forwardInternal(ServletRequestDispatcher.java:269)
at com.evermind[Oracle9iAS (9.0.2.0.0) Containers for J2EE].server.http.HttpRequestHandler.processRequest(HttpRequestHandler.java:735)
at com.evermind[Oracle9iAS (9.0.2.0.0) Containers for J2EE].server.http.AJPRequestHandler.run(AJPRequestHandler.java:151)
at com.evermind[Oracle9iAS (9.0.2.0.0) Containers for J2EE].util.ThreadPoolThread.run(ThreadPoolThread.java:64)
I also get this exception in $ORACLE_HOME/opmn/logs/home.default_island.1
java.lang.reflect.InvocationTargetException: oracle.security.jazn.JAZNException: The system is unable to retreive the specified role(s).
at oracle.security.jazn.spi.ldap.LDAPRealmRole.<init>(LDAPRealmRole.java:91)
at java.lang.reflect.Constructor.newInstance(Native Method)
at oracle.security.jazn.spi.ldap.LDAPGranteeEntry.init(LDAPGranteeEntry.java:218)
at oracle.security.jazn.spi.ldap.LDAPGranteeEntry.<init>(LDAPGranteeEntry.java:121)
at oracle.security.jazn.spi.ldap.LDAPGranteeEntry.<init>(LDAPGranteeEntry.java:116)
at oracle.security.jazn.spi.ldap.LDAPLocalPolicy.getGrantees(LDAPLocalPolicy.java:315)
at oracle.security.jazn.spi.ldap.LDAPLocalPolicy.getGranteeEntries(LDAPLocalPolicy.java:264)
at oracle.security.jazn.spi.ldap.LDAPLocalPolicy.getPermissions(LDAPLocalPolicy.java:1029)
at oracle.security.jazn.spi.ldap.LDAPJAZNPolicy.getPermissions(LDAPJAZNPolicy.java:649)
at oracle.security.jazn.spi.ldap.LDAPJAZNPolicy.getPermissions(LDAPJAZNPolicy.java:680)
at oracle.security.jazn.spi.PolicyProvider.getPermissions(PolicyProvider.java:218)
at javax.security.auth.SubjectDomainCombiner$3.run(SubjectDomainCombiner.java:253)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.SubjectDomainCombiner.combine(SubjectDomainCombiner.java:249)
at java.security.AccessControlContext.goCombiner(AccessControlContext.java:516)
at java.security.AccessControlContext.combineWithPrivilegedContext(AccessControlContext.java:305)
at java.security.AccessControlContext.optimize(AccessControlContext.java:404)
at java.security.AccessController.checkPermission(AccessController.java:398)
at gov.llnl.ais.test.TestServlet.doPost(TestServlet.java:59)
at gov.llnl.ais.test.TestServlet.doGet(TestServlet.java:44)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:244)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:336)
at com.evermind.server.http.ResourceFilterChain.doFilter(ResourceFilterChain.java:59)
at oracle.security.jazn.oc4j.JAZNFilter$1.run(JAZNFilter.java:252)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.Subject.doAsPrivileged(Subject.java:558)
at oracle.security.jazn.oc4j.JAZNFilter.doFilter(JAZNFilter.java:269)
at com.evermind.server.http.ServletRequestDispatcher.invoke(ServletRequestDispatcher.java:523)
at com.evermind.server.http.ServletRequestDispatcher.forwardInternal(ServletRequestDispatcher.java:269)
at com.evermind.server.http.HttpRequestHandler.processRequest(HttpRequestHandler.java:735)
at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:151)
at com.evermind.util.ThreadPoolThread.run(ThreadPoolThread.java:64)
Here are my XML files:
=== application.xml start ===
<?xml version="1.0" encoding="windows-1252"?>
<!DOCTYPE application PUBLIC "-//Sun Microsystems, Inc.//DTD J2EE Application 1.2//EN" "http://java.sun.com/j2ee/dtds/application_1_2.dtd">
<application>
<display-name>TestMe</display-name>
<module>
<web>
<web-uri>test.war</web-uri>
<context-root>/testme</context-root>
</web>
</module>
<security-role>
<role-name>users</role-name>
</security-role>
</application>
=== application.xml end ===
=== orion-application.xml start ===
<?xml version="1.0" encoding="windows-1252"?>
<!DOCTYPE orion-application PUBLIC "-//Evermind//DTD J2EE Application runtime 1.2//EN" "http://xmlns.oracle.com/ias/dtds/orion-application.dtd">
<orion-application>
<web-module id="test" path="test.war"/>
<security-role-mapping name="users">
<group name="llnl/AUTHENTICATED_USERS"/>
</security-role-mapping>
<persistence path="persistence"/>
<log>
<file path="application.log"/>
</log>
<!-- use JAZN-XML by default
<jazn provider="XML" location="./jazn-data.xml"/> -->
<!-- use JAZN-LDAP instead -->
<jazn provider="LDAP" default-realm="llnl" location="my-ldap-server-is-here"/>
<namespace-access>
<read-access>
<namespace-resource root="">
<security-role-mapping impliesAll="true" name="<jndi-user-role>">
<group name="administrators"/>
</security-role-mapping>
</namespace-resource>
</read-access>
<write-access>
<namespace-resource root="">
<security-role-mapping impliesAll="true" name="<jndi-user-role>">
<group name="administrators"/>
</security-role-mapping>
</namespace-resource>
</write-access>
</namespace-access>
</orion-application>
=== orion-application.xml end ===
=== orion-web.xml start ===
<?xml version="1.0"?>
<!DOCTYPE orion-web-app PUBLIC "-//Evermind//DTD Orion Web Application 2.3//EN" "http://xmlns.oracle.com/ias/dtds/orion-web.dtd">
<orion-web-app>
<jazn-web-app auth-method="SSO" runas-mode="true" doasprivileged-mode="true"/>
</orion-web-app>
=== orion-web.xml end -===
=== web.xml start ===
<?xml version="1.0"?>
<!DOCTYPE web-app SYSTEM "http://java.sun.com/dtd/web-app_2_3.dtd">
<web-app>
<servlet>
<servlet-name>TestServlet</servlet-name>
<servlet-class>gov.llnl.ais.test.TestServlet</servlet-class>
<security-role-ref>
<role-name>users</role-name>
<role-link>users</role-link>
</security-role-ref>
<!-- <run-as>
<role-name>users</role-name>
</run-as> -->
</servlet>
<servlet-mapping>
<servlet-name>TestServlet</servlet-name>
<url-pattern>/test</url-pattern>
</servlet-mapping>
<welcome-file-list>
<welcome-file>index.jsp</welcome-file>
</welcome-file-list>
<error-page>
<error-code>404</error-code>
<location>/error.jsp</location>
</error-page>
<security-constraint>
<web-resource-collection>
<web-resource-name>authenticated</web-resource-name>
<url-pattern>/test</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>users</role-name>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method>BASIC</auth-method>
</login-config>
<security-role>
<role-name>users</role-name>
</security-role>
</web-app>
=== web.xml end ===
=== TestServlet.java start ===
package gov.llnl.ais.test;
import java.io.FilePermission;
import java.io.IOException;
import java.io.PrintWriter;
import javax.security.auth.Subject;
import javax.security.auth.SubjectDomainCombiner;
import javax.security.auth.login.LoginContext;
import javax.security.auth.login.LoginException;
import javax.servlet.http.HttpServlet;
import java.security.AccessControlContext;
import java.security.AccessController;
import java.security.DomainCombiner;
import java.security.Principal;
import java.util.Iterator;
import java.util.Set;
import oracle.security.jazn.oc4j.JAZNUserAdaptor;
public class TestServlet extends HttpServlet {
* Constructor for TestServlet.
public TestServlet() {
super();
* @param request
* @param response
public void doGet(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response) throws IOException {
doPost(request, response);
public void doPost(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response) throws IOException {
PrintWriter pw = response.getWriter();
pw.println("<html><head><title>Hi</title><body>Hi there dude<br>You are:");
pw.println(request.getRemoteUser());
Principal p = request.getUserPrincipal();
if (p instanceof JAZNUserAdaptor) {
JAZNUserAdaptor jaznuser = (JAZNUserAdaptor) p;
pw.println("<br>SSO user DN [RealmPrincipal.getFullName] = " + jaznuser.getFullName() + "<br>");
pw.println("Subscriber name [Realm.getName] = " + jaznuser.getRealm().getName() + "<br>");
pw.println("Subscriber DN [Realm.getFullName] = " + jaznuser.getRealm().getFullName() + "<p>");
AccessController.checkPermission(new FilePermission("/tmp/test.txt", "read"));
Subject subject = null;
AccessControlContext acc = AccessController.getContext();
subject = Subject.getSubject(acc);
if (subject == null) {
pw.println("Subject via AccessControlContext is null.<br>");
DomainCombiner dc = acc.getDomainCombiner();
if (dc instanceof SubjectDomainCombiner) {
subject = ((SubjectDomainCombiner) dc).getSubject();
if (subject == null) {
pw.println("Subject via DomainCombiner is null.<br>");
if (subject != null) {
Set principals = subject.getPrincipals();
Iterator principalsIterator = principals.iterator();
while (principalsIterator.hasNext()) {
Principal principal = (Principal) principalsIterator.next();
pw.println("Principal: " + principal.toString() + "<br>");
pw.println("</body></html>");
=== TestServlet.java end ===More info...
When I go into the JAZN tool via:
java -jar jazn.jar -shell
Then do this:
JAZN:> cd realms/llnl/roles/AUTHENTICATED_USERS
JAZN:llnl> ls permissions
java.lang.reflect.InvocationTargetException: oracle.security.jazn.JAZNException: The system is unable to retreive the specified role(s).
at oracle.security.jazn.spi.ldap.LDAPRealmRole.<init>(LDAPRealmRole.java:91)
at java.lang.reflect.Constructor.newInstance(Native Method)
at oracle.security.jazn.spi.ldap.LDAPGranteeEntry.init(LDAPGranteeEntry.java:218)
at oracle.security.jazn.spi.ldap.LDAPGranteeEntry.<init>(LDAPGranteeEntry.java:121)
at oracle.security.jazn.spi.ldap.LDAPGranteeEntry.<init>(LDAPGranteeEntry.java:116)
at oracle.security.jazn.spi.ldap.LDAPLocalPolicy.getGrantees(LDAPLocalPolicy.java:315)
at oracle.security.jazn.spi.ldap.LDAPLocalPolicy.getGranteeEntries(LDAPLocalPolicy.java:264)
at oracle.security.jazn.spi.ldap.LDAPLocalPolicy.getPermissions(LDAPLocalPolicy.java:1029)
at oracle.security.jazn.spi.ldap.LDAPJAZNPolicy.getPermissions(LDAPJAZNPolicy.java:649)
at oracle.security.jazn.spi.ldap.LDAPJAZNPolicy.getPermissions(LDAPJAZNPolicy.java:680)
at oracle.security.jazn.tools.Admintool.listRolePerms(Admintool.java:1140)
at oracle.security.jazn.tools.Admintool.processArgs(Admintool.java:404)
at oracle.security.jazn.tools.Admintool.lsCommand(Admintool.java:2782)
at oracle.security.jazn.tools.Admintool.shell(Admintool.java:2399)
at oracle.security.jazn.tools.Admintool.processArgs(Admintool.java:230)
at oracle.security.jazn.tools.Admintool.main(Admintool.java:123)
A JAZN internal error has occurred.
What could be causing this problem? It seems to be the same error that I'm getting in the OPMN log.
Thanks!
--Leif -
Hi All ;
We are in the middle of a migration Project but we stuck with this pop3 setting. Most of the mailboxes uses pop3 to connect Exchange 2010 with the setting spa + port 110 on the client side. We want to give same authentication options for the pop3 settings
on 2013 side but when spa is selected the pop3 rejects the connection with the following error.
Your e-mail server rejected your login with SPA.
So both settings for pop3 protocol is same but the client cannot connect from 2013 server.
Where can i enable this feature from Exchange 2013 .Hi,
Please make sure that we have enabled Outlook Anywhere and 2 pop3 services in Exchange 2013.
More details in the following article:
Enable POP3 in Exchange 2013
http://technet.microsoft.com/en-us/library/bb124934(v=exchg.150).aspx
Please make sure port 110, port 587, port 25 are available.
Please try to disable the NTLM authentication on Exchange 2013 server for testing.
Please also try to run Outlook client under safe mode to avoid some AVs and add-ins.
Please also try to re-create new profile to refresh the caches for testing.
Thanks
Mavis
Mavis Huang
TechNet Community Support -
Driver for lexmark x1185 (series 1100) for MAC OS 10.7. Anyone has a solution ?
You should contact Lexmark. They have not released a driver for this printer since 10.3, and they no longer sell it. You could try the Generic PostScript PPD and see if you get limited functionality.
Hope this helps. -
Please help me ive been trying to do this all day by googling it and using apple. HELP PLEASE
Hello, is it an admin Login, or possibly a Firmware Protection Password???
Firmware password protection in Mac OS X ...
http://support.apple.com/kb/HT1352
It would block usage of all the startup keys, like C, N, T, D, CMD+s, CMD+Option+p+r, CMD +v, Option, and Shift, as well as booting from anything but the Hard Drive.
Force Removing Password Protection
1) Add or remove DIMMs to change the total amount of RAM in the computer.
2) Then, the PRAM must be reset 3 times. (Command + Option + P + R).
http://www.securemac.com/openfirmwarepasswordprotection.php -
Following code does not give me transparency beyond the circle. Circle is placed in the white square.... Whats strange is that if I run my application as Web Start, i get the transparency. In Standard Execution mode it does not work... NetBeans 6.8, JavaFX 1.2.1, Java 1.6u17 Windows 7 x64.
import javafx.scene.Scene;
import javafx.stage.Stage;
import javafx.stage.StageStyle;
import javafx.scene.paint.Color;
import javafx.scene.shape.Circle;
Stage {
style: StageStyle.TRANSPARENT
scene: Scene {
fill: Color.TRANSPARENT;
content: [
Circle {
centerX: 50
centerY: 50
radius: 50
}Dharma4java wrote:
In the code you haven't given the fill of *{color:#ff0000}Circle{color}* hence it is taking default fill i.e Black hence it looks like Transparency does not work
change code in circle like
fill:Color.TRANSPARENTI want circle to be black.... The problem is I have this circle placed on White Square Background... and background is supposed to be Transparent... On the end of this post I put the screenshot so you can see how it looks like...
PhiLho wrote:
What do you call "Standard Execution mode"? Running in Netbeans?In NetBeans in Project Properties in the Run section there is an Aplication Execution Model field which can be set to:
Standard Execution
Web Start
Run In Browser
Run In Mobile Emulator
If I run above code in Standard Execution mode transparency does not work, i have white square background. If I run it in Web Start it does work properly. If just copy the above code into the text file and compile it using command line javafxc and run with javafx White Square Background is still Visible... This is how it looks [http://krawetko.webd.pl/share/circle.png]
Edited by: saske on Dec 26, 2009 3:05 AM
Edited by: saske on Dec 26, 2009 3:08 AM -
Alpha only CGContext does not work blend mode
Hi,
I have a Alpha Only CGContext created with
col = 100;
row = 100;
maskBuffer = malloc(100 * 100);
memset(maskBuffer, 255, 100 * 100);
memset(maskBuffer, 0, 100 * 50);
maskContext = CGBitmapContextCreate (maskBuffer, col, row, 8, col, NULL, kCGImageAlphaOnly);
As you can see, the top half is transparent. Then I want to inverse it, make the bottom half transparent. I did
CGContextSetBlendMode(maskContext, kCGBlendModeSourceOut);
CGContextSetFillColorWithColor(maskContext,[UIColor whiteColor].CGColor);
CGRect rect = CGRectMake(0, 0, 100, 100);
CGContextFillRect(maskContext, rect);
I found that the whole context was set transparent. The blend mode kCGBlendModeSourceOut does not seem to work here. Anyone has the same experience?
Thanks,
ffSeems to me that you need to set the display width to be wide enough for all possible meanings in the LOV, rather than wide enough for the field itself. But I may have misunderstood the question. or misremembered the answer - it has been a while.
-
I can hear sounds when I plug in to headphones or on bluetooth (streaming audio from my car).
Can anyone help?
I have the iphone 4s.
Thank you!Hey Chris,
Unfortunately the ringer does not work - which causes the speaker to not work when it's switched on to ring mode, unless I'm on bluetooth. It has recently stopped working and I've had this phone for 2 years.
Maybe you are looking for
-
I cannot open pages. The message says, can't open pages while being updated. I did not knowingly update anything. The program is stuck in this mode. can you help?
-
How to install CS5 on my new iMAC 27" 5K. Adobe CS5 Web Premium
Hello, I just bought a brand new iMAC 27" i5 5K computer and wanted to install my CS5 suite I bought a few years back. But there is no DVD reader on this iMAC. Please help I cannot spend another amount of money on new SW tools in view I have the seri
-
Performance Evaluation to be done by HR Specialist
Hi All, In Fusion Performance Management cycle, Line Manager will evaluate and provide the rate to Goals and Weightage in the performance document of employee. Is there a possibility were HR Specialist can do the evaluation on behalf of the Line Mana
-
10.09.2008 My requirement is giving the invoice reprinting option to the Sales Coordinators. How do i restrict the the sales co-ordinators to have only the REPRINT option in vf31? Please suggest. Regards, Uday
-
Front panel audio jack is not working on K9N Neo V2
My front panel audio jack is not working on K9N Neo V2. I check the JAUD1 cable and it appears to be connected to the front panel audio jack. My soundcard driver cannot detect any gadgets when I plug it in the front panel. My audio drivers and BIOS a