Convergence - secure authentication

Convergence 1u2 Version: 1.0-7.01
Sun Java System Application Server 9.1_02
I have a situation where we would like to ensure that our users authenticate to Convergence over SSL (https) and then once authenticated switch them back to non-SSL (http) to avoid the encryption overhead where it is not necessary. Is this possible and if so, how?
Thanks.

sheger77 wrote:
I have a situation where we would like to ensure that our users authenticate to Convergence over SSL (https) and then once authenticated switch them back to non-SSL (http) to avoid the encryption overhead where it is not necessary. Is this possible and if so, how?
./iwcadmin -w <password> -o base.enableauthonlyssl -v trueThen restart the application server instance.
Regards,
Shane.

Similar Messages

  • WSUS Sync is not working Sync failed: UssCommunicationError: WebException: The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel. --- System.Security.Authentication.AuthenticationException: The remote

    I know there are loads of posts with same issue and most of them were related to proxy and connectivity .
    This was case for me as well (few months back). Now the same error is back. But I've confirmed that FW ports and proxy are fine this time around.
    server is configured on http port 80 
    ERROR
    Sync failed: UssCommunicationError: WebException: The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel. ---> System.Security.Authentication.AuthenticationException: The remote certificate is invalid
    according to the validation procedure.~~at System.Web.Services.Protocols.WebClientProtocol.GetWebResponse(WebRequest request). Source: Microsoft.SystemsManagementServer.SoftwareUpdatesManagement.WSyncAction.WSyncAction.SyncWSUS
    I've checked proxy server connectivity. I'm able browse following site from WSUS server
    http://catalog.update.microsoft.com/v7/site/Home.aspx?sku=wsus&version=3.2.7600.226&protocol=1.8
    I did telnet proxy server on the particular port (8080) and that is also fine.
    I've doubt on certificates, any idea which are the certificates which we need to look? And if certificate is expired then (my guess) we won't be able open the above mentioned windows update catalog site?
    Any tips appreciated !
    Anoop C Nair (My Blog www.AnoopCNair.com)
    - Twitter @anoopmannur -
    FaceBook Forum For SCCM

    Hi Lawrence ! - Many thanks for looking into this thread and replying. Appreciate your help.
    Your reply  ("SSL is enabled/configured, and the certificate being used is invalid
    (or the cert does not exist or cannot be obtained), or the SSL connection could not be established.") is very helpful.
    I've already tested CONTENT DOWNLOAD and it's working fine. WSUS Sync was also working fine for years with proxy server configured on port (8080) and WSUS server on port 80.
    My Guess (this is my best guess ;)) is this something to do with Firewall or Proxy side configuration rather than WSUS. However, I'm not finding a way to prove this to proxy/firewall team. From their perspective all the required port communication open and
    proxy server is also reachable. More over we're able to access internet (Microsoft Update Catalog site) over same port (8080).
    Any other hints where I can prove them it's a sure shot problem from their side.
    Thanks again !!
    Anoop C Nair (My Blog www.AnoopCNair.com)
    - Twitter @anoopmannur -
    FaceBook Forum For SCCM

  • Weblogic security authentication; question to interact with the realm

    Hi, I have a quick question about weblogic security authentication....
    We are using weblogic 81sp3. We have user-group info in an Novell eDirectory LDAP server.
    Currently, a Novell Authenticator provider is configured under : Security > Realms > myRealm > Providers > Authentication This tells Weblogic from where to get the user and groups. Weblogic caches this information of the logged on users for certain time ( example : 60 secs ) after which it cleans the cache for all inactive users. We want to interact with the Weblogic cache. Add more user profile information to this cache and use it in our application .
    Does somebody know how to programmatically interact with Weblogic user-group cache - read , write , update and delete user-group info in cache and control time to live for the cache ?

    already checked
    TTLCache class which weblogic provides. But they seem to depracetd it
    help ?

  • Security Authentication in LDAP

    Hi Chris/Raj/All,
    We have one more generic issue. Please help us if possible.
    I am connecting to LDAP Server(Microsoft ADS) from my weblogic workshop 8.1.We are using DirContext and InitialDirContext(java api) Through the java program I am able to connect to the port 389 by means of simple security authentication.
    Our requirement is for SSL security authentication ie to connect ot port 636.
    From our side we have done the following
    1.We have installed the public certicate in the jre environment(lib/security in both the cacerts and jssecacerts)
    2.We have also installed the cetificate in the ADS Server and enabled the SSL.
    When we try to connect to port 636 with simple authentication we get Communication Exception
    When we try to connect to port 636 with ssl authentication we get AuthenticationNotSupportedException
    We also would like to know whether there is any Authentication Process like password encryption and so on.... to be followed.
    Thanks & Regards,
    Christoper.

    Hi Christoper,
    Based on your description, this seems to be more of a security related question than a workshop one.
    Please post to the security newsgroup at http://forums.bea.com/bea/category.jspa?categoryID=2011
    with information on service pack installed
    Thanks
    Raj

  • Simple Public and Private Security Authentication Authorisation

    Simple question:
    I have an application with public access (No Authentication)
    I want to Authenticate just one administration page with a logon screen. What do I need to do?
    Do I use Page Authentication or Page Authorization on the restricted page?
    Please spell out the steps in clear detail.
    Also what is the difference between Application Authentication and Application level Authorization. They seem identical in function to me.
    regards
    Paul P

    Paul - Building on what Jos said, you might have an application that used SSO for authentication and for which you wanted to block access to certain classes of users during certain time periods. For this, an application-level authorization scheme could be useful, checking the authenticated user's organizational role/job code and the other criteria dictating the application availability.
    For your case, I recommend that you make the application use an authentication scheme that is suitable for controlling access to the admin page(s) and then set the Security (Authentication) attribute of every other page to 'Page Is Public'.
    Scott

  • How to verify "security authentication failure rate" command

    i type "security authentication failure rate 2 log" in global configuration mode,then  login authentication failed many times but no the 15-second delay.
    why?Thanks.

    Steven,
    This command did NOT come in play till 12.3.1
    Command History
    Release
    Modification
    12.3(1)
    This command was introduced.
    12.2(27)SBC
    This command was integrated into Cisco IOS Release 12.2(27)SBC.
    12.3(7)T
    The range of the threshold-rate value was changed from 1 through 1024 to 2 through 1024.
    Usage Guidelines
    The security authentication failure rate command provides enhanced security access to the router by generating syslog messages after the number of unsuccessful login attempts exceeds the configured threshold rate. This command ensures that there are not any continuous failures to access the router.
    Regards,
    Alex.
    Please rate useful posts.

  • Security authentication failure error

    Dear All:
    I have a FDM application load data to HFM. Sometimes, when I try to login to the FDM web application, I gor error says "FDM security authentication failture".
    I have to go to the FDM application server and restart the IIS Admin Service or reboot the FDM application server. Then I can login. I wonder why I have to do that. Any help is really appreciated.

    Dear Hyperion experts:
    I  also get the following error when I try to login to FDM web application
    Application
    Error
    Description: An exception occurred during the execution of the current
    web request. Please contact the administrator to review the stack trace in the
    event log for more information about the error.
    Re-start IIS Admin server in FDM server and the error went away. However, it comes back in a few days.
    Thank you in advance for any help.

  • Interconnect MQSeries adapter exception MQJMS2013: invalid security authentication

    Hi,
    I get the MQJMS2013: invalid security authentication supplied for
    MQQueueManager in my MQ Series adapter for Oracle interconnect. Is there more
    specific information about this error. Maybe in an IBM user manual.
    Has anybody experience with the IBM MQ Series adapter for Oracle interconnect 9.0.2
    Thanx

    That's an MQ JMS exception, so the MQ JMS documentation would be the best place to find out what it means.
              If I recall correctly, when you're using the MQ JMS API in "bindings" mode -- which is what you're probably doing if your queue manager is on the same machine as WLS -- then MQ does not allow you to supply a username and password. It uses your Unix user ID to authenticate itself to the queue manager in this case.

  • JMSSecurityException: MQJMS2013: invalid security authentication supplied f

    I had a very strange JMS exception. I was testing MQ and WL integration. The following simple java code segment worked fine if running by itself, but failed if it was running inside a WL JSP page. MQ and WL servers were on the same Solaris box, the user account was valid for MQ.
              Is there any security policy that prohibits WL to pass my user id and password in the createQueueConnection method?
              QueueConnectionFactory connectionFactory = new com.ibm.mq.jms.MQQueueConnectionFactory();
              QueueConnection connection = connectionFactory.createQueueConnection("userid", "password");
              connection.close();
              javax.jms.JMSSecurityException: MQJMS2013: invalid security authentication supplied for MQQueueManager
                   at com.ibm.mq.jms.MQQueueConnectionFactory.createQueueConnection(MQQueueConnectionFactory.java:231)
                   at jsp_servlet.__jmstest._jspService(__jmstest.java:128)
                   at weblogic.servlet.jsp.JspBase.service(JspBase.java:33)
                   at weblogic.servlet.internal.ServletStubImpl$ServletInvocationAction.run(ServletStubImpl.java:996)
                   at weblogic.servlet.internal.ServletStubImpl.invokeServlet(ServletStubImpl.java:419)
                   at weblogic.servlet.internal.ServletStubImpl.invokeServlet(ServletStubImpl.java:315)
                   at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:6452)
                   at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
                   at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:118)
                   at weblogic.servlet.internal.WebAppServletContext.invokeServlet(WebAppServletContext.java:3661)
                   at weblogic.servlet.internal.ServletRequestImpl.execute(ServletRequestImpl.java:2630)
                   at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:219)
                   at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:178)

    That's an MQ JMS exception, so the MQ JMS documentation would be the best place to find out what it means.
              If I recall correctly, when you're using the MQ JMS API in "bindings" mode -- which is what you're probably doing if your queue manager is on the same machine as WLS -- then MQ does not allow you to supply a username and password. It uses your Unix user ID to authenticate itself to the queue manager in this case.

  • Disabling the dbc security authentication

    Hi All,
    Apps : 11.5.10.2
    DB : 9.2.0.8
    When i am doing this "Disabling the dbc security authentication", i need to down the application services?is it compulsory to do this?
    Enable SECURE authentication
    jre oracle.apps.fnd.security.AdminAppServer apps/apps \
    AUTHENTICATION OFF DBC=/u01/app/applmgr/11.5/fnd/11.5.0/secure/backendbox_sidname.dbc
    And my environment is 5 node env
    Do i need to run this command on all the node or any specific node to disable the dbc security.
    Please update me ASAP
    Thanks a lot

    Can you pl clarify why you need to set this ? The preferred way of doing this would be via autoconfig - see MOS Doc 293609.1 (APP-FND-01542 when logging directly into forms via the f60cgi in 11.5.10). Stop all apps services, run autoconfig on the dbtier first and then on the apps tier servers.
    HTH
    Srini

  • Com.bea.p13n.security.Authentication

    can anyone tell me which jar file i have to download to get the following class
    file
    com.bea.p13n.security.Authentication
    thanx
    charith

    Also, p13n_system.jar should be on the system classpath (i.e. -classpath
    of the java weblogic.Service call). Portal domains (from the config
    wizard) are already setup that way (since wps_system.jar is the system
    classpath, and it has a Manifest Class-Path entry to p13n_system.jar).
    Greg
    Subbu Allamaraju wrote:
    This class is part p13n_system.jar.
    Subbu
    charith Fernando said the following on 10/20/2003 05:39 AM:
    can anyone tell me which jar file i have to download to get the
    following class
    file
    com.bea.p13n.security.Authentication
    thanx
    charith

  • MQJMS2013: invalid security authentication supplied for MQQueueManager

    Hi guys!
    I am having trouble in getting connected to the Queue Manager.I am getting these errors
    com.ibm.mq.MQException: MQJE001: An MQException occurred: Completion Code 2, Rea
    son 2035
    MQJE036: Queue manager rejected connection attempt
    at com.ibm.mq.MQManagedConnectionJ11.<init>(MQManagedConnectionJ11.java:
    242)
    at com.ibm.mq.MQClientManagedConnectionFactoryJ11._createManagedConnecti
    on(MQClientManagedConnectionFactoryJ11.java:276)
    at com.ibm.mq.MQClientManagedConnectionFactoryJ11.createManagedConnectio
    n(MQClientManagedConnectionFactoryJ11.java:296)
    at com.ibm.mq.StoredManagedConnection.<init>(StoredManagedConnection.jav
    a:80)
    at com.ibm.mq.MQSimpleConnectionManager.allocateConnection(MQSimpleConne
    ctionManager.java:171)
    at com.ibm.mq.MQQueueManager.obtainBaseMQQueueManager(MQQueueManager.jav
    a:754)
    at com.ibm.mq.MQQueueManager.construct(MQQueueManager.java:688)
    at com.ibm.mq.MQQueueManager.<init>(MQQueueManager.java:469)
    at com.ibm.mq.MQSPIQueueManager.<init>(MQSPIQueueManager.java:52)
    at com.ibm.mq.jms.MQConnection.createQM(MQConnection.java:2255)
    at com.ibm.mq.jms.MQConnection.createQMNonXA(MQConnection.java:1749)
    at com.ibm.mq.jms.MQQueueConnection.<init>(MQQueueConnection.java:144)
    at com.ibm.mq.jms.MQQueueConnection.<init>(MQQueueConnection.java:54)
    at com.ibm.mq.jms.MQQueueConnectionFactory.createQueueConnection(MQQueue
    ConnectionFactory.java:106)
    at MqConnTest.<init>(MqConnTest.java:69)
    at MqConnTest.main(MqConnTest.java:106)
    Caused by: com.ibm.mqservices.MQInternalException: MQJE001: An MQException occur
    red: Completion Code 2, Reason 2035
    MQJE036: Queue manager rejected connection attempt
    at com.ibm.mq.MQInternalCommunications.connectToQueueManager(MQInternalC
    ommunications.java:2894)
    at com.ibm.mq.MQInternalCommunications.<init>(MQInternalCommunications.j
    ava:619)
    at com.ibm.mq.MQSESSIONClient.MQCONN(MQSESSIONClient.java:1344)
    at com.ibm.mq.MQManagedConnectionJ11.<init>(MQManagedConnectionJ11.java:
    218)
    ... 15 more
    MQJMS2013: invalid security authentication supplied for MQQueueManager
    can you advice me what is missing and what should be done.
    thanks in advance
    -Chandra

    Hi
    I am also facing the same problem .you have any solution for it
    Thanks
    Sahadeva Reddy

  • FND Server Security (Authentication) enabled?

    Hi Guys,
    How to check the "FND Server Security (Authentication)" is enabled?
    Apps 11i
    DB: 10g
    OS: HP-UX
    Thanks,

    Please see the following docs.
    Secure Configuration Guide for Oracle E-Business Suite 11i (Doc ID 189367.1)
    11i: "APP-FND-01542" Error When Logging Directly Into Forms Via the f60cgi in 11.5.10 (Doc ID 293609.1)
    11.5.10 New Features : Managed SQL*Net Access from Hosts (Doc ID 291897.1)
    Thanks,
    Hussein

  • System.Security.Authentication.AuthenticationException

    Hi,
    I have to send an email through labview. but their is an error : System.Security.Authentication.AuthenticationException. please send me a vi for sending email through Labview.

    SOLAPUR wrote:
    Hi,
    I have to send an email through labview. but their is an error : System.Security.Authentication.AuthenticationException. please send me a vi for sending email through Labview.
    How about if I suggest instead that you actually try to do something that's a novelty in this day and age: Do a search.
    http://forums.ni.com/t5/forums/searchpage/tab/message?filter=location&location=forum-board%3A170&q=e...

  • Forget security authentication answer!

    iphone6
    Forget security authentication answer, he said you are the frist time to check out in iphone 6, you should answer the security questions,but i forget the answer.
    how i do?

    https://iforgot.apple.com

Maybe you are looking for

  • Installing Windows 7 Ultimate 64-bit with Boot Camp

    I am using a 17" MacBook Pro with and Intel i7 2.66 GHz processor, 8GB 1067 MHz RAM and a 7200RPM 500GB hard drive. I am trying to install Windows 7 Ultimate 64-bit via Boot Camp. I do what Boot Camp tells me to do, but when my MacBook Pro restarts t

  • Why can't I download my audible books?

    I just purchased a new MacBook Pro and had my local apple store transfer my iTunes library from my old iMac to my new MacBook.  To look at it on the screen, everything looks fine.  But when I try to download my book that I purchased from audible.com

  • Smartform in spool

    Hi, Smartform output is not appearing properly when viewed in spool but good in PDF. Is it due to the printers? I tried with different printers but no luck. Please tell me what might be the reason and how to resolve this. Thanks.

  • List of Images in Aperture 3

    Is there a way to print a list of images in an album. Not the images themselves, but basically a printout of what you get in the list view of a project?

  • Round up value in Design Studio

    Hi Experts Im trying to round up a value in Design Studio 1.3. my displayed value in the browser is: "36'387'202.80" i need to format this value in "36 '4" please see attachement Datasource: HANA Calculation View thx for reply, Michael