CUPS error: client-error-not-authorized

Similar Messages

• Fatal error: Client does not support authentication protocol requested by server; consider upgrading MySQL client

  Fatal error: Client does not support authentication protocol
  requested by server; consider upgrading MySQL client in
  /homepages/28/d74942468/htdocs/cosmic/sites/onlinemove/Connections/db.php
  on line 9
  This is the error that comes up on the server where the site
  sits. The database is working on my local machine with the local
  settings, but wont connect due to the above.
  I think im using MySQL client 3.23 How do i upgrade?
  I found this on MySQL site:
  http://dev.mysql.com/doc/refman/5.0/en/old-client.html
  I'm not sure how to edit the connection string to make it
  accept the vaules.

  The_FedEx_Guy wrote:
  > Fatal error: Client does not support authentication
  protocol requested by
  > server; consider upgrading MySQL client in
  >
  /homepages/28/d74942468/htdocs/cosmic/sites/onlinemove/Connections/db.php
  on
  > line 9
  > I think im using MySQL client 3.23 How do i upgrade?
  The MySQL client that the error refers to isn't the version
  of MySQL,
  but the MySQL library bundled with PHP. It sounds as though
  your hosting
  company has upgraded to MySQL 4.1 or higher, but is still
  using PHP 4.
  > I'm not sure how to edit the connection string to make
  it accept the vaules.
  You can't. It's the way that the user account passwords are
  stored in
  MySQL. You need to get the hosting company to upgrade to PHP
  5 or to
  reset the passwords in MySQL using the OLD_PASSWORD()
  function. This
  needs to be done by someone with top-level administrative
  privileges on
  the database.
  David Powers, Adobe Community Expert
  Author, "Foundation PHP for Dreamweaver 8" (friends of ED)
  Author, "PHP Solutions" (friends of ED)
  http://foundationphp.com/

• When I try to launch terminal, i get an error "You are not authorized to run this applicationThe administrator has set your shell to an illegal value."

  When I try to launch terminal, i get an error "You are not authorized to run this applicationThe administrator has set your shell to an illegal value."

  If you'd asked a question in your original post it might have solicited more pertinent responses. As it is, you were stating a fact. No one knew whether you considered that fact a problem, or what you were hoping to gain by doing so.
  The simple addition of 'can anyone help me fix this so I can run Terminal' would have counted for a lot.
  As it is, your solution is likely to require the Terminal, so you're going to need to fix that one way or another. The simplest would be to create a new admin account (System Preferences -> Users & Groups) then log in using that account.
  Then try and launch the terminal. If that works the problem is specific to your original account and can likely be fixed via some command-line tweaking. I'd start with:
  dscl . read /Users/<username>
  (where <username> is the short name of the account having a problem). This will show the records in the directory data for your account, one of which will be UserShell. Chances are that value is invalid, or missing, and can be corrected via:
  sudo dscl . -change /Users/<username> UserShell <currentValue> /bin/bash
  (where <currentValue) is the current setting for UserShell) which will change the user's shell to /bin/bash (the default).
  Of course, you might already know this and already tried, but since you didn't say so in your original post it's worth checking.

• I am trying to sync my music from my computer to my iphone 6 but my computer keeps bringing up an error box "computer not authorized" but it is authorized. Please help!

  I am trying to sync my music from my computer to my iphone 6 but my computer keeps bringing up an error box "computer not authorized" but it is authorized. Please help!

  I have a pc and am trying to get my music through my iTunes on my computer.  I didn't have any trouble syncing my iphone 5S but can't get it to sync with my 6. OS 8.1.3
  I open iTunes on my pc, plug in my phone, then I click on the picture of a phone on the upper left hand corner of my music library. Then I get a box of options with sync at the lower right.  I have clicked "automatically sync when phone is plugged in" and have also tried to do it manually by checking specific songs and albums.  Every time I hit sync the box pops up that says, "The iPhone could not be synced because this computer is no longer authorized for purchased items that are on this iPhone.  To authorize this computer for items purchased from the iTunes store choose Store>Authorize This Computer."
  I took those steps and a box pops up that says "this computer is already authorized."
  I have my recently purchased music on my phone that came through the cloud when I restored my phone. But I want my old music from CD's that I put on my iTunes library in my computer.  I had all of this music on my old phone.
  Thank you so much for your time!  I'm obviously not very good at this!

• Error Message..Not Authorized to Synch music??

  I recently bought an ipod and bought a few tunes, which I tried to synch to my ipod. When I try to do this I recieve the following error message:
  "Some of the items in the itunes library were not copied to the ipod because you are not authorized to play them on this computer"
  and that is for ALL the songs. Luckily I only bought 3...I have also created a library on my laptop (with the song of the week freebie) and there was no problem overriding and resynching with thisone. While it may be simple to say I should just use mylaptop, I would really much rather use my desktop...
  any one have this issues before or have any suggestions?
  Thank you

  This just happened to me yesterday. I had purchased an audio book from Itunes then received an error message when I synched that I was not authorized to play it on "this" computer. I clicked on the "Purchased" tab on the left side of Itunes display and the book I just ordered appeared in the main window. When I clicked on the book title itself a message appeared saying that I could authorize up to 5 computers to play the purchased selections, then requested a logon (the same logon I used for Itunes). Completing the logon and password authorized this PC. After this process my Iphone synched just fine. Hope this helps.

• FRM-99999 error: client will not be able to continue

  *) I am using deverloper 6.0 and deploying forms 6.0 on the web
  and using netscape browser 4.0.6 and oracle 8i as database.I have
  configured everything according to the help given in developers
  online documents.In the status bar of the browser it shows:
  Applet oracle.forms.engine.Main error: class
  oracle/forms/engine/Main got a security violation: method
  verification error
  *)While in the browser's java console it shows:
  Netscape Communications Corporation -- Java 1.1.5Type '?' for
  options.Symantec Java! ByteCode Compiler Version 210.065
  Copyright (C) 1996-97 Symantec Corporation
  # Error: Invalid Hash of this JAR entry (-7882)
  # jar file: C:\TEMP\jzip5HKR.TMP
  # path: oracle/ewt/alert/Alert.class
  # Error: Strange PKCS7 or RSA failure (-7881)
  # jar file: C:\TEMP\jzip5HKR.TMP
  # path: C:\TEMP\jzip5HKR.TMP
  # Error: loading of signatures has failed (-1)
  # jar file: C:\TEMP\jzip5HKR.TMP
  # path: /f60code/
  # Verifier error oracle/forms/engine/Main.init()V: Cannot find
  class sun/applet/AppletViewer
  # Applet exception: class oracle/forms/engine/Main got a security
  violation: method verification errorjava.lang.VerifyError:
  oracle/forms/engine/Main at
  java.lang.ClassLoader.resolveClass(Compiled Code) at
  netscape.applet.AppletClassLoader.loadClass1(Compiled Code)* at
  netscape.applet.AppletClassLoader.loadClass(Compiled Code) at
  netscape.applet.AppletClassLoader.loadClass(Compiled Code) at
  netscape.applet.DerivedAppletFrame$LoadAppletEvent.dispatch(Compi
  led Code) at
  java.awt.EventDispatchThread$EventPump.dispatchEvents(Compiled
  Code) at java.awt.EventDispatchThread.run(Compiled Code) at
  netscape.applet.DerivedAppletFrame$AppletEventDispatchThread.run(
  Compiled Code)
  *)Now having this problem if we reload the browser the applet
  appears in the browser and the form opens but after some time it
  gives the following error:
  FRM 99999 A network error occured the client will not be able
  to continue
  Details ... Java Exception:java.net SocketException: Socket
  closed
  *)While using forms 5.0, I succesfully deploy the forms on the
  web,but the same error occurs here also after some time:
  FRM 99999 A network error occured the client will not be able
  to continue
  Details ... Java Exception:java.net SocketException: Socket
  closed
  Please let me know if there is anything more i have to configure
  or any NT Service patch or any thing else to install.
  IF ANY ONE KNOWS ABOUT THIS ERROR PLEASE RESPOND
  HARJEET
  null

  Harjeet,
  The current implementation of java in either IE or NS are not
  able to run the classes of Oracle developper...
  You should install the Jinitiator that comes with the Dev6.
  Look for the Object or Embed syntax in the release note or the
  Online manual for the complete syntax.
  Here is a hint:
  <EMBED type="application/x-jinit-applet;version=1.1.7.11"
  width="10" height="10"
  code="oracle.forms.engine.Main" codebase="/form60code/"
  archive ="/form60code/f60small.jar"
  serverPort="9000"
  serverArgs="module=visaphone.fmx userid=use/pass@con"
  serverApp ="default"
  colorScheme="blue"
  separateFrame= "true"
  splashScreen="yes"
  background="no"
  pluginspage="http://new_age/unc-html/jinit_download.htm">
  </EMBED>
  harjeet bakshi (guest) wrote:
  : *) I am using deverloper 6.0 and deploying forms 6.0 on the web
  : and using netscape browser 4.0.6 and oracle 8i as database.I
  have
  : configured everything according to the help given in developers
  : online documents.In the status bar of the browser it shows:
  : Applet oracle.forms.engine.Main error: class
  : oracle/forms/engine/Main got a security violation: method
  : verification error
  : *)While in the browser's java console it shows:
  : Netscape Communications Corporation -- Java 1.1.5Type '?' for
  : options.Symantec Java! ByteCode Compiler Version 210.065
  : Copyright (C) 1996-97 Symantec Corporation
  : # Error: Invalid Hash of this JAR entry (-7882)
  : # jar file: C:\TEMP\jzip5HKR.TMP
  : # path: oracle/ewt/alert/Alert.class
  : # Error: Strange PKCS7 or RSA failure (-7881)
  : # jar file: C:\TEMP\jzip5HKR.TMP
  : # path: C:\TEMP\jzip5HKR.TMP
  : # Error: loading of signatures has failed (-1)
  : # jar file: C:\TEMP\jzip5HKR.TMP
  : # path: /f60code/
  : # Verifier error oracle/forms/engine/Main.init()V: Cannot find
  : class sun/applet/AppletViewer
  : # Applet exception: class oracle/forms/engine/Main got a
  security
  : violation: method verification errorjava.lang.VerifyError:
  : oracle/forms/engine/Main at
  : java.lang.ClassLoader.resolveClass(Compiled Code) at
  : netscape.applet.AppletClassLoader.loadClass1(Compiled Code)* at
  : netscape.applet.AppletClassLoader.loadClass(Compiled Code) at
  : netscape.applet.AppletClassLoader.loadClass(Compiled Code) at
  netscape.applet.DerivedAppletFrame$LoadAppletEvent.dispatch(Compi
  : led Code) at
  : java.awt.EventDispatchThread$EventPump.dispatchEvents(Compiled
  : Code) at java.awt.EventDispatchThread.run(Compiled Code) at
  netscape.applet.DerivedAppletFrame$AppletEventDispatchThread.run(
  : Compiled Code)
  : *)Now having this problem if we reload the browser the applet
  : appears in the browser and the form opens but after some time
  it
  : gives the following error:
  : FRM 99999 A network error occured the client will not be
  able
  : to continue
  : Details ... Java Exception:java.net SocketException: Socket
  : closed
  : *)While using forms 5.0, I succesfully deploy the forms on the
  : web,but the same error occurs here also after some time:
  : FRM 99999 A network error occured the client will not be
  able
  : to continue
  : Details ... Java Exception:java.net SocketException: Socket
  : closed
  : Please let me know if there is anything more i have to
  configure
  : or any NT Service patch or any thing else to install.
  : IF ANY ONE KNOWS ABOUT THIS ERROR PLEASE RESPOND
  : HARJEET
  null

• Error -5000  Saying not authorized to access

  I recently moved my itunes over to a Dell running Windows Vista. I have a 30g IPOD.
  I authorized the computer. I moved my files over. Everything seems fine.
  I purchased some television episodes and I receive an error saying I am not authorized to download.
  I am the administrator and only user on this computer. I verified I was logged in as administrator. The one thing I notice is my folders seem to default to read-only. I change that and still get the error. When I check the folder again, it has reverted to read-only?

  I have changed the program file to be write accessible, but it also keep reverting back to read-only. I am new to Vista-- anyone out there that can steer me to the right place?

• Error: "client-error-request-value-too-long" when trying to add printer

  After installing the 10.4.9 Combo update, my HP 1350 All-in-One printer was not recognized. I reinstalled the driver, but now I can't add the printer. I get the error message "client-error-request-value-too-long" when trying to add the printer. Has anyone else experienced a similar problem.
  Thanks in advance

  Well, I tried all of that and I'm still getting the error message. I've also repaired disk permissions and run Disk Warrior. When I repaired disk permissions, many HP printer items showed up in the list.

• When  submit remote object call getting error Client.Error.DeliveryInDoubt

  Hello,
  We are having very weird error DeliveryInDoubt from blazeds.
  [ERROR] failed to call the remote service !!![FaultEvent fault=[RPC Fault faultString="Channel disconnected" faultCode="Client.Error.DeliveryInDoubt" faultDetail="Channel disconnected before an acknowledgement was received"] messageId="98F7B030-0FE0-0B88-300C-EC422D055E21" type="fault" bubbles=false cancelable=true eventPhase=2
  Error does not happen every time, but rather from time to time but happens on all client machines.
  Environment:
  blazeds v3.
  Flex application with Remote Object.
  Browser IE7.
  Object that passed to blazeds is complex and might have 100 items.But number of items does not seem affect error occurences.
  Short description for the object passed to blazeds remote object call for processing:
  Remote Object call takes an argument ArrayCollection of SyncRequest objects (_requestSyncList)
                  var syncRequest:SyncRequest = new SyncRequest();
                  var syncObject:Object = new Object();
                  syncObject[requestBuilder.direction] = requestBuilder.jobMap;
                  syncRequest.syncJobs = syncObject;
                  _requestSyncList.addItem(syncRequest);          
  requestBuilder.jobMap is an object that have different artifacts.
  jobMap[obj.artifact] = myColl;
  myColl is ArrayCollection of artifact of SyncJob
  Here is the definition of SyncJob
     public class SyncJob
          public var jobName:String;
          [ArrayElementType("com.farmers.docprocessing.remotesync.vo.JobParameter")]
          public var jobParams:ArrayCollection;
  Not sure what causing that issue and how to debug it. 
  Please advice.
  Thank you

  Not without you psoting some code.
  Possible problem: Difference between object type being returned, vs the type of the reference (i.e., the method that returns an object should have a return type of the interface name).

• AnyConnect error " User not authorized for AnyConnect Client access, contact your administrator"

  Hi everyone,
  it's probably just me but I have tried real hard to get a simple AnyConnect setup working in a lab environment on my ASA 5505 at home, without luck. When I connect with the AnyConnect client I get the error message "User not authorized for AnyConnect Client access, contact your administrator". I have searched for this error and tried some of the few solutions out there, but to no avail. I also updated the ASA from 8.4.4(1) to 9.1(1) and ASDM from 6.4(9) to 7.1(1) but still the same problem. The setup of the ASA is straight forward, directly connected to the Internet with a 10.0.1.0 / 24 subnet on the inside and an address pool of 10.0.2.0 / 24 to assign to the VPN clients. Please note that due to ISP restrictions, I'm using port 44455 instead of 443. I had AnyConnect working with the SSL portal, but IKEv2 IPsec is giving me a headache. I have stripped down certificate authentication which I had running before just to eliminate this as a potential cause of the issue. When running debugging, I do not get any error messages - the handshake completes successfully and the local authentication works fine as well.
  Please find the current config and debugging output below. I appreciate any pointers as to what might be wrong here.
  : Saved
  ASA Version 9.1(1)
  hostname ASA
  domain-name ingo.local
  enable password ... encrypted
  xlate per-session deny tcp any4 any4
  xlate per-session deny tcp any4 any6
  xlate per-session deny tcp any6 any4
  xlate per-session deny tcp any6 any6
  xlate per-session deny udp any4 any4 eq domain
  xlate per-session deny udp any4 any6 eq domain
  xlate per-session deny udp any6 any4 eq domain
  xlate per-session deny udp any6 any6 eq domain
  passwd ... encrypted
  names
  name 10.0.1.0 LAN-10-0-1-x
  dns-guard
  ip local pool VPNPool 10.0.2.1-10.0.2.10 mask 255.255.255.0
  interface Ethernet0/0
  switchport access vlan 2
  interface Ethernet0/1
  interface Ethernet0/2
  interface Ethernet0/3
  interface Ethernet0/4
  interface Ethernet0/5
  interface Ethernet0/6
  interface Ethernet0/7
  interface Vlan1
  nameif Internal
  security-level 100
  ip address 10.0.1.254 255.255.255.0
  interface Vlan2
  nameif External
  security-level 0
  ip address dhcp setroute
  regex BlockFacebook "facebook.com"
  banner login This is a monitored system. Unauthorized access is prohibited.
  boot system disk0:/asa911-k8.bin
  ftp mode passive
  clock timezone PST -8
  clock summer-time PDT recurring
  dns domain-lookup Internal
  dns domain-lookup External
  dns server-group DefaultDNS
  name-server 10.0.1.11
  name-server 75.153.176.1
  name-server 75.153.176.9
  domain-name ingo.local
  object network obj_any
  subnet 0.0.0.0 0.0.0.0
  object network LAN-10-0-1-x
  subnet 10.0.1.0 255.255.255.0
  object network Company-IP1
  host xxx.xxx.xxx.xxx
  object network Company-IP2
  host xxx.xxx.xxx.xxx
  object network HYPER-V-DUAL-IP
  range 10.0.1.1 10.0.1.2
  object network LAN-10-0-1-X
  access-list 100 extended permit tcp any4 object HYPER-V-DUAL-IP eq 3389 inactive
  access-list 100 extended permit tcp object Company-IP1 object HYPER-V-DUAL-IP eq 3389
  access-list 100 extended permit tcp object Company-IP2 object HYPER-V-DUAL-IP eq 3389 
  tcp-map Normalizer
    check-retransmission
    checksum-verification
  no pager
  logging enable
  logging timestamp
  logging list Threats message 106023
  logging list Threats message 106100
  logging list Threats message 106015
  logging list Threats message 106021
  logging list Threats message 401004
  logging buffered errors
  logging trap Threats
  logging asdm debugging
  logging device-id hostname
  logging host Internal 10.0.1.11 format emblem
  logging ftp-bufferwrap
  logging ftp-server 10.0.1.11 / asa *****
  logging permit-hostdown
  mtu Internal 1500
  mtu External 1500
  ip verify reverse-path interface Internal
  ip verify reverse-path interface External
  icmp unreachable rate-limit 1 burst-size 1
  icmp deny any echo External
  asdm image disk0:/asdm-711.bin
  no asdm history enable
  arp timeout 14400
  no arp permit-nonconnected
  object network obj_any
  nat (Internal,External) dynamic interface
  object network LAN-10-0-1-x
  nat (Internal,External) dynamic interface
  object network HYPER-V-DUAL-IP
  nat (Internal,External) static interface service tcp 3389 3389
  access-group 100 in interface External
  timeout xlate 3:00:00
  timeout pat-xlate 0:00:30
  timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
  timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
  timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
  timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
  timeout tcp-proxy-reassembly 0:01:00
  timeout floating-conn 0:00:00
  dynamic-access-policy-record DfltAccessPolicy
  aaa-server radius protocol radius
  aaa-server radius (Internal) host 10.0.1.11
  key *****
  radius-common-pw *****
  user-identity default-domain LOCAL
  aaa authentication ssh console radius LOCAL
  http server enable
  http LAN-10-0-1-x 255.255.255.0 Internal
  no snmp-server location
  no snmp-server contact
  snmp-server enable traps snmp authentication linkup linkdown coldstart
  crypto ipsec ikev2 ipsec-proposal DES
  protocol esp encryption des
  protocol esp integrity sha-1 md5
  crypto ipsec ikev2 ipsec-proposal 3DES
  protocol esp encryption 3des
  protocol esp integrity sha-1 md5
  crypto ipsec ikev2 ipsec-proposal AES
  protocol esp encryption aes
  protocol esp integrity sha-1 md5
  crypto ipsec ikev2 ipsec-proposal AES192
  protocol esp encryption aes-192
  protocol esp integrity sha-1 md5
  crypto ipsec ikev2 ipsec-proposal AES256
  protocol esp encryption aes-256
  protocol esp integrity sha-1 md5
  crypto ipsec security-association pmtu-aging infinite
  crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set ikev2 ipsec-proposal AES256 AES192 AES 3DES DES
  crypto map External_map 65535 ipsec-isakmp dynamic SYSTEM_DEFAULT_CRYPTO_MAP
  crypto map External_map interface External
  crypto ca trustpoint srv01_trustpoint
  enrollment terminal
  crl configure
  crypto ca trustpoint asa_cert_trustpoint
  keypair asa_cert_trustpoint
  crl configure
  crypto ca trustpoint LOCAL-CA-SERVER
  keypair LOCAL-CA-SERVER
  crl configure
  crypto ca trustpool policy
  crypto ca server
  cdp-url http://.../+CSCOCA+/asa_ca.crl:44435
  issuer-name CN=...
  database path disk0:/LOCAL_CA_SERVER/
  smtp from-address ...
  publish-crl External 44436
  crypto ca certificate chain srv01_trustpoint
  certificate <output omitted>
    quit
  crypto ca certificate chain asa_cert_trustpoint
  certificate <output omitted>
    quit
  crypto ca certificate chain LOCAL-CA-SERVER
  certificate <output omitted>
    quit
  crypto ikev2 policy 1
  encryption aes-256
  integrity sha
  group 5 2
  prf sha
  lifetime seconds 86400
  crypto ikev2 policy 10
  encryption aes-192
  integrity sha
  group 5 2
  prf sha
  lifetime seconds 86400
  crypto ikev2 policy 20
  encryption aes
  integrity sha
  group 5 2
  prf sha
  lifetime seconds 86400
  crypto ikev2 policy 30
  encryption 3des
  integrity sha
  group 5 2
  prf sha
  lifetime seconds 86400
  crypto ikev2 policy 40
  encryption des
  integrity sha
  group 5 2
  prf sha
  lifetime seconds 86400
  crypto ikev2 enable External client-services port 44455
  crypto ikev2 remote-access trustpoint asa_cert_trustpoint
  telnet timeout 5
  ssh LAN-10-0-1-x 255.255.255.0 Internal
  ssh xxx.xxx.xxx.xxx 255.255.255.255 External
  ssh xxx.xxx.xxx.xxx 255.255.255.255 External
  ssh timeout 5
  ssh version 2
  console timeout 0
  no vpn-addr-assign aaa
  no ipv6-vpn-addr-assign aaa
  no ipv6-vpn-addr-assign local
  dhcpd dns 75.153.176.9 75.153.176.1
  dhcpd domain ingo.local
  dhcpd option 3 ip 10.0.1.254
  dhcpd address 10.0.1.50-10.0.1.81 Internal
  dhcpd enable Internal
  threat-detection basic-threat
  threat-detection scanning-threat shun except ip-address LAN-10-0-1-x 255.255.255.0
  threat-detection statistics access-list
  threat-detection statistics tcp-intercept rate-interval 30 burst-rate 400 average-rate 200
  dynamic-filter use-database
  dynamic-filter enable interface Internal
  dynamic-filter enable interface External
  dynamic-filter drop blacklist interface Internal
  dynamic-filter drop blacklist interface External
  ntp server 128.233.3.101 source External
  ntp server 128.233.3.100 source External prefer
  ntp server 204.152.184.72 source External
  ntp server 192.6.38.127 source External
  ssl encryption aes256-sha1 aes128-sha1 3des-sha1
  ssl trust-point asa_cert_trustpoint External
  webvpn
  port 44433
  enable External
  dtls port 44433
  anyconnect image disk0:/anyconnect-win-3.1.02026-k9.pkg 1
  anyconnect profiles profile1 disk0:/profile1.xml
  anyconnect enable
  smart-tunnel list SmartTunnelList1 mstsc mstsc.exe platform windows
  smart-tunnel list SmartTunnelList1 putty putty.exe platform windows
  group-policy DfltGrpPolicy attributes
  vpn-tunnel-protocol ikev1 ikev2 l2tp-ipsec ssl-client ssl-clientless
  webvpn
    anyconnect profiles value profile1 type user
  username write.ingo password ... encrypted
  username ingo password ... encrypted privilege 15
  username tom.tucker password ... encrypted
  class-map TCP
  match port tcp range 1 65535
  class-map type regex match-any BlockFacebook
  match regex BlockFacebook
  class-map type inspect http match-all BlockDomains
  match request header host regex class BlockFacebook
  class-map inspection_default
  match default-inspection-traffic
  policy-map type inspect dns preset_dns_map
  parameters
    message-length maximum client auto
    message-length maximum 1500
    id-randomization
  policy-map TCP
  class TCP
    set connection conn-max 1000 embryonic-conn-max 1000 per-client-max 250 per-client-embryonic-max 250
    set connection timeout dcd
    set connection advanced-options Normalizer
    set connection decrement-ttl
  policy-map type inspect http HTTP
  parameters
    protocol-violation action drop-connection log
  class BlockDomains
  policy-map global_policy
  class inspection_default
    inspect ftp
    inspect h323 h225
    inspect h323 ras
    inspect rsh
    inspect rtsp
    inspect esmtp
    inspect sqlnet
    inspect skinny 
    inspect sunrpc
    inspect xdmcp
    inspect sip 
    inspect netbios
    inspect tftp
    inspect ip-options
    inspect dns preset_dns_map dynamic-filter-snoop
    inspect http HTTP
  service-policy global_policy global
  service-policy TCP interface External
  smtp-server 199.185.220.249
  privilege cmd level 3 mode exec command perfmon
  privilege cmd level 3 mode exec command ping
  privilege cmd level 3 mode exec command who
  privilege cmd level 3 mode exec command logging
  privilege cmd level 3 mode exec command failover
  privilege cmd level 3 mode exec command vpn-sessiondb
  privilege cmd level 3 mode exec command packet-tracer
  privilege show level 5 mode exec command import
  privilege show level 5 mode exec command running-config
  privilege show level 3 mode exec command reload
  privilege show level 3 mode exec command mode
  privilege show level 3 mode exec command firewall
  privilege show level 3 mode exec command asp
  privilege show level 3 mode exec command cpu
  privilege show level 3 mode exec command interface
  privilege show level 3 mode exec command clock
  privilege show level 3 mode exec command dns-hosts
  privilege show level 3 mode exec command access-list
  privilege show level 3 mode exec command logging
  privilege show level 3 mode exec command vlan
  privilege show level 3 mode exec command ip
  privilege show level 3 mode exec command failover
  privilege show level 3 mode exec command asdm
  privilege show level 3 mode exec command arp
  privilege show level 3 mode exec command ipv6
  privilege show level 3 mode exec command route
  privilege show level 3 mode exec command ospf
  privilege show level 3 mode exec command aaa-server
  privilege show level 3 mode exec command aaa
  privilege show level 3 mode exec command eigrp
  privilege show level 3 mode exec command crypto
  privilege show level 3 mode exec command ssh
  privilege show level 3 mode exec command vpn-sessiondb
  privilege show level 3 mode exec command vpnclient
  privilege show level 3 mode exec command vpn
  privilege show level 3 mode exec command dhcpd
  privilege show level 3 mode exec command blocks
  privilege show level 3 mode exec command wccp
  privilege show level 3 mode exec command dynamic-filter
  privilege show level 3 mode exec command webvpn
  privilege show level 3 mode exec command service-policy
  privilege show level 3 mode exec command module
  privilege show level 3 mode exec command uauth
  privilege show level 3 mode exec command compression
  privilege show level 3 mode configure command interface
  privilege show level 3 mode configure command clock
  privilege show level 3 mode configure command access-list
  privilege show level 3 mode configure command logging
  privilege show level 3 mode configure command ip
  privilege show level 3 mode configure command failover
  privilege show level 5 mode configure command asdm
  privilege show level 3 mode configure command arp
  privilege show level 3 mode configure command route
  privilege show level 3 mode configure command aaa-server
  privilege show level 3 mode configure command aaa
  privilege show level 3 mode configure command crypto
  privilege show level 3 mode configure command ssh
  privilege show level 3 mode configure command dhcpd
  privilege show level 5 mode configure command privilege
  privilege clear level 3 mode exec command dns-hosts
  privilege clear level 3 mode exec command logging
  privilege clear level 3 mode exec command arp
  privilege clear level 3 mode exec command aaa-server
  privilege clear level 3 mode exec command crypto
  privilege clear level 3 mode exec command dynamic-filter
  privilege cmd level 3 mode configure command failover
  privilege clear level 3 mode configure command logging
  privilege clear level 3 mode configure command arp
  privilege clear level 3 mode configure command crypto
  privilege clear level 3 mode configure command aaa-server
  prompt hostname context
  no call-home reporting anonymous
  call-home
  profile CiscoTAC-1
    no active
    destination address http https://tools.cisco.com/its/service/oddce/services/DDCEService
    destination address email [email protected]
    destination transport-method http
    subscribe-to-alert-group diagnostic
    subscribe-to-alert-group environment
    subscribe-to-alert-group inventory periodic monthly
    subscribe-to-alert-group configuration periodic monthly
    subscribe-to-alert-group telemetry periodic daily
  Cryptochecksum:41a021a28f73c647a2f550ba932bed1a
  : end
  Many thanks,
  Ingo

  Hi Jose,
  here is what I got now:
  ASA(config)# sh run | begin tunnel-group
  tunnel-group DefaultWEBVPNGroup general-attributes
  address-pool VPNPool
  authorization-required
  and DAP debugging still the same:
  ASA(config)# DAP_TRACE: DAP_open: CDC45080
  DAP_TRACE: Username: tom.tucker, aaa.cisco.grouppolicy = DfltGrpPolicy
  DAP_TRACE: Username: tom.tucker, aaa.cisco.username = tom.tucker
  DAP_TRACE: Username: tom.tucker, aaa.cisco.username1 = tom.tucker
  DAP_TRACE: Username: tom.tucker, aaa.cisco.username2 =
  DAP_TRACE: Username: tom.tucker, aaa.cisco.tunnelgroup = DefaultWEBVPNGroup
  DAP_TRACE: Username: tom.tucker, DAP_add_SCEP: scep required = [FALSE]
  DAP_TRACE: Username: tom.tucker, DAP_add_AC:
  endpoint.anyconnect.clientversion="3.1.02026";
  endpoint.anyconnect.platform="win";
  DAP_TRACE: Username: tom.tucker, dap_aggregate_attr: rec_count = 1
  DAP_TRACE: Username: tom.tucker, Selected DAPs: DfltAccessPolicy
  DAP_TRACE: Username: tom.tucker, DAP_close: CDC45080
  Unfortunately, it still doesn't work. Hmmm.. maybe a wipe of the config and starting from scratch can help?
  Thanks,
  Ingo

• You are not authorized to logon to the target system (error code 1)

  Dear Expert,
  I met some problems that 'You are not authorized to logon to the target system (error code 1)' when I tried to do the auth. testing for RFC SM_CLNT<SID>_TRUSTED in satellite system.
  Following SAP note 128447, I recreated the RFCs in SMSY in solution manager for satellite system using existing user.
  It was still error ''You are not authorized to logon to the target system (error code 1)'.
  In SMSY in solman, I checked the RFCs connection which I recreated using RFC wizard, they are ok(green).
  I have already maintain the auth. obj S_RFCACL for user who is running this.
  So, I am confused what authorization I did not maintain in user? Please help me out!
  Thanks a lot!
  Br,
  Lucy
  Edited by: lucy YANG on Mar 19, 2011 6:59 AM
  Edited by: lucy YANG on Mar 19, 2011 7:01 AM

  Hello Lucy,
  The error is pretty clear that the calling system is not a trusted system so I don't think you should bother with an authorization trace at this time, because authorizations is not quite the issue. The calling system is NOT a trusted system, authorizations or not.
  Please refer to SAP Note 128447 Trusted/Trusting systems
  The error is listed there:
  Authorization errors that occur when using an RFC destination for which
  the 'Trusted Systems' indicator is set are documented with the following
  message:
  "No authorization to log on as a trusted system (Trusted RC = #)."
  In this case, the trusted return code # (# = 0, 1, 2, 3) has the
  following relevance:
  1   The calling system is not a trusted system, or the
       security key for the system is invalid.
       Solution: Recreate the trusted system (see
       documentation).
  These are the links the Note provides for the documentation:
  [http://help.sap.com
  /saphelp_nw04/helpdata/en/22/042671488911d189490000e829fbbd/frameset.htm
  ] in accordance with the documentation
  [http://help.sap.com/
  saphelp_nw04/helpdata/en/8b/0010519daef443ab06d38d7ade26f4/content.htm].
  The Note states to recreate the Trusted system according to the Documentation (links above)
  This is all in the Note. Please follow the Note to reslve this known error.
  Regards,
  Paul

• 2012R2-Ess. event 12072 and error 401 (not authorized) when doing checkhealth

  Hello,
  I installed wsus on a fresh installed Windows Server 2012R2 Essentials (german) and "wsusutil checkhealth" gives me Event 12072 and 13002
  The WSUS Content Directory is not accessible (Es kann nicht auf das WSUS-Inhaltsverzeichnis zugegriffen werden.)
  System.Net.WebException: Der Remoteserver hat einen Fehler zurückgegeben: (401) Nicht autorisiert.
  (remoteserver gave error back: 401, not authorized)
     bei System.Net.HttpWebRequest.GetResponse()
     bei Microsoft.UpdateServices.Internal.HealthMonitoring.HmtWebServices.CheckContentDirWebAccess(EventLoggingType type, HealthEventLogger logger)
  What I did:
  installed server 2012R2 Essentials
  did a domain migration from a 1-Server 2003 Domain to this 1-Server 2012 Domain the old 2003 server hosted a wsus server
  installed wsus as a role, content directory: D:\wsus (not created before, was created automatically by wsus setup/config)
  ran the wsus config, products: Server 2012 only
  grant "Network service" Full Access in D:\ and D:\WSUS
  grant "Network service" Full Access in %windir%\.Net\Framework\v4..\Temporary ASP .Net Files
  tried to grant "Network service" Full Access in IIS-Manager > WSUS-Management > APIRemoting30 but got some "access denied" errors here, although i am administrator
  "D:\WSUS\WsusContent\anonymousCheckFile.txt" exists, is empty
  icacls D:\wsus\wsuscontent
  NT-AUTORITÄT\Netzwerkdienst:(OI)(CI)(F)
  ROESRATH\WSUS Administrators:(OI)(CI)(F)
  NT-AUTORITÄT\Netzwerkdienst:(I)(OI)(CI)(F)
  VORDEFINIERT\Administratoren:(I)(OI)(CI)(F)
  NT-AUTORITÄT\SYSTEM:(I)(OI)(CI)(F)
  http://localhost/connect/Server.aspx still works
  Unfortunately I did not find anything about this 401 not authorized in the web :-((
  Hope, anyone could help me
  Regards
  Uwe

  icacls D:\wsus\wsuscontent
  NT-AUTORITÄT\Netzwerkdienst:(OI)(CI)(F)
  ROESRATH\WSUS Administrators:(OI)(CI)(F)
  NT-AUTORITÄT\Netzwerkdienst:(I)(OI)(CI)(F)
  VORDEFINIERT\Administratoren:(I)(OI)(CI)(F)
  NT-AUTORITÄT\SYSTEM:(I)(OI)(CI)(F)
  The USERS group appears to be missing from this list. Since it is the USERS group that grants permissions to IIS_USR for anonymous access, and the /Content v-dir is an anonymous resource, almost certainly the absence of the USERS group is causing the '401'
  errors. The USERS group requires Read & Execute access on the folder tree.
  Also, there may be complications because this machine is a Domain Controller. Domain Controllers and WSUS on Windows Server 2012 do not play nicely together, but it would seem you're already past most of those known hurdles. However, I do find these two
  references to be ambiguous:
  ROESRATH\WSUS Administrators:(OI)(CI)(F)
  VORDEFINIERT\Administratoren:(I)(OI)(CI)(F)
  The Administrators group should have Full Control, as should the WSUS Administrators group. If this machine is a Domain Controller, then those would actually be the DOMAIN\Domain Admins group and the DOMAIN\WSUS Administrators group. But in this instance,
  these two groups have different scope references: ROESRATH vs VORDEFINIERT.
  Lawrence Garvin, M.S., MCSA, MCITP:EA, MCDBA
  SolarWinds Head Geek
  Microsoft MVP - Software Packaging, Deployment & Servicing (2005-2014)
  My MVP Profile: http://mvp.microsoft.com/en-us/mvp/Lawrence%20R%20Garvin-32101
  http://www.solarwinds.com/gotmicrosoft
  The views expressed on this post are mine and do not necessarily reflect the views of SolarWinds.

• Cant retrieve purchased itunes on new PC, get error computer not authorized.  how do I authorize new device?

  Im trying to download previously purchased itunes on a new PC, but get following error message "computer not authorized". How do I authorize new device? thanks,
  c

  Press the Alt and S keys and choose Authorize this Computer, or click here, follow the instructions, click on Store in the menu bar, and choose Authorize this Computer.
  (81383)

• FR Studio 11.1.1.3 : You're not authorized to use this function...

  Hi,
  we have FR Studio (client, v. 11.1.1.3.0238 and Report Server v. 11.1.1.3.0.0301) distributed on Citrix terminal server (windows 2003 32-bit) and on latest 2 prod servers we have this error "You're not authorized to use this function. Contact your administrator." appearing.
  On QA server FR Studio works fine, we had an issue there when we forgot to set ports
  8295-8299 to "listening mode" = they were not defined on FR server's FR_servp.properties config files.
  This is also fixed on Prod FR servers and we have double checked firewalls are open.
  After adding them to QA FR servers we had no issues with FR Studio on QA, but on PROD the issue still exists.
  We have also checked that this shouldn' have anything to do with authentication.
  Odd thing is that we get at least partially same sort of error messages on both working and non-working FRClient.log files.
  On FRClient.log there are for example following records:
  08-04 09:26:11 ERROR ConfigResourceBundle     Could not find fr_configcache.properties file
  08-04 09:26:11 ERROR SerializableResourceBundle     Could not get registry instance
  08-04 09:26:11 ERROR SerializableResourceBundle     java.io.FileNotFoundException: C:\Apps\Hyperion\common\config\9.5.0.0\reg.properties (The system cannot find the file specified)
  com.hyperion.hit.registry.exceptions.RegistryException: java.io.FileNotFoundException: C:\Apps\Hyperion\common\config\9.5.0.0\reg.properties (The system cannot find the file specified)
       at com.hyperion.hit.registry.RegistryUtils.createNewConnection(RegistryUtils.java:158)
       at com.hyperion.hit.registry.RegistryConnection.getInstance(RegistryConnection.java:155)
       at com.hyperion.hit.registry.Registry.getInstance(Registry.java:309).....
  Caused by: java.io.FileNotFoundException: C:\Apps\Hyperion\common\config\9.5.0.0\reg.properties (The system cannot find the file specified)
       at java.io.FileInputStream.open(Native Method)
       at java.io.FileInputStream.<init>(FileInputStream.java:106)
       at com.hyperion.hit.registry.RegistryUtils.createNewConnection(RegistryUtils.java:151)
       ... 15 more
  08-04 09:26:11 ERROR HRResourceBundleFactory     Could not locate registry
  08-04 09:26:11 ERROR HRResourceBundleFactory     5500
  com.hyperion.reporting.util.HyperionReportException: Server not yet configured. Please configure the server.
       at com.hyperion.reporting.config.ConfigResourceBundle.<init>(Unknown Source)
       at com.hyperion.reporting.config.ConfigResourceBundle.getInstance(Unknown Source)
       at com.hyperion.reporting.config.HRResourceBundleFactory.getConfigBundle(Unknown Source)...
  That propably gives already an idea what FR Studio is logging.
  Does anyone have idea about this .properties file for frconfig cache?
  Should that be defined somehow during system configuration as we don't find that from any of our environments?
  Just for additional info:
  We have used following packages and installed HFM Admin Client, FR Studio and EPMA File Generator GUI.
  •     02. installer - V17382-01.zip
  •     03. foundation 1 of 4 - V17397-01.zip
  •     03. foundation 2 of 4 - V17369-01.zip
  •     04. architect - V17398-01.zip
  •     08. financial reporting - V17378-01.zip
  •     11. financial management - V17365-01.zip
  Patches:
  + hfm_11113_50-p9976978_111130_WINNT.zip
  + financial reporting_11113_20-p9657652_11113_WINNT.zip
  During the installation we selected:
  Foundation \
  Performance Management Architect\Performance Management Architect File Generator
  Financial Management\
  Financial Management Client
  Financial ManagementADM Driver
  Financial Reporting\
  Financial Reporting Studio Client
  I noticed that apparently no configuration was run neither in QA or in PROD, not sure though if FR Studio even requires that? HFM Admin Client does work on all environments Citrix servers.
  But in Dev and LAB where FR Studio is working fine - FRClient logs absolutely no recods at all and there we did run configuration to tell which SQL db is on background.
  Not sure though whether that config run has any significance for FR Studio.
  Sorry for extremely long story, but just in case if anybody has faced similar issues and whether there could be something with Windows server settings I should go and check?
  Btw... even adding this fr_configcache.properties manually (to try to highlight FR server name and port) it seems FR Client can't find the file.
  Br, MJK

  Denis,
  Thank you for the prompt reply.
  >
  Denis Konovalov wrote:
  > if those reports were saved with security - you're not goingt o be able to open them with Xi3.1 Deski.
  Forgive me for my mundane question but what does saving with security mean?
  Thanks

• "You are not authorized to download selected object" when trying to download SAP Kernel 7.21 EXT PL 500 with DL

  Hello everyone,
  Yesterday (April 30, 2015) SAP released the new patch 500 for SAP KERNEL 7.21 EXT 64-bit.
  I am using Download Manager and I was able to download the Kernel Part II (DB-Dependent) .SAR file and other files as you can see in the screenshot, but for the Kernel Part I and disp+work files I get the error: "You are not authorized to download selected object".
  On the other hand, I am able to download older versions of the Kernel Part I (SAPEXE_XXX.SAR).
  Is this a technical problem on SAP side (SMP)? Did anyone encounter the same issue and found a solution?
  Thanks.
  BR,
  Michel

  Hello Michel,
  Kernel Patch 500 is yet to release, to the customer.
  Have a look at the below blog.
  Surprise for Kernel version 7.21 patch level 500 !
  Hope the above one helps.
  regards,
  pavan