Custom login fails to add user to Authenticated_Users group
We have a custom login servlet that authenticates to MS Active Directory with 9iAS 9.0.2 portal. However, none of the users are automatically added to authenticated_users group upon login. Our login servlet behaves as follows:
- we do a ldap copy once a day to move usernames into OID
- the servlet authenticates to AD with username and password
- if authenticated, verify username is in OID
- if username in OID, update password as provided by servlet
- login
I should also mention that we have 9iAS, portal, SSO, etc. using SSL.
Is our problem missing logic within the servlet or with the ldap copy not populating a certain field? or other?
Any ideas? We are getting close to deploying to operational network.
Similar Messages
-
All Im very new to Oracle DRM and Im trying to get the app setup on Windows server running SQL Server 2008. When I try to login to the Web Client I keep getting this error.
DRM-61026: Unable to create user session for the following reason: Login failed. Invalid user name or password.
Can you please helpThis might be due to The 'Oracle Instance' path may not have been set to a path relative to the 'CSS Bridge Host' (i.e. the Foundation Services machine) on the Configuration > Host Machines > CSS > General tab of the DRM Configuration Utility.
if this is the case then
1. Open the DRM Configuration Console.
2. Go to the Configuration > Host Machines > CSS > General tab of the DRM Configuration Utility.
3. Ensure that the path in 'Oracle Instance' has been set relative to the 'CSS Bridge Host' (i.e. the Foundation Services machine defined in 'CSS Bridge Host').
4. If corrections are made to 'Oracle Instance' then restart the DRM services to pick up the change.
Thanks,
~KKT~ -
Analytical Services failed to get user's parent group tree with Error
Hi,
We have a frequent errror during our weekly batch for an application.
The context:
- Essbase Administration Services we are using is version is 9.3.1.
- 8 applications are calculated during the week-end. The scripts executed are exactly the same for the 8 applications.
- For example let's say that 5 scripts are launched during the night in the batch for each application (script 1, script 2 ... script 5)
- App1 and App2 are launched alone and before the 6 others applications as these applications database are 3 x bigger (App1 is calculated alone, then app2 is calculated alone, then app3 to app8 scripts are launched in the same time).
The issue :
- We don't see any issue for app3 to app8, the calculation are executed without any problem from script1 to script5.
- But we have an error in App1 and App2 log when the bath execute script 4 and we see the following error in the server log **
"Analytical Services failed to get user's parent group tree with Error".
(** : we don't see any log for script 4 in the application log - it's like the server bypass script 4 to go directly from script 3 to script 5 )
Nothing special is done in script 4 but just an aggregation of the Year dimension (using a @SUM(@RELATIVE(Year,0)) calculation.
I think that there is may be a synchronization error with Shared Services but what is strange is that it's always for the same script 4 and the batch is launched at different time every week-end.
Can the issue be linked to the size of the database of applications (8 Gb) and difficulties for the processor to executes aggregation in a large database volume ?Hi,
According to your description, my understanding is that the error occurred when sending an email to the user in workflow.
Did you delete the existing Connections before setting NetBiosDomainNamesEnabled?
If not, I recommend to delete and recreate your AD connections, then set NetBiosDomainNamesEnabled to true.
Or you can delete the original User Profile Service Application and create a new one, then set the NetBiosDomainNamesEnabled to true and start the User Profile Service Application
synchronization.
More reference:
http://social.technet.microsoft.com/wiki/contents/articles/18060.sharepoint-20xx-what-if-the-domain-netbios-name-is-different-than-the-fqdn-of-the-domain-with-user-profile.aspx
Best regards.
Thanks
Victoria Xia
TechNet Community Support -
Cannot Add user to CMC Group when they are a member of LDAP group
On PreProduction Server CMC
Softerra LDAP browser used to verify user is a member of LDAP group
User does not show as a member of that group in the CMC
Cannot add user to LDAP group showing in CMC, the same group shows the member in LDAP browser
On Production Server CMC
For kicks I logged into the CMC on Production and I found the user is correctly showing as a member of the Group
Why doesn't the groups in CMC show what is actually showing in the LDAP browser?Hi,
Check if you have also mapped in both servers the same groups. It might be that there are some groups missing in the Pre-prod.
Also, try restarting the CMS. I have seen similar issues that are solved after forcing the recreation of the graph.
If after the restart you still can't see the groups, check the mapping on the LDAP server. It might be that both servers do not use the same attribute mappings.
Regards,
Julian -
Not able to Add users to Secutity Groups in ADS
Hi all,
I am successfully able to create the user in ADS in OU & users. I am not able to add them to the any group which is ADS. can any body help me out? it is much appreciated.
SriramAD gropus are managed by Windows Ad teams. You cannot add users to Ad group from CMC directly.
Ask your windows team to add users to particular AD group and then update the Windows Ad authenctication from CMC to reflect in BO -
Add user in OID group from SOA Suite
Hello All,
I want to add users in OID groups from a SOA application (BPEL process), is there any way to achieve this?
ThanksIt has the functions to add: Use this function from Group class.
addUniquemember
public void addUniquemember(javax.naming.directory.DirContext ctx, java.lang.String dn) throws UtilException
Adds the DN as a uniquemember of this group
Parameters:
ctx - a valid DirContext
dn - the DN representing the object to be added
Reference Links:-
LDAPGroup (Oracle Internet Directory API Reference)
Group (Oracle Internet Directory API Reference) -
Can I add Users and/or Groups?
Hi,
Can I add Users and/or Groups in a Realm from my webapplication?
(not using administrative console....but from my code)
Tanks by
Angelo.Yes.
"Angelo" <[email protected]> wrote:
>
Hi,
Can I add Users and/or Groups in a Realm from my webapplication?
(not using administrative console....but from my code)
Tanks by
Angelo. -
Add users to a group from another Active Directory domain
Hi Folks,
I need add users in a group the active directory through the FIM 2010 R2.
My scenery it is:
Domain A with FIM 2010 R2 provisioning users for Domain B;
I need get users the Domain B and add in group in Domain C.
What's better way, create FIM portal for them, or create aditional script/development for FIM 2010 R2.
Thanks a lot!
Wilsterman FernandesThere are two approaches to do it.
1st - easier - using FIM Portal/Service - just create a criteria based group that would be created in Domain C.
2nd - more difficult, but you don't need FIM Service/FIM Portal - just export all users to one table in SQL and create a view, where a group and members (users from Domain B) are. It would be cheaper as you don't have to have FIM Service to do it. But if
you have it, first is easier.
If you found my post helpful, please give it a Helpful vote. If it answered your question, remember to mark it as an Answer. -
We need to run some checks against our business rules at login
time so I have written a custom login page which calls a custom
procedure. The procedure determines how much access the user is
entitled to and sets the users group memmbership accordingly.
Finally I call the Portal login procedure with the username and
password that the user provided:
portal30.wwptl_login.login_url(USERNAME,
PASSWORD,
OK_URL,
cancel_URL);
This works ok if the user has typed in a valid username +
password. But if the Portal login fails the user gets thrown to
the Single Sign-On screen. If the user now fixes his typo and
log in again he/she bypasses the whole custom login procedure...
The only way I can think of right now is to change the Single
Sign-On screen, which I know is possible. But that will apply to
the whole Portal installation and we do need several different
custom login's, similar to the one outlined above. So we would
have to change the Single Sign-On screen just have some text
telling the user to login using one of the official login pages.
Not very nice - but a possible solution.
It would be nice if you could specify a URL to the login
procedure for the case of a failed login. Is this something that
is being concidered for future versions of Portal?
Hmmm.. in case a user bookmarks a page that is not public he/she
will still be taken to the Single Sign-On page to login. Guess
we have to change the Single Sign-On screen after all..
Any other ideas?You should develop customized login page according to the
specification provided in the SSO Server administrator guideHello
Where can i find the SSO Server administrator guide ??
Thanks
ERIC -
Facebook login does not add user and password to the account
Hi
PROBLEM
Facebook login button does not create user and password for login.
We wish we could ONLY use facebook login button to allow users the account creation on our campus.
So we disabled the user creation webform.
And only out facebook login buttons that students can only login to our campus using their fb account in the hope that they dont share it (hopefuly)
AND
This is a problem BECAUSE if I publish events and capture leads ALL those users have problems creating their user account latter.
CASE IS
1.- A person comes to my website and leaves a comment. This creates a register with their email and name.
2.- Days later this same user comes back and clicks a facebook user login/ account creatio.
2.1 The page now shows that user name as it comes from Facebook. BUT NO USER AND PASSWORD information added to that person's register in the CRM.
So
If some one leaves a comment, register to our mailing list FIRST
and SECOND tries to create his account afterward. IT DOESNT WORK
Any ideas?
Thank you so much in advance.
P.S.
This is the web page. If you 1) Leave first a comment and 2) click on fb login/create account button the profile renders unusable. I have to delete it so you can create your user
http://www.zuiliuniversity.com/nivel-2-curso-especializado-proyecto-de-marketing-digitalif you are only using 2 snmp commands to let the switch pull the config from your tftp server, than there are some commands missing ...
have a look here to get a documentation about this process:
https://supportforums.cisco.com/docs/DOC-1860
http://www.cisco.com/en/US/tech/tk648/tk362/technologies_configuration_example09186a0080094aa6.shtml -
Add user to sharepoint group using REST API
I am trying to add a user to sharepoint group with following code
serviceUrl= Appweb + "/_api/SP.AppContextSite(@target)/web/sitegroups("+GroupId+")/users?@target='host web'";
$.ajax({
url: serviceUrl,
type: "POST",
contentType: "application/json; charset=utf-8",
dataType: 'json',
body: "{'__metadata': { 'type': 'SP.User' },'LoginName':'i:0#.f|membership|'+email }",
headers: {"accept":"application/json;odata=verbose",
"content-type": "application/json;odata=verbose",
"X-RequestDigest":$("#__REQUESTDIGEST").val()
async: false,
success: function (data) {
alert('success');
error: function (data) {
alert('fail');
The request goes to error function. Response of the request is Microsoft.SharePoint.Client.InvalidClientQueryException and message is A node of type 'EndOfInput' was read from the JSON reader when trying to read the start of an entry. A 'StartObject' node was
expected
I tried the sample from following link but fail it
https://msdn.microsoft.com/en-us/library/office/dn531432.aspxHi,
Per my understanding, you might want to add an user to a SharePoint group in host web from a SharePoint Hosted App using REST API.
Here is a working demo for your reference:
var hostweburl;
var appweburl;
$(document).ready(function () {
//Get the URI decoded URLs.
hostweburl = decodeURIComponent(getQueryStringParameter("SPHostUrl"));
appweburl = decodeURIComponent(getQueryStringParameter("SPAppWebUrl"));
// Resources are in URLs in the form:
// web_url/_layouts/15/resource
var scriptbase = hostweburl + "/_layouts/15/";
// SP.RequestExecutor.js to make cross-domain requests
$.getScript(scriptbase + "SP.RequestExecutor.js", loadPage);
// Utilities
// Retrieve a query string value.
// For production purposes you may want to use a library to handle the query string.
function getQueryStringParameter(paramToRetrieve)
var params = document.URL.split("?")[1].split("&");
for (var i = 0; i < params.length; i = i + 1)
var singleParam = params[i].split("=");
if (singleParam[0] == paramToRetrieve) return singleParam[1];
function addUsersInGroup() {
var executor;
// Initialize the RequestExecutor with the app web URL.
executor = new SP.RequestExecutor(appweburl);
executor.executeAsync({
url: appweburl + "/_api/SP.AppContextSite(@target)/web/sitegroups(8)/users?@target='" + hostweburl + "'",
method: "POST",
contentType: "application/json; charset=utf-8",
dataType: 'json',
body: "{'__metadata': { 'type': 'SP.User' },'LoginName':'i:0#.f|membership|[email protected]'}",
headers: {
"Accept": "application/json; odata=verbose",
"content-type": "application/json;odata=verbose",
"X-RequestDigest":$("#__REQUESTDIGEST").val()
success: addUsersInGroupSuccessHandler,
error: addUsersInGroupErrorHandler
function addUsersInGroupSuccessHandler(data)
console.log(data);
var jsonObject = JSON.parse(data.body);
console.log(jsonObject);
function addUsersInGroupErrorHandler(data)
console.log(data);
var jsonObject = JSON.parse(data.body);
console.log(jsonObject);
Thanks
Patrick Liang
TechNet Community Support
Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact
[email protected]. -
How to add user in administrator group of project server 2010 with powershell command ?
I want to add one user in Administrator group of Project Server .
Please let me know how to do this through power shell command.Hello,
You would need to use the PSI in your PowerShell commands. Here is a .Net example to get you started, convert this to PowerShell:
http://blogs.msdn.com/b/ajjose/archive/2013/05/24/creating-a-project-server-user-and-adding-user-to-a-group-through-psi.aspx
Examples of PowerShell and the PSI can be found here in some of the scripts:
http://gallery.technet.microsoft.com/scriptcenter/Update-Server-Lookup-table-bb1ae14f
http://gallery.technet.microsoft.com/scriptcenter/Create-Server-2010-2013-19bd3cc7
http://gallery.technet.microsoft.com/scriptcenter/Bulk-create-Server-Sites-784f7b29
These wont do what you need but will give you an idea of using the PSI in PowerShell
Paul
Paul Mather | Twitter |
http://pwmather.wordpress.com | CPS -
Am I trying to add users to a group correctly?!
Experts (Dave?!):
As posted yesterday, I'm finally able to log in to the RHS Admin Console.
I've been testing the Users areas. I'm having trouble adding users to a group other than the RobAdmin. Please let me know what/if I'm doing wrong. My procedure:
1) Access the Users panel:
2) Click the upper Add to add new group writers:
3) Click OK. The writers group appears in the Group pulldown:
4) Type in new user Kurt:
5) Click Add. Note how the selected group snaps back to RobAdmin!
6) Click Yes to confirm the user addition:
7) Observe how Kurt is now added to the RoboAdmin group. (D'oh!).
8) Observer how Kurt is NOT added to the writers group. (D'oh d'oh!)
Is the above the expected behavior? If so, how does one add users to a non-RobAdmin group?!?!?
Thanks in advance!.
-KurtKurt, I hope the robo team is reading this, because I think this problem has been going on for a long while. What happens for us is, you can create the group, then add the user, then the group disappears from the drop-down upon refresh. I remember John Daigle looked at it a while back and was puzzled. It's the only part of server that isn't working right for us now, but it's a real pain--I can't create groups or add users.
David
HTML11/Server 9 -
Login fails for a user after OS X Mavericks 10.9.4 update
I just updated my Mac Book Pro last night with the latest OS X Mavericks 10.9.4. The Mac Book Pro is not letting one of the users to login. I have two users on the Mac Book Pro and the second user is able to login without any problems.
The password is correct and after entering it the screen flickers as if it is going to login and then returns back to the login challenge.
Anyone else experience this problem or know a solution?I solved my own problem by deleting /var/folders
-
CC Adobe Story Plus Login: Failed to get user preferences.
Leider kein einloggen möglich, weiß jemand Hilfe? Adobe support Deutschland ist sowohl am Telefon wie auch per mail nur ungenügend kompetent...kein Behebung des Problems.
Hi,
There was a configuration error on one of the servers.
It should be working now.
Apologies for the inconvenience.
Regards
Ratnesh
Adobe Story Team
Maybe you are looking for
-
How to access ZFS share from Windows 7?
I am new to UNIX and am having a hard time to get a ZFS share to access from windows 7 on my home network. I was able to access both WHS 2011 and QNAP 459 share on SE 11 by using the file manager - Server - windows & then just using the IP address, u
-
Dear All We are using Standard business content to extract FIAR Data. We have not written any rules for Item status field for AR. We are getting wrong item status field. For some customerseven if document is cleared and moved to BSAD table, The docum
-
A airplanes B bruno mars E eminem
-
How do I get all my photos and contacts back?
I was trying to sync my iphone with my computer when 'restore backup' came up on the screen. I clicked begin and when it had finished it began syncing music.But what had happened was that another phone's pictures, contacts, messages etc. were in my p
-
Airport Extreme Base Station as an wireless Extender to new Airport time capsule
After many months of time machine back up problems. (verify back up failing) I am considering biting the bullet and getting a new 2TB Airport extreme time capsule. Can I use the old (late 2013 801.11ac) airport extreme to extend wifi network? A few o