Different auth methods for Clientless & AnyConnect?

The goal: To allow Clientless(portal) connections with only username/password authentication (LDAP in this case) while requiring two-factor (LDAP & Certificate) authentication for AnyConnect connections.
The config: Since the auth methods are configured within connection profiles/tunnel groups, I am using two different profiles, one requiring only LDAP auth for use with clientless and one requiring both LDAP and client certificate authentication for AnyConnect. I have not enabled the option to allow users to choose their connection profile.
The only way I have been able to get the AnyConnect client to use anything other than the "DefaultWEBVPNGroup" profile was to use a URL mapping for the AnyConnect tunnel group, a custom AnyConnect client profile (to specify the custom URL), and a DAP policy to deny AnyConnect connections on the "DefaultWEBVPNGroup" tunnel group.
Resulting behavior: Web portal requires only username and password. Stand-alone AnyConnect connections require username/password & client certificate.
The problem: Weblaunch (launching AnyConnect from the portal) installs the client, but throws an error and disconnects (see attached). Subsequent stand-alone AnyConnect connection attempts work fine.
I assume this issue is related to the different tunnel groups using different authentication methods. If I disable the DAP policy, weblaunch works without erros, but it connects without requiring two-factor authentication.
Does anyone know if what I am trying to do is possible and/or supported? I am open to alternative suggestions as well.
Thanks,
Aaron

Sounds like you are 95% of the way there. You can definitely get this to work. Based on your description of the problem when trying to web launch AnyConnect, it sounds like you are not matching the correct tunnel group. As you stated, when using more specific connection profiles, you need to give users a means to identify which TG they want to connect to. This is typically achieved via a drop down selection box, group URL, or certificate attribute map. In your case, it sounds like you are using group URLs. With this approach, you will have two more specific URLs for your users to access. For web launch and standalone AnyConnect clients, they may access https://vpn.vpn.com/anyconnect while your clientless users may access https:/vpn.vpn.com/webvpn. The catch as you found is what happens when a user tries to go to the root https://vpn.vpn.com? In this case, the user will hit the default WebVPN TG. I would have to see your DAP policy to understand what policies you have implemented. If you take DAP out of the picture for a moment, a few quick workarounds to preventing AnyConnect users from being able to log into the default WebVPN group is to remove the corresponding tunneling protocol from the default group policy. Alternatively, you could set the simultaneous logins to 0 in the default group policy. You may also want to look into configuring group locking to prevent users from logging into a TG that they don't belong to. With respect to your certificate requirement, ASA 8.2.1 code allows you to configure client certificate authentication on a TG by TG basis. This is more flexible than 8.0 where this is enabled globally.

Similar Messages

Container Managed Security on Tomcat - configuring different auth-methods

I am trying to configure the container managed security on tomcat4. Or rather I am trying to add a further dimension to the configuration that already exists.
At the moment the entire application uses LDAP authentication and I would like to separate an area that requires further authentication. That is to say I would like everyone using the web application to authenticate using the existing Form-Based LDAP authentication but I would like only certain users to be able to use the data upload facility (whose code is stored in it's own directory).
This is the authentication bit of my web.xml:
<security-constraint>
    <web-resource-collection>
      <web-resource-name>qmrae</web-resource-name>
      <url-pattern>*.do</url-pattern>
      <url-pattern>*.jsp</url-pattern>
    </web-resource-collection>
    <auth-constraint>
      <role-name>*</role-name>
    </auth-constraint>
</security-constraint>
<login-config>
    <auth-method>FORM</auth-method>
    <realm-name>Form-Based Authentication Area</realm-name>
    <form-login-config>
      <form-login-page>/login.jsp</form-login-page>
      <form-error-page>/loginError.jsp</form-error-page>
    </form-login-config>
</login-config>My first hurdle is in understanding exactly how the application knows where to go for its authentication.
I had guessed that the realm-name would map "areas" of my application to realm configuration defined in my application's context area in Tomcat's web.xml but this doesnt seem to be the case. In fact I have read conflicting explanations as to what the realm-name is for. One source has said that this is only used for BASIC authentication as a way of naming the resulting pop up window - many others say it maps the login-config to the web-resource-name. However the latter doesnt make sense because the authentication works in my application at the moment even though those values are completely different (and indeed are different in most of the examples i've read on the web). Furthermore I can find any other mention of the defined realm-name in any other file (which of course be because i'm looking in the wrong place).
I was prepared to accept that the realm-name might not actually do anything and so I've been looking for examples of defining a different auth-method for different url-patterns but i've had no luck.
I know a user can have one or more roles but I dont have access to the LDAP server to set these up and haven't found anything about defining different auth-methods other than one thread in this forum suggesting that is wasnt possible on AIS.
This thread suggests that you can have more than one security-constraint but again i'm not sure about the auth methods and how you map an auth method to a security-constraint
http://forum.java.sun.com/thread.jspa?forumID=33&threadID=320918
To summarise my questions:
1) What are the functions of the realm-name and web-resource-name? Are they related?
2) Is it possible to configure different areas of an application to use different authentication methods? and if so, could you point me in the direction of relevant documentation
3) If (2) is not possible and I have to assign a new role to the privileged LDAP users, is it enough to define a new security-constraint? Could you describe the behaviour I could expect for users that have authenticated once and try to access this super-security area, will they be shown another login form or will it just let them in because the container is already aware of their permissions.
Many thanks for your attention,
Rachel

If you create your own Realm classes - look at JAAS - you can sort out your last login time, just wrap them around the DataSourceRealm.
As far as 'remind' him is concerned - I'm guessing you mean provider a reminder for the password based on the user name. If you use form based authentication you can put what ever you like on the page.

Different payment method for one invoice

Hello everyone
Is it possible to have multiple payment method for one invoice? As my client want to pay different payment method for one invoice.
Could you please advise?
Kind regards

Yes. You can provided if you split the invoice amount into multiple payments under scheduled payments tab in invoice workbench.

Different consolidation methods for one entity on one scenario

Dear experts,
How can I have different consolidation methods for one entity on one scenario?
One entity is going from proportionate to equity method. We would like to check variations due to this change.
Best regards,
Benoit

Hi Benoit,
How's things?
Managing the consolidation methods is based on the setup of your consolidation rules.
However, the first place that you should look is the Ownership Management. Select the parent of the entity that you work to process. In the screen, you will be able to see the available methods and the ownership. All these settings are related with the consolidation rules available in your application.
Regards,
Thanos
< spam signature link removed by moderator >

Default auth method for web app

Hi,
I have a web app that in web.xml it defines the security-constraint and roles in auth-constraint, but it doesn't have login-config. In this case, what's the auth method? How can the user do authentication? My app is actually a web service, how the client pass the user/password? Thanks

Hi
If you haven't figure out yet, you should look at Web Service Security: [WSIT Tutorial|http://java.sun.com/webservices/reference/tutorials/wsit/doc/WSITTutorial.pdf] . If you work with NetBeans and glassfish, it is very easy to set up user and authentificate with web services.

Differance amoung the Valuation Methods for Result Analysis

Dear All,
In SAP Product Cost Controlling ther are 3 types of Cosings
1. Production Cost by Order
Path:- Production Cost by Order ---> Period end Closing ->WIP->Defind Valuation Method for( Actual Cost)
2. Production Cost By Period
Path:- Production Cost by Period ---> Period end Closing ->WIP->Defind Valuation Method for ( Target Cost )
3. Production Cost by Sales Order
Path :- Production Cost by Sales Order ---> Period end Closing --->Defind Valuation Method for Result Analysis.
Note: Here the point is Valuation Methods ( 1 to 17 ) availabel in Production Cost by Sales Order only. The Valution Method is very important to Calculate WIP. Different Countries follows different methods, but in the By Order and By Period we can get these Valuation Methods. What would be the reasno behind this.
Regards

Dear All,
Any one have any ieda

Need a Effective Design Pattern for Different Validation methods ???

Hi All,
I am having different validation methods with separate functions. I like to know the Best and Effective Design Pattern to do this.
for example
validateUserId()
validatePassword()
validateAuthentication()
validateSession()
validateConnection()
.... etc......
Can anybody help me to solve this?
Thanks,
J.Kathir

Hi there - is this the kind of thing you wanted?.
This structure has served me well. There is quite a lot to it and lots you need to infer but you should be able to work it out!
It works for EJB & swing etc (I believe)..
It doesn't use exceptions to return validation messages.
It doesn't use lots of little objects. The code is very explicit & pretty simple.
public class PersonValidator
Person myData;
public PersonValidator() {
//personId will be 0 and we are in nsert mode
myData = new Person();
public PersonValidator(long personId) {
//personId will have a value and we are in update mode
myData = PersonDb.getPerson(personId);
// =================================Single field validation
// =================================For swing apps to call - not over network.
// =================================Use validateData method
public String validateDateOfBirth(String dataOfBirthStr) {
String msg = "";
msg = validateDateStr(dataOfBirthStr);
if (!msg.equals("")) return msg;
public String validateSurname(String surname) {
String msg = "";
if (surname.equals("")) return "surname must be entered";
//=============================================Cross Validation
public List crossValidateAndSave(boolean saveData) {
String msg = "";
List valerrs = new ArrayList();
if (surname.equals("Collins") && dateOfBirth.compareTo("???")) {
List.add("Candidate is lying about their age. Please enter a realistic Date of birth");
if (valerrs.size() == 0) {
if (saveData()) {
personDb.saveData(myData);
// =========================To validate across the netwrok this lets you
// pass all the data in 1 go & receive multiple messages in reply.
// AN EJB can delegate to this code or this code could be in the EJB.
// @param stopAtFirstMessage flag allow efficiency if app ccan't handle multiple validation
// erros at a time.
// @param saveData flag allows validation without saving - allows for confirm message.
// @param EditPersonGuiData - What the user types in. Numeric data & dates can be
// in Strings. Using struts this could be the formBean.
public List validateData(EditPersonGuiData inputData, boolean stopAtFirstMessage, boolean saveData) {
String msg = "";
List valerrs = new ArrayList();
msg = validateDateOfBirth(inputData.dateOfBirth);
if (!msg.equals("")) valerrs.add(msg);
if (stopAtFirstMessage) return valerrs;
valerrs = crossValidateAndSave()
return valerrs;
}

Restrict Access To Page Not Working with Different Auth Levels

I have just started playing with the idea of using different auth levels to allow different users access to certain pages on my site.
Within my SQL database I have a authlevel table consisting of 3 possible levels (guest, user, admin)
I am using the Dreamweaver "Log in user" to log in users based on username, pass, and auth level and "Restrict access to page" set to allow user levels 'user' and 'admin'.
The problem, however, occurs when trying to log in. No matter what auth level I try I am redirected to my page where users should be redirected if they are not allowed to enter that page.
I have included below my code from my login page and the page where all authorized users (user and admin) should be directed upon entering the restricted area.
Login Page:
<?php require_once('../Connections/hondovfd.php'); ?>
<?php
if (!function_exists("GetSQLValueString")) {
function GetSQLValueString($theValue, $theType, $theDefinedValue = "", $theNotDefinedValue = "")
if (PHP_VERSION < 6) {
    $theValue = get_magic_quotes_gpc() ? stripslashes($theValue) : $theValue;
$theValue = function_exists("mysql_real_escape_string") ? mysql_real_escape_string($theValue) : mysql_escape_string($theValue);
switch ($theType) {
    case "text":
      $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
      break;
    case "long":
    case "int":
      $theValue = ($theValue != "") ? intval($theValue) : "NULL";
      break;
    case "double":
      $theValue = ($theValue != "") ? doubleval($theValue) : "NULL";
      break;
    case "date":
      $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
      break;
    case "defined":
      $theValue = ($theValue != "") ? $theDefinedValue : $theNotDefinedValue;
      break;
return $theValue;
?>
<?php
// *** Validate request to login to this site.
if (!isset($_SESSION)) {
session_start();
$loginFormAction = $_SERVER['PHP_SELF'];
if (isset($_GET['accesscheck'])) {
$_SESSION['PrevUrl'] = $_GET['accesscheck'];
if (isset($_POST['username'])) {
$loginUsername=$_POST['username'];
$password=$_POST['password'];
$MM_fldUserAuthorization = "authlevel";
$MM_redirectLoginSuccess = "/membersonly/membersonly.php";
$MM_redirectLoginFailed = "/membersonly/loginfailed.php";
$MM_redirecttoReferrer = false;
mysql_select_db($database_hondovfd, $hondovfd);
$LoginRS__query=sprintf("SELECT username, password, authlevel FROM login WHERE username=%s AND password=%s",
GetSQLValueString($loginUsername, "text"), GetSQLValueString($password, "text"));
$LoginRS = mysql_query($LoginRS__query, $hondovfd) or die(mysql_error());
$loginFoundUser = mysql_num_rows($LoginRS);
if ($loginFoundUser) {
    $loginStrGroup = mysql_result($LoginRS,0,'authlevel');
    //declare two session variables and assign them
    $_SESSION['MM_Username'] = $loginUsername;
    $_SESSION['MM_UserGroup'] = $loginStrGroup;
    if (isset($_SESSION['PrevUrl']) && false) {
      $MM_redirectLoginSuccess = $_SESSION['PrevUrl'];
    header("Location: " . $MM_redirectLoginSuccess );
else {
    header("Location: ". $MM_redirectLoginFailed );
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />

<title>Log In</title>

<meta name="description" content="Hondo Fire and Rescue serves the Arroyo Hondo and Canada Village areas of Santa Fe County, NM." />
<meta name="keywords" content="hondo, hondo fire, hondo vfd, hondo fire department, santa fe county fire department, santa fe county, volunteer fire department, hondo volunteer fire department" />
<link href="../stylesheet.css" type="text/css" rel="stylesheet" />

<script src="../SpryAssets/SpryMenuBar.js" type="text/javascript"></script>
<link href="../SpryAssets/SpryMenuBarVertical.css" rel="stylesheet" type="text/css" />
</head>
<body class="thrColLiqHdr">
<div id="container">
<div id="header"></div>
<div id="sidebar1">
<h3>Navigation : </h3>
<ul id="MenuBar1" class="MenuBarVertical">
<li><a href="/index.php">Home</a></li>
<li><a href="/support.php">Support Hondo</a></li>
<li><a class="MenuBarItemSubmenu" href="#">Information Menu</a>
    <ul>
      <li><a href="/people.php">Our People</a></li>
      <li><a href="http://www.google.com/maps/ms?ie=UTF8&hl=en&msa=0&msid=101620713606637979698.00045b6ead4ab4ea70b78&z=11" target="_blank">Response Area</a></li>
      <li><a href="/medical.php">Medical</a></li>
      <li><a href="/apparatus.php">Apparatus</a></li>
      <li><a href="/training.php">Training</a></li>
      <li><a href="/volunteer.php">Volunteer</a></li>
      <li><a href="/statistics.php">Statistics</a></li>
      <li><a href="/patchtrading.php">Patch Trading</a></li>
    </ul>
</li>
<li><a href="/album.php">Photo Gallery</a></li>
<li><a href="/calendar.php">Calendar</a></li>
<li><a href="/news.php">Blog/News</a></li>
<li><a href="/links.php">Links</a></li>
<li><a href="/contact.php">Contact Us</a></li>
</ul>
<br />
<form action="https://www.paypal.com/cgi-bin/webscr" method="post">
<span class="lefttext">
<input type="hidden" name="cmd" value="_s-xclick">
<input type="hidden" name="hosted_button_id" value="8567201">
<input type="image" src="https://www.paypal.com/en_US/i/btn/btn_donate_LG.gif" border="0" name="submit" alt="PayPal - The safer, easier way to pay online!" />
<img alt="" border="0" src="https://www.paypal.com/en_US/i/scr/pixel.gif" width="1" height="1">
</img></input></input>
</span>
</form>
<span class="lefttext"><br />
</span>
<center>
<span class="lefttext"><a href="http://www.facebook.com/pages/Santa-Fe-NM/Hondo-Volunteer-Fire-Department/74284233488" target="_blank" class="lefttext">Hondo VFD on Facebook</a></span>
</center>
</div>
<div id="sidebar2">
    <p><a href="/membersonly/login.php">Log In</a> | <a href="/membersonly/logout.php">Log Out</a></p>
    <p>Call Statistics for <?php
$myFile = "/var/home/hondovfd/hondovfd.org/www/membersonly/month.txt";
$fh = fopen($myFile, 'r');
$theData = fread($fh, filesize($myFile));
fclose($fh);
echo $theData;
?> as of <?php
$myFile = "/var/home/hondovfd/hondovfd.org/www/membersonly/date.txt";
$fh = fopen($myFile, 'r');
$theData = fread($fh, filesize($myFile));
fclose($fh);
echo $theData;
?></p>
<table width="90%" border="0" cellspacing="0" cellpadding="0">
<tr>
    <td width="60%">EMS Calls</td>
    <td width="40%"><?php
$myFile = "/var/home/hondovfd/hondovfd.org/www/membersonly/emscalls.txt";
$fh = fopen($myFile, 'r');
$theData = fread($fh, filesize($myFile));
fclose($fh);
echo $theData;
?></td>
</tr>
<tr>
    <td>Fire Calls</td>
    <td><?php
$myFile = "/var/home/hondovfd/hondovfd.org/www/membersonly/firecalls.txt";
$fh = fopen($myFile, 'r');
$theData = fread($fh, filesize($myFile));
fclose($fh);
echo $theData;
?></td>
</tr>
</table>
<hr />
    <div id="cse" style="width:100%;">Loading</div>
<script src="http://www.google.com/jsapi" type="text/javascript"></script>
<script type="text/javascript">
google.load('search', '1');
google.setOnLoadCallback(function(){
    new google.search.CustomSearchControl().draw('cse');
}, true);
</script>
     
</div>

<div id="mainContent">
<div class="top"></div><div class="wrap">
<table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr>
    <td height="47" class="h2">Members Only Login</td>
</tr>
<tr>
    <td><form ACTION="<?php echo $loginFormAction; ?>" id="login" name="login" method="POST">
    <table width="40%" border="0" cellspacing="0" cellpadding="0">
<tr>
    <td width="31%">Username:</td>
    <td width="69%"><input name="username" type="text" /></td>
</tr>
<tr>
    <td>Password</td>
    <td><input name="password" type="password" /></td>
</tr>
</table>
<input name="Submit" type="submit" />
    </form></td>
</tr>
</table>

</div>
<div class="bottom"></div>
</div>
      <br class="clearfloat" />
<div id="footer">
    <p align="center">© Copyright 2009 Hondo Volunteer Fire Department | <a href="mailto:[email protected]">Contact Us</a><a href="http://www.legalhelpers.com/chapter-13-bankruptcy/chapter13.html"></a><br />Hosting provided by <a href="http://studiox.com/" target="_blank">Studio X</a></p>
</div>
</div>
<script type="text/javascript">

</script>
<?php include_once("/var/home/hondovfd/hondovfd.org/www/analyticstracking.php"); ?>
</body>
</html>
Other Page:
<?php
if (!isset($_SESSION)) {
session_start();
$MM_authorizedUsers = "user,admin";
$MM_donotCheckaccess = "false";
// *** Restrict Access To Page: Grant or deny access to this page
function isAuthorized($strUsers, $strGroups, $UserName, $UserGroup) {
// For security, start by assuming the visitor is NOT authorized.
$isValid = False;
// When a visitor has logged into this site, the Session variable MM_Username set equal to their username.
// Therefore, we know that a user is NOT logged in if that Session variable is blank.
if (!empty($UserName)) {
    // Besides being logged in, you may restrict access to only certain users based on an ID established when they login.
    // Parse the strings into arrays.
    $arrUsers = Explode(",", $strUsers);
    $arrGroups = Explode(",", $strGroups);
    if (in_array($UserName, $arrUsers)) {
      $isValid = true;
    // Or, you may restrict access to only certain users based on their username.
    if (in_array($UserGroup, $arrGroups)) {
      $isValid = true;
    if (($strUsers == "") && false) {
      $isValid = true;
return $isValid;
$MM_restrictGoTo = "/membersonly/loginfailed.php";
if (!((isset($_SESSION['MM_Username'])) && (isAuthorized("",$MM_authorizedUsers, $_SESSION['MM_Username'], $_SESSION['MM_UserGroup'])))) {
$MM_qsChar = "?";
$MM_referrer = $_SERVER['PHP_SELF'];
if (strpos($MM_restrictGoTo, "?")) $MM_qsChar = "&";
if (isset($QUERY_STRING) && strlen($QUERY_STRING) > 0)
$MM_referrer .= "?" . $QUERY_STRING;
$MM_restrictGoTo = $MM_restrictGoTo. $MM_qsChar . "accesscheck=" . urlencode($MM_referrer);
header("Location: ". $MM_restrictGoTo);
exit;
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />

<title>Members Only Area</title>

<meta name="description" content="Hondo Fire and Rescue serves the Arroyo Hondo and Canada Village areas of Santa Fe County, NM." />
<meta name="keywords" content="hondo, hondo fire, hondo vfd, hondo fire department, santa fe county fire department, santa fe county, volunteer fire department, hondo volunteer fire department" />
<link href="../stylesheet.css" type="text/css" rel="stylesheet" />

<script src="../SpryAssets/SpryMenuBar.js" type="text/javascript"></script>
<link href="../SpryAssets/SpryMenuBarVertical.css" rel="stylesheet" type="text/css" />
</head>
<body class="thrColLiqHdr">
<div id="container">
<div id="header"></div>
<div id="sidebar1">
<h3>Navigation : </h3>
<ul id="MenuBar1" class="MenuBarVertical">
<li><a href="/index.php">Home</a></li>
<li><a href="/support.php">Support Hondo</a></li>
<li><a class="MenuBarItemSubmenu" href="#">Information Menu</a>
    <ul>
      <li><a href="/people.php">Our People</a></li>
      <li><a href="http://www.google.com/maps/ms?ie=UTF8&hl=en&msa=0&msid=101620713606637979698.00045b6ead4ab4ea70b78&z=11" target="_blank">Response Area</a></li>
      <li><a href="/medical.php">Medical</a></li>
      <li><a href="/apparatus.php">Apparatus</a></li>
      <li><a href="/training.php">Training</a></li>
      <li><a href="/volunteer.php">Volunteer</a></li>
      <li><a href="/statistics.php">Statistics</a></li>
      <li><a href="/patchtrading.php">Patch Trading</a></li>
    </ul>
</li>
<li><a href="/album.php">Photo Gallery</a></li>
<li><a href="/calendar.php">Calendar</a></li>
<li><a href="/news.php">Blog/News</a></li>
<li><a href="/links.php">Links</a></li>
<li><a href="/contact.php">Contact Us</a></li>
</ul>
<br />
<form action="https://www.paypal.com/cgi-bin/webscr" method="post">
<span class="lefttext">
<input type="hidden" name="cmd" value="_s-xclick">
<input type="hidden" name="hosted_button_id" value="8567201">
<input type="image" src="https://www.paypal.com/en_US/i/btn/btn_donate_LG.gif" border="0" name="submit" alt="PayPal - The safer, easier way to pay online!" />
<img alt="" border="0" src="https://www.paypal.com/en_US/i/scr/pixel.gif" width="1" height="1">
</img></input></input>
</span>
</form>
<span class="lefttext"><br />
</span>
<center>
<span class="lefttext"><a href="http://www.facebook.com/pages/Santa-Fe-NM/Hondo-Volunteer-Fire-Department/74284233488" target="_blank" class="lefttext">Hondo VFD on Facebook</a></span>
</center>
</div>
<div id="sidebar2">
    <p><a href="/membersonly/login.php">Log In</a> | <a href="/membersonly/logout.php">Log Out</a></p>
    <p>Call Statistics for <?php
$myFile = "/var/home/hondovfd/hondovfd.org/www/membersonly/month.txt";
$fh = fopen($myFile, 'r');
$theData = fread($fh, filesize($myFile));
fclose($fh);
echo $theData;
?> as of <?php
$myFile = "/var/home/hondovfd/hondovfd.org/www/membersonly/date.txt";
$fh = fopen($myFile, 'r');
$theData = fread($fh, filesize($myFile));
fclose($fh);
echo $theData;
?></p>
<table width="90%" border="0" cellspacing="0" cellpadding="0">
<tr>
    <td width="60%">EMS Calls</td>
    <td width="40%"><?php
$myFile = "/var/home/hondovfd/hondovfd.org/www/membersonly/emscalls.txt";
$fh = fopen($myFile, 'r');
$theData = fread($fh, filesize($myFile));
fclose($fh);
echo $theData;
?></td>
</tr>
<tr>
    <td>Fire Calls</td>
    <td><?php
$myFile = "/var/home/hondovfd/hondovfd.org/www/membersonly/firecalls.txt";
$fh = fopen($myFile, 'r');
$theData = fread($fh, filesize($myFile));
fclose($fh);
echo $theData;
?></td>
</tr>
</table>
<hr />
    <div id="cse" style="width:100%;">Loading</div>
<script src="http://www.google.com/jsapi" type="text/javascript"></script>
<script type="text/javascript">
google.load('search', '1');
google.setOnLoadCallback(function(){
    new google.search.CustomSearchControl().draw('cse');
}, true);
</script>
     
</div>

<div id="mainContent">
<div class="top"></div><div class="wrap">
    <table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr>
    <td height="47" class="h2">Members Only Area</td>
</tr>
<tr>
    <td><p><a href="/membersonly/documents.php">Useful Documents</a></p>
      <p><a href="/membersonly/IncidentCount01_08.pdf">Current Call Statistics</a> as of 9/3/09</p>
      </td>
</tr>
</table>
<script type="text/javascript">

</script>
</div>
<div class="bottom"></div>
</div>
      <br class="clearfloat" />
<div id="footer">
    <p align="center">© Copyright 2009 Hondo Volunteer Fire Department | <a href="mailto:[email protected]">Contact Us</a><a href="http://www.legalhelpers.com/chapter-13-bankruptcy/chapter13.html"></a><br />Hosting provided by <a href="http://studiox.com/" target="_blank">Studio X</a></p>
</div>
</div>
<script type="text/javascript">

</script>
<?php include_once("/var/home/hondovfd/hondovfd.org/www/analyticstracking.php"); ?>
</body>
</html>

you don't need all that bloat. set a session during login of some kind of uniquely identifying id. i.e.
$_SESSION['id'] = $row_rs['id'];
then on the pages you need to protect, check it like this....
<?php
session_start();
if (!(isset($_SESSION['id']) && $_SESSION['id'] != '')) {
die(header("Location: http://www.notinprotectedareas.com")); }
?>
you can use an include file i.e.
<?php require_once('login_check.php'); ?>
where file is name login_check.php to make your auth controls clean on your protected pages.

How to create different log files for each of web applications deployed in OC4J

Hi All,
I am using OC4J(from Oracle) v1.0.2.2 and Windows2000. Now I want to know
1. how to create different log files for each of my deployed web applications ?
2. what are the advantages in running multiple instances of oc4j and in what case we should run
multiple instances of OC4J ?
3. how to run OC4J as Windows2000 Service rather than Windows2000 Application ?
Thanks and Regards,
Kumar.

Hi Avi,
First of all I have given a first reading to log4j and I think there will some more easy way of logging debugging messages than log4j (If you could provide me a detailed explanation of a servlet,jsp,java bean that uses log4j and how to use log4j then it will be very helpful for me). The other easy ways (if I am not using log4j) to my problem i.e creating different log files for each of web applications deployed in oc4j are
I have created multiple instances of OC4J that are configured to run on different ports and so on each instance I have deployed a single web application . And I started the 2 oc4j instances by transferring thier error/log messages to a file. And the other way is ..
I have download from jakarta site a package called servhelper . This servhelper is a thread that is started in a startup servlet and stopped in the destroy method of that startup servlet. So this thread will automatically capture all the system.out.println's and will print those to a file. I believe that this thread program is synchronized. So in this method I need not run multiple instances of OC4J instead each deployed web application on single instance of oc4j uses the same thread program (ofcourse a copy of thread program is put in each of the deployed web applications directories) to log messages on to different log files.
Can you comment on my above 2 approached to logging debugging messages and a compartive explanation to LOG4J and how to use LOG4J using a simple servlet, simple jsp is appreciated ...
Thanks and Regards,
Ravi.

Error : FZ010 : Enter a payment method for incoming payments

Hi,
I am running F110 and paying intercompany vendors/customers.
I am running payment run for Compony 0050 and paying my vendor VEND0060 and CUST0060.
The balance of vend0060 is 2 million(credit) and balance of CUST0060 is 1 million (Debit).
So I am going in Reallocate and changing the bank details as getting exceptioin in CUST0060. But it gives out an error "Enter Payment method for incoming payments"
We have just configured outgoing payment and actually as credit balance is more, it should not give this error.
Does any one know solutin for this?
Error in details:
Enter a payment method for incoming payments
Message no. FZ010
Diagnosis
The balance of the items to be paid requires a payment method for incoming payments. You specified a payment method that is defined for outgoing payments.
System Response
The payment method is rejected.
Procedure
Enter a payment method for incoming payments.
Thanks
JR

In the master record of the customer/vendor, ensure that the appropriate payment methods are maintained. If you click on F4 on the payment method field, you can see different methods available for Incoming Payments and different methods for Outgoing payments.
Assign points accordingly.
Thanks,
Madhav Nanduri

CSS Flexbox - a new layout method for web pages

Hi,
As you may all know, css flexbox is a new layout method for laying out your web page, and with Firefox releasing version 22 within the next few days, (should have been yesterday) it is now no longer hidden behind browser settings. Add to this the fact that all desktop browser except IE10 and Safari 5 & 6, no longer require the use of a vendor prefix, and that http://html5please.com/ simply say ’USE’, flexbox is now finally a viable layout alternative, especially for responsive layouts.
Flexbox has been available on all Android and iOS devices, (and any device using the webkit engine, e.g. new blackberry’s and Kindle Fire devices) since they were first release.
To help find problems, and provide help in using flexbox, we would be grateful if you would experiment and provide feedback in the use of flexbox for layouts.
To help you get started a video tutorial, (with files to download) and examples of layouts, (more to be added next week) and tips & tricks to help with some of the more common problems have been provided at http://flexboxlayouts.com/. This site will also be updated to provide you with a list of problems and hopefully the solutions to those problems, so that you will have a ’one stop’ reference site for using flexbox.
If you have any tips in using flexbox, or a flexbox layout that you would like added to the site, then you can use the ’Submit’ email address on the http://flexboxlayouts.com/ site.
For more info on the css flexbox specifications see -
http://www.w3.org/TR/2012/CR-css3-flexbox-20120918/
or if you just want to know what property is supported by which browser/device -
http://flexboxlayouts.com/pdfs/flexbox%20browser%20Properties%20.pdf
Note to regular contributors & moderators:
As I only have time to visit and help in the forum for a few hours per week, should you find any flexbox problems unanswered then please let me know via email.
PZ

Hi Al
Yes I know, and this is why I am asking people to experiment with flexbox.
The fix for IE10 is to give the right hand sidebar, (or the content) a larger flex-grow property, the bug is caused by the flex shorthand property not recognizing % values, and using the flex-basis as a set width instead of a preferred size.
I have logged the bug, (and many others) with the various browser bug bases.
This and other bugs, do have 'fixes', so I hope users will experiment with flexbox and provide feedback.
Flexbox is no different than any other css feature, "we can only find the problems in actual use".
Strangely enough, I have found the most consistent to use is the old 2009 implementation on mobile devices, (no doubt iOS7 will change all that ).
PZ

How to change the score method for ses crawler table result?

Hi,all
There is a customer urgent requirement,they want customize methods to score the result which come from database same table different column source for relevancy boosting.For example.there is a table t_table which have 3 column:name,short description,long description.Now i create 3 source for this table,every source has different content column.source 1's content column is name,source 2's content column is short description,source 3's content column is long description,is it possible for me to define the priority for those 3 source.For example,source 1 's priority is 50%,source 2 's priority is 30%,source 3 's priority is 20%.
By the way,i wonder that exists a API to fetch the result set score attribute and primary key value?
any advice is appreciate.

Kevin, have replied via internal mailing list on this. There is an undocumented method for boosting relevance by section. It is considered experimental at the moment and the exact details may change before we include it as a standard feature.

Error: No permitted payment method for Payment Praposal in F110

Hello Experts,
I am trying to tigger an Idoc for payment from F110 and am getting the following error:
Job started
Step 001 started (program SAPF110S, variant &0000000002133, user ID )
Log for proposal run for payment on 27.01.2005, identification
Additional log for vendor 3803 company code 3000
Due date determination additional log
Document 1900004238 line item 002 via USD      100.000,00-
Terms of payment: 27.01.2005    0 0,000 %    0 0,000 %    0
03 days grace period is being considered
Payment must take place before 30.01.2005; next payment on 26.04.2008
Item is due with 0,000 % cash discount
Payment method selection additional log
Payment method selection for items due now to the amount of USD      100.000,00-
Payment method "C" is being checked
Bank details are being checked
System reads house banks and checks if they are allowed
Our bank 3000 is being checked
Bank different from the specified bank DBKA in master record or items
Our bank 3200 is being checked
Bank different from the specified bank DBKA in master record or items
House bank is selected ...
No permitted payment method exists
Information re. vendor 3803 / paying company code 3000 ...
... payment not possible because of reported error
End of log
Step 002 started (program SAPFPAYM_SCHEDULE, variant &0000000001217, user ID )
Step 003 started (program RFFOEDI1, variant &0000000000042, user ID )
Program RFFOEDI1: No records selected
Step 004 started (program RFFOAVIS, variant &0000000000044, user ID )
Program RFFOAVIS: No records selected
Job finished
Plesase suggest its very urgent.
Thanks,
Suma
Edited by: Suma B on May 3, 2008 9:42 AM

check payment in vendor master or invoice line items. May be payment method entered in parameters is different from vendor master data and invoice.
Check Payment method configuration for country and Company code
In Payment method for company code
check
minimum and maximum amount
foreign payments allowed or not
Check Bank determination for paying company code combination with payment method

F110 Error-Pymt Methods for This Run Not Specified in Master Record

Hi,
I have encountered an issue where the payment program will not determine the payment method correctly. We have several company codes assigned to a single paying company code. We do not enter a payment method on the invoice. The payment method is determined from the vendor master during the execution of F110. We have two different payment methods C and A. The vendor is extended to multiple company codes and each company code can choose either payment method A or C.
Following is an example:
CoCd     Vendor PM
1000     123         C (paying company code)
2000     123         C
3000     123         A
4000     123         A
If I execute F110 for payment method C, for vendor 123 and only include company codes 1000 and 2000, the payment program includes the invoices for payment as expected. The same is true for payment method A with company codes 3000 and 4000.
We are trying to move towards a centralized AP payment run. However, if I execute F110 for payment method C, for vendor 123 for all company codes (1000, 2000, 3000, 4000), the payment program has ALL the invoices set to exceptions. If I review the Additional Log for Pmnt Method Selection if Not Successful it states: "None of the pmnt meths "C" has been entered in mast.rec.or in doc." Message No. FZ605. I would expect SAP to include the invoices from company code 1000 and 2000 for payment and the invoices from company codes 3000 and 4000 as exceptions because the payment method does not exist in the invoice or the master record.
Does anyone have any ideas on how to resolve this issue? Thank you in advance for your assistance.
Sue

Hi
Friends,
Check the Config FBZP properly
1. Payment mentd in country-C (Check) select details button check whether this is maintained
Select checkl box-Street PO, Box, pst code. in required master data specification Tab
RFFOU_C
LISTIS
2. Payment methd in company code-A (ACH) select details button check whether this is maintained
select check box Bank details required master data specification Tab
RFFOEDI1
LIST1S
3. XK01 - Give Payment methd (AC) and also give Bank details in payment transaction tab.
4.F110- Give payment metnd A or C depends upon your requirement.
Go to SE11-PAYR, SE38-RFFOUS_C-----Check
Goto SE38-RFFOEDI1----ACH
Anil

How to upload two different asset values for Book & Tax Depre in FA

Hello all
kindly let me know how to resolve a situation where we have different methods of calculating Depreciation. For Example SLM for Book Depreciation and Diminishing method for Tax Depreciation.
To calculate depreciation we use straight line method for book depreciation and diminishing value method for Tax depreciation. In this case, we have 2 different asset values to calculate book and tax depreciation.
Since SAP allows to upload only one asset value (Gross book value), I get correct book depreciation value but incorrect value for tax depreciation as the tax depreciation is calculated based on gross book value instead of net book value (gross book value less accumulated depreciation value).
For Eg
FOR THE FIRST YEAR
BOOK DEPRECIATION:
Asset Value = 1000
Depreciation Method : SLM
Depreciation rate is 10%
Depreciation Amount = 100
TAX DEPRECIATION:
Asset Value = 1000
Depreciation Method : DIMINISHING METHOD
Depreciation rate is 15%
Depreciation Amount = 150
FOR THE SECOND YEAR
BOOK DEPRECIATION:
Asset Value = 1000
Depreciation Method : SLM
Depreciation rate is 10%
Depreciation Amount = 100
TAX DEPRECIATION:
Asset Value = 850
Depreciation Method : DIMINISHING METHOD
Depreciation rate is 15%
Depreciation Amount = 127.5
KINDLY LET ME KNOW HOW TO UPLOAD THE PAST DATA WITH TWO DIFFERENT ASSET VALUES (IE 1000 & 850) FOR THE ABOVE.
Regards
Sushil Yadav

Hi K,
I'm having the same problem...did you find a solution yet?
Greets,
Martin.

Different auth methods for Clientless & AnyConnect?

Similar Messages

Maybe you are looking for