Enterprise Deployment Guide and a Signed Enrollment Response
Im trying to follow the enrollment process in Enterprise Deployment Guide.
The device opens my url.
I send a xml containing the device information request.
The response i get is signed "using the device’s built-in identity (Apple-issued certificate), and sends it back to the profile distribution service using HTTP Post.
My question is why is it signed, and how do i verify the signature. And how do i read the relevant data from the response.
When i read it now, it it first some binary data, then the xml response and then some more binary data.
How do i process this response.
Thanks
It's a signed message in the PKCS#7 format. PKCS#7 is a standard (detailed in RFC 2315 http://www.faqs.org/rfcs/rfc2315.html ) for signed and encrypted messages. CMS (Cryptographic Message Syntax) is the name of the current standard based on PKCS#7.
There are many ways to extract the data and verify the signature of such a message. The easiest is probably to use OpenSSL (command-line or library). Several libraries in various languages can handle that too.
Similar Messages
-
11.1.1.5 docs (http://download.oracle.com/docs/cd/E21764_01/im.htm) do not have a Enterprise Deployment Guide (EDG)
11.1.1.4 docs (http://download.oracle.com/docs/cd/E17904_01/im.htm) have the EDG.
Why was the EDG removed from 11.1.1.5 docs? We know there were some errors in the 11.1.1.4 EDG but overall it was a useful reference document.
An updated version with OES in the deployment reference topologies section (http://download.oracle.com/docs/cd/E17904_01/core.1111/e12035/whatis_im.htm#CHDJDIEH) would be very helpful. Thanks.It's a signed message in the PKCS#7 format. PKCS#7 is a standard (detailed in RFC 2315 http://www.faqs.org/rfcs/rfc2315.html ) for signed and encrypted messages. CMS (Cryptographic Message Syntax) is the name of the current standard based on PKCS#7.
There are many ways to extract the data and verify the signature of such a message. The easiest is probably to use OpenSSL (command-line or library). Several libraries in various languages can handle that too. -
Enterprise Deployment Guide/BigIP Load Balancer Question
In the Oracle Application Server Enterprise Deployment Guide, B13998-03, in appendix A, section A.2, it refers to using F5 software version 4.5, with a BigIP Application Switch. 4.5 seems a bit old. Has anyone used version 9.0.4 successfully?
You have to remember that the 9.0.4 release isn't that new either. However, you can basically use every load balancer out there if they support 1) Sticky/Persistent sessions and 2) Nat client.
You may also want to check this link:
http://www.oracle.com/technology/products/ias/hi_av/Tested_LBR_FW_SSLAccel.html
Regards,
Martin -
Enterprise Deployment Guide for Oracle Identity Management 11g
Hi,
I am looking for Enterprise Deployment Guide for Oracle Identity Management 11g for latest verion 11.1.1.5
Please help
ThanksThanks for the reply.
Actually I am looking for Enterprise Deployment Guide for Oracle Identity Management for 11.1.15(similar like E12035-06).I am not able to find same in the link provided.
Thanks -
Enterprise Deployment question
Hi,
I was reading through the enterprise deployment guide and have a question.
The document recommends placing one or more OHS servers in a DMZ and using AJP traffic to handle web requests to the application tier where several oc4j instances host the j2EE/SOA app.s.
It talks about configuring one of the OC4J instances as an admin instance running application server control but obviously protects Internet access to this application by filtering traffic at the OHS server.
My question is how does an administrator gain access to application server control ?
Do we need to configure another OHS server within the application tier or enable a HTTP Listener on the application servers ?You have to remember that the 9.0.4 release isn't that new either. However, you can basically use every load balancer out there if they support 1) Sticky/Persistent sessions and 2) Nat client.
You may also want to check this link:
http://www.oracle.com/technology/products/ias/hi_av/Tested_LBR_FW_SSLAccel.html
Regards,
Martin -
Enterprise Deployment Reference Topology
I have seen the latest enterprise deployment reference topology specified in the following Enterprise Deployment Guide:
http://download.oracle.com/docs/cd/E10291_01/core.1013/e10294/toc.htm
Had a few follow up questions/points:
1. Is there a reason why BPEL and ESB clubbed together into one container ?
2. Is there a reason why the OWSM gateway warrants a separate ORACLE_HOME on the same box as opposed to having it sit in a container of its own ?
3. Has anyone tried to fit in registry into this same topology ? I presume it would be just another container dedicated to it in the same ORACLE_HOME as that of BPEL.
4. It is great to see a reference topology with all of the detailed steps. But it would help to understand the rationale behind this recommendation as well.
Appreciate any feedback you may have.Hi
A litle help:
1 - BPEL and ESB (runtime) are together into the same container because of the native integration between them. This way BPEL can call ESB using JCA instead of SOAP. The same applies to ESB calling BPEL.
2 - It's a good question. I dont't know if there's a techinical reason for OWSM gateway being in a separate ORACLE_HOME, but I was told that the gateway component will have a differente architecture in release 11g, so having it in a separate ORACLE_HOME could easy its migration process in the future. I'm not sure if this is an accurate information.
Now, if you install the gateway on a separate machine (optionally on a separate DMZ), then it makes more sense to have this distributed topology.
3 - I'm just working on a cluster production install, which includes service registry. We decided to just add another OC4J container into the same ORACLE_HOME as BPEL
4 - I believe there are many reasons behind the reference topology. I can name a few:
a) The distributed topology is necessary for security reasons. For example, HTTP Servers on a separate DMZ.
b) Having a separate OC4J container for each product, or a group of products (like BPEL and ESB) is a good approach so you can allocate the right amout of memory and JVMs for that specifc product or group.
c) Most of the complexy behing configuring the reference topology are related to it's hight availability purpose. Some components can be active/active, while others must be configured to be active/passive
d) In order to achieve the performance benefits from item B and the HA benefits of item C, you have to install the SOA Suite components one by one, using their specific install medias.
Regards
Denis
Message was edited by:
[email protected] -
Sybase: Enterprise Mobility Guide (free e-book) and
Here is the link to an book/e-book, which Sybase is giving away free and also distributing via Amazon/iBooks/Google Books/downloadable PDF - [Enterprise Mobility Guide|http://www.sybase.com/detail?id=1091819]
And here is the link to a March 10 webinar promoting the Guide that features two top-shelf analysts Kevin Benedict and Philippe Winthrop that Sybase will be hosting:
[Webinar|http://response.sybase.com/forms/EnterpriseMobilityTrendsof2011]The link leads to an error page.
-
OC4J 10.0.3 and javax.enterprise.deployment
I am playing around with javax.enterprise.deployment.blah.blah as we use a in-house managed deployment procedure, currently we call out to a Runtime process to execute dcmctl commands, but I'd rather use the JSR88 compliant API. What URI is needed to get a DeploymentManager from a DeploymentManagerFactory in both Standalone and Enterprise Edition???
I would have though the usual ormi://localhost:23791 would have worked?? I get a creation exception...
Scott.That looks very intersting... I tried it out, one thing I forgot to mention is that this will ultimately be kicked off from a Message Driven Bean. I didn't think it matter until I get the following exception, it seems that particular Deployment Manager is expecting to be executed from a standalone client, I'll hunt around next week to
see if there is one that doesn't assume a ApplicationInitialContext, perhaps it's a System Property that can be passed through...
Many thanks for your efforts it would have taken me quite awhile to work out the register deployment manager stuff...
Scott.
04/02/27 17:20:44 javax.naming.NamingException: META-INF/application-client.xml not found (see J2EE spec, application-client chapter for requirements and format of the file)
04/02/27 17:20:44 at com.evermind.server.ApplicationClientInitialContextFactory.getRequiredClasspathResource(ApplicationClientInitialContextFactory.java:175)
04/02/27 17:20:44 at com.evermind.server.ApplicationClientInitialContextFactory.getInitialContext(ApplicationClientInitialContextFactory.java:68)
04/02/27 17:20:44 at javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:662)
04/02/27 17:20:44 at javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:243)
04/02/27 17:20:44 at javax.naming.InitialContext.init(InitialContext.java:219)
04/02/27 17:20:44 at javax.naming.InitialContext.<init>(InitialContext.java:195)
04/02/27 17:20:44 at oracle.oc4j.admin.jmx.client.CoreRemoteMBeanServer.fetchMBeanServerEjbRemote(CoreRemoteMBeanServer.java:346)
04/02/27 17:20:44 at oracle.oc4j.admin.jmx.client.CoreRemoteMBeanServer.<init>(CoreRemoteMBeanServer.java:100)
04/02/27 17:20:44 at oracle.oc4j.admin.management.mejb.MEjb.<init>(MEjb.java:100)
04/02/27 17:20:44 at oracle.oc4j.admin.management.mejb.MEjb.getMBeanServer(MEjb.java:130)
04/02/27 17:20:44 at oracle.oc4j.admin.management.mejb.MEjbFactory.getManagement(MEjbFactory.java:51)
04/02/27 17:20:44 at oracle.oc4j.admin.deploy.spi.ConnectedDeploymentManagerBase.<init>(ConnectedDeploymentManagerBase.java:169)
04/02/27 17:20:44 at oracle.oc4j.admin.deploy.spi.Oc4jDeploymentManager.<init>(Oc4jDeploymentManager.java:39)
04/02/27 17:20:44 at oracle.oc4j.admin.deploy.spi.factories.Oc4jDeploymentFactory.getDeploymentManager(Oc4jDeploymentFactory.java:115)
04/02/27 17:20:44 at au.edu.nsw.det.comptech.mw.dps2.server.DCMAppServerDeployer.executeDeployment(Unknown Source)
04/02/27 17:20:45 at au.edu.nsw.det.comptech.mw.dps2.server.EnterpriseArchiveDeployer.deployApp(Unknown Source)
04/02/27 17:20:45 at au.edu.nsw.det.comptech.mw.dps2.server.CommandDeployApp.perform(Unknown Source)
04/02/27 17:20:45 at au.edu.nsw.det.comptech.mw.dps2.server.CommandProcessor.performAction(Unknown Source)
04/02/27 17:20:45 at au.edu.nsw.det.comptech.mw.dps2.ejb.deployrequestconsumerejbbean.DeployRequestConsumerEJBBean.onMessage(Unknown Source)
04/02/27 17:20:45 at com.evermind.server.ejb.MessageDrivenBeanInvocation.run(MessageDrivenBeanInvocation.java:123)
04/02/27 17:20:45 at com.evermind.server.ejb.MessageDrivenHome.onMessage(MessageDrivenHome.java:920) -
Oracle Web Cache Administration and Deployment Guide
Does anyone know where the Oracle Web Cache Administration and Deployment Guide is?
From Oracle9iAS Documentation Library CD-ROM,
it says this document is in OTN. However, I just can't find this document in OTN.
Any idea?Rick -
try this link on for size:
http://technet.oracle.com/docs/products/ias/doc_library/1022doc_otn/caching.102/a90372/toc.htm
To get to the (iAS documentation, try this path through technet
Top Level
-> click documentation link on RHS
-> click Oracle9i Application Server link
-> click Generic Documentation Library link (HTML) or (PDF)
That should get you to the documentation library, from which you can view all the component doc, install guides, performance guides, etc.
null -
Enterprise Deployment for Hosted Devlopment and Production
We are moving from a 11G dev environment to 11g production. We chose Installation scenario#3: Enterprise Deployment for Hosted Development and Production so we could scale out the load to multiple servers. I am at the point now where I need to load my repostory and webcat(dashboard files) and I want to make sure I understand what needs to be done.
Do I load my Repository and Webcat directory on the first node and it deploys it automatically to the 2nd node or are there other steps to do this.
Thanks!Hi,
I thought about that possibility, but since in the Apple website I read that
"Deploy proprietary, in-house applications to authorized users in your company, the iPhone Developer Enterprise Program is available to companies with 500 or more employees and a Dun & Bradstreet number."
Since I'm freelancer,I don't have 500 employees, neither the Dun & Bradstreet number.
Can I subscribe to the program in the same way?
Also, if I subscribe the Enterprise program, I can also develop and publish "normal" apps for the iTunes, or do I need to have another subscription?
Best regards and thanks for the fast answers
Paulo Correia -
The Windows Server 2012 R2 and Windows Server 2012 BranchCache Deployment Guide is now available for download in Word format in the TechNet Gallery at
http://bit.ly/1pYZT3F
Thanks -
James McIllecehello again,
meanwhile I was lucky to find this article about Idenity Mapping in TechNet in the Storage Team Blog:
http://blogs.technet.com/b/filecab/archive/2012/10/09/nfs-identity-mapping-in-windows-server-2012.aspx
Likely to be overseen at the end of one paragraph it says:
"Client for NFS does not support NFS V4.1 in Windows 8 or Windows Server 2012"
Question : Is this an official statement and is it still valid with most recent
Windows Server 2012 R2 that NFS client does NOT support NFSv4.x ??
thanks - Rainer -
Adobe Reader XI enterprise deploy-disable display PDF in browser?
There appears to be conflicting information about Adobe Reader XI and how to pre-configure the "disable display pdf in browser".
The Enterprise Administration Kit/Guide says you can do this via the MSI Property:
DISABLE_BROWSER_INTEGRATION = YES
However, acrobat help, indicates you can ONLY do this manually via individual browser add-ons.
I have the redestributable version from Adobe and I used the Enterprise Guide to make the AIP and used the Customization Wizard to create the package and am using the properties line when the msi is installed to disable the display
so which one is right?I am out of the office until 1/22/13.
If you need assistance with technical issues, please contact the Help Desk at: 518-402-8888
>>> Test Screen Name <[email protected]> 01/17/13 10:30 >>>
Test Screen Name http://forums.adobe.com/people/Test+Screen+Name created the discussion
"Re: Adobe Reader XI enterprise deploy-disable display PDF in browser?"
To view the discussion, visit: http://forums.adobe.com/message/5001441#5001441 -
Business Objects XI Release 3.0/3.1 Enterprise Sizing Guide
Is there a Business Objects XI Release 3.0/3.1 Enterprise Sizing Guide available yet...?
We are trying to plan our hardware budget for next year.
I have reviewed both the BusinessObjects Enterprise XI 3.0 Deployment Planning Guide, and the BusinessObjects Enterprise XI 3.0 Deployment Planning Guide - but neither one gives you the actual counts of concurrent and simultaneous connections supported per CPU/Service in 3.0/3.1.
Edited by: Mark Richardson on Sep 16, 2008 4:49 PMHello,
In the deployement document for XI 3.O : "xi3_bip_deploy_plan_en.pdf",
Page 81, one reads : "It is also recommended that you contact your Business Objects sales
representative and request information about the BusinessObjects Enterprise
Sizing Guide. A Business Objects Services consultant can assess your
reporting environment and assist in determining the configuration to best
integrate with your current environment."
Therefore, such a document should exist.
Any news since the last post?
Thx in advance -
Oracle BPM Enterprise User Guide
I want to know about the importance of using Oracle BPM Enterprise.Can any one help where i can get the "Oracle BPM Enterprise User Guide" document.
Edited by: user613889 on May 7, 2010 3:16 AMHere's where you can find all of the Oracle BPM 10g documentation: http://download.oracle.com/docs/cd/E13154_01/bpm/docs65/index.html
Oracle BPM Studio 10g
Oracle BPM Studio is the integrated development and test environment where business analysts and developers can create, document and simulate process models, integrate services, create business rules and logic and create end user interfaces. Projects built in Studio can be deployed to Oracle BPM Enterprise. Although Studio has a small database (Derby) and Tomcat environment, these are only used for rapid testing. Studio's end user Workspace looks the same as Enterprise, but is limited to the number of concurrent users and the Workspace login only has a user id field and no password because it is only used for rapid and iterative testing. As a result, you cannot and should not use Studio's Workspace as your production environment.
Oracle BPM Enterprise 10g
Oracle BPM Enterprise is the production environment. At its heart, it has an engine that manages and executes the business services according to rules in the designed process models. The platform supports high-availability, fail-over and backup capabilities for mission critical processing. The engine is J2EE compliant or can run separately on a standalone JVM. When run on a J2EE application server, the Engines can be clustered.
Work item instance information is automatically persisted in the Engine's database tables as the instances flow through processes.
Orchestrated processes running on the engine are automatically exposed as Web services and executed across both internal and external processes and other applications.
Oracle BPM Enterprise engines are managed through the Oracle BPM Process Administrator Console. This is a web-based client that enables administrators to monitor and administer the Engines remotely.
The Oracle BPM Enterprise engine is exposed via both a Java Process Application Program Interface (PAPI) and a web service API (PAPI-WS).
Dan -
Deployment, integraion and licensing of mixed 10g editions
All,
Does anyone have experience in integrating various deployment types (Enterprise Edition, J2EE Only, Webcache Only) within a single infrastructure? Currently, we have the Enterprise Edition (EE) of AS 10g deployed across several Linux hosts.
We are seeking to expand our deployment of J2EE applications based on OC4J and are considering several additional hosts with clustered OC4J deployments. These hosts will leverage Single Sign On (SSO) and OID, but beyond that, we do not use much of the EE components (e.g. Discoverer, Reports, etc.). We are looking at J2EE Only deployments for these additional hosts and not using/licensing EE.
From a deployment, management and license perspective, there isn't much information regarding this situation. The various versions of AS 10g are described (EE, Standard and J2EE Only), but not how (or if) these versions can be integrated around a core EE deployment for purposes of SSO, OID and Metadata management.
I'm looking for any experience in this area, beyond sales speak.
Thanks...
DeanHi,
This is a complex issue. You might have to contact your Oracle reseller for this licensing issue.
Maybe you are looking for
-
To extend period for each alternative in BOM
In BOM, we have couple of alternatives. Each alternative includes valid date (valid from and valid to). We want to change value for valid date (valid from and valid to). Unfortunately, those fields are blocked for changes. Therefore, can anyone t
-
Multiple selection list and passing that value to oracle reports
Hi I need to create a multiple selection list and then based on use selection, I need to pass that value to oracle reports. Can any one help with steps on how I can do this. Thanks
-
How to copy sqlite database from applicationDirectory to documentsDirectory
I am having problems using the 'File' function in Adobe Flex to copy a sqlite database from the read only applicationDirectory to the users documentsDirectory. When I use the code below the only thing that appears in the user documentsDirectory is a
-
How do I submit my activation code for one to one online?
I purchased a membership and now want to activate it but it seems the page is no longer active. thanks m
-
How can I listen radio on my ipad
how can I listen radio on my ipad