Enterprise User Security and Password Policies

Similar Messages

• Get error while Integrating with Oracle's Enterprise User Security

  Hi,
  I am trying to create an Oracle Enterprise User integrating with OVD and MS Active Directory.
  I am following all the steps in Integrating with Oracle's Enterprise User Security.
  In the documentation section: "Configuring Oracle Virtual Directory for the Integration"
  I have applied the steps successfully until:
  Update and load the entries into the Local Store Adapters by performing the following steps:
  I have successfully extended the Oracle Virtual Directory schema with the loadOVD.ldif
  However I am getting errors in the next step: Update realmRoot.ldif to use your namespaces
  The next step states the following:
  Update realmRoot.ldif to use your namespaces, including the dn, dc, o, orclsubscriberfullname,
  and memberurl attributes in the file. If you have a DN mapping between Active Directory and
  Oracle Virtual Directory, use the DN that you see from Oracle Virtual Directory.
  The realmRoot.ldif file is located in ORACLE_VIRTUAL_DIRECTORY_HOME/eus,
  where ORACLE_VIRTUAL_DIRECTORY_HOME represents the location where Oracle Virtual Directory is installed.
  The realmRoot.ldif file contains core entries in the directory namespace that Enterprise User Security queries. The realmRoot.ldif file also contains the dynamic group that contains the registered Enterprise User Security databases to allow secured access to sensitive Enterprise User Security related attributes, like the user's Enterprise User Security hashed password attribute.
  Load your domain root information in the realmRoot.ldif file into Oracle Virtual Directory using the following command:
  ldapmodify -h Oracle_Virtual_Directory_Host –p OVD_Port -D cn=admin -w Admin_Password -v -a –f realmRoot.ldif
  When I run the ldapmodify command I get the following error:
  add dc:
  testldap
  add objectclass:
  top
  domain
  domainDNS
  adding new entry DC=testldap,DC=local
  ldap_add: Operations error
  ldap_add: additional info: LDAP Error 1 : null
  The actual realmRoot.ldif looks like this:
  # Please uncomment the following one line if you are importing this
  # LDIF file via OVD Manager or OVD Server's ldapmodify tool.
  #version: 1
  #dn: dc=com
  #dc: com
  #objectclass: domain
  dn: DC=testldap,DC=local
  changetype: add
  dc: testldap
  #o: subarashii
  objectclass: top
  objectclass: domain
  objectclass: domainDNS
  #objectclass: orclSubscriber
  #orclsubscriberfullname: subarashii
  #orclVersion: 90400
  # If your domain structure has more layers than dc=subarashii,dc=com,
  # for example, it's dc=us,dc=subarashii,dc=com, you will need to load
  # the following ldif entry/entries too.
  # Uncomment out the following, if required.
  #dn: dc=us,dc=subarashii,dc=com
  #orclversion: 90400
  #orclsubscriberfullname: us
  #objectclass: domain
  #objectclass: top
  #objectclass: orclSubscriber
  #dc: us
  # Adding EUSDBGroup entry
  # Modify the memberurl attribute and replace it with your own domain name
  #dn: cn=EUSDBGROUP,dc=subarashii,dc=com
  #cn: EUSDBGROUP
  #memberurl:ldap:///dc=subarashii,dc=com??sub?(&(objectclass=orclService)(objectclass=orclDBServer))
  #objectclass:groupofuniquenames
  #objectclass:groupofurls
  #objectclass:top

  Did you ever get your questions answered about the realmRoot.ldif file? Did you manage to configure a successful integration of OVD with EUS? I am battling with trying to get Oracle Virtual Directory integrated with Enterprise User Security, but every step I take in Chapter 7 of the OVD manual fails in some way, and the instructions are often vague. I am not sure how to modify the realmRoot.ldif file. Is there any improved documentation on this? I have logged a Service Request, but not getting any help. Any resources or documentation you know of that provides better guidance would be much appreciated. I am way behind my schedule now and this is a very frustrating exercise.
  Thanks.

• Enterprise User Security, How do I store the DB password somewhere else?

  Hi Guys,
  I'm running Oracle 11gR2 and OID 11gR1.
  Right now I have enterprise user security working, however I would like to decouple Apps / Directory password from the DB password in OID.
  I understand that I can stick the password in orclpasswordverifier.
  I have tried to add a new Password Verifier in OID, set up the appropriate appID in the password verifier, added the orclpasswordverifier.<appid> = password into my user but the set up refuses to go to orclpasswordverifier.<appid> it still uses the value of userpassword and orclpassword. I have also read the manual like 5 times.
  I've even tried to move the Password Verifier around, to root DBSecurity context, to my domain's context, swapped around the appid value, but no matter what it doesn't seem to work.
  Any advise please?

  I could able to find out the solution for the first item by looking at the forums and some documentation.
  We can specify the some part of the URL in the cgicmd.dat file as a key value pairs, which is located in <Oracle-Home>/reports/conf
  testreports: userid=scott/tiger@ORCL destype=CACHE server=ust %*
  Here the key is -- testreports
  Now new URL to access the report like
  http://localhost:7778/reports/rwservlet?cmdkey=testreports&report=sample_report.rdf&desformat=pdf&p_from_date=02-MAY-2006&p_to_date=03-SEP-2006
  You can see that Key is passed as cmdkey=testreports
  Please do remember that you have to append %* at the end of the key, this will allow part of the Key specified in the config file and part will be supplied in the URL
  Madhu

• Enhanced login security and password ageing in SAP R3 Enterprise 110

  Hi,
  today we will activate "Enhanced login security and password ageing" on our R3 (SAP R3 Enterprise 110) development environment.
  new parameters
  Enhanced login security and password ageing
  login/min_password_lng = 8
  login/password_expiration_time = 365
  login/min_password_diff = 2
  login/min_password_letters =  1
  login/min_password_digits = 1
  anyone any expirience on possible problems which can occur after activating these new settings.
  Many thanks in advance
  Patrick Van Vlerken

  No... this should do what it sais in the tin.
  Read,
  http://www.*********************/password_sap.htm
  Regards
  Juan

• User name and password required to access Security settings

  I have an HP5520e all in one printer. I am trying to set it to scan to my computer. The instructions say I should activate Webscan from the Administrator Options under Settings and Security. When I try to get to Administrator settings I am being asked for a user name and password. What username and password am I supposed to enter here?
  This question was solved.
  View Solution.

  gnomad899,
  Welcome to the HP Forum.
  Start with the standard:
  admin = admin
  password = password  (or leave it blank)
  This assumes, of course, you have not used EWS (embedded web server) and set a password for it previously -- which you CAN do while using EWS.  Once you do set a password using the EWS page, everytime you want to look at certain settings, adjust certain settings, you have to enter the password you set up.
  EWS is simply the web page interface to the printer -- like you use a web page to talk to your router software.  Same thing - sort of, except you type in the printer IP on your browser instead of the router, of course.
  ============================================================================
  If it won't let you in,
  You can try resetting the printer.   Be Aware that should you do this, you have to re enter any previously entered information (wireless settings, etc.).
  You might be able to reset the printer on the front panel  - settings > factory defaults (or similar).
  OR
  from TroubleShooting > Solve a Problem > Printer Does Not Maintain Wireless Connection
  Step four: Reset the printer and wireless router, and then restart the computerFollow these steps to reset your printer and your wireless router, and then restart your computer.
  NOTE:Consider bookmarking this page on your web browser so that you can reference it after restarting the computer.
  Follow these steps to reset your printer, your wireless router, and your computer.
  Press the Power button on the printer to turn it off.
  Disconnect the power cord from the rear of the printer.
  Disconnect the power cord from the wireless router.
  Turn off the computer.
  Wait 30 seconds.
  Reconnect the power cord to the wireless router.
  Wait 30 seconds, or until the router is fully on and ready.
  Turn the computer back on.
  Wait for the computer to reload.
  Reconnect the power cord to the rear of the printer.
  Turn the printer back on.
  ===========================================================================
  Reference:
  HP 5520 e All in One Printer
  User Guide
  Click the Kudos Thumbs-Up to show you appreciate the help and time from our Experts.
  Although I strive to reflect HP's best practices, I do not work for HP. 
  Click Accept as Solution when the Answer is a good Fix or Workaround!
  Kind Regards,
  Dragon-Fur

• ADF security - prompt for user id and password again on page forward

  Hi,
  I am working with ADF using JDeveloper 10.1.3 with Business Components and ADF Faces.
  I have a Search page and a List page.
  Both pages are based on the same view within the same application module.
  The Search page is using the default Find and Execute Operations.
  The Execute button has an action that navigate to the List screen.
  faces-config.xml
  <navigation-rule>
  <from-view-id>/jspx/search.jspx</from-view-id>
  <navigation-case>
  <from-outcome>search</from-outcome>
  <to-view-id>/jspx/list.jspx</to-view-id>
  <redirect/>
  </navigation-case>
  </navigation-rule>
  <navigation-rule>
  <from-view-id>/jspx/list.jspx</from-view-id>
  <navigation-case>
  <from-outcome>find</from-outcome>
  <to-view-id>/jspx/search.jspx</to-view-id>
  <redirect/>
  </navigation-case>
  </navigation-rule>
  Security (Roles and Users) is based on the jazn-data.xml and web.xml
  URL Patterns for the pages have assigned to the role.
  Login Configuration is HTTP Digest Authentication
  <web-resource-collection>
  <web-resource-name>APP_SUPPORT</web-resource-name>
  <url-pattern>faces/jspx/search.jspx</url-pattern>
  <url-pattern>faces/jspx/list.jspx</url-pattern>
  </web-resource-collection>
  <auth-constraint>
  <role-name>APP_SUPPORT</role-name>
  </auth-constraint>
  <login-config>
  <auth-method>DIGEST</auth-method>
  </login-config>
  Everything is fine when running the application from JDeveloper,
  but when the application is deployed to the server (OC4J),
  After logging into the system, the Search page prompt for user id and password again
  on click of the Execute button.
  Have anyone experience this problem before?
  Thanks for any help.
  Jim

  Hi,
  does the same thing happen if you change your protected resource from:
  <web-resource-collection>
  <web-resource-name>APP_SUPPORT</web-resource-name>
  <url-pattern>faces/jspx/search.jspx</url-pattern>
  <url-pattern>faces/jspx/list.jspx</url-pattern>
  </web-resource-collection>to:
  <web-resource-collection>
  <web-resource-name>APP_SUPPORT</web-resource-name>
  <url-pattern>/faces/jspx/*</url-pattern>
  </web-resource-collection>Brenden

• Safari user name and password for secure sites

  I just sent the following to "Mac OS X Feedback"
  Some secure sites like brokers, e.g., Ameritrade, do no allow autofill in Safari for the user name and password. In fact Safari does not even ask if you want to remember the user name and password just entered for such sites.
  I would like to suggest that something be done for users in such cases:
  1) A dialog box comes up warning that this website does not allow autofill.
  2) A suggestion is made as to what network setting needs to be changed to allow autofill to work
  3) A fix in Safari to take care of this problem
  4) Add something to Safari help
  Does anyone have a work around for this problem?
  Mac Mini (Intel Core Duo)   Mac OS X (10.4.5)  
  Mac Mini (Intel Core Duo)   Mac OS X (10.4.5)  
  Mac Mini (Intel Core Duo)   Mac OS X (10.4.5)  

  Think about what would happen if someone gained access to your Mac, say while you were briefly away from your desk or whatever. They launch Safari, go to the login web page of (for instance) your bank & discover that autofill has helpfully filled in your user name & password so all they have to do to get access to your accounts is click the login button.
  From there, they can transfer all your assets to some other account (theirs!) or invest in FlyByNight.com or whatever -- they can do anything your password lets you do with any password-protected account ... anything!
  Take this a step further. Say you have enabled auto-login to your primary account at startup, or have used an easy-to-guess account password for it. Someone steals your computer ... & with it potential access to all your online accounts with autofill entries.
  Not a pretty picture, is it?

• I need reset my security information, I offered my user name and password is correct bout I can't get the information from your website in my email. So that I can't buy new app pay my money.

  I need reset my security information, I offered my user name and password is correct bout I can't get the information from your website in my email. So that I can't buy new app pay my money.

  Hi,
  Which website your are using to update the Adobe Flash player? No Adobe website ever ask for any id and password to update the flash player.
  If you are using MAC machine and its the password prompt while installing update that you are talking about then please follow What userid & password do I need to install Flash Player?
  -Varun

• Appplications using "Administrator" user id and password in J2EE engine...

  All,
  We have a EP 7.0 with SPS 14. Our "Administrator" user id account gets locked every now and then.
  Eventhough if we unlock it or change the password using configtool, it works for sometime..but,again the "Administrator" user id account gets locked.
  Somewhere some application is still using the old password. So,no matter what password we use or we updated the password everywhere..it works for some time and again the its getting locked.
  Can anybody tell me how to find all the applications using "administrator" user id and password or the applications which requires administrator user id directly or indirectly.
  Is nwds and nwdi deployment uses the "administrator" uidpw ?
  Note: We have already tried with updating the password using configtool and updated the password all the places.it works for some time and it gets locked again..Please help..Thanks.

  to Michael Nicholls  
  Addy 365 posts:        
  We have already tried with updating the password using configtool and updated the password all the places
  Yes from log it looks like impossible to check, but you can determine immediately whether the blockage occurs after restart, or only at certain times of the launch of a job ....
  To Addy 365
  search after restart the lines in security log like
  LOGIN.FAILED, and  try to recheck ol RFC  from all other system's you have in your enterprise ....
  P.S. first check are you have any available RFC listeners in JCO RFC provider.
  To Michael Nicholls    in ABAP side we can check in sm21 from with terminal blocking occurs, why Why the same is not implemented in JAVA? Or for this need special tool like Wily Introscope ?
  Regards.

• User name and passwords autofill

  user name and passwords autofill only autofills the user name and not the password. Any ideas on how to change this so that passwords are also autofilled?

  Hi Geoffrey
  Some web sites (particularly banks, credit card companies) specifically code their sites to prevent the password from automatically appearing. This is due to security concerns.
  Notwithstanding the above, It's possible there's oddities in the Keychain file. This file retains your User Name/Password information. In your Finder: Applications>Utilities folder. Open Keychain Access. Go to the Keychain Menu>Keychain First Aid>Repair. If any errors appear rerun until you get a clean pass.
  If the lack of auto-fill continues, there is a workaround for the web coding via 3rd party Safari add-on (shareware) SAFT. In SAFT's Misc. preference file settings (part of the Safari Preferences) is "Auto-complete always on".
  Note: some of the more elaborate security sign-ons, such as those that use multiple pages for the sign-in are not overridden by the SAFT feature.

• The report server has encountered a configuration error. Logon failed for the unattended execution account. (rsServerConfigurationError) Log on failed. Ensure the user name and password are correct. (rsLogonFailed) Logon failure: unknown user name or bad

  The report server has encountered a configuration error. Logon failed for the unattended execution account. (rsServerConfigurationError)
  Log on failed. Ensure the user name and password are correct. (rsLogonFailed)
  Logon failure: unknown user name or bad password 
  am using Windows integrated security,version of my sql server 2008R2
  I have go throgh the different articuls, they have given different answers,
  So any one give me the  exact soluction for this problem,
  Using service account then i will get the soluction or what?
  pls help me out it is urgent based.
  Regards
  Thanks!

  Hi Ychinnari,
  I have tested on my local environment and can reproduce the issue, as
  Vaishu00547 mentioned that the issue can be caused by the Execution Account you have configured in the Reporting Services Configuration Manager is not correct, Please update the Username and Password and restart the reporting services.
  Please also find more details information about when to use the execution account, if possible,please also not specify this account:
  This account is used under special circumstances when other sources of credentials are not available:
  When the report server connects to a data source that does not require credentials. Examples of data sources that might not require credentials include XML documents and some client-side database applications.
  When the report server connects to another server to retrieve external image files or other resources that are referenced in a report.
  Execution Account (SSRS Native Mode)
  If you still have any problem, please feel free to ask.
  Regards
  Vicky Liu
  Vicky Liu
  TechNet Community Support

• Time Capsule won't accept my user name and password for access - Help!

  Hi all,
  My Time Capsule seemed to stop working one day and I had to do a hard reset with the little button at the back. After that it worked and I restored my wireless network settings but now I can't access the Time Capsules hard drive with Time Machine.
  When I try to choose it as my Backup Disk in the Time Machine preferences it says "Enter your user name and password so Time Machine can access the file server "Our Time Capsule" (the name of my time capsule). However, every time I try to enter my password I get "Sorry, you entered an invalid username or password".
  I've already tried several resets of the Time Capsule and I've also tried logging on my computer as the Root user and changing my administrator account password back and forth but no go.
  Help! and Thanks.

  Norman & Harry,
  Consider the following:
  *_Time Capsule Keeps Asking Me For a Password_*
  It will be important to know what is going on, or what you are doing when it asks for the password. Is it asking for a password only when Time Machine attempts a backup? Consider this:
  It is NOT your username and password it wants when you try accessing the Time Capsule. (I know... it SAYS "username and password") But it means the Time Capsule's Name and Password.
  You will find that by launching Airport Utility.
  Select the TC on the left.
  Click "Manual Setup".
  Click the "Time Capsule" Tab.
  You will see "Time Capsule Name:" and "Time Capsule Password".
  Make sure “Remember password in keychain" is checked.
  That is the information you need to enter when it asks for "username & password."
  *I Don’t Remember What My Time Capsule Password Is*
  You can see what your current TC password is by going into Keychain.
  Open your Keychain and select "login" from the Keychains pane in the top left. Highlight "Passwords" in the Category pane from the lower left.
  Sort all the items by Kind. Note everything labeled "Airport...". How many do you have listed? There should only be one "Airport base station password" for each base station that you have active. Also, there should only be one "Airport network password" for each network you have created. If there are more than these, then delete all but the ones with the most recent Modification date.
  To see what passwords are being stored, double-click your Time Capsules' entry. A new window will appear.
  Put a check beside "Show Password". You may be asked for your own Admin password so enter that.
  Now the Password field will display the password you entered into Airport Utility for your Time Capsule
  *It Still Won’t Accept the TC Name and Password*
  Launch Airport Utility --> Manual Setup.
  Select "Disks" in the tool bar above.
  Click the "File Sharing" tab.
  Is "File Sharing" checked? It should be.
  What is selected beside "Secure Shared Disks"? If it says "With Accounts" or "With a Disk Password" then the system will ask you for a password every time it mounts the TC hard disk. If you switch it to "With Time Capsule Password" then use the password you designated earlier in the “Time Capsule" tab. It should only ask you once and then never again - because you had checked "Remember password in keychain".
  If you have made any changes then click "Update".
  Let us know if this resolves your issue.
  Cheers!

• How can I hide the user name and password from the url address?

  Good afternoon every body,
  I have a form running with Oracle9i Developer Suite Release 2 and when I run the form on the web it shows the user name and password of my data base. Can anyone of you please help me to hide the user name and password, if there's any way of course?.
  Thanks a lot!!.

  Luis,
  Then, as inolau's notice, create logon screen (or use the default one) and force the users to logon at runtime. Do not pass username/password as parameters.
  inolau,
  True that if the connection is specified in the config it will be the same for everyone. However, every case is different. For example one of our apps gets S3 credentials (from non-Oracle S3) as session parameters. It uses this common db connection to validate some stuff with the database, read security definitions and then it re-connects the forms using the credentials.

• I need to know if there is a user name and password associated with accessing a certain website.

  I'm not sure if at one time there was a username and password given so that I automatically could access a site. The site is the home page for my department on the intranet of the company I work for, and they've activated a new vpn. If I use Safari, after activating the vpn opening Safari, it asks me for a user name and password for some proxy server and from there on out I can navegate the external web or the company intranet. Using Firefox, I do not get prompted for a user name and password but I cannot access my homepage yahoo.com or any public website; I can, however access my company's intranet. The IT guy says there must be some user name & pw to access the site that I've previously asked Firefox to memorize but which I can't see. I don't think so but I can't figure out where to find the list of sites that Firefox has memorized passwords for.

  You ca n look in the Password Manager.
  *Firefox > Preferences > Security: Passwords: "Saved Passwords" > "Show Passwords"
  *https://support.mozilla.com/kb/make-firefox-remember-usernames-and-passwords

• What is the default user name and password for oracle databse 10g

  Hi: gurus, I just recently installed the oracle 10g personal edition and trying to log on to the enterprise manger, but can't figure it out the user name and password, can some one help me and tell me what is the default user name and password to logon to the oracle instance. BTW during the installation I choose two passowrds one for the schema and one for the global database orcl. I wonder will I be using one of these passwords. Still I don't have any clue for the "User Name".
  thanks

  system/manager and sys/change_on_install are still valid default passwords when database is manually created. If DBCA was used, passwords will be those defined at creation time inside DBCA.
  In case passwords have been forgotten, those can be reset:
  From an OS commnad prompt, set ORACLE_SID, ORACLE_HOME and PATH environment variables, just to make sure you are pointing to the right Oracle Home installation, and issue:
  OS> sqlplus / as sysdba
  SQL> alter user sys identified by yourNewSysPassword;
  SQL> alter user system identified by yourNewSystemPassword;
  And you're done with it.
  HR Madrid