Error: Jsr88RemoteDeployer. Unable to deploy appllication on the web server

Similar Messages

• Error While trying to run Project : Unable to start debuggeing on the web server . The project is...

  Hello There 
  i have created Project with Visual Studio 2003 and when i try to run my project i faced this problem .
  i was search about it and read all solution that related to this problem but no luck 
  so please any help will be appreciated
  Mohammad Khader IT-Technical Support

  Well, you would have to go to the Web.config and enable debugging.
  http://ppe.blogs.msdn.com/b/zainnab/archive/2010/12/14/enable-debugging-in-web-config-vstipproj0026.aspx
  Then you have to know how to Attach to the ASP.NET Worker Process w3wp.exe. All ASP.NET solutions run on the ASP.NET Worker Process thread on IIS, which means that the ASP.NET program must be already running before you can Attach the Debugger to ASP.NET
  Worker Process. You set a breakpoint I the codebehind file, you attach the debugger to w3wp.exe and you hit the Run with Debugger button. 
  http://www.codeproject.com/Articles/37182/Debug-your-ASP-NET-Application-while-Hosted-on-IIS

• Unable to start debugging on the web server error message when running asp

  Hi Mark,
  i want to apply a asp web application on your book at page 336/337
  I am using .NET 2005 pro. edition.But if i run(play button) the asp web site
  it gives above error message which i wrote on the subject.
  Could someone help me?
  Thanks for reading..
  Regards..
  S.K

  You may want to check whether your Web application has been configured to use "Integrated Windows Authentication".
  Go to your IIS, check the Properties of your web application under Web Sites\Default Web Site, select "Directory Security" tab, click the first "Edit..." button (for Anonymous access and authentication control). At the very bottom, make sure "Integrated Windows authentication" is checked.
  Re-start your Web application.
  Message was edited by:
  shsu

• Certificate issues Active Directory Certificate Services could not process request 3699 due to an error: The revocation function was unable to check revocation because the revocation server was offline. 0x80092013

  Hi,
  We have some problems with our Root CA. I can se a lot of failed requests. with the event id 22: in the logs. The description is: Active Directory Certificate Services could not process request 3686 due to an error: The revocation function was unable to
  check revocation because the revocation server was offline. 0x80092013 (-2146885613).  The request was for CN=xxxxx.ourdomain.com.  Additional information: Error Verifying Request Signature or Signing Certificate
  A couple of months ago we decomissioned one of our old 2003 DCs and it looks like this server might have had something to do with the CA structure but I am not sure whether this was in use or not since I could find the role but I wasn't able to see any existing
  configuration.
  Let's say that this server was previously responsible for the certificates and was the server that should have revoked the old certs, what can I do know to try and correct the problem?
  Thank you for your help
  //Cris

  hello,
  let me recap first:
  you see these errors on a ROOT CA. so it seems like the ROOT CA is also operating as an ISSUING CA. Some clients try to issue a new certificate from the ROOT CA and this fails with your error mentioned.
  do you say that you had a PREVIOUS CA which you decomissioned, and you now have a brand NEW CA, that was built as a clean install? When you decommissioned the PREVIOUS CA, that was your design decision to don't bother with the current certificates that it
  issued and which are still valid, right?
  The error says, that the REQUEST signature cannot be validated. REQUESTs are signed either by itself (self-signed) or if they are renewal requests, they would be signed with the previous certificate which the client tries to renew. The self-signed REQUESTs
  do not contain CRL paths at all.
  So this implies to me as these requests that are failing are renewal requests. Renewal requests would contain CRL paths of the previous certificates that are nearing their expiration.
  As there are many such REQUEST and failures, it probably means that the clients use AUTOENROLLMENT, which tries to renew their current, but shortly expiring, certificates during (by default) their last 6 weeks of lifetime.
  As you decommissioned your PREVIOUS CA, it does not issue CRL anymore and the current certificates cannot be checked for validity.
  Thus, if the renewal tries to renew them by using the NEW CA, your NEW CA cannot validate CRL of the PREVIOUS CA and will not issue new certificates.
  But it would not issue new certificates anyway even if it was able to verify the PREVIOUS CA's CRL, as it seems your NEW CA is completely brand new, without being restored from the PREVIOUS CA's database. Right?
  So simply don't bother :-) As long as it was your design to decommission the PREVIOUS CA without bothering with its already issued certificates.
  The current certificates which autoenrollment tries to renew cannot be checked for validity. They will also slowly expire over the next 6 weeks or so. After that, autoenrollment will ask your NEW CA to issue a brand new certificate without trying to renew.
  Just a clean self-signed REQUEST.
  That will succeed.
  You can also verify this by trying to issue a certificate on an affected machine manually from Certificates MMC.
  ondrej.

• "Unauthorized Host" error when you try to connect to the admin server

  "Unauthorized Host" error when you try to connect to the admin server
  <p>
  If you see this error message when you try to connect to a Netscape
  administration server:<P>
  Internal Error
  The administration server was unable to fulfill your request.
  Reason: Unauthorized host
  --------------------------<P>
  Here is how to solve the problem and gain access. First you should
  temporarily open access to all sites, and then once you make sure that
  this lets you get into your administration server, try again to set up
  the domain name or IP address access restrictions you want.<P>
  For all 2.x/3.x Netscape servers on Windows NT and Unix, or for Commerce and
  Communications servers (1.x) on Unix:<P>
  <OL>
  <LI>Open the "ns-admin.conf" file with a text editor. You can
  find this file in the "admserv" directory under your Netscape
  server root. The directory is named "admin-serv" in 3.x servers.<P>
  <LI>Delete the "Hosts" and "Addresses" lines you see there (either one
  of them might not be present). Don't confuse the "Addresses" line,
  which you should delete, with the "Address" line, which you should NOT
  delete.<P>
  <LI>Save the file, then restart your administration server (on Unix run
  "stop-admin" then "start-admin"; on Windows NT go into the Services
  control panel and stop/start the "Netscape Admin Server" service).<P>
  </OL><P>
  For Commerce Server or Communications Server (1.x) on Windows NT:<P>
  <OL>
  <LI>Go into the registry editor. On Windows NT 4.0, run the command
  "regedit". On Windows 3.51, run the command
  "regedt32".<P>
  <LI>Navigate down to the section
  "HKEY_LOCAL_MACHINE\SOFTWARE\Netscape\Administration".<P>
  <LI>Delete the "Hosts" and "Addresses" entries you see there (either one
  of them might not be present). Don't confuse the "Addresses" entry,
  which you should delete, with the "Address" entry, which you should NOT
  delete.<P>
  <LI>Close the registry editor, then restart your administration server
  by going into the Services control panel and stopping then starting the
  "Netscape Administration" service.<P>
  </OL>
  Now try again to access your administration server. Remember, the URL
  will be something like "http://servername:12345/", where
  "12345" is where the administration server's port number goes.<P>
  If you still get the same "Unauthorized host" error, then make sure that
  your "ns-admin.conf" file really doesn't contain any "Hosts" or
  "Addresses" lines any more, and try stopping your administration server
  again then starting it back up.<P>
  Once you have access to your administration server, you can try again to
  set up the access controls you want.<P>
  <UL>
  <LI>For the administration server on a 3.x server installation, select
  "Admin Preferences" from the General Administration page (the first page
  you see when you connect to the admin server), then click on "Superuser Access
  Control" and enter hostname and IP address restrictions. If you want
  allow access to multiple clients, you'll have to use wildcard patterns
  (separate the subsrings with a pipe character, like
  "(host1|host2|host3)"); the substrings must be enclosed in parentheses, as shown.
  If you're setting up hostname restrictions, you'll need to make sure that
  your DNS can resolve those hostnames -- it's generally safer to stick
  with IP address restrictions. When you're finished configuring this,
  click "OK" then restart your admin server.<P>
  <LI>For the administration server on a 2.x server installation, select
  "Configure Administration" from the Server Selector page (the first page
  you see when you connect to the admin server), then click on "Access
  Control" and enter hostname and IP address restrictions. If you want
  allow access to multiple clients, you'll have to use wildcard patterns
  (separate the subsrings with a pipe character, like
  "(host1|host2|host3)"); the substrings must be enclosed in parentheses, as shown.
  If you're setting up hostname restrictions, you'll need to make sure that
  your DNS can resolve those hostnames -- it's generally safer to stick
  with IP address restrictions. When you're finished configuring this,
  click "OK" then restart your admin server.<P>
  <LI>For the administration server on a 1.x server installation, select
  "Configure Administration Server" from the bottom of the Server Manager
  page, then enter hostname and IP address restrictions. If you want
  allow access to multiple clients, you'll have to use wildcard patterns
  (separate the substrings with a pipe character, like
  "(host1|host2|host3)"); the substrings must be enclosed in parentheses, as shown.
  If you're setting up hostname restrictions, you'll need to make sure that your
  DNS can resolve those hostnames -- it's generally safer to stick with IP address
  restrictions.
  When you're finished configuring this, click "Make These Changes" then
  restart your admin server.<P>
  </UL><P>
  If you still find yourself getting an "Unauthorized host" error message,
  you can use the above steps to open up access and try different
  settings.<P>

  "Unauthorized Host" error when you try to connect to the admin server
  <p>
  If you see this error message when you try to connect to a Netscape
  administration server:<P>
  Internal Error
  The administration server was unable to fulfill your request.
  Reason: Unauthorized host
  --------------------------<P>
  Here is how to solve the problem and gain access. First you should
  temporarily open access to all sites, and then once you make sure that
  this lets you get into your administration server, try again to set up
  the domain name or IP address access restrictions you want.<P>
  For all 2.x/3.x Netscape servers on Windows NT and Unix, or for Commerce and
  Communications servers (1.x) on Unix:<P>
  <OL>
  <LI>Open the "ns-admin.conf" file with a text editor. You can
  find this file in the "admserv" directory under your Netscape
  server root. The directory is named "admin-serv" in 3.x servers.<P>
  <LI>Delete the "Hosts" and "Addresses" lines you see there (either one
  of them might not be present). Don't confuse the "Addresses" line,
  which you should delete, with the "Address" line, which you should NOT
  delete.<P>
  <LI>Save the file, then restart your administration server (on Unix run
  "stop-admin" then "start-admin"; on Windows NT go into the Services
  control panel and stop/start the "Netscape Admin Server" service).<P>
  </OL><P>
  For Commerce Server or Communications Server (1.x) on Windows NT:<P>
  <OL>
  <LI>Go into the registry editor. On Windows NT 4.0, run the command
  "regedit". On Windows 3.51, run the command
  "regedt32".<P>
  <LI>Navigate down to the section
  "HKEY_LOCAL_MACHINE\SOFTWARE\Netscape\Administration".<P>
  <LI>Delete the "Hosts" and "Addresses" entries you see there (either one
  of them might not be present). Don't confuse the "Addresses" entry,
  which you should delete, with the "Address" entry, which you should NOT
  delete.<P>
  <LI>Close the registry editor, then restart your administration server
  by going into the Services control panel and stopping then starting the
  "Netscape Administration" service.<P>
  </OL>
  Now try again to access your administration server. Remember, the URL
  will be something like "http://servername:12345/", where
  "12345" is where the administration server's port number goes.<P>
  If you still get the same "Unauthorized host" error, then make sure that
  your "ns-admin.conf" file really doesn't contain any "Hosts" or
  "Addresses" lines any more, and try stopping your administration server
  again then starting it back up.<P>
  Once you have access to your administration server, you can try again to
  set up the access controls you want.<P>
  <UL>
  <LI>For the administration server on a 3.x server installation, select
  "Admin Preferences" from the General Administration page (the first page
  you see when you connect to the admin server), then click on "Superuser Access
  Control" and enter hostname and IP address restrictions. If you want
  allow access to multiple clients, you'll have to use wildcard patterns
  (separate the subsrings with a pipe character, like
  "(host1|host2|host3)"); the substrings must be enclosed in parentheses, as shown.
  If you're setting up hostname restrictions, you'll need to make sure that
  your DNS can resolve those hostnames -- it's generally safer to stick
  with IP address restrictions. When you're finished configuring this,
  click "OK" then restart your admin server.<P>
  <LI>For the administration server on a 2.x server installation, select
  "Configure Administration" from the Server Selector page (the first page
  you see when you connect to the admin server), then click on "Access
  Control" and enter hostname and IP address restrictions. If you want
  allow access to multiple clients, you'll have to use wildcard patterns
  (separate the subsrings with a pipe character, like
  "(host1|host2|host3)"); the substrings must be enclosed in parentheses, as shown.
  If you're setting up hostname restrictions, you'll need to make sure that
  your DNS can resolve those hostnames -- it's generally safer to stick
  with IP address restrictions. When you're finished configuring this,
  click "OK" then restart your admin server.<P>
  <LI>For the administration server on a 1.x server installation, select
  "Configure Administration Server" from the bottom of the Server Manager
  page, then enter hostname and IP address restrictions. If you want
  allow access to multiple clients, you'll have to use wildcard patterns
  (separate the substrings with a pipe character, like
  "(host1|host2|host3)"); the substrings must be enclosed in parentheses, as shown.
  If you're setting up hostname restrictions, you'll need to make sure that your
  DNS can resolve those hostnames -- it's generally safer to stick with IP address
  restrictions.
  When you're finished configuring this, click "Make These Changes" then
  restart your admin server.<P>
  </UL><P>
  If you still find yourself getting an "Unauthorized host" error message,
  you can use the above steps to open up access and try different
  settings.<P>

• Subordinate certification authority can't start ADCS service: The revocation function was unable to check revocation because the revocation server was offline. 0x80092013 (-2146885613 CRYPT_E_REVOCATION_OFFLINE).

  Hi
  I have 1 rootCA and 1 subordinate CA. I removed one of the locations to publish CRL and after that the ADCS service can't start. I get the warning first:
  Revocation status for a certificate in the chain for CA certificate 2 for siu-SRVDC01-CA could not be verified because a server is currently unavailable.  The revocation function was unable to check revocation because the revocation server was offline.
  0x80092013 (-2146885613 CRYPT_E_REVOCATION_OFFLINE).
  And then the error:
  Active Directory Certificate Services did not start: Could not load or verify the current CA certificate.  siu-SRVDC01-CA The revocation function was unable to check revocation because the revocation server was offline. 0x80092013 (-2146885613 CRYPT_E_REVOCATION_OFFLINE).
  I've read many threads with similar problems but I can't find the solution. The CDP is online. I've run "certutil -url cert.cer" to verify the CDP and AIA and everything is fine. But the service is still not starting.
  See this command too:
  C:\>certutil -verify -urlfetch subCADC01.cer
  Issuer:
      CN=siu-SRVDC02-CA
      DC=siu
      DC=domain
    Name Hash(sha1): 152a7c43f186d9179c1c3256d3a1a0af4a9df892
    Name Hash(md5): b409e417a38bbe04b5800512bd94efac
  Subject:
      CN=siu-SRVDC01-CA
      DC=siu
      DC=domain
    Name Hash(sha1): 5ee421b84c3b18ff134cf2e42226853d78d3409b
    Name Hash(md5): e1a454692361733e45dad374dc14cae3
  Cert Serial Number: 1e0000022c707c76c0a27b315700000000022c
  dwFlags = CA_VERIFY_FLAGS_CONSOLE_TRACE (0x20000000)
  dwFlags = CA_VERIFY_FLAGS_DUMP_CHAIN (0x40000000)
  ChainFlags = CERT_CHAIN_REVOCATION_CHECK_CHAIN_EXCLUDE_ROOT (0x40000000)
  HCCE_LOCAL_MACHINE
  CERT_CHAIN_POLICY_BASE
  -------- CERT_CHAIN_CONTEXT --------
  ChainContext.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
  ChainContext.dwRevocationFreshnessTime: 1 Hours, 2 Minutes, 16 Seconds
  SimpleChain.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
  SimpleChain.dwRevocationFreshnessTime: 1 Hours, 2 Minutes, 16 Seconds
  CertContext[0][0]: dwInfoStatus=102 dwErrorStatus=0
    Issuer: CN=siu-SRVDC02-CA, DC=siu, DC=domain
    NotBefore: 19.03.2015 11:18
    NotAfter: 19.03.2017 11:28
    Subject: CN=siu-SRVDC01-CA, DC=siu, DC=domain
    Serial: 1e0000022c707c76c0a27b315700000000022c
    Template: SubCA
    a1a8a95464c5b586da6e9b304142d59fc5a22ae0
    Element.dwInfoStatus = CERT_TRUST_HAS_KEY_MATCH_ISSUER (0x2)
    Element.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
    ----------------  Certificate AIA  ----------------
    Verified "Certificate (0)" Time: 0
      [0.0] http://wwwca/CertEnroll/srvdc02.siu.domain_siu-SRVDC02-CA.crt
    ----------------  Certificate CDP  ----------------
    Verified "Base CRL (26)" Time: 0
      [0.0] http://sharepoint.siu.no:8088/siu-SRVDC02-CA.crl
    ----------------  Base CRL CDP  ----------------
    No URLs "None" Time: 0
    ----------------  Certificate OCSP  ----------------
    No URLs "None" Time: 0
      CRL 26:
      Issuer: CN=siu-SRVDC02-CA, DC=siu, DC=domain
      ThisUpdate: 19.03.2015 11:10
      NextUpdate: 15.09.2015 23:30
      e2ee543a68214f9b99dda2e9f58b1ddfc34429d1
  CertContext[0][1]: dwInfoStatus=10c dwErrorStatus=0
    Issuer: CN=siu-SRVDC02-CA, DC=siu, DC=domain
    NotBefore: 23.09.2011 13:00
    NotAfter: 23.09.2021 13:10
    Subject: CN=siu-SRVDC02-CA, DC=siu, DC=domain
    Serial: 60fc459ebdefa5b646a081b0c21c259d
    4ea8bb95b0038c69a83c939e8a54f892cd0b5056
    Element.dwInfoStatus = CERT_TRUST_HAS_NAME_MATCH_ISSUER (0x4)
    Element.dwInfoStatus = CERT_TRUST_IS_SELF_SIGNED (0x8)
    Element.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
    ----------------  Certificate AIA  ----------------
    No URLs "None" Time: 0
    ----------------  Certificate CDP  ----------------
    No URLs "None" Time: 0
    ----------------  Certificate OCSP  ----------------
    No URLs "None" Time: 0
  Exclude leaf cert:
    691f7e42f5c4a86d03b7225bf7303369ef6dcc7e
  Full chain:
    17e5b9477a1736c33dc0ff245e7b06de5b958c4c
  Verified Issuance Policies: None
  Verified Application Policies: All
  Cert is a CA certificate
  Leaf certificate revocation check passed
  CertUtil: -verify command completed successfully.
  Any clue?

  It looks like it is trying to get the CRL using LDAP. It is quite strange since no ldap entry is on the subordinate CA,
  only an HTTP address:
            <CertificateRevocationList location="TvoCache" url="ldap:///CN=siu-SRVDC02-CA,CN=srvdc02,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=siu,DC=domain?certificateRevocationList?base?objectClass=cRLDistributionPoint"
  fileRef="DEEB557897A9FEA217DF83D95BF24CA54051B1CF.crl" issuerName="siu-SRVDC02-CA" />
              <CertificateRevocationList deltaCRL="true" location="TvoCache" url="ldap:///CN=siu-SRVDC02-CA,CN=srvdc02,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=siu,DC=domain?deltaRevocationList?base?objectClass=cRLDistributionPoint" 
  I have checked that object using adsi Edit and the permissions seem ok. Also there is a value on both attributes: certificateRevocationList and deltaRevocationList.
  This problem happened after I removed the LDAP entry for the "CRL Distribution point" from the sub CA properties. Should I add back the LDAP entry?
  Log Name:      Microsoft-Windows-CAPI2/Operational
  Source:        Microsoft-Windows-CAPI2
  Date:          19.03.2015 14:42:07
  Event ID:      11
  Task Category: Build Chain
  Level:         Error
  Keywords:      Path Discovery,Path Validation
  User:          SYSTEM
  Computer:      srvdc01.siu.domain
  Description:
  For more details for this event, please refer to the "Details" section
  Event Xml:
  <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
      <Provider Name="Microsoft-Windows-CAPI2" Guid="{5bbca4a8-b209-48dc-a8c7-b23d3e5216fb}" />
      <EventID>11</EventID>
      <Version>0</Version>
      <Level>2</Level>
      <Task>11</Task>
      <Opcode>2</Opcode>
      <Keywords>0x4000000000000003</Keywords>
      <TimeCreated SystemTime="2015-03-19T13:42:07.481533500Z" />
      <EventRecordID>131</EventRecordID>
      <Correlation />
      <Execution ProcessID="6288" ThreadID="5472" />
      <Channel>Microsoft-Windows-CAPI2/Operational</Channel>
      <Computer>srvdc01.siu.domain</Computer>
      <Security UserID="S-1-5-18" />
    </System>
    <UserData>
      <CertGetCertificateChain>
        <Certificate fileRef="E02AA2C59FD54241309B6EDA86B5C56454A9A8A1.cer" subjectName="siu-SRVDC01-CA" />
        <ExtendedKeyUsage />
        <Flags value="40000000" CERT_CHAIN_REVOCATION_CHECK_CHAIN_EXCLUDE_ROOT="true" />
        <ChainEngineInfo context="machine" />
        <CertificateChain chainRef="{60B61582-1C3C-4B58-AE8C-70278ADEE402}" revocationFreshnessTime="P2DT21H13M20S">
          <TrustStatus>
            <ErrorStatus value="1000040" CERT_TRUST_REVOCATION_STATUS_UNKNOWN="true" CERT_TRUST_IS_OFFLINE_REVOCATION="true" />
            <InfoStatus value="100" CERT_TRUST_HAS_PREFERRED_ISSUER="true" />
          </TrustStatus>
          <ChainElement>
            <Certificate fileRef="E02AA2C59FD54241309B6EDA86B5C56454A9A8A1.cer" subjectName="siu-SRVDC01-CA" />
            <SignatureAlgorithm oid="1.2.840.113549.1.1.5" hashName="SHA1" publicKeyName="RSA" />
            <PublicKeyAlgorithm oid="1.2.840.113549.1.1.1" publicKeyName="RSA" publicKeyLength="2048" />
            <TrustStatus>
              <ErrorStatus value="1000040" CERT_TRUST_REVOCATION_STATUS_UNKNOWN="true" CERT_TRUST_IS_OFFLINE_REVOCATION="true" />
              <InfoStatus value="102" CERT_TRUST_HAS_KEY_MATCH_ISSUER="true" CERT_TRUST_HAS_PREFERRED_ISSUER="true" />
            </TrustStatus>
            <ApplicationUsage any="true" />
            <IssuanceUsage />
            <RevocationInfo freshnessTime="P2DT21H13M20S">
              <RevocationResult value="80092013">The revocation function was unable to check revocation because the revocation server was offline.</RevocationResult>
              <StrongSignProperties signHash="RSA/SHA1" issuerPublicKeyLength="2048" />
              <DeltaStrongSignProperties signHash="RSA/SHA1" issuerPublicKeyLength="2048" />
              <CertificateRevocationList location="TvoCache" url="ldap:///CN=siu-SRVDC02-CA,CN=srvdc02,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=siu,DC=domain?certificateRevocationList?base?objectClass=cRLDistributionPoint"
  fileRef="DEEB557897A9FEA217DF83D95BF24CA54051B1CF.crl" issuerName="siu-SRVDC02-CA" />
              <CertificateRevocationList deltaCRL="true" location="TvoCache" url="ldap:///CN=siu-SRVDC02-CA,CN=srvdc02,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=siu,DC=domain?deltaRevocationList?base?objectClass=cRLDistributionPoint"
  fileRef="58A2CDBC7A238DDD76EEFEDE354A04596F5AED71.crl" issuerName="siu-SRVDC02-CA" />
            </RevocationInfo>
          </ChainElement>
          <ChainElement>
            <Certificate fileRef="56500BCD92F8548A9E933CA8698C03B095BBA84E.cer" subjectName="siu-SRVDC02-CA" />
            <SignatureAlgorithm oid="1.2.840.113549.1.1.5" hashName="SHA1" publicKeyName="RSA" />
            <PublicKeyAlgorithm oid="1.2.840.113549.1.1.1" publicKeyName="RSA" publicKeyLength="2048" />
            <TrustStatus>
              <ErrorStatus value="0" />
              <InfoStatus value="10C" CERT_TRUST_HAS_NAME_MATCH_ISSUER="true" CERT_TRUST_IS_SELF_SIGNED="true" CERT_TRUST_HAS_PREFERRED_ISSUER="true" />
            </TrustStatus>
            <ApplicationUsage any="true" />
            <IssuanceUsage any="true" />
          </ChainElement>
        </CertificateChain>
        <EventAuxInfo ProcessName="certsrv.exe" />
        <CorrelationAuxInfo TaskId="{54E4FCD3-E70A-4024-BB81-6A053EAACE21}" SeqNumber="9" />
        <Result value="80092013">The revocation function was unable to check revocation because the revocation server was offline.</Result>
      </CertGetCertificateChain>
    </UserData>
  </Event>

• Unable to access calendar, because the web service is configured incorrectly

  When attempting to access my web based calender I recieve the following error, "Unable to access calendar, because the web service is configured incorrectly." I have both the web service and iCal server configured to use SSL.
  Thanks for any help

  I have the same problem, with a temporary solution :
  http://forums.macosxhints.com/showthread.php?t=111059
  In the Server Admin - iCal Server Settings page there's a place where you specify the ports to be used, 8008 without SSL and 8443 (? out of my memory, not sure) for SSL.
  The issue was caused because left of the SSL port I selected "redirect" instead of "use".
  After I changed that it worked right away.
  Laurent

• Published Flash module and 404 errors in the web server log

  I’ve created a Presenter module, published it to my computer, and uploaded all the files to a web server. And it plays fine via the web.
  The odd thing is a bunch of 404 errors in the web log:
  10.1.2.104 - - [29/Jul/2009:10:36:00 -0700] "GET /repository/university/courses/3/flash/data/spk10821.1.jpg HTTP/1.1" 404 255 "-" 1166 419
  10.1.2.104 - - [29/Jul/2009:10:36:29 -0700] "GET /repository/university/courses/3/flash/data/spk10821.1.jpg HTTP/1.1" 404 255 "-" 1166 419
  10.1.2.104 - - [29/Jul/2009:10:36:57 -0700] "GET /repository/university/courses/3/flash/data/spk10821.1.jpg HTTP/1.1" 404 255 "-" 1166 419
  In the data directory there is a file named spk10821.jpg that was generated by Presenter. The image is actually the presenter bio photo that would normally show up in the sidebar -- but no photo is there. The browser never requests the valid spk10821.jpg file, only the non-existent spk10821.1.jpg path.
  Anybody know why this would be happening? I see in data/viewer.xml there is a tag for <image>spk10821.1.jpg</image> but I don’t know why Presenter would mention that file in the XML but generate a differently-named one in the publish folder.
  I’m wondering if I should have the web server rewrite requests with the ".1.jpg" ending to get rid of the ".1" part so they will work.
  By the way, this is with PowerPoint 2003 SP3 and Presenter 7.0.1.

  Hi Daniel,
  I am assuming that you are using Visual Studio 2010 to target the .Net framework 4.0
  Crystal Reports 2008 is not compatible with VS 2010. Use [Crystal Reports for Visual Studio 2010|Crystal Reports for Visual Studio 2010 Production Release Now AvailableCystlR%2528SAPWeblogs%253ACrystal+Reports%2529] to target .Net framework 4.0.
  Deploy the application using the methods specified in the 'Deployment' section of the [CR for VS 2010 .Net SDK developer guide|http://help.sap.com/businessobject/product_guides/sapCRVS2010/en/crnet_dg_2010_en.zip].
  See if you can reproduce the issue after redeploying the application as mentioned above.
  Few questions-
  - Is it the dev machine or production machine causing the issue?
  - OS version?
  - What does the application do? i.e. view, export, print report?
  - Issue is with some reports or all the reports.
  See if there is an image on the report, remove the image and add it as a picture object ' Insert --> Picture' from the CR designer.
  Hope this helps,
  Bhushan.

• Error ! Unable to continue with N1 SPS Master Server installation.

  Product: Sun N1 Service Provisioning System 6.0
  I am trying to install sun N1 provsioning Service software. During installation am getting this error.
  ERROR! Unable to continue with N1 SPS Master Server installation.
  The required OS version is 2.1, and this machine is running .
  I am currently using : uname -a
  Linux home.org 2.6.9-55.0.12.ELsmp #1 SMP Fri Nov 2 11:19:08 EDT 2007 i686 i686 i386 GNU/Linux
  /etc/redhat-release
  CentOS release 4.5 (Final)
  java-version:java version "1.4.2"
  Please any suggestions. Do i have to edit the installation script or install jdk-1.5.

  Just change your /etc/redhat-relase to something SPS is aware of...
  Something like :
  Red Hat Enterprise Linux ES release 3 (Taroon Update 6)
  or something else (RH4)
  This should work, but is NOT supported ;)
  Chris

• Why do I see 'Unable to check revocation because the revocation server was offline'?

  Hi,
  In a lab we've been renewing our Subordinate Issuing CA cert fine for 3 iterations.  On the 4th renewal attempt, when I try to perform a 'Certutil -InstallCet Cert(4).crt, I receive the message 'The revocation function was unable to check revocation
  because the revocation server was offline. 0x80092013'.
  Why could I perform a renewal operation successfully up to this point but cant now?  What does this message really mean cause no servers are offline?
  Thanks for your help! SdeDot

  Thanks Paul.
  The first error I found in the registry was the DSConfigDN was incorrect due to me copying the commands from another test system. 
  We didn't specifically code a CDP or AIA on the Root cause each time we renewed the Cert on the Root, on the Sub CA we published the renewed Cert to AD and added the renewed Cert and renewed CRL to the local Root store.
  What follows is the RootCA registry.
  HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CertSvc\Configuration\FlyByNightRootCA:
  Keys:
    CSP
    EncryptionCSP
    ExitModules
    PolicyModules
  Values:
    ViewAgeMinutes           REG_DWORD = 10 (16)
    ViewIdleMinutes          REG_DWORD = 8
    CAType                   REG_DWORD = 3
      ENUM_STANDALONE_ROOTCA -- 3
    UseDS                    REG_DWORD = 0
    ForceTeletex             REG_DWORD = 12 (18)
      ENUM_TELETEX_AUTO -- 2
      ENUM_TELETEX_UTF8 -- 10 (16)
    SignedAttributes         REG_MULTI_SZ =
      0: RequesterName
    EKUOIDsForPublishExpiredCertInCRL REG_MULTI_SZ =
      0: 1.3.6.1.5.5.7.3.3 Code Signing
      1: 1.3.6.1.4.1.311.61.1.1 Kernel Mode Code Signing
    CommonName               REG_SZ = FlyByNightRootCA
    Enabled                  REG_DWORD = 1
    PolicyFlags              REG_DWORD = 0
    CertEnrollCompatible     REG_DWORD = 0
    CRLEditFlags             REG_DWORD = 100 (256)
      EDITF_ENABLEAKIKEYID -- 100 (256)
    CRLFlags                 REG_DWORD = 2
      CRLF_DELETE_EXPIRED_CRLS -- 2
    InterfaceFlags           REG_DWORD = 41 (65)
      IF_LOCKICERTREQUEST -- 1
      IF_NOREMOTEICERTADMINBACKUP -- 40 (64)
    EnforceX500NameLengths   REG_DWORD = 1
    SubjectTemplate          REG_MULTI_SZ =
      0: EMail
      1: CommonName
      2: OrganizationalUnit
      3: Organization
      4: Locality
      5: State
      6: DomainComponent
      7: Country
    ClockSkewMinutes         REG_DWORD = a (10)
    LogLevel                 REG_DWORD = 3
    HighSerial               REG_DWORD = 0
    CAServerName             REG_SZ = Server03
    ValidityPeriod           REG_SZ = Hours
    ValidityPeriodUnits      REG_DWORD = c (12)
    CAXchgCertHash           REG_MULTI_SZ =
    KRACertHash              REG_MULTI_SZ =
    KRACertCount             REG_DWORD = 0
    KRAFlags                 REG_DWORD = 0
    CRLPublicationURLs       REG_MULTI_SZ =
      0: 65:C:\Windows\system32\CertSrv\CertEnroll\%3%8%9.crl
      CSURL_SERVERPUBLISH -- 1
      CSURL_SERVERPUBLISHDELTA -- 40 (64)
      1: 8:ldap:///CN=%7%8,CN=%2,CN=CDP,CN=Public Key Services,CN=Services,%6%10
      CSURL_ADDTOCRLCDP -- 8
      2: 0:http://%1/CertEnroll/%3%8%9.crl
      3: 6:file://%1/CertEnroll/%3%8%9.crl
      CSURL_ADDTOCERTCDP -- 2
      CSURL_ADDTOFRESHESTCRL -- 4
    CRLPeriod                REG_SZ = Hours
    CRLPeriodUnits           REG_DWORD = c (12)
    CRLOverlapPeriod         REG_SZ = Hours
    CRLOverlapUnits          REG_DWORD = 0
    CRLDeltaPeriod           REG_SZ = Hours
    CRLDeltaPeriodUnits      REG_DWORD = 0
    CRLDeltaOverlapPeriod    REG_SZ = Minutes
    CRLDeltaOverlapUnits     REG_DWORD = 0
    CAXchgValidityPeriod     REG_SZ = Weeks
    CAXchgValidityPeriodUnits REG_DWORD = 1
    CAXchgOverlapPeriod      REG_SZ = Days
    CAXchgOverlapPeriodUnits REG_DWORD = 1
    MaxIncomingMessageSize   REG_DWORD = 10000 (65536)
    MaxIncomingAllocSize     REG_DWORD = 10000 (65536)
    CACertPublicationURLs    REG_MULTI_SZ =
      0: 1:C:\Windows\system32\CertSrv\CertEnroll\%1_%3%4.crt
      CSURL_SERVERPUBLISH -- 1
      1: 0:ldap:///CN=%7,CN=AIA,CN=Public Key Services,CN=Services,%6%11
      2: 0:http://%1/CertEnroll/%1_%3%4.crt
      3: 2:file://%1/CertEnroll/%1_%3%4.crt
      CSURL_ADDTOCERTCDP -- 2
    CACertHash               REG_MULTI_SZ =
      0: e0 bb 32 b9 bf f7 43 1d 23 e2 da b6 26 10 33 d8 00 61 e6 14
      1: a8 77 c8 09 af f0 07 4c 70 51 78 80 09 26 b1 05 f5 16 e5 be
    Security                 REG_BINARY =
      Allow CA Administrator BUILTIN\Administrators
      Allow Certificate Manager BUILTIN\Administrators
      Allow Enroll Everyone
    SetupStatus              REG_DWORD = 1
      SETUP_SERVER_FLAG -- 1
    DSConfigDN               REG_SZ = CN=Configuration,DC=TestPKI,DC=Net
    AuditFilter              REG_DWORD = 7f (127)
    CRLNextPublish           REG_BINARY = 2/28/2015 4:22 AM
  CertUtil: -getreg command completed successfully.
  Thanks for your help! SdeDot

• BO CMC Crystal Reports : An error occurred while creating a subprocess in the processing server. [RCIRAS0603]

  Hi All,
  I am getting "An error occurred while creating a subprocess in the processing server. [RCIRAS0603]"  error while opening the previous instances of the crystal report in BOCMC.
  I am trying to run or schedule the report but it is always going to "PENDING STATUS".
  (Previously it was resolved after restarting the server. Error : problem in ProcessingServer)
  Could you please suggest.
  Details :
  Crystal Reports 2008
  Clarity 13
  Server Details:
  BO XI 3.1 SP5
  OS : Red Hat 6
  Patch X11
  Symptom
  " Crystal Reports 2008/2011/2013 Processing Server fails to create child
  processes after applied X11 client libraries security update on Redhat
  Linux 6
  " "An error occurred while creating a subprocess in the processing server.
  [RCIRAS0603]" error occurs when viewing the Crystal Reports in InfoView/BI

  Hi Rajeev,
  This is a known issue you can refer to below note,
  2098659 - "An error occurred while creating a subprocess in the processing server. [RCIRAS0603]" error occurs after applied X11 client libraries security update on Redhat Linux 6
  Regards,
  ~Shree

• An error occurred while creating a subprocess in the processing server.

  Hi,
  I have developed a Crystal Report using CR 2008 with SAP BW as the datasource. The report is executing fine in CR 2008, but when saved to the BOE, in Infoview it is throwing the following error:
  An error occurred while creating a subprocess in the processing server. [RCIRAS0603]
  Did anyone face similar issue? Is there any resolution for the same.?
  I have deleted the report from enterprise and saved it back, still facing this problem.
  Appreciate your help in this regard.
  Thanks
  Ravi

  Crystal Reports processing (CR Page) server is not operational.
  There could be many reasons for this.
  CR processing server traces will need to be enabled and analysed by support.
  You should also be on the latest patch release.
  Sometimes following steps help :
  1) Stop all of the XI 3.1 processes using the ./stopservers command (ensure they are all down before proceeding)
  2) Once all processes are stopped ensure the serverpids directory is empty
  <install dir>/bobje/serverpids/
  If any files are within the 'serverpids' folder, remove them.
  3) Go to bobje/tmp
  Remove any MW, .MW, mw, .mw and regss files and/or directories
  4) Go to /tmp
  Remove any MW, .MW, mw, .mw, and regss files and/or directories
  5) start servers back up.
  If this doesn't help - you'll need to open a Support Incident

• An error occurred while trying to communicate with the web browser.

  I have opened a PDF in the Acrobat reader V 8.2.4. It has live links.
  Only the FF browser is open.
  When I click a link in the PDF, I successfully get the message 'The document is trying to connect to...' which I allow and then successfully hyperlink to the web page displayed in FF.
  When I click an image in the PDF, which has a url attached to it, I get the message 'An error occurred while trying to communicate with the web browser.'
  [Sorry to say in IE7 when I click the image, I hyperlink to the web page like I do when I click the link.]
  Question is: What setting or other step do I need to take with FF so when I click the image in the PDF I link to a web page like I do when I click the link in the PDF?
  Thank you!

  Your above posted system details show outdated plugin(s) with known security and stability risks.
  # Adobe Shockwave for Director Netscape plug-in, version 10.2
  # Adobe PDF Plug-In For Firefox and Netscape 8.2.4
  # Shockwave Flash 10.0 r22
  Update the [[Java]] plugin to the latest version.
  *http://java.sun.com/javase/downloads/index.jsp (Java Platform: Download JRE)
  Update the [[Managing the Flash plugin|Flash]] plugin to the latest version.
  *http://www.adobe.com/software/flash/about/
  Update the [[Adobe Reader]] plugin to the latest version.
  *http://get.adobe.com/reader/otherversions/

• Haveing problems with Safari. It gives me an error message. Safari can't open the web page, because it can't establish a secure connection to the server. It only seams to have a problem on https sites. Any help would be apreciated.

  Safari keeps giving  and error message. " Safari can't open the web page( insert web page here) , because it can't establish a secure connetion to the server.
  It only seams to have a problem with https sites.
  Any help would be appreciated

  The "s" in "https" indicates the site is a secure server--usually a site that will require a password.  Connections to secure servers can be blocked by parental controls.  Are you using any parental controls, either through OSX's settings (in System Preferences) or third party parental control software (such as Netnanny)?  If so, check the settings to make sure they will allow the connection.

• Error retrieving data from the web server in Excel fo BPC

  Hello Everybody,
  I'm working with BPC v7.5 , i created some reports with the EVDRE formula and they were working perfectly.
  The problem started when i created new users, that in fact have the same access profile and task profile as my user.
  i started to test these new users in excel and every time i expand the report this legend appears: " EVDRE Retrying... EVDRE encountered an error retrieving data from the Web Server. Retrying in (X) Seconds...". After waiting a while a push cancel, then appears a window with the legend: Ev4excel Addin, Errors found retriening data.
  The funny thing is that when i login back to my user everything works fine again, any idea what could be the problem? the other user have the same permissions.
  Thanks a lot in advance!!
  Nidia Olguí

  very strange. Normally the member access profile must be diifferent. So it is not important the task profile but the member access profile. Can you please double check ?
  If you are doing a simple EVDRE with users having problems is it working or you still have problems?
  Regards
  Sorin Radulescu