Error: Jsr88RemoteDeployer. Unable to deploy appllication on the web server
Hi,
As soon as I try to run my application, I get the following error, I wonder whats wrong, plz help:
[05:31:06 PM] Deployment cancelled.
[05:31:06 PM] ---- Deployment incomplete ----.
#### Cannot run application ADFsecondApp due to error deploying to IntegratedWebLogicServer.
[05:31:06 PM] Remote deployment failed (oracle.jdevimpl.deploy.common.Jsr88RemoteDeployer)
[Application ADFsecondApp stopped and undeployed from Server Instance IntegratedWebLogicServer]
<Logger> <error> ServletContainerAdapter manager not initialized correctly.
In my browser, I can see Home page after logging in to the following page with the weblogic username and required password:
http://COMPUTERNAME:7101/console
I am new to this technology, kindly provide the sail-through link, if any, so that I can speed-up the development process.
Thanks in advance for the help.
Rajat Nigam.
Can you post the entire log messages here.
Its difficult to understand why it failed. I searched around and found that normally this error message needs to be ignored and its not much of an issue. Also, the error actually means that it is trying to some additional classes which it cant find.
Since you are not being able to deploy your web application, we need to see your entire error log.
thanks,
salil
Similar Messages
-
Hello There
i have created Project with Visual Studio 2003 and when i try to run my project i faced this problem .
i was search about it and read all solution that related to this problem but no luck
so please any help will be appreciated
Mohammad Khader IT-Technical SupportWell, you would have to go to the Web.config and enable debugging.
http://ppe.blogs.msdn.com/b/zainnab/archive/2010/12/14/enable-debugging-in-web-config-vstipproj0026.aspx
Then you have to know how to Attach to the ASP.NET Worker Process w3wp.exe. All ASP.NET solutions run on the ASP.NET Worker Process thread on IIS, which means that the ASP.NET program must be already running before you can Attach the Debugger to ASP.NET
Worker Process. You set a breakpoint I the codebehind file, you attach the debugger to w3wp.exe and you hit the Run with Debugger button.
http://www.codeproject.com/Articles/37182/Debug-your-ASP-NET-Application-while-Hosted-on-IIS -
Unable to start debugging on the web server error message when running asp
Hi Mark,
i want to apply a asp web application on your book at page 336/337
I am using .NET 2005 pro. edition.But if i run(play button) the asp web site
it gives above error message which i wrote on the subject.
Could someone help me?
Thanks for reading..
Regards..
S.KYou may want to check whether your Web application has been configured to use "Integrated Windows Authentication".
Go to your IIS, check the Properties of your web application under Web Sites\Default Web Site, select "Directory Security" tab, click the first "Edit..." button (for Anonymous access and authentication control). At the very bottom, make sure "Integrated Windows authentication" is checked.
Re-start your Web application.
Message was edited by:
shsu -
Hi,
We have some problems with our Root CA. I can se a lot of failed requests. with the event id 22: in the logs. The description is: Active Directory Certificate Services could not process request 3686 due to an error: The revocation function was unable to
check revocation because the revocation server was offline. 0x80092013 (-2146885613). The request was for CN=xxxxx.ourdomain.com. Additional information: Error Verifying Request Signature or Signing Certificate
A couple of months ago we decomissioned one of our old 2003 DCs and it looks like this server might have had something to do with the CA structure but I am not sure whether this was in use or not since I could find the role but I wasn't able to see any existing
configuration.
Let's say that this server was previously responsible for the certificates and was the server that should have revoked the old certs, what can I do know to try and correct the problem?
Thank you for your help
//Crishello,
let me recap first:
you see these errors on a ROOT CA. so it seems like the ROOT CA is also operating as an ISSUING CA. Some clients try to issue a new certificate from the ROOT CA and this fails with your error mentioned.
do you say that you had a PREVIOUS CA which you decomissioned, and you now have a brand NEW CA, that was built as a clean install? When you decommissioned the PREVIOUS CA, that was your design decision to don't bother with the current certificates that it
issued and which are still valid, right?
The error says, that the REQUEST signature cannot be validated. REQUESTs are signed either by itself (self-signed) or if they are renewal requests, they would be signed with the previous certificate which the client tries to renew. The self-signed REQUESTs
do not contain CRL paths at all.
So this implies to me as these requests that are failing are renewal requests. Renewal requests would contain CRL paths of the previous certificates that are nearing their expiration.
As there are many such REQUEST and failures, it probably means that the clients use AUTOENROLLMENT, which tries to renew their current, but shortly expiring, certificates during (by default) their last 6 weeks of lifetime.
As you decommissioned your PREVIOUS CA, it does not issue CRL anymore and the current certificates cannot be checked for validity.
Thus, if the renewal tries to renew them by using the NEW CA, your NEW CA cannot validate CRL of the PREVIOUS CA and will not issue new certificates.
But it would not issue new certificates anyway even if it was able to verify the PREVIOUS CA's CRL, as it seems your NEW CA is completely brand new, without being restored from the PREVIOUS CA's database. Right?
So simply don't bother :-) As long as it was your design to decommission the PREVIOUS CA without bothering with its already issued certificates.
The current certificates which autoenrollment tries to renew cannot be checked for validity. They will also slowly expire over the next 6 weeks or so. After that, autoenrollment will ask your NEW CA to issue a brand new certificate without trying to renew.
Just a clean self-signed REQUEST.
That will succeed.
You can also verify this by trying to issue a certificate on an affected machine manually from Certificates MMC.
ondrej. -
"Unauthorized Host" error when you try to connect to the admin server
"Unauthorized Host" error when you try to connect to the admin server
<p>
If you see this error message when you try to connect to a Netscape
administration server:<P>
Internal Error
The administration server was unable to fulfill your request.
Reason: Unauthorized host
--------------------------<P>
Here is how to solve the problem and gain access. First you should
temporarily open access to all sites, and then once you make sure that
this lets you get into your administration server, try again to set up
the domain name or IP address access restrictions you want.<P>
For all 2.x/3.x Netscape servers on Windows NT and Unix, or for Commerce and
Communications servers (1.x) on Unix:<P>
<OL>
<LI>Open the "ns-admin.conf" file with a text editor. You can
find this file in the "admserv" directory under your Netscape
server root. The directory is named "admin-serv" in 3.x servers.<P>
<LI>Delete the "Hosts" and "Addresses" lines you see there (either one
of them might not be present). Don't confuse the "Addresses" line,
which you should delete, with the "Address" line, which you should NOT
delete.<P>
<LI>Save the file, then restart your administration server (on Unix run
"stop-admin" then "start-admin"; on Windows NT go into the Services
control panel and stop/start the "Netscape Admin Server" service).<P>
</OL><P>
For Commerce Server or Communications Server (1.x) on Windows NT:<P>
<OL>
<LI>Go into the registry editor. On Windows NT 4.0, run the command
"regedit". On Windows 3.51, run the command
"regedt32".<P>
<LI>Navigate down to the section
"HKEY_LOCAL_MACHINE\SOFTWARE\Netscape\Administration".<P>
<LI>Delete the "Hosts" and "Addresses" entries you see there (either one
of them might not be present). Don't confuse the "Addresses" entry,
which you should delete, with the "Address" entry, which you should NOT
delete.<P>
<LI>Close the registry editor, then restart your administration server
by going into the Services control panel and stopping then starting the
"Netscape Administration" service.<P>
</OL>
Now try again to access your administration server. Remember, the URL
will be something like "http://servername:12345/", where
"12345" is where the administration server's port number goes.<P>
If you still get the same "Unauthorized host" error, then make sure that
your "ns-admin.conf" file really doesn't contain any "Hosts" or
"Addresses" lines any more, and try stopping your administration server
again then starting it back up.<P>
Once you have access to your administration server, you can try again to
set up the access controls you want.<P>
<UL>
<LI>For the administration server on a 3.x server installation, select
"Admin Preferences" from the General Administration page (the first page
you see when you connect to the admin server), then click on "Superuser Access
Control" and enter hostname and IP address restrictions. If you want
allow access to multiple clients, you'll have to use wildcard patterns
(separate the subsrings with a pipe character, like
"(host1|host2|host3)"); the substrings must be enclosed in parentheses, as shown.
If you're setting up hostname restrictions, you'll need to make sure that
your DNS can resolve those hostnames -- it's generally safer to stick
with IP address restrictions. When you're finished configuring this,
click "OK" then restart your admin server.<P>
<LI>For the administration server on a 2.x server installation, select
"Configure Administration" from the Server Selector page (the first page
you see when you connect to the admin server), then click on "Access
Control" and enter hostname and IP address restrictions. If you want
allow access to multiple clients, you'll have to use wildcard patterns
(separate the subsrings with a pipe character, like
"(host1|host2|host3)"); the substrings must be enclosed in parentheses, as shown.
If you're setting up hostname restrictions, you'll need to make sure that
your DNS can resolve those hostnames -- it's generally safer to stick
with IP address restrictions. When you're finished configuring this,
click "OK" then restart your admin server.<P>
<LI>For the administration server on a 1.x server installation, select
"Configure Administration Server" from the bottom of the Server Manager
page, then enter hostname and IP address restrictions. If you want
allow access to multiple clients, you'll have to use wildcard patterns
(separate the substrings with a pipe character, like
"(host1|host2|host3)"); the substrings must be enclosed in parentheses, as shown.
If you're setting up hostname restrictions, you'll need to make sure that your
DNS can resolve those hostnames -- it's generally safer to stick with IP address
restrictions.
When you're finished configuring this, click "Make These Changes" then
restart your admin server.<P>
</UL><P>
If you still find yourself getting an "Unauthorized host" error message,
you can use the above steps to open up access and try different
settings.<P>"Unauthorized Host" error when you try to connect to the admin server
<p>
If you see this error message when you try to connect to a Netscape
administration server:<P>
Internal Error
The administration server was unable to fulfill your request.
Reason: Unauthorized host
--------------------------<P>
Here is how to solve the problem and gain access. First you should
temporarily open access to all sites, and then once you make sure that
this lets you get into your administration server, try again to set up
the domain name or IP address access restrictions you want.<P>
For all 2.x/3.x Netscape servers on Windows NT and Unix, or for Commerce and
Communications servers (1.x) on Unix:<P>
<OL>
<LI>Open the "ns-admin.conf" file with a text editor. You can
find this file in the "admserv" directory under your Netscape
server root. The directory is named "admin-serv" in 3.x servers.<P>
<LI>Delete the "Hosts" and "Addresses" lines you see there (either one
of them might not be present). Don't confuse the "Addresses" line,
which you should delete, with the "Address" line, which you should NOT
delete.<P>
<LI>Save the file, then restart your administration server (on Unix run
"stop-admin" then "start-admin"; on Windows NT go into the Services
control panel and stop/start the "Netscape Admin Server" service).<P>
</OL><P>
For Commerce Server or Communications Server (1.x) on Windows NT:<P>
<OL>
<LI>Go into the registry editor. On Windows NT 4.0, run the command
"regedit". On Windows 3.51, run the command
"regedt32".<P>
<LI>Navigate down to the section
"HKEY_LOCAL_MACHINE\SOFTWARE\Netscape\Administration".<P>
<LI>Delete the "Hosts" and "Addresses" entries you see there (either one
of them might not be present). Don't confuse the "Addresses" entry,
which you should delete, with the "Address" entry, which you should NOT
delete.<P>
<LI>Close the registry editor, then restart your administration server
by going into the Services control panel and stopping then starting the
"Netscape Administration" service.<P>
</OL>
Now try again to access your administration server. Remember, the URL
will be something like "http://servername:12345/", where
"12345" is where the administration server's port number goes.<P>
If you still get the same "Unauthorized host" error, then make sure that
your "ns-admin.conf" file really doesn't contain any "Hosts" or
"Addresses" lines any more, and try stopping your administration server
again then starting it back up.<P>
Once you have access to your administration server, you can try again to
set up the access controls you want.<P>
<UL>
<LI>For the administration server on a 3.x server installation, select
"Admin Preferences" from the General Administration page (the first page
you see when you connect to the admin server), then click on "Superuser Access
Control" and enter hostname and IP address restrictions. If you want
allow access to multiple clients, you'll have to use wildcard patterns
(separate the subsrings with a pipe character, like
"(host1|host2|host3)"); the substrings must be enclosed in parentheses, as shown.
If you're setting up hostname restrictions, you'll need to make sure that
your DNS can resolve those hostnames -- it's generally safer to stick
with IP address restrictions. When you're finished configuring this,
click "OK" then restart your admin server.<P>
<LI>For the administration server on a 2.x server installation, select
"Configure Administration" from the Server Selector page (the first page
you see when you connect to the admin server), then click on "Access
Control" and enter hostname and IP address restrictions. If you want
allow access to multiple clients, you'll have to use wildcard patterns
(separate the subsrings with a pipe character, like
"(host1|host2|host3)"); the substrings must be enclosed in parentheses, as shown.
If you're setting up hostname restrictions, you'll need to make sure that
your DNS can resolve those hostnames -- it's generally safer to stick
with IP address restrictions. When you're finished configuring this,
click "OK" then restart your admin server.<P>
<LI>For the administration server on a 1.x server installation, select
"Configure Administration Server" from the bottom of the Server Manager
page, then enter hostname and IP address restrictions. If you want
allow access to multiple clients, you'll have to use wildcard patterns
(separate the substrings with a pipe character, like
"(host1|host2|host3)"); the substrings must be enclosed in parentheses, as shown.
If you're setting up hostname restrictions, you'll need to make sure that your
DNS can resolve those hostnames -- it's generally safer to stick with IP address
restrictions.
When you're finished configuring this, click "Make These Changes" then
restart your admin server.<P>
</UL><P>
If you still find yourself getting an "Unauthorized host" error message,
you can use the above steps to open up access and try different
settings.<P> -
Hi
I have 1 rootCA and 1 subordinate CA. I removed one of the locations to publish CRL and after that the ADCS service can't start. I get the warning first:
Revocation status for a certificate in the chain for CA certificate 2 for siu-SRVDC01-CA could not be verified because a server is currently unavailable. The revocation function was unable to check revocation because the revocation server was offline.
0x80092013 (-2146885613 CRYPT_E_REVOCATION_OFFLINE).
And then the error:
Active Directory Certificate Services did not start: Could not load or verify the current CA certificate. siu-SRVDC01-CA The revocation function was unable to check revocation because the revocation server was offline. 0x80092013 (-2146885613 CRYPT_E_REVOCATION_OFFLINE).
I've read many threads with similar problems but I can't find the solution. The CDP is online. I've run "certutil -url cert.cer" to verify the CDP and AIA and everything is fine. But the service is still not starting.
See this command too:
C:\>certutil -verify -urlfetch subCADC01.cer
Issuer:
CN=siu-SRVDC02-CA
DC=siu
DC=domain
Name Hash(sha1): 152a7c43f186d9179c1c3256d3a1a0af4a9df892
Name Hash(md5): b409e417a38bbe04b5800512bd94efac
Subject:
CN=siu-SRVDC01-CA
DC=siu
DC=domain
Name Hash(sha1): 5ee421b84c3b18ff134cf2e42226853d78d3409b
Name Hash(md5): e1a454692361733e45dad374dc14cae3
Cert Serial Number: 1e0000022c707c76c0a27b315700000000022c
dwFlags = CA_VERIFY_FLAGS_CONSOLE_TRACE (0x20000000)
dwFlags = CA_VERIFY_FLAGS_DUMP_CHAIN (0x40000000)
ChainFlags = CERT_CHAIN_REVOCATION_CHECK_CHAIN_EXCLUDE_ROOT (0x40000000)
HCCE_LOCAL_MACHINE
CERT_CHAIN_POLICY_BASE
-------- CERT_CHAIN_CONTEXT --------
ChainContext.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
ChainContext.dwRevocationFreshnessTime: 1 Hours, 2 Minutes, 16 Seconds
SimpleChain.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
SimpleChain.dwRevocationFreshnessTime: 1 Hours, 2 Minutes, 16 Seconds
CertContext[0][0]: dwInfoStatus=102 dwErrorStatus=0
Issuer: CN=siu-SRVDC02-CA, DC=siu, DC=domain
NotBefore: 19.03.2015 11:18
NotAfter: 19.03.2017 11:28
Subject: CN=siu-SRVDC01-CA, DC=siu, DC=domain
Serial: 1e0000022c707c76c0a27b315700000000022c
Template: SubCA
a1a8a95464c5b586da6e9b304142d59fc5a22ae0
Element.dwInfoStatus = CERT_TRUST_HAS_KEY_MATCH_ISSUER (0x2)
Element.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
---------------- Certificate AIA ----------------
Verified "Certificate (0)" Time: 0
[0.0] http://wwwca/CertEnroll/srvdc02.siu.domain_siu-SRVDC02-CA.crt
---------------- Certificate CDP ----------------
Verified "Base CRL (26)" Time: 0
[0.0] http://sharepoint.siu.no:8088/siu-SRVDC02-CA.crl
---------------- Base CRL CDP ----------------
No URLs "None" Time: 0
---------------- Certificate OCSP ----------------
No URLs "None" Time: 0
CRL 26:
Issuer: CN=siu-SRVDC02-CA, DC=siu, DC=domain
ThisUpdate: 19.03.2015 11:10
NextUpdate: 15.09.2015 23:30
e2ee543a68214f9b99dda2e9f58b1ddfc34429d1
CertContext[0][1]: dwInfoStatus=10c dwErrorStatus=0
Issuer: CN=siu-SRVDC02-CA, DC=siu, DC=domain
NotBefore: 23.09.2011 13:00
NotAfter: 23.09.2021 13:10
Subject: CN=siu-SRVDC02-CA, DC=siu, DC=domain
Serial: 60fc459ebdefa5b646a081b0c21c259d
4ea8bb95b0038c69a83c939e8a54f892cd0b5056
Element.dwInfoStatus = CERT_TRUST_HAS_NAME_MATCH_ISSUER (0x4)
Element.dwInfoStatus = CERT_TRUST_IS_SELF_SIGNED (0x8)
Element.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
---------------- Certificate AIA ----------------
No URLs "None" Time: 0
---------------- Certificate CDP ----------------
No URLs "None" Time: 0
---------------- Certificate OCSP ----------------
No URLs "None" Time: 0
Exclude leaf cert:
691f7e42f5c4a86d03b7225bf7303369ef6dcc7e
Full chain:
17e5b9477a1736c33dc0ff245e7b06de5b958c4c
Verified Issuance Policies: None
Verified Application Policies: All
Cert is a CA certificate
Leaf certificate revocation check passed
CertUtil: -verify command completed successfully.
Any clue?It looks like it is trying to get the CRL using LDAP. It is quite strange since no ldap entry is on the subordinate CA,
only an HTTP address:
<CertificateRevocationList location="TvoCache" url="ldap:///CN=siu-SRVDC02-CA,CN=srvdc02,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=siu,DC=domain?certificateRevocationList?base?objectClass=cRLDistributionPoint"
fileRef="DEEB557897A9FEA217DF83D95BF24CA54051B1CF.crl" issuerName="siu-SRVDC02-CA" />
<CertificateRevocationList deltaCRL="true" location="TvoCache" url="ldap:///CN=siu-SRVDC02-CA,CN=srvdc02,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=siu,DC=domain?deltaRevocationList?base?objectClass=cRLDistributionPoint"
I have checked that object using adsi Edit and the permissions seem ok. Also there is a value on both attributes: certificateRevocationList and deltaRevocationList.
This problem happened after I removed the LDAP entry for the "CRL Distribution point" from the sub CA properties. Should I add back the LDAP entry?
Log Name: Microsoft-Windows-CAPI2/Operational
Source: Microsoft-Windows-CAPI2
Date: 19.03.2015 14:42:07
Event ID: 11
Task Category: Build Chain
Level: Error
Keywords: Path Discovery,Path Validation
User: SYSTEM
Computer: srvdc01.siu.domain
Description:
For more details for this event, please refer to the "Details" section
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-CAPI2" Guid="{5bbca4a8-b209-48dc-a8c7-b23d3e5216fb}" />
<EventID>11</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>11</Task>
<Opcode>2</Opcode>
<Keywords>0x4000000000000003</Keywords>
<TimeCreated SystemTime="2015-03-19T13:42:07.481533500Z" />
<EventRecordID>131</EventRecordID>
<Correlation />
<Execution ProcessID="6288" ThreadID="5472" />
<Channel>Microsoft-Windows-CAPI2/Operational</Channel>
<Computer>srvdc01.siu.domain</Computer>
<Security UserID="S-1-5-18" />
</System>
<UserData>
<CertGetCertificateChain>
<Certificate fileRef="E02AA2C59FD54241309B6EDA86B5C56454A9A8A1.cer" subjectName="siu-SRVDC01-CA" />
<ExtendedKeyUsage />
<Flags value="40000000" CERT_CHAIN_REVOCATION_CHECK_CHAIN_EXCLUDE_ROOT="true" />
<ChainEngineInfo context="machine" />
<CertificateChain chainRef="{60B61582-1C3C-4B58-AE8C-70278ADEE402}" revocationFreshnessTime="P2DT21H13M20S">
<TrustStatus>
<ErrorStatus value="1000040" CERT_TRUST_REVOCATION_STATUS_UNKNOWN="true" CERT_TRUST_IS_OFFLINE_REVOCATION="true" />
<InfoStatus value="100" CERT_TRUST_HAS_PREFERRED_ISSUER="true" />
</TrustStatus>
<ChainElement>
<Certificate fileRef="E02AA2C59FD54241309B6EDA86B5C56454A9A8A1.cer" subjectName="siu-SRVDC01-CA" />
<SignatureAlgorithm oid="1.2.840.113549.1.1.5" hashName="SHA1" publicKeyName="RSA" />
<PublicKeyAlgorithm oid="1.2.840.113549.1.1.1" publicKeyName="RSA" publicKeyLength="2048" />
<TrustStatus>
<ErrorStatus value="1000040" CERT_TRUST_REVOCATION_STATUS_UNKNOWN="true" CERT_TRUST_IS_OFFLINE_REVOCATION="true" />
<InfoStatus value="102" CERT_TRUST_HAS_KEY_MATCH_ISSUER="true" CERT_TRUST_HAS_PREFERRED_ISSUER="true" />
</TrustStatus>
<ApplicationUsage any="true" />
<IssuanceUsage />
<RevocationInfo freshnessTime="P2DT21H13M20S">
<RevocationResult value="80092013">The revocation function was unable to check revocation because the revocation server was offline.</RevocationResult>
<StrongSignProperties signHash="RSA/SHA1" issuerPublicKeyLength="2048" />
<DeltaStrongSignProperties signHash="RSA/SHA1" issuerPublicKeyLength="2048" />
<CertificateRevocationList location="TvoCache" url="ldap:///CN=siu-SRVDC02-CA,CN=srvdc02,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=siu,DC=domain?certificateRevocationList?base?objectClass=cRLDistributionPoint"
fileRef="DEEB557897A9FEA217DF83D95BF24CA54051B1CF.crl" issuerName="siu-SRVDC02-CA" />
<CertificateRevocationList deltaCRL="true" location="TvoCache" url="ldap:///CN=siu-SRVDC02-CA,CN=srvdc02,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=siu,DC=domain?deltaRevocationList?base?objectClass=cRLDistributionPoint"
fileRef="58A2CDBC7A238DDD76EEFEDE354A04596F5AED71.crl" issuerName="siu-SRVDC02-CA" />
</RevocationInfo>
</ChainElement>
<ChainElement>
<Certificate fileRef="56500BCD92F8548A9E933CA8698C03B095BBA84E.cer" subjectName="siu-SRVDC02-CA" />
<SignatureAlgorithm oid="1.2.840.113549.1.1.5" hashName="SHA1" publicKeyName="RSA" />
<PublicKeyAlgorithm oid="1.2.840.113549.1.1.1" publicKeyName="RSA" publicKeyLength="2048" />
<TrustStatus>
<ErrorStatus value="0" />
<InfoStatus value="10C" CERT_TRUST_HAS_NAME_MATCH_ISSUER="true" CERT_TRUST_IS_SELF_SIGNED="true" CERT_TRUST_HAS_PREFERRED_ISSUER="true" />
</TrustStatus>
<ApplicationUsage any="true" />
<IssuanceUsage any="true" />
</ChainElement>
</CertificateChain>
<EventAuxInfo ProcessName="certsrv.exe" />
<CorrelationAuxInfo TaskId="{54E4FCD3-E70A-4024-BB81-6A053EAACE21}" SeqNumber="9" />
<Result value="80092013">The revocation function was unable to check revocation because the revocation server was offline.</Result>
</CertGetCertificateChain>
</UserData>
</Event> -
Unable to access calendar, because the web service is configured incorrectly
When attempting to access my web based calender I recieve the following error, "Unable to access calendar, because the web service is configured incorrectly." I have both the web service and iCal server configured to use SSL.
Thanks for any helpI have the same problem, with a temporary solution :
http://forums.macosxhints.com/showthread.php?t=111059
In the Server Admin - iCal Server Settings page there's a place where you specify the ports to be used, 8008 without SSL and 8443 (? out of my memory, not sure) for SSL.
The issue was caused because left of the SSL port I selected "redirect" instead of "use".
After I changed that it worked right away.
Laurent -
Published Flash module and 404 errors in the web server log
I’ve created a Presenter module, published it to my computer, and uploaded all the files to a web server. And it plays fine via the web.
The odd thing is a bunch of 404 errors in the web log:
10.1.2.104 - - [29/Jul/2009:10:36:00 -0700] "GET /repository/university/courses/3/flash/data/spk10821.1.jpg HTTP/1.1" 404 255 "-" 1166 419
10.1.2.104 - - [29/Jul/2009:10:36:29 -0700] "GET /repository/university/courses/3/flash/data/spk10821.1.jpg HTTP/1.1" 404 255 "-" 1166 419
10.1.2.104 - - [29/Jul/2009:10:36:57 -0700] "GET /repository/university/courses/3/flash/data/spk10821.1.jpg HTTP/1.1" 404 255 "-" 1166 419
In the data directory there is a file named spk10821.jpg that was generated by Presenter. The image is actually the presenter bio photo that would normally show up in the sidebar -- but no photo is there. The browser never requests the valid spk10821.jpg file, only the non-existent spk10821.1.jpg path.
Anybody know why this would be happening? I see in data/viewer.xml there is a tag for <image>spk10821.1.jpg</image> but I don’t know why Presenter would mention that file in the XML but generate a differently-named one in the publish folder.
I’m wondering if I should have the web server rewrite requests with the ".1.jpg" ending to get rid of the ".1" part so they will work.
By the way, this is with PowerPoint 2003 SP3 and Presenter 7.0.1.Hi Daniel,
I am assuming that you are using Visual Studio 2010 to target the .Net framework 4.0
Crystal Reports 2008 is not compatible with VS 2010. Use [Crystal Reports for Visual Studio 2010|Crystal Reports for Visual Studio 2010 Production Release Now AvailableCystlR%2528SAPWeblogs%253ACrystal+Reports%2529] to target .Net framework 4.0.
Deploy the application using the methods specified in the 'Deployment' section of the [CR for VS 2010 .Net SDK developer guide|http://help.sap.com/businessobject/product_guides/sapCRVS2010/en/crnet_dg_2010_en.zip].
See if you can reproduce the issue after redeploying the application as mentioned above.
Few questions-
- Is it the dev machine or production machine causing the issue?
- OS version?
- What does the application do? i.e. view, export, print report?
- Issue is with some reports or all the reports.
See if there is an image on the report, remove the image and add it as a picture object ' Insert --> Picture' from the CR designer.
Hope this helps,
Bhushan. -
Error ! Unable to continue with N1 SPS Master Server installation.
Product: Sun N1 Service Provisioning System 6.0
I am trying to install sun N1 provsioning Service software. During installation am getting this error.
ERROR! Unable to continue with N1 SPS Master Server installation.
The required OS version is 2.1, and this machine is running .
I am currently using : uname -a
Linux home.org 2.6.9-55.0.12.ELsmp #1 SMP Fri Nov 2 11:19:08 EDT 2007 i686 i686 i386 GNU/Linux
/etc/redhat-release
CentOS release 4.5 (Final)
java-version:java version "1.4.2"
Please any suggestions. Do i have to edit the installation script or install jdk-1.5.Just change your /etc/redhat-relase to something SPS is aware of...
Something like :
Red Hat Enterprise Linux ES release 3 (Taroon Update 6)
or something else (RH4)
This should work, but is NOT supported ;)
Chris -
Why do I see 'Unable to check revocation because the revocation server was offline'?
Hi,
In a lab we've been renewing our Subordinate Issuing CA cert fine for 3 iterations. On the 4th renewal attempt, when I try to perform a 'Certutil -InstallCet Cert(4).crt, I receive the message 'The revocation function was unable to check revocation
because the revocation server was offline. 0x80092013'.
Why could I perform a renewal operation successfully up to this point but cant now? What does this message really mean cause no servers are offline?
Thanks for your help! SdeDotThanks Paul.
The first error I found in the registry was the DSConfigDN was incorrect due to me copying the commands from another test system.
We didn't specifically code a CDP or AIA on the Root cause each time we renewed the Cert on the Root, on the Sub CA we published the renewed Cert to AD and added the renewed Cert and renewed CRL to the local Root store.
What follows is the RootCA registry.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CertSvc\Configuration\FlyByNightRootCA:
Keys:
CSP
EncryptionCSP
ExitModules
PolicyModules
Values:
ViewAgeMinutes REG_DWORD = 10 (16)
ViewIdleMinutes REG_DWORD = 8
CAType REG_DWORD = 3
ENUM_STANDALONE_ROOTCA -- 3
UseDS REG_DWORD = 0
ForceTeletex REG_DWORD = 12 (18)
ENUM_TELETEX_AUTO -- 2
ENUM_TELETEX_UTF8 -- 10 (16)
SignedAttributes REG_MULTI_SZ =
0: RequesterName
EKUOIDsForPublishExpiredCertInCRL REG_MULTI_SZ =
0: 1.3.6.1.5.5.7.3.3 Code Signing
1: 1.3.6.1.4.1.311.61.1.1 Kernel Mode Code Signing
CommonName REG_SZ = FlyByNightRootCA
Enabled REG_DWORD = 1
PolicyFlags REG_DWORD = 0
CertEnrollCompatible REG_DWORD = 0
CRLEditFlags REG_DWORD = 100 (256)
EDITF_ENABLEAKIKEYID -- 100 (256)
CRLFlags REG_DWORD = 2
CRLF_DELETE_EXPIRED_CRLS -- 2
InterfaceFlags REG_DWORD = 41 (65)
IF_LOCKICERTREQUEST -- 1
IF_NOREMOTEICERTADMINBACKUP -- 40 (64)
EnforceX500NameLengths REG_DWORD = 1
SubjectTemplate REG_MULTI_SZ =
0: EMail
1: CommonName
2: OrganizationalUnit
3: Organization
4: Locality
5: State
6: DomainComponent
7: Country
ClockSkewMinutes REG_DWORD = a (10)
LogLevel REG_DWORD = 3
HighSerial REG_DWORD = 0
CAServerName REG_SZ = Server03
ValidityPeriod REG_SZ = Hours
ValidityPeriodUnits REG_DWORD = c (12)
CAXchgCertHash REG_MULTI_SZ =
KRACertHash REG_MULTI_SZ =
KRACertCount REG_DWORD = 0
KRAFlags REG_DWORD = 0
CRLPublicationURLs REG_MULTI_SZ =
0: 65:C:\Windows\system32\CertSrv\CertEnroll\%3%8%9.crl
CSURL_SERVERPUBLISH -- 1
CSURL_SERVERPUBLISHDELTA -- 40 (64)
1: 8:ldap:///CN=%7%8,CN=%2,CN=CDP,CN=Public Key Services,CN=Services,%6%10
CSURL_ADDTOCRLCDP -- 8
2: 0:http://%1/CertEnroll/%3%8%9.crl
3: 6:file://%1/CertEnroll/%3%8%9.crl
CSURL_ADDTOCERTCDP -- 2
CSURL_ADDTOFRESHESTCRL -- 4
CRLPeriod REG_SZ = Hours
CRLPeriodUnits REG_DWORD = c (12)
CRLOverlapPeriod REG_SZ = Hours
CRLOverlapUnits REG_DWORD = 0
CRLDeltaPeriod REG_SZ = Hours
CRLDeltaPeriodUnits REG_DWORD = 0
CRLDeltaOverlapPeriod REG_SZ = Minutes
CRLDeltaOverlapUnits REG_DWORD = 0
CAXchgValidityPeriod REG_SZ = Weeks
CAXchgValidityPeriodUnits REG_DWORD = 1
CAXchgOverlapPeriod REG_SZ = Days
CAXchgOverlapPeriodUnits REG_DWORD = 1
MaxIncomingMessageSize REG_DWORD = 10000 (65536)
MaxIncomingAllocSize REG_DWORD = 10000 (65536)
CACertPublicationURLs REG_MULTI_SZ =
0: 1:C:\Windows\system32\CertSrv\CertEnroll\%1_%3%4.crt
CSURL_SERVERPUBLISH -- 1
1: 0:ldap:///CN=%7,CN=AIA,CN=Public Key Services,CN=Services,%6%11
2: 0:http://%1/CertEnroll/%1_%3%4.crt
3: 2:file://%1/CertEnroll/%1_%3%4.crt
CSURL_ADDTOCERTCDP -- 2
CACertHash REG_MULTI_SZ =
0: e0 bb 32 b9 bf f7 43 1d 23 e2 da b6 26 10 33 d8 00 61 e6 14
1: a8 77 c8 09 af f0 07 4c 70 51 78 80 09 26 b1 05 f5 16 e5 be
Security REG_BINARY =
Allow CA Administrator BUILTIN\Administrators
Allow Certificate Manager BUILTIN\Administrators
Allow Enroll Everyone
SetupStatus REG_DWORD = 1
SETUP_SERVER_FLAG -- 1
DSConfigDN REG_SZ = CN=Configuration,DC=TestPKI,DC=Net
AuditFilter REG_DWORD = 7f (127)
CRLNextPublish REG_BINARY = 2/28/2015 4:22 AM
CertUtil: -getreg command completed successfully.
Thanks for your help! SdeDot -
Hi All,
I am getting "An error occurred while creating a subprocess in the processing server. [RCIRAS0603]" error while opening the previous instances of the crystal report in BOCMC.
I am trying to run or schedule the report but it is always going to "PENDING STATUS".
(Previously it was resolved after restarting the server. Error : problem in ProcessingServer)
Could you please suggest.
Details :
Crystal Reports 2008
Clarity 13
Server Details:
BO XI 3.1 SP5
OS : Red Hat 6
Patch X11
Symptom
" Crystal Reports 2008/2011/2013 Processing Server fails to create child
processes after applied X11 client libraries security update on Redhat
Linux 6
" "An error occurred while creating a subprocess in the processing server.
[RCIRAS0603]" error occurs when viewing the Crystal Reports in InfoView/BIHi Rajeev,
This is a known issue you can refer to below note,
2098659 - "An error occurred while creating a subprocess in the processing server. [RCIRAS0603]" error occurs after applied X11 client libraries security update on Redhat Linux 6
Regards,
~Shree -
An error occurred while creating a subprocess in the processing server.
Hi,
I have developed a Crystal Report using CR 2008 with SAP BW as the datasource. The report is executing fine in CR 2008, but when saved to the BOE, in Infoview it is throwing the following error:
An error occurred while creating a subprocess in the processing server. [RCIRAS0603]
Did anyone face similar issue? Is there any resolution for the same.?
I have deleted the report from enterprise and saved it back, still facing this problem.
Appreciate your help in this regard.
Thanks
RaviCrystal Reports processing (CR Page) server is not operational.
There could be many reasons for this.
CR processing server traces will need to be enabled and analysed by support.
You should also be on the latest patch release.
Sometimes following steps help :
1) Stop all of the XI 3.1 processes using the ./stopservers command (ensure they are all down before proceeding)
2) Once all processes are stopped ensure the serverpids directory is empty
<install dir>/bobje/serverpids/
If any files are within the 'serverpids' folder, remove them.
3) Go to bobje/tmp
Remove any MW, .MW, mw, .mw and regss files and/or directories
4) Go to /tmp
Remove any MW, .MW, mw, .mw, and regss files and/or directories
5) start servers back up.
If this doesn't help - you'll need to open a Support Incident -
An error occurred while trying to communicate with the web browser.
I have opened a PDF in the Acrobat reader V 8.2.4. It has live links.
Only the FF browser is open.
When I click a link in the PDF, I successfully get the message 'The document is trying to connect to...' which I allow and then successfully hyperlink to the web page displayed in FF.
When I click an image in the PDF, which has a url attached to it, I get the message 'An error occurred while trying to communicate with the web browser.'
[Sorry to say in IE7 when I click the image, I hyperlink to the web page like I do when I click the link.]
Question is: What setting or other step do I need to take with FF so when I click the image in the PDF I link to a web page like I do when I click the link in the PDF?
Thank you!Your above posted system details show outdated plugin(s) with known security and stability risks.
# Adobe Shockwave for Director Netscape plug-in, version 10.2
# Adobe PDF Plug-In For Firefox and Netscape 8.2.4
# Shockwave Flash 10.0 r22
Update the [[Java]] plugin to the latest version.
*http://java.sun.com/javase/downloads/index.jsp (Java Platform: Download JRE)
Update the [[Managing the Flash plugin|Flash]] plugin to the latest version.
*http://www.adobe.com/software/flash/about/
Update the [[Adobe Reader]] plugin to the latest version.
*http://get.adobe.com/reader/otherversions/ -
Safari keeps giving and error message. " Safari can't open the web page( insert web page here) , because it can't establish a secure connetion to the server.
It only seams to have a problem with https sites.
Any help would be appreciatedThe "s" in "https" indicates the site is a secure server--usually a site that will require a password. Connections to secure servers can be blocked by parental controls. Are you using any parental controls, either through OSX's settings (in System Preferences) or third party parental control software (such as Netnanny)? If so, check the settings to make sure they will allow the connection.
-
Error retrieving data from the web server in Excel fo BPC
Hello Everybody,
I'm working with BPC v7.5 , i created some reports with the EVDRE formula and they were working perfectly.
The problem started when i created new users, that in fact have the same access profile and task profile as my user.
i started to test these new users in excel and every time i expand the report this legend appears: " EVDRE Retrying... EVDRE encountered an error retrieving data from the Web Server. Retrying in (X) Seconds...". After waiting a while a push cancel, then appears a window with the legend: Ev4excel Addin, Errors found retriening data.
The funny thing is that when i login back to my user everything works fine again, any idea what could be the problem? the other user have the same permissions.
Thanks a lot in advance!!
Nidia Olguívery strange. Normally the member access profile must be diifferent. So it is not important the task profile but the member access profile. Can you please double check ?
If you are doing a simple EVDRE with users having problems is it working or you still have problems?
Regards
Sorin Radulescu
Maybe you are looking for
-
Hi Folks, I have a sceanrio where an AXIS client needs to talk to the XI SOAP Adapter. How do I configure the SOAP adapter? I tried to access the help docs for configuring the SOAP adapter. I understand that the adapter depends upon the plain J2SE Ad
-
How to save the favorites ? How to subscribe to a page ?
Hello, I instaled version 29 a few days ago. Since that time I cannot anymore: - subscribe to a Web page as a favorite - save all my favorites Is there a solution or should I try to reinstall the previous version 28 whch was just fine ? Thanks for an
-
Allowed variables in SAP GRC RAR messages
Hi experts, I'm using SAP GRC AC 5.3. In RAR, I want to configure message 0269 in cc_messages.txt file in order to change text including the description of the mitigation control. Does anybody knows what's is this variable name ? Or even, where can I
-
Adding Posting Date in Transaction MB56
Hi all, I want to add "Posting Date" in Transaction MB56. How can I do this? Thanks Devinder
-
How do I turn a shape layer into a mask in After Effects?
How do I turn a shape layer into a mask in After Effects?