ESS testing - JCO Setups force access to only 1 client?

Similar Messages

• How to setup the guest network just access internet only (not touch in internal server)

  I had setup the AirPort Extreme in basic and guest network, but observed the guest can access to our server currently, for the security issue, we can setup the guest network to access internet only? pleae advice and thanks

  By default, a properly configured Guest network on the AirPort Extreme only allows network clients to access the Internet. No access to the "main" network's resources should be available.
  This is assuming that the AirPort Extreme is the only or "main" router in your current network configuration.

• How to setup the access duration for user

  Dear experts,
  As requrement of users, we need to setup the access duration for all users of our company . It's mean users only access into SAP on defined duration
  Ex : Working time is 8h00 am to 17h00 pm, after 17h00 pm, users cannot access into system
  Please help.
  Thanks,
  Neo

  Hi all,
  Thanks for your solution
  We want to set the access duration for end-user but sometimes, we need to flexible to allow user access to system in some special case.
  Let me detail users's requirements
  - Users can access to SAP fom 8h00 to 16h00
  - At 16h00, system will send the warning message to user to inform that system will aunomatic turn offf after 15 minutes, it's mean system will automatic kick out users after 15 minutes
  - From 16h00 to 8h00, users can not access to SAP
  - However, in some special case, we can grant the acess to system to specific user.
  Can we setup these steps on SAP ?
  Thanks,
  Neo

• How to Use synchronous RFC calls during test run for remote accesses

  there is a Setting for the usage of RFC accesses from a tested system
  using eCATT.
  'X' - Use asynchronous RFC calls during test run for remote accesses
  ' ' - Use synchronous RFC calls during test run for remote accesses
  I developed an eCATT as following :
    SAPGUI ( SAPGUI_1 , Target_system_1 ).
    SAPGUI ( SAPGUI_2 , Target_system_2 ).
  My question is how to run the eCATT in a synchronous RFC calls
  PS: I do not want to change the Target_system to the same one in the
  above script of ecatt.Because I need to run it in 2 different Target
  systems sometime.
  for example, I give a Target_system_3 when run this eCATT
  I want the SAPGUI_1 and SAPGUI_2 run the Target_system_3 but not the
  Target_system_1 or Target_system_2 .
  Could you please tell me how to make it without the changes in script?
  Edited by: Weitong Liu on Mar 24, 2011 9:44 AM

  Hi Liu,
  Weitong Liu wrote:
  > ' ' - Use synchronous RFC calls during test run for remote accesses
  This is the standard option value. Asynchronous are not the standard way and used only for very special purposes.
  Weitong Liu wrote:
  > I developed an eCATT as following :
  >   SAPGUI ( SAPGUI_1 , Target_system_1 ).
  >   SAPGUI ( SAPGUI_2 , Target_system_2 ).
  > My question is how to run the eCATT in a synchronous RFC calls
  The commands will be executed in sequence. So each call will be synchronously replayed against TS1 and TS2.
  What is you issue with this standard procedure?
  Kind regards,
  Christoph

• How to setup external access in VM?

  We need to setup a Microsoft VM and allow external access without using my company VPN as we need to test the web services integration with other vendors. could you please help how to setup external access? Thanks

  Hi Wilson,
  As a prerequisite , that VM need to access the gateway .
  It means that you need to
  create an external virtual switch then connect that VM to external virtual switch then allocate a LAN IP for VM .
  http://technet.microsoft.com/en-us/library/jj647786.aspx
  After this you may think of this VM as a physical machine in your LAN then do what you need .
  Best Regards
  Elton Ji
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• How to Setup another Access Policy 5.3

  hi everyone,
  Thank you for your help in advance. I am new to v5.3, and I am not good at VPN. So hope you can help.
  I just have my consultant to configure this correctly just today. Currently, there is only one rule for the access policy (Single Result Selection). That rule is to use Active Directory as the source for the authentication. And by default will deny any other access which is not found in the rule.
  Now... I just got an order that I need to setup a new user who will need to access to our network by using Cisco IPSec VPN (the software one). But that user is not setup in our Active Directory, and we do not want him to access our domain anyway. He only needs to access non-domain resourse...such as airconditioning controller by IP. So I am thinking to setup his account by using "internal identtity". If I do this way, what do I need to do to setup another access policy? May you give me some steps with little more details?
  OR... if it is not the way I should do...what else can I do to achieve this goal? Also, he said he could provide his static IP trying to access from.
  I have a ASA 5520.
  Thank you very much for your help.
  Takami Chiro

  Hello,
  Instead of creating a separate rule for the credentials validation you can edit the existing one that points to AD1 (only) and change it to a result on the ACS that checks both AD1 and Internal Users. In that case we need to use Identity Store Sequence. Refer to the steps below:
  On the ACS GUI > Users and Identity Stores > Identity Store Sequences > Create > Select "Password Based" and on the first box move AD1 and Internal Users to the right. Please do the same on the box at the bottom.
  The option "Internal User/Host Advanced Option: If internal user/host not found or disabled then exit sequence and treat as "User Not Found" should stay unchecked. Click submit.
  After creating the ID Store Sequence you need to change the Identity Result where you had AD1. Now the name of the ID Store will display as an available option. Please select that one and save the changes.
  With the above configuration, the expected behavior would be:
  1) ACS receives a request from the Internal User.
  2) ACS tries to validate the credentials against AD.
  3) AD returns an "User Unkown" response.
  4) ACS moves to the Internal Users.
  5 ACS successfully authenticates the user validating the provided credentials against Internal Users.
  Hope this helps.
  Regards.

• Allow access to only one device through ACS 4.2

  Hi All,
  I am running ACS4.2 and want to configure a group for access to only specific devices.
  I have setup a group in AD and matched this to a group in ACS. Under Network configuration, I've added the device I want the users to access.
  In group settings I've added the device under
  Network Access Restrictions (NAR)
  Is this correct and anything else I should be doing? When logging into the device I get authorisation failed. We have a group already setup for access to all devices which works fine, but I want this second group to be for only one device. Not sure where I'm going wrong with this.
  The authentication is all done through AD.
  Thanks

  Hi,
  If I go to Network Configuration there is already a group setup for what looks to be all devices - *.*.*.*
  See attached.
  I try to add a new group for my single device but it says it overlaps. Am I able to setup more than one group, or how do I configure a second group for just this one device?
  Basically at the moment I have an Admin ACS group in AD which has all our admins in it and have access to all devices using *.*.*.*. I now want my restricted AD group to have access to only one device...y.y.y.y but still want the other admins to have access to all devices. Is this easily achieved?
  es

• Is it possible to setup serial number format only accept 10 digits?

  Hi,
  I am using TestStand 3.0.
  Is it possible to setup serial number format only accept 10 digits?
  Also I want to input part number before start test. How to do this?
  Thanks,
  Ben

  It's the modelsupport2.prj in components\models\TestStandModels\
  There is also a preuutcallback.seq example in the shipping examples.

• Unable to see Ess Job Definition in the ESS Test UI

  Hi,
  I am defining a new ESS Job. I have created the Jobdefinition.xml in the Jdev. I have defined the parameters in In the Application defined properties. In the system properties, I have added the Sys Effective Application & Sys_product. In the Access Control section, I have added 2 roles, which are already present in the jazn-data.xml file.I select them, give the roles with Read,write,delete & execute permissions.
  I have included the resource bundle, Display Name Resource key & Description Resource Key.
  But now when I save the job, I'm getting an error.
  It is referring to the Jazn file in some other location & not referring to the one which is present in my project. In my project, I have checked out the file and able to make changes.
  So I'm unable to save the job definition.
  Also My main issue is The job I created & deployed in weblogic server is not visible in the ESS Testing UI.(http://localhost:7101/essUi/faces/EssUIShell).
  Any help will be highly appreciated.
  Thanks,

  Hi,
  The issue is not occuring now.
  I could not identify the root cause but it looks like jazn-data.xml file was locked in another view. Though I have issued check out and it also showed check out, it was not actually available for writing.
  I unbranched and destroyed the transactions in my view and re-created the view, the issue did not occur then.
  Also I have created the job definition and now it is listing in the test UI but fails in the parameters page. I followed the steps mentioned in this post.
  http://myforums.oracle.com/jive3/thread.jspa?threadID=1289852&tstart=0
  But ended up in BUILD FAILURE for some reasons.
  A how-to series will be very helpful.
  Thanks,
  Sangheetha.

• Restricting class access to only some classes.

  Hi Guys,
  I want my classes to be accessed by only my defined classes. Is it possible?
  Say I have public class defined test. I want that this class should be accessed by only the classes I want not by any other class by any mean. If somebody tries to access the class it should result in SecurityException. How can I do that???
  Thanks,
  Rajan

  maybe a package private class will do it, ie package the classes in the same package. define the particular class as protected, it will be visible to other classes in the package, the other classes maybe public.
  otherwise maybe it is an protected abstract class that the others extend?
  otherwise have this particular class take as arguments the other classes in overloaded methods?
  otherwise maybe a strategy pattern and default is a do nothing class (ie throws)?
  ...

• Load a swf-access network only

  I have created a main swf which can access local files only
  to load another swf that can access network only;
  the two swf are all in local,when I test it in Flash CS3 ,it
  is OK;but when play the main swf in my computer ,it can not load
  another swf file(access network only) ,thanks for your help!

  Im trying to accesing to the functions of Slide4.swf in http://b.elementfx.com/  from other server, in the same server i call the functions and it works, but it doesnt from other.

• Does access manager only support uid as rdn?

  I am deploying 2005q4 access manager and my directory does not use uid as the rdn for user entries. Does access manager only support uid as the rdn in user entries? I am trying to test JES with mail and calendar etc and trying to figure out how to use my data design.

  no, it can support any attribute for the naming attribute. For LDAP authentication there are usually two directories involved: the LDAP server where authentication occurs and the LDAP server where user profiles are stored.
  If you only need to authenticate against an LDAP server where the RDN is not uid (for AD is samaccountname), you simply need to change the naming attribute in the LDAP authentication module
  if you the LDAP server where user profiles is stored does not use UID, you may have a little more work on your hands. If you are using AM 7 in realm mode you simply need to create a new LDAPv3 user store configured for your needs. If you are using AM 7 in legacy mode or < AM 7 you will need to modify the DAI service and quite possibly the amUser and amConsole services.

• How To Force Access Via HTTPS/SSL?

  Forgive me if this question reveals how little I know about SSL, but... ;-)
  What is the standard, best practice way to force a web client (via browser)
  to use HTTPS/SSL? Our configuration is that the clients hit an IIS server
  first, which then uses the WebLogic proxy/forward plug-ins to the WebLogic
  server. The URLs that our clients follow come from an email we send, which
  has https:// on the front. Access seems to stay in https as long as they
  follow our links, but if the client edits the URL and changes https to
  http, the access is now without SSL. How can I restrict access to https
  only, or otherwise make sure they never use non-SSL access?
  Thanks in advance for any explanations or pointers to references, etc.
  -Paul

  Paul,
  You can disable the http port between IIS and weblogic. Configure only the SSL
  connection. That way if any request comes to weblogic as http , it will be rejected.
  Udit
  Paul Hodgetts <[email protected]> wrote:
  Thanks for the reply! What if the web server (the front end IIS server)
  also serves static web pages that are allowed to be accessed without
  HTTPS/SSL? It's primarily the requests forwarded through to JSP/servlets
  on the WebLogic server that must use HTTPS/SSL.
  Thanks,
  -Paul
  Robert Patrick <[email protected]> wrote:
  One way would be to close the HTTP port in your firewall so that non-HTTPS
  traffic cannot reach the web server...
  Paul Hodgetts wrote:
  Forgive me if this question reveals how little I know about SSL,
  but... ;-)
  What is the standard, best practice way to force a web client (viabrowser)
  to use HTTPS/SSL? Our configuration is that the clients hit an IISserver
  first, which then uses the WebLogic proxy/forward plug-ins to theWebLogic
  server. The URLs that our clients follow come from an email we send,which
  has https:// on the front. Access seems to stay in https as long
  as they
  follow our links, but if the client edits the URL and changes httpsto
  http, the access is now without SSL. How can I restrict access tohttps
  only, or otherwise make sure they never use non-SSL access?
  Thanks in advance for any explanations or pointers to references,etc.
  -Paul

• Need thread safe way to access read-only objects

  I have been working on a lot of projects and all the developers agree that they want thread safe code when called by many threads. It's rare developers are making statement like: "Data are not corrupted often so don't bother" or "It's not thread safe, but that will not often create issues".
  In TopLink client session itself is thread safe but not the persistent object themselves. Via client session, if you want thread safe access you need to put a lock on CacheKey and it's not a public/supported API. So the only thread safe access is via unit of work.
  We would like fast access to objects. We have a batch process that just need read-only access to objects. We need to read via unit of work to get thread safe access. But we just need the clone when we read via unit of work, we don't need the backup for change detection.
  However, TopLink doesn't have a mean to do that.
  Please push implementation of Bug5998333[WANT THREAD SAFE AND CORRECT ISOLATION WITH OBJECTS FROM ADDREADONLYCLASS]
  In Hibernate, by design, all access are always thread safe. Accessing read-only object just create one copy (a clone), no backup needed.
  Oracle claims that TopLink is fast. I wonder if their performance testing code is thread safe, so access objects via unit of work or they take the shortcut of accessing objects from client session. Also, reliable performance comparison should use conform in unit of work.

  As you stated the UnitOfWork offers you your desired functionality, you would just like an improvement in performance.
  In TopLink 10.1.3 (or 11g preview) you have a few options:
  - Use a UnitOfWork an live with the slight overhead of the back copies (it will only add 5-30 % overhead to your processing)
  - Instead use an isolated client session, this will not require any cloning or backup clones, but also does not allow any caching.
  - Use change tracking, TopLink added attribute-level change tracking in 10.1.3, when used the UnitOfWork does not create backup clones. In 10.1.3 it was mainly used for CMP and requires code generation, but you could implement or weave the code yourself. In TopLink 11g, change tracking is weaved by default with JPA and the weaver can also be used with POJO objects.
  I agree that having a feature to mark an object as transactionally read-only would be desirable, it seems like you have logged the enhancement. You could try escalting the enhancement through Oracle support, but since it is an enhancement and not a bug, it is probably beyond what support offers. You may wish to investigate services, or potentially join the open source Eclipse EclipseLink project which the next version of TopLink is being developed under and take part in the feature yourself.

• Setup Guest access to WLAN

  I have 8 Cisco 1230AP's providing access to my LAN for laptop users. The encryption is via WPA. I now need to setup unencrypted access to the internet for guests/visitors - keeping them away from my LAN and internal network. How can I do this? Do I just setup a 2nd SSID and allow access to be wide open or do I need to implement some type of VLAN? My switch is unmanaged and it is not a Cisco brand. Thanks for your help...

  I saw your other post and you can ignore that, since you have an unmanaged switch. No matter what you do, all traffic will be dumped out the ap to you lan. This is due to the fact that you can't create a trunk between the ap and the switch which will allow you to have multiple vlans. If you only need guest access in a certain location, you can just add an access point and set that up to go out to a dsl or broadband connection.