EUS password authentication in sql developer failing with username/password
We have recently changed to use Enterprise User Security (EUS) for our client authentication (password global authentication).
This is working fine but we are encountering an issue with SQL Developer whereby we can't logon using our EUS details, it simply returns the following on the logon screen:
Status : Failure - Test failed: ORA-01017: invalid username/password; logon denied
Logging on via sql plus client and server software and other 3rd party tools like pl/sql developer works correctly.
It appears to be an issue with sql developer itself.
We are using the latest Production release of sql developer 2.1
Does anyone have any ideas?
This is an issue for
Edited by: david butler on Jan 14, 2010 10:45 AM
Further to this, I have now found a suitable resolution to this that doesn't require an external client.
There is a jdbc setting that will allow you to use EUS password authentication.
Add the jdbc line option (below) in the sqldeveloper.conf file (backup the sqldeveloper.conf file first).
AddVMOption -Doracle.jdbc.thinLogonCapability=o3
The sqldeveloper.conf file can be found wherever you have installed sqldeveloper, under <INSTALL_HOME>\sqldeveloper\bin\sqldeveloper.conf.
After you add this option, restart SQL Developer and you should be able to use your EUS username / password to authenticate via SQL Developer.
Similar Messages
-
SQL Developer fails to access update center via http proxy
Hi,
I've configured HTTP Proxy exactly like MS-IE. Anyway, sql developer fails to access web. This is the error message:
java.io.IOException: Server returned HTTP response code: 407 for URL: http://htmldb.oracle.com/pls/otn/f?p=38606:2
at sun.net.www.protocol.http.HttpURLConnection.getInputStream(HttpURLConnection.java:1149)
at oracle.ideimpl.webupdate.CheckMasterListRunnable.run(CheckMasterListRunnable.java:131)
at java.lang.Thread.run(Thread.java:595)
Using the same URL in IE gives the following result:
<?xml version="1.0" encoding="UTF-8" ?>
- <centers xmlns="http://xmlns.oracle.com/jdeveloper/update/master">
- <center id="oracle.sqldeveloper.webupdate.internal">
<url>http://htmldb.oracle.com/pls/otn/f?p=raptor:internal</url>
<name>Internal Update Cetner</name>
<domain>.*\.us.oracle.com</domain>
</center>
- <center id="oracle.sqldeveloper.webupdate.otncenter">
<url>http://htmldb.oracle.com/pls/otn/f?p=raptor:center</url>
<name>Official Oracle Extensions</name>
</center>
</centers>
What's wrong?
I'm using sql developer 1.0.0.14.22.
MartinGiven that the update centre worked for me with proxy authentication in v1422 (and Production v1467 - I would recommend that you upgrade to this with a full download if you can't sort out your proxy issues), I would assume that it is not a SQL Developer bug.
Are you still getting HTTP 407 errors when you have entered your username and password?
Unfortunately, I don't know what username/password expectations a RADIUS based proxy authentication would expect. The only thing I can suggest to try is to explicitly put your username/password in your MS-IE proxy setup and see if you can still access the http://htmldb.oracle.com/pls/otn/f?p=38606:2 URL through IE. If this fails through IE, the username/password that you are supplying are not what the proxy is expecting. -
Using Proxy User Authentication in Sql Developer
Hi!
Is it possible to use proxy user authentication in SQL Developer? I'm thinking that if I'm clever enough, I can craft a custom jdbc URL that will allow my users to proxy authenticate into my Oracle 10gR2 database while using SQL Developer.
Unfortunately, I'm not feeling all that clever. ;)
Can anybody help me out here? Is it even in the realm of possibility?
Thanks!
Kevin Ferlazzo
DBA
VA Department of Juvenile JusticeI found the possibility that proxy authentication of both accounts can be enforced:
SQL> alter user appuser grant connect through personaluser AUTHENTICATION REQUIRED;
I guess that this is the motivation for implementing the 2-session proxy connection method in SQL Developer.
Regards,
Martin -
I can happily connect my home computers and phone to sync and I have confirmed they sync between themselves. However, my work computer has recently stopped being able to sync where it has previously been fine for well over a year. I am on the latest version of sync and Firefox 35.0.1 (both at home and work).
When I try to reconnect to sync I am directed to the "Sign in to continue" page. It has my correct email address/account name. I enter my password (clicking "Show" to make sure it's correct) but then it always fails with "Incorrect password" in a red banner at the top. I have checked the password is correct and logged out and back in from home using the same password so I know that is correct. I have tried this logged in to work via remote desktop so I could do both at the same time to make sure there isn't just a prevailing sync server problem.
Obviously my work computer is behind a proxy/firewall. I have recently had to add a new certificate as a result of proxy changes to get internet connectivity working. Anecdotally, I think sync stopped working at a similar time - but it's always easy to remember these things differently when you're looking for a solution. So this could be a red herring.
Your help in getting this fixed would be much appreciated!Thanks for your reply.
i've deleted all cookies, although I don't really understand how that relates. I have also spoken to our sysadmin who says we don't block access to firefox accounts per se, we do block all file-esque uploads. However, I am not sure this would make any difference to the exact problem I am seeing which is that I can't sign in to my firefox sync account. But maybe signing in to this account is different to a "normal" account - maybe there is more of a two way handshake which relies on sending some encrypted data which appears to our proxy like a file being uploaded out of the company.
I got a slightly different error on my latest clear down and retry, in that the sign in just waited forever (overnight) without success.
Any further help gratefully received... -
Hi,<BR>While adding/Changing member in planning it gives the error "The SQL operation failed with an error code: 0" and not allowing any of the changes. I am not able to open the forms giving the error as "Fiscal Days Input - is invalid". Interestingly one form was opening, when the Page selection is changed it also started giving error as like "Fisacal Days Input(form name) - is invalid check log for details". <BR>Pls advice us that what is this error and how to resolve this.<BR><BR>And Which log is to be referred for the details.<BR><BR>Thanks<BR>Ravi
If a form is invalid it generally means that one of the dimension references is missing.<BR><BR>Can you get in to edit the form?<BR>If you can, see if you can preview it. I suspect you will not be able to.<BR><BR>If not, check all dimension boxes have at least one member against them.<BR>If you have multiple rows and/or columns check all of them too.<BR><BR>I've had a couple of forms in dev "drop" a dimension reference but only once or twice so not enough to reproduce or find out what is causing it. Each time I got the "form invalid" error message and managed to fix it.<BR><BR>Hope this helps.<BR>
-
Dear all,
I am looking to setup the use of active directory userid/password authentication instead of SAP R/3 User/Password for digital signature. We SSO to the backened ABAP AS via an SAP NW Portal to which SPNEgo kerberos authentication is setup. Today we specify R3 user id/password to digitally approvae a lot release. The idea is to have users maintain one AD password and don't have to remember the R/3 password anymore and also our Security team to avoid password maintenance.
I know there are 3 options for digital signature and
System signature with authorization by user ID and password (We use this currently)
Digital User signature with verification - (We would like to use this with AD userid/password, so the system still ask the users their AD userid/password for the authentication when they try to "sign" a document.)
User signature without verification
Do you think there is a way to configure the system in order to ask and check the active directory userid/password instead of SAP R/3 password? Where can I found documentation about it ?
I have several different versions of AS ABAP starting from NW 7.02 to NW 7.31.
My active directory is based on Windows 2008.
Thanks in advance!!
DheeActually enabling Kerberos for SSO purposes and enabling Kerberos for digital signatures are two different topics although the latter is because of the former. I'm interested in the topic as well and I'm currently looking at different options. SAP provides a BAdI for the digital signature API which can be used for external authentication but they do not provide the solution to invoke Kerberos authentication based on username and password. SAP provides a semi solution with NWSSO 2.0 SP2 which works only on Windows with classic dynpros meaning SAP GUI for Windows is assumed. The solution is based on an ActiveX component which does the actual Kerberos authentication using the Secure Login Client which is part of the NWSSO suite. Extending that implementation to non-Windows and non-GUI applications would require some sort of web enabled service that could be used to authenticate the user with username and password. In case authentication is successful, a Kerberos token would be returned to SAP which would then be validated. All the required pieces are there since SAP has Kerberos support now in both stacks of the NetWeaver Application Server, some bits are still missing though which leaves customers looking at 3rd party or custom solutions.
-
Ical problem already 3 weeks after the update, get the message every time username or password is incorrect as I do with this password and username in mobileme bowl. now get the message
The server responded with \ 'HTTP/1.1 409 Conflict \'.
can someone help meIcal problem already 3 weeks after the update, get the message every time username or password is incorrect as I do with this password and username in mobileme bowl. now get the message
The server responded with \ 'HTTP/1.1 409 Conflict \'.
can someone help me -
Securing a BPEL Process with username/password in 10g
securing a BPEL Process with username/password in 10g
use OWSM gateways..
create a gateway and define your policy in the gateway -
Hi .
I use an external database ( Oracle database 11g release 11.2.0.1.0) to authenticate user with OBIEE 11.1.1.7.
I configured SQL Authentication provider as my provider ,It works OK with :enabled Plaintext Passwords Enabled option and password is stored as plain text.
But It fails when I disable this option and want to authenticate with hashed passwords.It gives Authenticate Denied error.
In Provider Specific tab there are some parameters which might need changes:
1-Password Algorithm:??
2-Password Style:??
3-SQL Get Users Password:SELECT U_PASSWORD FROM USERS WHERE U_NAME = ?
How can I find correct values for options 1 and 2 form my external database?
And Is it need to rewrite query in option 3 ?
Please find attach files.Hi,
I too faced same issue when I was installing OBIEE 11.1.1.7.0 on windows7 64bit.
Please refer the below links.
http://satyaobieesolutions.blogspot.in/2013/05/configuration-action-creating-domain.html
http://satyaobieesolutions.blogspot.in/2013/05/obiee-111170-simplesoftware-installation.html
http://satyaobieesolutions.blogspot.in/2012/06/obiee-11.html
Hope this help's
Thanks,
Satya -
Logon failure with username/password authentication in WLE 5.1
Hi,
I have WLE 5.1 configured and running on a Win2K system. I am able to
build and run the simpapp sample program. I am also able to build the
interceptor_cxx sample and run with all interceptors other than the
security interceptor. What I realised in this case was that the
PersonQueryClient did not perform any login of a user from which the
security interceptor could extract user ID information (have I missed
something? I am a WLE and CORBA newbie) so I modified the ubb config
file to define SECURITY as USER_AUTH and add the AUTHSVC, modified
personqueryclientc.cpp to get access to the SecurityLevel2 principal
authenticator, built the app, created a user with the tpussradd command,
and ran the app (the AUTHSVC successfully starts).
The Tobj::AuthType returned by the get_auth_type method of the
PrincipalAuthenticator is Tobj::TOBJ_APPAUTH as I expect. I call the
logon method with the parameters (user_name, argv[0], sys_password,
password, 0) where user_name is the same as the user I created with the
tpusradd command, argv[0] is personqueryclient (I've tried tpusradd'ing
the user both with the "-c personqueryclient" argument and without),
sys_password is the password I specified when tmloadcf was run against
the modified ubb config file, password is the password I specified when
I ran tpusradd. The logon always fails returning
Security::SecAuthFailure. In the ULOGxxxx file the following message is
displayed:
181605.NUMBAT!TMSYSEVT.2180: LIBTUX_CAT:1484: WARN: .SysClientSecurity:
User tbartley on SITE1 authentication failure
I've tried running in the following manners all with the same result:
1. With or without the security_cxx interceptor registered
2. With the user in or not in a group
3. With the the user created using the "-c personqueryclient" arg to
tpusradd or not
If I change the security level down to APP_PW then everything works and
the security_cxx interceptor sees a client name of personqueryclient and
a username of personqueryclient. The logon fails if I use a sys_password
other than the one specified to tmloadcf and succeeds if I use the
correct password.
Can anyone tell me what I might be doing wrong in the username/password
authentication case?
Here's the code I inserted to personqueryc.cpp to perform the logon:
// Get SecurityCurrent object
CORBA::Object_var var_security_current_oref
= bootstrap.resolve_initial_references("SecurityCurrent");
SecurityLevel2::Current_var var_security_current_ref =
SecurityLevel2::Current::_narrow(var_security_current_oref.in());
// Get the principal authenticator
SecurityLevel2::PrincipalAuthenticator_var
var_principal_authenticator_oref =
var_security_current_ref->principal_authenticator();
char user_name[100] = "";
char password[100] = "";
char sys_password[100] = "";
// Narrow to a BEA Principal Authenticator
Tobj::PrincipalAuthenticator_var v_bea_pa =
Tobj::PrincipalAuthenticator::_narrow(var_principal_authenticator_oref.in());
// See what level of logon has been turned on
Tobj::AuthType auth_type = v_bea_pa->get_auth_type();
cout << "Auth type: ";
switch (auth_type) {
case Tobj::TOBJ_APPAUTH: cout << "TOBJ_APPAUTH"; break;
case Tobj::TOBJ_SYSAUTH: cout << "TOBJ_SYSAUTH"; password[0] = '\0';
break;
case Tobj::TOBJ_NOAUTH: cout << "TOBJ_NOAUTH"; break;
default: cout << "TOBJ_<unknown>"; break;
cout << endl;
cout << "Username: ";
cin >> user_name;
switch (auth_type) {
case Tobj::TOBJ_APPAUTH: {
cout << "User password: ";
cin >> password;
// fall through
case Tobj::TOBJ_SYSAUTH: {
cout << "App password: "; cin >> sys_password;
break;
default: {
break;
// now that we've got all the data necessary, logon
Security::AuthenticationStatus status =
v_bea_pa->logon(user_name,
argv[0],
sys_password,
password,
0); // user data
cout << "Logon result: ";
switch (status) {
case Security::SecAuthSuccess: cout << "SecAuthSuccess"; break;
case Security::SecAuthFailure: cout << "SecAuthFailure"; break;
case Security::SecAuthContinue: cout << "SecAuthContinue"; break;
case Security::SecAuthExpired: cout << "SecAuthExpired"; break;
default: cout << "SecAuth<unknown>"; break;
cout << endl;
if (status != Security::SecAuthSuccess) {
cerr << "Invalid password." << endl;
exit(1);
Here are the entries I added to the ubb config file:
*RESOURCES
SECURITY USER_AUTH
AUTHSVC AUTHSVR
*SERVERS
AUTHSVR SRVGRP=SYS_GRP SRVID=6 RESTART=Y GRACE=600 MAXGEN=2 CLOPT="-A"
I do not have the WLE Security Services installed (i.e. the package
that provides SSL and crypto). Is this required? It's not clear to me
from the documentation if this is required for username/password based
authentication or not.
Thanks for any help,
Tim BartleyHi Michael
I am using SSL in my application. So that it asks for the certificate username
and password while startup. But now i want to mention the username and password
in weblogic.properties file itself. So that the client need not have to provide
the username and password everytime. I am using weblogic server 5.1 version.
How do i do this?
Hope my question is clear. Please help.
with regds
siva
Michael Young <[email protected]> wrote:
Hi.
It's not 100% clear to me what you are asking for. Do you want authentication
turned off for
your application? That will certainly turn off prompting for authentication
information. You
can set your ACL for your application (in your properties file) to allow
everyone to execute
it. Something like:
weblogic.allow.execute.<myApplication>=everyone
But maybe you want some kind of silent authentication so that not everyone
can execute your
app? I suppose you could pass authentication info in a cookie. I really
don't know enough
about your application, though.
I suggest you post this question in weblogic.developer.interest.security
- you have a better
chance of getting an answer there for security related questions.
Hope this helps.
Michael
siva wrote:
Hi all,
I have the following requirements. I have an application which asksfor the authentication
information like username and password at first. The application isrunning in
weblogic5.1 server. Is there a way where in weblogic.properties file,i mention
the username and password so that the application will not ask forin the browser.
please help. It's urgent.
with regds
siva--
Developer Relations Engineer
BEA Support -
Select from in SQL Developer fails - SQL*Plus works
Hello All,
I've got the HS connection to MySLQ working correctly and most of the requirements I have with respect to the data is working.
However, i"m only able to test my procedures and functions in SQL*PLus. IN SQL Developer 4.0.0.12 there is always a problem and query results are never displayed.
Thanks in advance for any advice.
Sincerely
JSActually Mike,
The white spaces are appended to the end of the resulting string. I've included the NLS setting for bother Oracle adn MySQL as well as my odbc.ini file
select '"'|| "User" ||'"' as Username from "user"@MYODBC5;
Results (there is white spaces added right after the username, as the result shoudl have been "intm","root" as opposed to "intm "
===============================================================================================================
USERNAME
"intm
USERNAME
"root
NLS _SETTINGS ORACLE
==============================================================
Oracle:
======
NAME
VALUE$
NLS_LANGUAGE
AMERICAN
NLS_TERRITORY
AMERICA
NLS_CURRENCY
$
NLS_ISO_CURRENCY
AMERICA
NLS_NUMERIC_CHARACTERS
NLS_CHARACTERSET
AL32UTF8
NLS_CALENDAR
GREGORIAN
NLS_DATE_FORMAT
DD-MON-RR
NLS_DATE_LANGUAGE
AMERICAN
NLS_SORT
BINARY
NLS_TIME_FORMAT
HH.MI.SSXFF AM
NAME
VALUE$
NLS_TIMESTAMP_FORMAT
DD-MON-RR HH.MI.SSXF
F AM
NLS_TIME_TZ_FORMAT
HH.MI.SSXFF AM TZR
NLS_TIMESTAMP_TZ_FORMAT
DD-MON-RR HH.MI.SSXF
F AM TZR
NLS_DUAL_CURRENCY
$
NLS_COMP
BINARY
NLS_LENGTH_SEMANTICS
BYTE
NLS_NCHAR_CONV_EXCP
FALSE
NAME
VALUE$
NLS_NCHAR_CHARACTERSET
AL16UTF16
NLS_RDBMS_VERSION
11.2.0.2.0
NLS _SETTINGS MYSQL
==============================================================
Oracle:
======
NAME :
+--------------------------+----------------------------+
| Variable_name | Value |
+--------------------------+----------------------------+
| character_set_client | utf8 |
| character_set_connection | utf8 |
| character_set_database | latin1 |
| character_set_filesystem | binary |
| character_set_results | utf8 |
| character_set_server | latin1 |
| character_set_system | utf8 |
| character_sets_dir | /usr/share/mysql/charsets/ |
+--------------------------+----------------------------+
===========================================================ODBC INI
[myodbc5]
Driver = /usr/lib64/libmyodbc5a.so
Description = Connector/ODBC 5.3.4 Driver DSN
SERVER = 127.0.0.1
PORT = 3306
USER = intm
PASSWORD = *********
DATABASE = mysql
OPTION = 0
TRACE = OFF -
SSIS custom execute sql task : Failed with error
I am developing a custom SSIS task for running sql task. But it fails with error - I'm trying to set the resultsetbinding to be used by next task in workflow.
Error: 0xC0014054 at CustomSSISTask: Failed to lock variable "User::id" for read access with error 0xC0010001 "The variable cannot be found. This occurs when an attempt is made to retrieve a variable from the Variables collection on a container
during execution of the package, and the variable is not there. The variable name may have changed or the variable is not being created.".
Error: 0xC002F210 at CustomSSISTask, Execute SQL Task: Executing the query "SELECT id FROM sysobjects WHERE name = 'sysrowsets..." failed with the following error: "Failed to lock variable "User::id" for read access with error 0xC0010001
"The variable cannot be found. This occurs when an attempt is made to retrieve a variable from the Variables collection on a container during execution of the package, and the variable is not there. The variable name may have changed or the variable is
not being created.".
". Possible failure reasons: Problems with the query, "ResultSet" property not set correctly, parameters not set correctly, or connection not established correctly.
Warning: 0x80019002 at CustomSSISTask: SSIS Warning Code DTS_W_MAXIMUMERRORCOUNTREACHED. The Execution method succeeded, but the number of errors raised (3) reached the maximum allowed (1); resulting in failure. This occurs when the number of errors reaches
the number specified in MaximumErrorCount. Change the MaximumErrorCount or fix the errors.
Task failed: CustomSSISTask
Here is the code sample I'm trying ,
public override DTSExecResult Execute(Connections connections, VariableDispenser variableDispenser,
IDTSComponentEvents componentEvents, IDTSLogging log, object transaction)
MessageBox.Show("testing:");
try
// Add the SQL Task
Package package = new Package();
package.Executables.Add("STOCK:SQLTask");
Microsoft.SqlServer.Dts.Runtime.Variable variable = package.Variables.Add("id", false, "User", 0);
// Get the task host wrapper
TaskHost taskHost = package.Executables[0] as TaskHost;
// Get the task object
ExecuteSQLTask task = taskHost.InnerObject as ExecuteSQLTask;
// Set core properties
task.Connection = connections[0].Name;
task.SqlStatementSource = "SELECT id FROM sysobjects WHERE name = 'sysrowsets'";
//task.SqlStatementSource =
// "SELECT PersonID from [AmalgaSpeedTableData].[SpeedTable].[DimPerson] where PersonIntID = '1'";
task.SqlStatementSourceType = SqlStatementSourceType.DirectInput;
// Add result set binding, map the id column to variable
IDTSResultBinding resultBinding = task.ResultSetBindings.Add();
//IDTSResultBinding resultBinding = task.ResultSetBindings.GetBinding(0);
resultBinding.ResultName = "variable";
resultBinding.DtsVariableName = variable.QualifiedName; //"User::id";
task.Execute(connections, variableDispenser, componentEvents, log, transaction);
catch (Exception ex)
throw new ArgumentException(ex.Message);
return DTSExecResult.Success;
It doesnt throw any exception but custom task fails.
Later I will be also using parametersetbindings to pass some input parameters to this task , since I'm stuck for out param - blocked moving ahead.
Any help would be greatly appreciated.
Thanks
SangHi, could you check whether the following threads help:
http://stackoverflow.com/questions/5787621/ssis-package-failed-to-locak-variable-for-read-access-with-error-0xc0010001
http://social.msdn.microsoft.com/Forums/sqlserver/en-US/40ee7eff-5ec1-426f-a1a8-ab85b40b51aa/error-variable-can-not-be-found-while-executing-package-from-the-net-code?forum=sqlintegrationservices
Regards, Leo -
Password issue for SQL Developer
Hi All,
I have downloaded the SQL developer and I am facing the issue with the username and Password while creating the new connection. Please let me know what is the username and
password.
Thanks in advance.
Best regards,
PavanPlease post your question in the appropriate forum.
Database - General
General Database Discussions
SQL Developer
SQL Developer -
Change Password in Oracle SQL Developer
We have a trigger/stored procedure that is run whenever a password is changed to verify it follows the company's password policy. This requires a combination of letters, numbers, and symbols.
alter user SOMEUSER identified by "TIE4CAT8#";
It fails in SQL Developer, but it works in sqlplus.
How do I change my Oracle password that is complex in SQL Developer?As the guys have indicated, this does work in sqldev, but we do not enforce anything on the user wrt password policies. These are handled in the database.
Are you saying, your code does not run thru sqldev? ie you're doing something like this
BEGIN
change_password('old password', 'new password', 'new password');
END; -
Connect using OS authentication in SQL Developer
Hi,
We are using OS authentication to connect on Oracle, if I use SQL*PLUS I use only sqlplus /@instance but someone knows how can I connect on Oracle using OS authentication ? I tried to use / or blank username in SQL Developer and it requests an user and password...
Thanks in advance,Thanks for your answer Raghu, when this feature will be implemented it will help a lot to keep security.
Regards,
Joao
Maybe you are looking for
-
My iTunes won't open. When I click on the icon nothing happens
My iTunes won't open. When I click on the icon nothing happens. It doesn't bounce or anything. When i plug my iPhone into my macbook nothing happens either. I recently updated my operating system to the Yosemite. Everything worked fine until i update
-
I recently suffered a crash in captivate. Now the cptx file I was working on won't open. I've read about using dcashe utility but our ICT dept won't allow me to download and install it. Is there any other way to fix the file?
-
I plugged my ipod into my computer and all my music disappeared
I'm not sure what happened but I plugged my ipod into my computer to have the new music loaded onto it and it took all my old music off. It also wont allow me to even put the music on my computer onto my ipod. I didnt change the settings on anything,
-
My MBP is real slow, lots of spinning beach ball. Why?
I took it to the genius bar on Michigan Avenue in Chicago, but a sharp young man there didn't help. Are there tools on board here that I can use to find the problem? Thanks, Jerry
-
NullPointer after Reimport Model
Hi, I have reimpoert a model to add a new output-parameter. So I made a reimport. Than a DC-Build and than I edit my model binding to add the new parameter in my context. But now I get a Nullpointer-Exception. It seems, that it makes the model-execut