Find who is blocking an user with wrong password...

Similar Messages

• Connect DB - SYS user with wrong password

  Hi All,
  A strange thing I have noticed with SYS user since Oracle 9i(never worked on earlier versions) is that I can connect to the SYS user as SYSDBA with wrong password as well! Please guide how to prevent this...
  (I have searched for a solution online but was unable to find any :( )
  SQL> CONN SYS/AAA@TEST AS SYSDBA
  Connected.
  SQL> DISC
  Disconnected from Oracle Database 11g Enterprise Edition Release 11.2.0.1.0 - Production
  With the Partitioning, OLAP, Data Mining and Real Application Testing options
  SQL> CONN SYS/BBB@TEST AS SYSDBA
  Connected.
  SQL>
  SQL> DISC
  Disconnected from Oracle Database 11g Enterprise Edition Release 11.2.0.1.0 - Production*009*

  There is nothing wrong and nothing should be, IMO, prevented.
  When you log in to the server as an user in the dba group (Unix) or the ora_dba group (Windows), you are a power user and O/S authentication applies to you, and you don't need a password.
  Logging in as owner of the software (oracle) all the time, what many DBAs do, is a bad idea anyway, as you can remove anyufile on O/S level.
  Strategies to prevent this:
  - make sure your account isn't in the groups I mentioned
  or
  - disable O/S authentication by editiing sqlnet.ora
  Both procedures are documented.
  Finally please note anyone who has root access can get around this easily.
  Sybrand Bakker
  Senior Oracle DBA

• How to migrate Apex users with existing passwords.

  Hi Guys,
  Our apex env finally getting a upgrade from 3.1.1 to 4.1.1 (I know, it's been overdue for years)
  Some of our apps use 'Application Express' authentication, and have few hundreds users in Apex (and users belong to diff user groups).
  The issue is, the 4.1.1 env is set up on a brand new server and DB, we want to migrate these users with their existing passwords from the 3.1.1 env.
  I tried exporting the workspace, and the users are exported as below,
       begin
       wwv_flow_fnd_user_api.create_fnd_user (
       p_user_id => '10592934818556549584',
       p_user_name => 'TEST',
       p_first_name => 'a',
       p_last_name => 'b',
       p_description => '',
       p_email_address=> '[email protected]',
       p_web_password => 'E92903DEAD135E6E86BD6B64544D2BD9',
       p_web_password_format => 'HEX_ENCODED_DIGEST_V2',
       p_group_ids => '10592435401495787816:',
       p_developer_privs=> '',
       p_default_schema=> 'TEST',
       p_account_locked=> 'N',
       p_account_expiry=> to_date('201212040000','YYYYMMDDHH24MI'),
       p_failed_access_attempts=> 0,
       p_change_password_on_first_use=> 'Y',
       p_first_password_use_occurred=> 'N',
       p_allow_access_to_schemas => '');
       end;
  when I run this in 4.1.1 I had to modify it to the new format as below,
  also changed the p_group_ids to new user group but kept the password the same
       begin
       wwv_flow_fnd_user_api.create_fnd_user (
       p_user_id => '',
       p_user_name => 'TEST',
       p_first_name => 'a',
       p_last_name => 'b',
       p_description => '',
       p_email_address=> '[email protected]',
       p_web_password => 'E92903DEAD135E6E86BD6B64544D2BD9',
       p_web_password_format => 'HEX_ENCODED_DIGEST_V2',
       p_group_ids => '1399416797653068:',
       p_developer_privs=> '',
       p_default_schema=> 'TEST',
       p_account_locked=> 'N',
       p_account_expiry=> to_date('201209041006','YYYYMMDDHH24MI'),
       p_failed_access_attempts=> 0,
       p_change_password_on_first_use=> 'Y',
       p_first_password_use_occurred=> 'N',
  p_allow_app_building_yn=> 'N',
  p_allow_sql_workshop_yn=> 'N',
  p_allow_websheet_dev_yn=> 'N',
  p_allow_team_development_yn=> 'N',     
  p_allow_access_to_schemas => '');
       end;
  the result was that the user is created fine, but the password is not valid.
  Anyone knows how to export apex users with existing password to a new server?
  Thanks.
  Edited by: Danny on 3/12/2012 20:51

  Hi,
  Not sure why you say
  when I run this in 4.1.1 I had to modify it to the new format as below, If you just run the workspace export sql it should create the Workspace, Groups and Users
  The signature of the procedure is below. See the highlighted lines.
  procedure create_fnd_user (-- Description:
  -- This procedure allows for programatic and bulk creation of users.
  -- Example:
  -- From sqlplus logged in as the privileged flows user, first
  -- ensure that the security group id is set properly, then create
  -- your users.
  <b> -- begin wwv_flow_security.g_security_group_id := 20; end;</b>
  -- begin
  -- for i in 1..10 loop
  -- wwv_flow_fnd_user_api.create_fnd_user(
  -- p_user_name => 'USER_'||i,
  -- p_email_address => 'user_'||i||'@mycompany.com',
  -- p_web_password => 'user_'||i) ;
  -- end loop;
  -- commit;
  -- end;
  -- Arguments:
  -- p_user_id numeric primary key of user
  -- p_user_name the username the user uses to login
  -- p_first_name informational only
  -- p_last_name informational only
  <b> -- p_web_password the unencrypted password for the new user</b>
  -- p_group_ids A colon delimited list of group IDs from the table wwv_flow_fnd_user_groups
  -- p_developer_privs A colon delmited list of developer privs, privs include:
  -- ADMIN:BROWSE:CREATE:DATA_LOADER:DB_MONITOR:EDIT:HELP:MONITOR:SQL:USER_MANAGER
  -- p_default_schema A valid oracle schema that is the default schema for use in browsing and
  -- creating flows
  -- p_allow_access_to_schemas A colon delimited list of oracle schemas that the user is allowed to
  -- parse as. If null the user can parse as any schema available to the company.
  -- This does not provide privilege it only resticts privilege, so listing a schema
  -- does not provide the privilege to parse as a schema, it only restricts that user
  -- to that list of schemas.
  -- p_attributes_XX These attributes allow you to store arbitary information about a given user.
  -- They are for use by flow developers who want to extend user information.
  <b> -- p_web_password_format Identifies the format of the web password.
  -- The range of values is CLEAR_TEXT, HEX_ENCODED_DIGEST, DIGEST </b>
  -- p_person_type "E" marks the user as external
  -->
  Note there is no HEX_ENCODED_DIGEST, DIGEST_V2 listed. It may work, but not obvious from the signature.
  Cheers,

• HT1349 because of freequent trying with wrong passwords by children, it is coming as disabled, contact I tunes

  because of freequent trying with wrong passwords by children, it is coming as disabled, contact I tunes.  what I am to do. I am not able to find out the serial no. of the product.  The product I have is 8GB Ipod, when it was introduced newly in Australia, four years back

  It wants you to connect it to your computer's iTunes, not to contact iTunes. If it's disabled then connect the iPod to the computer that you normally sync to and you should then be able to reset the iPod and re-sync your content to it (http://support.apple.com/kb/HT1212) - you may need to put the iPod into recovery mode : http://support.apple.com/kb/ht1808

• How many times with wrong password will phone lock out

  how many times with wrong password will phone lock out

  Depends on whether you have it set to erase data after 10 attempts. Otherwise it will lock out for a certain amount of time and then you can try again before it locks out again. However, if you cannot remember the passcode, you will have to restore the phone on the computer you normally sync with http://support.apple.com/kb/HT1212.

• Need MBAM 2.5 Helpdesk and selfservice sites to open for authenticated users with no password prompt

  I Need MBAM 2.5 Helpdesk and self service sites to open for authenticated users with no password prompt. I just cant seem to get this to work. The account used in the application pool has its SPN registered and delegation set. I can use that account to login
  to the sites but am prompted for a password. That said anyone I add into the helpdesk users group cannot negotiate the sites. Only the account I have set in the application pool can. I want domain authenticated users that have been added to the MBAM Help Desk
  Users group to negotiate the site with NO password challenge at all.
  tconners

  This generally means that your SPN is not set up correctly.  Let's say the web server you installed the SSP on is lance.contoso.com and your app pool creds are corp\lance.  You should set an SPN similar to setspn -s http/lance.contoso.com
  corp\lance.  In your browser, you should now be able to access the SSP without prompts.  However, if you still get prompted, generally that means that your local intranet zone in IE does not have an entry for *.contoso.com.  Since you are entering
  an FQDN in your browser, IE interprets the "." to mean "on the internet" which breaks Kerberos authentication.  By adding *.contoso.com to your local intranet zone, you are telling it that lance.contoso.com is on the intranet, so use
  Kerberos.
  I can confirm, that I have exact configuration and I always get the password promt for the very first time. We have 2 server (1xIIS and 1xSQL) infrastructure in production with SPN set like it should and I get the password prompt.

• Creating 50 users with SAME password

  All
  I need to create 50 Trainning users with SAME password.
  Does SAP allows to do it ? SU10 does not let me know
  enter the password ?
  Is there any report that I can use ?
  How can use SCAT trasaction to do this ?
  Please advise.
  Thanks
  From
  PT.

  Hi Pranav,
  Yes SAP allow you but for security reason its not recomended.
  But you can't give the password same like the username, SAP will not allow your to give password that contain userid.
  You can use SCAT to create the 50 user.
  First you recard the transcation first
  Than change the value with parameter (type &parameter_name)
  and than you can create a excel file that contain the 50 user.
  and use SCAT to run it.
  Please read:
  http://help.sap.com/saphelp_47x200/helpdata/en/f4/3f9ef659a711d1bc84080009b4534c/content.htm
  or
  http://help.sap.com/saphelp_47x200/helpdata/en/fd/f10538d6cb1e3be10000009b38f8cf/frameset.htm
  Regards,
  Fendi Suyanto

• HT4061 my ipad is blocked, because I entered wrong password many times. what can I do

  my ipad is blocked, because I entered wrong password many times. what can I do

  Restore the iPad from the computer to which the iPod is synced. For information and instructions, see:
  http://support.apple.com/kb/ht1212
  If that will not work, you'll need to put the iPad into Recovery Mode and then try the Restore again:
  http://support.apple.com/kb/ht1808
  If that still doesn't work, as a last resort try DFU mode:
  http://osxdaily.com/2010/12/04/ipad-dfu-mode/
  Regards.
  Forum Tip: Since you're new here, you've probably not discovered the Search feature available on every Communities page, but next time, it might save you time (and everyone else from having to answer the same question multiple times) if you search a couple of ways for a topic, both in the relevant forums and in the Apple Knowledge Base, before you post a question.

• Trace IP address / machine of user logging in database with wrong password

  Hello All,
  I would like to find the IP address or machine information of the user who is attempting to login the database with the wrong password.
  I am on 11g. Please can I know if it is possible to get this information and if yes then how to configure it.
  Thanks.

  1. Enable audit in database with pararameter AUDIT_TRAIL
  SQL> show parameter audit_trail;
  NAME                                 TYPE        VALUE
  audit_trail                          string      DB_EXTENDED2. Enable session auditing
  SQL> audit session;
  Audit succeeded.3. Check DBA_AUDIT_TRAIL view:
  SQL> select os_username, userhost, username, action_name, timestamp, returncode
    2  from dba_audit_trail
    3  where returncode=1017;
  OS_USERNAME
  USERHOST
  USERNAME                       ACTION_NAME                  TIMESTAMP RETURNCODE
  pierre
  WORKGROUP\PC-de-pierre
  HR                             LOGON                        22-FEB-11       10171017 stands for ORA-1017 Oracle error:
  oerr ora 1017
  01017, 00000, "invalid username/password; logon denied"
  // *Cause:
  // *Action:OS_USERNAME is OS account name of user that is trying to connect to Oracle
  USERHOST is the machine name where executable has tried to connect.
  Edited by: P. Forstmann on 22 févr. 2011 13:39
  Edited by: P. Forstmann on 22 févr. 2011 13:41

• Tried accessing administrator account with wrong password

  I forgot my administrator access password,tried with a wrong password to many times and now the computer can't access account.I understand this to be a safety mechanism.How can I get myself out of this? Any assistance would be greatly appreciated!

  The above linked article is for the administrator to change other users' passwords from the administrator account. That won't help you when you have forgotten the administrator's password.
  Here is how to change the administrators password. These instructions come from Mac Help, available from the Help menu in the Finder.
  To reset the administrator password using the Mac OS X disc:
  1. Insert the Mac OS X Install disc and restart the computer.
  2. When you hear the startup tone, hold down the C key until you see the spinning gear.
  3. When the Installer appears, choose Utilities > Reset Password.
  4. Follow the onscreen instructions to change the password.
  5. Quit the Installer and restart your computer while holding down the mouse button to eject the disc.

• Site Login Behavior For SharePoint Foundation 2013 Users With Expired Passwords?

  What are the most user-friendly ways of getting external users with expired AD passwords back into the SharePoint site with a new working password?
  We already send automated email notifications to users reminding them to change their soon-to-expire passwords.  However, sometimes they miss seeing the email notifications before the password expires (such as after returning from vacation or just carelessness
  and lack of attention to email messages) or they see the warning messages and forget to act on it.
  When this happens and they try to log into the SharePoint site from the Internet, their login fails without telling the user the reason they can't log in is because their password expired.  So, they end up confused and call the help desk to get their
  password reset.
  Is there a way to set up SharePoint Foundation 2013 login in a similar way to the OWA login so that, when a user with a correct but expired password tries to log in, it gives them a prompt to set a new password right there rather than just an error indicating
  their login failed for unknown reasons or password is "incorrect?"

  It could be done. You get a different event log entry for an expired login attempt than for a wrong password, 4625 events denote a login failure and an error ID of 23 denotes a logon failure.
  A naff, but simple, approach would be to create a tool that checks your server logon event log for 4625 entries and then emails that user, or the help desk, or security, that they're trying to get onto your system with expired credentials.
  For a more polished experience you've got a lot more work and bluntly it's going to be impractical for you. You'd have to re-write sections of the SharePoint authentication process or intercept the process, both are risky and not a good idea to try.
  There's a really interesting paper here that might be of interest, it won't help you in your current situation but it might shed more light on the overall authentication/authorisation process.
  http://www.sans.org/reading-room/whitepapers/forensics/windows-logon-forensics-34132

• Ipad mini blocked after 10 times wrong password. How to reset

  After 10 times the ipad is blocked
  I downloaded itunes on my windows(7) laptop but didn't make a back up on this computer., no result
  When connected to the laptop it comes with: device blocked because of wrong password, the other time error 0eX8000084.
  I removed everything from Apple and downloded again Itunes.
  Have anybody a solution for my problem?

  iOS: Device disabled after entering wrong passcode
  http://support.apple.com/kb/ht1212
  How can I unlock my iPad if I forgot the passcode?
  http://tinyurl.com/7ndy8tb
  How to Reset a Forgotten Password for an iOS Device
  http://www.wikihow.com/Reset-a-Forgotten-Password-for-an-iOS-Device
  Using iPhone/iPad Recovery Mode
  http://ipod.about.com/od/iphonetroubleshooting/a/Iphone-Recovery-Mode.htm
  Saw this solution on another post about an iPad in a school environment. Might work on your iPad so you won't lose everything.
  ~~~~~~~~~~~~~
  ‘iPad is disabled’ fix without resetting using iTunes
  Today I met my match with an iPad that had a passcode entered too many times, resulting in it displaying the message ‘iPad is disabled – Connect to iTunes’. This was a student iPad and since they use Notability for most of their work there was a chance that her files were not all backed up to the cloud. I really wanted to just re-activate the iPad instead of totally resetting it back to our default image.
  I reached out to my PLN on Twitter and had some help from a few people through retweets and a couple of clarification tweets. I love that so many are willing to help out so quickly. Through this I also learned that I look like Lt. Riker from Star Trek (thanks @FillineMachine).
  Through some trial and error (and a little sheer luck), I was able to reactivate the iPad without loosing any data. Note, this will only work on the computer it last synced with. Here’s how:
  1. Configurator is useless in reactivating a locked iPad. You will only be able to completely reformat the iPad using Configurator. If that’s ok with you, go for it – otherwise don’t waste your time trying to figure it out.
  2. Open iTunes with the iPad disconnected.
  3. Connect the iPad to the computer and wait for it to show up in the devices section in iTunes.
  4. Click on the iPad name when it appears and you will be given the option to restore a backup or setup as a new iPad (since it is locked).
  5. Click ‘Setup as new iPad’ and then click restore.
  6. The iPad will start backing up before it does the full restore and sync. CANCEL THE BACKUP IMMEDIATELY. You do this by clicking the small x in the status window in iTunes.
  7. When the backup cancels, it immediately starts syncing – cancel this as well using the same small x in the iTunes status window.
  8. The first stage in the restore process unlocks the iPad, you are basically just cancelling out the restore process as soon as it reactivates the iPad.
  If done correctly, you will experience no data loss and the result will be a reactivated iPad. I have now tried this with about 5 iPads that were locked identically by students and each time it worked like a charm.
  ~~~~~~~~~~~~~
  Try it and good luck. You have nothing more to lose if it doesn't work for you.
  iOS: Unknown error containing '0xE' when connecting to a Windows PC
  http://support.apple.com/kb/TS3221
   Cheers, Tom 

• My iphone is blocked after miss two wrong password attempts

  i need to unblock my iphone 4s after two wrong password attempts

  I just entered two wrong passcode attempts in a row and my iPhone was not blocked. I entered the correct passcode on the 3rd attempt with no problem.

• Lightdm hangs with wrong password

  Hi,
  I use lightdm with lightdm-gtk3-greeter and whenever I enter a wrong password to login, it just hangs. How can I solve this problem?

  The problem solved itself after updating the system.
  Thank you for your help.

• Blocking a user with WSA

  Hi Everybody,
  I want to block a specific user from access every internet page.
  How can I do that?
  Regards.

  Hi Everybody,
  I want to block a specific user from access every internet page.
  How can I do that?
  Regards.