FTP Request/Response Use Case

Wish to pick up the successful FTP of a file and put a message with the filename into a database table...
is this a WSDL edit of the ftp Adapter, since it seems to be one-way, then turn it into a responder, then pick up and route the message with the headers back and then route it to a db adapter ? any ideas ?

Hi Sandeep,
SAP says SOAP sender adapter does not support Modules. You can serch Help.sap (for SOAP sender channel) to find the same.
I would suggest to use AXIS adapter (provides all the functionality of SOAP) and supports the Modules as well.
I have used the Module beans that you mentioned in the past... but it is not consistent with its processing.. sometimes it stucks with Message ID issue... I have seen same issue faced some other friends as well .. search on SDN you will find the issue with these modules...
Using BPM would be another option...
Thanks,
Sunil Singh

Similar Messages

  • Using Request Response Bean Module in FILE Adapter

    Hi Experts,
    Can we use Request Response Bean Module in FILE Adapter in reverse way. That is can we configure thses adapter modules in Reciever file channel and call a sender file channel in it?
    My case is RFC to File synchronous case? How do we do this?
    Thanks & Regards,
    priyanka

    Can we use Request Response Bean Module in FILE Adapter in reverse way. That is can we configure thses adapter
    modules in Reciever file channel and call a sender file channel in it?
    My case is RFC to File synchronous case? How do we do this?
    The above is not possible....Bean works only for Sender channel and not for Receiver.....requirement not possible using even a BPM as FILE does not support SYNC communication in receiver end......max you can do is split the scenario into SYNC-ASYNC bridge.
    Regards,
    Abhishek.

  • Using forward(request, response) in Java Servlet

    Hi
    I need help on how to use the forward() method in a java servlet passing a List object and riderecting to another jsp.
    when I use the following code;
    request.getRequestDispatcher(path).forward(request, response);
    I'm getting this message:
    Content modified /content...
    Status
    200
    Message
    OK
    Location
    /content...
    Parent Location
    /content
    Path
    /content...
    Referer
    Thanks,

    Looking at your traces seems like you are forwarding during POST. Seems like issue with your component implementation missing with POST & proxy scripts. Please eloborate more on the exact steps you are following. Alternatively See if this helps.
    org.apache.sling.api.wrappers.SlingHttpServletRequestWrapper req =
    new org.apache.sling.api.wrappers.SlingHttpServletRequestWrapper(slingRequest) {
    public String getMethod() {
    return "GET";
    String path = "/content/.../test.html";
    javax.servlet.RequestDispatcher dispatcher = slingRequest.getRequestDispatcher(path);
    dispatcher.include(req, slingResponse);

  • Asynchronous Request-Response in JMS using OSB 11g

    Hi All,
    I am using OSB11g.
    I have a scenario where I want to post a request into a JMS requestQueue, and without waiting for the response, should continue posting messages into the queue.
    The response will be posted by a third party into a JMS responseQueue.
    How to go ahead with this scenario? Is there any way to link the request & response in asynchronous calls like this?
    Thanks in advance!!
    Regards,
    Karthik

    Hi Karthik-
    You can link the corelation-id..
    Make you third-party application to receive Message-id from JMSRequestQueue and send this message id as correlation-id to JMSResponseQueue. I guess it would work we have tried this as POC.
    Regards,
    Ramesh

  • JMS Request - Response Correlation Not Working

    Hello Experts -
    I am new to OAG and hence seek your expert advice. Following is our use-case scenario:
    1. OAG needs to push a sample XML Message to Weblogic Request JMS Queue. In the Request tab of "Routing to Messaging System filter" I set the CorrelationId
    2. In the response tab wait for a timeout (I set to 600000 secs)
    3. Retrieve Response from the Weblogic Response Queue
    4. Send the Response back to the client
    When i invoke the OAG policy, I am able to post the message to the Request Queue. For my testing purpose, I manually get the correlation id from the request message in the request queue and then populate the same in the response message correlation id field and post the same to the response queue.
    Unfortunately I am not able to see the response back. Below is the log.
    Any help is greatly appreciated.
    Thanks!
    Dibya
    DEBUG   29/Jan/2015:23:38:55.677 [3220]     handle type text/plain with factory class com.vordel.mime.Body$1
    DEBUG   29/Jan/2015:23:38:55.677 [3220]     Added converted message is added to the whiteboard
    DEBUG   29/Jan/2015:23:38:55.677 [3220] } = 1, filter [Request Message on Queue(Set Message)]
    DEBUG   29/Jan/2015:23:38:55.678 [3220] Filter [Request Message on Queue(Set Message)] completes in 1 milliseconds.
    DATA    29/Jan/2015:23:38:55.678 [3220] LogManager logging {
    DATA    29/Jan/2015:23:38:55.678 [3220]     Logging at Success
    DATA    29/Jan/2015:23:38:55.678 [3220]     Calling write log on class com.vordel.log.trace.TraceLogger
    DATA    29/Jan/2015:23:38:55.679 [3220] }
    DEBUG   29/Jan/2015:23:38:55.679 [3220] run filter [Place Message on Weblogic Queue (Messaging system)] {
    DEBUG   29/Jan/2015:23:38:55.893 [2300] start thread 10706770 in set "netsvc threadpool": count=11, busy=10, idle target=4, max=512
    DEBUG   29/Jan/2015:23:38:56.388 [3220]     Set Reply to on a named queue: TokenJMSModule!SMAIPO.ActiveSubscriptionResponse
    DEBUG   29/Jan/2015:23:38:56.389 [3220]     creating consumer from QueueSession
    DEBUG   29/Jan/2015:23:38:56.758 [3220]     cache com.vordel.circuit.jms.JMSProcessor$PoolContextCache@19c45da grows to 3
    DEBUG   29/Jan/2015:23:38:56.759 [3220]     JMSProcessor message ID is: Id-ef18cb542c01000000000000bcac40f9
    DEBUG   29/Jan/2015:23:38:56.760 [3220]     Creating JMS byte message using automime
    DEBUG   29/Jan/2015:23:38:56.760 [3220]     new buffered content factory 10674640
    DEBUG   29/Jan/2015:23:38:56.760 [3220]     buffered content 10674640, size=0/8
    DEBUG   29/Jan/2015:23:38:56.761 [3220]     [10674640] new chunk 10541538 from 10606CC8 to 10606DFE (310)
    DATA    29/Jan/2015:23:38:56.761 [3220]     new content stack 105488F8
    DATA    29/Jan/2015:23:38:56.761 [3220]     push source buffered onto 105488F8
    DEBUG   29/Jan/2015:23:38:56.761 [3220]     Setting reply to named queue
    DEBUG   29/Jan/2015:23:38:56.761 [3220]     setJMSMessageID: Id-ef18cb542c01000000000000bcac40f9
    DEBUG   29/Jan/2015:23:38:56.761 [3220]     setJMSCorrelationID: Id-ef18cb542c01000000000000bcac40f9
    DEBUG   29/Jan/2015:23:38:56.762 [3220]     Calling post JMS creation hook
    DEBUG   29/Jan/2015:23:38:56.762 [3220]     Post JMS creation hook completed
    DEBUG   29/Jan/2015:23:38:56.762 [3220]     Sending JMS message to TokenJMSModule!SMAIPO.ActiveSubscriptionRequest
    DATA    29/Jan/2015:23:38:57.120 [3220]     trace transaction
    DEBUG   29/Jan/2015:23:38:57.121 [3220]     Wait for repsonse ? true
    DEBUG   29/Jan/2015:23:38:57.819 [2300] incoming call on interface localhost:8085 from ::1:63317
    DEBUG   29/Jan/2015:23:38:57.820 [2300] new connection 02F0FB08,  settings source incoming interface (allow 1.1=no, idleTimeout=60000, activeTimeout=60000, contentLength: req=no, res=no)
    DEBUG   29/Jan/2015:23:38:57.820 [2300] push SSL protocol on to connection
    DATA    29/Jan/2015:23:38:57.820 [2300] [SSL_accept, 00006000] before/accept initialization.
    DEBUG   29/Jan/2015:23:38:57.821 [2300] No SSL host name provided, defaulting to certificate: { subject: /CN=instance-1 }.
    DATA    29/Jan/2015:23:38:57.821 [2300] [SSL_accept, 00002110] SSLv3 read client hello A.
    DATA    29/Jan/2015:23:38:57.821 [2300] [SSL_accept, 00002130] SSLv3 write server hello A.
    DATA    29/Jan/2015:23:38:57.823 [2300] [SSL_accept, 000021D0] SSLv3 write change cipher spec A.
    DATA    29/Jan/2015:23:38:57.823 [2300] [SSL_accept, 000021E0] SSLv3 write finished A.
    DATA    29/Jan/2015:23:38:57.823 [2300] [SSL_accept, 00002100] SSLv3 flush data.
    DATA    29/Jan/2015:23:38:57.824 [2300] [SSL_accept, 000021C0] SSLv3 read finished A.
    DEBUG   29/Jan/2015:23:38:57.825 [2300] negotiated SSL cipher "DHE-RSA-AES256-SHA", session 00000000 (reused) peer cert /CN=nodemanager-1
    DATA    29/Jan/2015:23:38:57.825 [2300] client certificate: { subject: /CN=nodemanager-1 }
    DEBUG   29/Jan/2015:23:38:57.826 [30a4] incoming call on interface localhost:8085 from 127.0.0.1:63320
    DATA    29/Jan/2015:23:38:57.826 [2300] rcv 979 from max of 2048: <GET /api/monitoring/metrics/summary?timeline=10m&metricGroupType=Service HTTP/1.1
    Host: localhost:8085
    Accept: application/json
    Accept-Language: en-US,en;q=0.8
    authentication.subject.id: admin
    authentication.subject.role: API Server Operator:API Service Developer:Policy Developer:API Service Administrator:API Server Administrator:Deployer:KPS Administrator
    Authorization: Basic YWRtaW46Y2hhbmdlbWU=
    Cookie: avlastvisit=1411930906; avlastactivity=0; __utma=125953885.1884274842.1414410173.1414410173.1417627152.2; __utmz=125953885.1417627152.2.2.utmcsr=google|utmccn=(organic)|utmcmd=organic|utmctr=(not%20provided); utag_main=_st:1417668298258$ses_id:1417666771075%3Bexp-session; WT_FPC=id=cfc9b752-08a3-4756-8d26-c4ca2d77219f:lv=1417670100029:ss=1417670100029
    Host: localhost:8085
    Referer: https://xx1211000592.global.avaya.com:8090/
    User-Agent: Gateway
    X-Requested-With: XMLHttpRequest
    Connection: close
    X-CorrelationID: Id-f118cb54e204000000000000373fba90 1

    Hi Michael,
    I think the adapter type is for the receiver channel looking at the documentation SAP Library - SAP Exchange Infrastructure
    Have you checked your receiver channel doesn't belong to a party?
    I havent tried this bridge with the http_aae but looks to be problematic according with Michal comment here http://scn.sap.com/community/pi-and-soa-middleware/blog/2014/01/28/generic-pi-async-sync-bridge-configuration-for-any-adapters#comment-454463
    Regards.

  • Does any one implemented solution for httpservlet request/response object in IWSDLInterceptor implemented class?

    I am trying to handle Producer not available situation in which I am using Interceptor IWSDLInterceptor in WLP 10.3.4. I am able to retrieve exception using onWSDLException but from here if I have to forward my pageURL object I need httpservlet request and response. I tried my own filter class to have its own customize request and also tried it out all other Interceptor to see if any one can handle IOException. I did manage to throw my own Customize exception but  that also did not work out as Page does not have any backing file or any supportive Controller class.
    Does any one implemented solution for httpservlet request/response object in IWSDLInterceptor implemented class? or do we have any specific documentation in regards to this? As I am not able to find much martial on IWSDLInterceptor except Java API from Oracle and article defining Two way SSL handshake Producer.
    Any kind of help is appreciated.
    Thanks
    PT

    Thanks Emmanuel for your response but render behavior is not available for IWSDLRequestContext/IWDSLResponseContext object which IWSDLInterceptor uses for implementation.
    Let me put my question in little simpler manner. May be my approach to the problem is not proper.
    Problem : Handle Producer Not available (no application exists on server) on consumer side.
    So far tried approach : Producer is not running then I am able to handle that TransportException at IInitCookieInterceptor/IHandleEventInterceptor onFault behaviour but in the case of Producer not even exists Consumer try to get WSDL fetch operation and failed with FileNotFoundException.
    To handle this exception, I used IWSDLInterceptor which is available under IWSDLInterceptor.OnWSDLException (Oracle Fusion Middleware Java API for Oracle WebLogic Portal)
    I am able to catch the exception but problem arise when application needs to forward at specific page/render portlet for this situation. For that it required request/response object but IWSDLInterceptor does not give any kind of instances to redirect request as there is no direct access to HTTPServlet request/response object.
    I tried my custom request object to use there. I tried out custom filter object of IWSDLrequestContext. nothing works.
    One approach works is to put producer WSDL file at consumer level. But in that, you need to handle different producer files for different environment. Which I don't think its a good approach.
    eAny one Let me know if my approach to the problem/scenario is wrong. Or if I am missing out any other supporting interface which also required to handle this scenario. or I am using wrong interface for this scenario.
    Thanks for your help in advance.
    PT.

  • Request Response (database) biztalk Error hadling

    best was to handle exceptions working with Request Response port ? hitting database.
    1) what properties should be set in Scope shape ?
    2) what should be set the Transaction type of Orchestration ? when to use Long Running or None ?
    3)does on ReqResp SP, transmitted set to true works ?
    MBH

    Well, you've already answered your own question, use an Exception Block.
    What exactly do you mean by 'no response'?  There are two realistic possibilities, A) a timeout occurs or B) no result set is returned.
    (A) is an error condition and the exception will be raised back to the Orchestration and caught in an
    Exception Block.
    (B) is a real possibility depending on how the SP is coded.  The operation technically completes correctly, but no result is considered by the caller to be an error condition.  This you would have to test for.
    If the database code silently fails, as you describe, that is not your problem.  The owner of the Oracle app has to fix that since you can't know if an error occurred or not.
    You have to try these things.  It's not possible to offer any more meaningful advice because exactly what you have to do is completely dependent on how your Oracle instance behaves and what the business case considers an 'error'.
    Please, set it up and try different scenarios against Oracle and tell us what happens.  If something doesn't work or doesn't meet expectations, please open another thread for that specific issue.

  • Use case for describing a web service

    Dear all,
    I have a fundamental question for describing a web service.
    An analyst will first write (1) a use case for describing the web service and (2) wsdl and xsd files for describing the web service.
    As a developer, I would say that artifact (2) is enough. As an analyst, I would still need to document the requirement in the format of use case specification. However, it is not clear for me what should be put in this use case specification and what is the added value of such a use case.
    Have you any sample example of this kind of use case in order to describe a web service?
    Thanks in advance.
    Pengyou

    wpafbuser1 wrote:
    First, don't post twice. I'd rather see you bump a post then repost the same question.
    Have you any sample example of this kind of use case in order to describe a web service?First, searching Google will show you millions of use cases you can use as examples. Second, why would you think writing a use case for a Web Service would be any different than any other use case?Sorry for posting twice. I thought the first one failed due to a system error but I was wrong.
    From millions of use case I can not find a "good" one.
    I have in fact two conceptual questions:
    1. I have not much to say about the flow of events. It is simply a request and a response. This is much simpler than a "normal" use case. Am I right?
    2. However, I don't know where to put the description of business logic: 2.1 the data sets to be put in the request and response; 2.2 the business logic to construct the response from the request.
    I would appreciate any hint or discussion.
    Pengyou

  • A Use Case question.

    Hello all
    I am currently developing an event management assignment for my degree.
    A subset of problem statment
    Attendee is a person, who would register with the application
    in order to view the posted events.
    For this part of the problem statment i have identified a usecase
    "register attendee".
    I will type the use case here. Since i am a novice, I would really like
    design gurus to throw some light on the use case and suggest me changes
    I will really appreciate it.
    Use case : register attendee
    Pre-condition: Attendee decides to register.
    Main Success Scenario:
         Actor                         System
    1. Attendee requests to register.
                        2. Provides registration form.
    3. Attendee fills the form and
    submits.                     
                        4. System checks for valid
                        authentication.
    (//for eg. unique username)
                        5. System validates the information
    (//for eg.compulsory fields
                             present or not)
                        6. System notifies through mail.
                        7. Displays registration was
                        successful.
    Alternative Flow :
    4 a) Invalid authentication : Displays appropriate message.
    5 a) Invalid information : Displays appropriate message.
    6 a) Mail notification failure : Logs the failure message and email.
    Please guide me friends. I am a bit confused.
    Thanks in advance.
    Jenny               

    Use case are pretty good for both of these. You know
    your system needs to allow an ATTENDEE to register
    with the SYSTEM using a REGISTRATION FORM. These sound
    like things that either you need to model (what
    attributes do the form and attendee have) or a thing
    that you need to build the "system".
    The steps in the use case tell you how the system must
    behave. It needs to "getRegistrationForm" and give it
    the attendee. The Attendee needs to
    "completeRegistrationForm" and
    "submitRegistrationForm". So, with the authentication
    and validation rounding out the process you have a
    good idea of what kind of methods you need as a base
    in order to deal with the real world concepts you have
    identified.I am through with what behaviour my system will need to provide in
    order to realize the use case. But I will have to assign the behaviour
    appropriately to classes of objects. I would like to go to the design model once i have a good understanding of the domain model. This is where the problem starts, should i identify, AuthenticationVerifier,InformationVerfier as different concepts and give later say AuthenticationVerifier the responsibility of verifying unique authentication and InformationVerfier the responsibility of verifying information received with the form or should I only take one concept of say Administrator that would perform the above two stated behaviours. I understand that it is always good to overspecify concepts rather than under specify but at some point of time i will have to make that decision.
    If its a libray system, it is easy to identify certain priliminary concepts say book, patron, etc. as they occupy some physical space. But here nothing is clear. There isn't any entity in my use case, that occupies a physical space that i can easily identify as a real world concept.
    My question is, how in this case, do someone define the notion of concept when there is nothing in the main success scenario that occupies space. My use case, only specifies what will be done with the
    attendee information, not who will do it. So as a use case developer, am i responsible to map these processes with some physical entities that i have derived for eg. AuthenticationVerfier.
    ps. You will need to add the Attendee as an Actor. She
    is the one that is initiating the activity.Does it mean that as Attendee is an actor, he/she cannot be a concept?

  • Request/response paradigm

    Hi everybody,
    I'm writing in jsp, but I don't understand request-response completely. Where can I find good explanation about using request, responce, session objects?
    Thanks,
    Kosha

    request = Browser > Server
    response = Server > Browser
    Its that simple really, browser sends request to server, server processes request, and sends response, in the case of JSP, the response will be sent in the form of HTML.
    As for tutorials, search the sun site, sure youll find something.

  • BlazeDS RPC request-response - Require ability to push server-response asynchronously

    Hi BlazeDS developers,
    I understand that BlazeDS has RPC req-response async client and server mechanism (whats the big deal html UI also has been aync?). It also has publish subcribe pattern with ability to have server side push to client.
    My questions is if below ability present in BlazeDS in request-response RPC?? (Do not want to use pub-sub messaging.):
    Asynchronous mechanism for a response "at server side" (not between client and server) i.e.
    1. a request from flex client using RemoteObject on a POJO at server,
    2. POJO at server processes the request asynchrnously, i.e. spawns a thread, and does some business logic calculation.
    3. Has the response ready after few seconds.
    4. prepares the response and pushes to client
    Server business logic does not have to block client POJO object function call made from RemoteObject RPC from client. (consider RemoteObject use case)
    Thanks in advance for your comments/answers
    Nilesh

    Hi Nilesh,
    What you describe is not currently possible in BlazeDS with request/response RPC requests. While handling of remote object requests is async in the client code, it's not async between the client and the server.
    A bug has been logged to get this functionality added and it is currently targeted for inclusion in the next release of BlazeDS.
    Here is the link to the bug if you want to watch its progress.
    https://bugs.adobe.com/jira/browse/BLZ-184
    Hope that helps.
    -Alex

  • Request Response Receive Port and Solicit Response Send Port

    Can anyone give me some idea how to bind Request Response Receive Port and Solicit Response Send Port with each other through TCP/IP adapter ??

    The binding of a Receive and Send Port has nothing to with the choice of Adapter.
    1) There is no out-of-the-box TCP/IP Adapter for BizTalk, but several 3rd. Party Adapters has been made, along with this one in CodePlex: http://tcpipbz2010.codeplex.com/
    2) Most people will use an Orchestration for binding a SR Send Port to a RR Receive Port. This may not be necessary though. All you need to do is have your Send Port subscribe to your Receive Port (by setting the Filter on the Send Port to "BTS.ReceivePortName
    == [The name of your Receive Port]". In this case, internal correlation will make sure that the response is routed back to the Receive Port.
    Morten la Cour

  • Sender adapter request response bean not working for calling a webservice

    Hi All,
    In PI 7.31, My scenario :  SOAP sender Asynch-> PI -> HTTP Receiver Sync ->take response to call another webservice  (SOAP)
    I have configured request response bean and response one way bean in the sender adapter to make this work.
    Attached the screenshot of the module config in  the sender soap adapter. The final response from HTTP has to be used to call another webservice (not sender webservice)
    This giving an error "couldn't retrieve binding values for sender to receiver etc etc ----------"
    Has anyone configured response one way bean to call a webservice to submit? If so, please share the configuration details. And let me know if I am doing anything wrong
    thx
    mike

    Hi Michael,
    I think the adapter type is for the receiver channel looking at the documentation SAP Library - SAP Exchange Infrastructure
    Have you checked your receiver channel doesn't belong to a party?
    I havent tried this bridge with the http_aae but looks to be problematic according with Michal comment here http://scn.sap.com/community/pi-and-soa-middleware/blog/2014/01/28/generic-pi-async-sync-bridge-configuration-for-any-adapters#comment-454463
    Regards.

  • ISE 1.2, Patch 7: "NAK requesting to use PEAP instead"

    We're experiencing seemingly random occurrences of users failing authentication because they're trying PEAP vs EAP. Does anyone know if it is possible to force the Windows supplicant to use EAP only?
    For what it's worth, the user can fail authentication for hours and I can either allow open authentication on the port for a bit, or the user can leave for the day and come back tomorrow and authentication will succeed. I'm not sure if it's an ISE problem or a supplicant problem, but I'm leaning towards supplicant.
    Personas:
    Administration
    Role:
    PRIMARY(A)
    System Time:
    Apr 24 2014 08:26:58 AM America/New_York
    FIPS Mode:
    Disabled
    Version:
    1.2.0.899
    Patch Information:
    7,1,3
    11001
    Received RADIUS Access-Request
    11017
    RADIUS created a new session
    15049
    Evaluating Policy Group
    15008
    Evaluating Service Selection Policy
    15048
    Queried PIP
    15048
    Queried PIP
    15004
    Matched rule
    11507
    Extracted EAP-Response/Identity
    12500
    Prepared EAP-Request proposing EAP-TLS with challenge
    12625
    Valid EAP-Key-Name attribute received
    11006
    Returned RADIUS Access-Challenge
    11001
    Received RADIUS Access-Request
    11018
    RADIUS is re-using an existing session
    12301
    Extracted EAP-Response/NAK requesting to use PEAP instead
    12300
    Prepared EAP-Request proposing PEAP with challenge
    12625
    Valid EAP-Key-Name attribute received
    11006
    Returned RADIUS Access-Challenge
    11001
    Received RADIUS Access-Request
    11018
    RADIUS is re-using an existing session
    12302
    Extracted EAP-Response containing PEAP challenge-response and accepting PEAP as negotiated
    12318
    Successfully negotiated PEAP version 0
    12800
    Extracted first TLS record; TLS handshake started
    12805
    Extracted TLS ClientHello message
    12806
    Prepared TLS ServerHello message
    12807
    Prepared TLS Certificate message
    12810
    Prepared TLS ServerDone message
    12305
    Prepared EAP-Request with another PEAP challenge
    11006
    Returned RADIUS Access-Challenge
    11001
    Received RADIUS Access-Request
    11018
    RADIUS is re-using an existing session
    12304
    Extracted EAP-Response containing PEAP challenge-response
    12305
    Prepared EAP-Request with another PEAP challenge
    11006
    Returned RADIUS Access-Challenge
    11001
    Received RADIUS Access-Request
    11018
    RADIUS is re-using an existing session
    12304
    Extracted EAP-Response containing PEAP challenge-response
    12305
    Prepared EAP-Request with another PEAP challenge
    11006
    Returned RADIUS Access-Challenge
    11001
    Received RADIUS Access-Request
    11018
    RADIUS is re-using an existing session
    12304
    Extracted EAP-Response containing PEAP challenge-response
    12305
    Prepared EAP-Request with another PEAP challenge
    11006
    Returned RADIUS Access-Challenge
    11001
    Received RADIUS Access-Request
    11018
    RADIUS is re-using an existing session
    12304
    Extracted EAP-Response containing PEAP challenge-response
    12318
    Successfully negotiated PEAP version 0
    12812
    Extracted TLS ClientKeyExchange message
    12804
    Extracted TLS Finished message
    12801
    Prepared TLS ChangeCipherSpec message
    12802
    Prepared TLS Finished message
    12816
    TLS handshake succeeded
    12310
    PEAP full handshake finished successfully
    12305
    Prepared EAP-Request with another PEAP challenge
    11006
    Returned RADIUS Access-Challenge
    11001
    Received RADIUS Access-Request
    11018
    RADIUS is re-using an existing session
    12304
    Extracted EAP-Response containing PEAP challenge-response
    12313
    PEAP inner method started
    11521
    Prepared EAP-Request/Identity for inner EAP method
    12305
    Prepared EAP-Request with another PEAP challenge
    11006
    Returned RADIUS Access-Challenge
    11001
    Received RADIUS Access-Request
    11018
    RADIUS is re-using an existing session
    12304
    Extracted EAP-Response containing PEAP challenge-response
    11522
    Extracted EAP-Response/Identity for inner EAP method
    11806
    Prepared EAP-Request for inner method proposing EAP-MSCHAP with challenge
    12305
    Prepared EAP-Request with another PEAP challenge
    11006
    Returned RADIUS Access-Challenge
    11001
    Received RADIUS Access-Request
    11018
    RADIUS is re-using an existing session
    12304
    Extracted EAP-Response containing PEAP challenge-response
    11808
    Extracted EAP-Response containing EAP-MSCHAP challenge-response for inner method and accepting EAP-MSCHAP as negotiated
    15041
    Evaluating Identity Policy
    15006
    Matched Default Rule
    15013
    Selected Identity Source - *****
    24431
    Authenticating machine against Active Directory
    24470
    Machine authentication against Active Directory is successful
    22037
    Authentication Passed
    11824
    EAP-MSCHAP authentication attempt passed
    12305
    Prepared EAP-Request with another PEAP challenge
    11006
    Returned RADIUS Access-Challenge
    11001
    Received RADIUS Access-Request
    11018
    RADIUS is re-using an existing session
    12304
    Extracted EAP-Response containing PEAP challenge-response
    11810
    Extracted EAP-Response for inner method containing MSCHAP challenge-response
    11814
    Inner EAP-MSCHAP authentication succeeded
    11519
    Prepared EAP-Success for inner EAP method
    12314
    PEAP inner method finished successfully
    12305
    Prepared EAP-Request with another PEAP challenge
    11006
    Returned RADIUS Access-Challenge
    11001
    Received RADIUS Access-Request
    11018
    RADIUS is re-using an existing session
    12304
    Extracted EAP-Response containing PEAP challenge-response
    15036
    Evaluating Authorization Policy
    24433
    Looking up machine in Active Directory - host/*****
    24435
    Machine Groups retrieval from Active Directory succeeded
    15048
    Queried PIP
    15048
    Queried PIP
    15048
    Queried PIP
    15048
    Queried PIP
    15048
    Queried PIP
    15004
    Matched rule - Default
    15016
    Selected Authorization Profile - DenyAccess
    15039
    Rejected per authorization profile
    12306
    PEAP authentication succeeded
    11503
    Prepared EAP-Success
    11003
    Returned RADIUS Access-Reject 

    salodh,
    Thank you for your response. Below is the authorization policy it should hit. The trouble is the workstation wants to use PEAP for some reason but we don't want PEAP because we're certificate-based. I understand what you're saying, and it's because I didn't word my question correctly. 
    12500
    Prepared EAP-Request proposing EAP-TLS with challenge
    12625
    Valid EAP-Key-Name attribute received
    11006
    Returned RADIUS Access-Challenge
    11001
    Received RADIUS Access-Request
    11018
    RADIUS is re-using an existing session
    12301
    Extracted EAP-Response/NAK requesting to use PEAP instead 
    If the NAK would not request PEAP, it would continue on to the following Authorization Policy (and succeed):
    Name
    Wired-******-PC
     Conditions
    Radius:Service-Type EQUALS Framed
    AND
    Radius:NAS-Port-Type EQUALS Ethernet
    AND
    *******:ExternalGroups EQUALS **********/Users/Domain Computers
    AND
    Network Access:EapAuthentication EQUALS EAP-TLS
    Again, this PEAP request only happens occasionally. This same workstation will work at other days/times. If I could figure out why some workstations randomly request PEAP (or find a way to force EAP only) I think that would take care of it.
    Thanks again, sir.
    Andrew

  • GRC 10.1 - Routing at Request Submission in case of SOD violations

    I am trying to configure MSMP workflow or risks analysis while creating userid
    1. No Risks >> User created and access assigned automatically
    2. Risks found >> forward to security team to review and approve
    I have checked the standard functional module - GRAC_MSMP_DETOUR_SODVIOL cannot be used in AC 10.0 . This is  only be used as Routing Rule after first stage approval and at subsequent stages as per Note - 1783157 - Routing at Request Submission in case of SOD violations
    Can anyone advise the standard SAP delivered rule / functional module we can use in GRC AC 10.1 to achieve the outcome at the time of request submission ??

    Hi Anil,
    You have enable riak analysis at submission buy setting parameter and the need to have a first stage as dummy where risk analysis result can be analysed and have a detour at this dummy stage so that in case of risk request is forwarded to next stage.
    Hope that helps..
    Regards
    Ashish

Maybe you are looking for