Generic code in OSB across 2 domains

Similar Messages

• FIFO across clock domains

  I'm using a FlexRIO 7966R for digital signal manipulation and need to buffer data across clock domains. By buffer I mean I need to be able to store in memory a variable amount of data before it's read back out in order to achieve a data delay. I can successfully write to the FIFO in one clock domain and read data from the FIFO in another clock domain, but as soon as I introduce the "Get Number of Elements to Read" function the compilation fails with a timing violation. It appears that this method cannot execute quickly enough:
  I tried moving the "Get Number of Elements to Read" function into another slower clock domain SCTL but the compiler then states that it has to be in the same clock domain as the Read FIFO function, so that doesn't help.
  Any thoughts anyone?
  Thoric (CLA, CLED, CTD and LabVIEW Champion)

  Intaris wrote:
  Correct, BRAM does not cross clock domains. This is why i proposed splitting the work into two parts, domain crossing and delay.
  Using the BRAM on the receivinG side only you can implement a circular buffer of size x with write index incremented each cycle and the read position is relative to this.  By changing the offset between write and read (all on the receiver side) you can implement any delay up to x.  Your receiver order would be read FIFO (in every cycle), write to BRAM, read from BRAM and continue.
  That way your FIFO for crossing domains can be much smaller, saving LUTs and registers.
  Regarding recucing the delay: If your sender is sending data as fast as your receiver can read them, reducing the delay sounds like it is always going to be lossy.  You can do this with the BRAM by adjusting the offset between write and read accordingly, effectively skipping data.
  Im in the mountains on holiday so i cant post code for another week.....
  Other topic.... I though the max clock on a 7966 was 326 MHz? I know on a 7965 its listed as 326 MHz.
  Thanks for the insight Intaris.
  My FIFOs are set to use BRAM, so will your proposal of creating a small FIFO for crossing the clock domains plus a separate BRAM block for buffering achieve much saving in fabric? Isn't that the same amount of BRAM, plus a bit for your FIFO? I might go ahead and create a test implementation to see the difference in FPGA resource usage...
  I'm using a 5782 Module with independent 500MHz clock.
  Thoric (CLA, CLED, CTD and LabVIEW Champion)

• Configuring Kerberos across 2 domains?

  Hi
  I am trying to set up a 3rd party application to use Single Sign On using Kerberos authentication across two Domains and am having troubles. DOMAIN1.COM is a W2K domain and DOMAIN2 is a Citrix farm. My application is a Solaris (5.9) hosted Java app (1.4.2_08) running under a Weblogic 8.1.
  I've generated the keytab files etc and can successfully authenticate using kinit. I can successfully sign in from my desktop when I configure my environment to use only just domain, either DOMAIN1.COM or DOMAIN2, but I am hitting this error when trying to authenticate with a user accouint on DOMAIN2 (it works fine for a user account on DOMAIN1):
  <000000> <Found Negotiate with SPNEGO token>
  *<000000> <GSS exception GSSException: Failure unspecified at GSS-API level (Mechanism level: Integrity check on decrypted field failed (31))*
  The application uses the JAAS login framework to perform the authentication. The steps I have followed are:
  1. We have generated the keytab file for both domains and have tested that we can generate tickets using kinit command
  2. When I start my WL server I am using the DOMAIN1.COM domain credentials i.e.
  JAVA_OPTIONS="-ms1024m ...etc... -Djava.security.auth.login.config=krb5Login.conf -Djava.security.krb5.realm=DOMAIN1.COM -Djava.security.krb5.kdc=ldap-domain1.com -Djavax.security.auth.useSubjectCredsOnly=false -Dweblogic.security.enableNegotiate=true -Dsun.security.krb5.debug=true"
  3. I've configured my krb5Login.conf to use DOMIAN1.COM e.g.
  com.sun.security.jgss.initiate
  com.sun.security.auth.module.Krb5LoginModule required
  principal="HTTP/[email protected]" useKeyTab=true
  keyTab=krb5.keytab storeKey=true debug=true;
  com.sun.security.jgss.accept
  com.sun.security.auth.module.Krb5LoginModule required
  principal="HTTP/[email protected]" useKeyTab=true
  keyTab=krb5.keytab storeKey=true debug=true;
  4. I've configured my /etc/krb5/krb5.conf to use DOMAIN2 as default.
  [libdefaults]
  default_realm=DOMAIN2
  default_tkt_enctypes = des-cbc-md5
  default_tgs_enctypes = des-cbc-md5
  [realms]
  DOMAIN1.COM = {
  kdc=ldap-domain1.com:88
  admin_server=ldap-domain1.com
  DOMAIN2 = {
  kdc=kdc1.domain2:88
  kdc=kdc2.domain2:88
  admin_server=ADMINSERVER2
  [domain_realm]
  mydomain.com=DOMAIN2
  [appdefaults]
  kinit = {
  renewable = true
  forwardable= true
  autologin = true
  forward = true
  encrypt = true
  I am not a Java developer so this is all new to me so hopefully someone can give me some guidance. I've been told the reason I can't authenticate is because I don't have a trust relationship set up between the two domains. But our Active Directory team have stated that setting up a trust relationship is not an option.
  The software supplier has said that the application should work across both domains without the trust relationship but they are unwilling to assist (as they have been paid already!). The way I have been led to understand it is that when we try and access the app over the DOMAIN2 the app should default to the default domain set in the /etc/krb5/krb5.conf file. Am I misguided? I don't understand how the JAAS login framework works with Kerberos and I would greatly appreciate some guidance on a possible config or code change I can make to resolve this issue?
  Thanks

  Hi
  Thanks for the reply. I couldn't see krb5.conf in the logs so I added it to the JAVA_OPTIONS and re-ran a test but it failed with the same error. Here some output from my logs:
  ####<Nov 4, 2009 5:38:07 PM GMT> <Info> <Management> <aukobpcs> <aukobpcs_dd1> <main> <<WLS Kernel>> <> <BEA-141187> <Java system properties are defined as follows:
  java.security.auth.login.config = /opt/bea/user_projects/domains/onebill_online/krb5Login.conf
  java.security.krb5.conf = /etc/krb5/krb5.conf
  java.security.policy = /opt/bea/weblogic81/server/lib/weblogic.policy
  java.specification.name = Java Platform API Specification
  java.specification.vendor = Sun Microsystems Inc.
  java.specification.version = 1.4
  java.util.prefs.PreferencesFactory = java.util.prefs.FileSystemPreferencesFactory
  java.vendor = Sun Microsystems Inc.
  java.vendor.url = http://java.sun.com/
  java.vendor.url.bug = http://java.sun.com/cgi-bin/bugreport.cgi
  java.version = 1.4.2_11
  vde.home = ./aukobpcs_dd1/ldap
  weblogic.Name = aukobpcs_dd1
  weblogic.StdoutDebugEnabled = true
  weblogic.StdoutSeverityLevel = 64
  weblogic.management.server = http://aukobpcs.dc-dublin.de:7001
  weblogic.security.enableNegotiate = true
  ####<Nov 4, 2009 5:40:22 PM GMT> <Info> <HTTP> <aukobpcs> <aukobpcs_dd1> <ExecuteThread: '23' for queue: 'weblogic.kernel.Default'> <<anonymous>> <> <BEA-101047> <[ServletContext(id=19509258,name=bpa,context-path=/bpa)] *.jsp: initialization complete>
  ####<Nov 4, 2009 5:40:22 PM GMT> <Debug> <SecurityDebug> <aukobpcs> <aukobpcs_dd1> <ExecuteThread: '23' for queue: 'weblogic.kernel.Default'> <<WLS Kernel>> <> <000000> <PrincipalAuthenticator.assertIdentity - Token Type: Authorization>
  ####<Nov 4, 2009 5:40:22 PM GMT> <Debug> <SecurityDebug> <aukobpcs> <aukobpcs_dd1> <ExecuteThread: '23' for queue: 'weblogic.kernel.Default'> <<WLS Kernel>> <> <000000> <Found Negotiate with SPNEGO token>
  ####<Nov 4, 2009 5:40:23 PM GMT> <Debug> <SecurityDebug> <aukobpcs> <aukobpcs_dd1> <ExecuteThread: '23' for queue: 'weblogic.kernel.Default'> <<WLS Kernel>> <> <000000> <GSS exception GSSException: No valid credentials provided (Mechanism level: Attempt to obtain new ACCEPT credentials failed!)
  GSSException: No valid credentials provided (Mechanism level: Attempt to obtain new ACCEPT credentials failed!)
       at sun.security.jgss.krb5.Krb5AcceptCredential.getKeyFromSubject(Krb5AcceptCredential.java:189)
       at sun.security.jgss.krb5.Krb5AcceptCredential.getInstance(Krb5AcceptCredential.java:80)
       at sun.security.jgss.krb5.Krb5MechFactory.getCredentialElement(Krb5MechFactory.java:75)
       at sun.security.jgss.GSSManagerImpl.getCredentialElement(GSSManagerImpl.java:149)
       at sun.security.jgss.GSSCredentialImpl.add(GSSCredentialImpl.java:334)
       at sun.security.jgss.GSSCredentialImpl.<init>(GSSCredentialImpl.java:44)
       at sun.security.jgss.GSSManagerImpl.createCredential(GSSManagerImpl.java:102)
       at sun.security.jgss.GSSContextImpl.acceptSecContext(GSSContextImpl.java:277)
       at sun.security.jgss.GSSContextImpl.acceptSecContext(GSSContextImpl.java:246)
       at weblogic.security.providers.utils.SPNEGONegotiateToken.getUsername(SPNEGONegotiateToken.java:371)
       at weblogic.security.providers.authentication.SinglePassNegotiateIdentityAsserterProviderImpl.assertIdentity(SinglePassNegotiateIdentityAsserterProviderImpl.java:201)
       at weblogic.security.service.adapters.IdentityAsserterV1Adapter.assertIdentity(IdentityAsserterV1Adapter.java:28)
       at weblogic.security.service.PrincipalAuthenticator.assertIdentity(PrincipalAuthenticator.java:672)
       at weblogic.security.service.PrincipalAuthenticator.assertIdentity(PrincipalAuthenticator.java:617)
       at weblogic.servlet.security.internal.CertSecurityModule.checkUserPerm(CertSecurityModule.java:104)
       at weblogic.servlet.security.internal.SecurityModule.beginCheck(SecurityModule.java:228)
       at weblogic.servlet.security.internal.CertSecurityModule.checkA(CertSecurityModule.java:86)
       at weblogic.servlet.security.internal.ServletSecurityManager.checkAccess(ServletSecurityManager.java:145)
       at weblogic.servlet.internal.WebAppServletContext.invokeServlet(WebAppServletContext.java:3823)
       at weblogic.servlet.internal.ServletRequestImpl.execute(ServletRequestImpl.java:2773)
       at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:224)
       at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:183)
  Caused by: javax.security.auth.login.LoginException: Cannot get kdc for realm DOMAIN1.COM
       at com.sun.security.auth.module.Krb5LoginModule.attemptAuthentication(Krb5LoginModule.java:585)
       at com.sun.security.auth.module.Krb5LoginModule.login(Krb5LoginModule.java:475)
       at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
       at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
       at java.lang.reflect.Method.invoke(Method.java:324)
       at javax.security.auth.login.LoginContext.invoke(LoginContext.java:675)
       at javax.security.auth.login.LoginContext.access$000(LoginContext.java:129)
       at javax.security.auth.login.LoginContext$4.run(LoginContext.java:610)
       at java.security.AccessController.doPrivileged(Native Method)
       at javax.security.auth.login.LoginContext.invokeModule(LoginContext.java:607)
       at javax.security.auth.login.LoginContext.login(LoginContext.java:534)
       at sun.security.jgss.LoginUtility.run(LoginUtility.java:57)
       at java.security.AccessController.doPrivileged(Native Method)
       at sun.security.jgss.krb5.Krb5AcceptCredential.getKeyFromSubject(Krb5AcceptCredential.java:186)
       ... 21 more
  Caused by: KrbException: Cannot get kdc for realm DOMAIN1.COM
       at sun.security.krb5.KrbKdcReq.send(DashoA12275:137)
       at sun.security.krb5.KrbKdcReq.send(DashoA12275:110)
       at sun.security.krb5.KrbAsReq.send(DashoA12275:300)
       at sun.security.krb5.Credentials.acquireTGT(DashoA12275:360)
       at com.sun.security.auth.module.Krb5LoginModule.attemptAuthentication(Krb5LoginModule.java:576)
       ... 35 more
  If you have any other suggestions I could try that will be great, otherwise we'll look at implementing workaround to this issue (probably having a separate WL server for each domain)
  Thanks

• How to manage ApplicationDomain for loaded SWFs across different domains?

  I've been getting this following error -- when I'm loading a subsidiary SWF into a main one. The sub swf contains the overlays. OverlayOne is a subclass of Overlay.
  TypeError: Error #1034: Type Coercion failed: cannot convert OverlayOne@18684f89 to Overlay.
       at HSRawVideoPlayer/setCurrentOverLay()
       at HSRawVideoPlayer/showOverlay()
       at HSRawVideoPlayer/dotRoll()
  I googled and found that I should probably be setting the applicationDomain of the loader context of the loaded swf to be that of the loading SWF (as per Senocular's article on the subject) -- although I thought that in cases of conflict this would resolve to the loading SWFs ApplicationDomain, so not necessary.
  But I've also read that this won't work across different domains, and that's the situation here -- the client wants the urls of loading and loaded swf's to be fully qualified . Will setting the ApplicationDomain of the loaded SWF to be that of the parent solve the problem above, even if they are in different domains? Can someone show me a short code snippet? Thanks!

  Hi,
  DSS has inbuilt functionalities to compare the transactions against the in built rules.If the transactions take place not in accordance with the in-built rules,it is treated as a "violation" and is reporetd.
  Virsa is an example of DSS tool.Here you can build rules for access and process ;constantly compare the actuals Vs the rules;report the violations.
  In SAP R3 for example,the T/code:pfcg is tailored for access control,while the invoice parking [f-63] is tailored for process control.Using VIRSA,you can address to risks involved both,namely,access and process control.This is an example of how DSS can help in Risk integration.
  In these tools,we have an Engine for building the rules-based on this we build the rules.These rules are stored in a table.when a transaction-for which we have built a rule - takes place,the system compares the rules VS actuals.The inconsistencies if any are reported as violations.
  Hope this helps.
  Regards,
  Ramesh

• I have never set up a passcode but when I try to reset my phone it is asking for a passcode. Is there a generic code? Or how do I retrieve an existing/forgotten passcode?

  I have never set up a passcode on my iphone 4S but when I try to reset my phone it is asking for a 4 digit passcode.  Is there a generic code? Or how do I retrieve an existing/forgotten passcode?

  You will need to put your phone in recovery mode and then restore using iTunes.
  See here:
  http://support.apple.com/kb/HT1808
  Note: All user content will be erased.

• N97 South Africa generic code

  Hi GUYS
  ANYONE WHO KNOW THE GENERIC CODE FOR N97 SOUTH AFRICA?

  Try Google ! 
  0551542: Emerging Markets (ASIA / AFRICA)
  0552251: SOUTH AFRICA
  0552252: Africa
  Good Luck
  If I have helped at all, a click on the White Star is always appreciated :
  you can also help others by marking 'accept as solution' 

• Migrating Code in OSB

  Hello,
  What are possible ways to migrate code in OSB 11G ?
  Can anyone please provide documentation/blogs which explain in detail.
  In SOA Suite we use Jdev/ ant scripts(with config plans) to migrate code in dev-stg-prod.
  Thanks

  You may refer -
  http://biemond.blogspot.in/2010/07/osb-11g-ant-deployment-scripts.html
  http://docs.oracle.com/cd/E21764_01/doc.1111/e15022/app_config.htm#i1012336
  http://docs.oracle.com/cd/E21764_01/doc.1111/e15022/bestprac.htm#sthref44
  Regards,
  Anuj

• How to specify the target name while deploying a code in OSB-- Plz Help

  Hi all,
  Am working in creating a cluster environment. For my testing i created a new managed server(OSB_Server) in 9001 port in the admin console itself and that server started running. The default managed server(Admin_Server) is in 7001 port. So when i deploy a code in 7001 sb console the WSDL gets exposed in 7001 because the default admin server port is 7001. While deploying a code in service bus admin console we are not specifying the target name. So how to specify the target name while deploying the code in service bus admin console. Plz help me.
  Regards
  Prabhu

  Hi Prabhu,
  There are three kind of server architecture possible for OSB -
  1. Single server - Everything gets deployed on Admin server itself
  2. Admin Server + Single Managed Server for OSB -- OSB configuration gets deployed on OSB managed server. OSB resources (proxy service, WSDL, Schema) will remain available on OSB managed server port only and NOT on admin server port
  3. Admin Server + OSB cluster -- OSB configuration gets deployed on OSB cluster. OSB resources (proxy service, WSDL, Schema) will remain available on OSB Cluster port(s) only and NOT on admin server port
  Converting one type of server architecture to any other type, requires a manual tedious process, so it is suggested that you create domain accordingly i.e. if you need clusters then while creating domain itself, create OSB cluster, so that all OSB applications gets deployed to OSB cluster. I will suggest you to create a clustered domain from scratch and import the configuration from your existing domian to this new clustered domain.
  You may refer-
  http://download.oracle.com/docs/cd/E17904_01/doc.1111/e15022/toc.htm
  Regards,
  Anuj

• OSB and OSR Domain Configuration

  Is it possible to have an Oracle 11g WebLogic Domain running both Service Bus and Service Registry managed servers in their own clusters. I.e. Oracle 11g WebLogic domain with 1 Cluster of Managed servers - OSB instances, and 1 Cluster of Managed Servers - OSR instances?

  Check the javadoc for ALSBConfigurationMBean
  This has sample code as well.
  regards,
  ~Krithika

• Can we share one single RDBMS security store across multiple domains ?

  Can we share one single RDBMS security store across multiple weblogic domains? The idea is to utilize the same set of users and group defined in Weblogic Security Realms across multiple weblogic domains. Is it possible ? are there any risk ?
  i am using Oracle WebLogicServer11gR1 (10.3.6) Generic with Coherence.

  Hi,
  The document which you are referring is for WLS 10.0 and RDBMS security is introduced from WLS 10.3.0 onwards.
  The reason why RDBMS security store should not be stored between two domains is RDBMS security store is used by authorization, role mapping, credential mapping, and certificate registry providers.
  Once the RDBMS security store is configured in a domain, an instance of any of the preceding security providers that has been created in the security realm automatically uses only the RDBMS security store as a datastore, and not the embedded LDAP server.
  It is just the replacement for Embedded LDAP.
  Thanks & Regards,
  Murali.
  ============

• Auto-mapping across multiple domains

  I originally posted this in an O365 Exchange forum and was redirected here.  Any help is appreciated.
  Single E1/E3 O365 account with multiple domains having hosted email.  Automapping is working correctly only if the shared mailbox is from the first domain added to O365.  The other 4 domains that were added to O365 are not able to utilize automapping. 
  I have recreated Outlook profiles, removed and recreated permissions with PowerShell and the O365 GUI.  I also looked at the DNS settings required for O365 to work properly and everything looks correct.  Mail is being delivered, Lync is working,
  Example: [email protected] has full access to [email protected]'s mailbox.  Automapping does not work and UserA is prompted to provide credentials to log into UserB's mailbox.
  Any thoughts on why automapping would be failing across domains? 

  Hi,
  Generally, if the Automapping works, the msExchDelegateListLink value for the shared mailbox should contains all users who have full access permission to this shared mailbox. Please follow these steps to check this value:
  1. Open Active Directory Users and Computers.
  2. In Users, right-click the shared mailbox > Properties.
  3. In Attribute Editor tab, double click msExchDelegateListLink attribute.
  4. Make sure all users who have full access permissions are listed in the Values field.
  Regards,
  Winnie Liang
  TechNet Community Support

• Linked Server across the Domain

  Hi
  I have one problem encountering with Linked server connectivity.
  Have one of the server in Domain A and another server into other Domain B. Am able to connect and execute the sql query from Domain A to B. (Creating a linked server in Domain A and trying to access the database which is in Domain B). The problem is that vice
  versa am not able to achieve. Could you just help me in debugging this scenario?
  Also if you could throw me some light how to verify the IP is not blocked in firewall settings will be helpful to debug further.
  Some of the things which I have played around was to verify the remote connectivity was enabled, TCP/IP protocol was enabled, SQL service is up running etc
  Regards
  Srinivasan Baskaran
  Srinivasan, Sr. Software Engineer, India

  To verify firewall settings:
  Please refer -
  http://blogs.msdn.com/b/walzenbach/archive/2010/04/14/how-to-enable-remote-connections-in-sql-server-2008.aspx
  Try one more trick given in below similar thread:
  SQL2008r2 Linked Server fails across domains
  Cheers,
  Vaibhav Chaudhari
  [MCTS],
  [MCP]

• Generic code to minimize all windows in a form

  I want to write a procedure to minimize all windows in a form. This procedure will be called from a menu item.
  This can be done by using SET_WINDOW_PROPERTY built-in by hardcoding window names in the form and setting the window state to MINIMIZE.
  The requirement is, the code should be generic. So that, if it is called form the menu item, it will do minimizing of all windows in the current form.
  Hope no form built-ins are available to get the list of window names in a form.
  The requirement can be done by using FORMS The. I doubt it will not work for three tier architecture. Any alternate ways to get a solution?

  You can loop through all blocks and items and collect the used window names.

• Need to collect the Windows logon and logoff events across the Domain in a DC eviornment, for different machines and user accounts.

  Hello All,
  I am trying to build a Tool to collect the info about all the user's who login and logoff on daily basis in a domain network. I am using a windows 2008 server as a DC and have xp, win 7, win 8 , win 12 server as clients in the network.
  There are few questions in my mind which I am not able to answer.
  1> When a user tries to login to the DC network, he/ she gets authenticated using the kerberos protocol. does these authentication gets logged on the AD server by default? I have see a way to enable it from registry but even that's not giving me the expected
  output in the eventvwr.
  2> Do I have to use Audit policies to monitor all the user's log off and log on activities?
  3> Is there a way to collect these information from any place on the AD server other than the Eventvwr?
  Please help me in finding the solutions to these query's  of mine.
  Thanks.

  1. Open the Group Policy Management console on any domain controller in the target domain: navigate to Start → Administrative Tools → Group Policy Management.
  2. In the left pane, navigate to Forest: <domain_name>→ Domains → <domain_name>→ Domain Controllers. Right-click the effective domain controllers policy (by default, it is the Default Domain Controllers Policy), and select Edit from the pop-up
  menu. </domain_name></domain_name>
  <domain_name><domain_name>3. In the Group Policy Management Editor dialog, expand the Computer Configuration node on the left and navigate to Policies → Windows Settings → Security Settings → Local Policies → Audit Policy. </domain_name></domain_name>
  <domain_name><domain_name>4. Set the Audit account management and the Audit directory service access policy to "Success". Set the Audit logon events policy to  "Success" and "Failure". </domain_name></domain_name>
  5. Navigate to Start → Run and type '"cmd". Input the gpupdate /force command and press Enter. The group policy will be updated.
  Number of events could be excessive so you need to adjust size of Security log ( 1gb for example ) 
  Usage of EventCombMT Tool (part of
  MS ALtools )
   This tool gathers specific events from several different servers to one central location.
   Run the EventCombMT.exe > Right Click on Select to search field > Choose Get DCs in Domain > Mark your Domain Controllers for search
   Click the Searches menu > replace Event ID field values with
  4624  LOGON / 4634  LOGOFF
   Click Search and wait for the process to complete the operation.
   After the search is done the output directory contains the log files for the domain controllers where events with the specified Event ID’s were found.
  Alternatively you can try Netwrix Auditor for Active Directory solution with 20 days of free trial to generate such reports.
  --- Jeff (Netwrix)

• Reset the HTTP response code in OSB for proxy service

  Hi,
  I created a HTTP proxy service in ALSB with any XML message option. There are some business scnearios for which i need to send a custom error message in the HTTP body. I am replacing the $body variable with the error message and sending reply with success.As i am using reply with success it sends a HTTP response status code as 200 Ok.
  However based on different error conditions i want to send appropraite http response code. How can this be achieved?

  I would like to share the solution so that it would be useful to all the users of the forum.
  There is a http:http-response-code element in the $inbound variable which is optional element. You need to insert this element to the $inbound using the insert action. Here is the extract of the code:
  Insert [<http:http-response-code>401</http:http-response-code>] [ as last child of ] [./con:transport/con:response] in [inbound]
  Please note namespace con belongs to "http://www.bea.com/wli/sb/context".
  Edited by: [email protected] on Aug 12, 2009 10:47 PM