Google Devloper Console : Exception access_denied Requested client not authorized
Hi,
I am using Google API's to download the mails.
I have created a service account and set all required API's ON.Also added the project clientID to register api list.
I am able to download the mails of accounts present in this domain.
Is is possible to Add Member of another domain to this project and download the mails of that account using this project credentials.
I tried it but it gives me exception as
Error:"access_denied", Description:"Requested client not authorized.", Uri:""
Any idea?
Hi
shital diwate,
Since you are using Google API's. I am afraid that this is out of our support. This is third-party library. You can refer to
Google Developers Console Help page for the new help documentation. Thanks for your understanding.
Have a nice day!
Kristin
We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
Click
HERE to participate the survey.
Similar Messages
-
"Client not authorized" after start, OK after deploy
Whenever I try to create a session bean (stateful or stateless doesn't matter) right after app server startup, I get the exception "javax.ejb.AccessLocalException: Client not authorized for this invocation.". If I then redeploy the ear everything works fine. If I disable and then enable the application, the error comes back.
My role mappings are in the "sun-application.xml" file. The same EAR works fine in App Server 7 and 8 but not in 8.1.
Anyone else seen this?Hi,
you are using Sun Java System App Server, right?
In my case it was a policy problem... I had some servlets fetching classes via Java Reflection.
I was lazy an set the <domain1>/config/server.policy file to AllPermission granted, not nice, but worked.
You may finetune your policies :-)
bye! -
Error running Web Services in DEMO : User is not Authorized error
Hi all,
We created a Web Service in our DEMO installation of ERP9 Tools 8.97, Database Local SSE (User - DEMO, Password-DEMO). The Web Service is using JDE Vanilla BSFN - B0100021 - Formatted Address and created through JDeveloper using JDE BSSV tool.
When we are running the Web Service (TestCustomWebService) from JDeveloper (Right Click and Run) it is providng an url (http://moequbal:8988/context-root-JP55HOL/TestCustomWebServiceSoapHttpPort) and when we are pasting the URL in the browser and entering a valid value in the Input field and pressiing the 'Invoke' Button, the following Error pops up -
"<env:Envelope
xmlns:env="http://schemas.xmlsoap.org/soap/envelope/"
xmlns:xsd="http://www.w3.org/2001/XMLSchema"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xmlns:ns0="http://oracle.e1.bssv.JP55HOL/types/">
<env:Body>
<env:Fault>
<faultcode>env:Server</faultcode>
<faultstring>Internal Server Error (Caught exception while handling request: oracle.e1.bssvfoundation.exception.E1AuthorizationException: User is not authorized to invoke this published business service)</faultstring>
</env:Fault>
</env:Body>
</env:Envelope>"
Please help.
Thanks,
TufanI can confirm that the lab and BSSV functionaly works in DEMO, I have it working nicely. However, I dont think you can deploy this to a Business Services server. I haven't tried as yet. but you can test all the published BSSV via jDeveloper to verify that you have the correct code. It starts O4CJ and web services locally and brings up an input web page to enter the AN8, the data outputs to XML.
Tip:
1) Make sure that you have an entry in the P00950 security workbench. .
2) make sure that you select the BSSV item (i.e CustomAddressManager) and select 'set to publish' available (this only appears on checkin) when you check the object in. Make sure that you have entries in the F98601, 602, 603 tables in Object Librarian
3) Open P00950 select published bssv, click on the grid line (1st column) in the grid form of W00950X click the searchlight, in W00950U hit find you must see your published BSSV in here.
if not you go back to step 2. You must 'set to publish' for the bssv i.e CustomAddressManager object. Otherwise you will not be able to see in the W00950U form.
4) Repeat for the 2nd column and Make sure you select the 'Secure by Method' this will take you to W00950Y form and you must select your bssv and select the 'Allow Execute' on the bottom of the form.
Once you have these in place then you will not get the 'Not authorized' error messages.
Christopher Koloszar
JDE Senior Business Analyst
Oracle 10g DBA
[email protected]
Edited by: user3025204 on 15-Oct-2009 02:00 -
Caller djunker2 not authorized.
Hi @ all,
i want to deploy some applications on a Web AS 6.40.
I tried to connect with the Visual Administrator an got the following error message:
"Error while connecting
com.sap.engine.services.jmx.exception.JmxSecurityException: Caller djunker2 not authorized, only role administrators is allowed to access JMX"
I have set up following roles to my user:
Administrator --> Administrator role
system_admin_role --> System Admin
super_admin_role --> Super Administration
content_admin_role --> Content Admin
I'm still not allowed to login with the Visual Admin.
Can anyone tell me which role is needed to get the authorization?
Thanks,
DennisI am getting the same error when trying to get my developers into the Standalone Log Viewer. Can you let me know which role resolved your issue. thanks,
Dede -
SQL Exception: A lock could not be obtained within the time requested
Hi Friends,
In one of my processes there is an automatic activity which reads some records from an excel sheet and loads them in a separated array of objects and then for each object in the array it creates a copy using Split-N. There are about 2000 records read which takes about 3 minutes to process in Fuego Studio. But, when it comes to process Split-N activity, it takes pretty long time... keeps processing the for loop for about 15 mins and then I get SQL Exception: SQL Exception: A lock could not be obtained within the time requested (Details below). In the meantime it processes close to 950 records.
In order to resolve it I tried increasing timeout interval in Server Preferences to 2400 secs changig default 1200 secs but no results.
To my utter surprise none of the logMessages get logged until Split-N activity completes.
Can somebody please put more light on this and suggest if I'm doing something wrong?
FYI, I'm posting my Split-N code and the SQL exception details.
EXCEPTION
=========
Problems updating the BAM database. Reason:Unable to connect to the database.
Caused by: A lock could not be obtained within the time requested
fuego.analyzer.UpdaterRuntimeException: Unable to connect to the database.
at fuego.analyzer.UpdaterRuntimeException.cannotConnecToDatabase(UpdaterRuntimeException.java:80)
at fuego.analyzer.UpdaterRunner.synchronizeMetadata(UpdaterRunner.java:494)
at fuego.analyzer.UpdaterRunner.run(UpdaterRunner.java:273)
at fuego.analyzer.UpdaterRunner.runUpdater(UpdaterRunner.java:176)
at fuego.server.service.BAMRunnerService.runUpdater(BAMRunnerService.java:62)
at fuego.server.execution.BAMUpdater.execute(BAMUpdater.java:33)
at fuego.server.execution.DefaultEngineExecution$AtomicExecutionTA.runTransaction(DefaultEngineExecution.java:290)
at fuego.transaction.TransactionAction.startBaseTransaction(TransactionAction.java:465)
at fuego.transaction.TransactionAction.startTransaction(TransactionAction.java:543)
at fuego.transaction.TransactionAction.start(TransactionAction.java:216)
at fuego.server.execution.DefaultEngineExecution.executeImmediate(DefaultEngineExecution.java:116)
at fuego.server.execution.DefaultEngineExecution.executeAutomaticWork(DefaultEngineExecution.java:56)
at fuego.server.execution.EngineExecution.executeAutomaticWork(EngineExecution.java:42)
at fuego.server.execution.ToDoItem.executeAutomaticWork(ToDoItem.java:265)
at fuego.server.execution.ToDoItem.run(ToDoItem.java:536)
at fuego.component.ExecutionThread.processMessage(ExecutionThread.java:752)
at fuego.component.ExecutionThread.processBatch(ExecutionThread.java:732)
at fuego.component.ExecutionThread.doProcessBatch(ExecutionThread.java:138)
at fuego.component.ExecutionThread.doProcessBatch(ExecutionThread.java:130)
at fuego.fengine.ToDoQueueThread$PrincipalWrapper.processBatch(ToDoQueueThread.java:429)
at fuego.component.ExecutionThread.work(ExecutionThread.java:816)
at fuego.component.ExecutionThread.run(ExecutionThread.java:395)
Caused by: SQL Exception: A lock could not be obtained within the time requested
at com.ibm.db2cs.m.j.generateCsSQLException(Unknown Source)
at com.ibm.db2cs.m.b.wrapInSQLException(Unknown Source)
at com.ibm.db2cs.m.b.handleException(Unknown Source)
at com.ibm.db2cs.m.d.handleException(Unknown Source)
at com.ibm.db2cs.m.t.handleException(Unknown Source)
at com.ibm.db2cs.m.s.closeOnTransactionError(Unknown Source)
at com.ibm.db2cs.m.s.movePosition(Unknown Source)
at com.ibm.db2cs.m.s.next(Unknown Source)
at fuego.jdbc.FaultTolerantResultSet.next(FaultTolerantResultSet.java:553)
at fuego.analyzer.Updater.loadInstanceInfoValues(Updater.java:1039)
at fuego.analyzer.Updater.loadInstanceInfoValues(Updater.java:988)
at fuego.analyzer.Updater.loadInstanceInfo(Updater.java:982)
at fuego.analyzer.Updater.synchronize(Updater.java:252)
at fuego.analyzer.UpdaterRunner.synchronizeMetadata(UpdaterRunner.java:480)
... 20 moreSplit-N Code
==========
for (int i = 0; i <= (eventList.events.count() - 1); i++) {
copy = clone(this);
logMessage("INSTANCE(" + (i + 1) + ") CLONED: " + copy.currEvent.text_data, severity : DEBUG);
copy.currEvent = eventList.events.event;
logMessage("Event(" + (i + 1) + ") Assigned.", severity : DEBUG);
copy.eventList = null;
logMessage("EventList(" + (i + 1) + ") set to null.", severity : DEBUG);
copy.description = (copy.currEvent.text_data + "(" + copy.currEvent.login_name + ")").strip(len : 200);
logMessage("EVENT(" + (i + 1) + ") COPIED: " + copy.currEvent.text_data, severity : DEBUG);
Any help in this regard would be highly appreciated.
Regards,
Manoj
=============================================
[url http://www.economicalwebsites.com]Cheap Web Hosting by EconomicalWebsites.com
=============================================
Edited by goelmk at 12/05/2007 8:14 AMHi Friends,
In one of my processes there is an automatic activity which reads some records from an excel sheet and loads them in a separated array of objects and then for each object in the array it creates a copy using Split-N. There are about 2000 records read which takes about 3 minutes to process in Fuego Studio. But, when it comes to process Split-N activity, it takes pretty long time... keeps processing the for loop for about 15 mins and then I get SQL Exception: SQL Exception: A lock could not be obtained within the time requested (Details below). In the meantime it processes close to 950 records.
In order to resolve it I tried increasing timeout interval in Server Preferences to 2400 secs changig default 1200 secs but no results.
To my utter surprise none of the logMessages get logged until Split-N activity completes.
Can somebody please put more light on this and suggest if I'm doing something wrong?
FYI, I'm posting my Split-N code and the SQL exception details.
EXCEPTION
=========
Problems updating the BAM database. Reason:Unable to connect to the database.
Caused by: A lock could not be obtained within the time requested
fuego.analyzer.UpdaterRuntimeException: Unable to connect to the database.
at fuego.analyzer.UpdaterRuntimeException.cannotConnecToDatabase(UpdaterRuntimeException.java:80)
at fuego.analyzer.UpdaterRunner.synchronizeMetadata(UpdaterRunner.java:494)
at fuego.analyzer.UpdaterRunner.run(UpdaterRunner.java:273)
at fuego.analyzer.UpdaterRunner.runUpdater(UpdaterRunner.java:176)
at fuego.server.service.BAMRunnerService.runUpdater(BAMRunnerService.java:62)
at fuego.server.execution.BAMUpdater.execute(BAMUpdater.java:33)
at fuego.server.execution.DefaultEngineExecution$AtomicExecutionTA.runTransaction(DefaultEngineExecution.java:290)
at fuego.transaction.TransactionAction.startBaseTransaction(TransactionAction.java:465)
at fuego.transaction.TransactionAction.startTransaction(TransactionAction.java:543)
at fuego.transaction.TransactionAction.start(TransactionAction.java:216)
at fuego.server.execution.DefaultEngineExecution.executeImmediate(DefaultEngineExecution.java:116)
at fuego.server.execution.DefaultEngineExecution.executeAutomaticWork(DefaultEngineExecution.java:56)
at fuego.server.execution.EngineExecution.executeAutomaticWork(EngineExecution.java:42)
at fuego.server.execution.ToDoItem.executeAutomaticWork(ToDoItem.java:265)
at fuego.server.execution.ToDoItem.run(ToDoItem.java:536)
at fuego.component.ExecutionThread.processMessage(ExecutionThread.java:752)
at fuego.component.ExecutionThread.processBatch(ExecutionThread.java:732)
at fuego.component.ExecutionThread.doProcessBatch(ExecutionThread.java:138)
at fuego.component.ExecutionThread.doProcessBatch(ExecutionThread.java:130)
at fuego.fengine.ToDoQueueThread$PrincipalWrapper.processBatch(ToDoQueueThread.java:429)
at fuego.component.ExecutionThread.work(ExecutionThread.java:816)
at fuego.component.ExecutionThread.run(ExecutionThread.java:395)
Caused by: SQL Exception: A lock could not be obtained within the time requested
at com.ibm.db2cs.m.j.generateCsSQLException(Unknown Source)
at com.ibm.db2cs.m.b.wrapInSQLException(Unknown Source)
at com.ibm.db2cs.m.b.handleException(Unknown Source)
at com.ibm.db2cs.m.d.handleException(Unknown Source)
at com.ibm.db2cs.m.t.handleException(Unknown Source)
at com.ibm.db2cs.m.s.closeOnTransactionError(Unknown Source)
at com.ibm.db2cs.m.s.movePosition(Unknown Source)
at com.ibm.db2cs.m.s.next(Unknown Source)
at fuego.jdbc.FaultTolerantResultSet.next(FaultTolerantResultSet.java:553)
at fuego.analyzer.Updater.loadInstanceInfoValues(Updater.java:1039)
at fuego.analyzer.Updater.loadInstanceInfoValues(Updater.java:988)
at fuego.analyzer.Updater.loadInstanceInfo(Updater.java:982)
at fuego.analyzer.Updater.synchronize(Updater.java:252)
at fuego.analyzer.UpdaterRunner.synchronizeMetadata(UpdaterRunner.java:480)
... 20 moreSplit-N Code
==========
for (int i = 0; i <= (eventList.events.count() - 1); i++) {
copy = clone(this);
logMessage("INSTANCE(" + (i + 1) + ") CLONED: " + copy.currEvent.text_data, severity : DEBUG);
copy.currEvent = eventList.events.event;
logMessage("Event(" + (i + 1) + ") Assigned.", severity : DEBUG);
copy.eventList = null;
logMessage("EventList(" + (i + 1) + ") set to null.", severity : DEBUG);
copy.description = (copy.currEvent.text_data + "(" + copy.currEvent.login_name + ")").strip(len : 200);
logMessage("EVENT(" + (i + 1) + ") COPIED: " + copy.currEvent.text_data, severity : DEBUG);
Any help in this regard would be highly appreciated.
Regards,
Manoj
=============================================
[url http://www.economicalwebsites.com]Cheap Web Hosting by EconomicalWebsites.com
=============================================
Edited by goelmk at 12/05/2007 8:14 AM -
Request is not created for in the development client
Our MM Consultant is add the new plant in the development client in the T-code SPRO (logistic general- tax and goods movements - india - basic settings - maintain plant settings)and he need to create the request for the same to transport that to the quality client for the testing purpose. but he is unable to create the request. there in the screen it is showing that the data is saved but it need to ask to create the request... please to the needful
i had checked the scc4 client setting that and all is fine
like
Client role customizing
automatic recording of changes
changes to repository and customizing requests is allowed
protetion level is 0
catt and ecatt allowed
regards,
praveen
basis consulatnt> that is fine , for every customizing table the request is not creating, in the status bar it is showing that the data is saved....
Please check if the user has any open transport request where those entries are doing to.
> i am not getting that where it is saving and which request i need to transport from the dev 100 to quality
In case you can't fix it/find out open an OSS call. Very difficult to suggest something without having system access.
Markus -
Client export request will not be imported
Hi,
I have run a client export via SCC8. In the transport log there is 1 error and the message 'EETP200 export with errors, request will not be imported'. Status is 12.
I have checked the log and the failure was due to a rollback segment not being large enough.
As the export took 22 hours to run and only 1 table failed out of approx 8000 is there any way that I can import the transport and then export the failed table again or do I have to increase the rollback segment and run the entire export again?
I've checked OSS and can't find anything on this.
Thanks - Janetyou can use program R3TRANS to export that one file.
SAP note 120906 does a similar job for multiple tables. have a look. -
"your request could not be completed" I always see this annoying message whenever I try to download google LATITUDE, I never saw this message when I download other applications. How can i download this on my iphone4 from Pakistan?
I'm having the same problem!!
-
Hi everyone,
it's probably just me but I have tried real hard to get a simple AnyConnect setup working in a lab environment on my ASA 5505 at home, without luck. When I connect with the AnyConnect client I get the error message "User not authorized for AnyConnect Client access, contact your administrator". I have searched for this error and tried some of the few solutions out there, but to no avail. I also updated the ASA from 8.4.4(1) to 9.1(1) and ASDM from 6.4(9) to 7.1(1) but still the same problem. The setup of the ASA is straight forward, directly connected to the Internet with a 10.0.1.0 / 24 subnet on the inside and an address pool of 10.0.2.0 / 24 to assign to the VPN clients. Please note that due to ISP restrictions, I'm using port 44455 instead of 443. I had AnyConnect working with the SSL portal, but IKEv2 IPsec is giving me a headache. I have stripped down certificate authentication which I had running before just to eliminate this as a potential cause of the issue. When running debugging, I do not get any error messages - the handshake completes successfully and the local authentication works fine as well.
Please find the current config and debugging output below. I appreciate any pointers as to what might be wrong here.
: Saved
ASA Version 9.1(1)
hostname ASA
domain-name ingo.local
enable password ... encrypted
xlate per-session deny tcp any4 any4
xlate per-session deny tcp any4 any6
xlate per-session deny tcp any6 any4
xlate per-session deny tcp any6 any6
xlate per-session deny udp any4 any4 eq domain
xlate per-session deny udp any4 any6 eq domain
xlate per-session deny udp any6 any4 eq domain
xlate per-session deny udp any6 any6 eq domain
passwd ... encrypted
names
name 10.0.1.0 LAN-10-0-1-x
dns-guard
ip local pool VPNPool 10.0.2.1-10.0.2.10 mask 255.255.255.0
interface Ethernet0/0
switchport access vlan 2
interface Ethernet0/1
interface Ethernet0/2
interface Ethernet0/3
interface Ethernet0/4
interface Ethernet0/5
interface Ethernet0/6
interface Ethernet0/7
interface Vlan1
nameif Internal
security-level 100
ip address 10.0.1.254 255.255.255.0
interface Vlan2
nameif External
security-level 0
ip address dhcp setroute
regex BlockFacebook "facebook.com"
banner login This is a monitored system. Unauthorized access is prohibited.
boot system disk0:/asa911-k8.bin
ftp mode passive
clock timezone PST -8
clock summer-time PDT recurring
dns domain-lookup Internal
dns domain-lookup External
dns server-group DefaultDNS
name-server 10.0.1.11
name-server 75.153.176.1
name-server 75.153.176.9
domain-name ingo.local
object network obj_any
subnet 0.0.0.0 0.0.0.0
object network LAN-10-0-1-x
subnet 10.0.1.0 255.255.255.0
object network Company-IP1
host xxx.xxx.xxx.xxx
object network Company-IP2
host xxx.xxx.xxx.xxx
object network HYPER-V-DUAL-IP
range 10.0.1.1 10.0.1.2
object network LAN-10-0-1-X
access-list 100 extended permit tcp any4 object HYPER-V-DUAL-IP eq 3389 inactive
access-list 100 extended permit tcp object Company-IP1 object HYPER-V-DUAL-IP eq 3389
access-list 100 extended permit tcp object Company-IP2 object HYPER-V-DUAL-IP eq 3389
tcp-map Normalizer
check-retransmission
checksum-verification
no pager
logging enable
logging timestamp
logging list Threats message 106023
logging list Threats message 106100
logging list Threats message 106015
logging list Threats message 106021
logging list Threats message 401004
logging buffered errors
logging trap Threats
logging asdm debugging
logging device-id hostname
logging host Internal 10.0.1.11 format emblem
logging ftp-bufferwrap
logging ftp-server 10.0.1.11 / asa *****
logging permit-hostdown
mtu Internal 1500
mtu External 1500
ip verify reverse-path interface Internal
ip verify reverse-path interface External
icmp unreachable rate-limit 1 burst-size 1
icmp deny any echo External
asdm image disk0:/asdm-711.bin
no asdm history enable
arp timeout 14400
no arp permit-nonconnected
object network obj_any
nat (Internal,External) dynamic interface
object network LAN-10-0-1-x
nat (Internal,External) dynamic interface
object network HYPER-V-DUAL-IP
nat (Internal,External) static interface service tcp 3389 3389
access-group 100 in interface External
timeout xlate 3:00:00
timeout pat-xlate 0:00:30
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
timeout tcp-proxy-reassembly 0:01:00
timeout floating-conn 0:00:00
dynamic-access-policy-record DfltAccessPolicy
aaa-server radius protocol radius
aaa-server radius (Internal) host 10.0.1.11
key *****
radius-common-pw *****
user-identity default-domain LOCAL
aaa authentication ssh console radius LOCAL
http server enable
http LAN-10-0-1-x 255.255.255.0 Internal
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart
crypto ipsec ikev2 ipsec-proposal DES
protocol esp encryption des
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal 3DES
protocol esp encryption 3des
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal AES
protocol esp encryption aes
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal AES192
protocol esp encryption aes-192
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal AES256
protocol esp encryption aes-256
protocol esp integrity sha-1 md5
crypto ipsec security-association pmtu-aging infinite
crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set ikev2 ipsec-proposal AES256 AES192 AES 3DES DES
crypto map External_map 65535 ipsec-isakmp dynamic SYSTEM_DEFAULT_CRYPTO_MAP
crypto map External_map interface External
crypto ca trustpoint srv01_trustpoint
enrollment terminal
crl configure
crypto ca trustpoint asa_cert_trustpoint
keypair asa_cert_trustpoint
crl configure
crypto ca trustpoint LOCAL-CA-SERVER
keypair LOCAL-CA-SERVER
crl configure
crypto ca trustpool policy
crypto ca server
cdp-url http://.../+CSCOCA+/asa_ca.crl:44435
issuer-name CN=...
database path disk0:/LOCAL_CA_SERVER/
smtp from-address ...
publish-crl External 44436
crypto ca certificate chain srv01_trustpoint
certificate <output omitted>
quit
crypto ca certificate chain asa_cert_trustpoint
certificate <output omitted>
quit
crypto ca certificate chain LOCAL-CA-SERVER
certificate <output omitted>
quit
crypto ikev2 policy 1
encryption aes-256
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 policy 10
encryption aes-192
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 policy 20
encryption aes
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 policy 30
encryption 3des
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 policy 40
encryption des
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 enable External client-services port 44455
crypto ikev2 remote-access trustpoint asa_cert_trustpoint
telnet timeout 5
ssh LAN-10-0-1-x 255.255.255.0 Internal
ssh xxx.xxx.xxx.xxx 255.255.255.255 External
ssh xxx.xxx.xxx.xxx 255.255.255.255 External
ssh timeout 5
ssh version 2
console timeout 0
no vpn-addr-assign aaa
no ipv6-vpn-addr-assign aaa
no ipv6-vpn-addr-assign local
dhcpd dns 75.153.176.9 75.153.176.1
dhcpd domain ingo.local
dhcpd option 3 ip 10.0.1.254
dhcpd address 10.0.1.50-10.0.1.81 Internal
dhcpd enable Internal
threat-detection basic-threat
threat-detection scanning-threat shun except ip-address LAN-10-0-1-x 255.255.255.0
threat-detection statistics access-list
threat-detection statistics tcp-intercept rate-interval 30 burst-rate 400 average-rate 200
dynamic-filter use-database
dynamic-filter enable interface Internal
dynamic-filter enable interface External
dynamic-filter drop blacklist interface Internal
dynamic-filter drop blacklist interface External
ntp server 128.233.3.101 source External
ntp server 128.233.3.100 source External prefer
ntp server 204.152.184.72 source External
ntp server 192.6.38.127 source External
ssl encryption aes256-sha1 aes128-sha1 3des-sha1
ssl trust-point asa_cert_trustpoint External
webvpn
port 44433
enable External
dtls port 44433
anyconnect image disk0:/anyconnect-win-3.1.02026-k9.pkg 1
anyconnect profiles profile1 disk0:/profile1.xml
anyconnect enable
smart-tunnel list SmartTunnelList1 mstsc mstsc.exe platform windows
smart-tunnel list SmartTunnelList1 putty putty.exe platform windows
group-policy DfltGrpPolicy attributes
vpn-tunnel-protocol ikev1 ikev2 l2tp-ipsec ssl-client ssl-clientless
webvpn
anyconnect profiles value profile1 type user
username write.ingo password ... encrypted
username ingo password ... encrypted privilege 15
username tom.tucker password ... encrypted
class-map TCP
match port tcp range 1 65535
class-map type regex match-any BlockFacebook
match regex BlockFacebook
class-map type inspect http match-all BlockDomains
match request header host regex class BlockFacebook
class-map inspection_default
match default-inspection-traffic
policy-map type inspect dns preset_dns_map
parameters
message-length maximum client auto
message-length maximum 1500
id-randomization
policy-map TCP
class TCP
set connection conn-max 1000 embryonic-conn-max 1000 per-client-max 250 per-client-embryonic-max 250
set connection timeout dcd
set connection advanced-options Normalizer
set connection decrement-ttl
policy-map type inspect http HTTP
parameters
protocol-violation action drop-connection log
class BlockDomains
policy-map global_policy
class inspection_default
inspect ftp
inspect h323 h225
inspect h323 ras
inspect rsh
inspect rtsp
inspect esmtp
inspect sqlnet
inspect skinny
inspect sunrpc
inspect xdmcp
inspect sip
inspect netbios
inspect tftp
inspect ip-options
inspect dns preset_dns_map dynamic-filter-snoop
inspect http HTTP
service-policy global_policy global
service-policy TCP interface External
smtp-server 199.185.220.249
privilege cmd level 3 mode exec command perfmon
privilege cmd level 3 mode exec command ping
privilege cmd level 3 mode exec command who
privilege cmd level 3 mode exec command logging
privilege cmd level 3 mode exec command failover
privilege cmd level 3 mode exec command vpn-sessiondb
privilege cmd level 3 mode exec command packet-tracer
privilege show level 5 mode exec command import
privilege show level 5 mode exec command running-config
privilege show level 3 mode exec command reload
privilege show level 3 mode exec command mode
privilege show level 3 mode exec command firewall
privilege show level 3 mode exec command asp
privilege show level 3 mode exec command cpu
privilege show level 3 mode exec command interface
privilege show level 3 mode exec command clock
privilege show level 3 mode exec command dns-hosts
privilege show level 3 mode exec command access-list
privilege show level 3 mode exec command logging
privilege show level 3 mode exec command vlan
privilege show level 3 mode exec command ip
privilege show level 3 mode exec command failover
privilege show level 3 mode exec command asdm
privilege show level 3 mode exec command arp
privilege show level 3 mode exec command ipv6
privilege show level 3 mode exec command route
privilege show level 3 mode exec command ospf
privilege show level 3 mode exec command aaa-server
privilege show level 3 mode exec command aaa
privilege show level 3 mode exec command eigrp
privilege show level 3 mode exec command crypto
privilege show level 3 mode exec command ssh
privilege show level 3 mode exec command vpn-sessiondb
privilege show level 3 mode exec command vpnclient
privilege show level 3 mode exec command vpn
privilege show level 3 mode exec command dhcpd
privilege show level 3 mode exec command blocks
privilege show level 3 mode exec command wccp
privilege show level 3 mode exec command dynamic-filter
privilege show level 3 mode exec command webvpn
privilege show level 3 mode exec command service-policy
privilege show level 3 mode exec command module
privilege show level 3 mode exec command uauth
privilege show level 3 mode exec command compression
privilege show level 3 mode configure command interface
privilege show level 3 mode configure command clock
privilege show level 3 mode configure command access-list
privilege show level 3 mode configure command logging
privilege show level 3 mode configure command ip
privilege show level 3 mode configure command failover
privilege show level 5 mode configure command asdm
privilege show level 3 mode configure command arp
privilege show level 3 mode configure command route
privilege show level 3 mode configure command aaa-server
privilege show level 3 mode configure command aaa
privilege show level 3 mode configure command crypto
privilege show level 3 mode configure command ssh
privilege show level 3 mode configure command dhcpd
privilege show level 5 mode configure command privilege
privilege clear level 3 mode exec command dns-hosts
privilege clear level 3 mode exec command logging
privilege clear level 3 mode exec command arp
privilege clear level 3 mode exec command aaa-server
privilege clear level 3 mode exec command crypto
privilege clear level 3 mode exec command dynamic-filter
privilege cmd level 3 mode configure command failover
privilege clear level 3 mode configure command logging
privilege clear level 3 mode configure command arp
privilege clear level 3 mode configure command crypto
privilege clear level 3 mode configure command aaa-server
prompt hostname context
no call-home reporting anonymous
call-home
profile CiscoTAC-1
no active
destination address http https://tools.cisco.com/its/service/oddce/services/DDCEService
destination address email [email protected]
destination transport-method http
subscribe-to-alert-group diagnostic
subscribe-to-alert-group environment
subscribe-to-alert-group inventory periodic monthly
subscribe-to-alert-group configuration periodic monthly
subscribe-to-alert-group telemetry periodic daily
Cryptochecksum:41a021a28f73c647a2f550ba932bed1a
: end
Many thanks,
IngoHi Jose,
here is what I got now:
ASA(config)# sh run | begin tunnel-group
tunnel-group DefaultWEBVPNGroup general-attributes
address-pool VPNPool
authorization-required
and DAP debugging still the same:
ASA(config)# DAP_TRACE: DAP_open: CDC45080
DAP_TRACE: Username: tom.tucker, aaa.cisco.grouppolicy = DfltGrpPolicy
DAP_TRACE: Username: tom.tucker, aaa.cisco.username = tom.tucker
DAP_TRACE: Username: tom.tucker, aaa.cisco.username1 = tom.tucker
DAP_TRACE: Username: tom.tucker, aaa.cisco.username2 =
DAP_TRACE: Username: tom.tucker, aaa.cisco.tunnelgroup = DefaultWEBVPNGroup
DAP_TRACE: Username: tom.tucker, DAP_add_SCEP: scep required = [FALSE]
DAP_TRACE: Username: tom.tucker, DAP_add_AC:
endpoint.anyconnect.clientversion="3.1.02026";
endpoint.anyconnect.platform="win";
DAP_TRACE: Username: tom.tucker, dap_aggregate_attr: rec_count = 1
DAP_TRACE: Username: tom.tucker, Selected DAPs: DfltAccessPolicy
DAP_TRACE: Username: tom.tucker, DAP_close: CDC45080
Unfortunately, it still doesn't work. Hmmm.. maybe a wipe of the config and starting from scratch can help?
Thanks,
Ingo -
VPN clients not able to ping Remote PCs & Servers : ASA 5520
VPN is connected successfully. But not able to ping any remote ip or fqdn from client pc. But able to ping ASA 5520 firewalls inside interface. Also some clients able to access, some clients not able to access. I new to these firewalls. I tried most of ways from internet, please any one can help asap.
Remote ip section : 192.168.1.0/24
VPN IP Pool : 192.168.5.0/24
Running Config :
ip address 192.168.1.2 255.255.255.0
interface GigabitEthernet0/2
shutdown
no nameif
no security-level
no ip address
interface GigabitEthernet0/3
shutdown
no nameif
no security-level
no ip address
interface Management0/0
shutdown
no nameif
no security-level
no ip address
management-only
passwd z40TgSyhcLKQc3n1 encrypted
boot system disk0:/asa722-k8.bin
ftp mode passive
clock timezone GST 4
dns domain-lookup outside
dns domain-lookup inside
dns server-group DefaultDNS
name-server 213.42.20.20
domain-name default.domain.invalid
access-list outtoin extended permit tcp any host 83.111.113.114 eq 3389
access-list outtoin extended permit tcp any host 83.111.113.113 eq https
access-list outtoin extended permit tcp any host 83.111.113.114 eq smtp
access-list outtoin extended permit tcp any host 83.111.113.114 eq https
access-list outtoin extended permit tcp any host 83.111.113.114 eq www
access-list outtoin extended permit tcp any host 83.111.113.115 eq https
access-list outtoin extended permit tcp any host 94.56.148.98 eq 3389
access-list outtoin extended permit tcp any host 83.111.113.117 eq ssh
access-list fualavpn_splitTunnelAcl standard permit 192.168.1.0 255.255.255.0
access-list outside_nat0_outbound extended permit ip 192.168.5.0 255.255.255.0
92.168.1.0 255.255.255.0
access-list inside_nat0_outbound extended permit ip 192.168.1.0 255.255.255.0 1
2.168.5.0 255.255.255.0
access-list inet_in extended permit icmp any any time-exceeded
access-list inet_in extended permit icmp any any unreachable
access-list inet_in extended permit icmp any any echo-reply
access-list inet_in extended permit icmp any any echo
pager lines 24
logging enable
logging asdm informational
logging from-address [email protected]
logging recipient-address [email protected] level errors
logging recipient-address [email protected] level emergencies
logging recipient-address [email protected] level errors
mtu outside 1500
mtu inside 1500
ip local pool fualapool 192.168.5.10-192.168.5.50 mask 255.255.255.0
ip local pool VPNPool 192.168.5.51-192.168.5.150 mask 255.255.255.0
no failover
icmp unreachable rate-limit 1 burst-size 1
asdm image disk0:/asdm-522.bin
no asdm history enable
arp timeout 14400
global (outside) 1 interface
nat (inside) 0 access-list inside_nat0_outbound outside
nat (inside) 1 192.168.1.0 255.255.255.0
static (inside,outside) 94.56.148.98 192.168.1.11 netmask 255.255.255.255
static (inside,outside) 83.111.113.114 192.168.1.111 netmask 255.255.255.255
access-group inet_in in interface outside
route outside 0.0.0.0 0.0.0.0 83.111.113.116 1
timeout xlate 3:00:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout uauth 0:05:00 absolute
group-policy DfltGrpPolicy attributes
banner none
wins-server none
dns-server none
dhcp-network-scope none
vpn-access-hours none
vpn-simultaneous-logins 10
vpn-idle-timeout 30
vpn-session-timeout none
vpn-filter none
vpn-tunnel-protocol IPSec l2tp-ipsec webvpn
password-storage disable
ip-comp disable
re-xauth disable
group-lock none
pfs disable
ipsec-udp disable
ipsec-udp-port 10000
split-tunnel-policy tunnelall
split-tunnel-network-list none
default-domain none
split-dns none
intercept-dhcp 255.255.255.255 disable
secure-unit-authentication disable
user-authentication disable
user-authentication-idle-timeout 30
ip-phone-bypass disable
leap-bypass disable
nem disable
backup-servers keep-client-config
msie-proxy server none
msie-proxy method no-modify
msie-proxy except-list none
msie-proxy local-bypass disable
nac disable
nac-sq-period 300
nac-reval-period 36000
nac-default-acl none
address-pools none
client-firewall none
client-access-rule none
webvpn
functions url-entry
html-content-filter none
homepage none
keep-alive-ignore 4
http-comp gzip
filter none
url-list none
customization value DfltCustomization
port-forward none
port-forward-name value Application Access
sso-server none
deny-message value Login was successful, but because certain criteria have no
been met or due to some specific group policy, you do not have permission to u
e any of the VPN features. Contact your IT administrator for more information
svc none
svc keep-installer installed
svc keepalive none
svc rekey time none
svc rekey method none
svc dpd-interval client none
svc dpd-interval gateway none
svc compression deflate
group-policy fualavpn internal
group-policy fualavpn attributes
dns-server value 192.168.1.111 192.168.1.100
vpn-tunnel-protocol IPSec
split-tunnel-policy tunnelspecified
split-tunnel-network-list value fualavpn_splitTunnelAcl
username test password I7ZgrgChfw4FV2AW encrypted privilege 0
username Mohamed password Vqmmt8cR/.Qu7LhU encrypted privilege 0
username Moghazi password GMr7xgdqmGEQ2SVR encrypted privilege 0
username Moghazi attributes
password-storage enable
username fualauaq password E6CgvoOpTKphiM2U encrypted privilege 0
username fualauaq attributes
password-storage enable
username fuala password IFtijSYb7LAOV/IW encrypted privilege 15
username Basher password Djf15nXIJXmayfjY encrypted privilege 0
username Basher attributes
password-storage enable
username fualafac password VGC/7cKXW1A6eyXS encrypted privilege 0
username fualafac attributes
password-storage enable
username fualaab password ONTH8opuP4RKgRXD encrypted privilege 0
username fualaab attributes
password-storage enable
username fualaadh2 password mNEgLxzPBeF4SyDb encrypted privilege 0
username fualaadh2 attributes
password-storage enable
username fualaain2 password LSKk6slwsVn4pxqr encrypted privilege 0
username fualaain2 attributes
password-storage enable
username fualafj2 password lE4Wu7.5s7VXwCqv encrypted privilege 0
username fualafj2 attributes
password-storage enable
username fualakf2 password 38oMUuwKyShs4Iid encrypted privilege 0
username fualakf2 attributes
password-storage enable
username fualaklb password .3AMGUZ1NWU1zzIp encrypted privilege 0
username fualaklb attributes
password-storage enable
username fualastr password RDXSdBgMaJxNLnaH encrypted privilege 0
username fualastr attributes
password-storage enable
username fualauaq2 password HnjodvZocYhDKrED encrypted privilege 0
username fualauaq2 attributes
password-storage enable
username fualastore password wWDVHfUu9pdM9jGj encrypted privilege 0
username fualastore attributes
password-storage enable
username fualadhd password GK8k1MkMlIDluqF4 encrypted privilege 0
username fualadhd attributes
password-storage enable
username fualaabi password eYL0j16kscNhhci4 encrypted privilege 0
username fualaabi attributes
password-storage enable
username fualaadh password GTs/9BVCAU0TRUQE encrypted privilege 0
username fualaadh attributes
password-storage enable
username fualajuh password b9QGJ1GHhR88reM1 encrypted privilege 0
username fualajuh attributes
password-storage enable
username fualadah password JwVlqQNIellNgxnZ encrypted privilege 0
username fualadah attributes
password-storage enable
username fualarak password UE41e9hpvcMeChqx encrypted privilege 0
username fualarak attributes
password-storage enable
username fualasnk password ZwZ7fVglexrCWFUH encrypted privilege 0
username fualasnk attributes
password-storage enable
username rais password HrvvrIw5tEuam/M8 encrypted privilege 0
username rais attributes
password-storage enable
username fualafuj password yY2jRMPqmNGS.3zb encrypted privilege 0
username fualafuj attributes
password-storage enable
username fualamaz password U1YUfQzFYrsatEzC encrypted privilege 0
username fualamaz attributes
password-storage enable
username fualashj password gN4AXk/oGBTEkelQ encrypted privilege 0
username fualashj attributes
password-storage enable
username fualabdz password tg.pB7RXJx2CWKWi encrypted privilege 0
username fualabdz attributes
password-storage enable
username fualamam password uwLjc0cV7LENI17Y encrypted privilege 0
username fualamam attributes
password-storage enable
username fualaajm password u3yLk0Pz0U1n.Q0c encrypted privilege 0
username fualaajm attributes
password-storage enable
username fualagrm password mUt3A60gLJ8N5HVr encrypted privilege 0
username fualagrm attributes
password-storage enable
username fualakfn password ceTa6jmvnzOFNSgF encrypted privilege 0
username fualakfn attributes
password-storage enable
username Fualaain password Yyhr.dlc6/J7WvF0 encrypted privilege 0
username Fualaain attributes
password-storage enable
username fualaban password RCJKLGTrh7VM2EBW encrypted privilege 0
username John password D9xGV1o/ONPM9YNW encrypted privilege 15
username John attributes
password-storage disable
username wrkshopuaq password cFKpS5e6Whp0A7TZ encrypted privilege 0
username wrkshopuaq attributes
password-storage enable
username Talha password 3VoAABwXxVonLmWi encrypted privilege 0
username Houssam password Cj/uHUqsj36xUv/R encrypted privilege 0
username Faraj password w2qYfE3DkYvS/oPq encrypted privilege 0
username Faraj attributes
password-storage enable
username gowth password HQhALLeiQXuIzptCnTv1rA== nt-encrypted privilege 15
username Hameed password 0Kr0N1VRmLuWdoDE encrypted privilege 0
username Hameed attributes
password-storage enable
username Hassan password Uy4ASuiNyEd70LCw encrypted privilege 0
username cisco password IPVBkPI1GLlHurPD encrypted privilege 15
username Karim password 5iOtm58EKMyvruZA encrypted privilege 0
username Shakir password BESX2bAvlbqbDha/ encrypted privilege 0
username Riad password iB.miiOF7qMESlCL encrypted privilege 0
username Azeem password 0zAqiCG8dmLyRQ8f encrypted privilege 15
username Azeem attributes
password-storage disable
username Osama password xu66er.7duIVaP79 encrypted privilege 0
username Osama attributes
password-storage enable
username Mahmoud password bonjr0B19aOQSpud encrypted privilege 0
username alpha password x8WO0aiHL3pVFy2E encrypted privilege 15
username Wissam password SctmeK/qKVNLh/Vv encrypted privilege 0
username Wissam attributes
password-storage enable
username Nabil password m4fMvkTgVwK/O3Ms encrypted privilege 0
aaa authentication telnet console LOCAL
aaa authentication ssh console LOCAL
aaa authentication enable console LOCAL
http server enable
http 0.0.0.0 0.0.0.0 outside
http 192.168.1.4 255.255.255.255 inside
http 192.168.1.100 255.255.255.255 inside
http 192.168.1.111 255.255.255.255 inside
http 192.168.1.200 255.255.255.255 inside
http 83.111.113.117 255.255.255.255 outside
http 192.168.1.17 255.255.255.255 inside
http 192.168.1.16 255.255.255.255 inside
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart
crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
crypto dynamic-map outside_dyn_map 20 set pfs
crypto dynamic-map outside_dyn_map 20 set transform-set ESP-3DES-SHA
crypto map outside_map 65535 ipsec-isakmp dynamic outside_dyn_map
crypto map outside_map interface outside
crypto isakmp enable outside
crypto isakmp policy 10
authentication pre-share
encryption 3des
hash sha
group 2
lifetime 86400
tunnel-group fualavpn type ipsec-ra
tunnel-group fualavpn type ipsec-ra
tunnel-group fualavpn general-attributes
address-pool fualapool
address-pool VPNPool
default-group-policy fualavpn
tunnel-group fualavpn ipsec-attributes
pre-shared-key *
tunnel-group fualavpn ppp-attributes
authentication pap
authentication ms-chap-v2
authentication eap-proxy
telnet 0.0.0.0 0.0.0.0 outside
telnet 0.0.0.0 0.0.0.0 inside
telnet timeout 5
ssh 0.0.0.0 0.0.0.0 outside
ssh 192.168.1.0 255.255.255.0 inside
ssh timeout 5
console timeout 0
management-access inside
class-map inspection_default
match default-inspection-traffic
policy-map type inspect dns migrated_dns_map_1
parameters
message-length maximum 512
policy-map global_policy
class inspection_default
inspect dns migrated_dns_map_1
inspect ftp
inspect h323 h225
inspect h323 ras
inspect rsh
inspect rtsp
inspect sqlnet
inspect skinny
inspect sunrpc
inspect xdmcp
inspect sip
inspect netbios
inspect tftp
inspect icmp
inspect icmp error
service-policy global_policy global
prompt hostname context
Cryptochecksum:38e41e83465d37f69542355df734db35
: endHi,
What about translating the traffic on the local ASA (Active unit) for traffic received from the VPN tunnel to the internal interface IP address? You can try something like nat (outside,inside) source dynamic obj-VpnRemoteTraffic interface destination static StandbyIP StandbyIP
Regards, -
Post Author: sagimann
CA Forum: Deployment
Hello,
I'm not sure if this is due to bad deployment, but I suspect it is, at least due to bad environment.
My env is:
Solaris 10 64 bit
Oracle 10g client installed under /opt/oracle/app/oracle/product/10.2.0/client_1
BOXIR2 + FP2.6 installed under /opt/reporting, running under user 'bouser'. by the way, 'tnsping' works via that user.
Important bouser env:
ORACLE_HOME=/opt/oracle/app/oracle/product/10.2.0/client_1
TNS_ADMIN=$ORACLE_HOME/network/admin
LD_LIBRARY_PATH=$ORACLE_HOME/lib:$ORACLE_HOME/lib32
I reboot the box, then start BO like so:
cd /opt/reporting/bobje
. setup/env.sh
./mysqlstartup.sh
./startservers
./tomcatstartup
Then, I import a BIAR file with some reports, and whenever I try to open any report via infoview, I get a gray error message INSTEAD of the input param form:
Error:
Your request could not be completed because a failure occurred while the report was being processed. Please contact your system administrator.
This does not occur in our BOXIR2 on Windows, which is why I'm guess it's a deployment/env issue. The main obstacle I have is: how do I diagnose this? there's nothing in the bobje/logging folder, nothing in the /var/adm/message file except for the following line:
May 5 15:23:23 testbox1 boe_pagesd[3865]: [ID 253862 user.error] A failure occurred while the Page Server was processing report 'test report' (id=777) for user Administrator
pls advise,
thank you.The solution is to turn off the printer preference (bottom of Page Setup screen) in the Crystal Report before uploading to the Server. Thanks to: http://pinchii.com/home/2011/12/error-adding-reports-to-crystal-reports-server/
The explanation, from a comment in the above linked blog post:
"To elaborate more on the error, what basically happens is that the Crystal Reports engine tries to get the status of the u201Creport printeru201D aka u201Cdefault printeru201D which was present on the system when the report was created, but the printer does not exist anymore. This causes the Crystal engine to error out. By setting the report to u201CNo Printeru201D, it tells the Crystal Engine not to look for that report printer when opening the report."
Edited by: abirdman on Feb 3, 2012 9:49 PM -
10.8.2 Clients not managed with no wi-fi connection
I have a 10.8.2 server connected to an AD. It's also setup as an OD and we use it's WGM to manage clients. A user can sign in on a 10.8 laptop and created a managed mobile account. After the account is created, on subsequent sign-ins if that user signs in quickly before the laptop is talking to the management server, or if their wi-fi is off, it signs them in but the account isn't managed (even though it's a managed mobile account). If a user creates a managed mobile account on a laptop runing 10.6 then the account is always managed, as I would expect, so I don't think my server is at fault. I don't have users on 10.7 so I've not tested that.
Here is a system log from a sign in that doesn't pick up the management:
Oct 16 09:08:00 localhost SecurityAgent[361]: User info context values set for stu2014
Oct 16 09:08:00 localhost authorizationhost[376]: in pam_sm_authenticate(): Got user: stu2014
Oct 16 09:08:00 localhost authorizationhost[376]: in pam_sm_authenticate(): Got ruser: (null)
Oct 16 09:08:00 localhost authorizationhost[376]: in pam_sm_authenticate(): Got service: authorization
Oct 16 09:08:00 localhost authorizationhost[376]: in od_record_create(): 2 OD nodes unreachable.
Oct 16 09:08:00 localhost authorizationhost[376]: in pam_sm_authenticate(): Context initialised
Oct 16 09:08:00 localhost authorizationhost[376]: in pam_sm_authenticate(): Stashing kcm credentials in enviroment for kcminit: ***
Oct 16 09:08:00 localhost authorizationhost[376]: in pam_sm_authenticate(): pam_sm_authenticate: ntlm
Oct 16 09:08:00 localhost authorizationhost[376]: in od_record_create(): 2 OD nodes unreachable.
Oct 16 09:08:00 localhost authorizationhost[376]: in pam_sm_acct_mgmt(): OpenDirectory - Membership cache TTL set to 1800.
Oct 16 09:08:00 localhost authorizationhost[376]: in od_record_create(): 2 OD nodes unreachable.
Oct 16 09:08:00 localhost authorizationhost[376]: in od_record_check_pwpolicy(): retval: 0
Oct 16 09:08:00 localhost authorizationhost[376]: in od_record_attribute_create_cfstring(): returned 3 attributes for dsAttrTypeStandard:AuthenticationAuthority
Oct 16 09:08:00 localhost authorizationhost[376]: in pam_sm_setcred(): Establishing credentials
Oct 16 09:08:00 localhost authorizationhost[376]: in pam_sm_setcred(): Got user: stu2014
Oct 16 09:08:00 localhost authorizationhost[376]: in pam_sm_setcred(): Context initialised
Oct 16 09:08:00 localhost authorizationhost[376]: in pam_sm_setcred(): Got euid, egid: 0 0
Oct 16 09:08:00 localhost authorizationhost[376]: in pam_sm_setcred(): Done getpwnam()
Oct 16 09:08:00 localhost authorizationhost[376]: in pam_sm_setcred(): Done setegid() & seteuid()
Oct 16 09:08:00 localhost authorizationhost[376]: in pam_sm_setcred(): pam_sm_setcred: init credential cache
Oct 16 09:08:00 localhost authorizationhost[376]: in pam_sm_setcred(): pam_sm_setcred: storing credential for: ***
Oct 16 09:08:00 localhost authorizationhost[376]: in pam_sm_setcred(): Got cache_name: API:145837230:3
Oct 16 09:08:00 localhost authorizationhost[376]: in pam_sm_setcred(): Environment done: KRB5CCNAME=145837230:3
Oct 16 09:08:00 localhost authorizationhost[376]: in pam_sm_setcred(): Cache closed
Oct 16 09:08:00 localhost authorizationhost[376]: in pam_sm_setcred(): Done cleanup2
Oct 16 09:08:00 localhost authorizationhost[376]: in pam_sm_setcred(): Done cleanup3
Oct 16 09:08:00 localhost authorizationhost[376]: in pam_sm_setcred(): Done seteuid() & setegid()
Oct 16 09:08:00 localhost authorizationhost[376]: in pam_sm_setcred(): Done cleanup4
Oct 16 09:08:00 localhost authorizationhost[376]: in pam_sm_setcred(): pam_sm_setcred: ntlm
Oct 16 09:08:00 localhost authorizationhost[376]: in od_record_create(): 2 OD nodes unreachable.
Oct 16 09:08:00 localhost authorizationhost[376]: in pam_sm_setcred(): pam_sm_setcred: no domain found skipping
Oct 16 09:08:00 localhost SecurityAgent[361]: Login Window login proceeding
Oct 16 09:08:01 localhost com.apple.SecurityServer[14]: Succeeded authorizing right 'system.login.console' by client '/System/Library/CoreServices/loginwindow.app' [348] for authorization created by '/System/Library/CoreServices/loginwindow.app' [348] (100003,0)
Oct 16 09:08:01 localhost loginwindow[348]: Login Window - Returned from Security Agent
Oct 16 09:08:01 localhost loginwindow[348]: ERROR | ScreensharingLoginNotification | Failed sending message to screen sharing GetScreensharingPort, err: 1102
Oct 16 09:08:01 localhost loginwindow[348]: USER_PROCESS: 348 console
Oct 16 09:08:01 localhost com.apple.launchd.peruser.145837230[134] (com.apple.gamed): Ignored this key: UserName
Oct 16 09:08:01 localhost com.apple.launchd.peruser.145837230[134] (com.apple.gamed): Ignored this key: GroupName
Oct 16 09:08:01 localhost com.apple.launchd.peruser.145837230[134] (com.apple.ReportCrash): Falling back to default Mach exception handler. Could not find: com.apple.ReportCrash.Self
Oct 16 09:08:01 localhost loginwindow[348]: Connection with distnoted server was invalidated
Oct 16 09:08:01 localhost com.apple.SecurityServer[14]: Succeeded authorizing right 'system.login.done' by client '/System/Library/CoreServices/loginwindow.app' [348] for authorization created by '/System/Library/CoreServices/loginwindow.app' [348] (100002,0)
Oct 16 09:08:01 localhost WindowServer[350]: **DMPROXY** (2) Found `/System/Library/CoreServices/DMProxy'.
Oct 16 09:08:02 localhost WindowServer[350]: kCGErrorNotImplemented: receive_notification: CPXSetEventFilter failed
Oct 16 09:08:02 localhost NetworkBrowserAgent[399]: Starting NetworkBrowserAgent
Oct 16 09:08:02 localhost coreservicesd[59]: Can't change an application into stopped state for app App:"Console" [ 0x0/0x40040] @ 0x0x7f9369c96c80 because it's already been started.
Oct 16 09:08:02 localhost CVMServer[72]: Check-in to the service com.apple.cvmsCompAgent_x86_64 failed. This is likely because you have either unloaded the job or the MachService has the ResetAtClose attribute specified in the launchd.plist. If present, this attribute should be removed.
Oct 16 09:08:03 --- last message repeated 1 time ---
Oct 16 09:08:03 localhost WindowServer[350]: Display 0x04272f40: MappedDisplay Unit 0; ColorProfile { 2, "Color LCD"}; TransferTable (256, 3)
Oct 16 09:08:03 localhost SystemUIServer[394]: *** WARNING: -[NSImage compositeToPoint:operation:fraction:] is deprecated in MacOSX 10.8 and later. Please use -[NSImage drawAtPoint:fromRect:operation:fraction:] instead.
Oct 16 09:08:03 localhost SystemUIServer[394]: *** WARNING: -[NSImage compositeToPoint:fromRect:operation:fraction:] is deprecated in MacOSX 10.8 and later. Please use -[NSImage drawAtPoint:fromRect:operation:fraction:] instead.
Oct 16 09:08:03 localhost blued[55]: kBTXPCUpdateUserPreferences gConsoleUserUID = 145837230
Oct 16 09:08:04 localhost locationd[413]: Incorrect NSStringEncoding value 0x8000100 detected. Assuming NSASCIIStringEncoding. Will stop this compatiblity mapping behavior in the near future.
Oct 16 09:08:04 localhost locationd[413]: NOTICE,Location icon should now be in state 0
Oct 16 09:08:04 localhost WindowServer[350]: kCGErrorNotImplemented: receive_notification: CPXSetEventFilter failed
Oct 16 09:08:04 localhost UserEventAgent[383]: cannot find fw daemon port 1102
Oct 16 09:08:05 localhost com.apple.launchd.peruser.145837230[134] (com.apple.afpstat-qfa[436]): Job failed to exec(3). Setting up event to tell us when to try again: 2: No such file or directory
Oct 16 09:08:05 localhost com.apple.launchd.peruser.145837230[134] (com.apple.afpstat-qfa[436]): Job failed to exec(3) for weird reason: 2
Oct 16 09:08:05 localhost com.apple.launchd.peruser.145837230[134] (com.apple.mrt.uiagent[426]): Exited with code: 255
Oct 16 09:08:13 localhost WindowServer[350]: CGXTerminateWindowList: Operation on a window 0x1c requiring rights kCGSWindowRightOwner by caller Safari
Oct 16 09:08:13 localhost talagent[393]: CGSReleaseWindowList(cid, windowIDList, count): CGError 1001 on line 918
How can I get the management to sick?
<Email Edited By Host>OldMacUser wrote:
My prob is not as dramatic, but it is similar. After my MacBookPro sleeps (lid closed) it looses my home WiFi network (which is from my Time Capsule). After a little bit of the Airport icon "searching" it finally finds my network and connects. However, in Leopard the network was never lost. Solution, no ideas so far.
Tried an experiment today. Put my MBP to sleep ( not closing the lid). Same problem in the am. I use fixed IP addressing. This time, I rebooted both the AE base station and a remote AE ...which restored connectivity. So, perhaps there is something amiss with the "deconnecitivity" of the AE when SL goes to sleep? If I have time, I will call Apple, or leave it to others. This is obviously an issue. -
HTTP Error 403 You are not authorized to view the requested resource
Hi Experts,
When I open the node "Hierarchie groups" I get the following error: "Connection couldn't be recreated: 1 cause: Encountered invalid managed connection, last cause Couldn't execute interaction. 2 cause: Couldn't execute interaction. "
In the log file I find the following:
User MI_SERVADM, IP address
HTTP request processing failed. HTTP error [403] will be returned. The error is [You are not authorized to view the requested resource.No details available].
I used the User Service for administrator, I have not used the individual user for administrator.
Regards, GokhanAh anyway I receive the above error even when I do a search in the node "Mobile Components".
Now there's this in the LOG DefaultTrace (2 errors following)::
1) Connection is already closed and no longer associated with a managed connection
2) Exception occurred when processing Search:
[EXCEPTION]
com.sap.ip.mi.admin.core.ApplicationException: Connection couldn't be recreated: 1 cause: Encountered invalid managed connection, last cause Couldn't execute interaction. 2 cause: Couldn't execute interaction.
at com.sap.ip.mi.ejb.admin.grouping.GroupingControllerBean.getHierarchy(GroupingControllerBean.java:730)
at com.sap.ip.mi.ejb.admin.grouping.GroupingControllerBean.getHierarchy(GroupingControllerBean.java:580)
at com.sap.ip.mi.ejb.admin.grouping.GroupingControllerLocalLocalObjectImpl0.getHierarchy(GroupingControllerLocalLocalObjectImpl0.java:547)
at com.sap.ip.mi.admin.services.GroupingDelegate.getHierarchy(GroupingDelegate.java:81)
at com.sap.ip.mi.admin.ui.HierarchyGroup.buildUpList(HierarchyGroup.java:252)
at com.sap.ip.mi.admin.ui.wdp.InternalHierarchyGroup.buildUpList(InternalHierarchyGroup.java:409)
at com.sap.ip.mi.admin.ui.Search.triggerSearch(Search.java:222)
at com.sap.ip.mi.admin.ui.wdp.InternalSearch.triggerSearch(InternalSearch.java:286)
at com.sap.ip.mi.admin.ui.Search.wdDoInit(Search.java:138)
at com.sap.ip.mi.admin.ui.wdp.InternalSearch.wdDoInit(InternalSearch.java:272)
at com.sap.tc.webdynpro.progmodel.generation.DelegatingView.doInit(DelegatingView.java:61)
at com.sap.tc.webdynpro.progmodel.controller.Controller.initController(Controller.java:215)
at com.sap.tc.webdynpro.progmodel.view.View.initController(View.java:445)
at com.sap.tc.webdynpro.progmodel.controller.Controller.init(Controller.java:200)
at com.sap.tc.webdynpro.progmodel.view.ViewManager.getView(ViewManager.java:709)
at com.sap.tc.webdynpro.progmodel.view.ViewManager.bind(ViewManager.java:555)
at com.sap.tc.webdynpro.progmodel.view.ViewManager.getView(ViewManager.java:724)
at com.sap.tc.webdynpro.progmodel.view.ViewManager.bindRoot(ViewManager.java:579)
at com.sap.tc.webdynpro.progmodel.view.ViewManager.init(ViewManager.java:155)
at com.sap.tc.webdynpro.progmodel.view.InterfaceView.initController(InterfaceView.java:43)
at com.sap.tc.webdynpro.progmodel.controller.Controller.init(Controller.java:200)
at com.sap.tc.webdynpro.progmodel.view.ViewManager.getView(ViewManager.java:709)
at com.sap.tc.webdynpro.progmodel.view.ViewManager.bind(ViewManager.java:555)
at com.sap.tc.webdynpro.progmodel.view.ViewManager.makeVisible(ViewManager.java:789)
at com.sap.tc.webdynpro.progmodel.view.ViewManager.onComponentCreated(ViewManager.java:258)
at com.sap.tc.webdynpro.progmodel.components.ComponentUsage.fireComponentCreated(ComponentUsage.java:575)
at com.sap.tc.webdynpro.progmodel.components.ComponentUsage.createComponentInternal(ComponentUsage.java:175)
at com.sap.tc.webdynpro.progmodel.components.ComponentUsage.createComponent(ComponentUsage.java:141)
at com.sap.lm.webadmin.mainframe.RenderingUtils.loadCurrentPlugin(RenderingUtils.java:189)
at com.sap.lm.webadmin.mainframe.MainFrameView.wdDoModifyView(MainFrameView.java:272)
at com.sap.lm.webadmin.mainframe.wdp.InternalMainFrameView.wdDoModifyView(InternalMainFrameView.java:1419)
at com.sap.tc.webdynpro.progmodel.generation.DelegatingView.doModifyView(DelegatingView.java:78)
at com.sap.tc.webdynpro.progmodel.view.View.modifyView(View.java:337)
at com.sap.tc.webdynpro.clientserver.cal.ClientComponent.doModifyView(ClientComponent.java:480)
at com.sap.tc.webdynpro.clientserver.window.WindowPhaseModel.doModifyView(WindowPhaseModel.java:551)
at com.sap.tc.webdynpro.clientserver.window.WindowPhaseModel.processRequest(WindowPhaseModel.java:148)
at com.sap.tc.webdynpro.clientserver.window.WebDynproWindow.processRequest(WebDynproWindow.java:335)
at com.sap.tc.webdynpro.clientserver.cal.AbstractClient.executeTasks(AbstractClient.java:143)
at com.sap.tc.webdynpro.clientserver.session.ApplicationSession.doProcessing(ApplicationSession.java:299)
at com.sap.tc.webdynpro.clientserver.session.ClientSession.doApplicationProcessingStandalone(ClientSession.java:711)
at com.sap.tc.webdynpro.clientserver.session.ClientSession.doApplicationProcessing(ClientSession.java:665)
at com.sap.tc.webdynpro.clientserver.session.ClientSession.doProcessing(ClientSession.java:232)
at com.sap.tc.webdynpro.clientserver.session.RequestManager.doProcessing(RequestManager.java:152)
at com.sap.tc.webdynpro.serverimpl.defaultimpl.DispatcherServlet.doContent(DispatcherServlet.java:62)
at com.sap.tc.webdynpro.serverimpl.defaultimpl.DispatcherServlet.doPost(DispatcherServlet.java:53)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:760)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:390)
at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:264)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:347)
at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:325)
at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:887)
at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:241)
at com.sap.engine.services.httpserver.server.Client.handle(Client.java:92)
at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:148)
at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
at java.security.AccessController.doPrivileged(Native Method)
at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:100)
at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:170)
Edited by: dpns22 on Feb 1, 2010 10:31 PM
Edited by: dpns22 on Feb 1, 2010 10:59 PM -
Sbconsole dashboard error - Console Exception
Hi all, I just installed oracle service bus on fedora 11 platform. It successfully installed and run well in functional. But in dashboard there is an exception
that made the tab provided cannot be viewed.
Console Exception :
Message com/bea/alsb/console/dashboard/ui/ChartUIRenderHelper
Type java.lang.NoClassDefFoundError
this is the link error above :
http://picasaweb.google.com/lh/photo/cU2E_aqGUW-29TV2ny-xQQ?feat=directlink
Really thanks in advance
Regards,
KahlilCan you try to open a test debug window for any of the business and proxy services?
It seems the the console app is not able to gather monitoring data. Which could be a problem with the specific application module for monitoring or may be a firewall issue. If you are able to open the test console window properly then it most probably is an issue with the monitoring module. -
Dear Exprt,
Please assist me to install client, this my first setup i had followed all guide line but could not success.
in SCCM admin console client discover but client not getting install according to log error i had follow some internet provided steps however still not success, i dont know were i made mistake for server installation.
Kind request for your usual support...
In text:
<![LOG[MPs:]LOG]!><time="05:59:35.906+-180" date="02-03-2014" component="ccmsetup" context="" type="1" thread="2128" file="ccmsetup.cpp:4527">
<![LOG[ SCCMSRV.SCCM-AD.COM]LOG]!><time="05:59:35.906+-180" date="02-03-2014" component="ccmsetup" context=""
type="1" thread="2128" file="ccmsetup.cpp:4542">
<![LOG[Updated security on object C:\Windows\system32\ccmsetup\.]LOG]!><time="05:59:35.906+-180" date="02-03-2014" component="ccmsetup" context="" type="0" thread="2128" file="ccmsetup.cpp:8849">
<![LOG[Sending Fallback Status Point message, STATEID='100'.]LOG]!><time="05:59:35.906+-180" date="02-03-2014" component="ccmsetup" context="" type="1" thread="2128" file="ccmsetup.cpp:9326">
<![LOG[State message with TopicType 800 and TopicId {3F0B6515-0505-4DF2-881C-F4A358589302} has been sent to the FSP]LOG]!><time="05:59:36.183+-180" date="02-03-2014" component="FSPStateMessage" context=""
type="1" thread="2128" file="fsputillib.cpp:730">
<![LOG[Running as user "SYSTEM"]LOG]!><time="05:59:36.183+-180" date="02-03-2014" component="ccmsetup" context="" type="1" thread="4004" file="ccmsetup.cpp:2690">
<![LOG[Detected 53138 MB free disk space on system drive.]LOG]!><time="05:59:36.183+-180" date="02-03-2014" component="ccmsetup" context="" type="1" thread="4004" file="ccmsetup.cpp:463">
<![LOG[DetectWindowsEmbeddedFBWF() Detecting OS Version]LOG]!><time="05:59:36.183+-180" date="02-03-2014" component="ccmsetup" context="" type="1" thread="4004" file="ccmsetup.cpp:509">
<![LOG[Client OS Version is 6.1, Service Pack Version 0]LOG]!><time="05:59:36.183+-180" date="02-03-2014" component="ccmsetup" context="" type="1" thread="4004" file="ccmsetup.cpp:533">
<![LOG[Client OS is not a supported Windows Embedded Platform]LOG]!><time="05:59:36.183+-180" date="02-03-2014" component="ccmsetup" context="" type="1" thread="4004" file="ccmsetup.cpp:535">
<![LOG[Ccmsetup is being restarted due to an administrative action. Installation files will be reset and downloaded again.]LOG]!><time="05:59:36.183+-180" date="02-03-2014" component="ccmsetup" context=""
type="1" thread="4004" file="ccmsetup.cpp:2774">
<![LOG[Successfully ran BITS check.]LOG]!><time="05:59:36.937+-180" date="02-03-2014" component="ccmsetup" context="" type="1" thread="4004" file="ccmsetup.cpp:7105">
<![LOG[Failed to successfully complete HTTP request. (StatusCode at WinHttpQueryHeaders: 404)]LOG]!><time="05:59:36.968+-180" date="02-03-2014" component="ccmsetup" context="" type="3" thread="4004"
file="ccmsetup.cpp:5969">
<![LOG[Sending Fallback Status Point message, STATEID='308'.]LOG]!><time="05:59:36.968+-180" date="02-03-2014" component="ccmsetup" context="" type="1" thread="4004" file="ccmsetup.cpp:9326">
<![LOG[State message with TopicType 800 and TopicId {BED7FDFE-DBD7-48F5-853A-A81A87AEED84} has been sent to the FSP]LOG]!><time="05:59:36.984+-180" date="02-03-2014" component="FSPStateMessage" context=""
type="1" thread="4004" file="fsputillib.cpp:730">
[email protected]"Failed to successfully complete HTTP request. (StatusCode at WinHttpQueryHeaders: 404)"
Is you MP healthy? Based on this message, it is not.
Jason | http://blog.configmgrftw.com
Maybe you are looking for
-
2006 macpro possibly using imac g5 as monitor
As mentioned I have a 2006 macpro, it has a 5770 graphic card, I also have an old (in great condition) imac g5. I would like to use the g5 as a monitor via a vga connection. Now, the 5770 has a mini display port and the g5 has a display port, okay, I
-
HELP! why wont my password work for the system to make changes
When installing Adobe photoshop it says "setup wants to make changes, type your password to allow this" The name is - Apple Every password I try to use gets rejected! How can i fix this? Appreciate the help Tom
-
Why Java provides Object cloning even if there is Object reference variable
In both cases original value get changed. What is the difference between these (clonable interface & Object reference variable)
-
Dear expert In our org. model, we have one main org. unit and several org. units branched beneath (sub-structure). When an incoming email is 'unprocessed', it can be seen by all users assigned under the main org. unit or under the org. units branched
-
URGENT! MAJOR PROBLEM! Application Builder ICON - I CANNOT SEE?! WHY?
Hello, I have just installed XE and I cannot see the Application Builder Icon on the Home Page!? Please help...do I have an old version perhaps? Kind Regards, Kajani