HELP!! Solaris 10 - Mount NFSv4 Share from Linux using Kerberos Security
Greetings all, my apologies if this post is in the wrong place...
I have an issue getting Solaris 10 to mount an NFSv4 share from a SuSE Linux 10 machine using kerberos security.
I am able to mount the NFSv4 share from another SuSE 10 machine. The kerberos principal for that is nfs/host.domain and is working perfectly with the mount command of 'mount -t nfs4 -o sec=krb5 host:/ /mnt'
My problem is that when I try to mount that same share on Solaris 10 using the command 'mount -F nfs -o sec=krb5 host:/ /mnt' I am getting nowhere fast. My kerberos principals for the Solaris machine are nfs/host.domain, host/host.domain, and root/host.domain. I have tried rebooting the Solaris 10 machine with a different keytab file in place each time (as I'm not sure which principal to make the keytab from for Solaris).
When I run the Solaris 10 mount command all it does is hang. I don't get any error message, etc. On the kerberos server I can see where the Solaris machine has communicated and appears to receive a ticket, and I can see that the NFS server was responding to the client's request, however the mount command just hangs.
Any ideas / suggestions? I really need someone to point me in the right direction!
Your help is very appreciated!
I had similar, not identical, issues with a custom JumpStart DVD I was creating. I was not using flar and it was for x86, not SPARC.
I found that changing the case for the value assigned to network_interface made a difference. In looking at the sysidcfg manpage and online JumpStart documentation, all the examples they used had capitalized "PRIMARY" and "NONE". When I changed the value to the capitalized equivelant, my particular issue had gone away.
You may also want to consider adding ip_address and default_route to the network_interface section. Test either way to identify the differing results.
In my particular scenereo, I did not want any networking configuration to be done. The resulting line in sysidcfg was:
network_interface=NONE {hostname=jsclient}HTH
Similar Messages
-
Unable to share from iphoto using Messages....
I have upgraded to Mavericks and have noticed that I can't share a photo directly from iphoto using Messages. Anyone else have this problem? I got an error message once that said something like "couldn't communicate with helper application". Usually when I try to share a photo I don't get an error message, nothing happens at all. Any help would be much appeciated.
I only started experiencing this problem (iPhoto Couldn't communicate with helper application) after upgrading to version 10.10 and haven't been able (yet) to find a solution or work-around to this issue. Anyone???
-
Connecting to OS X file shares from Linux
I need to connect to file shares on an OS X computer and mount them on a Linux server.
Every resource I've seen seems to try to do this the other way around.
I can ping the OS X computer so I know it can see it. I have enable SMB under sharing and set a user with permissions.
However if I call
smbclient -L <mac ip address> -U testuser
I get the following errors
timeout connecting to <ip>:445
timeout connecting to <ip>:139
Error connecting to <ip> (Operation already in progressm)
Connection to <ip> failed (Error NTSTATUS_ACCESSDENIED)
Anyone got any ideas at all?Have you looked in /var/log/samba to see if there are any logged messages that tell you what the server is thinking?
You might also look at /var/log/security.log to see if there is anything about the NTSTATUS_ACCESSDENIED error. -
Need help to retrieve the message from MQ using get operation
Hi
Used MQ adapter to Post a message to queue.
And used Received activity in bpel to retrieve the message using MQ adapter from same queue(used get operation) , got an error message as timed
out exception.
Could some one assist in retrieving the message from MQ using get operation.
Regards
RajaHi Raja,
Is the process a empty bpel process which is used to get the message from the MQ?
Regards
Surya -
BPEL invocation securely from client using JAZN security not working.
HI,
We are trying to invoke the BPEL process securely from the client application using JAZN security settings, this is not working, with any credentilas or with out providing the security credentilas BPEL invocation is happening. Need the solution for this security credentials while invoking the BPEL process.
Please provide the update at the earliest. Thanks in advance. Your quick update is greatly appreciated.Hi James,
Thanks for the update.
Please find the attached docs.
Bpel.xml:
<?xml version = '1.0' encoding = 'UTF-8'?>
<BPELSuitcase>
<BPELProcess id="HelloWorld" src="HelloWorld.bpel">
<partnerLinkBindings>
<partnerLinkBinding name="client">
<property name="wsdlLocation">HelloWorld.wsdl</property>
</partnerLinkBinding>
</partnerLinkBindings>
<configurations>
<property name="role">oc4j-administrators</property>
</configurations>
</BPELProcess>
</BPELSuitcase>
orion-application.xml: folder location: C:\product1\10.1.3.1\OracleAS_1\j2ee\home\applications\orabpel\META-INF\orion-application.xml
<?xml version="1.0"?>
<orion-application xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="http://xmlns.oracle.com/oracleas/schema/orion-application-10_0.xsd"
schema-major-version="10"
schema-minor-version="0" component-classification="internal-BPEL">
<connectors path="./oc4j-connectors.xml"/>
<ejb-module remote="false" path="ejb_ob_engine.jar" />
<ejb-module remote="false" path="ejb_services.jar" />
<web-module id="httpbinding" path="httpbinding.war" />
<web-module id="admin_war" path="admin_war" />
<web-module id="startup_war" path="startup_war" />
<web-module id="console_war" path="console_war" />
<persistence path="persistence" />
<principals path="principals.xml" />
<jazn provider="XML" location="../../config/system-jazn-data.xml" jaas-mode="doAsPrivileged">
<!-- <jazn-web-app auth-method="CUSTOM_AUTH"/> -->
</jazn>
<imported-shared-libraries>
<inherited-shared-libraries/>
<import-shared-library name="oracle.bpel.common" parent="api" />
<import-shared-library name="oracle.ws.client" parent="oracle.ws.jaxrpc" version="10.1.3" />
<import-shared-library name="oracle.ws.jaxrpc" />
<import-shared-library name="oracle.toplink" />
<import-shared-library name="oracle.ws.testpage" />
</imported-shared-libraries>
<log>
<file path="application.log" />
</log>
<namespace-access>
<read-access>
<namespace-resource root="">
<security-role-mapping name="oc4j-administrators">
<group name="oc4j-administrators" />
</security-role-mapping>
</namespace-resource>
</read-access>
<write-access>
<namespace-resource root="">
<security-role-mapping name="oc4j-administrators">
<group name="oc4j-administrators" />
</security-role-mapping>
</namespace-resource>
</write-access>
</namespace-access>
<security-role-mapping name="PUBLIC">
<group name="{{PUBLIC}}" />
</security-role-mapping>
</orion-application>
web.xml file: C:\product1\10.1.3.1\OracleAS_1\j2ee\home\applications\orabpel\startup\WEB-INF\web.xml
<?xml version="1.0" ?>
<!DOCTYPE web-app PUBLIC "-//Sun Microsystems, Inc.//DTD Web Application 2.3//EN" "http://java.sun.com/dtd/web-app_2_3.dtd">
<web-app id="StartupWebApp_Id">
<!--servlet id="BPEL_Axis_Servlet_Id">
<servlet-name>BPEL_Axis_Servlet</servlet-name>
<display-name>BPEL Axis Servlet</display-name>
<servlet-class>com.collaxa.cube.ws.soap.axis.BPELAxisServlet</servlet-class>
<load-on-startup>1</load-on-startup>
</servlet-->
<servlet id="BPEL_OC4J_Servlet_Id">
<servlet-name>BPEL_OC4J_Servlet</servlet-name>
<display-name>BPEL OC4J JAX/RPC Servlet</display-name>
<description>BPEL endpoint Provider Port via oc4j jax/rpc</description>
<servlet-class>com.collaxa.cube.ws.soap.oc4j.BPELOC4JServlet</servlet-class>
<load-on-startup>1</load-on-startup>
</servlet>
<servlet id="LoaderServlet_Id">
<servlet-name>cxloader</servlet-name>
<servlet-class>com.collaxa.cube.admin.CXLoaderServlet</servlet-class>
<load-on-startup>3</load-on-startup>
</servlet>
<!--servlet-mapping id="BPEL_Axis_Servlet_Mapping_id">
<servlet-name>BPEL_Axis_Servlet</servlet-name>
<url-pattern>/*</url-pattern>
</servlet-mapping-->
<servlet-mapping id="BPEL_OC4J_Servlet_Mapping_Id">
<servlet-name>BPEL_OC4J_Servlet</servlet-name>
<url-pattern>/*</url-pattern>
</servlet-mapping>
<security-constraint>
<web-resource-collection>
<web-resource-name>Default Domain Pages</web-resource-name>
<description>These pages are only accessible by authenticated users.</description>
<url-pattern>*orabpel/default/HelloWorld/v2010_05_02__62961</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>oc4j-administrators</role-name>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method>BASIC</auth-method>
<realm-name>jazn.com</realm-name>
</login-config>
<security-role>
<description>BPEL Admins</description>
<role-name>oc4j-administrators</role-name>
</security-role>
<distributable/>
<resource-ref id="ResRef_BPELContainerDataSource_Id">
<res-ref-name>jdbc/BPELServerDataSource</res-ref-name>
<res-type>javax.sql.DataSource</res-type>
<res-auth>Container</res-auth>
</resource-ref>
<!--ejb-local-ref id="EjbRef_AdaptorManager_Id">
<ejb-ref-name>ejb/local/AdaptorManagerLocalBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<local-home>com.collaxa.cube.engine.ejb.interfaces.IAdaptorManagerLocalBeanHome</local-home>
<local>com.collaxa.cube.engine.ejb.interfaces.IAdaptorManagerLocalBean</local>
<ejb-link>AdaptorManagerBean</ejb-link>
</ejb-local-ref>
-->
<ejb-ref id="EjbRef_CubeFinder_Id">
<ejb-ref-name>ejb/collaxa/system/CubeFinderBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<home>com.collaxa.cube.engine.ejb.interfaces.ICubeFinderBeanHome</home>
<remote>com.collaxa.cube.engine.ejb.interfaces.ICubeFinderBean</remote>
</ejb-ref>
<ejb-ref id="EjbRef_Dispatcher_Id">
<ejb-ref-name>ejb/collaxa/system/DispatcherBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<home>com.collaxa.cube.engine.ejb.interfaces.IDispatcherBeanHome</home>
<remote>com.collaxa.cube.engine.ejb.interfaces.IDispatcherBean</remote>
</ejb-ref>
<ejb-local-ref>
<ejb-ref-name>ejb/local/CubeEngineLocalBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<local-home>com.collaxa.cube.engine.ejb.interfaces.ICubeEngineLocalBeanHome</local-home>
<local>com.collaxa.cube.engine.ejb.interfaces.ICubeEngineLocalBean</local>
<ejb-link>CubeEngineBean</ejb-link>
</ejb-local-ref>
<ejb-local-ref>
<ejb-ref-name>ejb/local/ProcessManagerLocalBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<local-home>com.oracle.bpel.client.ejb.interfaces.IBPELProcessManagerLocalBeanHome</local-home>
<local>com.oracle.bpel.client.ejb.interfaces.IBPELProcessManagerLocalBean</local>
<ejb-link>ProcessManagerBean</ejb-link>
</ejb-local-ref>
<ejb-local-ref>
<ejb-ref-name>ejb/local/CubeDeliveryLocalBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<local-home>com.collaxa.cube.engine.ejb.interfaces.ICubeDeliveryLocalBeanHome</local-home>
<local>com.collaxa.cube.engine.ejb.interfaces.ICubeDeliveryLocalBean</local>
<ejb-link>CubeDeliveryBean</ejb-link>
</ejb-local-ref>
<ejb-local-ref>
<ejb-ref-name>ejb/local/KeyGeneratorLocalBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<local-home>com.collaxa.cube.engine.ejb.interfaces.IKeyGeneratorLocalBeanHome</local-home>
<local>com.collaxa.cube.engine.ejb.interfaces.IKeyGeneratorLocalBean</local>
<ejb-link>KeyGeneratorBean</ejb-link>
</ejb-local-ref>
<ejb-local-ref>
<ejb-ref-name>ejb/local/MessageLocalBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<local-home>com.collaxa.cube.engine.ejb.interfaces.IMessageLocalBeanHome</local-home>
<local>com.collaxa.cube.engine.ejb.interfaces.IMessageLocalBean</local>
<ejb-link>MessageBean</ejb-link>
</ejb-local-ref>
<ejb-local-ref>
<ejb-ref-name>ejb/local/ServerLocalBean</ejb-ref-name>
<ejb-ref-type>Session</ejb-ref-type>
<local-home>com.oracle.bpel.client.ejb.interfaces.IServerLocalBeanHome</local-home>
<local>com.oracle.bpel.client.ejb.interfaces.IServerLocalBean</local>
<ejb-link>ServerBean</ejb-link>
</ejb-local-ref>
</web-app>
jazn.xml : C:\product1\10.1.3.1\OracleAS_1\j2ee\home\config
<?xml version = '1.0' encoding = 'UTF-8' standalone = 'yes'?>
<jazn xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="http://xmlns.oracle.com/oracleas/schema/jazn-10_0.xsd" schema-major-version="10" schema-minor-version="0" provider="XML" location="./system-jazn-data.xml" default-realm="jazn.com" persistence="ALL">
<property name="custom.sso.url.login" value="/jsso/SSOLogin"/>
<property name="custom.sso.key.alias" value="{AES-128}dpvTz49oIQWnM1gZfdpZ1w=="/>
<property name="idm.token.asserter.class" value="oracle.security.jazn.sso.SSOCookieTokenAsserter"/>
<property name="idm.token.collector.class" value="oracle.security.jazn.sso.SSOCookieTokenCollector"/>
<property name="idm.token.type" value="HTTP_COOKIE"/>
<property name="idm.token.collector.cookie.1" value="ORA_OC4J_SSO"/>
<property name="custom.sso.url.logout" value="/jsso/SSOLogout"/>
<property name="idm.authentication.name" value="JavaSSO"/>
</jazn>
system-jazn-data.xml
<?xml version="1.0" encoding="UTF-8" standalone='yes'?>
<jazn-data
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:noNamespaceSchemaLocation="http://xmlns.oracle.com/oracleas/schema/jazn-data-10_0.xsd"
schema-major-version="10"
schema-minor-version="0"
>
<!-- JAZN Realm Data -->
<jazn-realm>
<realm>
<name>jazn.com</name>
<users>
<user>
<name>Bharani</name>
<guid>99116C7155E211DFBFB59D7811B59628</guid>
<credentials>{903}26NFSvxAeBAo3nBkbvJ/e2BCD+actZzi</credentials>
</user>
</users>
<role>
<name>oc4j-administrators</name>
<display-name>OC4J Admin Role</display-name>
<description>Administrative role for OC4J</description>
<guid>8A00C8701A0511DFBF99734349FF0592</guid>
<members>
<member>
<type>user</type>
<name>oc4jadmin</name>
</member>
</members>
</role>
</roles>
</realm>
</jazn-realm>
<!-- JACC Repository Data -->
<jacc-repository>
</jacc-repository>
<jazn-policy>
<grant>
<grantee>
<principals>
<principal>
<realm-name>jazn.com</realm-name>
<type>role</type>
<class>oracle.security.jazn.spi.xml.XMLRealmRole</class>
<name>jazn.com/oc4j-administrators</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$createrole</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$modifyrealmmetadata</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.policy.RoleAdminPermission$jazn.com/*$</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$createrealm</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$droprealm</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$droprole</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.RoleAdminPermission</class>
<name>jazn.com/*</name>
</permission>
<permission>
<class>com.evermind.server.AdministrationPermission</class>
<name>administration</name>
<actions>administration</actions>
</permission>
<permission>
<class>oracle.security.jazn.realm.RealmPermission</class>
<name>jazn.com</name>
<actions>modifyrealmmetadata</actions>
</permission>
<permission>
<class>oracle.security.jazn.realm.RealmPermission</class>
<name>jazn.com</name>
<actions>createrealm</actions>
</permission>
<permission>
<class>oracle.security.jazn.realm.RealmPermission</class>
<name>jazn.com</name>
<actions>dropuser</actions>
</permission>
<permission>
<class>oracle.security.jazn.realm.RealmPermission</class>
<name>jazn.com</name>
<actions>droprealm</actions>
</permission>
<permission>
<class>com.evermind.server.rmi.RMIPermission</class>
<name>login</name>
</permission>
<permission>
<class>com.evermind.server.rmi.RMIPermission</class>
<name>subject.propagation</name>
</permission>
</permissions>
</grant>
<grant>
<grantee>
<principals>
<principal>
<realm-name>jazn.com</realm-name>
<type>role</type>
<class>oracle.security.jazn.spi.xml.XMLRealmRole</class>
<name>jazn.com/ascontrol_admin</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$createrole</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$modifyrealmmetadata</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.policy.RoleAdminPermission$jazn.com/*$</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$createrealm</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$droprealm</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.AdminPermission</class>
<name>oracle.security.jazn.realm.RealmPermission$jazn.com$droprole</name>
</permission>
<permission>
<class>oracle.security.jazn.policy.RoleAdminPermission</class>
<name>jazn.com/*</name>
</permission>
<permission>
<class>com.evermind.server.AdministrationPermission</class>
<name>administration</name>
<actions>administration</actions>
</permission>
<permission>
<class>oracle.security.jazn.realm.RealmPermission</class>
<name>jazn.com</name>
<actions>modifyrealmmetadata</actions>
</permission>
<permission>
<class>oracle.security.jazn.realm.RealmPermission</class>
<name>jazn.com</name>
<actions>createrealm</actions>
</permission>
<permission>
<class>oracle.security.jazn.realm.RealmPermission</class>
<name>jazn.com</name>
<actions>dropuser</actions>
</permission>
<permission>
<class>oracle.security.jazn.realm.RealmPermission</class>
<name>jazn.com</name>
<actions>droprealm</actions>
</permission>
<permission>
<class>com.evermind.server.rmi.RMIPermission</class>
<name>login</name>
</permission>
<permission>
<class>com.evermind.server.rmi.RMIPermission</class>
<name>subject.propagation</name>
</permission>
</permissions>
</grant>
<grant>
<grantee>
<principals>
<principal>
<realm-name>jazn.com</realm-name>
<type>role</type>
<class>oracle.security.jazn.spi.xml.XMLRealmRole</class>
<name>jazn.com/oc4j-app-administrators</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>com.evermind.server.rmi.RMIPermission</class>
<name>login</name>
</permission>
</permissions>
</grant>
<grant>
<grantee>
<principals>
<principal>
<realm-name>jazn.com</realm-name>
<type>role</type>
<class>oracle.security.jazn.spi.xml.XMLRealmRole</class>
<name>jazn.com/users</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>com.evermind.server.rmi.RMIPermission</class>
<name>login</name>
</permission>
</permissions>
</grant>
<grant>
<grantee>
<principals>
<principal>
<realm-name>jazn.com</realm-name>
<type>user</type>
<class>oracle.security.jazn.spi.xml.XMLRealmUser</class>
<name>jazn.com/anonymous</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>com.evermind.server.rmi.RMIPermission</class>
<name>login</name>
</permission>
</permissions>
</grant>
<grant>
<grantee>
<principals>
<principal>
<realm-name>jazn.com</realm-name>
<type>role</type>
<class>oracle.security.jazn.spi.xml.XMLRealmRole</class>
<name>jazn.com/BPMSystemAdmin</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>com.collaxa.security.ServerPermission</class>
<name>server</name>
<actions>all</actions>
</permission>
</permissions>
</grant>
<grant>
<grantee>
<principals>
<principal>
<realm-name>jazn.com</realm-name>
<type>role</type>
<class>oracle.security.jazn.spi.xml.XMLRealmRole</class>
<name>jazn.com/BPMDefaultDomainAdmin</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>com.collaxa.security.DomainPermission</class>
<name>default</name>
<actions>all</actions>
</permission>
</permissions>
</grant>
<grant>
<grantee>
<principals>
<principal>
<realm-name>jazn.com</realm-name>
<type>role</type>
<class>oracle.security.jazn.spi.xml.XMLRealmRole</class>
<name>bpel_users</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>com.evermind.server.AdministrationPermission</class>
<name>administration</name>
<actions>administration</actions>
</permission>
<permission>
<class>com.evermind.server.rmi.RMIPermission</class>
<name>login</name>
</permission>
</permissions>
</grant>
<grant>
<grantee>
<principals>
<principal>
<class>sun.security.acl.PrincipalImpl</class>
<name>oc4j-administrators</name>
</principal>
</principals>
</grantee>
<permissions>
<permission>
<class>java.lang.RuntimePermission</class>
<name>setContextClassLoader</name>
</permission>
</permissions>
</grant>
</jazn-policy>
<!-- Login Module Data -->
<jazn-loginconfig>
<application>
<name>oracle.security.jazn.oc4j.CertificateAuthenticator</name>
<login-modules>
<login-module>
<class>oracle.security.jazn.login.module.X509LoginModule</class>
<control-flag>required</control-flag>
<options>
<option>
<name>addAllRoles</name>
<value>true</value>
</option>
</options>
</login-module>
</login-modules>
</application>
<application>
<name>oracle.security.jazn.tools.Admintool</name>
<login-modules>
<login-module>
<class>oracle.security.jazn.login.module.RealmLoginModule</class>
<control-flag>required</control-flag>
<options>
<option>
<name>addAllRoles</name>
<value>true</value>
</option>
</options>
</login-module>
</login-modules>
</application>
<application>
<name>oracle.security.jazn.oc4j.WebCoreIDSSOAuthenticator</name>
<login-modules>
<login-module>
<class>oracle.security.jazn.login.module.coreid.CoreIDLoginModule</class>
<control-flag>required</control-flag>
<options>
<option>
<name>coreid.name.attribute</name>
<value>your credential mapping variable name</value>
</option>
<option>
<name>addAllRoles</name>
<value>true</value>
</option>
<option>
<name>coreid.resource.operation</name>
<value>your oreid resource operation</value>
</option>
<option>
<name>coreid.resource.type</name>
<value>your coreid resource type</value>
</option>
<option>
<name>coreid.name.header</name>
<value>your http header name variable</value>
</option>
<option>
<name>coreid.resource.name</name>
<value>your coreid resource name</value>
</option>
<option>
<name>coreid.password.attribute</name>
<value>your password authentication variable</value>
</option>
<option>
<name>coreid.password.header</name>
<value>your http header password variable</value>
</option>
</options>
</login-module>
</login-modules>
</application>
<application>
<name>oracle.security.wss.jaas.SAMLAuthManager</name>
<login-modules>
<login-module>
<class>oracle.security.jazn.login.module.saml.SAMLLoginModule</class>
<control-flag>required</control-flag>
<options>
<option>
<name>issuer.name.1</name>
<value>www.oracle.com</value>
</option>
<option>
<name>addAllRoles</name>
<value>true</value>
</option>
</options>
</login-module>
</login-modules>
</application>
<application>
<name>oracle.security.jazn.oc4j.DigestAuthenticator</name>
<login-modules>
<login-module>
<class>oracle.security.jazn.login.module.digest.DigestLoginModule</class>
<control-flag>required</control-flag>
<options>
<option>
<name>addAllRoles</name>
<value>true</value>
</option>
</options>
</login-module>
</login-modules>
</application>
<application>
<name>oracle.security.jazn.oc4j.JAZNUserManager</name>
<login-modules>
<login-module>
<class>oracle.security.jazn.login.module.RealmLoginModule</class>
<control-flag>required</control-flag>
<options>
<option>
<name>addAllRoles</name>
<value>true</value>
</option>
</options>
</login-module>
</login-modules>
</application>
<application>
<name>oracle.security.wss.jaas.JAASAuthManager</name>
<login-modules>
<login-module>
<class>oracle.security.jazn.login.module.WSSLoginModule</class>
<control-flag>required</control-flag>
<options>
<option>
<name>addAllRoles</name>
<value>true</value>
</option>
</options>
</login-module>
</login-modules>
</application>
</jazn-loginconfig>
<jazn-permission-classes>
</jazn-permission-classes>
</jazn-data>
It is huge to check all these files, but for reference providing all the files for checking the security details.
Thanks for your help... -
How can i mount a windows share in read-write mode from my linux system
I am able to mount in readonly mode as below even though i mentioned rw in that.
mount -t cifs -o username=administrator,password=adminpass,rw,0,0 //192.168.1.1/RHEL5 /mnt/win
This post is related to Re: backup strategyI managed to make it work.
I did entry as below in /etc/fstab
//192.168.1.1/RHEL5 /mnt/win cifs credentials=/etc/
smbcred 0 0
run
mount -a
/etc/smbcred file contains username and password
now it is mounted as read write mode.
~ -
[SOLVED]Internet share from linux to windows 7
hi,
i want to share my internt connection from my arch linux netbook to my win7 pc
I succesfully followed this wiki article( https://wiki.archlinux.org/index.php/Internet_Share ) until: 'Assigning ip addresses to the client pc(s)'.
now i'm stuck with my linux netbook being fully configured, but i can't get my win7 pc to connect properly.
Idk maybe i need to configure the netbook in a different way in order to make it work with a windows client???
maybe
ip addr add 192.168.1.0 dev enp8s0
instead of
ip addr add 191.168.1.0/24 dev epn8s0
or an additional iptables command? (FORWARD ACCEPT maybe?)
Here's some data about my netbook in order to make it easier for you:
internet device: wlp2s0
internet device ip range: 192.168.2.x
lan(which conects my netbook to the win7 pc) device: enp8s0
thank you for your time.
regards b0b
Last edited by b0b2 (2013-09-13 22:47:58)Lone_Wolf wrote:
you're on the right track, but the devil is in the details.
Basically you have TWO separate networks, but the internet share wiki page implicitly describes a 1 network setup.
the first network has the netbook lan & the windows lan device in it.
your second network has the netbook wireless and the router in it.
If you want to stick with 2 separate networks, you'll need to setup the netbook as a router, check the wiki router page.
Warning : setting up your netbook to function as a router will require you to understand/learn networking basics.
In both setups, the netbook wireless device will need to be setup with a STATIC ip-address.
Internet sharing setup :
make sure all devices are in the 192.168.2.0/24 network .
ex :
router 192.168.2.1
netbook wireless 192.168.2.2
netbook lan 192.168.2.3
windows 7 pc 192.168.2.4
Follow the internet sharing page in the wiki.
Once you have setup things , verify if you can ping 192.168.2.1 (router) from the windows pc.
if you prefer using 2 separate networks, check the wiki router page.
hi,
thank you for your post.
How do you know the wiki implies a 1 network setup?
the wiki says 'The first 3 bytes of this address cannot be exactly the same as those of another interface.'
I actually don't want to stick with 2 networks, since i don't want to waste 1gb of my hdd for the router software. -
[SOLVED] mounted windows shares from fstab dont stay mounted
i have windows shares mounted through fstab and when i first boot up, they are mounted fine, but after a certain amount of time (not sure how long it takes) they disappear and it hangs thunar (oh yeah, using xfce) and i have to reboot to get them back. running mount -a doesnt bring them back
line from fstab
//charger/share /home/user/Documents cifs rw,uid=1000,gid=1000,file_mode=0700,dir_mode=0700,credentials=/home/credfile 0 0
daemons line from rc.conf
DAEMONS=(hwclock syslog-ng hal network netfs samba @alsa crond)
Last edited by dodgefan (2011-08-03 20:01:44)thanks anyway, figured it out, installed autofs and setup everything to mount to /media and made links to my home folder
-
Help , How to get data from database using recordset with UI API
I want to get a data from database
when I want to create recordset i notice that UI API didn't has record set
so I created recordset using DI API (SAPbobscom.recordset and SAPbobscom.company)
======================================================
Dim oCompanyUI As SAPbouiCOM.Company <<UI API
Dim oRecSet As New SAPbobsCOM.Recordset << DI API
Dim oCompanyDI As New SAPbobsCOM.Company << DI API
'=====================================================
oCompanyDI.Connect
Set oRecSet = oCompanyDI.GetBusinessObject(BoRecordset)
oRecSet.DoQuery ("SELECT T0.CardCode, T0.CardName FROM OCRD T0")
SBO_Application.MessageBox oRecSet.Fields.Item(1).Value
======================================================
but I got an error it said "you are not connected to company"
I'm really don't have an idea about how to get a data from using UI API (exp I want to get a date or costumer code)
can someone help me please, I really need it
Thanksyou need a single sign on
Dim oDICompany As SAPbobsCOM.Company
Dim sCookie As String
Dim sConnStr As String
Dim ret As Integer
oDICompany = New SAPbobsCOM.Company
sCookie = oDICompany.GetContextCookie
sConnStr = SBO_Application.Company.GetConnectionContext(sCookie)
If oDICompany.Connected Then
oDICompany.Disconnect()
End If
ret = oDICompany.SetSboLoginContext(sConnStr)
If Not ret = 0 Then
SBO_Application.MessageBox("set Login Context failed!")
Exit Sub
End If
ret = oDICompany.Connect()
If Not ret = 0 Then
SBO_Application.MessageBox("Company Connect failed!")
End If -
URGENT HELP NEEDED. IS "JE_LINE_NUM" FROM GL_INTERFACE USED in 11.03 or 11i?
Please help!
I need to make an import from a custom Payroll application into GL. Everything would be working just fine, if I could use the JE_LINE_NUM from GL_INTERFACE table. In the tech documentation it was stated that this column is not used in version 10. Nothing stated about 11.03 or 11i
If this doesn't work, any ideea how could I manage the journal detail line number the transaction is imported?
THANK YOU VERY MUCH.
Please answer at: [email protected]If I interpreted your requirements correctly, you wish to supply the JE_LINE_NUM in the GL_INTERFACE table.
Unfortunately, you cannot do so. The GL_INTERFACE.JE_LINE_NUM column must be NULL for Journal Import to function correctly. This is mentioned in the User's Guide. Since the grouping of lines into batches and headers is done dynamically by journal import, it is not possible to support a user-specified journal line number. This will cause duplicates or gaps.
This is true for all GL releases. -
How to share from Macbook(using wifi) to Apple TV (using ethernet)?
Hi-
I recently moved in to my college dorm. I brought my Apple TV, and IT said the only way to hook it up was to directly connect the Apple TV with the ethernet cable in my dorm. That works fine, and I can still access Netflix and the other apps using the cable; however my MacBook Pro does not show that it's available to share it's screen on to the Apple TV anymore.
When I was using Apple TV at home, we set it up through our secured wifi network, and could press a button to share my Mac screen onto the TV's.
I think that since the Apple TV and my MacBook Pro are using different wifi networks or settings, it isn't allowing me to do that anymore.
Is there any way to still project my Mac's screen on to the Apple TV? I do not want other people to have access to my computer if I change the settings for internet sharing, but I still want to be able to share my screen onto the TV.
Thank you so much, I'd love an answer.Welcome to the Apple Community.
Many college/university networks will not allow communication between devices on that network. One workaround is to create your own network by installing something like an Airport Extreme and connecting it to your dorm ethernet connection. Unfortunately, some of these institutions won't allow this workaround either. -
Solaris 10 - x86 - migrating from Linux - question?
Hi,
We have a C++ application that uses libpcap to read packets as they arrive on the interface. We are trying to set up a more secure environment on Solaris 10 x86 by having this application run inside of a Solaris Container. The application runs properly when run on the machine outside of the container. However, when we try to start the application when inside the container, the call to pcap_open_live fails with the error "'/dev/iprb0:1: No such file or directory'".
Is there a way in which we can set up the Solaris Container so that it can have access to the interfaces (devices) in /dev?No. Packet capturing is not working in non-global zones.
You can not manipulate network interfaces in a non global zones at all. You can add some types of devices to the non global zones, but no network adapters.
All ip filtering, packet capturing business can only be done in the global zone.
regards,
Imre -
Mount smb-share from non-standard port
Hi everybody!
I have an SMB-Server running on a non-standard port (>1024) how can I establish a connection from the Finder? I have tried smb://serverip:port/share but unless I did something wrong, it didn't work...
Any ideas?
confusion
quad g5 | MacBook 2GHz Mac OS X (10.4.7) Geforce 7800GT, 2.5GB RAM | 1GB RAMtry the browse button to see if it comes up.
you are trying the right syntax i.e one would have thought that would work.
smb://server:1024 -
Dear Sirs,
I have install linux Redhat5.3 release 2.6.18-128.el5PAE.i am trying to mount some of the drive of windows 7 on my linux system.
Someone can help me with the rpm for the same.[linux.softpedia.com/get/System/.../ntfs-3g-15028.shtml] linux.softpedia.com/get/System/.../ntfs-3g-15028.shtml
or
[www.tuxera.com/community/ntfs-3g-download|www.tuxera.com/community/ntfs-3g-download] www.tuxera.com/community/ntfs-3g-download|www.tuxera.com/community/ntfs-3g-download
Use ntfs-3g package to mount ntfs drives into linux.
use following command at shell prompt
$ mount -t /dev/sda1 /mnt/drive_win7
Please find your drive such as sda1 or sda2 or anything from fdisk command and press p to print and press q to quit.
Also, if you want to mount every time you login into linux system.
Then you have to change /etc/inittab file.
Google it out. Easy commands out there for newbies like me and you there.
Regards,
Dave.
Edited by: 897450 on Dec 19, 2011 3:15 AM -
How to access ZFS share from Windows 7?
I am new to UNIX and am having a hard time to get a ZFS share to access from windows 7 on my home network.
I was able to access both WHS 2011 and QNAP 459 share on SE 11 by using the file manager - Server - windows & then just using the IP address, username, password. That was easy or at least similar to what I was used with windows 7.
However, I have yet to be able to access a ZFS pool containing a share that I can access from another windows 7 machine at home.
Apparently, I can mount the share from windows but the login name/password do not get accepted when I add a network connection in windows. Windows does seem to find the path \\solaris\tank_share1 and even mounts it, but the login for SE 11 does not work for some reason.
I changes the workgroup name to WORKGROUP in windows but that did not change anything. I tried to edit the pam.conf file by changing the ownership from root to myself so I could use gedit since it has been 15 years since I last used vi. However, that corrupted the setup as I got "system error" message on reboot that never got out of that infinite loop.
I am basically using the instruction through the following link:
http://blogs.oracle.com/observatory/entry/accessing_opensolaris_shares_from_windows
Any help to get this problem resolved is much appreciated
Thanks,
KurtThe documented procedure of having to edit the pam_conf file seems to work followed by resetting one's password seems to work after all. I believe, by taking away ownership from root to "admin user" screwed things up. I had to relearn how to use vi but that didn't take very long.
Got about 50 MB/s speed coping from Windows SSD to SE11 SSD via very small (5 GB) RAIDZ array in VMWare (running on top of WIN 7-64). I have to try native SE11 SSD next as the VMWare setup is just for practice.
Q: Is there a way to launch gedit from the terminal window in root mode so I wouldn't have to use vi?
Kurt
Maybe you are looking for
-
Key Mapping Conflict of GT780DX
My GT780DX is unable to support 10 keys pressed together, while it is said "MSI's gaming keyboard supports simultaneous pressing of 10 keys or more, allowing users to issue commands rapidly and respond to games with precision." Two examples: Key I in
-
CCX9 - webchat Service - Unavaiable
Hi All, I´m doing a test with CCX version 9 and trying to use webchat feature on that but when I try to logon onto chat session I´m getting back a message saying "Service Unavaiable. Try logging in again". I been reading on some documentation Cisco S
-
My airport does not start when pligged in
My aipport does not start when plugged in. The light does not come on at all. If there some kind of a reset switch?
-
HT1463 Is there a version of "iWork" or "Numbers" that will work on iMac G5 OS 10.8?
Is there a version of "iWork" or "Numbers" that will work on iMac G5 with OS 10.6.8?
-
I loose focus on tab pages with horizontal scroll bar
Hello I am using a form with two tab pages. On the second tab page there is a multirecord block from which the first 5 columns are context (always visible)), the other columns are working with a horizontal scrollbar. When I navigate to another window