How to configure RSA Based User Authentication on XR?

Similar Messages

• How to implement OData based BASIC Authentication using HTML, JavaScript for Mobile Apps using Apache Cordova/PhoneGap and datajs-1.1.1.js library

  Hello,
  I have an issue with OData based BASIC authentication for iOS App created using HTML, JavaScript, SAP UI5, OData and Apache Cordova/PhoneGap.
  Please check the post here http://scn.sap.com/thread/3527245
  Request you to kindly reply on the above given link.
  Thanks and Regards,
  Suraj Kumar

  Hello Prathik,
  The code which I am using for OData based BASIC Authentication, for my Mobile App is as below.
     var onSuccess = function(data) {
     alert("We are Through"); //Just to check that the OData request was sucessful
     var onError = function(err) {
     switch(err.response.statusCode) {  
     case 403 : {
     window.alert("Error Code - 403, Service unreachable ");
     break;
     case 401 : {
     window.alert("The credentials are incorrect or missing!");
     break;  
  // dataUserName and dataPassword are the two variables, in which I am storing my Username and Password, respectively.
     var connectionRequest = {
     requestUri: "ODATA SERVICE URL GOES HERE/",
     headers: { Authorization : 'Basic ' + Base64.encode(dataUsername + ":" + dataPassword) },
     method: "POST"
     OData.request( connectionRequest, onSuccess, onError);

• How to configure security so users can delete their own file(s)?

  I have configured our file server so that all users can write/modify in any other user's folder. However, it seems that they cannot delete their own file(s) in another user's folder. Do I have to give all users the "Modify" but not Full permission
  so that every user can delete their own file or folder even if it's in another user's folder? I still do not want user A to delete/modify any files/folders that user B originally created.
  Any help is much appreciated.

  Hi,
  Based on my research, if a user can rename a file/folder, then he/she can save it using the original name, there is no way to prevent this via permission assignment.
  You may need to use scripts to achieve this.
  Best Regards,
  Amy Wang

• How to configure read only user on IAP?

  Requirement:
  In environments, such as enterprises and campus universities, there are instances where few administrators only monitor the IAP clustered networks. For such users, a read only user can be configured on IAP.
  Solution:
  In IAP software, a provision is given is to configure a read only user in the system settings, under "Admin" tab.
  Configuration:
  Follow the below steps to configure radius authentication in IAP:
  Login to IAP web interface
  Select "System" from the main menu and then click on "Admin" tab
  Under View Only settings, enter the username and password.
  Verification
  Logout of the IAP web interface and try logging in using the username and password created for read only user.
  This read only user will no longer be able to see configuration options. Below screenshot shows the difference of menu options between an administrator and read-only user:

  HG,
  Please check this link.
  http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_configuration_example09186a00808d9138.shtml
  We need to set up command authorization.
  Regards,
  ~JG
  Do rate helpful posts.

• How to Configure Location based Accounts system for a company

  Hi Experts,
  My client using SAP B1 2007B PL13.
  I am configuring the Accounts part. here My client is involved in manufacturing business. so there are 3 locations like
  Location 1: Head Office
  Location 2: Factory1 and Warehouse1.
  Location 3: Factory2 and Warehouse2.
  they are asking the financial report for all three locations to find the expenditure and returns. Under this scenario i am confused to configure the accounts system for them, whether,  i have to create a 1) segmentation accounts 2) Profit center and 3)cost center.
  can anyone guide me to decide and explain a breif work around for my scenario.

  Hi rakesh,
  Yes, I am just started implementation for my client. their requirement is to take the report on location wise.  so initially i have to decide , weather i can use segmentation or profit center ?
  note: number of location will increase in future. so having this in mind , i have to decide the best method to make the process easier to the end user in future times too.
  are am clear?  can u help me out.!!
  Thanks & regards,''
  Dwarak

• How to make a Secure User Authentication !!!!!!!!

  Hello to all the experts out there,
  I am making a website, in which user has to logs in by entering his userid and password. after login, he can make a transaction of money from his account. u can think of it as an online banking site. so this must be secure login i.e password should not be stolen by any third party or proxies, so it must be encrypted; same account should not be accessed by two pc's at the same time etc. i have implemented it by using sessions only.
  checking userid and password from database if valid then store it to session and forward to welcome page page
  <%
  rs1 = stmt.executeQuery("select userid, password from users where userid = '" + vuserid + "' AND password = '" + vpassword + "'");
  if(rs1.next() )
  {   userExist = true;
       //user exists, now make session object
       UserInfo ui = new UserInfo();
       ui.setUserid(vuserid);
       ui.setPassword(vpassword);
       session.setMaxInactiveInterval(1800);
       session.setAttribute("UserInfo", ui);
  rs1.close();
  stmt.close();
  con.close();
  %>
  <jsp:forward page="Lwelcome.jsp" />
  <%
  then at each page i check the attribute UserInfo
  <%
  UserInfo ui = (UserInfo) session.getAttribute("UserInfo");
  if(ui != null && ui.getUserid().length() !=0 && ui.getPassword().length() !=0)
  %>
  // HTML code
  <%
  %>
  It works fine.
  plz tell me how to encript the password before sending it to server and should i also save the password in encripted form in the database?
  how to achieve single login? and also as i have created an instance of UserInfo class at the time of setting attributes in session(code given above), what is the scope of this object?
  Thanks in advance!!!

  Use HTTPS. Start the HTTPS session when they first access the login page and continue using HTTPS until they log out. This way the password will be encoded. Check the documentation for you application server as to how to set up HTTPS for you system.

• How to configure number of RADIUS authentication attempts

  Hello,
  I'm looking for a way to configure the number of RADIUS authentication attempts on a Server 2012.
  The server has RRAS but uses an external server for RADIUS authentication. By default, the RRAS (RADIUS client) sever sends
  3 RADIUS Access-Request messages if there is no reponse from the RADIUS server. I would like to configure that to only
  1 authentication retry.
  I have tried to configure settings in the registry, but it did not help. I have configured:
  HKLM\SYSTEM\CurrentControlSet\Services\RemoteAccess\Authentication\Providers\{1AA7F83F-C7F5-11D0-A376-00C04FC9DA04}\Servers\radiusserver1 - the DWORD value
  Retries. Also, I have configured: HKLM\SYSTEM\CurrentControlSet\Services\RemoteAccess\Parameters - with a DWORD value
  AuthenticateRetries. Nothing worked.
  Is there a way to configure the number of RADIUS authentication attempts? Advice appreciated.

  Hi,
  According to your description, my understanding is that you want to change the retry times of RADIUS client.
  I set up a test environment according to your description:
  1. Windows 7 as the VPN client.
  2. Windows Server 2012 as VPN server, also install NPS as RADIUS client and forward request to RADIUS Server.
  3. Windows Server 2008 R2 as the RADIUS Server.
  I have tried to reduce the time of dropping the request, and some registry entry, but all have no effect  on 3 times retry of RADIUS access request. From now I haven’t found any Microsoft official instruction about this. I am wondering the reason you
  want to change this.
  Best Regards,
  Eve Wang
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected]

• How? Add 'wiki server' user authentication to top level of site?

  Hi All,
  I would like to move the user login feature found in the Wiki & Blog pages out to the main page.
  It seems to be a CSS/JavaScript function build in the pages, but has anyone managed to make the feature on the main (/) page or the top level Wiki (/groups) pages?

  Hi,
  From your description, I know you want to use calendar overlay with exchange online in SharePoint online.
  I reproduce your issue, and it throws the same exception to yours. I try to find some information for you, I find that the feature is not available from this article:
  http://community.office365.com/en-us/f/148/t/221842.aspx.
  Thanks for your understanding.
  Best Regards
  Vincent Han
  TechNet Community Support

• How to configure event based ALEAUD?

  I am sending idocs from BPM to R/3, and would like to know, whether it is possible to get ALEAUD confirmations back to XI in real time.  At present it takes about 10 minutes to get the ALEAUDits back, and that will withhold my BPM in idle.

  hi Timo,
  there are two ways to do that:
  not recommended way (if your SAP doesn't have too much resourses) :
  1. schedule RBDSTATE to send aleadus sooner (every 2 - 3 minutes)
  better way:
  2. inside an any kind of exit (worflow, exit etc) for your IDOC in R3 execute the report RBDSTATE
  this way it will be sent right after the idoc will be in SAP
  Regards,
  michal
  <a href="/people/michal.krawczyk2/blog/2005/06/28/xipi-faq-frequently-asked-questions"><b>XI / PI FAQ - Frequently Asked Questions</b></a>

• How to Configure OIM 9.1 for Request-Based Provisioning

  Hi experts,
  I am new to OIM and need to know how to configure request based provisioning. Here is the scenario.
  My environment has two target systems (Sun LDAP and Novell EDirectory) configured for provisioning to OIM 9.1
  A user should be able to login, request either or both (SUN LDAP and EDir) for self or others.
  Now the request should go to an admin for approval.
  Once approved, the requested accounts should be created on the target systems.
  Please guide me on the procedure to be followed.
  Many thanks in advance

  You will have to download the standard out of box connector for these target systems & will have to import it through the Deployment manager into OIM. Then you will have to create the Process definition of approval type & attach it to the same resource object. Please read the belo link before implementing any thing. This will provide you a better idea.
  http://download.oracle.com/docs/cd/E10391_01/doc.910/e10363.pdf

• How to configure USER CAL on SQL server 2008

  how to configure or Add User CAL on SQL server 2008?
  pls let me know the process

  Hello,
  There is no CAL management in SQL Server, you have the licenses only "on paper".
  Olaf Helper
  [ Blog] [ Xing] [ MVP]

• How to configure AnyConnect/ASA/Certificate/MS CA together

  Hello
  We are looking to apply mobile device management utilizing some third-party cloud solution. Mostly iPad users will connect to our internal network using AnyConnect thru ASA. Third party MDM will be used to control and provision ipads and i need to provide solution for AnyConnect VPN.
  Looking for some guidance, docs, examples, white paper that will provide info how to configure the following:
  users will connect to ASA VPN using AnyConnect; certificate issued by internal Microsoft CA and unique to each user will be used for authenticate the user. ACS will communicate with Microsoft AD to check if the user is valid AD user. Once authentication is done, user will have access to internal network.
  I am struggling to get all those peace of puzzle togehter so i can work on solution.
  I would appreciate if someone will give me some ideas how this whole scenario will work.
  Thank you.

  Anyone from experts out there? I am sure someone heave doen this before.

• Setup Java system directory server 6 client for user authentication

  I am trying to set up a native LDAP client for sun directory server 6 for network based user authentication. I checked the sun doc for naming service (LDAP) and the documentation are for setting up LDAP client for directory server 5. Is there any documentation for setting up LDAP client for directory server 6? Or the documents for setting LDAP client for directory server 5 is still good for 6? Particularly, I want to use SSL communication between server and client.

  Hi,
  could be one of the other 'bad jokes' of DS/ldapclient because the documentation describes a lot of stuff about profiles etc. but: you need some special schema files to use the whole stuff and they are not installed with Solaris or DS (and they include the NisDomainObject). I had to search for them in the internet. They are also printed in the documentation. Save them in your server's config/schema directory as i.e. 61DUAConfigProfile.ldif and 62nisDomain.ldif and try idsconf again (maybe you have to cleanup something).
  I test and prepare DS6 here, and we will use it in production too. I hadn't any problem with it and it has some important advantages over DS5.2. But we won't have a huge directory so I can't tell you anything more about it.
  Regards
  Jochem Ippers
  Here are the ldifs:
  61DUAConfigProfile.ldif:
  dn: cn=schema
  attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.0 NAME 'defaultServerList' DESC 'Default LDAP server host address used by a DUA' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE X-ORIGIN 'user defined' )
  attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.1 NAME 'defaultSearchBase' DESC 'Default LDAP base DN used by a DUA' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE X-ORIGIN 'user defined' )
  attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.2 NAME 'preferredServerList' DESC 'Preferred LDAP server host addresses to be used by a DUA' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE X-ORIGIN 'user defined' )
  attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.3 NAME 'searchTimeLimit' DESC 'Maximum time in seconds a DUA should allow for a search to complete' EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE X-ORIGIN 'user defined' )
  attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.4 NAME 'bindTimeLimit' DESC 'Maximum time in seconds a DUA should allow for the bind operation to complete' EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE X-ORIGIN 'user defined' )
  attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.5 NAME 'followReferrals' DESC 'Tells DUA if it should follow referrals returned by a DSA search result' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE X-ORIGIN 'user defined' )
  attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.6 NAME 'authenticationMethod' DESC 'A keystring which identifies the type of authentication method used to contact the DSA' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE X-ORIGIN 'user defined' )
  attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.7 NAME 'profileTTL' DESC 'Time to live, in seconds, before a client DUA should re-read this configuration profile' EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE X-ORIGIN 'user defined' )
  attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.14 NAME 'serviceSearchDescriptor' DESC 'LDAP search descriptor list used by a DUA' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 X-ORIGIN 'user defined' )
  attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.9 NAME 'attributeMap' DESC 'Attribute mappings used by a DUA' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 X-ORIGIN 'user defined' )
  attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.10 NAME 'credentialLevel' DESC 'Identifies type of credentials a DUA should use when binding to the LDAP server' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE X-ORIGIN 'user defined' )
  attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.11 NAME 'objectclassMap' DESC 'Objectclass mappings used by a DUA' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 X-ORIGIN 'user defined' )
  attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.12 NAME 'defaultSearchScope' DESC 'Default search scope used by a DUA' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE X-ORIGIN 'user defined' )
  attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.13 NAME 'serviceCredentialLevel' DESC 'Identifies type of credentials a DUA should use when binding to the LDAP server for a specific service' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 X-ORIGIN 'user defined' )
  attributeTypes: ( 1.3.6.1.4.1.11.1.3.1.1.15 NAME 'serviceAuthenticationMethod' DESC 'Authentication method used by a service of the DUA' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 X-ORIGIN 'user defined' )
  objectClasses: ( 1.3.6.1.4.1.11.1.3.1.2.4 NAME 'DUAConfigProfile' SUP top STRUCTURAL DESC 'Abstraction of a base configuration for a DUA' MUST ( cn ) MAY ( defaultServerList $ preferredServerList $ defaultSearchBase $ defaultSearchScope $ searchTimeLimit $ bindTimeLimit $ credentialLevel $ authenticationMethod $ followReferrals $ serviceSearchDescriptor $ serviceCredentialLevel $ serviceAuthenticationMethod $ objectclassMap $ attributeMap $ profileTTL ) X-ORIGIN 'user defined' )
  62nisDomain.ldif:
  dn: cn=schema
  attributeTypes: ( 1.3.6.1.1.1.1.30 NAME 'nisDomain' DESC 'NIS domain' SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 X-ORIGIN 'user defined' )
  objectClasses: ( 1.3.6.1.1.1.2.15 NAME 'nisDomainObject' SUP top STRUCTURAL MUST nisDomain X-ORIGIN 'user defined' )

• Configuring Wired 802.1x Authentication step-by-step guide

  Hello All
  I don't have a question at the moment, but I wrote a step-by-step guide on how to configure Wired 802.1x Authentication on Windows Server 2012 using Cisco switches.
  You can find the document on my website http://www.accessdenied.be/blog
  regards
  Johan Loos CISSP,MCT,ISO 27001 and others

  Hi Johan,
  Thanks for your sharing.
  As this post is not a question, I will change it to Discussion. In addition, I would recommend that you to publish guide at TechNet Wiki.
  http://social.technet.microsoft.com/wiki
  Best Regards,
  Aiden
  Aiden Cao
  TechNet Community Support

• How to configure high availability and disaster recovery? And user authenticate

  We are in the process of rolling out our online help which was created using Robohelp.   In our initial rollout we will provide access to the files via our Client Portal which requires authentication.  We are also planning for our next version where we intend to implement Robohelp server functionality.
  Our IT team is looking at options on how to configure for High Availability and Disaster Recovery.  It seems that Robohelp doesn't have any built-in functionality in this area.  In addition we require that our users authenticate.  The options for the server version seem to be more internally focused and we would need to solution the authentication using a third party.
  Would anyone be willing to share their approach in these areas?  Would you be willing to participate in a conference call with our IT Professionals?

  Hello again
  I see my good friend Peter replied to your LInkedIn post where you cross-posted the same question. For those here that have no clue what Peter stated, here it is:
  What are you seeking to recover? Your projects? Your outputs? This sounds like a question more appropriate to Disaster Recovery consultants and far wider reaching than RoboHelp. To me it seems like a question your IT people should be asking direct to such consultants who would expect a fee for their advice.
  I would agree with Peter's reply.
  I'll also go further and ask what exactly is being done in this realm for the application? Help files generally are there to support an application on the server. So whatever you are doing for the applciation should also be able to be used for the WebHelp, FlashHelp or web based AIR Help files, no?
  Cheers... Rick
  Helpful and Handy Links
  RoboHelp Wish Form/Bug Reporting Form
  Begin learning RoboHelp HTML 7, 8 or 9 within the day!
  Adobe Certified RoboHelp HTML Training
  SorcerStone Blog
  RoboHelp eBooks