How to verify "security authentication failure rate" command
i type "security authentication failure rate 2 log" in global configuration mode,then login authentication failed many times but no the 15-second delay.
why?Thanks.
Steven,
This command did NOT come in play till 12.3.1
Command History
Release
Modification
12.3(1)
This command was introduced.
12.2(27)SBC
This command was integrated into Cisco IOS Release 12.2(27)SBC.
12.3(7)T
The range of the threshold-rate value was changed from 1 through 1024 to 2 through 1024.
Usage Guidelines
The security authentication failure rate command provides enhanced security access to the router by generating syslog messages after the number of unsuccessful login attempts exceeds the configured threshold rate. This command ensures that there are not any continuous failures to access the router.
Regards,
Alex.
Please rate useful posts.
Similar Messages
-
What's the difference between, just for example, "login block-for 100 attempts 15 within 100" and "security authentication failure rate 3"?
Please ignore the numbers, I need to know what the differences are in commands and what they do, what they affect.security authentication failure rate number_of_failed_attempts : A global configuration mode command used to specify the maximum number of failed attempts (in the range of 2 to 1024) before introducing a 15-second delay
login block-for 100 attempts 15 within 100 : Block all access after 15 failed login attempts within 100 Secs for the period of 100Secounds (1.40 Minutes).
The Cisco IOS Login Enhancements (Login Block) feature allows users to enhance the security of a router by configuring options to automatically block further login attempts when a possible denial-of-service (DoS) attack is detected.
The login block and login delay options introduced by this feature can be configured for Telnet or SSH virtual connections. By enabling this feature, you can slow down "dictionary attacks" by enforcing a "quiet period" if multiple failed connection attempts are detected, thereby protecting the routing device from a type of denial-of-service attack. -
How to verify Security Update (QuickTime 7.1.6) is installed
Hi,
I manually installed Security Update (QuickTime 7.1.6) for Windows but I am not sure how to verify whether the update successfully installed or not. Is there any way we can check that the update is installed? Maybe file version? Hopefully someone can help.
Thanks,
ren47774
Windows 2000
Windows 2000If you install QT 7.1.6, it says 7.1.6 in the help screen. If you install the newly released security update, nothing changes to show the security update has been applied. It still says 7.1.6 in the help screen. Even running the patch manually, it gives no indication it has successfully installed.
I am required to install this patch on about 200 clasroom machines but have no way to verify which ones get the patch and which don't. Apparently I can't even go around to each of them and manually verify. -
Security authentication failure error
Dear All:
I have a FDM application load data to HFM. Sometimes, when I try to login to the FDM web application, I gor error says "FDM security authentication failture".
I have to go to the FDM application server and restart the IIS Admin Service or reboot the FDM application server. Then I can login. I wonder why I have to do that. Any help is really appreciated.Dear Hyperion experts:
I also get the following error when I try to login to FDM web application
Application
Error
Description: An exception occurred during the execution of the current
web request. Please contact the administrator to review the stack trace in the
event log for more information about the error.
Re-start IIS Admin server in FDM server and the error went away. However, it comes back in a few days.
Thank you in advance for any help. -
How to solve pdp authentication failure problem?
I've bought an iPhone 4 and the text and calling work fine, as does wifi. However, when trying to use internet without Wifi I get a "Could not activate cellular data network - PDP authentication failure".
I tried both the things in my 4s but still the same problem...
Edit: My iOS is 6.1.2 -
[SOLVED] Authentication failure while try to login in GDM
Hi,
I just installed Arch Linux 64 bit on Virtualbox (I using GNOME and GDM). I have set on rc.conf daemon arrays to start dbus and gdm and it run well.
My problem is I can't login using root. When I try to login, it prompt Authentication failure
I can't re-configure my rc.conf because I can't login, and I stuck in GDM screen..
When I try to use "Ctrl+Alt+F1", it effects to my host (ubuntu), not to my guest Arch
How to skip GDM to started for this condition and how to solve this authentication failure ?
Last edited by alphazero (2011-11-20 11:51:19)Since I run on virtualbox. I can't use Ctrl-F1, so I try to edit rc.conf using LiveCD
After I modify rc.conf and remove gdm in daemon array, I reboot and login as root.. adduser and finally it works login as user
And I add again gdm after it worked to log as user.
So problem solved.. Thanks to wonder for your help.
Last edited by alphazero (2011-11-20 11:50:54) -
How to verify ISAKMP Aggressive mode using show command only?
How to verify ISAKMP Aggressive mode using show command only?
Ah OK, my mistake. I was thinking ASA - I believe you are using an IOS-based VPN.
The state after establishment should be "QM Idle" (quick mode) - whether the Phase 1 was MM or AM.
I think you'll only see the AM in the debugs (like you have) or if you watch the output of the "show cry isa sa" command during establishment of the Phase 1 SA. If you're quick, you may see it cycle through as shown in this reference:
http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/security/s1/sec-s1-cr-book/sec-cr-s3.html#wp5743341910 -
In RSA Authentication Manager 7.1, how create multiple security domains
Hi,
RSA Authentication Manager 7.1 in configured with LDAP(Sun java system directory server); how create multiple security domains 7.1, is this security domains is releted to LDAP?
thanksI think what you need to do is create an identity sequence with RSA as the selection in
Authentication and Attribute Retrieval Search List and AD in Additional Attribute Retrieval Search List. Then select this sequence as the result in the identity policy for the service -
I have problem c connecting to cellular data network. There is massage "couldn't activate cellular data network, PDP authentication failure". What is it and how I solve this problem?
If you have a data only plan for the iPad with your carrier, if no change after powering your iPad off and on you will need to contact your carrier.
-
Please can someone help me to solve the error message "Could not activate cellular data network: PDP authentication failure"when using 3G or GPRS on safari with an iphone 4GS and latest software updates. I have tried resetting the network and phone settings. I have restored the factory settings on itunes and still the problem persists.
All iPhones sold in Japan are sold carrier locked and cannot be officially unlocked by the carrier. If you unlocked it, it was by unauthorized means (hacked), and support cannot be given to you in this forum.
Hacked iPhones are subject to countermeasures by Apple, particularly when updating the firmware. It is likely permanently re-locked or permanently disabled.
Message was edited by: modular747 -
Hi.
I'm using SCOM 2012 R2 and have imported the Exchange server 2010 MP.
I have runned the TestCasConnectivityUser.ps1 script and almost everything is okay except for the OWA test login.
The OWA rule is working for some time until (I think) SCOM is doing a automatic password reset of the extest_ account. Then I get the OWA error below. The other test connectivity are working. Any suggestions.
One or more of the Outlook Web App connectivity tests had warnings. Detailed information:
Target: xxx|xxx
Error: The test couldn't sign in to Outlook Web App due to an authentication failure.
URL: https://xxx.com/OWA/
Mailbox: xxxx
User: extest_xxx
Details:
[22:50:08.936] : The TrustAnySSLCertificate flag was specified, so any certificate will be trusted.
[22:50:08.936] : Sending the HTTP GET logon request without credentials for authentication type verification.
[22:50:09.154] : The HTTP request succeeded with result code 200 (OK).
[22:50:09.154] : The sign-in page is from ISA Server, not Outlook Web App.
[22:50:09.154] : The server reported that it supports authentication method FBA.
[22:50:09.154] : This virtual directory URL type is External or Unknown, so the authentication type won't be checked.
[22:50:09.154] : Trying to sign in with method 'Fba'.
[22:50:09.154] : Sending HTTP request for logon page 'https://xxx.com/CookieAuth.dll?Logon'.
[22:50:09.154] : The HTTP request succeeded with result code 200 (OK).
[22:50:09.373] : The test couldn't sign in to Outlook Web App due to an authentication failure.
URL: https://xxx.com/OWA/
Mailbox: xxx
User: extest_xxx
[22:50:09.373] : Test failed for URL 'https://xxx/OWA/'.
Authentication Method: FBA
Mailbox Server: xxx
Client Access Server Name: xxx
Scenario: Logon
Scenario Description: Sign in to Outlook Web App and verify the response page.
User Name: extest_xxx
Performance Counter Name: Logon Latency
Result: Skipped
Site: xxx
Latency: -00:00:00.0010000
Secure Access: True
ConnectionType: Plaintext
Port: 0
Latency (ms): -1
Virtual Directory Name: owa (Default Web Site)
URL: https://xxx.com/OWA/
URL Type: External
Error:
The test couldn't sign in to Outlook Web App due to an authentication failure.
URL: https://xxx.com/OWA/
Mailbox: xxx
User: extest_xxx
Diagnostic command: "Test-OwaConnectivity -TestType:External -MonitoringContext:$true -TrustAnySSLCertificate:$true -LightMode:$true"
EventSourceName: MSExchange Monitoring OWAConnectivity External
Knowledge:
http://go.microsoft.com/fwlink/?LinkID=67336&id=CB86B85A-AF81-43FC-9B07-3C6FC00D3D42
Computer: xxx
Impacted Entities (3):
OWA Service - xxx, xxx - xxx, Exchange
Knowledge: View additional knowledge...
External Knowledge Sources
For more information, see the respective topic at the Microsoft Exchange Server TechCenter
Thanks
MHemHi,
Based on the error, it looks like an OWA authentication failure.
Have you tried post this to LYNC forums?
We
are trying to better understand customer views on social support experience, so your participation in this
interview project would be greatly appreciated if you have time.
Thanks for helping make community forums a great place. -
BSOD - Kernel Security Check Failure
Hello,
So, I built this gaming rig around September, so this computer is still fairly new. Everything was fine until about a few weeks ago I started having BSOD -- all of them were kernel_security_check_failure. I've already done sfc /scannow on command prompt and
it shows that nothing was corrupted. Generally, the BSOD only happens when I download anything. For example, after maybe, 20 or so my computer crashes. The time does vary, but in the end, it still crashes.
My specs if needed:
AMD FX-6300
2 x 4GB 240-PIN DDR3 RAM
Radeon R9 270x 2GB 256-bit GDDR5
GA-970A-UD3P AM3+ AMD 970
My minidump file shows this:
Microsoft (R) Windows Debugger Version 6.3.9600.17298 AMD64
Copyright (c) Microsoft Corporation. All rights reserved.
Loading Dump File [C:\Windows\Minidump\021315-16703-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available
************* Symbol Path validation summary **************
Response Time (ms) Location
Deferred SRV*C:\Windows\symbol_cache*http://msdl.microsoft.com/download/symbols
Symbol search path is: SRV*C:\Windows\symbol_cache*http://msdl.microsoft.com/download/symbols
Executable search path is:
Windows 8 Kernel Version 9600 MP (6 procs) Free x64
Product: WinNt, suite: TerminalServer SingleUserTS
Built by: 9600.17630.amd64fre.winblue_r7.150109-2022
Machine Name:
Kernel base = 0xfffff802`b8285000 PsLoadedModuleList = 0xfffff802`b855e250
Debug session time: Fri Feb 13 21:42:38.503 2015 (UTC - 5:00)
System Uptime: 0 days 0:15:45.226
Loading Kernel Symbols
Press ctrl-c (cdb, kd, ntsd) or ctrl-break (windbg) to abort symbol loads that take too long.
Run !sym noisy before .reload to track down problems loading symbols.
Loading User Symbols
Loading unloaded module list
* Bugcheck Analysis *
Use !analyze -v to get detailed debugging information.
BugCheck 139, {3, ffffd000fb1fee30, ffffd000fb1fed88, 0}
*** WARNING: Unable to verify timestamp for MRVW24C.sys
*** ERROR: Module load completed but symbols could not be loaded for MRVW24C.sys
Probably caused by : MRVW24C.sys ( MRVW24C+272f1 )
Followup: MachineOwner
4: kd> !analyze -v
* Bugcheck Analysis *
KERNEL_SECURITY_CHECK_FAILURE (139)
A kernel component has corrupted a critical data structure. The corruption
could potentially allow a malicious user to gain control of this machine.
Arguments:
Arg1: 0000000000000003, A LIST_ENTRY has been corrupted (i.e. double remove).
Arg2: ffffd000fb1fee30, Address of the trap frame for the exception that caused the bugcheck
Arg3: ffffd000fb1fed88, Address of the exception record for the exception that caused the bugcheck
Arg4: 0000000000000000, Reserved
Debugging Details:
TRAP_FRAME: ffffd000fb1fee30 -- (.trap 0xffffd000fb1fee30)
NOTE: The trap frame does not contain all registers.
Some register values may be zeroed or incorrect.
rax=ffffe001946f40d0 rbx=0000000000000000 rcx=0000000000000003
rdx=ffffe001946f3fb8 rsi=0000000000000000 rdi=0000000000000000
rip=fffff802b83768f9 rsp=ffffd000fb1fefc0 rbp=0000000000000000
r8=ffffe001946f41e8 r9=ffffe001946f3fb8 r10=ffffe001947e49c0
r11=ffffd000fb1ff050 r12=0000000000000000 r13=0000000000000000
r14=0000000000000000 r15=0000000000000000
iopl=0 nv up di ng nz ac po cy
nt!ExInterlockedInsertTailList+0xad:
fffff802`b83768f9 cd29 int 29h
Resetting default scope
EXCEPTION_RECORD: ffffd000fb1fed88 -- (.exr 0xffffd000fb1fed88)
ExceptionAddress: fffff802b83768f9 (nt!ExInterlockedInsertTailList+0x00000000000000ad)
ExceptionCode: c0000409 (Security check failure or stack buffer overrun)
ExceptionFlags: 00000001
NumberParameters: 1
Parameter[0]: 0000000000000003
CUSTOMER_CRASH_COUNT: 1
DEFAULT_BUCKET_ID: LIST_ENTRY_CORRUPT
BUGCHECK_STR: 0x139
PROCESS_NAME: System
CURRENT_IRQL: 2
ERROR_CODE: (NTSTATUS) 0xc0000409 - The system detected an overrun of a stack-based buffer in this application. This overrun could potentially allow a malicious user to gain control of this application.
EXCEPTION_CODE: (NTSTATUS) 0xc0000409 - The system detected an overrun of a stack-based buffer in this application. This overrun could potentially allow a malicious user to gain control of this application.
EXCEPTION_PARAMETER1: 0000000000000003
ANALYSIS_VERSION: 6.3.9600.17298 (debuggers(dbg).141024-1500) amd64fre
LAST_CONTROL_TRANSFER: from fffff802b83e14e9 to fffff802b83d59a0
STACK_TEXT:
ffffd000`fb1feb08 fffff802`b83e14e9 : 00000000`00000139 00000000`00000003 ffffd000`fb1fee30 ffffd000`fb1fed88 : nt!KeBugCheckEx
ffffd000`fb1feb10 fffff802`b83e1810 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiBugCheckDispatch+0x69
ffffd000`fb1fec50 fffff802`b83e0a34 : ffffd000`fb1fefa0 fffff802`b8537200 00000000`00000000 fffff800`b281cf1f : nt!KiFastFailDispatch+0xd0
ffffd000`fb1fee30 fffff802`b83768f9 : ffffe001`93318400 00000000`00000001 ffffe001`96889c40 fffff800`b2aaf887 : nt!KiRaiseSecurityCheckFailure+0xf4
ffffd000`fb1fefc0 fffff800`b50a52f1 : ffffe001`946f3000 ffffe001`969dcd10 00000000`00000000 ffffe001`9458dad0 : nt!ExInterlockedInsertTailList+0xad
ffffd000`fb1ff000 ffffe001`946f3000 : ffffe001`969dcd10 00000000`00000000 ffffe001`9458dad0 00000000`00000000 : MRVW24C+0x272f1
ffffd000`fb1ff008 ffffe001`969dcd10 : 00000000`00000000 ffffe001`9458dad0 00000000`00000000 fffff800`b50aa38e : 0xffffe001`946f3000
ffffd000`fb1ff010 00000000`00000000 : ffffe001`9458dad0 00000000`00000000 fffff800`b50aa38e ffffe001`96889c40 : 0xffffe001`969dcd10
STACK_COMMAND: kb
FOLLOWUP_IP:
MRVW24C+272f1
fffff800`b50a52f1 ?? ???
SYMBOL_STACK_INDEX: 5
SYMBOL_NAME: MRVW24C+272f1
FOLLOWUP_NAME: MachineOwner
MODULE_NAME: MRVW24C
IMAGE_NAME: MRVW24C.sys
DEBUG_FLR_IMAGE_TIMESTAMP: 472551f7
FAILURE_BUCKET_ID: 0x139_3_MRVW24C+272f1
BUCKET_ID: 0x139_3_MRVW24C+272f1
ANALYSIS_SOURCE: KM
FAILURE_ID_HASH_STRING: km:0x139_3_mrvw24c+272f1
FAILURE_ID_HASH: {405011a6-34ec-30a6-31a9-53275dcd66c7}
Followup: MachineOwnerHello,
So, I built this gaming rig around September, so this computer is still fairly new. Everything was fine until about a few weeks ago I started having BSOD -- all of them were kernel_security_check_failure. I've already done sfc /scannow on command prompt and
it shows that nothing was corrupted. Generally, the BSOD only happens when I download anything. For example, after maybe, 20 or so my computer crashes. The time does vary, but in the end, it still crashes.
My specs if needed:
AMD FX-6300
2 x 4GB 240-PIN DDR3 RAM
Radeon R9 270x 2GB 256-bit GDDR5
GA-970A-UD3P AM3+ AMD 970
My minidump file shows this:
Microsoft (R) Windows Debugger Version 6.3.9600.17298 AMD64
Copyright (c) Microsoft Corporation. All rights reserved.
Loading Dump File [C:\Windows\Minidump\021315-16703-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available
************* Symbol Path validation summary **************
Response Time (ms) Location
Deferred SRV*C:\Windows\symbol_cache*http://msdl.microsoft.com/download/symbols
Symbol search path is: SRV*C:\Windows\symbol_cache*http://msdl.microsoft.com/download/symbols
Executable search path is:
Windows 8 Kernel Version 9600 MP (6 procs) Free x64
Product: WinNt, suite: TerminalServer SingleUserTS
Built by: 9600.17630.amd64fre.winblue_r7.150109-2022
Machine Name:
Kernel base = 0xfffff802`b8285000 PsLoadedModuleList = 0xfffff802`b855e250
Debug session time: Fri Feb 13 21:42:38.503 2015 (UTC - 5:00)
System Uptime: 0 days 0:15:45.226
Loading Kernel Symbols
Press ctrl-c (cdb, kd, ntsd) or ctrl-break (windbg) to abort symbol loads that take too long.
Run !sym noisy before .reload to track down problems loading symbols.
Loading User Symbols
Loading unloaded module list
* Bugcheck Analysis *
Use !analyze -v to get detailed debugging information.
BugCheck 139, {3, ffffd000fb1fee30, ffffd000fb1fed88, 0}
*** WARNING: Unable to verify timestamp for MRVW24C.sys
*** ERROR: Module load completed but symbols could not be loaded for MRVW24C.sys
Probably caused by : MRVW24C.sys ( MRVW24C+272f1 )
Followup: MachineOwner
4: kd> !analyze -v
* Bugcheck Analysis *
KERNEL_SECURITY_CHECK_FAILURE (139)
A kernel component has corrupted a critical data structure. The corruption
could potentially allow a malicious user to gain control of this machine.
Arguments:
Arg1: 0000000000000003, A LIST_ENTRY has been corrupted (i.e. double remove).
Arg2: ffffd000fb1fee30, Address of the trap frame for the exception that caused the bugcheck
Arg3: ffffd000fb1fed88, Address of the exception record for the exception that caused the bugcheck
Arg4: 0000000000000000, Reserved
Debugging Details:
TRAP_FRAME: ffffd000fb1fee30 -- (.trap 0xffffd000fb1fee30)
NOTE: The trap frame does not contain all registers.
Some register values may be zeroed or incorrect.
rax=ffffe001946f40d0 rbx=0000000000000000 rcx=0000000000000003
rdx=ffffe001946f3fb8 rsi=0000000000000000 rdi=0000000000000000
rip=fffff802b83768f9 rsp=ffffd000fb1fefc0 rbp=0000000000000000
r8=ffffe001946f41e8 r9=ffffe001946f3fb8 r10=ffffe001947e49c0
r11=ffffd000fb1ff050 r12=0000000000000000 r13=0000000000000000
r14=0000000000000000 r15=0000000000000000
iopl=0 nv up di ng nz ac po cy
nt!ExInterlockedInsertTailList+0xad:
fffff802`b83768f9 cd29 int 29h
Resetting default scope
EXCEPTION_RECORD: ffffd000fb1fed88 -- (.exr 0xffffd000fb1fed88)
ExceptionAddress: fffff802b83768f9 (nt!ExInterlockedInsertTailList+0x00000000000000ad)
ExceptionCode: c0000409 (Security check failure or stack buffer overrun)
ExceptionFlags: 00000001
NumberParameters: 1
Parameter[0]: 0000000000000003
CUSTOMER_CRASH_COUNT: 1
DEFAULT_BUCKET_ID: LIST_ENTRY_CORRUPT
BUGCHECK_STR: 0x139
PROCESS_NAME: System
CURRENT_IRQL: 2
ERROR_CODE: (NTSTATUS) 0xc0000409 - The system detected an overrun of a stack-based buffer in this application. This overrun could potentially allow a malicious user to gain control of this application.
EXCEPTION_CODE: (NTSTATUS) 0xc0000409 - The system detected an overrun of a stack-based buffer in this application. This overrun could potentially allow a malicious user to gain control of this application.
EXCEPTION_PARAMETER1: 0000000000000003
ANALYSIS_VERSION: 6.3.9600.17298 (debuggers(dbg).141024-1500) amd64fre
LAST_CONTROL_TRANSFER: from fffff802b83e14e9 to fffff802b83d59a0
STACK_TEXT:
ffffd000`fb1feb08 fffff802`b83e14e9 : 00000000`00000139 00000000`00000003 ffffd000`fb1fee30 ffffd000`fb1fed88 : nt!KeBugCheckEx
ffffd000`fb1feb10 fffff802`b83e1810 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiBugCheckDispatch+0x69
ffffd000`fb1fec50 fffff802`b83e0a34 : ffffd000`fb1fefa0 fffff802`b8537200 00000000`00000000 fffff800`b281cf1f : nt!KiFastFailDispatch+0xd0
ffffd000`fb1fee30 fffff802`b83768f9 : ffffe001`93318400 00000000`00000001 ffffe001`96889c40 fffff800`b2aaf887 : nt!KiRaiseSecurityCheckFailure+0xf4
ffffd000`fb1fefc0 fffff800`b50a52f1 : ffffe001`946f3000 ffffe001`969dcd10 00000000`00000000 ffffe001`9458dad0 : nt!ExInterlockedInsertTailList+0xad
ffffd000`fb1ff000 ffffe001`946f3000 : ffffe001`969dcd10 00000000`00000000 ffffe001`9458dad0 00000000`00000000 : MRVW24C+0x272f1
ffffd000`fb1ff008 ffffe001`969dcd10 : 00000000`00000000 ffffe001`9458dad0 00000000`00000000 fffff800`b50aa38e : 0xffffe001`946f3000
ffffd000`fb1ff010 00000000`00000000 : ffffe001`9458dad0 00000000`00000000 fffff800`b50aa38e ffffe001`96889c40 : 0xffffe001`969dcd10
STACK_COMMAND: kb
FOLLOWUP_IP:
MRVW24C+272f1
fffff800`b50a52f1 ?? ???
SYMBOL_STACK_INDEX: 5
SYMBOL_NAME: MRVW24C+272f1
FOLLOWUP_NAME: MachineOwner
MODULE_NAME: MRVW24C
IMAGE_NAME: MRVW24C.sys
DEBUG_FLR_IMAGE_TIMESTAMP: 472551f7
FAILURE_BUCKET_ID: 0x139_3_MRVW24C+272f1
BUCKET_ID: 0x139_3_MRVW24C+272f1
ANALYSIS_SOURCE: KM
FAILURE_ID_HASH_STRING: km:0x139_3_mrvw24c+272f1
FAILURE_ID_HASH: {405011a6-34ec-30a6-31a9-53275dcd66c7}
Followup: MachineOwner -
Go URL - User Authentication Failure
Hi,
I am trying to use a 'Go URL' in web application and I see some issue with authentication mechanism.
I was able to login and view the dashboard whenever the username used in the 'Go URL' is from the console. But if the user who is from Active directory is used in the 'Go URL' link, then I get the login page saying 'Invalid username or password'. When I check the log file, it says ' [53012] User Authentication Failure'.
Also the AD user can login from the login page, but not thru 'Go-URL' link.
Can anyone let me know whether I am missing any step?
Thanks969211 wrote:
I was able to login and view the dashboard whenever the username used in the 'Go URL' is from the console. But if the user who is from Active directory is used in the 'Go URL' link, then I get the login page saying 'Invalid username or password'. When I check the log file, it says ' [53012] User Authentication Failure'.
Also the AD user can login from the login page, but not thru 'Go-URL' link.
Can anyone let me know whether I am missing any step?Check the usage of Go URL first : http://docs.oracle.com/cd/E21043_01/bi.1111/e16364/apiwebintegrate.htm
If you dont user NQUser and NQPassword then they will be prompted for a password. you need to http://<hostname.domain>:9704/analytics/saw.dll?Dashboard&PortalPath=<your GO URLpath>*&NQuser=USERNAME&NQPassword=PASSWORD*
You should not access if URL without logging in.
Also on different note:
Rupesh Shelar wrote:
Make sure your BISYSTEM password
Go to weblogic console, http://IP address:7001/console
Home >Summary of Security Realms > myrealm > Users and Groups > BISystemUser
And then go to your EM (http://IP address:7001/em)
expand weblogic domain > bifoundation_domain > Security > Credentials > oracle.bi.system ? system.user
Just retype a new password then Restart BI All Services then test it.How is BISystemUser even related to Go URL .or this issue .?
Hope this helps.
Let me know the updates. Mark if it answers!
Thanks,
SVS -
How to verify that embedded OC4J is loading Custom LoginModule?
I've written a custom login module to authenticate against a custom datastore. I've added a system property
java.security.auth.login.config=C:\javadev\...\jaas.configas recommended by Yvonne here: Re: Custom LoginModule used by BC4J
I still get the following when I load a UIX page out of this module:
msg=JBO-33021: Failed authenticate user nullThere are many debug System.out(...) statements in the code (including in the initialize() function) but none are showing up in the OC4J console. Does anyone know how to verify that the LoginModule is indeed getting loaded? Is it normal for these System.out() statements not to show in the OC4J console?
I get the impression that the LoginModule is not being loaded but I'm not sure if those traces are enough...
Thanks,
/sflThanks much for the prompt reply and debugging tips Steve and Avi!
I used both switches (-DApplicationServerDebug and -verbose:class) and still no sign of the class being loaded; none of the traces (I did trace in the construct, though I failed to mention in my original post) nor do any of the app server or jvm debug messages show any sign of the LoginModule being loaded. So now I'm fairly certain I'm going about the wrong way to get this module loaded. Should I also be posting this to the JDeveloper forum?
My application module configuration is as follows:
jbo.security.config=<blank> (is this right?)
jbo.security.context=oracle.security.jazn
jbo.security.enforce=Must
jbo.security.loginmodule=customModuleThe command line to the JVM contains:
-Djava.security.auth.login.config=C:\javadev\jdev9052\j2ee\home\config\jaas.config[yes Avi, I was unfortunately imposed an M$ env. by the powers that be : ( ]
And, well I've been trying a lot of different things w/ the jaas.config file:
customModule{
myPack.controller.MyLoginModule required;
myApp{
myPack.controller.MyLoginModule required;
myPack.LookupModuleLocal{
myPack.controller.MyLoginModule required;
myPack.LookupModule{
myPack.controller.MyLoginModule required;
Ws-MyProg-webapp{
myPack.controller.MyLoginModule required;
default{
myPack.controller.MyLoginModule required;
current-workspace-app{
myPack.controller.MyLoginModule required;
};Any idea where I'm going wrong? Do I need to do anything else to get this module loaded? At first I thought I needed to modify the jazn-data.xml file but I saw a note in another thread Custom LoginModule used by BC4J which says that it's not necessary to modify it when using a custom LoginModule. Is this right, or should I be modifying that file?
Thanks,
java.lang.Object - jobject ;- ) -
Intermittent AD Authentication failures in ISE 1.2
Starting today I was getting intermittent authentication failures in ISE. It would say that the user was not found in the selected identity store. The account is there though. At one point I ran a authetication test from the external identity source menu and I got a failure and then the next time a pass. I have no idea why this is happening. I just updated to ISE 1.2 the other day. I'm also seeing what looks like a high level of latency on both of my PSN's. Is this normal? Any ideas?
Thanks
JefInteresting. I have one location that is not having this problem at all. The other is having it somewhat frequently. The PSN's for each location are tied to the local AD servers. I have not had this until we started getting 300-380 PC's connecting. We are a school so we are slowly getting started. It's real random. One user will work then another time they won't. Happens with admin and user. I have notices that with this new version of ISE it is complaining that it is getting accounting updates from the NAS too often, but I have not looked into this because I just installed 1.2 about 3-4 days ago and haven't had time to look into it.
When you say Multicast to you AD...how did you check that? We do use multicast.
Maybe you are looking for
-
In R12, if we set the purchasing system to use position hierarchy after defining all the jobs and positions. Is it advisable to change back to the employee/supervisor relationships setup later just by unchecking the option in the financial options fo
-
I have two tabs up "facebook and download.com" now if I click on a fresh page I hope to see a 3rd tab open up but no! it just opens up in one of the two tabs I have already have open. I have no idea why this is!
-
Powerbook & iBook can't connect simultaeneously with D-link 300-t modem
Please help After much pulling of hair I finaly got my G4 Powerbook to connect to the internet via my airport express through a d-link 300-t modem. This I achieved by changing the default ip address of the modem from 192.168.1.1 to 192.168.1.234 and
-
Basically, what happened above is what happened. My iPod wasn't connected to anything, and it spontaneously dumped everything except the games: videos, songs, etc. When I tried to sync it to my computer, it wouldn't hook up, and I'm not entirely sure
-
Isn't 38133mb 40gb storage? I have a used 60gb zen xtra with 38133
Isn't 3833mb 40gb storage? I have a used 60gb zen xtra with 3833mb total storage space/free space and I am under the impression that 60gb should be closer to 5833mb, correct? Can anyone help me to understand if this is correct? I just got this unit,