How to verify "security authentication failure rate" command

Similar Messages

• What's the difference between "login block-for X attempts X within X" and "security authentication failure rate X"?

  What's the difference between, just for example, "login block-for 100 attempts 15 within 100" and "security authentication failure rate 3"?
  Please ignore the numbers, I need to know what the differences are in commands and what they do, what they affect.

  security authentication failure rate number_of_failed_attempts : A global configuration mode command used to specify the maximum number of failed attempts (in the range of 2 to 1024) before introducing a 15-second delay
  login block-for 100 attempts 15 within 100 : Block all access after 15 failed login attempts within 100 Secs for the period of 100Secounds (1.40 Minutes).
  The Cisco IOS Login Enhancements (Login Block) feature allows users to enhance the security of a router by configuring options to automatically block further login attempts when a possible denial-of-service (DoS) attack is detected.
  The login block and login delay options introduced by this feature can be configured for Telnet or SSH virtual connections. By enabling this feature, you can slow down "dictionary attacks" by enforcing a "quiet period" if multiple failed connection attempts are detected, thereby protecting the routing device from a type of denial-of-service attack.

• How to verify Security Update (QuickTime 7.1.6) is installed

  Hi,
  I manually installed Security Update (QuickTime 7.1.6) for Windows but I am not sure how to verify whether the update successfully installed or not. Is there any way we can check that the update is installed? Maybe file version? Hopefully someone can help.
  Thanks,
  ren47774
    Windows 2000  
    Windows 2000  

  If you install QT 7.1.6, it says 7.1.6 in the help screen. If you install the newly released security update, nothing changes to show the security update has been applied. It still says 7.1.6 in the help screen. Even running the patch manually, it gives no indication it has successfully installed.
  I am required to install this patch on about 200 clasroom machines but have no way to verify which ones get the patch and which don't. Apparently I can't even go around to each of them and manually verify.

• Security authentication failure error

  Dear All:
  I have a FDM application load data to HFM. Sometimes, when I try to login to the FDM web application, I gor error says "FDM security authentication failture".
  I have to go to the FDM application server and restart the IIS Admin Service or reboot the FDM application server. Then I can login. I wonder why I have to do that. Any help is really appreciated.

  Dear Hyperion experts:
  I  also get the following error when I try to login to FDM web application
  Application
  Error
  Description: An exception occurred during the execution of the current
  web request. Please contact the administrator to review the stack trace in the
  event log for more information about the error.
  Re-start IIS Admin server in FDM server and the error went away. However, it comes back in a few days.
  Thank you in advance for any help.

• How to solve pdp authentication failure problem?

  I've bought an iPhone 4 and the text and calling work fine, as does wifi. However, when trying to use internet without Wifi I get a "Could not activate cellular data network - PDP authentication failure".

  I tried both the things in my 4s but still the same problem...
  Edit: My iOS is 6.1.2

• [SOLVED] Authentication failure while try to login in GDM

  Hi,
  I just installed Arch Linux 64 bit on Virtualbox (I using GNOME and GDM). I have set on  rc.conf daemon arrays to start dbus and gdm and it run well.
  My problem is I can't login using root. When I try to login, it prompt Authentication failure
  I can't re-configure my rc.conf because I can't login, and I stuck in GDM screen..
  When I try to use "Ctrl+Alt+F1", it effects to my host (ubuntu), not to my guest Arch
  How to skip GDM to started for this condition and how to solve this authentication failure ?
  Last edited by alphazero (2011-11-20 11:51:19)

  Since I run on virtualbox. I can't use Ctrl-F1, so I try to edit rc.conf using LiveCD
  After I modify rc.conf and remove gdm in daemon array, I reboot and login as root.. adduser and finally it works login as user
  And I add again gdm after it worked to log as user.
  So problem solved.. Thanks to wonder for your help.
  Last edited by alphazero (2011-11-20 11:50:54)

• How to verify ISAKMP Aggressive mode using show command only?

  How to verify ISAKMP Aggressive mode using show command only?

  Ah OK, my mistake. I was thinking ASA - I believe you are using an IOS-based VPN.
  The state after establishment should be "QM Idle" (quick mode) - whether the Phase 1 was MM or AM.
  I think you'll only see the AM in the debugs (like you have) or if you watch the output of the "show cry isa sa" command during establishment of the Phase 1 SA. If you're quick, you may see it cycle through as shown in this reference:
  http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/security/s1/sec-s1-cr-book/sec-cr-s3.html#wp5743341910

• In RSA Authentication Manager 7.1, how create multiple security domains

  Hi,
  RSA Authentication Manager 7.1 in configured with LDAP(Sun java system directory server); how create multiple security domains 7.1, is this security domains is releted to LDAP?
  thanks

  I think what you need to do is create an identity sequence with RSA as the selection in
  Authentication and Attribute Retrieval Search List and AD in Additional Attribute Retrieval Search List. Then select this sequence as the result in the identity policy for the service

• I have problem c connecting to cellular data network. There is massage "couldn't activate cellular data network, PDP authentication failure". What is it and how I solve this problem?

  I have problem c connecting to cellular data network. There is massage "couldn't activate cellular data network, PDP authentication failure". What is it and how I solve this problem?

  If you have a data only plan for the iPad with your carrier, if no change after powering your iPad off and on you will need to contact your carrier.

• How to solve the error message "Could not activate cellular data network: PDP authentication failure"when using 3g or gPRS on safari with an iphone 4 and latest software updates

  Please can someone help me to solve the error message "Could not activate cellular data network: PDP authentication failure"when using 3G or GPRS on safari with an iphone 4GS and latest software updates. I have tried resetting the network and phone settings. I have restored the factory settings on itunes and still the problem persists.

  All iPhones sold in Japan are sold carrier locked and cannot be officially unlocked by the carrier. If you unlocked it, it was by unauthorized means (hacked), and support cannot be given to you in this forum.
  Hacked iPhones are subject to countermeasures by Apple, particularly when updating the firmware. It is likely permanently re-locked or permanently disabled.
  Message was edited by: modular747

• The test couldn't sign in to Outlook Web App due to an authentication failure. Extest_ account.

  Hi.
  I'm using SCOM 2012 R2 and have imported the Exchange server 2010 MP.
  I have runned the TestCasConnectivityUser.ps1 script and almost everything is okay except for the OWA test login.
  The OWA rule is working for some time until (I think) SCOM is doing a automatic password reset of the extest_ account. Then I get the OWA error below. The other test connectivity are working. Any suggestions.
  One or more of the Outlook Web App connectivity tests had warnings. Detailed information:
  Target: xxx|xxx
  Error: The test couldn't sign in to Outlook Web App due to an authentication failure.
  URL: https://xxx.com/OWA/
  Mailbox: xxxx
  User: extest_xxx
  Details:
  [22:50:08.936] : The TrustAnySSLCertificate flag was specified, so any certificate will be trusted.
  [22:50:08.936] : Sending the HTTP GET logon request without credentials for authentication type verification.
  [22:50:09.154] : The HTTP request succeeded with result code 200 (OK).
  [22:50:09.154] : The sign-in page is from ISA Server, not Outlook Web App.
  [22:50:09.154] : The server reported that it supports authentication method FBA.
  [22:50:09.154] : This virtual directory URL type is External or Unknown, so the authentication type won't be checked.
  [22:50:09.154] : Trying to sign in with method 'Fba'.
  [22:50:09.154] : Sending HTTP request for logon page 'https://xxx.com/CookieAuth.dll?Logon'.
  [22:50:09.154] : The HTTP request succeeded with result code 200 (OK).
  [22:50:09.373] : The test couldn't sign in to Outlook Web App due to an authentication failure.
  URL: https://xxx.com/OWA/
  Mailbox: xxx
  User: extest_xxx
  [22:50:09.373] : Test failed for URL 'https://xxx/OWA/'.
  Authentication Method: FBA
  Mailbox Server: xxx
  Client Access Server Name: xxx
  Scenario: Logon
  Scenario Description: Sign in to Outlook Web App and verify the response page.
  User Name: extest_xxx
  Performance Counter Name: Logon Latency
  Result: Skipped
  Site: xxx
  Latency: -00:00:00.0010000
  Secure Access: True
  ConnectionType: Plaintext
  Port: 0
  Latency (ms): -1
  Virtual Directory Name: owa (Default Web Site)
  URL: https://xxx.com/OWA/
  URL Type: External
  Error:
  The test couldn't sign in to Outlook Web App due to an authentication failure.
  URL: https://xxx.com/OWA/
  Mailbox: xxx
  User: extest_xxx
  Diagnostic command: "Test-OwaConnectivity -TestType:External -MonitoringContext:$true -TrustAnySSLCertificate:$true -LightMode:$true"
  EventSourceName: MSExchange Monitoring OWAConnectivity External
  Knowledge:
  http://go.microsoft.com/fwlink/?LinkID=67336&id=CB86B85A-AF81-43FC-9B07-3C6FC00D3D42
  Computer: xxx
  Impacted Entities (3):
  OWA Service - xxx, xxx - xxx, Exchange
  Knowledge:     View additional knowledge...
  External Knowledge Sources
  For more information, see the respective topic at the Microsoft Exchange Server TechCenter
  Thanks
  MHem

  Hi,
  Based on the error, it looks like an OWA authentication failure.
  Have you tried post this to LYNC forums?
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• BSOD - Kernel Security Check Failure

  Hello,
  So, I built this gaming rig around September, so this computer is still fairly new. Everything was fine until about a few weeks ago I started having BSOD -- all of them were kernel_security_check_failure. I've already done sfc /scannow on command prompt and
  it shows that nothing was corrupted. Generally, the BSOD only happens when I download anything. For example, after maybe, 20 or so my computer crashes. The time does vary, but in the end, it still crashes.
  My specs if needed:
  AMD FX-6300
  2 x 4GB 240-PIN DDR3 RAM
  Radeon R9 270x 2GB 256-bit GDDR5
  GA-970A-UD3P AM3+ AMD 970
  My minidump file shows this:
  Microsoft (R) Windows Debugger Version 6.3.9600.17298 AMD64
  Copyright (c) Microsoft Corporation. All rights reserved.
  Loading Dump File [C:\Windows\Minidump\021315-16703-01.dmp]
  Mini Kernel Dump File: Only registers and stack trace are available
  ************* Symbol Path validation summary **************
  Response                         Time (ms)     Location
  Deferred                                       SRV*C:\Windows\symbol_cache*http://msdl.microsoft.com/download/symbols
  Symbol search path is: SRV*C:\Windows\symbol_cache*http://msdl.microsoft.com/download/symbols
  Executable search path is: 
  Windows 8 Kernel Version 9600 MP (6 procs) Free x64
  Product: WinNt, suite: TerminalServer SingleUserTS
  Built by: 9600.17630.amd64fre.winblue_r7.150109-2022
  Machine Name:
  Kernel base = 0xfffff802`b8285000 PsLoadedModuleList = 0xfffff802`b855e250
  Debug session time: Fri Feb 13 21:42:38.503 2015 (UTC - 5:00)
  System Uptime: 0 days 0:15:45.226
  Loading Kernel Symbols
  Press ctrl-c (cdb, kd, ntsd) or ctrl-break (windbg) to abort symbol loads that take too long.
  Run !sym noisy before .reload to track down problems loading symbols.
  Loading User Symbols
  Loading unloaded module list
  *                        Bugcheck Analysis                                    *
  Use !analyze -v to get detailed debugging information.
  BugCheck 139, {3, ffffd000fb1fee30, ffffd000fb1fed88, 0}
  *** WARNING: Unable to verify timestamp for MRVW24C.sys
  *** ERROR: Module load completed but symbols could not be loaded for MRVW24C.sys
  Probably caused by : MRVW24C.sys ( MRVW24C+272f1 )
  Followup: MachineOwner
  4: kd> !analyze -v
  *                        Bugcheck Analysis                                    *
  KERNEL_SECURITY_CHECK_FAILURE (139)
  A kernel component has corrupted a critical data structure.  The corruption
  could potentially allow a malicious user to gain control of this machine.
  Arguments:
  Arg1: 0000000000000003, A LIST_ENTRY has been corrupted (i.e. double remove).
  Arg2: ffffd000fb1fee30, Address of the trap frame for the exception that caused the bugcheck
  Arg3: ffffd000fb1fed88, Address of the exception record for the exception that caused the bugcheck
  Arg4: 0000000000000000, Reserved
  Debugging Details:
  TRAP_FRAME:  ffffd000fb1fee30 -- (.trap 0xffffd000fb1fee30)
  NOTE: The trap frame does not contain all registers.
  Some register values may be zeroed or incorrect.
  rax=ffffe001946f40d0 rbx=0000000000000000 rcx=0000000000000003
  rdx=ffffe001946f3fb8 rsi=0000000000000000 rdi=0000000000000000
  rip=fffff802b83768f9 rsp=ffffd000fb1fefc0 rbp=0000000000000000
   r8=ffffe001946f41e8  r9=ffffe001946f3fb8 r10=ffffe001947e49c0
  r11=ffffd000fb1ff050 r12=0000000000000000 r13=0000000000000000
  r14=0000000000000000 r15=0000000000000000
  iopl=0         nv up di ng nz ac po cy
  nt!ExInterlockedInsertTailList+0xad:
  fffff802`b83768f9 cd29            int     29h
  Resetting default scope
  EXCEPTION_RECORD:  ffffd000fb1fed88 -- (.exr 0xffffd000fb1fed88)
  ExceptionAddress: fffff802b83768f9 (nt!ExInterlockedInsertTailList+0x00000000000000ad)
     ExceptionCode: c0000409 (Security check failure or stack buffer overrun)
    ExceptionFlags: 00000001
  NumberParameters: 1
     Parameter[0]: 0000000000000003
  CUSTOMER_CRASH_COUNT:  1
  DEFAULT_BUCKET_ID:  LIST_ENTRY_CORRUPT
  BUGCHECK_STR:  0x139
  PROCESS_NAME:  System
  CURRENT_IRQL:  2
  ERROR_CODE: (NTSTATUS) 0xc0000409 - The system detected an overrun of a stack-based buffer in this application. This overrun could potentially allow a malicious user to gain control of this application.
  EXCEPTION_CODE: (NTSTATUS) 0xc0000409 - The system detected an overrun of a stack-based buffer in this application. This overrun could potentially allow a malicious user to gain control of this application.
  EXCEPTION_PARAMETER1:  0000000000000003
  ANALYSIS_VERSION: 6.3.9600.17298 (debuggers(dbg).141024-1500) amd64fre
  LAST_CONTROL_TRANSFER:  from fffff802b83e14e9 to fffff802b83d59a0
  STACK_TEXT:  
  ffffd000`fb1feb08 fffff802`b83e14e9 : 00000000`00000139 00000000`00000003 ffffd000`fb1fee30 ffffd000`fb1fed88 : nt!KeBugCheckEx
  ffffd000`fb1feb10 fffff802`b83e1810 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiBugCheckDispatch+0x69
  ffffd000`fb1fec50 fffff802`b83e0a34 : ffffd000`fb1fefa0 fffff802`b8537200 00000000`00000000 fffff800`b281cf1f : nt!KiFastFailDispatch+0xd0
  ffffd000`fb1fee30 fffff802`b83768f9 : ffffe001`93318400 00000000`00000001 ffffe001`96889c40 fffff800`b2aaf887 : nt!KiRaiseSecurityCheckFailure+0xf4
  ffffd000`fb1fefc0 fffff800`b50a52f1 : ffffe001`946f3000 ffffe001`969dcd10 00000000`00000000 ffffe001`9458dad0 : nt!ExInterlockedInsertTailList+0xad
  ffffd000`fb1ff000 ffffe001`946f3000 : ffffe001`969dcd10 00000000`00000000 ffffe001`9458dad0 00000000`00000000 : MRVW24C+0x272f1
  ffffd000`fb1ff008 ffffe001`969dcd10 : 00000000`00000000 ffffe001`9458dad0 00000000`00000000 fffff800`b50aa38e : 0xffffe001`946f3000
  ffffd000`fb1ff010 00000000`00000000 : ffffe001`9458dad0 00000000`00000000 fffff800`b50aa38e ffffe001`96889c40 : 0xffffe001`969dcd10
  STACK_COMMAND:  kb
  FOLLOWUP_IP: 
  MRVW24C+272f1
  fffff800`b50a52f1 ??              ???
  SYMBOL_STACK_INDEX:  5
  SYMBOL_NAME:  MRVW24C+272f1
  FOLLOWUP_NAME:  MachineOwner
  MODULE_NAME: MRVW24C
  IMAGE_NAME:  MRVW24C.sys
  DEBUG_FLR_IMAGE_TIMESTAMP:  472551f7
  FAILURE_BUCKET_ID:  0x139_3_MRVW24C+272f1
  BUCKET_ID:  0x139_3_MRVW24C+272f1
  ANALYSIS_SOURCE:  KM
  FAILURE_ID_HASH_STRING:  km:0x139_3_mrvw24c+272f1
  FAILURE_ID_HASH:  {405011a6-34ec-30a6-31a9-53275dcd66c7}
  Followup: MachineOwner

  Hello,
  So, I built this gaming rig around September, so this computer is still fairly new. Everything was fine until about a few weeks ago I started having BSOD -- all of them were kernel_security_check_failure. I've already done sfc /scannow on command prompt and
  it shows that nothing was corrupted. Generally, the BSOD only happens when I download anything. For example, after maybe, 20 or so my computer crashes. The time does vary, but in the end, it still crashes.
  My specs if needed:
  AMD FX-6300
  2 x 4GB 240-PIN DDR3 RAM
  Radeon R9 270x 2GB 256-bit GDDR5
  GA-970A-UD3P AM3+ AMD 970
  My minidump file shows this:
  Microsoft (R) Windows Debugger Version 6.3.9600.17298 AMD64
  Copyright (c) Microsoft Corporation. All rights reserved.
  Loading Dump File [C:\Windows\Minidump\021315-16703-01.dmp]
  Mini Kernel Dump File: Only registers and stack trace are available
  ************* Symbol Path validation summary **************
  Response                         Time (ms)     Location
  Deferred                                       SRV*C:\Windows\symbol_cache*http://msdl.microsoft.com/download/symbols
  Symbol search path is: SRV*C:\Windows\symbol_cache*http://msdl.microsoft.com/download/symbols
  Executable search path is: 
  Windows 8 Kernel Version 9600 MP (6 procs) Free x64
  Product: WinNt, suite: TerminalServer SingleUserTS
  Built by: 9600.17630.amd64fre.winblue_r7.150109-2022
  Machine Name:
  Kernel base = 0xfffff802`b8285000 PsLoadedModuleList = 0xfffff802`b855e250
  Debug session time: Fri Feb 13 21:42:38.503 2015 (UTC - 5:00)
  System Uptime: 0 days 0:15:45.226
  Loading Kernel Symbols
  Press ctrl-c (cdb, kd, ntsd) or ctrl-break (windbg) to abort symbol loads that take too long.
  Run !sym noisy before .reload to track down problems loading symbols.
  Loading User Symbols
  Loading unloaded module list
  *                        Bugcheck Analysis                                    *
  Use !analyze -v to get detailed debugging information.
  BugCheck 139, {3, ffffd000fb1fee30, ffffd000fb1fed88, 0}
  *** WARNING: Unable to verify timestamp for MRVW24C.sys
  *** ERROR: Module load completed but symbols could not be loaded for MRVW24C.sys
  Probably caused by : MRVW24C.sys ( MRVW24C+272f1 )
  Followup: MachineOwner
  4: kd> !analyze -v
  *                        Bugcheck Analysis                                    *
  KERNEL_SECURITY_CHECK_FAILURE (139)
  A kernel component has corrupted a critical data structure.  The corruption
  could potentially allow a malicious user to gain control of this machine.
  Arguments:
  Arg1: 0000000000000003, A LIST_ENTRY has been corrupted (i.e. double remove).
  Arg2: ffffd000fb1fee30, Address of the trap frame for the exception that caused the bugcheck
  Arg3: ffffd000fb1fed88, Address of the exception record for the exception that caused the bugcheck
  Arg4: 0000000000000000, Reserved
  Debugging Details:
  TRAP_FRAME:  ffffd000fb1fee30 -- (.trap 0xffffd000fb1fee30)
  NOTE: The trap frame does not contain all registers.
  Some register values may be zeroed or incorrect.
  rax=ffffe001946f40d0 rbx=0000000000000000 rcx=0000000000000003
  rdx=ffffe001946f3fb8 rsi=0000000000000000 rdi=0000000000000000
  rip=fffff802b83768f9 rsp=ffffd000fb1fefc0 rbp=0000000000000000
   r8=ffffe001946f41e8  r9=ffffe001946f3fb8 r10=ffffe001947e49c0
  r11=ffffd000fb1ff050 r12=0000000000000000 r13=0000000000000000
  r14=0000000000000000 r15=0000000000000000
  iopl=0         nv up di ng nz ac po cy
  nt!ExInterlockedInsertTailList+0xad:
  fffff802`b83768f9 cd29            int     29h
  Resetting default scope
  EXCEPTION_RECORD:  ffffd000fb1fed88 -- (.exr 0xffffd000fb1fed88)
  ExceptionAddress: fffff802b83768f9 (nt!ExInterlockedInsertTailList+0x00000000000000ad)
     ExceptionCode: c0000409 (Security check failure or stack buffer overrun)
    ExceptionFlags: 00000001
  NumberParameters: 1
     Parameter[0]: 0000000000000003
  CUSTOMER_CRASH_COUNT:  1
  DEFAULT_BUCKET_ID:  LIST_ENTRY_CORRUPT
  BUGCHECK_STR:  0x139
  PROCESS_NAME:  System
  CURRENT_IRQL:  2
  ERROR_CODE: (NTSTATUS) 0xc0000409 - The system detected an overrun of a stack-based buffer in this application. This overrun could potentially allow a malicious user to gain control of this application.
  EXCEPTION_CODE: (NTSTATUS) 0xc0000409 - The system detected an overrun of a stack-based buffer in this application. This overrun could potentially allow a malicious user to gain control of this application.
  EXCEPTION_PARAMETER1:  0000000000000003
  ANALYSIS_VERSION: 6.3.9600.17298 (debuggers(dbg).141024-1500) amd64fre
  LAST_CONTROL_TRANSFER:  from fffff802b83e14e9 to fffff802b83d59a0
  STACK_TEXT:  
  ffffd000`fb1feb08 fffff802`b83e14e9 : 00000000`00000139 00000000`00000003 ffffd000`fb1fee30 ffffd000`fb1fed88 : nt!KeBugCheckEx
  ffffd000`fb1feb10 fffff802`b83e1810 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiBugCheckDispatch+0x69
  ffffd000`fb1fec50 fffff802`b83e0a34 : ffffd000`fb1fefa0 fffff802`b8537200 00000000`00000000 fffff800`b281cf1f : nt!KiFastFailDispatch+0xd0
  ffffd000`fb1fee30 fffff802`b83768f9 : ffffe001`93318400 00000000`00000001 ffffe001`96889c40 fffff800`b2aaf887 : nt!KiRaiseSecurityCheckFailure+0xf4
  ffffd000`fb1fefc0 fffff800`b50a52f1 : ffffe001`946f3000 ffffe001`969dcd10 00000000`00000000 ffffe001`9458dad0 : nt!ExInterlockedInsertTailList+0xad
  ffffd000`fb1ff000 ffffe001`946f3000 : ffffe001`969dcd10 00000000`00000000 ffffe001`9458dad0 00000000`00000000 : MRVW24C+0x272f1
  ffffd000`fb1ff008 ffffe001`969dcd10 : 00000000`00000000 ffffe001`9458dad0 00000000`00000000 fffff800`b50aa38e : 0xffffe001`946f3000
  ffffd000`fb1ff010 00000000`00000000 : ffffe001`9458dad0 00000000`00000000 fffff800`b50aa38e ffffe001`96889c40 : 0xffffe001`969dcd10
  STACK_COMMAND:  kb
  FOLLOWUP_IP: 
  MRVW24C+272f1
  fffff800`b50a52f1 ??              ???
  SYMBOL_STACK_INDEX:  5
  SYMBOL_NAME:  MRVW24C+272f1
  FOLLOWUP_NAME:  MachineOwner
  MODULE_NAME: MRVW24C
  IMAGE_NAME:  MRVW24C.sys
  DEBUG_FLR_IMAGE_TIMESTAMP:  472551f7
  FAILURE_BUCKET_ID:  0x139_3_MRVW24C+272f1
  BUCKET_ID:  0x139_3_MRVW24C+272f1
  ANALYSIS_SOURCE:  KM
  FAILURE_ID_HASH_STRING:  km:0x139_3_mrvw24c+272f1
  FAILURE_ID_HASH:  {405011a6-34ec-30a6-31a9-53275dcd66c7}
  Followup: MachineOwner

• Go URL - User Authentication Failure

  Hi,
  I am trying to use a 'Go URL' in web application and I see some issue with authentication mechanism.
  I was able to login and view the dashboard whenever the username used in the 'Go URL' is from the console. But if the user who is from Active directory is used in the 'Go URL' link, then I get the login page saying 'Invalid username or password'. When I check the log file, it says ' [53012] User Authentication Failure'.
  Also the AD user can login from the login page, but not thru 'Go-URL' link.
  Can anyone let me know whether I am missing any step?
  Thanks

  969211 wrote:
  I was able to login and view the dashboard whenever the username used in the 'Go URL' is from the console. But if the user who is from Active directory is used in the 'Go URL' link, then I get the login page saying 'Invalid username or password'. When I check the log file, it says ' [53012] User Authentication Failure'.
  Also the AD user can login from the login page, but not thru 'Go-URL' link.
  Can anyone let me know whether I am missing any step?Check the usage of Go URL first : http://docs.oracle.com/cd/E21043_01/bi.1111/e16364/apiwebintegrate.htm
  If you dont user NQUser and NQPassword then they will be prompted for a password. you need to http://<hostname.domain>:9704/analytics/saw.dll?Dashboard&PortalPath=<your GO URLpath>*&NQuser=USERNAME&NQPassword=PASSWORD*
  You should not access if URL without logging in.
  Also on different note:
  Rupesh Shelar wrote:
  Make sure your BISYSTEM password
  Go to weblogic console, http://IP address:7001/console
  Home >Summary of Security Realms > myrealm > Users and Groups > BISystemUser
  And then go to your EM (http://IP address:7001/em)
  expand weblogic domain > bifoundation_domain > Security > Credentials > oracle.bi.system ? system.user
  Just retype a new password then Restart BI All Services then test it.How is BISystemUser even related to Go URL .or this issue .?
  Hope this helps.
  Let me know the updates. Mark if it answers!
  Thanks,
  SVS

• How to verify that embedded OC4J is loading Custom LoginModule?

  I've written a custom login module to authenticate against a custom datastore. I've added a system property
  java.security.auth.login.config=C:\javadev\...\jaas.configas recommended by Yvonne here: Re: Custom LoginModule used by BC4J
  I still get the following when I load a UIX page out of this module:
  msg=JBO-33021: Failed authenticate user nullThere are many debug System.out(...) statements in the code (including in the initialize() function) but none are showing up in the OC4J console. Does anyone know how to verify that the LoginModule is indeed getting loaded? Is it normal for these System.out() statements not to show in the OC4J console?
  I get the impression that the LoginModule is not being loaded but I'm not sure if those traces are enough...
  Thanks,
  /sfl

  Thanks much for the prompt reply and debugging tips Steve and Avi!
  I used both switches (-DApplicationServerDebug and -verbose:class) and still no sign of the class being loaded; none of the traces (I did trace in the construct, though I failed to mention in my original post) nor do any of the app server or jvm debug messages show any sign of the LoginModule being loaded. So now I'm fairly certain I'm going about the wrong way to get this module loaded. Should I also be posting this to the JDeveloper forum?
  My application module configuration is as follows:
  jbo.security.config=<blank> (is this right?)
  jbo.security.context=oracle.security.jazn
  jbo.security.enforce=Must
  jbo.security.loginmodule=customModuleThe command line to the JVM contains:
  -Djava.security.auth.login.config=C:\javadev\jdev9052\j2ee\home\config\jaas.config[yes Avi, I was unfortunately imposed an M$ env. by the powers that be : ( ]
  And, well I've been trying a lot of different things w/ the jaas.config file:
  customModule{
  myPack.controller.MyLoginModule required;
  myApp{
  myPack.controller.MyLoginModule required;
  myPack.LookupModuleLocal{
  myPack.controller.MyLoginModule required;
  myPack.LookupModule{
  myPack.controller.MyLoginModule required;
  Ws-MyProg-webapp{
  myPack.controller.MyLoginModule required;
  default{
  myPack.controller.MyLoginModule required;
  current-workspace-app{
  myPack.controller.MyLoginModule required;
  };Any idea where I'm going wrong? Do I need to do anything else to get this module loaded? At first I thought I needed to modify the jazn-data.xml file but I saw a note in another thread Custom LoginModule used by BC4J which says that it's not necessary to modify it when using a custom LoginModule. Is this right, or should I be modifying that file?
  Thanks,
  java.lang.Object - jobject ;- )

• Intermittent AD Authentication failures in ISE 1.2

            Starting today I was getting intermittent authentication failures in ISE. It would say that the user was not found in the selected identity store. The account is there though. At one point I ran a authetication test from the external identity source menu and I got a failure and then the next time a pass. I have no idea why this is happening. I just updated to ISE 1.2 the other day. I'm also seeing what looks like a high level of latency on both of my PSN's. Is this normal?  Any ideas?
  Thanks
  Jef

  Interesting. I have one location that is not having this problem at all. The other is having it somewhat frequently. The PSN's for each location are tied to the local AD servers. I have not had this until we started getting 300-380 PC's connecting. We are a school so we are slowly getting started. It's real random. One user will work then another time they won't. Happens with admin and user. I have notices that with this new version of ISE it is complaining that it is getting accounting updates from the NAS too often, but I have not looked into this because I just installed 1.2 about 3-4 days ago and haven't had time to look into it.
  When you say Multicast to you AD...how did you check that? We do use multicast.