HTTP Authentication problem

Similar Messages

• Basic http authentication not working when consuming Web Service in BPEL.

  Hi,
  I am consuming an AXIS Web Service from BPEL 10.1.3. The Web Service uses basic http
  authentication so we need a way to get username and password into the http
  header. In the Oracle BPEL Process Manager Administrator's Guide 10g
  (10.1.3.1.0) section 1.3.4.1 HTTP Basic Authentication (10.1.2.0.2) is stated
  that this can be done using the properties httpUsername and httpPassword. I
  have set the 2 for the partner link in bpel.xml but username and password does
  not get in to the http header. Has anybody got an idea?
  Regards Pete

  I'm having the same sorts of problems with 10.1.3.1.0. I've got a deployed BPEL suitcase that's trying to hit a BASIC AUTH-secured web service running on a WebLogic 8.1 server. I've set up my partner link according to the documentation, and the BPEL console Descriptor tab even shows the parameters correctly:
  partnerLinkBindings      
  client      
       wsdlLocation      awardService.wsdl
  spsAwardSubmitPartnerLink      
       basicHeaders      credentials
       basicUsername      ko1
       basicPassword      xxxxx
       wsdlLocation      IAwardDraftServiceRef1.wsdl
  However, when I funnel the resultant call to the endpoint specified in IAwardDraftServiceRef1.wsdl, none of the fields I would expect show up in the HTTP header:
  POST /pd2WebServices/service/IAwardDraftService HTTP/1.1
  Host: vm-orcl-app-srv:4444
  Connection: Keep-Alive, TE
  TE: trailers, deflate, gzip, compress
  User-Agent: Oracle HTTPClient Version 10h
  SOAPAction: ""
  Accept-Encoding: gzip, x-gzip, compress, x-compress
  Content-type: text/xml; charset=UTF-8
  Content-length: 3800
  <?xml version="1.0" encoding="UTF-8"?>
  <env:Envelope xmlns:env="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><env:Body><IAwardDraftSubmitNew xmlns="http://www.caci.com/pd2/pub">
  <IAwardDraft>
  <accessController/>
  <agreementEndDate/>
  Is there some other configuration piece I'm missing?? I've tried the other variation using httpBasicHeaders, with the same results. I even noted that the "Oracle® BPEL Process Manager Administrator's Guide" says that "Starting with Oracle BPEL Process Manager release 10.1.3, all partner link properties are automatically propagated into the HTTP header." I've tried putting "extra" parms in the partner link bindings, but they don't show up either.
  What am I missing??
  Thanks,
  Mike

• Issue with HTTP Authentication

  I am trying to implement an authentication/timeout
            system whereby the initial login is done by a standard
            HTML form (posted). When the session times out and the
            user requests a service, the session is "revived" by
            custom HTTP Authentication. In this way, a complex set
            of frames and multiple windows is not disrupted by a
            new window.
            The problem is that one a user HTTP Authenticates, the
            AUTHORIZATION header value stays until the browser is
            closed. Consequently, the user never has to
            authenticate again, even when the session times out,
            because when the servlet requests authorization, it is
            right there in the servlet request.
            So my question is, how do I clear or remove the
            AUTHORIZATION header item from the client ?
            Thanks.
            //Nicholas
            

  Hi,
  Opened a TAC and he confirmed that 8.2.1 supports the SDI for http/asdm authentication.
  http://www.cisco.com/en/US/docs/security/asa/asa82/release/notes/asarn82.html#wp340497
  Regards
  Amar

• Adobe PDF Viewer X in Safari 5 not displaying documents protected by HTTP Authentication

  I have the latest Adobe Reader X release (10.0.0) for Mac OS X 10.6 in Safari 5.0.3. The PDF Viewer is unable to display files hosted on directories protected by HTTP Authentication. The progress bar keeps spinning forever.
  I've tried it on several Macs and various Apache web servers, with both Basic and Digest Authentification.
  Adobe PDF Viewer running on Mac OS X 10.5 doesn't have this problem. Adobe PDF Viewer X running on Windows XP with Safari 5 doesn't either. So it is specific to the latest release for Mac OS X 10.6.
  Any idea for a fix? I can't revert to a previous version of Reader since the older plug-in doesn't run in 64-bit Safari (the default on Snow Leopard) - please don't tell me to force Safari to run in 32-bit mode.
  Is it at least a known bug that will be fixed soon?

  You mean disabling HTTP Authentication? Yes, of course. And it works without it. That's how I know that the cause of the problem is HTTP Authentication.

• Video behind http authentication does not play in Safari on iOS8.

  Videos (quicktime and probably others) that are sitting behind http authenticated sites do not play properly in IOS8. This is true even with the new 8.0.2. When clicking on the mov file, Safari starts the integrated player (the player with the play button), but nothing plays and you can't press the play button.
  Since I have access to the Apache web server that serves up the video, I can see what's happening on the backend. I see that Safari or the iOS video player Safari starts up fails to pass the authentication credentials to the server. I see a bunch of http 401 error messages (failed authentication) in the logs. When moving the same video to a not authenticated site, iOS8 does the right thing.
  iOS7 (and before) and Safari on OSX does the right thing on authenticated sites. It authenticates properly with the server and plays the video.
  Chrome on iOS8 also doesn't work either. Safari and Chrome use different versions of webkit, so I'm assuming its the video player that the browsers call on that's not passing the authentication off to the web server when making the http request.
  Anyone else run into this problem or have a workaround? I reported this as a bug, but Apple hasn't acknowledged it yet.

  I also have the same Exact Problem, only your explanition appears more technical and understandable. This problem appears more severe on YouTube.com videos and alike, however it is also severly choppy and problematic on other sites. Surprisingly Live Broadcast videos work better than not Live videos, however this is not something I'd like when my data isn't throttled yet. I crosstested it to see if there is any issues on my iPhone 4S (iOS 6, last version) and Galaxy S4 (Android Kit Kat, last version on S4) and there is no issues on those devices so it is an iOS 8(+0.1/0.2) and iOS 8.1 problem and I am 100% confident about it. 
  I do think it is the video player's problem with Websites and Webstreaming. There is no problems playing music videos on my device's storage. I didn't get that many error messages but it just doesn't play properly on Safari and Chrome, like what you are experiencing too. I may go ahead and report it too because it is gotten to a point where it is annoying to watch videos. It is not just an over 4G (+ or - LTE) only issue, it is also via Wifi even so it is a tad better. I can't tolerate playing a video 15 seconds in, have to wait 15 more seconds for it to play, it plays to 0:35 then I have to wait 15 more seconds. Even a 240p video, it does it so, it is clearly not a tolerable bug. I don't have a work around so far (tried everything from reset to wipe the phone and reinstall all the apps). 
  My Device is an iPhone 6+ with iOS 8.1 (yes, it is not just exclusive to the iPhone 5S. I assume it also effects the iPhone 6 based on technical specifications).

• Http authentication failing on all sites, does not even prompt me for user/pass

  Hi,
  After an apt-get update, sites that use HTTP authentication do not prompt for credentials and go straight to HTTP:401. It is only affecting this browser, others have no issues. I also updated a FF in Windows, no issues there after the update.

  Start Firefox in <u>[[Safe Mode|Safe Mode]]</u> to check if one of the extensions (Firefox/Tools > Add-ons > Extensions) or if hardware acceleration is causing the problem.
  *Switch to the DEFAULT theme: Firefox/Tools > Add-ons > Appearance
  *Do NOT click the Reset button on the Safe Mode start window
  *https://support.mozilla.org/kb/Safe+Mode
  *https://support.mozilla.org/kb/Troubleshooting+extensions+and+themes

• HTTP Authentication Methods

  Testing HTTP Authentication Methods for URL https://mail.domain.co.nz/rpc/rpcproxy.dll?cl-cas01.domain.local:6002.
  The HTTP authentication test failed.
  Tell me more about this issue and how to resolve it
  Additional Details
  Not all the required authentication methods were found.
  Methods Found: Negotiate
  Methods Required: NTLM
  Any ideas how to get around this with the exchange connectivity tester? If I change from negotiate to basic or ntlm, I then have issues with clients on the local network.

  This link does not work. Could you update this post with the information that helped fix your issue? I am receiving the same error. Everything works internally. I have a casarray with 3 client access servers. If I try and connect using Outlook Anywhere externally,
  all the tests pass except for the last one which states:
  Testing HTTP Authentication Methods for URL https://casarray.mydomain.com/rpc/rpcproxy.dll?casarray.mydomain.com:6002.
  The HTTP authentication test failed.
  Additional Details
  An HTTP 500 response was returned from Unknown.
  HTTP Response Headers:
  Content-Length: 3423
  Cache-Control: private
  Content-Type: text/html; charset=utf-8
  Date: Tue, 03 Jun 2014 01:59:11 GMT
  Server: Microsoft-IIS/7.5
  X-AspNet-Version: 4.0.30319
  X-Powered-By: ASP.NET
  Elapsed Time: 2135 ms.
  Here is the full test:
  Testing RPC/HTTP connectivity.
  The RPC/HTTP test failed.
  Additional Details
  Elapsed Time: 10139 ms.
  Test Steps
  Attempting to resolve the host name casarray.mydomain.com in DNS.
  The host name resolved successfully.
  Additional Details
  IP addresses returned: MyIpAddress
  Elapsed Time: 262 ms.
  Testing TCP port 443 on host casarray.mydomain.com to ensure it's listening and open.
  The port was opened successfully.
  Additional Details
  Elapsed Time: 213 ms.
  Testing the SSL certificate to make sure it's valid.
  The certificate passed all validation requirements.
  Additional Details
  Elapsed Time: 1347 ms.
  Test Steps
  The Microsoft Connectivity Analyzer is attempting to obtain the SSL certificate from remote server casarray.mydomain.com on port 443.
  The Microsoft Connectivity Analyzer successfully obtained the remote SSL certificate.
  Additional Details
  Remote Certificate Subject: CN=casarray.mydomain.com, OU=Domain Control Validated - RapidSSL(R), OU=See www.rapidssl.com/resources/cps (c)14, OU=GT62161020, SERIALNUMBER=4/00u9cheL7q8Gq41IXnlvVd8mb8-rjb, Issuer: CN=RapidSSL CA, O="GeoTrust, Inc.", C=US.
  Elapsed Time: 1260 ms.
  Validating the certificate name.
  The certificate name was validated successfully.
  Additional Details
  Host name casarray.mydomain.com was found in the Certificate Subject Common name.
  Elapsed Time: 0 ms.
  Certificate trust is being validated.
  The certificate is trusted and all certificates are present in the chain.
  Test Steps
  The Microsoft Connectivity Analyzer is attempting to build certificate chains for certificate CN=casarray.mydomain.com, OU=Domain Control Validated - RapidSSL(R), OU=See www.rapidssl.com/resources/cps (c)14, OU=GT62161020, SERIALNUMBER=4/00u9cheL7q8Gq41IXnlvVd8mb8-rjb.
  One or more certificate chains were constructed successfully.
  Additional Details
  A total of 1 chains were built. The highest quality chain ends in root certificate CN=GeoTrust Global CA, O=GeoTrust Inc., C=US.
  Elapsed Time: 32 ms.
  Analyzing the certificate chains for compatibility problems with versions of Windows.
  Potential compatibility problems were identified with some versions of Windows.
  Additional Details
  The Microsoft Connectivity Analyzer can only validate the certificate chain using the Root Certificate Update functionality from Windows Update. Your certificate may not be trusted on Windows if the "Update Root Certificates" feature isn't enabled.
  Elapsed Time: 4 ms.
  Testing the certificate date to confirm the certificate is valid.
  Date validation passed. The certificate hasn't expired.
  Additional Details
  The certificate is valid. NotBefore = 5/6/2014 10:15:31 AM, NotAfter = 5/9/2015 5:16:00 PM
  Elapsed Time: 0 ms.
  Checking the IIS configuration for client certificate authentication.
  Client certificate authentication wasn't detected.
  Additional Details
  Accept/Require Client Certificates isn't configured.
  Elapsed Time: 6179 ms.
  Testing HTTP Authentication Methods for URL https://casarray.mydomain.com/rpc/rpcproxy.dll?casarray.mydomain.com:6002.
  The HTTP authentication test failed.
  Additional Details
  An HTTP 500 response was returned from Unknown.
  HTTP Response Headers:
  Content-Length: 3423
  Cache-Control: private
  Content-Type: text/html; charset=utf-8
  Date: Tue, 03 Jun 2014 01:59:11 GMT
  Server: Microsoft-IIS/7.5
  X-AspNet-Version: 4.0.30319
  X-Powered-By: ASP.NET
  Elapsed Time: 2135 ms.

• Email authentication problem on only some of Verizon's servers

  I use Eudora 6.2.4 on an iMac Core 2 Duo 2.0 20" (Al) Macintosh running OX 10.5.5.  Like many others (see one thread each under FiOS Internet and High Speed Internet and Dialup), since about mid-November, I have been receiving intermittent (about 10% of the time) authentication errors when Eudora checks for new mail.  I have 3 VZ e-mail accounts and one at my employer; the errors occur only on the VZ accounts.
  I've used the freeware app Eavesdrop (http://code.google.com/p/eavesdrop/) to observe the TCP conversations between Eudora and the server. The VZ server offers SASL CRAM-MD5 PLAIN, and Eudora uses CRAM-MD5.  I see the challenge from the server, Eudora's response, and the server's authentication-failure response.  Since the response is hashed, I have no way of telling if Eudora is sending the correct response, but it works most of the time.  (After it fails, Eudora then assumes its stored password is NG, discards it, and prompts me for it on the next mail-check, which is just a bit annoying.)
  Here is an example of a successful mail-check:
  +OK Messaging Multiplexor (Sun Java(tm) System Messaging Server 6.2-6.01 (built Apr  3 2006)) <[email protected]>
  CAPA
  +OK list follows
  TOP
  PIPELINING
  UIDL
  RESP-CODES
  AUTH-RESP-CODE
  USER
  SASL PLAIN CRAM-MD5
  IMPLEMENTATION MMP-6.2p6.01 Apr  3 2006
  auth CRAM-MD5
  + PDQ5MzU1ZWY3LmRlZWZlMEB2bXMxMDkubWFpbHNydmNzLm5ldD4=
  amp3b2xmOSA3MDA0MmE5YWQwYzEzOWRkYjE5NDk0OWZjYjY1NzBmMg==
  +OK Maildrop ready
  STAT
  +OK 0 0
  QUIT
  And here's a failure:
  +OK Messaging Multiplexor (Sun Java(tm) System Messaging Server 6.3-7.04 (built Sep 26 2008)) <[email protected]>
  CAPA
  +OK list follows
  TOP
  PIPELINING
  UIDL
  RESP-CODES
  AUTH-RESP-CODE
  USER
  SASL CRAM-MD5 PLAIN
  IMPLEMENTATION MMP-6.3p7.04 Sep 26 2008
  auth CRAM-MD5
  + PGZjMDAxY2M0ZjZlNDAyNjM3ZTI1MTVmMGU1MWEyYzVjQHZtczE3MTAxMy5tYWlsc3J2Y3MubmV0Pg==
  amp3b2xmOSA1NWNmNzJhYzRhZDdlMmE1ZGExZmIwZDVkMzA3NTc5OQ==
  -ERR [AUTH] Authentication failed
  You'll notice that the VZ server identifies itself at the onset of each conversation, including a build ID and date, followed by a timestamp and a server ID (e.g., vms109.mailsrvcs.net).  I'm in eastern Massachusetts, and when my client connects to incoming.verizon.net, one of a pool of V servers responds.  I've observed about 15 different servers, of which two (vms171011 and vms171013) show "6.3-7.04 (built Sep 26 2008)" and all the others show "6.2-6.01 (built Apr  3 2006)".  Furthermore, I observe that vms171011 and vms171013 consistently give this authentication failure for CRAM-MD5, but all the others (with the older build) consistently succeed in authenticating my accounts.
  I called FiOS Support, and the CSR took down took down some relevant info, said she'd pass it on the the e-mail folks.  Within 2 hours I got a call from a Verizon tech.  He said they "knew" about it and that it was a Mac problem.  It wasn't specific to VZ, and it occurred only on Macs.   He had no explanation for my observation that mail-check authentication works with 13 of VZ's servers and consistently fails with two which have a later build version/date, but he believed it was consistent with it being an Apple problem.  So naturally he was off the hook.
  He referred me to an Apple Support Forum discussion to back up his position.  I hadn't seen (or thought of looking in) the Apple forums, so I had a look and found a total of 5 threads under "Mail and Address Book".  Of course, these deal with Mail.app, .  Comcast as well as VZ.  This is the lengthiest of them:
    http://discussions.apple.com/message.jspa?messageID=8478765#8478765 
  These Apple discussion threads and the two Verizon Forum threads all mention Macintoshes, which lends credence to the tech's assertion that it's a Mac problem, not Verizon's.  I've found one that seems to depict the same thing on a PC (http://groups.google.com/group/comp.mail.eudora.ms-windows/browse_thread/thread/b426c0ca59841ca9), but it's not conclusive. 
  I don't know what PeeCee users use for a mail client or what method they use for authentication (the POP3 protocol, as amended,has several possibilities).  My Eudora app has settings for "Password", "Kerberos", and "APOP", but VZ doesn't offer Kerberos, and Eudora seems to ignore the APOP setting, so it uses only the CRAM-MD5 method, so I'm stuck.  I can't disprove that this is a Mac-only problem, but I can't understand why the CRAM-MD5 authentication always works with 13 of VZ's servers and always fails with 2 others (which happen to have a different build version/date).
  Solved!
  Go to Solution.

  With the help of a Windows-using friend, I have additional evidence that the mail-check authentication problem is NOT Mac-specific, but also can be shown to occur with a POP3 client (the final version, Eudora 7.1.0.9) using a secure authentication method (APOP) on Windows (XP Home, SP 3).  He had been observing no authentication problems, but investigation showed that his authentication setting was for "Password", which uses the basic (and very insecure) USER/PASS messages.  His Eudora does not allow CRAM-MD5, but it does have APOP authentication, which is another secure method that also uses the MD5 algorithm to encrypt the password.
  When he changed the setting to use APOP authentication, he observed the same behavior that I've reported above:
     - with most of the VZ servers (e.g., vms095.mailsrvcs.net, vms104.mailsrvcs.net) that show "6.2-6.01 (built Apr  3 2006)", the authentication succeeds
     - with vms171011.mailsrvcs.net and vms171013.mailsrvcs.net, which show "6.3-7.04 (built Sep 26 2008)", the authentication fails.
  See examples below.
  Here's a successful mail-check (these excerpts are from the Eudora log; I've edited his username):
  3244    64:13.20 Rcvd: "+OK Messaging Multiplexor (Sun Java(tm) System Messaging Server 6.2-6.01 (built Apr  3 2006)) <[email protected]> [ISafe POP3 Proxy] \r\n"
  3244    32:13.20 Sent: "CAPA\r\n"
  3244    64:13.20 Rcvd: "+OK list follows\r\n"
  3244    64:13.20 Rcvd: "TOP\r\n"
  3244    64:13.20 Rcvd: "PIPELINING\r\n"
  3244    64:13.20 Rcvd: "UIDL\r\n"
  3244    64:13.20 Rcvd: "RESP-CODES\r\n"
  3244    64:13.20 Rcvd: "AUTH-RESP-CODE\r\n"
  3244    64:13.20 Rcvd: "USER\r\n"
  3244    64:13.20 Rcvd: "SASL PLAIN CRAM-MD5\r\n"
  3244    64:13.20 Rcvd: "IMPLEMENTATION MMP-6.2p6.01 Apr  3 2006\r\n"
  3244    64:13.20 Rcvd: ".\r\n"
  3244    32:13.20 Sent: "APOP XXXXX 8a45b60f3f4a52a472937e86edbfda70\r\n"
  3244    64:13.21 Rcvd: "+OK Maildrop ready\r\n"
  3244    32:13.21 Sent: "STAT\r\n"
  3244    64:13.21 Rcvd: "+OK 0 0\r\n"
  3244    32:13.21 Sent: "QUIT\r\n"
  3244    64:13.21 Rcvd: "+OK\r\n"
  And here's one that fails; note the different server build-date:
  460     64:13.23 Rcvd: "+OK Messaging Multiplexor (Sun Java(tm) System Messaging Server 6.3-7.04 (built Sep 26 2008)) <[email protected]> [ISafe POP3 Proxy] \r\n"
  460     32:13.23 Sent: "CAPA\r\n"
  460     64:13.23 Rcvd: "+OK list follows\r\n"
  460     64:13.23 Rcvd: "TOP\r\n"
  460     64:13.23 Rcvd: "PIPELINING\r\n"
  460     64:13.23 Rcvd: "UIDL\r\n"
  460     64:13.23 Rcvd: "RESP-CODES\r\n"
  460     64:13.23 Rcvd: "AUTH-RESP-CODE\r\n"
  460     64:13.23 Rcvd: "USER\r\n"
  460     64:13.23 Rcvd: "SASL CRAM-MD5 PLAIN\r\n"
  460     64:13.23 Rcvd: "IMPLEMENTATION MMP-6.3p7.04 Sep 26 2008\r\n"
  460     64:13.23 Rcvd: ".\r\n"
  460     32:13.23 Sent: "APOP XXXXX ab2dde7d89cbbf0bf9cd409dce02e5a8\r\n"
  460     64:13.27 Rcvd: "-ERR [AUTH] Authentication failed\r\n"
  IMHO all this evidence validates my original hypothesis, that two (or more) of VZ's mail servers, which have server builds "6.3-7.04 (built Sep 26 2008)", advertise secure CRAM-MD5 and APOP authentication capabilities, but consistently fail such authentication attempts.  All the other servers with builds "6.2-6.01 (built Apr  3 2006)" handle these authentications correctly.  This has been shown to be the case on both Mac and Windows POP3 email clients.  Email clients that use the simpler and unsecure USER/PASS and AUTH PLAIN methods apparently see no authentication errors on any of the VZ servers.  This strongly points to this being a Verizon problem specific to two of the servers that we see here in eastern Massachusetts.  Others have also observed the same server-specificity; see for example http://eudorabb.qualcomm.com/showthread.php?t=13802 .  This problem has been reported since about mid-November.
  Verizon, the ball is in your court.  Find the problem and fix it!

• HTTP Status 401. This request requires HTTP  authentication ()

  Hi!
  Could you please help me with the following problem: i go to Infoview login page using the link: http://mostro-bo-web:8082/InfoViewApp/logon.jsp. When i use the IE there is no problem, i go to login page, but when i use Mozilla browser i have the following error:
  HTTP Status 401 - type Status report
  description This request requires HTTP authentication ().
  Apache Tomcat/5.5.20
  We use SSO for Infoview for domen users, but when i go to login page (http://mostro-bo-web:8082/InfoViewApp/logon.jsp) i'm not in domain (my computer isn't in domain) and when i use IE i go to login page of InfoView, but when i use Firefox i have error above.
  What's the problem?
  Thanks, Viktor

  Hi,
  try the following URL:
  http://YOUR_BO_SERVER:8080/InfoViewApp/logonNoSso.jsp
  Check also SAP Note 1326266 and 1263764
  Regards
  -Seb.

• HTTP Authentication Digest for SIP messages in a trunk SIP CUCME

  Hello,
  we would like to implement HTTP Authentication Digest for SIP messages in a trunk SIP between a Cisco 2851 and an Asterisk server.
  We are using CUCM Express with 15.1(4)M (CME 8.6) as voice gateway to connect to PSTN.
  According to Cisco documentation:
  "To configure a gateway to use HTTP Authentication Digest, give the following command in each dial peer or SIP-UA configuration mode:
  authentication username username password password [realm realm]."
  The problem is that when call is from CISCO to ASTERISK, Asterisk sends a challenge to Cisco to do Authentication:
  INVITE sip:[email protected]:5060 SIP/2.0
  Via: SIP/2.0/UDP 10.0.70.11:5060;branch=z9hG4bK3E205D
  Remote-Party-ID: "DN1001" <sip:[email protected]>;party=calling;screen=no;privacy=off
  From: "DN1001" <sip:[email protected]>;tag=5317D4-2271
  To: <sip:[email protected]>
  Date: Thu, 20 Feb 2014 10:55:56 GMT
  Call-ID: [email protected]
  Supported: 100rel,timer,resource-priority,replaces,sdp-anat
  Min-SE: 1800
  Cisco-Guid: 1679566433-2572423651-2156454406-1292596908
  User-Agent: Cisco-SIPGateway/IOS-12.x
  Allow: INVITE, OPTIONS, BYE, CANCEL, ACK, PRACK, UPDATE, REFER, SUBSCRIBE, NOTIFY, INFO, REGISTER
  CSeq: 101 INVITE
  Max-Forwards: 70
  Timestamp: 1392893756
  Contact: <sip:[email protected]:5060>
  Expires: 180
  Allow-Events: telephone-event
  Content-Type: application/sdp
  Content-Disposition: session;handling=required
  Content-Length: 208
  <--- Reliably Transmitting (no NAT) to 10.0.70.11:5060 --->
  SIP/2.0 401 Unauthorized
  Via: SIP/2.0/UDP 10.0.70.11:5060;branch=z9hG4bK3E205D;received=10.0.70.11
  From: "DN1001" <sip:[email protected]>;tag=5317D4-2271
  To: <sip:[email protected]>;tag=as665c9410
  Call-ID: [email protected]
  CSeq: 101 INVITE
  Server: Asterisk PBX 11.7.0
  Allow: INVITE, ACK, CANCEL, OPTIONS, BYE, REFER, SUBSCRIBE, NOTIFY, INFO, PUBLISH
  Supported: replaces, timer
  WWW-Authenticate: Digest algorithm=MD5, realm="asterisk", nonce="559bd1d2"
  Content-Length: 0
  However, when call is for ASTERISK to Cisco, there is no challenge sent.
  INVITE sip:[email protected] SIP/2.0
  Via: SIP/2.0/UDP 10.1.32.70:5060;branch=z9hG4bK0c57d67c
  Max-Forwards: 70
  From: "JOSE MANUEL" <sip:[email protected]>;tag=as2f789a9f
  To: <sip:[email protected]>
  Contact: <sip:[email protected]:5060>
  Call-ID: [email protected]:5060
  CSeq: 102 INVITE
  User-Agent: Asterisk PBX 11.7.0
  Date: Thu, 20 Feb 2014 09:58:27 GMT
  Allow: INVITE, ACK, CANCEL, OPTIONS, BYE, REFER, SUBSCRIBE, NOTIFY, INFO, PUBLISH
  Supported: replaces, timer
  Content-Type: application/sdp
  Content-Length: 282
  <--- SIP read from UDP:10.0.70.11:60829 --->
  SIP/2.0 100 Trying
  Via: SIP/2.0/UDP 10.1.32.70:5060;branch=z9hG4bK0c57d67c
  From: "JOSE MANUEL" <sip:[email protected]>;tag=as2f789a9f
  To: <sip:[email protected]>
  Date: Thu, 20 Feb 2014 10:58:27 GMT
  Call-ID: [email protected]:5060
  CSeq: 102 INVITE
  Allow-Events: telephone-event
  Server: Cisco-SIPGateway/IOS-12.x
  Content-Length: 0
  SIP/2.0 180 Ringing
  Via: SIP/2.0/UDP 10.1.32.70:5060;branch=z9hG4bK0c57d67c
  From: "JOSE MANUEL" <sip:[email protected]>;tag=as2f789a9f
  To: <sip:[email protected]>;tag=556830-757
  Date: Thu, 20 Feb 2014 10:58:27 GMT
  Call-ID: [email protected]:5060
  CSeq: 102 INVITE
  Allow: INVITE, OPTIONS, BYE, CANCEL, ACK, PRACK, UPDATE, REFER, SUBSCRIBE, NOTIFY, INFO, REGISTER
  Allow-Events: telephone-event
  Remote-Party-ID: "DN1001" <sip:[email protected]>;party=called;screen=no;privacy=off
  Contact: <sip:[email protected]:5060>
  Server: Cisco-SIPGateway/IOS-12.x
  Content-Length: 0
  My configuration in Cisco device is:
  dial-peer voice 1 voip
  description **Calls to ASTERISK **
  destination-pattern 9T
  session protocol sipv2
  session target sip-server
  codec g711ulaw
  sip-ua
  keepalive target ipv4:10.1.32.70
  authentication username CCME password 7 070E234F4A realm asterisk
    sip-server ipv4:10.1.32.70:5060
  To avoid that the ASTERISK is blocked by Cisco TOLLFRAUD_APP I have added:
  voice service voip
  ip address trusted list
    ipv4 10.1.32.70 255.255.255.255
  allow-connections sip to sip
  sip
    registrar server
  The issue is that I would like that Cisco also send a challenge to asterisk server to authenticate SIP messages.
  Any ideas?.
  Regards.

  Hello,
  yes, but credentials command configure credentials that are used when Cisco UA must register in a server.
  I do not need register Cisco into Asterisk server. What I want is that Cisco authenticate SIP messages that receive. I know
  that can be enough with TOLLFRAUD_AP where remote IP is checked, but I want to do something like others routing
  protocols (as OSPF, BGP) where every message must be authenticated.
  Thanks.
  Regards.

• Wifi authentication problem yoga 2 1050F

  Hi,I am a new member and have just upgraded to android 5. Seems a big mistake as cannot connect to internet (no trouble with android 4) Says authentication problem. Have tried cancelling and re-entering password, turning router on and off and factory reset. Nothing. If Lenovo come up with a repair how will I be able to get it into the tablet when I have no internet connection.At the moment I have a tablet that is about as usefull as a roof tile. HELP

  You have been looking everywhere, except this forum. This issue was already addressed in this thread: https://forums.lenovo.com/t5/Android-Yoga-Series-Tablets/Wifi-Won-t-Connect-quot-Authentification-Problem-quot-Yoga/td-p/2105009 Are you using a WEP key encryption? If yes, try switching to WPA/WPA2. Though i have been able to connect without problem with these settings: Have you performed a factory reset after switching from 4.4.2 to 5.0? You could try that, sometimes it fixes so e issues.

• StageWebView HTTP authentication

  Is there a way to perform basic authentication using StageWebView on mobile devices?
  The problem is that mobile (iOS, Android) implementations don't provide authentication dialog and documentation about this is pretty unclear.
  On this link: http://helpx.adobe.com/air/kb/stagewebview-differences-platforms-air-sdk.html it's suggested to use URLRequest as a workaround.
  I made a test with URLLoader that successfully authenticates with HTTP headers provided through URLRequest and loads data from the same service but it doesn't affect StageWebView.
  Am I doing something wrong or this just can't work?
  Cheers,
  Tomislav

  Hi Tomislav,
  I did not find a way to authenticate. What I did in the end is use a
  proxy who authenticates for me. A lot of hassle for something simple
  like http authentication but Adobe is not very helpful in resolving this
  issue.
  Hope a proxy also works for you.
  Cheers,
  Ron

• SQLNET authentication problem!

  Hi,
  We have a setup in which the database server is running on a 'XXX' domain and all the clients are running in domain 'YYY'.
  On the client, if following is the setup, then the clients face ORA-03113 after around 45 to 90 minutes of idle time.
  SQLNET.ORA
  NAMES.DEFAULT_DOMAIN=YYY
  TNSNames.ORA
  DBName.YYY = (..........
  Note: This is not happening with all the clients in 'YYY' domain.
  Now, we thought this was a domain authentication problem and removed the DEFAULT_DOMAIN setup from the client. Still the client faces ORA-03113.
  As a part of trial, we moved one of the machines which was facing the problem to the domain of the database server and the error is gone.
  But, due to obvious reasons, it is not possible to move all the clients to the domain of database server.
  Is there any way to get around this problem?
  Why is it that only some of the clients are facing this problem?
  Why is it that the error occurs only after idle time and not during work?
  Do we need to set NAMES.DEFAULT_DOMAIN=XXX at client? (I apologize for this question but I am really confused with the matters now)
  Addition info: The database server is Oracle 10.1.0.2.0 and clients are ranging from Oracle 8.1.6 to Oracle 10.1.0. And the errors occur on clients with any version of Oracle.
  Please help us out in this regard.
  Thanks in advance,
  Satish

  I have gone thorugh the Action suggested for this oracle error.
  If problematic machine is shifted to the domain XXX, error is gone,Do you shift physically to some other network?? if yes then there might be a problem with your network. The machines which are disconnected, might be on the same network channel or switch which is creating some problem in your network. this is only luck that your failure occur when there is no activity from that client which is disconnected.
  Shift the places of problem facing client and non-problem facing client with each other and then check. It will clear the mind about the netrowk problem
  Regards

• Webservice authentication problem

  Web Service Authentication problem
  Posted: Jun 17, 2005 3:32 PM        Reply      E-mail this post 
  Hi
  I have created a portal service and exposed this service as a webservice. I am consuming this webservice in webdynpro. Portal service contains 2 simple methods putdata() and getdatat().
  When i access the webservice i am getting the following error.
  "javax.xml.rpc.soap.SOAPFaultException: The User Authentification is not correct to access to the Portal Service com.sap.portal.prt.soap.GlobalData or the service was not found"
  My Enterprise portal server is configured for SSO to back end R/3 system. I have checked for portal service availability and it is fine.
  My Webdynpro and Portal are running on different machines. EP is running on AIX with SP11.
  Any help please.
  Regards
  NagaKishore V

  Hi Shahab,
  Can you reproduce the issue if you create 2 applications. One that exposes a secured web service and the other one the one, consumes the web service? This would help to isolate the issue and move forward in case is a bug.
  Thanks,
  Juan Camilo

• How do we determine the HTTP authentication header for our hosted solution?

  How do we determine the HTTP authentication header (adobeconnect_admin_httpauth) from our hosted solution? The documentation says to find it in a custom.ini file but I have no clue how to access that.
  I need to supply that to the adobeconnect plugin used with a Moodle instance, screnshot below.
  If it helps, when I click "Test Connection", I see the following output.
  A series of tests have been run in order to determine whether the Adobe Connect Pro server has been properly setup for this integration to work and to also determine whether the user credentials provided in the activity global settings has the correct permissions to perform the neccessary tasks required by the activity module. If any of the tests below have failed, this activity module will not function properly.
  For further assistance and documentation in how to set up your Adobe Connect Pro server please consult the MoodleDocs help page for this activity module Help page
  Sending common-info call:
  successfully obtained the session key: na11breezrirhb4f4ryf5shqy
  successfully logged in as admin user
  Testing retrevial of shared content, recording and meeting folders:
  error obtaining shared content folder
  XML request:
  <?xml version="1.0" encoding="UTF-8"?> <params><param name="action">sco-shortcuts</param></params>
  XML response:
  <?xml version="1.0" encoding="utf-8"?> <results><status code="no-access" subcode="no-login"/></results>
  error obtaining forced-archives (meeting recordings) folder
  XML request:
  <?xml version="1.0" encoding="UTF-8"?> <params><param name="action">sco-shortcuts</param></params>
  XML response:
  <?xml version="1.0" encoding="utf-8"?> <results><status code="no-access" subcode="no-login"/></results>
  error obtaining meetings folder
  XML request:
  <?xml version="1.0" encoding="UTF-8"?> <params><param name="action">sco-shortcuts</param></params>
  XML response:
  <?xml version="1.0" encoding="utf-8"?> <results><status code="no-access" subcode="no-login"/></results>
  error creating meeting testmeetingtest folder
  XML request:
  <?xml version="1.0" encoding="UTF-8"?> <params><param name="action">sco-update</param><param name="type">meeting</param><param name="name">testmeetingtest</param><param name="folder-id"/><param name="date-begin">2015-03-14T06:53:39.000+00:00</param><param name="date-end">2015-03-14T07:53:39.000+00:00</param></params>
  XML response:
  <?xml version="1.0" encoding="utf-8"?> <results><status code="invalid"><invalid field="folder-id" type="id" subcode="format"/></status></results>
  error creating user testusertest
  XML request:
  <?xml version="1.0" encoding="UTF-8"?> <params><param name="action">principal-update</param><param name="first-name">testusertest</param><param name="last-name">testusertest</param><param name="login">[email protected]</param><param name="password">9B396EA828A00203FB3E8E69010FE537</param><param name="extlogin">[email protected]</param><param name="type">user</param><param name="send-email">false</param><param name="has-children">0</param><param name="email">[email protected]</param></params>
  XML response:
  <?xml version="1.0" encoding="utf-8"?> <results><status code="no-access" subcode="no-login"/></results>
  What are we missing?
  Thanks!

  Here is the docuementation for loging in with an HTTP Headder Adobe Connect 9 * Log in from an application
  Seeing as there may be some modification to files on the server, you may need to work with Adobe Support to see if they can be modified in the Hosted environment.Adobe Connect Help | Adobe Connect Support