Http Authentication server side

Similar Messages

• HOWTO: Setting up Server-Side Authentication with SSL

  This howto covers the configuration of server-side SSL authentication for both Net8 and IIOP (JServer) connections. It documents the steps required to set up an SSL encrypted connection; it does not cover certificate authentication.
  It is worthwhile noting that although the setup of SSL requires the installation of certificates, these certificates do not have to be current, only valid. For some reason, in order to enable SSL connections, it is necessary to set up valid certificate file on the server whether you intend to use certificate authentication or not.
  NOTE: I have been unable to determine whether or not the above statement is entirely correct. If anyone can confirm or disprove it, please let me know.
  The steps described below must all be carried out from the same logon account. They have been tested on both 816 and 817 databases, but will probably work for all versions, including 9i (unless there have been some drastic changes in 9i that I'm not aware of).
  1. Log on to the database server with an administrative login.
  Configure the database and listener to run under the current login account (Control Panel -> Services). It is not necessary to restart these services at this time.
  2. Create an Oracle wallet and set up the required certificates
  (i) Open the Oracle Wallet Manager:
  Start -> Programs -> [Oracle Home] -> Network Administration -> Wallet Manager
  (ii) Create a new wallet (Wallet -> New).
  (iii) When prompted, elect to generate a certificate request.
  (iv) On the request form, the only field that matters is the Common Name. Enter the fully qualified domain name (FQDN) of the database server (i.e. the name with which the database server will be referenced by clients).
  (v) Export the certificate request to file (Operations -> Export Certificate Request).
  (vi) Obtain a valid server certificate from an authorised signing authority. It will also be necessary to download the signing authoritys publicly available trusted root certificate. Certificates can be obtained from Verisign (http://www.verisign.com/)
  (vii) Install the trusted root certificate obtained in (vi) into the wallet (Operations -> Import Trusted Certificate). Either paste the contents of the certificate file, or browse to the file on the file system.
  (viii) Install the server certificate obtained in (vi) into the wallet (Operations -> Import User Certificate). Either paste the contents of the certificate file, or browse to the file on the file system.
  (ix) Save the wallet (Wallet -> Save). The wallet will be saved to the [user home]\Oracle\Wallets directory.
  3. Configure the listener for SSL.
  (i) Open the Oracle Net8 Assistant:
  Start -> Programs -> [Oracle Home] -> Network Administration -> Net8 Assistant
  (ii) Select Net8 Configuration -> Local -> Profile.
  (iii) From the drop-down list at right, select Oracle Advanced Security. Select the SSL tab.
  (iv) Select the Server radio button.
  (v) In the wallet directory field, enter the location of the wallet created in step 2, e.g. C:\WINNT\Profiles\oracleuser\ORACLE\WALLET
  (vi) Uncheck the Require Client Authentication checkbox.
  (vii) Select Net8 Configuration -> Listeners -> [listener name].
  (viii) Add a new address:
  Protocol: TCP/IP with SSL
  Host: [database server FQDN] (e.g. oraserver)
  Port: 2484
  (ix) Add a second new address:
  Protocol: TCP/IP with SSL
  Host: [database server FQDN] (e.g. oraserver)
  Port: 2482
  Check the Dedicate this endpoint to IIOP connections checkbox.
  (x) Save the Net8 configuration (File p Save Network Configuration).
  (xi) Restart the listener service.
  4. Configure the database to accept SSL connections.
  (i) Open the database inti.ora file (\admin\[SID]\pfile\init.ora or equivalent).
  (ii) At the bottom of the file, uncomment the line that reads
  mts_dispatchers = "(PROTOCOL=TCPS)(PRE=oracle.aurora.server.SGiopServer)"
  (iii) Save the file and restart the database service.
  5. Test the SSL confi guration using the Net8 Assistant.
  (i) Open the Oracle Net8 Assistant.
  (ii) Select Net8 Configuration -> Local -> Service Naming.
  (iii) Add a new net service (Edit p Create).
  Net service name: [SID].auth (e.g. iasdb.auth)
  Protocol: TCP/IP with SSL
  Host: [database server] (e.g. oraserver)
  Port: 2484
  Service Name/SID: [SID] (e.g. iasdb.orion.internal)
  Note: at the end of the net service configuration, click Finish, not Test. The test can hang if run from the wizard.
  (iv) Test the connection (Command -> Test Service). If the only error to appear is username/password denied, the test has succeeded.
  null

  Dear Alex,
  Thank you for reaching the Small Business Support Community.
  I would first suggest you to uncheck the "Perfect Forward Secrecy" setting on the RVS4000 and if see if there is some similar setting enabled, then disable it, on the other side.  If still the same thing happens, then go to RVS4000, VPN Advanced settings, and disable the "Aggressive Mode" so it becomes "Main mode" and use the same on the other end of the tunnel.
  Just in case and as a VPN configuration guide, below is a document called "IPSec VPN setup" if it helps somehow;
  http://sbkb.cisco.com/CiscoSB/Loginr.aspx?login=1&pid=2&app=search&vw=1&articleid=587
  Besides my suggestions I would advise you to contact your ISP to make sure there is no IPSec traffic restrictions and/or if there is something in particular they require to make this happen and please do not hesitate to reach me back if there is any further assistance I may help you with.
  Kind regards,
  Jeffrey Rodriguez S. .:|:.:|:.
  Cisco Customer Support Engineer
  *Please rate the Post so other will know when an answer has been found.

• Server-side authentication for web services

  I was hoping to use Azure's server-side authentication for a HTML/JS web app. Some things are a bit unclear. For example, if a new user authenticates via Facebook, I want to create an associated record on the server-side and associate extra data with the
  user, irrespective of the service used to log in. If they log in again, I want the client to be able to get this extra data (eg preferences) from the server. On the back-end, I also want to be able to update particular fields of this record that the user cannot
  change themselves. I know how to go about this in a plain Node.js backend, but not sure how some of these basic things map to using Azure's services.

  Once the user logs in, you will have their information available to your server scripts. So one option is to use a custom API (or a Mobile Services Table) to insert/read/update the user data. You would protect this endpoint so that only logged-in users can
  access it, and then access the
  user object to obtain an ID an associate it in a table row. Lookups could be performed by similarly querying for the ID.
  In terms of some fields being restricted, you could remove these from the update request itself.
  Some pointers that might be helpful:
  http://azure.microsoft.com/en-us/documentation/articles/mobile-services-html-get-started-data/
  http://azure.microsoft.com/en-us/documentation/articles/mobile-services-html-call-custom-api/
  http://azure.microsoft.com/en-us/documentation/articles/mobile-services-html-authorize-users-in-scripts/

• Bw web report plugin http session hangs at the server side

  Hi,
  I am having problems when closing the browser of a BW web report. After I closed the browser by going File->close, I ran SM04 and found out the Plugin HTTP session hangs at the server side.
  How can we terminate the Plugin HTTP session at the server side when user closes the internet browser?
  I did implement a logoff function at my web template, if user clicks on the logoff, the Plugin HTTP session is terminated at server side correctly. But As you know, 50% of time user will close the report by closing the internet browser instead of clicking the logoff. That leaves lots of hanging Plugin HTTP sessions at our server side.
  By the way, we actived our BEX service at the SICF.
  Thanks for help!
  JA

  Hi
  If you want to avoid a blank page with logoff button, add opener=0
  <a href="<SAP_BW_URL CMD='LOG_OFF' ~command='logoff'
  >" onClick="javascript:window.close(opener=0);">Log off</a>
  If you want to close the session via X, use this code:
  create a sapscript function
  function closeSession()
  logoff()
  window.unload=CloseSession()
  However, the Plugin HTTP session isn't killed.
  Regards

• Multiple room management -- best practice -- server side http api update?

  Hi Folks, 
  Some of the forum postings on multiple room management are over year old now.  I have student/tutor chat application which has been in the wild for 5 months now and appears to be working well.  There is a single tutor per room, multiple chats and soon to be a whiteboard per student, which is shared with the tutor in a tabbed UI. 
  It is now time to fill out the multiple tutor functionality, which I considered and researched when building, but did not come to any conclusions.   I'm leaning towards a server side implementation.  Is there an impending update to the http api?
  Here is what I understand to be the flow:
  1) server side management of who is accessing the room
  2) load balance and manage the room access 1 time user and owner session from the server side
  3) for my implementation, a tutor will need to login to the room, in order for it to be available
  4) Any reconnection would in turn need to be managed by the server side, and is really a special case of room load balancing.
  My fear is that at some point I'm going to need access to the number of students in the room or similar and this is not available, so that I'll need client functionality, which will need update the server side manager.
  As well, I'm concerned about delays on the server side access to which might create race conditions in a re-connect situation.  User attempts to reconnect, but server side manager thinks that the user is already connected.
  Surely this simple room management has been built, does anyone have any wisdom they can impart?  Is there any best practice guidance or any samples?
  Thanks,
  Doug

  Hi Raff, Thanks a ton for the response.
  I wasn't clear on what I was calling load balancing.  What I mean by this is room assignment for student clients.  We have one tutor per room.  There are multiple students per room, but each is in their own one-on-one chat with the tutor.
  I'm very much struggling with where to do the room assignment / room managemnt, on the server side or on the client side (if that is even possible).  In my testing it is taking upwards of 10 seconds minimum to get a list of rooms (4 virtually empty rooms) and to query the users in a single room (also a minimum of users/nodes in the queried room).   If after this point, I 'redirect' the student to the least full room, then the student incurs the cost of creating a new session and logging into the room.  As well I intend to do a bit of xml parsing, and other processing, so that 10 seconds is likely to grow.
  Would I see better performance trying to do this in the client?
  As far as the server side, at what point does a room go to 'not-active'?
  When I'm querying the roomList, I am considered one of the 'OWNER' users in the UserLists.  At what point can it be safe to assume that I have left the room? 
  Is there documentation on the meaning and lifecycle of the different status codes?  not-active,  not-running, and ok?  Are there others?
  How much staleness can I expect from the server-side queries?
  As far as feature set, the only thing that comes to mind is xpath and or wild card support for getNode() but i think this was mentioned in other posts.
  Regarding the reconnection issues, I am timing out the student after inactivity, and this is probably by and large the bulk of my reconnect use cases.  This and any logout interaction from the student presents a use case where I  may want reassign the student return to the same room as before.  I can envision scenarios of a preferred tutor if available etc.  In this case, I'll need to know list of rooms.  In terms of reconnection failover, this is not not a LCCS / FMS issue.
  Thanks again for responding.

• Server Side Actionscript for HTTP Streaming Connections, is it supported?

  Hi, I have a server side actionscript application working for RTMP, and I would like to reuse this code for HTTP connections.
  Is this possible?

  Thank you for your answer.  If I understand what you are saying, the apache modules proxy http to rtmp on the streaming server.  I have an application that is passing context into the rtmp server side javascript using a url similar to this:
  rtmp://myhostname.com/myapp?mycontext/mp4:myfilename
  Do you think there is a way to pass the mycontext through the http url so that the Server Side Actionscript can perform an operation based on that context?

• Network communication server-side (http, SSL)

  Hey all,
  I'm wondering if it's possible at all to make http or even
  arbitrary network requests from the server-side on FMS. Based on
  the documentation (which states that server-side ActionScript is
  just JavaScript 1.5 with a few extra classes), there's no way to do
  this, but I find that to be unbelievable. A $4,500 application that
  doesn't give me the power to make an HTTP request to my web server?
  There must be a way.
  Also, I'd like to make HTTPS requests if possible. If that
  means using an SSL socket and writing my own HTTP requests, or
  using some HTTPS-capable socket or request object, that's fine.
  Anybody know of a way to do this?
  Also, does the same-origin (same-domain) security policy
  still apply on the server side?

  You can use flash remoting to call a web server or an
  alternative is a webservice. There are APIs for both built into the
  FMS server. Or as well a socket call.
  As for HTTPS.. that I'm not sure, I've never had the need but
  I *think* it is supported? Someone else know???

• HTTP SERVICE - How to get the value of my params on the server side

  I am new to flex and with the url limitation i was trying to
  do the following ....send a bunch of ids... using params variable
  var myservice:HTTPService = new HTTPService();
  myservice.url = url;
  myservice.method = "POST";
  myservice.resultFormat = "e4x";
  myservice.send(params);
  The question is how do i get the value i passed on using
  params on the server side? can the variable params be a string or
  array or does it have to be object type?
  Any help would be greatly appreciated.

  Most server side languages have a function or an array where
  you extract the variables. in PHP they arrive in global arrays
  called $_POST and $_GET.
  Other languages have methods like request.formvars or
  request.query. Check your serverside language on how that is
  done.

• Scheduling web intelligence reports from SAP EP Portal : Server Side Trust

  Hello,
  We have set-up SSO between SAP EP 701, SAP BI 701 and Business Object XI 3.1  to allow users to access reports without having to sign-on again as explained here :
  /people/ingo.hilgefort/blog/2008/09/19/businessobjects-and-sap--configure-sap-authentication
  But, we have recently been contacted by some users because when scheduling Webi Report from a link within the portal they have the following errors :
  u201CA database error occured. The database error text is: Unable to connect to SAP BW server System received an expired SSO ticket. (WIS 10901) u201D
  The user told us that he doesn't encounter the error when :
  Login in directly to the BO Infoview (without SSO from the SAP Enterprise Portal.)
  The first Webi scheduling is succesful from the portal (I suppose because the portal token is still valid)
  I understand that we also have to configure the Server Side Trust between BO Enterprise server and the SAP BI7 backend as explained here , but I do not really understand its purpose
  https://websmp106.sap-ag.de/~sapidb/011000358700001646962008E/XI3-1_BIP_SAP_INSTALL_EN.pdf
  I've found a similar discussions here ;
  Issue with SAP Single Sign-On and Scheduling Reports
  I still have some questions :
  If we configure the Server Side Trust between BO Enterprise server and the SAP BI7 backend .
  The Portal Logon ticket will remain an issue at some point of time , does it mean tha the WeBi report job sheduling should not be perfromed from the SAP EP Portal ?
  We haven't configured the Server Side Trust , yet the users told us that they are able to schedule webi report directly from the BO Infoview ? How is it posible ?
  Thank you in advance for your help.
  Regards.

  Thank you Mr Hilgefort for your detailled explanations.
  I now have to provide some explanations to my managers, and to be honest , there are still some points that
  are unclear to me, and it would be extremely helpful if could confirm (or not) the follwoing points.
  When scheduing Webi report from the sap portal, we're getting SSO errors.
  SAP provide the follwoing note explaining how to extend the validity of the J2EE token (Portal token), but this is not a long term solution, at certain point of time the ticket will expire. Webi shceduling should not be perfromed from the Portal.
  Sap note 1352127 - Scheduled Webi report fails with: A database error occurred. The database error text is: Unable to connect to SAP BW server System received an expired SSO ticket
  Webi Scheduling should be performed from BO Infoview. SNC should be configured between BO server and SAP BI7.0 backend.
  We should Configure Server SNC as explained in the BusinessObjects XI Integration for SAP Solutions Installation and Administration Guide at Chapter "Configuring SAP for server-side trust". (1341043)
  The SAP Portal is not involved here and is not an option even with the configuration of SNC/Server side trust.
  thank you for your patience.
  Best Regards.

• Configuring Sender HTTPS Connection -- Server/Client Authentification

  Hello together,
  I need to configure an HTTPS Sender Connection with client and server authentication. I have already check the documentation however I am still not sure about the particular steps. My questions are as follows:
  - Do I configure the HTTPS connection on the ABAP or JAVA stack?
  - Is it necessary to setup an HTTP sender communication channel
  - How does the URL look like (compared to HTTP connection)?
  I have provided XI certificates to the client and the client has provided the certificates to me already. So I guess I have to import them somehow on XI.
  Any help is appreciated!
  Thank you very much.

  Hi
  Please follow below steps for HTTPS configuration as sender
  You need to use either SOAP adapter or XI Adapter for HTTPS connectivity.
  Here configure the Security Check for Inbound Messages.
  Refer below links
  http://help.sap.com/saphelp_nw04/helpdata/en/fc/5ad93f130f9215e10000000a155106/frameset.htm
  http://help.sap.com/saphelp_nw04/helpdata/en/4f/0a1640a991c742e10000000a1550b0/frameset.htm
  XI3.0: Soap Sender with HTTPS
  SAP Security Guide XI, HTTP and SSL
  http://help.sap.com/saphelp_nw04/helpdata/en/14/ef2940cbf2195de10000000a1550b0/content.htm
  http://help.sap.com/saphelp_nw04s/helpdata/en/97/818a4286031253e10000000a155106/frameset.htm
  No configuration is required in the adapter-specific sender channel configuration (inbound) of the Integration Directory.
  The authentication/authorization is performed by the J2EE Engine and therefore needs to be configured with the Visual Administrator. This configuration is described in the J2EE Engine Administration Manual and is outlined in the following section.
  When a message is to be sent to the Adapter Engine (and ultimately to the Integration Server), the J2EE Engine serves as the SSL Server and presents its server certificate to the client as part of the SSL handshake procedure.
  Client-Side Configuration (Required)
  The public certificate of the trusted authority (CA) that signed the public certificate of the SSL server needs to be imported to the list of trusted certificates of the SSL client. This allows the SSL client to accept the certificate of the server in the SSL handshake.
  Server-Side Configuration (Optional)
  If basic authentication is used, no additional configuration is required on server side.
  If client certificate authentication is requested or required by selection of the corresponding option in the SSL service and configuration of the ClientCertLoginModule in the SecurityProvider service (using the J2EE Administration Tool), additional configuration steps are required.
  If the server certificate check on the client side is successful, the client sends its public certificate to the server as part of the SSL handshake (when requested). The server needs to map the certificate to a user for authentication and will then check the authorization based on the security roles of the user.
  Perform the following steps to allow the J2EE engine to map the client certificate to a user:
         1.      Import the CA cert of the client certificate to the list of trusted certificates (TrustedCAs keystore view in the keystore service) and import the client cert to an arbitrary keystore view.
         2.      Map the client certificate to an existing user with role SAP_XI_APPL_SERV_USER by using the Visual Administrator, SecurityProvider service, UserManagement tab page.
  Refer below link
  Here u go
  http://help.sap.com/saphelp_nw04/helpdata/en/65/6a563cef658a06e10000000a11405a/content.htm
  http://help.sap.com/saphelp_nw04/helpdata/en/f1/2de3be0382df45a398d3f9fb86a36a/frameset.htm

• Extract principal on server side from outToken/KRB_AP_REQ

  Hey,
  I have a Kerberos SSO application with JAAS/JGSSAPI according to the tutorial which can be found here: http://java.sun.com/j2se/1.4.2/docs/guide/security/jgss/single-signon.html
  Mutual authentication with initSecContext() and acceptSecContext() works fine. Now, on the server side, I would like to extract the principal from the outToken. In Kerberos terms this means the KRB_AP_REQ message which is generated by initSecContext() and send to the server.
  Is there any possibility to get the principal's name from this byte array?

  Don't you have to use GSSUtil.createSubject on the server side to obtain a Subject, from which the principal name of the client can be obtained?
  Alec

• Weblogic HTTP Authentication on 11g webservice

  Hi all
  We are recently migrating webservice from 10g to 11g, but keep 10g client use for connecting the new 11g interface. Due to previous technical limitation, the 10g client is found failed to connect 11g and thus we built a middleware between them. The webservice server side (11g) is protected with HTTP authentication on weblogic and we found that both 11g client and the middleware can connect the server side successfully authenticated. Only when we use the 10g to connect the middleware, server side blocks the transaction with error code 401 unauthorized. Can everybody know any tricks behind, thanks.
  11g ws client -----> [HTTP AUTH] --------> 11g server side [ OK ]
  Middleware -> 11g ws client ------> [HTTP AUTH] -------> 11g server side [ OK ]
  10g client --------> Middleware -> 11g ws client ------> [HTTP AUTH] -------> 11g server side [ FAILED ]
  Cheers
  Chris
  Edited by: Nexus Chris on Dec 17, 2012 10:13 AM
  Edited by: Nexus Chris on Dec 17, 2012 10:13 AM

  Hi,
  guess this is the wrong forum and you should post this question on the WLS or SOA forum here on OTN. I imagine that the two services a different in the way that 10g is JAX-RCP and 11g uses JAX-WS. Anyway, the two forums I mentioned may be best to get this sorted
  Frank

• DirectAccess with Windows Azure Multi-Factor Authentication Server

  Hi,
  We're having some troubles implementing OTP-functionality for our DirectAccess-solution. We have DA-server with dual nics (one internal and one external) behind a firewall. We are successfully running it with Windows 7 computers using certificates issued
  by our own CA. Everything works fine (e.g. 6to4, Teredo and IP-HTTPS) and computers connect instantaneously.
  Then we decided to try to implement OTP-functionality using Azure MFA. We have downloaded the on-premises installation and configured a server with a couple of trial users synced from our Active Directory. It works flawlessly when using the portal and the
  built-in tests on the MFA. We receive the text messages promptly and are granted access.
  However when we tried to connect it to our DA-server things got weird.
  First of all our DA-server refuses to recognize our Issuing CA even though it is domain joined and published in our Active Directory. It worked the first time we went through the wizard, but even since it just keeps saying that "no CA servers can be
  detected". We ended up doing it the
  powershell way and the Operations status shows no error. When we added the Issuing CA and the Radius Server (our MFA-server) as Infrastructure Servers we got an error message saying that "One or more IP addresses of management server cannot be
  added because they are associated with the web probe URL" (which they don't).
  We went ahead and started testing the OTP-functionality - assuming this was some strange bug as well. Following the
  closest thing to a requirement specification
  we could find from MS regarding the certificates required. Both with a Windows 8.1 Ent-client and a couple of Windows 7 Ent-clients but neither are getting any password prompts. We can see with wireshark and in the logs that the DAProbeUser can communicate
  between the DA and the MFA. If we try to access the DaOTP-IIS-site we get a certificate error. The IIS-certificate is issued from the same trusted Root CA as the client certificate and all certificates are valid. The CRL:s are accessible both externally and
  internally.
  We are looking through the local computers OtpCredentialProvider logs but for the Windows 8.1-ones they are only saying Error 10001 (unable to send authentication information to daservername.domain.com error 12175). And for the Windows 7 clients we are getting
  Error 10003 (Either private key cannot be generated or user cannot access certificate template on the DC. Which we verified that we can using the infrastructure tunnel only). No other IPv4 traffic seems to be communicated between the two servers according
  to Wireshark.
  We have also tried using our SafeNet on-prem RADIUS-solution but no traffic seem to get sent to that server neither.
  So TL;DR:
  - Can anyone provide the precise certificate requirements for setting up DA OTP?
  - Are there any good tools for troubleshooting DA OTP-functionality? 

  Hello Benoit,
  Thank you for your reply. If we understood your blog post correctly then we are supposed to be able to access
  https://daserver.domain.com/DAOTPvirtualdirectory/DAOTPAuth.dll and not get a 403.7
  error-page, even if the back-end Radius isn’t fully functional yet?
  The DA server has the OTP signing certificate (confirmed this on the issuing CA and the server’s computer certificate store), it renews this certificate once per day (as per the
  guide for the templates on: http://technet.microsoft.com/en-us/library/hh831715.aspx)
  We’re not seeing any errors on the AD CS server, no requests, no rejections (for the client certificates), but this could be due to the settings followed for the client template
  on the TechNet guide (Do not store certificates and requests in the CA database)?
  What do you mean with "IF OTP
  signing certificate is not present on client-side, OTP authentication cannot work"? The signing certificate should be on the server side, or are we mistaken?
  Also, according to
  http://msdn.microsoft.com/en-us/library/hh536654.aspx
  it is stated:
  “2.The administrator establishes one or more implementation-specific<1>CA servers”
  But other guides specifically mention that you can use your current CA environment and that you’re not required to install a dedicated CA for this particular task. 

• Error while saving a workflow via sharepoint designer: Server-side activities have been updated. You need to restart SharePoint Designer to use the updated version of activities.

  While saving a workflow using SharePoint designer on a SharePoint site, I get the following error: 
  Server-side activities have been updated. You need to restart SharePoint Designer to use the updated version of activities.
  Steps to recreate error:
  Login to the WFE server hosting IIS and workflow manager, open SharePoint Designer 2013 and login to a SharePoint site.
  Access the list using SharePoint Designer 2013, in the workflow section, click new workflow. 
  In the new workflow dialog, enter workflow details, click save (see screenshot below).
  Error message is displayed as below:
  After restarting SharePoint Designer, the saved workflow is not seen in the site/workflows or list/workflow section.
  Workaround
  When the above steps are repeated while accessing the site via SPD from any other box besides the WFE/Workflow manager host server, the error is not encountered and its possible to save/publish workflows.
  Notes
  Workflow Manager 1.0 is installed.
  The site has been registered with Workflow manager using Register-SPWorkflowService
  cmdlet.
  Any clue on why is this happening?

  Hi Vivek,
  Please close your SharePoint Designer application, clear/delete the cached files and folders under the following directories from your server installed SharePoint Designer, then check results again.
  <user profile>\appdata\roaming\microsoft\SharePoint Designer\ProxyAssemblyCache
  <user profile>\appdata\local\microsoft\websitecache\<sitename>
  http://www.andreasthumfart.com/2013/08/sharepoint-designer-2013-server-side-activities-have-been-updated/
  Thanks
  We are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• How could I clear all my data(bookmarks) on Mozilla server side in new version of Sync (Firefox Account)?)

  Problem is the same as https://support.mozilla.org/en-US/questions/1000745?esab=a&as=aaq
  Also, there was no solution has been given in discussion.
  So, problem that noone could delete all data which have been synced with new Firefox account services.
  I've disconnected all my devices from previous (old) firefox sync system (which worked perfectly on several devices), after that i gone on link https://account.services.mozilla.com/ and deleted all my sensitive data.
  After I've created firefox account in new firefox sync system ( https://accounts.firefox.com ), and all my data (bookmarks exactly) now present in browser twice.

  I have a problem with over 12,000 unwanted bookmarks in my 4 PCs (all standard Mozilla bookmarks that have been replicated). So if I would like to purge my server side data. If I do this by deleting my Sync account can I re-use my same email address to re-open a "new" Sync account?