IBNS web-based authentication HTTPS intercept

Similar Messages

• Web based authentication for wired client, Crendentials submission failure.

  Hi,
  I am trying to set up the functionnality "cisco web based authentication" for the wired clients.
  The problem i encountered is that my switch doesnt forward the client's password to the ACS.
  When the user validate his credentials on the login page only the login seems to be forwarded.
  The result of the command "show ip admission cache" always show the client in the init state.(i use the default cisco web login page).
  the connection between aaa servers and the switch is working.
  You will find in attachements the running-config and the debug file.
  Thanks for your help, any ideas are welcome :) (its t os version c3750e-ipbasek9-mz.150-2.SE7).

  Well i took a look on your documents but i didnt find anything that helped me ;S.
  I'm still stucked on the same step.

• Form based authentication HTTP 403 access forbidden in WL 8.1

  Hi there..
  I found following message posted in April-2004 by Sandeep very useful.
  I also ended up getting the following HTTP 403 Forbidden access error while using Pageflow controller and Form based authentication.
  I noticed 2 things. If you have a normal webapp A, which is a plain old webapp (which does not use pageflow..workshop etc..) then the following error does not occur.
  It only happens with those webapps which utilizes WL 8.1's pageflow features. Note that I am not using nested page flows. I just used 1 pageflow controller and wanted to have the form based login feature for the same.
  BEA's samples on form authentication talks about nested page flows and javax.security.auth.login.FailedLoginException and etc.. are they only applicable to nested pageflows?
  can't I use the same to capture failed login exception within a single controller?
  I tried out putting FailedLoginException exception-handler in Global.app file but it didn't catch it. Only the following work around worked. is this a bug in WL 8.1 workshop? or I am missing something.
  I would appreciate if someone can clear this doubt.
  I am using WL 8.1 with sp3.
  Rajesh
  Hey guys,
  I could find the solution for my problem. Here it is
  We need to add following lines of code in the erro.jsp page.
  <form action"j_security_check>
  ....write the error mesage....
  </form>
  You will get rid of "403 Forbidden page" error.
  Thanks,
  Sandip
  [email protected] (Sandip Atkole) wrote in message news:<[email protected]>...
  I am trying to set up Form-Based Authentication on WebLogic 8.1
  The Problem:
  If the user provides correct userid/password, he gets access to the
  protected resource as required, but if he provides incorrect
  userid/password, he gets a 403 Forbidden page, instead of getting the
  login failure page.
  The Descriptors:
  WEB.XML
  <login-config>
  <auth-method>FORM</auth-method>
  <form-login-config>
  <form-login-page>/Login.jsp</form-login-page>
  <form-error-page>/LoginError.jsp</form-error-page>
  </form-login-config>
  </login-config>
  Why doesn't it redirect to "/LoginError.jsp" instead of showing the
  403 Forbidden page?
  Thanks in advance
  Sandip

  It seems like a bug. However when I explicitly reset the error using set status it worked for me. I added following code in my error jsp .
  <%     
       response.setHeader("conent-type","text/html");
       response.setStatus(200);
  %>

• IOS 4.2.1 breaks web-based authentication to wifi access points

  Whenever I tried to access the *wifi access points* I use more often *whose authentication is web-based*, like the one at my public library or at my office, although I input my username and password correctly, I am always bounced back to the login form.
  Before iOS 4.2.1 I know that there was a problem of this sort already, related to *some incompatibility between Safari's auto-fill features and the access points*, that could be solved by simply turning off auto-fill, and I did that. But know *it looks like the problem got to a new level of subtlety*.
  Interestingly, *everything worked nicely while I was using the Gold Master version of iOS 4.2.0* that never made it to release, so the solution has to be found among the differences between 4.2.0 and 4.2.1, if you're an Apple engineer reading this.
  Can you help? Any idea or trick to try that I didn't already? Thanks!
  Giacecco

  Hi Richard,
  You mentioned that 'Apple put the AirPrint spec out there for all printer makers'. I've been looking around but I haven't found any spec. Where did you find it?
  Do printer makers have to buy a license in order to be able to advertise that they've implemented the AirPrint protocol? Is there maybe an Apple review process in place?
  TIA
  Geert

• Catalyst Web-Based Authentication

  Hi there,
  I am having problems getting this web-auth working and am hoping you guys can assist with a solution. It works for ssh/telnet, but not for proxy web auth.
  This is the equipment:
  Cisco 3750G with IOS 12.2(53)SE1
  CiscoSecure ACS Appliance Release 4.1(1) Build 23 Patch 4
  Windows 2003 R2 domain controller
  Here the relevant config:
  <snip>
  aaa new-model
  aaa authentication login default group tacacs+
  aaa authentication login no_auth line
  aaa authentication login use_tacacs group tacacs+ local
  aaa authentication login console local
  aaa authorization config-commands
  aaa authorization exec default group tacacs+ local
  aaa authorization commands 15 default group tacacs+ local
  aaa authorization network default group radius none
  aaa authorization auth-proxy default group tacacs+
  aaa accounting exec default start-stop broadcast group tacacs+
  aaa accounting commands 15 default start-stop broadcast group tacacs+
  interface Vlan150
  ip address 10.10.10.14 255.255.255.0
  ip tacacs source-interface Vlan150
  ip radius source-interface Vlan150
  tacacs-server host 10.10.10.4 single-connection
  tacacs-server directed-request
  tacacs-server key 7 15270505307A21
  radius-server attribute 8 include-in-access-req
  radius-server dead-criteria tries 2
  radius-server host 10.10.10.4 auth-port 1645 acct-port 1646
  radius-server vsa send authentication
  </snip>
  ..and in the log, I get this when trying to authenticate from the web auth page:
  006514: Nov  1 12:08:24.307 CET: AAA/AUTHEN/LOGIN (0000059D): Pick method list 'default'
  006515: Nov  1 12:08:24.307 CET: TPLUS: Queuing AAA Authentication request 1437 for processing
  006516: Nov  1 12:08:24.307 CET: TPLUS: processing authentication start request id 1437
  006517: Nov  1 12:08:24.307 CET: TPLUS: Authentication start packet created for 1437(roje)
  006518: Nov  1 12:08:24.307 CET: TPLUS: Using server 10.10.10.4
  006519: Nov  1 12:08:24.307 CET: TPLUS(0000059D)/0/NB_WAIT/475C16C: Started 5 sec timeout
  006520: Nov  1 12:08:24.307 CET: TPLUS(0000059D)/0/NB_WAIT: wrote entire 43 bytes request
  006521: Nov  1 12:08:24.315 CET: TPLUS(0000059D)/0/READ: read entire 12 header bytes (expect 16 bytes)
  006522: Nov  1 12:08:24.315 CET: TPLUS(0000059D)/0/READ: read entire 28 bytes response
  006523: Nov  1 12:08:24.315 CET: TPLUS(0000059D)/0/475C16C: Processing the reply packet
  006524: Nov  1 12:08:24.315 CET: TPLUS: Received authen response status GET_PASSWORD (8)
  And please do let me know if you need additional information or test to spot the error..
  Thank you.

  Password is not sent from the switch to the ACS server - any ideas why and how to fix? :-/
  Using IOS 12.2(53)SE1
  Here's a little more log detail:
  013616: Nov  4 10:20:38.478 CET: T+: End Packet
  013617: Nov  4 10:21:11.789 CET: AAA/AUTHEN/LOGIN (0000095F): Pick method list 'default'
  013618: Nov  4 10:21:11.789 CET: TPLUS: Queuing AAA Authentication request 2399 for processing
  013619: Nov  4 10:21:11.789 CET: TPLUS: processing authentication start request id 2399
  013620: Nov  4 10:21:11.789 CET: TPLUS: Authentication start packet created for 2399(roje)
  013621: Nov  4 10:21:11.789 CET: TPLUS: Using server 10.10.10.4
  013622: Nov  4 10:21:11.789 CET: TPLUS(0000095F)/0/NB_WAIT/5B4E178: Started 5 sec timeout
  013623: Nov  4 10:21:11.789 CET: T+: Version 192 (0xC0), type 1, seq 1, encryption 1
  013624: Nov  4 10:21:11.789 CET: T+: session_id 3455235127 (0xCDF2B437), dlen 36 (0x24)
  013625: Nov  4 10:21:11.789 CET: T+: type:AUTHEN/START, priv_lvl:15 action:LOGIN ascii
  013626: Nov  4 10:21:11.789 CET: T+: svc:LOGIN user_len:8 port_len:20 (0x14) raddr_len:0 (0x0) data_len:0
  013627: Nov  4 10:21:11.789 CET: T+: user:  roje
  013628: Nov  4 10:21:11.789 CET: T+: port:  GigabitEthernet1/0/1
  013629: Nov  4 10:21:11.789 CET: T+: rem_addr: 
  013630: Nov  4 10:21:11.789 CET: T+: data: 
  013631: Nov  4 10:21:11.789 CET: T+: End Packet
  013632: Nov  4 10:21:11.789 CET: TPLUS(0000095F)/0/NB_WAIT: wrote entire 48 bytes request
  013633: Nov  4 10:21:11.798 CET: TPLUS(0000095F)/0/READ: read entire 12 header bytes (expect 16 bytes)
  013634: Nov  4 10:21:11.798 CET: TPLUS(0000095F)/0/READ: read entire 28 bytes response
  013635: Nov  4 10:21:11.798 CET: T+: Version 192 (0xC0), type 1, seq 2, encryption 1
  013636: Nov  4 10:21:11.798 CET: T+: session_id 3455235127 (0xCDF2B437), dlen 16 (0x10)
  013637: Nov  4 10:21:11.798 CET: T+: AUTHEN/REPLY status:5 flags:0x1 msg_len:10, data_len:0
  013638: Nov  4 10:21:11.798 CET: T+: msg:  Password:
  013639: Nov  4 10:21:11.798 CET: T+: data: 
  013640: Nov  4 10:21:11.798 CET: T+: End Packet
  013641: Nov  4 10:21:11.798 CET: TPLUS(0000095F)/0/5B4E178: Processing the reply packet
  013642: Nov  4 10:21:11.798 CET: TPLUS: Received authen response status GET_PASSWORD (8)
  013643: Nov  4 10:21:21.436 CET: AAA/BIND(00000960): Bind i/f 
  013644: Nov  4 10:21:21.436 CET: AAA/AUTHEN/LOGIN (00000960): Pick method list 'default'
  013645: Nov  4 10:21:21.436 CET: TPLUS: Queuing AAA Authentication request 2400 for processing
  013646: Nov  4 10:21:21.436 CET: TPLUS: processing authentication start request id 2400

• SharePoint 2013 Claim based authentication

  Hi,
  I'm trying to configure SharePoint 2013 web application to use Claim based authentication. I updated the SharePoint web application using the following cmdlet:
  Convert-SPWebApplication -Identity "http:// <servername>:port" -From Legacy -To Claims -RetainPermissions -Force
  I noticed that the authentication mode has been changed to Claims Based Authentication for the detault zone. But when I use fiddler to capture the traffic, there is no FedAuth cookie for the traffic to my SharePoint site.
  Questions:
  1. Does FedAuth cookie must exist when the SharePoint web application is configured to use Claims Based Authentication?
  2. The "Enable Windows Authentication" is checked and NTLM is selected for "Integrated Windows Authentication". Is this a correct setup for Claims based authentication?
  3. Is there any documents talking about how to configure Windows Claims-Based authentication?
  Thank you!

  Hi Wu Tao,
   Please find the below technet links and white paper (Claims-based
  Identity for Windows (white paper)) which will talk about windows claim based authentication.
  http://technet.microsoft.com/en-us/library/cc262350(v=office.15).aspx
  http://technet.microsoft.com/en-us/library/jj219571(v=office.15).aspx
  And the below link will talk about setup for claim based authentication.
  http://technet.microsoft.com/en-in/library/ee806885(v=office.15).aspx
  If you need more information, please let us know
  Sekar - Our life is short, so help others to grow
  Whenever you see a reply and if you think is helpful, click "Vote As Helpful"! And whenever
  you see a reply being an answer to the question of the thread, click "Mark As Answer

• Identity SSO API with non-web based appilcations

  hi,
  i can appreciate hwo this works with cookies etc for web based applications that use the api or one of the agents on apache etc.
  but how does it go with non web based java and say windows applications?
  can anyone point me to some docs?
  thanks

  I don't work for Sun but here are my thoughts
  1. Yes, if you don't want to use the AM SDK then the
  XML auth service is the way to go.
  2 & 3. dunno
  4. I think if you pass around the SSOToken ID
  generated by AM then any application can issue a SAML
  query to see if the session is still valid and get
  identity/auth attributes back
  5. I think SAML 2.0 supports authentication and
  single signoff
  6. If you are doing a lot of thick client apps you
  should use kerberos instead of AM web based
  Authentication. AM supports kerberos authentication,
  most modern browsers support SPEGNO for passing
  credentials to web server, AD supports Kerberos, and
  even Solaris 10 comes with a free KDC built into the
  OS. There is plenty of documentation around kerberos
  and the JDK out of the box supports GSS-API for
  Kerberos authenticationThank you for your feedback.
  We looked at the use of kerberos as well, but this is not really an option as we are dealing with fat clients installed on desktops of clients. So these desktops do not fall within our span control (multiple domain controllers etc.).
  Regards,
  Thomas

• How to pass credentials/saml token access sharepoint web service ex:lists.asmx when sharepoint has single sign on with claims based authentication

  How to pass credentials/saml token exchange to the sharepoint web service ex:lists.asmx when sharepoint has single sign on with claims based authentication 
  Identity provider here is Oracle identity provider 
  harika kakkireni

  Hi,
  The following materials for your reference:
  Consuming List.asmx on a claims based sharepoint site
  http://social.technet.microsoft.com/Forums/sharepoint/en-US/f965c1ee-4017-4066-ad0f-a4f56cd0e8da/consuming-listasmx-on-a-claims-based-sharepoint-site?forum=sharepointcustomizationprevious
  Sharepoint Claims based authentication and Single Sign on
  http://social.technet.microsoft.com/Forums/sharepoint/en-US/2dfc1fdc-abc0-4fad-a414-302f52c1178b/sharepoint-claims-based-authentication-and-single-sign-on?forum=sharepointadminprevious
  Sharepoint Claim Based Authentication Web Service issuehttp://social.msdn.microsoft.com/Forums/office/en-US/dd4cc581-863c-439f-938f-948809dd18db/sharepoint-claim-based-authentication-web-service-issue?forum=sharepointgeneralprevious
  Best Regards
  Dennis Guo
  TechNet Community Support

• SharePoint 2013 web service: Error while sending claim based authentication request (The corresponding SID in the domain is not part of the intended account type)

  We are using .asmx services for SharePoint features such as comments, and rating.
  Service
  Feature   used
  http://<<hostname>>/_vti_bin/socialdataservice.asmx
  Commenting, Rating
  http://<<hostname>>/_vti_bin/UserProfileService.asmx
  For out of box workflows
  In SharePoint 2013,
  SharePoint – 80  web application is on claims based mode and user is logging in with windows authentication. With logged-in client context used to call SharePoint's default web service, we are getting below error message from
  web service (Social data and user profile services).
  Server was unable to process request. ---> The corresponding SID in the domain is not part of the intended account type.
  When the service is accessed using console application with Visual Studio credentials (logged in user), we are able to access the service. Below is the code snippet
  using   (SocialDataService
  service = new  
  SocialDataService())
                    service.Credentials =
  CredentialCache.DefaultCredentials;
  SocialCommentDetail detail =   service.AddComment("<<url>>",
    "Test Comment",
  null,  
  null);
  Are SharePoint 2013 web services not supporting request coming with claim based authentication web application?
  Thanks, Pratik Agrawal (MAQ Software)

  While this applies to 2010, I believe the same is true with 2013:
  http://social.technet.microsoft.com/Forums/sharepoint/en-US/925e5f46-317f-46d3-bc55-c67f07eb2372/call-sharepoint-web-services-using-claimbased-authentication?forum=sharepointgeneralprevious
  Trevor Seward
  Follow or contact me at...
  &nbsp&nbsp
  This post is my own opinion and does not necessarily reflect the opinion or view of Microsoft, its employees, or other MVPs.

• Securing Web Applications by HTTP Basic Authentication

  We are working on providing security for web applications in Webdynpro.We downloaded the material from net regarding this.In that it was mentioned to open the webdynpro project's web.xml file in the Netweaver Developer Studio.In the material,we are asked to click the General  TAb and check "Login Configuration".But there is no such checkbox in our general tab screen.Also many tabs are missing like Context,Resources,mapping,Environment,EJB's,Web objects.How to enable/display these tabs?Is there any means of setting properties in the server to get these tabs?
  regards,
  J.Iswaryal
  K.Brinda

  Hi J.Iswaryal,
  I guess two things based on your post.
  1. You have created one wer service and you want to make secure this web service using HTTP basic authentication.
  2. You have such wweb service and you want to consume this web service lets say in webdynpro application.
  <b>For, point one,</b>
  After creating web service goto webservice perspective in NWDS. there, choose your web service project.
  Now, open Web service configuration file recided in your project.
  Here, go under config1-> security and double click on it.
  It will display security options for this web service.
  Choose transport protocol as HTTP, Authentication mechanism as HTTP authentication and choose Basic radio button.
  Now, save this, rebuild this and deploy on server.
  <b>For point 2,</b>
  Make model for your web service.
  before calling your web service, set your username and password in code as shown below.
  wdContext.current<web service model node>element().modelobject()._setusername(<username>);
  wdContext.current<web service model node>element().modelobject()._setPassword(<password>);
  Rehards,
  Bhavik

• Office Web Apps and Forms Based Authentication

  Is it possible to use Office Web Apps Server 2013 to give external SharePoint Foundation 2013 clients access to Office documents in a View only capacity?
  Does FBA work with Office Web Apps or would external users have to at least have a Windows CAL in AD if we are just using SharePoint Foundation?

  Hi,
  It may be possible.
  Here are some links for your situation:
  http://technet.microsoft.com/en-us/library/ff431682(v=office.15).aspx
  http://blogs.technet.com/b/office_web_apps_server_2013_support_blog/archive/2014/03/20/office-web-apps-2013-errors-previewing-viewing-editing-documents-when-using-fba-in-the-extended-zone-but-not-the-default-zone.aspx
  http://technet.microsoft.com/en-us/library/ee806890(v=office.15).aspx
  Office Web Apps can be used only by SharePoint 2013 web applications that use claims-based authentication.
  There is a known issue when using Office Web App in the extended zone with FBA, but not the default zone. Please configure FBA authentication in the Default zone in case of that.
  Hope it helps.
  Regards,
  Rebecca Tu
  TechNet Community Support

• Can you enable both Windows Based Authentication and Forms Based Authenication for the same web application?

  Hello Community
      In WS2012 and SharePoint 2013 Server is it possible when creating a
  web application to enable both Windows Based Authentication/Negotiate
  (Kerberos) and enable Forms Based Authentication or does the web application
  use either one or the other?
      Thank you
      Shabeaut 

  Yes , you can use dual authentication on same web application. You can use same web application , at OOB login page you will have option to use windows or form login.
  Or you can extend your web application to a new web app and configure extended web application to use Form Based Authentication(Note extended web application will also show same content database , so the content will same only url will be different)
  http://blogs.technet.com/b/ptsblog/archive/2013/09/20/configuring-sharepoint-2013-forms-based-authentication-with-sqlmembershipprovider.aspx
  http://gj80blogtech.blogspot.in/2013/11/forms-based-authentication-fba-in.html
  Thanks
  Ganesh Jat [My Blog |
  LinkedIn | Twitter ]
  Please click 'Mark As Answer' if a post solves your problem or 'Vote As Helpful' if it was useful.

• Window for Form-Based Authentication in web.xml for JAZN.

  Whether probably to make so that the form-authorization in Form-Based Authentication in web.xml for JAZN opened in a separate window?
  Thanks,
  Alexandre

  this is what i have so far...in my web.xml deployment descriptor
  am using Jbuilder 6 with tomcat.....if i run it from IDE, will the featuresi have added to the web.xml file...eg Error page be used ...or only when i deplo the app ???
  <?xml version="1.0" encoding="UTF-8"?>
  <!DOCTYPE web-app PUBLIC "-//Sun Microsystems, Inc.//DTD Web Application 2.2//EN" "http://java.sun.com/j2ee/dtds/web-app_2_2.dtd">
  <web-app>
  <display-name>Java Pet Store</display-name>
  <description>Web Application for Reseach</description>
  <session-config>
  <session-timeout>54</session-timeout>
  </session-config>
  <welcome-file-list>
  <welcome-file>Default.jsp</welcome-file>
  </welcome-file-list>
  <error-page>
  <error-code>500</error-code>
  <location>/</location>
  </error-page>
  <taglib>
  <taglib-uri>PetStoreTagLib</taglib-uri>
  <taglib-location>/WEB-INF/PetStoreTagLib.tld</taglib-location>
  </taglib>
  <security-constraint>
  <web-resource-collection>
  <web-resource-name>SecurePages</web-resource-name>
  <url-pattern>Checkout.jsp</url-pattern>
  <url-pattern>OrderList.jsp</url-pattern>
  <url-pattern>OrderDetails.jsp</url-pattern>
  </web-resource-collection>
  <auth-constraint>
  <role-name>LoggedInUser</role-name>
  </auth-constraint>
  <user-data-constraint>
  <transport-guarantee>CONFIDENTIAL</transport-guarantee>
  </user-data-constraint>
  </security-constraint>
  <login-config>
  <auth-method>FORM</auth-method>
  <form-login-config>
  <form-login-page>/Login.jsp</form-login-page>
  <form-error-page>/ErrorPage.jsp</form-error-page>
  </form-login-config>
  </login-config>
  <security-role>
  <description>Logged In User</description>
  <role-name>LoggedInUser</role-name>
  </security-role>
  </web-app>
  in setting up the tomcat-users.xml file am i to add table to my database, to relate the user to the role.......

• Authentication between Single Sign-On and Web based applications

  Hi everyone,
  I need to create a way in Portal 10g (10.1.2.0.2) that allow me to do the following:
  Once the user is logged on Portal (against Single Sign-On - SSO) he doesn't need to retype his username/password when he access a web based application throught the portal, in my case, an ASP application (not .NET, just ASP).
  I made a test creating a External Application in SSO and after publishing this portlet (external application) inside portal.
  It worked, BUT I was prompted to inform username/password to log on the aplication.
  So, the user end up entering his password twice.
  Does anybody know a way to acomplish this task?
  The documentation I'm researching is:
  Oracle Application Server Single Sign-On
  Administrator's Guide
  10g Release 2 (10.1.2)
  B14078-02
  Oracle Application Server Single Sign-On
  Security Guide
  10g Release 2 (10.1.2)
  B13999-03
  Thank you very much,
  Diogo Santos.

  have figured out how to secure any HTML, ASP, PHP, CFM, etc. web page again Portal / OID using the PDK toolkit.
  Using AJAX (Asynchronous JavaScript and XML) and one Oracle Stored Procedure just adding a simple Javascript call to any HTML, ASP, PHP, etc. web page can secure it via Oracle SSO (OID). Access to any secured web page will require that it to be linked from an authenticated Portal session or a page opened in an authenticated Portal session.
  This process can be easily modified to add in group security etc. This is just my starting point.
  1) Create a stored procedure
  # Make sure it has access to portal.wwctx_api.is_logged_on
  CREATE OR REPLACE PROCEDURE login_ajax_check (
  display_error IN number default NULL) AS
  BEGIN NULL;
  If portal.wwctx_api.is_logged_on = false then
  htp.prn('DENY');
  ELSE
  htp.prn('ALLOW');
  END IF;
  Exception when others then htp.p('DENY');
  END;
  2) Use this Javascript in any page you wish to secure.
  <-- Begin Paste Here -->
  <script>
  var allowgo=2
  function ajaxCallRemotePage(url)
  if (window.XMLHttpRequest)
  // Non-IE browsers
  req = new XMLHttpRequest();
  req.onreadystatechange = processStateChange;
  req.open("GET", url, false);
  req.setRequestHeader("If-Modified-Since", "Sat, 1 Jan 2000 00:00:00 GMT");
  req.send(null);
  else if (window.ActiveXObject)
  // IE
  req = new ActiveXObject("Msxml2.XMLHTTP");
  req.onreadystatechange = processStateChange;
  req.open("GET", url, false);
  req.setRequestHeader("If-Modified-Since", "Sat, 1 Jan 2000 00:00:00 GMT");
  req.send();
  else
  return; // Navigateur non compatible
  // process the return of the "ajaxCallRemotePage"
  function CheckPortal()
  ajaxCallRemotePage('[Your page calling the procedure from above]');
  function processStateChange()
  if (req.readyState == 4)
  if (req.status == 200)
  if (req.responseText.substring(0,4) == 'ALLO')
  allowgo = 0;
  else
  allowgo = 1;
  function doPage()
  if (allowgo==1)
  window.location='[Your login or error page]';
  CheckPortal();
  doPage();
  </script>
  <-- End Paste Here -->
  That's it!!! Super easy. It works great too.
  Larry Schenavar
  [email protected]

• Create a Web Service for Exchange with form based authentication ?

  I want to create a Web Service in Apex that can create appointments in my exchange calendar. Exchange is offering web services for that.
  When i try to create the web service reference in Apex i provide the URL and my Exchange login, but it is failing.
  The exchange guys told me, that there is a ISA Server running where i need to authenticate through a form.
  Does anyone know, how i can implement a webservice in Apex, when the access to the wsdl url needs login through a form ?
  Or : what other types of authentication does Apex know ? What possibilities do i have ?
  Thanks for answers.
  Bernd

  Hi
  Presume you've already found this information, but in case not ....
  Exchange 2007 provides out of the box web services, see
  http://msdn.microsoft.com/en-us/library/bb408417.aspx
  As a disclaimer - neither myself of the team I work with have tried to use these web services within APEX.
  Regards
  Chris