IMAP proxy auth - logs in as admin if user is absent

Similar Messages

• How do I allow access to non admin network users to disk volume?

  I would like to allow access to a specific volume (disk) on one of our networked macs (Mac1) to all users. I've set user accounts on Mac 1 for all network users. These users are "regular" users, not admin. They can access this disk (and all others on Mac1) if I log in as Admin set Users to Admin. If I do this, then users have access to ALL data on all disks. If I do not, leaving them as "regular" users, when they log in they only see public folders. How can I allow access to the one disk volume without making network users admin? I tried changing various settings for the volume in Finder Info (everone else=read/write; ignore permissions) with no luck.
  Thanks
  iMac, ibooks, G5, Tibook   Mac OS X (10.4.4)  

  Your observations are correct - by default, an "admin" user connecting over AFP can choose from available "volumes" (default) or "shares", whereas a non-admin user can only mount "shares".
  By default, the only "shares" on an OS X client machine are the users' "Public" folders, and unlike pre-OS X Macs, it isn't easy to configure your own share points. Apple's official statement is that users wanting this functionality should buy OS X Server.
  However, it is possible to create an arbitrary share point using 3rd party software called "SharePoints" (donationware). I have never used it, but it seems to be well regarded. Alternatively, you can do it manually following the instructions in this hint & comments (especially apw8's):
  http://www.macosxhints.com/article.php?story=20011108161839416
  Once the external drive (or folder on the external drive) is configured as a share point, it should be possible for non-admin users to select and mount it once they connect over AFP.

• Can't see IMAP log in Server Admin

  For some reason, when I click on the IMAP log in Server Admin, it's just empty. Anyone know how I can get it back? Where is the actual log so it can be viewed in the console?

  The path to the log (posted across the top of the log display, if that's still visible) is /var/log/mailaccess.log
  That log should be visible via Console.log, or via Terminal.app and cd /var/log and then grep or cat or whatever.
  How much gets written into the various mail-related logs is controlled via (of course) Server Admin.
  Server Admin > select server > Mail > Settings > Logging

• Comms Express and proxy auth (ie for a portal or Identity system)

  All, we'll be moving to Comms Express in about a month and we currently have an Identity/access management solution working with Mess Express (6.1) and using the proxy auth url (http://webmail.domain.com/?user=user1&proxy-auth=.....) We can pass the proxy auth from the access manager (SiteMinder) to ME and people can login into their Webmail (ME) without incident.
  However UWC is a different animal. Does anyone know how to get a proxy auth url string for UWC to accomplish the same thing? I know UWC essentially does a proxy auth for messaging and calenar already, so we have to find something that does it to pass it to messaging and calendar to get the Comms Exprees interface.
  We will be using the following version:
  Sun Java(tm) System Messaging Server 6.2-4.03 (built Sep 22 2005)
  libimta.so 6.2-4.03 (built 04:37:42, Sep 22 2005)
  And UWC is at 118540-23
  Any help would be appreciated.

  pruebitas wrote:
  Before, when we had Messenger Express, we have a web (like a portal) where users used to fill in a form with the user and the passwd to connect to the messenger express.
  Now, with the UWC, is not posible to access the same way. I'm a bit lose with this.UWC provides Acess Manager Single-Sign-On (SSO). So if your web-application was to set an access-manager SSO cookie when the user logged in and redirected the user to the UWC login page, they would be automatically logged in (assuming you had configured UWC to allow access manager authentication).
  For information on how to set access manager SSO cookies in web-interfaces, please refer to the access manager manuals on docs.sun.com.
  Regards,
  Shane.

• Swupdate spamming proxy -- auth req'd

  We set up proxy authentication the other day to better track our users. The proxy/firewall is an Astaro Security Gateway V7.
  I'm getting the following messeage in our access logs
  2009:12:22-09:33:59 navmail httpproxy[4564]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="GET" srcip="10.10.210.2" user="" statuscode="407" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction=" ()" size="2283" time="0 ms" request="0xb29038d0" url="http://swscan.apple.com/content/catalogs/others/index-leopard.merged-1.suc atalog" exceptions="" error=""
  it repeats this several times per second, which my proxy doesn't like much at all.
  "10.10.210.2" is the OS X server IP. I'm guessing the "swscan.apple.com" url is for software updates. I have input the proxy information, with authentication credentials, in System Preferences. Nonetheless, the "user" field is blank and the status code is 407 (proxy auth req'd.) Is there somewhere else where I have to set this information?
  Why is it retrying the request so aggressively? My firewall's CPU is pegged. Drops to 10% utilization when I shut the server down.
  That's another thing. If I turn off the software update service, the messages in the access log keep coming. I have to actually shut the whole thing down to get them to stop.
  Any ideas? Is this what I think it is? (software update?)
  thanks!

  We set up proxy authentication the other day to better track our users. The proxy/firewall is an Astaro Security Gateway V7.
  I'm getting the following messeage in our access logs
  2009:12:22-09:33:59 navmail httpproxy[4564]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="GET" srcip="10.10.210.2" user="" statuscode="407" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction=" ()" size="2283" time="0 ms" request="0xb29038d0" url="http://swscan.apple.com/content/catalogs/others/index-leopard.merged-1.suc atalog" exceptions="" error=""
  it repeats this several times per second, which my proxy doesn't like much at all.
  "10.10.210.2" is the OS X server IP. I'm guessing the "swscan.apple.com" url is for software updates. I have input the proxy information, with authentication credentials, in System Preferences. Nonetheless, the "user" field is blank and the status code is 407 (proxy auth req'd.) Is there somewhere else where I have to set this information?
  Why is it retrying the request so aggressively? My firewall's CPU is pegged. Drops to 10% utilization when I shut the server down.
  That's another thing. If I turn off the software update service, the messages in the access log keep coming. I have to actually shut the whole thing down to get them to stop.
  Any ideas? Is this what I think it is? (software update?)
  thanks!

• Report printing failure when not logged on as admin

  Using Business object XI,  I have a VB 2005 .NET app that works fine when logged on with admin privileges, but fails otherwise. I've investigated and traced this down a single line of code which is the  rep.PrintOut function.
  The debug error report is shown at the end of this message.
  Can anyone suggest a solution to this issue? Is it just a permissions problem and if so what permissions are required?
  Thanks,
  Steve
  System.Runtime.InteropServices.COMException (0x80047E5D): Failed to open the connection.
     at CRAXDRT.ReportClass.PrintOut(Object promptUser, Object numberOfCopy, Object collated, Object startPageN, Object stopPageN)
     at WinLabel.Form1.PrintManifestLabels(String strCust)
     at WinLabel.Form1.Button1_Click(Object sender, EventArgs e)
     at System.Windows.Forms.Control.OnClick(EventArgs e)
     at System.Windows.Forms.Button.OnClick(EventArgs e)
     at System.Windows.Forms.Button.OnMouseUp(MouseEventArgs mevent)
     at System.Windows.Forms.Control.WmMouseUp(Message& m, MouseButtons button, Int32 clicks)
     at System.Windows.Forms.Control.WndProc(Message& m)
     at System.Windows.Forms.ButtonBase.WndProc(Message& m)
     at System.Windows.Forms.Button.WndProc(Message& m)
     at System.Windows.Forms.Control.ControlNativeWindow.OnMessage(Message& m)
     at System.Windows.Forms.Control.ControlNativeWindow.WndProc(Message& m)
     at System.Windows.Forms.NativeWindow.Callback(IntPtr hWnd, Int32 msg, IntPtr wparam, IntPtr lparam)

  Hello Steve,
  Thanks for the feedback.  Since this appears to be a permissions issue there's one other thing to check.  When the merge modules are installed there's often an option to install for "me" or for "everyone."  Make sure the files are being deployed for everyone.
  Here are links to some RDC and .NET documents as well as the Statement of Direction for the RDC. I'm not sure if you'll actually be able to pull them up though. Some documents require a login for the Service Market Place in order to view them.  Hopefully these will work without logging in.
  [Using the Report Designer Component in Microsoft Visual Studio .NET|https://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/f0751a7f-a81d-2b10-55a0-e6df0e1bab6d]
  [SAP Note 1217809 - Is the Report Designer Component supported in the .NET development environment?|https://bcp.wdf.sap.corp/sap/sapnotes/display/0001217809]
  [Crystal Reports Report Designer Component - Statement of Direction|https://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/80bd35e5-c71d-2b10-4593-d09907d95289]
  I hope you're able to track down the permissions issue!
  Sincerely,
  Dan Kelleher

• Auth.log - Rejected send message, 2 matched rules; type="method_call"

  Hi,
  i'm checking the /var/log/auth.log and I found out that there is this error message
  Jun 9 20:19:56 localhost polkitd(authority=local): Registered Authentication Agent for unix-session:/org/freedesktop/ConsoleKit/Session2 (system bus name :1.23 [/usr/bin/gnome-shell], object path /org/freedesktop/PolicyKit1/AuthenticationAgent, locale en_US.UTF-8)
  Jun 9 20:19:57 localhost dbus[513]: [system] Rejected send message, 2 matched rules; type="method_call", sender=":1.23" (uid=1000 pid=861 comm="/usr/bin/gnome-shell ") interface="org.freedesktop.DBus.Properties" member="GetAll" error name="(unset)" requested_reply="0" destination=":1.1" (uid=0 pid=654 comm="/usr/sbin/console-kit-daemon --no-daemon ")
  Jun 9 20:19:57 localhost dbus[513]: [system] Rejected send message, 2 matched rules; type="method_call", sender=":1.23" (uid=1000 pid=861 comm="/usr/bin/gnome-shell ") interface="org.freedesktop.DBus.Properties" member="GetAll" error name="(unset)" requested_reply="0" destination=":1.1" (uid=0 pid=654 comm="/usr/sbin/console-kit-daemon --no-daemon ")
  Jun 9 20:19:57 localhost dbus[513]: [system] Rejected send message, 2 matched rules; type="method_call", sender=":1.23" (uid=1000 pid=861 comm="/usr/bin/gnome-shell ") interface="org.freedesktop.DBus.Properties" member="GetAll" error name="(unset)" requested_reply="0" destination=":1.1" (uid=0 pid=654 comm="/usr/sbin/console-kit-daemon --no-daemon ")
  if think the problem is in /etc/dbus-1/system.conf
  <deny send_type="method_call"/>
  I'm tempted to change this to allow,  but I won't as long as I don't understand why this deny-rule is implemented.
  Last edited by miky76 (2012-06-09 20:41:06)

  That deny rule is the default. Things in /etc/dbus-1/system.d override it. There's a ConsoleKit.conf file in there that describes what interaction ConsoleKit actually allows.
  That said, ConsoleKit.conf also denies this access:
  <deny send_destination="org.freedesktop.ConsoleKit"
  send_interface="org.freedesktop.DBus.Properties" />
  I don't know why this is denied - most likely it's to prevent private data from being stolen from console-kit-daemon in this way. I don't see any such private data stored in properties on ConsoleKit, though:
  $ dbus-send --print-reply --system --dest=org.freedesktop.ConsoleKit /org/freedesktop/ConsoleKit/Session1 org.freedesktop.DBus.Introspectable.Introspect
  method return sender=:1.5 -> dest=:1.14 reply_serial=2
  string "<!DOCTYPE node PUBLIC "-//freedesktop//DTD D-BUS Object Introspection 1.0//EN"
  "http://www.freedesktop.org/standards/dbus/1.0/introspect.dtd">
  <node>
  <interface name="org.freedesktop.DBus.Introspectable">
  <method name="Introspect">
  <arg name="data" direction="out" type="s"/>
  </method>
  </interface>
  <interface name="org.freedesktop.DBus.Properties">
  <method name="Get">
  <arg name="interface" direction="in" type="s"/>
  <arg name="propname" direction="in" type="s"/>
  <arg name="value" direction="out" type="v"/>
  </method>
  <method name="Set">
  <arg name="interface" direction="in" type="s"/>
  <arg name="propname" direction="in" type="s"/>
  <arg name="value" direction="in" type="v"/>
  </method>
  <method name="GetAll">
  <arg name="interface" direction="in" type="s"/>
  <arg name="props" direction="out" type="a{sv}"/>
  </method>
  </interface>
  <interface name="org.freedesktop.ConsoleKit.Session">
  <method name="SetIdleHint">
  <arg name="idle_hint" type="b" direction="in"/>
  </method>
  <method name="GetIdleSinceHint">
  <arg name="iso8601_datetime" type="s" direction="out"/>
  </method>
  <method name="GetIdleHint">
  <arg name="idle_hint" type="b" direction="out"/>
  </method>
  <method name="Unlock">
  </method>
  <method name="Lock">
  </method>
  <method name="Activate">
  </method>
  <method name="GetCreationTime">
  <arg name="iso8601_datetime" type="s" direction="out"/>
  </method>
  <method name="IsLocal">
  <arg name="local" type="b" direction="out"/>
  </method>
  <method name="IsActive">
  <arg name="active" type="b" direction="out"/>
  </method>
  <method name="GetLoginSessionId">
  <arg name="login_session_id" type="s" direction="out"/>
  </method>
  <method name="GetRemoteHostName">
  <arg name="remote_host_name" type="s" direction="out"/>
  </method>
  <method name="GetDisplayDevice">
  <arg name="display_device" type="s" direction="out"/>
  </method>
  <method name="GetX11DisplayDevice">
  <arg name="x11_display_device" type="s" direction="out"/>
  </method>
  <method name="GetX11Display">
  <arg name="display" type="s" direction="out"/>
  </method>
  <method name="GetUnixUser">
  <arg name="uid" type="u" direction="out"/>
  </method>
  <method name="GetUser">
  <arg name="uid" type="u" direction="out"/>
  </method>
  <method name="GetSessionType">
  <arg name="type" type="s" direction="out"/>
  </method>
  <method name="GetSeatId">
  <arg name="sid" type="o" direction="out"/>
  </method>
  <method name="GetId">
  <arg name="ssid" type="o" direction="out"/>
  </method>
  <signal name="Unlock">
  </signal>
  <signal name="Lock">
  </signal>
  <signal name="IdleHintChanged">
  <arg type="b"/>
  </signal>
  <signal name="ActiveChanged">
  <arg type="b"/>
  </signal>
  <property name="idle-hint" type="b" access="readwrite"/>
  <property name="is-local" type="b" access="readwrite"/>
  <property name="active" type="b" access="readwrite"/>
  <property name="x11-display-device" type="s" access="readwrite"/>
  <property name="x11-display" type="s" access="readwrite"/>
  <property name="display-device" type="s" access="readwrite"/>
  <property name="remote-host-name" type="s" access="readwrite"/>
  <property name="session-type" type="s" access="readwrite"/>
  <property name="user" type="u" access="readwrite"/>
  <property name="unix-user" type="u" access="readwrite"/>
  </interface>
  </node>
  Note those properties at the end of that list, which are the same things you can learn by running ck-list-session.
  If you want to change the deny to allow, you may as well do it in the ConsoleKit.conf line, so it's specific to this usage, rather than allowing any method call in the world called through dbus.
  FWIW, I can reproduce this same error, trying to do it "by hand", though I don't use GNOME, as you do:
  $ dbus-send --print-reply --system --type=method_call --dest=org.freedesktop.ConsoleKit /org/freedesktop/ConsoleKit/Session1 org.freedesktop.DBus.Properties.GetAll string:org.freedesktop.ConsoleKit.Session
  Error org.freedesktop.DBus.Error.AccessDenied: Rejected send message, 2 matched rules; type="method_call", sender=":1.17" (uid=1000 pid=13892 comm="dbus-send --print-reply --system --type=method_cal") interface="org.freedesktop.DBus.Properties" member="GetAll" error name="(unset)" requested_reply="0" destination="org.freedesktop.ConsoleKit" (uid=0 pid=751 comm="/usr/sbin/console-kit-daemon --no-daemon ")

• I restored my Macbook Pro and now I can't log in as Admin - it says there is an error with FileVault and I don't have access - plz help!  thank you.

  I had to restore my Macbook Pro from Time Capsule yesterday and now when I go to log in as my usual Admin, it says there is a FileVault error and my access is denied.  I created another temporary Admin acct, but everything I had on my desktop, etc is "gone"  I can look up the "drive' or wahtever it's called, but I can't access any of it.  All I want to do is log back in as my usual self (the regular Admin) - plz help!  Thanks.   p.s. I"m (obviously) not that computer savvy!

  Triple-click the line below to select it:
  /System/Library/CoreServices/Directory Utility.app
  Rght-click or control-click the highlighted text and select
  Services ▹ Open
  from the contextual menu.* The application Directory Utility will open.
  In the Directory Utility window, click the lock icon and authenticate. Select the Directory Editor tool in the toolbar. Select Users from the Viewing menu in the toolbar, if not already selected. Select the affected user account in the list. On the right is a list of properties and values. Select the property "HomeDirectory" and delete it by clicking the minus-sign icon directly below the property list. There are two such icons in the window. You want the one on the right, not the one on the left.
  CAUTION: Do not click the minus-sign icon on the left, below the user list.
  Then click the Save button in the lower right corner of the window. Quit Directory Utility.
  CAUTION: There is no "undo" in Directory Utility. If you make a mistake and delete something in the Directory Editor that should not have been deleted, restore your whole system from a backup and start over. I have no other help to offer in that case.
  Try again to log in as the affected user. If you can log in, you should find a file in the home folder with the name of the user and the filename extension "sparseimage" or "sparsebundle". Double-click that file. A disk image should open. Copy your files from that disk image to restore them.
  I strongly suggest that you deactivate legacy FileVault in the Security & Privacy preference pane, then log out and log back in. Consider activating FileVault 2 if you want that kind of security.
  *If you don't see the contextual menu item, copy the selected text to the Clipboard (command-C). Open a TextEdit window and paste into it (command-V). Select the line you just pasted and continue as above.

• Problem logging in to admin account on Apex 3.1

  I have just upgraded to Apex 3.1 and I'm getting an error when logging on as admin.
  After I click log in I get:
  Line: 35
  Char: 1
  Error: Object expected
  Code: 0
  Line 35 is : "<td colspan="1" rowspan="1" align="left"><input type="button" value="Login" id="P10_LOGIN" onclick="doSubmit('LOGIN_BUTTON');" /></td></tr>"
  In fact there is an error on the page as soon as I open the admin log in screen.
  I suspect that there is something missing from the images folder.

  Did you remember to run the apxldimg.sql script if you're using 11g or XE?
  http://download.oracle.com/docs/cd/E10513_01/doc/install.310/e10496/post_inst.htm#BHAJIGDA
  Or copy the image folder if you're using the HTTP server?
  http://download.oracle.com/docs/cd/E10513_01/doc/install.310/e10496/post_inst.htm#CHDFJBFB
  That's where the javascript files would come from.

• Logged in as admin but getting message I don't have admin rights

  I just upgrade to Lion.  I am logged in as the admin user.  When I try to download a game from a website I receive this message:   "You do not have adequate operating system rights to install software on this machine.  Please contact your system administrator for help."
  In accounts it says I am logged in  with "Admin"  under my name.
  There is a greyed out checkbox that is selected that says Allow user to administer this computer.
  I don't know what to do?

  I had the same problem but contacted customer support for the games I use (Big Fish) and they were brilliant.  Sent me a link to download their new BETA version of Game Manager for Lion.
  Try contacting whoever you are downloading your games from.

• Annoying failures and reminders when not logged in as admin

  how can i stop apple software update (asu) from constantly bugging me when i'm not logged in as an admin?
  i like the automatic check (noone likes updating everything manually) but every apple program fails to install unless you're an admin. it would be much better if asu checked before it looked for updates, or let people know there are updates but they cannot be installed unless they are logged in as admin.
  what's worse is if it downloads an update and the install fails because you're not an admin, asu downloads the whole file again when you do log in as admin. these files should be cached in a temporary folder in asu's 'program files' folder until the install is successful or a newer version is available.

  freakin' awesome! of course, i never saw that scheduled task because it only shows when logged in as an admin, and apple is the only program i have that has its schedule there rather than in its own interface.
  now that i have seen this it seems stupid that so many programs don't have their updates scheduled there.
  i have not tested it as such but i have a task in my limited account that only runs when i'm logged on so i know that this will work. i also changed the schedule from a set time weekly to ‘at logon’ so it will actually get a chance to run.
  edit by online?:
  the scheduled task sets asu to run in the SYSTEM account but then asu seems to launch the installers with the locally logged on user's credentials, so this fixed my problem but not the underlying cause.

• In regard to Time Machine. I have two accounts one is an admin account, the other is a standard user account. When I implement Time Machine when I am logged into the Admin account, is the standard user also backed up?

  in regard to Time Machine.
  I have two accounts on one Macbook Pro running OS 10.6.8. One account is an admin account, the other is a standard user account.
  When I initially implemented Time Machine I was logged into the Admin account. I allowed Time Machine to erase the drive and backup the computer. Is the standard user account contents also backed up?
  Also after I completed the Time Machine backup session, I turned off Time Machine and removed the portable hard drive. I plan to return in to Time Machine after being away from the portable hard drive for approximately a month. After a short interruption of approximately one month, when the Macbook Pro is reconnected and Time Machine is turned back on, will Time Machine create a new instance of a backup? WIll the back up contain the standard user account changes?

  Time Machine backs up by default all the user accounts.
  When you reconnect the backup drive after one month, Time Machine will do an incremental backup and it might take a while minutes to hours depending on how much has been changed. With a gap of a month, Time Machine will have to do a lengthier than normal survey of both drives to see what has changed, so it might take some time preparing for the backup. The backup will include everything that has changed since the previous one.

• MDT 2012 - Application Bundle Install Issues- Logged in as Admin randomly between reboots

  Hi Everyone,
   We are on MDT 2012 / WDS... Moving to SCCM soon but not soon enough.
  A new problem started in our environment and I'm not sure if it's a networking, storage, or wds server / settings issue.
  The OS deployment happens completely fine, but during the application install phase (Application Bundle) if the application requires a reboot sometimes the deployment does not continue with the rest of the applications, will just stop the process and be
  logged in as administrator. 
  I've checked the normal deployment logs - bdd.log and there is no errors, it shows the last app install but then just drops off. Almost like the machine is not reconnecting to the deployment share to continue installations after the reboot.
  This is very random and does not happen on the same app or just one machine model, it's almost like a networking hiccup or something else. The apps exist on the deployment share which is on a 2008 VM with Nas storage.
  Any help is appreciated, other logs to look at or if anyone else has seen similar etc...
  Thank You!

  Thanks for the help guys, I believe I'm all set now. Basically removed the reboot from the problematic app and put the app at the end of the app bundle. 
  This one was strange... It was the App-V client which I originally did not have a reboot and was the very first app installed in the bundle. With no reboot, I noticed some machines installed the app-v client then would skip all the other apps and move on
  to the next phase, which is why I added a reboot.
  After adding the reboot I started seeing the problem I posted above logged in as admin. So ultimately removed the reboot and added it as the last app, which seems to be working.
  Thanks Again.

• HTTP Basic Auth and Proxy Auth

  Hi,
  i have a problem with the authentication against a proxy server and against a content provider. At first I have to authenticate against the proxy to get "free internet". The next step is to authenticate against the content provider to get a html or xml file.
  The following source code runs very good in Eclipse, i.e. as JUnitTest. But If I execute the same code within a weblogic server, I will get an error (not authenticated). I believe I get this message from the content provider and not from the proxy because If I test this code within the weblogic server and with no authentication (i.e. google needs no authentication), I will get a valide xml/html file.
  StringBuffer sb = new StringBuffer();
            SimpleAuthenticator simple = new SimpleAuthenticator("joeuser","a.b.C.D"); //from openbook
            Authenticator.setDefault(simple);
            String strUrl = "http://www.rahul.net/joeuser/";
            URL url = null;
            try {
                 url = new URL(strUrl);
            } catch (MalformedURLException e) {
                 // TODO Auto-generated catch block
                 e.printStackTrace();
            URLConnection conn = null;
            InetSocketAddress addr = new InetSocketAddress("proxy.domain",8080);
            Proxy proxy = new Proxy(Proxy.Type.HTTP, addr);
            try {
                 conn = url.openConnection(proxy);
            } catch (IOException e) {
                 // TODO Auto-generated catch block
                 e.printStackTrace();
            String proxyStr = "username" + ":" + "passwordl";
            String encoded = new String(Base64.encodeBase64(proxyStr.getBytes()));
            conn.setRequestProperty("Proxy-Authorization", "Basic " + encoded);
            // get http status code which is located in header field 0
            String status = conn.getHeaderField(0);
            if (status.contains("200")) {
                 BufferedReader in = null;
                 try {
                      in = new BufferedReader(new InputStreamReader(conn.getInputStream(),
                                "ISO-8859-1"));
                      String inputLine;
                      while ((inputLine = in.readLine()) != null) {
                           sb.append(inputLine);
                      in.close();
                 } catch (UnsupportedEncodingException e) {
                      // TODO Auto-generated catch block
                      e.printStackTrace();
                 } catch (IOException e) {
                      // TODO Auto-generated catch block
                      e.printStackTrace();
            else {
                 System.out.println("Error");
            System.out.println(sb.toString());
  public class SimpleAuthenticator
  extends Authenticator
       private String username,
       password;
       public SimpleAuthenticator(String username,String password)
            this.username = username;
            this.password = password;
       protected PasswordAuthentication getPasswordAuthentication()
            return new PasswordAuthentication(
                      username,password.toCharArray());
  Does somebody know a solution? I need the authentication against proxy and content provider in "one application".
  Thank you very much,
  André

  I typically have used Apache Commons HttpClient for anything but trivial URL connections, and especially when combining both basic auth and proxy auth. When you use it, be aware of the "preemptive authentication" flag. One server I worked with didn't send the correct parameters back on particular requests, so I had to turn on this flag to get it to work.

• Session logs for shop admin

  Hi Team,
  I need some inputs and help.
  We are using CRM ISA 6.0 SP06. We are using the webshop functionality.
  We currently analyze the errors in the webshop via the session logs which we have configured.
  Now, when we have done the same setup for shop admin, we are unable to see any session logs.
  Session logs for shop admin are not working. Session logs for webshop works and we are able to view the same.
  We have already done the below settings in http://host:port/shopadmin/admin
  XCM -
  appinfo:True
  logfiledownload:True and restart of the J2EE engine.
  We get the below error when we check for the logs:
  Application error occurred during request processing.
    java.lang.Exception: java.io.FileNotFoundException: /session-2010-2-25_13-10_(J2EE967404400)ID1521894650DB00028780023514142548End.log (No such file or directory (errno:2))
  Exception id: [0017A477401000660000016A00005E840004806C842020FC]
  Please let me know if we are missing something.
  Thanks
  Warm Regards,
  Rajeet

  For VPN session, it's best to log the following syslog messages:
  For WebVPN:
  Syslog#: 716001 - user connects:
  http://www.cisco.com/en/US/docs/security/asa/asa82/system/message/logmsgs.html#wp4776913
  Syslog#: 716002 - user disconnects:
  http://www.cisco.com/en/US/docs/security/asa/asa82/system/message/logmsgs.html#wp4776918
  For IPSec VPN Client:
  Syslog#: 611101 - user connects:
  http://www.cisco.com/en/US/docs/security/asa/asa82/system/message/logmsgs.html#wp4774570
  Syslog#: 611102 - user authentication fails:
  http://www.cisco.com/en/US/docs/security/asa/asa82/system/message/logmsgs.html#wp4774576
  Syslog#: 611103 - user logoff:
  http://www.cisco.com/en/US/docs/security/asa/asa82/system/message/logmsgs.html#wp4774581