Incomplete "authentication level" property support on iOS/Mac clients

Similar Messages

• When will WebGL be supported on iOS Mobile Safari?

  In our enterpirse we have developed a WebGL application using Three.js framework. Now, our customer wants it to run on Apple iPad. The problem is that we have found out that WebGL is only supported on iOS by using iAd. So we are wondering when will WebGL be supported on iOS mobile Safari to decide what to do.
  Thanks!

  Dunno, it's a bit off topic, but there's no way that an emulated ARM build of flash would even run at all on iOS at the current point, let alone 7 years ago.
  It's not that you can't build good flash, it's just that people don't. As you've said, you can use a dumbed down, non-extensible Adobe GUI to spit out javascript, and it'll tank just the same. Adobe Photoshop used to be the most blazingly fast application on the Mac. Adobe are a different story these days. Flash is a resource hog, whereas javascript is outright inefficient at moving graphics around, although it is improving substantially.
  Flex, on the other hand, is open source.
  Flash was actually created by Adobe. Adobe owned the vector graphics bezier patents, so Macromedia couldn't build a GUI editor for their Shockwave platform, which was sort of C++ territory, for making CD ROMS. Not used a lot because of the manual type of input required.
  Macromedia bought flash as a cheapo animation program with some strange usability ideas (such as applying boolean intersects to overlapping objects without asking you), but combining this legally-released and patent-free GUI editor with shockwave export capabilities made shockwave accessible to non-technical users. Who would pile on loads of effects, run it natively as an app to test, and then deploy it in a web plugin which runs far less efficiently. That's not exactly Flash's fault, but the fact that they've just ported it wholesale a whole bunch of times without a proper human rewrite makes for evil performance, a problem you don't have with javascript. You don't have to get what Adobe want to give you as a binary, like it or lump it.
  iOS ***** in many ways, the fact that you have to reverse engineer everything and crack if you want to get even the most basic level of customisability and extensibility that you would expect on any decent computer is genuinely frightening. That device could also be up to absolutely anything behind your back, and you'd be none the wiser staring at the GUI. Just trust apple. Or ask somebody who has been prodding around in there with a sharp screwdriver.
  Neither Adobe nor Apple have an entirely ideal character for the relationship to have worked. Adobe own a shedload of patents when it comes to the maths behind image processing technology. Adobe Postscript is built into OSX, comes from NeXT. Mr Jobs lost his rag with Adobe when Adobe forced Apple programmers to work on the code related to PostScript in some sort of high security bunker, and wouldn't let them take away anything but binaries. This made the development work a massive hassle. The Apple programmers also suggested that a lot of the code was hidden out of shame rather than out of protectionism. Adobe's real strength is legalised monopolies on basic image processing technology, they've owned it since they turned over Paintbox's patents on alpha blending of pixels.
  Been using Apple & Adobe products as my day to day workhorse stuff for over 20 years. Adobe used to be just as bad as the other software firms for generally mean behaviour, but they did write hand-optimised C++, and every year they'd raise the bar with features that you actually need. Each new version would save you weeks in a month.
  Post-internet, whole different ballgame. Different setup, $bns at stake now. Land grab for the new ultra-consumerised computer technology. The good thing about consumers is that you can subject them to abuse, they get a yea or nay decision. Do you want what we're giving you?
  These sorts of computer industry companies used to be toolmakers for the graphics industry.
  Now they're supplying the communications technology for everything. Consumables plugged into every industry in the world. That sort of power is a corrupting influence.

• Authentication on local SQL Server 2008 R2 Express server fails after Lan Manager authentication level changed to "Send NTLMv2 response only\refuse LM & NTLM"

  I'm upgrading my organisation's Active Directory environment and I've created a replica of our environment in a test lab.
  One medium-priority application uses a SQL server express installation on the same server that the application itself sits on.
  The application itself recently broke after I changed the following setting in group policy:
  "Send LM & NTLM - use NTLMv2 session security if negotiated"
  to
  "Send NTLMv2 response only\refuse LM & NTLM"
  The main intent was to determine which applications will break if any - I was very surprised when troubleshooting this particular application to find that the issue was actually with SQL Server express itself.
  The errors I get are as follows (note that there are hundreds of them, all the same two):
  Log Name:      Application
   Source:        MSSQL$SQLEXPRESS
   Date:          1/19/2015 2:53:28 PM
   Event ID:      18452
   Task Category: Logon
   Level:         Information
   Keywords:      Classic,Audit Failure
   User:          N/A
   Computer:      APP1.test.dev
   Description:
   Login failed. The login is from an untrusted domain and cannot be used with Windows authentication. [CLIENT: 127.0.0.1]
   Event Xml:
   <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
     <System>
       <Provider Name="MSSQL$SQLEXPRESS" />
       <EventID Qualifiers="49152">18452</EventID>
       <Level>0</Level>
       <Task>4</Task>
       <Keywords>0x90000000000000</Keywords>
       <TimeCreated SystemTime="2015-01-19T22:53:28.000000000Z" />
       <EventRecordID>37088</EventRecordID>
       <Channel>Application</Channel>
       <Computer>APP1.test.dev</Computer>
       <Security />
     </System>
     <EventData>
       <Data> [CLIENT: 127.0.0.1]</Data>
       <Binary>144800000E00000017000000570053004C004400430054004D00540052004D0053005C00530051004C0045005800500052004500530053000000070000006D00610073007400650072000000</Binary>
     </EventData>
   </Event>
  Log Name:      Application
   Source:        MSSQL$SQLEXPRESS
   Date:          1/19/2015 2:53:29 PM
   Event ID:      17806
   Task Category: Logon
   Level:         Error
   Keywords:      Classic
   User:          N/A
   Computer:      APP1.test.dev
   Description:
   SSPI handshake failed with error code 0x8009030c, state 14 while establishing a connection with integrated security; the connection has been closed. Reason: AcceptSecurityContext failed. The Windows error code indicates the cause of failure.  [CLIENT:
  127.0.0.1].
  Event Xml:
   <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
     <System>
       <Provider Name="MSSQL$SQLEXPRESS" />
       <EventID Qualifiers="49152">17806</EventID>
       <Level>2</Level>
       <Task>4</Task>
       <Keywords>0x80000000000000</Keywords>
       <TimeCreated SystemTime="2015-01-19T22:53:29.000000000Z" />
       <EventRecordID>37089</EventRecordID>
       <Channel>Application</Channel>
       <Computer>APP1.test.dev</Computer>
       <Security />
     </System>
     <EventData>
       <Data>8009030c</Data>
       <Data>14</Data>
       <Data>AcceptSecurityContext failed. The Windows error code indicates the cause of failure.</Data>
       <Data> [CLIENT: 127.0.0.1]</Data>
       <Binary>8E4500001400000017000000570053004C004400430054004D00540052004D0053005C00530051004C004500580050005200450053005300000000000000</Binary>
     </EventData>
   </Event>
  All of the documentation that I have followed suggests that the errors are caused by incorrect SPN configuration- I figured that they were never correct and it has always failed over to NTLM in the test environment (I can't look at production - we couldn't
  replicate the setup due to special hardware and also RAM considerations), but only NTLMv2 has issues.
  So I spent some time troubleshooting this.  We have a 2003 forest/domain functional level, so our service accounts can't automatically register the SPN.  I delegated the write/read service principle name ACEs in Active Directory.  SQL Server
  confirms that it is able to register the SPN.
  So next I researched more into what is needed for Kerberos to work, and it seems that Kerberos is not used when authenticating with a resource on the same computer:
  http://msdn.microsoft.com/en-us/library/ms191153.aspx
  In any scenario that the correct username is supplied, "Local connections use NTLM, remote connections use Kerberos".  So the above errors are not Kerberos (since it is a local connection it will use NTLM).  It makes sense I guess - since
  it worked in the past when LM/NTLM were allowed, I don't see how changing the Lan Manager settings would affect Kerberos.
  So I guess my question is:
  What can I do to fix this? It looks like the SQL server is misconfigured for NTLMv2 (I really doubt it's a problem with the protocol itself...).  I have reset the SQL service or the server a number of times.  Also - all of my other SQL applications
  in the environment work.  This specific case where the application is authenticating to a local SQL installation is where I get the failure - works with LAN Manager authentication set to "Send LM & NTLM - use NTLMv2 session security if negotiated",
  but not "Send NTLMv2 response only\refuse LM & NTLM".
  Note also - this behaviour is identical whether I set the Lan Manager authentication level at the domain or domain controller level in Active Directory - I did initially figure I had set up some kind of mismatch where neither would agree on the authentication
  protocol to use but this isn't the case.

  Maybe your application doesn't support "Send NTLMv2 response only. Refuse LM & NTLM".
  https://support.software.dell.com/zh-cn/foglight/kb/133971

• Does Active directory support for linux/mac/ubuntu clients?

  Hello everyone,
  I am pretty new to Active directory and my company has few requirements which he need to achieve by implementing Microsoft Active directory. I tried reading some blogs/documents on google but was not able to get the clear understanding. So would request
  you all to please help me in getting the correct answers.
  1) Does AD supports linux/mac/ubuntu clients getting authenticated from it?
  2) Does AD supports root/non-root privilege login which is like admin/non-admin rights in windows for linux/mac/ubuntu?
  3) Does Password policy works well on linux/mac/ubuntu cleints?
  4) Does AD support auto-loading application after successful login in linux/mac/ubuntu clients? For eg: Logging into jabber client as soon as user logins IN.
  5) Can AD trace and log the authentication information for linux/mac/ubuntu clients?
  6) Does AD support rules based login for linux/mac/ubuntu clients?
  7) Do we have high availability in AD runing Active-Active?
  8) can we push patched/security policies via AD on linux/mac/ubuntu clients?
  9) Can we schedule crons for linux/mac/ubuntu clients via AD like we have task schedules set-up in Windows?
  10) Can linux/mac/ubuntu cleints be included part of GPO?
  11) Auto-backups or auto mapping of shared drives by AD on widnows/linux/mac/ubuntu cleints?
  12) Can we capture licenses etc(Server management) thing in AD.
  13) Does AD support communication over SSL.
  14) Does AD supports SSO authentication for linux/mac/ubuntu clients?
  Thanks guys in advance
  Regards
  Sam

  While I cannot speak for mac clients, there is a labour intensive method that allows linux distros to be able to connect to AD in a windows environment.  Take a look at 
  http://technet.microsoft.com/en-us/magazine/2008.12.linux.aspx
  for tips.  Please note, it was designed with the Fedora/Red Hat Core in mind, but ubuntu distro's will also work, you just need the appropriate packages.

• Unable to set a top-level property object

  Hey guys
  I've made a little sequence to fetch data from a XML file. In that XML file, there is some informations (entries) (IP addresses, port numbers, etc) about 4 different types of devices(sections are the devices names). The first section of the XML tells me the NAMES of the devices I have to configure. The type of each device is located in the entries of each device. Each device has its own information and I can have more than one device of a type. In teststand, I've created custom data types (containers with empty fields) for each type of device I need.
  I want to dynamically create the devices that the XML file tells me to configure as fileglobal variables and populate them with their own config informations (entries of the XML file). I'm creating new fileglobal of the type I want using PropertyObject step and I'm creating an alias of that fileglobal that I'm passing in parameter to a subsequence who's getting infos from XML. Here, everything is OK.
  The problem occurs when I want to configure 2 or more objects of the same type. At the SetProperty step (where i'm creating the fileglobal variable) teststand gives me the error:
  "Unable to set a top-level property object to another object. Error accessing item 'Parameters.DeviceToInitStruct'."
  Is there any ways to avoid that problem and creating to variable of the same type ?
  thanks

  Hi
  I finally got rid of that problem.
  Instead of using a PropertyObject.Clone step, I used a statement who's just copy the "MasterObject" into a "CloneObject" and i'm working with that copy. So the sequence can now create devices of the same type without any conflict with the first device.
  i'll post here a short example to show how i did... maybe it'll be useful for someone...
  regards

• How do I keep emails from being deleted on my iPhone 6? Emails get deleted from phone when I startup desktop computer and they are downloaded from sever. Is POP3 no longer supported on IOS 8.1?

  How do I keep emails from being deleted on my iPhone 6? Emails get deleted from phone when I startup desktop computer and they are downloaded from sever. Is POP3 no longer supported on IOS 8.1?

  Have you seen this?
  Using a POP account with more than one device - Apple Support
  A better solution is if your email provider uses IMAP. IMAP sync email folders between multiple devices. Meaning any device will receive the email, all sent email can be seen on the devices. If you delete email from one device the email is deleted from all the other devices. Check with your email provider to see if they offer IMAP services.
  If they do not your choices are to 1) configure email on the PC to keep Mail on the mail server or 2) change email providers to something like Gmail or Outlook.com (as examples). FWIW I use Cox IMAP email and fully sync email between a Win 8.1 Update 1 laptop, a Win 7 desktop, an iPad 4, an iPhone 4 and an iPhone 5S.

• CSS Level 2 Support for RGB Hex Abbreviation

  when creating a style sheet during the tutorial in
  Flash 8: Training from the Source, i abbreviated my hex
  colors as usual when i have repeating pairs (in this particular
  case #999 instead of #999999) and the publised Flash page would not
  display the correct color. it displayed black text instead of gray.
  after changing the #999 to the full #999999, the republished
  Flash page displayed the page correctly. I understand from the book
  Flash 8 does not support level 2 CSS, which includes more than my
  simple abbreviation issue.
  when do you (Adobe Flash Team) expect to incorporate CSS
  level 2 support into the product? is it supported by Flex 2, as I
  am not too familiar with that platform yet?
  thank you,

  Hi Mike,
  OHJ uses the ICE Browser, which we license from a company named ICESoft. It generally compares favorably with other Java-based browsers, although it is not as complete as a native browser such as IE or Firefox.
  There is a list of what is and is not supported in CSS:
  http://www.icesoft.com/developer_guides/icebrowser/htmlguide/featuresappendix3.html#86328
  We recently finally resolved the licensing issues that were holding us back from releasing a version of OHJ with JavaScript support. The current versions don't support JavaScript, but our next major release will.
  Depending on your needs, we also have OHW, which is a server based help system, that uses the client's native browser.
  Regards,
  Jeffrey Stephenson
  Oracle

• I am trying to download a free trial of photoshop for my macbook pro and it says there is an error and that the requirements for the new version is not supported for the mac I have. I have looked at the list of requirements but have no idea how to tell wh

  I am trying to download a free trial of photoshop for my macbook pro and it says there is an error and that the requirements for the new version is not supported for the mac I have. I have looked at the list of requirements but have no idea how to tell what I do and do not have?

  Apple Menu --> About this Mac.
  Mylenium

• Network security:LAN manager authentication level setting on GPO

  Hi,
  We have a requirement from project team to change the one of the security setting on default domain policy for all computers in domain. Below are the security setting which we need to modify.
  computer configuration-->windows settings-->security settings-->local policies-->security options-->
  Network security: LAN manager authentication level 
  this setting need to be changed to - Send LM & NTLM - use NTLMv2 session security if negotiated.
  The project team facing issue with Apache web server and they found the solution on below link.(we have tested this  by changing local group policy and this solution works as expected)
  https://www.sysaid.com/Sysforums/posts/list/9065.page 
  We need to know what is the impact after enabling this on domain computers.
  Need help on this to go-head on this.

  Hi,
  you have a weaker domain security overall. "
  LM Hash Generation 
  The algorithm introduces several weaknesses that attackers can exploit. First, all lowercase characters are set to uppercase, reducing the number of possible characters. Second, it splits a long, strong, password into two seven-character chunks.
  Both the LM and NTLM protocols operate essentially the same way; the only difference is the password hash.
  REF: The Most Misunderstood Windows Security Setting of All Time
  This post is provided AS IS with no warranties or guarantees, and confers no rights.
  ~~~
  Questo post non fornisce garanzie e non conferisce diritti

• Where can i download quicktime 7.5.5? A compatibility version gets downloaded but its not what I need. Im unable to open my ITUNES without the quicktime 7.5.5 upgrade or higher. Anything higher isnt supported by my mac ( OS X 10.5)

  where can i download quicktime 7.5.5? A compatibility version gets downloaded but its not what I need. Im unable to open my ITUNES without the quicktime 7.5.5 upgrade or higher. Anything higher isnt supported by my mac ( OS X 10.5)

  I had the same problem when re-installing my old iBook recently. You can find it here:
  http://support.apple.com/kb/DL27

• Will the iphone 3 support the ios 5 update?

  Will the iphone 3 support the ios 5 update?

  Sorry, the iPhone 3G is not compatible with iOS 5.
  iOS 4 2 1 is the highest it will go to...

• Apple usb superdrive is not supported on this mac

  I have an iMac using 10.9.2 and my cd drive is not working so I bought an external usb cd drive.  When I connect to my computer I get "The Apple USB SuperDrive is not supported on this Mac".
  How do I get it to be accepted?

  Use the Apple external SuperDrive on (almost) any Mac - Mac OS X Hints
  Does this work ?.

• IPhoto app is not supported on iOS 8??

  since  updated to iOS 8.1, my iPhoto app shows below warning

  iPhoto for iOS is no longer supported by iOS X and is no longer supported by Apple. These two Apple documents describe how to move on without iPhoto:
  Migrating from iPhoto for iOS to Photos on iOS 8
  Get help finding your Photos in iOS 8 or later
  the Photos app on the iPhone is replacing iPhoto and will be developed further by Apple as time goes on.  So tell Apple what iPhoto features you want in Photos via http://www.apple.com/feedback/iphoto.html

• Release 600, Level 11 (support pack SAPKGPAD11) vs Release 604, Level 03 (s

  Hi,
  We are moving into the SAP ECC enviroment and need to understand the difference between the 2 Support Packs Release 600, Level 11 (support pack SAPKGPAD11) vs Release 604, Level 03 (support pack SAPK-60403INEAAPPL).
  Can anyone give us an indication in terms of functionality what we should be looking out for? During the testing we already came across and issue regarding double invoicing but this was fixed with a OSS note.
  From a coding, functionality, intergration and process perspective,how do we know what the differences are? Is there a document that lists these difference as a quick comparison between the two releases.
  Thanks in advance

  Hi,
  There is lot of difference btween 2. ECC System with EHP4 (Release 604 Level 3), ECC package will be on 604 release and level represents the support pack level of 604 release. If your system is on this level then it means that your system is with Enhancement packages but if your ECC components are on release 600 then it is without Enhancement packages.
  Enhancement packages has been delivered a lot of new things like New GL etc. More information for what extra features ECC 6.0 with EHP4 has: can be checked on http://service.sap.com/erp-ehp.
  To take your system from 600 release to 604 release requires a lot of effort because you have to upgrade your system to bring at this release.
  Thanks
  Sunny

• Access composite level property in BPEL

  Hi,
     I have a composite level "auditLevel" property defined in composite.xml as given below. Can anyone suggest a way to access that property in BPEL process ?
  <composite name="SetInstanceTitle"
                 revision="1.0"
                 label="2015-04-12_18-52-43_897"
                 mode="active"
                 state="on"
                 xmlns="http://xmlns.oracle.com/sca/1.0"
                 xmlns:xs="http://www.w3.org/2001/XMLSchema"
                 xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"
                 xmlns:orawsp="http://schemas.oracle.com/ws/2006/01/policy"
                 xmlns:ui="http://xmlns.oracle.com/soa/designer/">
        <import namespace="http://xmlns.oracle.com/CompositeSamples/SetInstanceTitle/SetInstanceTitleWithCondition"
                location="SetInstanceTitleWithCondition.wsdl" importType="wsdl"/>
        <service name="setinstancetitlewithcondition_client_ep"
                 ui:wsdlLocation="SetInstanceTitleWithCondition.wsdl">
          <interface.wsdl interface="http://xmlns.oracle.com/CompositeSamples/SetInstanceTitle/SetInstanceTitleWithCondition#wsdl.interface(SetInstanceTitleWithCondition)"/>
          <binding.ws port="http://xmlns.oracle.com/CompositeSamples/SetInstanceTitle/SetInstanceTitleWithCondition#wsdl.endpoint(setinstancetitlewithcondition_client_ep/SetInstanceTitleWithCondition_pt)"/>
        </service>
       <property name="auditLevel" many="false">Off</property>
    <component name="SetInstanceTitleWithCondition" version="1.1">
      <implementation.bpel src="SetInstanceTitleWithCondition.bpel"/>
     </component>
  Thanks in advance,
  Saba

  Hi AnatoliAtanasov,
    Thank you for your reply.
  My requirement is to set composite instance title by retrieving SOA Audit Level settings in BPEL process.
  Need to set composite instance title If "auditLevel" is not "Off" or "Inherit".
  If I use this composite level property "<property name="auditLevel" many="false">Off</property>", it is getting reflected in EM Console. Also this property value get change if do auditLevel change from EM console.
  So I thought, I can use this property to control composite instance title setting in BPEL process dynamically.
  Please advise me any possible solution to achieve my requirement.
  Thanks in advance,
  Saba