Is ASA integration with ISE and RSA for 2 factor authentication a valid/tested design

Similar Messages

• Excel integration with Entry and Approval for SSM not working

  Iu2019m having trouble getting excel integrated with E&A for being able to enter large number of historic data points into a cube-built model u2013 Iu2019ve gone through all the docs several times and there is no good concrete explanation on how to do this. I keep getting the following error message:
  Error opening Excel Automation server can't create object. This can be caused by:
  1. - The application is not installed on your machine
  2. - The browser security does not support ActiveX scripts.
  3. - Your were prompted to run ActiveX and you said No, if that is the cause close all browser instances and reopen.
  However, I've done the following:
  -          Iu2019ve installed the excel add-in on both the server and my local machine, and Iu2019ve enabled the add-in part in Excel on my local machine.
  -          The browser security is definitely set to accept all active X scripts
  -          I am never prompted to run activeX when I select u201CHistorical Datau201D within entry/approval. I just get the above error message.
  -          Iu2019ve flushed cache and restarted listener several times.
  What am I missing? I donu2019t see it in any of the docs.
  Thanks!

  Robb,
  Looking at what you've done, there doesn't seem to be an obvious answer. The best suggestion I can make is to fill out a support ticket on this. There must be other factors at work here that will require a deeper look.
  Regards,
  Bob

• ISE and RSA token groups

  We have wireless  network using ISE and RSA to do the authenticaiton. There are two groups of RSA token users, one is with username
  Axxxx, the other Bxxxx.
  Now we try to differ the authentications for the two group. One permit, the other deny.
  I am wondering whether the ISE can do this or not.
  thanks,
  Han

  ISE 1.2 should work with RSA 8.1. Please do try it in a lab setup would probably qualify it as part of ISE 1.3.

• CRM 5.0 Integration with Twitter and facebook

  HI Experts,
  i am working with SAP CRM 5.0 version,
  My existing client want to set up SAP CRM with twitter and Facebook specially customor services ,
  Does SAP CRM 5.0 has tight integration with twitter and facebook ,
  if yes will you please share iinformation in terms of
  1)Effort Estimation :manpoer
  2)Costing details 
  Thanking you in advance
  Pravin shete

  @sherrysarath:  Could you share some documents to understand how standards works for this issue? And if there aren't standards requirements, could you share your custom solution.
  @pravin wipro : Could you explain what are your requirements?

• CWA with ISE and 5760

  Hi,
  we have an ISE 1.2 (Patch 5), two 5760 Controllers (3.3), one acting as Primary Controller (named WC7) for the APs and the other as Guest Anchor (named WC5).
  I have trouble with the CWA. The Guest is redirected and enters the correct credentials. After that, the CoA fails with error-cause(272) 4 Session Context Not Found. I have no idea why....
  aaa authentication login Webauth_ISE group ISE
  aaa authorization network cwa_macfilter group ISE
  aaa authorization network Webauth_ISE group ISE
  aaa accounting network ISE start-stop group ISE
  aaa server radius dynamic-author
  client 10.232.127.13 server-key 0 blabla
  auth-type any
  radius-server attribute 6 on-for-login-auth
  radius-server attribute 31 send nas-port-detail mac-only
  wlan test4guests 18 test4guests
  aaa-override
  accounting-list ISE
  client vlan 1605
  no exclusionlist
  mac-filtering cwa_macfilter
  mobility anchor
  nac
  no security wpa
  no security wpa akm dot1x
  no security wpa wpa2
  no security wpa wpa2 ciphers aes
  security dot1x authentication-list Webauth_ISE
  no shutdown
  wc5# debug aaa coa
  Feb 27 12:19:08.444: COA: 10.232.127.13 request queued
  Feb 27 12:19:08.444: RADIUS:  authenticator CC 33 26 77 56 96 30 58 - BC 99 F3 1A 3C 61 DC F4
  Feb 27 12:19:08.444: RADIUS:  NAS-IP-Address      [4]   6   10.232.127.11
  Feb 27 12:19:08.444: RADIUS:  Calling-Station-Id  [31]  14  "40f308c3c53d"
  Feb 27 12:19:08.444: RADIUS:  Event-Timestamp     [55]  6   1393503547
  Feb 27 12:19:08.444: RADIUS:  Message-Authenticato[80]  18
  Feb 27 12:19:08.444: RADIUS:   22 F8 CF 1C 61 F3 F9 42 01 E4 36 77 9C 9B CC 56            [ "aB6wV]
  Feb 27 12:19:08.444: RADIUS:  Vendor, Cisco       [26]  41
  Feb 27 12:19:08.444: RADIUS:   Cisco AVpair       [1]   35  "subscriber:command=reauthenticate"
  Feb 27 12:19:08.444: RADIUS:  Vendor, Cisco       [26]  43
  Feb 27 12:19:08.444: RADIUS:   Cisco AVpair       [1]   37  "subscriber:reauthenticate-type=last"
  Feb 27 12:19:08.444: RADIUS:  Vendor, Cisco       [26]  49
  Feb 27 12:19:08.444: RADIUS:   Cisco AVpair       [1]   43  "audit-session-id=0aea2001530f2e1e000003c6"
  Feb 27 12:19:08.444: COA: Message Authenticator decode passed
  Feb 27 12:19:08.444:  ++++++ CoA Attribute List ++++++
  Feb 27 12:19:08.444: 92FB84A0 0 00000001 nas-ip-address(600) 4 10.232.127.11
  Feb 27 12:19:08.444: 92FB87EC 0 00000081 formatted-clid(37) 12 40f308c3c53d
  Feb 27 12:19:08.444: 92FB8820 0 00000001 Event-Timestamp(445) 4 1393503547(530F2D3B)
  Feb 27 12:19:08.444: 92FB8854 0 00000001 reauthenticate-type(756) 4 last
  Feb 27 12:19:08.444: 92FB8888 0 00000081 audit-session-id(819) 24 0aea2001530f2e1e000003c6
  Feb 27 12:19:08.444: 92FB88BC 0 00000081 ssg-command-code(490) 1 32
  Feb 27 12:19:08.444:
  Feb 27 12:19:08.444:  ++++++ Received CoA response Attribute List ++++++
  Feb 27 12:19:08.444: 92FB84A0 0 00000001 nas-ip-address(600) 4 10.232.127.11
  Feb 27 12:19:08.444: 92FB87EC 0 00000081 formatted-clid(37) 12 40f308c3c53d
  Feb 27 12:19:08.444: 92FB8820 0 00000001 Event-Timestamp(445) 4 1393503547(530F2D3B)
  Feb 27 12:19:08.444: 92FB8854 0 00000001 reauthenticate-type(756) 4 last
  Feb 27 12:19:08.444: 92FB8888 0 00000081 audit-session-id(819) 24 0aea2001530f2e1e000003c6
  Feb 27 12:19:08.444: 92FB88BC 0 00000081 ssg-command-code(490) 1 32
  Feb 27 12:19:08.444: 92FB88F0 0 00000002 error-cause(272) 4 Session Context Not Found
  Feb 27 12:19:08.444:
  wc5#

  Reason for this are two bugs which prevent this from working:
  https://tools.cisco.com/bugsearch/bug/CSCul83594
  https://tools.cisco.com/bugsearch/bug/CSCun38344
  This is embarrassing because this is a really common scenario. QA anyone?
  So, with ISE and 5760 CWA is not working at this time. 

• DMS integration with PP and PS.

  Hi SAP PLM experts,
  I would like to know how mySAP PLM's DMS module  is integrated with PS and PP module.
  Any small scenario with T codes and configuration help is highly appriciated.
  If you guyz have any documents/materials for this question, please mail the same to sudhu03 at gmail dot com.
  Thanks in advance,
  S.Achar.

  It is only through the object linkwhich you provide.
  In the business perpective, we attach the contract documents, design drawings and other doucuments to the project for ready referance.
  You can create the DIR directly from PS transaction or you can create it in DMS and attach it to the Project.
  We do have the red lining to identify teh changes reqd in the document.

• Quality Center 11 (ALM) Query - Integration with Subversion and Jenkins

  Hi OHPCPaT Forum,
  Are there any restrictions to enabling the QC integration with Subversion and Jenkins when the QC server is a SaaS cloud instance? Is there any additional config I should be aware of?
  Thanks in anticipation

  Hi,
  Yes all the users are facing the issue. Please find more details for the issue.
  Currently we are upgrading Quality Center 10.0 to 11.0 with HP Enterprise Integration module for SAP applications. The project successfully upgraded from QC 10.0 to 11.0 but there are some error popup for the project for which Application Module and Enterprise Integration for SAP applications Version 2.6 was enabled
  Quality Center Details:
  HP Application Lifecycle Management 11.00
  ALM patch level: 07
  Quality Center 11.00 Enterprise Edition
  Component     Build
  OTA Client     11.0.0.6051
  User Interface     11.0.0.6051
  WebGate Client     11.0.0.6051
  Test Run Scheduler     11.0.0.6051
  Execution Flow     11.0.0.6051
  Site Administration Client     11.0.0.6051
  Extension Version     
  Enterprise Integration for SAP applications     2.6.0.3232
  Sprinter     11.0.0.6051
  Application Model     2.6.0.917
  Installation Steps followed:-
  1.Installed HP ALM
  2.Installed Patch Service Pack 2 (Patch 2,3,4)
  3.Installed Patch 6
  4.Installed Patch 7
  5.Installed the Extensions HP Enterprise Integration module for SAP applications using Extension Deployment Tool by following the steps provided in the Addin Page
  6.Created new project in HP ALM
  7.Login to the project (no issue)
  8.Enabled the Project Extensions
  9.Login to the project (able to access the project but error message is popup when we access Test plan and Defect module)
  Note: There is no error when we access the project for which the HP Enterprise Integration module for SAP applications EI not enabled. QC 11.0 is not integrated with any tools.
  Let me know is there any step we missed or we need to do any manual steps we need to do before enabling EI

• Exchange 2013 owa integration with ADFS and cooexistance with exchange 2007

  Team,
  I have successfully integrated adfs 3.0 and Exchange 2013 owa and ecp.  However, we have a coexistence environment with exchange 2007.  When you access owa, which then redirects you to adfs, sign-in, and then get redirected back to owa. If your
  mailbox is still within exchange 2007, you get a blank login page.  If you mailbox is in exchange 2013 then you successfully get the owa page for 2013.  The problem is that all exchange 2007 mailbox users get blank pages at login. So I have determined
  that exchange 2013 cas is not doing the service location lookup on the mailbox to determine if a redirect to the legacy owa address is needed.  Is there a configuration setting that I might be missing? Or does the integration with adfs and owa not support
  the much needed mailbox lookup for a coexistance environment?  A side note: if we enable FBA with owa, both login scenarios work just fine (legacy and new 2013). The legacy namespace has been created, and applied to the exchange 2007 urls.  

  Hi,
  Try using AD FS claims-based authentication with Outlook Web App and EAC
  http://technet.microsoft.com/en-us/library/dn635116(v=exchg.150).aspx
  Thanks,
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
  [email protected]
  Simon Wu
  TechNet Community Support

• LDAP integration with ISE

  We are doing an LDAP integration with ISE but we are getting following error. We are not able to identiry the problem when we tested the following scenirios.
  1. When we check with Anonymous access we are successful and we get the message “ Bind Successful to gluetest.systems.XXXX:3269”
  2. When we use the user name and password CN=GRHIIISEPOC,OU=,XXXX, DC=YYYY, DC=ADROOTTEST,DC=YYYY. We are not successful and we get the message “ Test Failed: Invalid Admin Credentials or Security Settings: Check Admin Username and Password and make the security settings are compatible with the server:”
  Please confirm is the user id what i am using is not having an admin preveliages or i am entered the parameters correctly.
  Thanks

  Did you use softerra or an ldap browser to pull the dn of this user account.
  Thanks
  Sent from Cisco Technical Support Android App

• My app store is not working after installing mavericks. When I open app store it repeatedly asking me to login with apple ID and to provide User name and Password for proxy authentication in a loop.I am a newbie to mac,Please help me.

  My app store is not working after installing mavericks. When I open app store it repeatedly asking me to login with apple ID and to provide User name and Password for proxy authentication in a loop.I am a newbie to mac,Please help me.

  Hmmmm... would appear that you need to be actually logged in to enable the additional menu features.
  Have you tried deletting the plists for MAS?
  This page might help you out...
  http://www.macobserver.com/tmo/answers/how_to_identify_and_fix_problems_with_the _mac_app_store
  Failing that, I will have to throw this back to the forum to see if anyone else can advise further.
  Let me know how you get on?
  Thanks.

• Coherence integration with oracle weblogic portal for Session management

  Could you please let me know how to configure coherence integration with oracle weblogic portal for Session management. Its very urgent. please help.

  Please take a look at the following web page -
  http://coherence.oracle.com/display/COH35UG/Coherence*Web+Session+Management+Module
  -Luk

• I just updated my Firefox browser to Firefox 8. I am a college student and practice with HTML and CSS for class assignments. The fonts in all my html documents are being overwritten online by your script typeface. How do I resolve this issue?

  I just updated my Firefox browser to Firefox 8. I am a college student and practice with HTML and CSS for class assignments. The fonts in all my html documents are being overwritten online by your script typeface. I did not have this issue in the older version. I use an iMAC running OS10.6.8. How do I resolve this issue?

  Starting with this, you have errors in your CSS code.
  body {
    margin-top: 0px;
    margin-right: 0px;
    margin-bottom: 0px;
    margin-left: 0px;
    color: 151515;
    font-family: "Gill Sans", "Gill Sans MT", "Myriad Pro", "DejaVu Sans Condensed", Helvetica, Arial, sans-serif;
    background-color: EFF5F8;
  body {
    margin:0;
    color: #151515;
    font-family: "Gill Sans", "Gill Sans MT", "Myriad Pro", "DejaVu Sans Condensed", Helvetica, Arial, sans-serif;
    background-color: #EFF5F8;
    font-size: 100%;
  Related links:
  Windows Chrome, why do my fonts look so bad? - Lee Green
  css3 - Bad font rendering Chrome - Stack Overflow
  Nancy O.

• Site list update not working with TED and Zenworks for Servers

  Product: Zenworks for Desktops 7Sp1 and Zenworks For Server/TED 7Sp1HP5
  Subject: Site list update not working with TED and Zenworks for Servers ,
  all on Linux
  Description: We have an exiting environment with 6 ZfS Servers and now we
  brought up a new Server for another location. I configured all same as on
  the other Server and the new one created all NAL-Apps at the new location.
  But in the Application Site list on the golden App is this Application
  missing. So I clicked on the Link up site list on the Distribution Screen
  in C1. On ApplicationSite list the App from the new location is missing.
  So I removed all and added the new from the new location and now i see all
  in the application site list.When I install an app on the client on the
  new location NAL is connecting alway th the same (wrong location-server
  and i get an msi error 1612 or id=53272 with path=\Wrong serverpath to
  file.
  I looked on the other tab on C1 at the golden app an I see the backlinks
  are going to all other servers without the new one. Software installation
  on other locations are ok
  Regards

  Andreas,
  I forgot to mention that you can also set the loging level on the Distributor and the Subscriber to 6. to do this at the Zenworks Server Management prompt type "setconsolelevel 6" if you want to capture this to the log file ted.log then use "setfilelevel 6"
  Next delete the Distribution from the Subscriber and then re-push the channel.
  What we are looking for here in the log is the creation of the object and the linking information about the gold object. it should look like this (not the failure part ;-))) )
  In this excerpt you will see the entry
  Golden App =
  This should be were the link is to
  You can check this both ways in the Golden App and in the Distributed Application.
  Here is a log from me that shows this info as an example of what you should be looking for.
  2008.05.29 03:35:41 [TED:Work Order In(yourserver.yes.com)] Receiving distribution: Creating new application failed,
  Subscriber Tree Name= YOUR-TREE,
  Subscriber DN = SUBSCRIBER_YOURSERVER.BRN.FL.SUBS.SUBSCRIBERS.ZSM. GRS.CBH,
  Golden App = SCRIPT-MS-HOTFIX.APP.BRN.ZENGOLD.GRS.CBH,
  Attempted AppName = SCRIPT-MS-HOTFIX.APP.BRN.HAVERHI.PALM.FL.CBH,
  error message: Failed creating SCRIPT-MS-HOTFIX.APP.BRN.HAVERHI.PALM.FL.CBH. With error message: Setting the trustee for BRN.HAVERHI.PALM.FL.CBH on the file "VOL1:\ZEN\UTILS" failed. Look in subscriber log file for more details..
  2008.05.29 03:35:41 [TED:Event Processing] Handle Event: Work order IN completed... Creating new application failed,
  Subscriber Tree Name= YOUR-TREE,
  Subscriber DN = SUBSCRIBER_HAVERHI-FLBRN1.BRN.FL.SUBS.SUBSCRIBERS.ZSM.GRS.CBH,
  Golden App = SCRIPT-MS-HOTFIX.APP.BRN.ZENGOLD.GRS.CBH,
  Attempted AppName = SCRIPT-MS-HOTFIX.APP.BRN.HAVERHI.PALM.FL.CBH,
  error message: Failed creating SCRIPT-MS-HOTFIX.APP.BRN.HAVERHI.PALM.FL.CBH. With error message: Setting the trustee for BRN.HAVERHI.PALM.FL.CBH on the file "VOL1:\ZEN\UTILS" failed. Look in subscriber log file for more details..
  2008.05.29 03:35:41 [TED:Event Processing] Received (from haverhi-flbrn1.yesbank.com) Creating new application failed,
  Subscriber Tree Name= YOUR-TREE,
  Subscriber DN = SUBSCRIBER_HAVERHI-FLBRN1.BRN.FL.SUBS.SUBSCRIBERS.ZSM.GRS.CBH,
  Golden App = SCRIPT-MS-HOTFIX.APP.BRN.ZENGOLD.GRS.CBH,
  Attempted AppName = SCRIPT-MS-HOTFIX.APP.BRN.HAVERHI.PALM.FL.CBH,
  error message: Failed creating SCRIPT-MS-HOTFIX.APP.BRN.HAVERHI.PALM.FL.CBH. With error message: Setting the trustee for BRN.HAVERHI.PALM.FL.CBH on the file "VOL1:\ZEN\UTILS" failed. Look in subscriber log file for more details..

• Are there any magazines with articles and tips for Encore - English language

  Are there any magazines with articles and tips for Encore - English language

  The very best "chronicle" on Encore that I can come up with is Jeff Bellune's Focal Easy Guide to Adobe EncoreDVD 2.0, Focal Press. It was written for EncoreDVD 2.0, but everything in it applies to CS4. Now, as of CS4, Adobe Dynamic Link to PrPro has been greatly improved and strengthened, and that part will have to come from the Help files. The book is still the best resource for 99% of Encore, and I highly recommend it. You will not be disappointed. It is an invaluable reference, whether you have EnDVD 2.0, CS3 or CS4.
  As for magazine articles, Encore is mentioned in some, but I do not recall any specific to the program. Same for books on DVD/BD authoring. I have several, that use Encore for some examples, and other authoring programs for others.
  The closest thing that we have to the PrPRo-Wiki, mentioned in your thread in the PrPro forum, is the wonderful set of Encore FAQ's on this forum. Jeff Bellune and Neil Wilkes have done a great job of rebuilding those, and most were lost, when the forum underwent a major changeover about 1.5 years ago.
  Next, just reading this forum will help one learn how to do much in Encore, and also how to solve any problems.
  One other asset that needs to be pointed out is the link in this ARTICLE to Jim Taylor's DVD FAQ. His book, DVD Demystified, by McGraw Hill, will tell you everything that you would ever want to know about DVD/BD, and his FAQ site will cover most of the important info.
  Great reading in each of those. That is not an all-inclusive list, but all that I can think of for now.
  Good luck,
  Hunt

• Are there any magazines with articles and tips for Photoshop

  Are there any magazines with articles and tips for Photoshop - English language

  steenmikkelsen wrote:
  Are there any magazines with articles and tips for Photoshop - English language
  I can think of about 10! And then there are all the digital photography magazines too.
  But what's wrong with starting here:
  http://www.adobe.com/support/photoshop/
  (Save the forests!)