ISE Airespace ACL WLC problem

Hello,
i've configured ISE and WLC to use guestportal with CWA but there is a problem with CoA -- it doesn't want to apply airespace alc after auth at guestportal.
1. At authC page i've configured a wireless MAB to continue if user not found and to use a Internal users as a identity store.
2. At authZ page i've configured a WEBAUTH as a default rule with the following:
Access Type = ACCESS_ACCEPT
cisco-av-pair = url-redirect-acl=ACL-WEBAUTH-REDIRECT
cisco-av-pair = url-redirect=https://ip:port/guestportal/gateway?sessionId=SessionIdValue&action=cwa
3. I've also configured this ACL at WLC to permit
permit dns and icmp any-any
permit any-to-ise-8443
permit ise-to-any
This part works fine because i able to redirect to guestportal and use my guest login&pw to authorize myself. The guest account was previously generated through sponsor portal and it's working too.
4. At authC page i've use a wireless dot1x to use Internal users
5. At authZ page i've use a "if internal users:Guest then GUEST permission" rule
6. GUEST rule looks like the following:
Access Type = ACCESS_ACCEPT
Airespace-ACL-Name = GUEST_INTERNET_ONLY
7. This ACL is configured on the WLC permitting any except private networks (ISE is also permitted)
After guest portal auth i see a success message and i able to ping internet but i have no web access to it. It looks like CoA and Airespace acl are don't working and i keep using my ACL-WEBAUTH-REDIRECT access-list and i see a strange error messages in the WLC logs:
*apfReceiveTask: Nov 12 17:32:27.317: %ACL-3-ENTRY_DONOT_EXIST: acl.c:369 Unable to find an ACL by name "".
I swear my ACL name spelling is correct and both ACL-WEBAUTH-REDIRECT and GUEST_INTERNET_ONLY are on the WLC with their counters growing!
I don't have a point what issue it could be...
Any ideas?
P.S. see attach for Live authentication log

Thank you guys for your responses, it's working now!
The first problem was there:
Changing IPv4 ACL 'none' (ACL ID 255) ===> 'GUEST_INTERNET_ONLY' (ACL ID 5)
There are only 3 ACLs on my WLC so ALC ID 5 is kinda suspicious -- after WLC reload it becames ACL ID 1 but the problem was unresolved.
After that i changed my authZ matching rule to use another authZ profile:
Access Type = ACCESS_ACCEPT
Airespace-ACL-Name = PERMIT_ALL_TRAFFIC
cisco-av-pair = Airespace:Airespace-ACL-Name
Then i created ACL PERMIT_ALL_TRAFFIC on my WLC with one ACE "permit any any". I also denied access to my private networks at ASA where guest vlan's gateway resides.
I think the problem was in WLC's GUEST_INTERNET_ONLY ACEs which denied traffic to my private networks.
Thanks for the help!

Similar Messages

  • Guest Cert problems ISE and Anchor WLC

    I'm setting up new Guest Wireless, I have 2 internal foreign 5508 WLC's talking to 2 DMZ anchor WLC's. The guest connects to Guest SSID and the anchor controllers acts as a DHCP server, the Guest interface configured on the WLC is the in the range of the DHCP scope I've setup. The DHCP scope is using the anchor WLC Mgmt interface as the DHCP server.
    Guest SSID - is setup for Webauth and Guest is redirected to the ISE server https://wlc.company.com/login...., when the page is presented to the Guest they get cert problem because the cert is not trusted (its an Internal Cert), Guest logins in ok and the AUP says "cert not trusted" 1.1.1.1 name of the WLC wlc.company.com.
    In the browser Guest has https://wlc.company.com/loginredirecthttps://1.1.1.1........
    1.1.1.1 is the Virtual interface of the Anchor WLC.
    How can I get the client to stop using the Virtual Interface for cert. Why is the WLC doing this? I gather something to do with DHCP?
    My plan is to apply a External Cert on the ISE for Guests, that way they will automatically trust a cert from Geotrust for example. But I'm going to still run into this Cert "not trusted" problem where the Guest is not trusting the WLC anchor  Virtual Interface 1.1.1 . Why is the guest using the Virtual interface error 1.1.1.1. I've even added the ISE name of the cert to the Virtual interface, same problem, instead its just says  wlc.company.com not trusted. I have also imported the cert onto the WebAuth cert on anchor WLC, still doesn't work.
    Hopefully I've explained this ok.....any ideas? but if the Guest page keeps getting presented with
    https://wlc.company.com/loginredirecthttps://1.1.1.1........ it will never work.

    I followed Richard's advice and started from scratch, removing LWA and implementing CWA -MAB. It didn't take too long to setup CWA and get authentication working, I appled a Preauth ACL on WLC's and on ISE under Authorization pofile (CWA)
    This is when the problems started happening, I was using the default ISE Authorization profile
    cisco-av-pair = url-redirect=https://ip:8443/guestportal/gateway?sessionid=SessionValueIdValue&action=cwa.which is not what I want, again the certificate is the server cert which is not an external Cert that the guest wants to see. The user can login fine, unlike LWA, with Firefox or IE it would accept the cert and login so at least I had a working Guest wifi solution. Though there was a cert error symbol at the end of the browser url.
    The next step I tried was to change the Authorization Profile to
    (wireless.company.com which is a C-NAME for ISE box and has this Alias in the cert, this was a test before I apply the external cert)
    cisco-av-pair = url-redirect=https://wireless.company.com:8443/guestportal/gateway?sessionid=SessionValueIdValue&action=cwa
    I applied the change and the new page appeared on the users laptop, great, but this time users were declined access via live Authentications, reason "Cannot login due to session id expiry, please login a again", I created a new user a/c, same problem. Not good. Ok so I thought well if I want clear all these stale session id's that appartenly exist I'll stop/start the application which I did from the command line, still the same error "Cannot login due to session id expiry". hmmm, whats going on here.
    I then rebooted the ISE (this must clear all the sessions!), reboot I performed from home and now for some reason I cannot login to the ISE front end GUI with the admin account or my account. Tried resetting the GUI password for admin and other admin users, the message "Error: cannot reset password this can only be performed on Standalone or Primary node" Well what have I done, just rebooted ISE nothing else apart from changing authorization profile. This box is a Standalone node. Without seeing if the clients connect due t no GUI access, I have referred this issue to TAC!
    Also I don't like the fact that your have to install a external cert against the internal node name, epsecially when its external. But again I haven't reached this part yet.

  • ISE guestaccess - Android/iPad problem

    Hi all,
    I have a guestaccess using CWA on ISE 1.1.1 and WLC 7.2
    The setup is realy simple with redirect ACL to ISE and after that an permit-all ACL.
    Guest users are on a guest vlan and go thru a ASA to talk to DHCP, DNS and ISE.
    When I try to connect with laptops, Windows 7, OSX 10.7 and 10.8, it works like it a charm.
    The user gets redirected, put in credentials and after that get on the network. Not one problem out of maybe 30 tests.
    But when I try smartphones and iPad it doesent work that well...
    With iPhones, iOS5 and iOS 6 tested on three diffrent phones, I get access 19/20 times.
    With iPad, only one with iOS 5.1, I get access maybe 50% of the tries
    And with Android, two HTC with 2.3.7 and 2.3.3, I got one logon to the guest network out of 25 or more tries.
    What happends when I try to access the network with a problem device is that it gets a redirect url but states,
    on Android 'Web page not available' and on iPAD '..could not open page because it could not connect ot server.
    On all these devices I can see that I have a DHCP lease with IP address and DNS. I have rebooted all devices several times and I have used 'forget this network' on the diveces.
    I have also tried to removed the clients from the WLC and I have tried to turn off/on the WLAN on the WLC.
    Could this be a WLC problem? I did a simple TCP dump on the ISE server but did not see any packets. (Need to do this one again..)
    Anyone with some insight on guestaccess and mobile devices? :-)
    Message was edited by: Mikael Gustafsson

    While authenticating  the guest through wireless  its very important to check all the compatibility issues of the client  with the NAC(Switch/WLC) device and ISE.Please check the below  compatibitility matrix link along with some other links for assistance  on your queries:
    http://www.cisco.com/en/US/docs/security/ise/1.1.1/compatibility/ise_sdt.html
    http://www.cisco.com/en/US/solutions/collateral/ns340/ns414/ns742/ns744/docs/howto_40_webauthentication_dg.pdf
    http://www.cisco.com/en/US/products/ps11640/products_configuration_example09186a0080bead09.shtml

  • ISE Guest login page problems

    hello all,
    am trying to setup a 'guest' access for known people... i mean, the validation of the credentials are made to a LDAP server. User account are created there, and inside a wfacces group.
    My probleme is when i activate my autorization policy #3, the guest need to enter his credential many times...
    Rule 1: if Network Access:UseCase EQUALS Guest Flow then Permitaccess
    Rule 2: if (Wireless_MAB AND Radius:NAS-Identifier EQUALS Guest_corp  ) then Authprof_Guest_corp
    Rule3 : if (Radius:NAS-Identifier EQUALS Guest_corp AND ldap_corp:ExternalGroups EQUALS cn=wfAcces,ou=ISE,ou=security,ou=groups,o=my.domain ) then PermitAccess
    In my Authprof_Guest_corp, i have my ACL, my redirect URL and the identity source sequence.
    Removing my rule 3 fix the issue, but i dont want ALL LDAP users to be able to access inet...
    The Multiple Matched Rule Applies is selected
    Any idea what am doing wrong? or how i should do that?

    There are several things which need to check in order to  resolute.
    1.)  Authentication Failure message indicates that the user’s  credentials are invalid. Resolution Check if the Active Directory user  account and credentials that are used to connect to the Active Directory  domain are correct.
    2.) Test Bind to Server Click to test and ensure that the LDAP server  details and credentials can successfully bind. If the test fails, edit  your LDAP server details and retest.
    3.)Cisco ISE allows you to import MAC addresses and the associated  profiles of endpoints securely from an LDAP server. You can use an LDAP  server to import endpoints and the associated profiles, by using
    either the default port 389, or securely over SSL, by using the default  port 636.

  • ISE 1.2 - WLC 5508 (7.5x) - Windows 7 802.1X

    Hi ,
    We deployed ISE 1.2 (patch 3) with 5580 WLC to authenticate machines and users using 802.1x .
    We are experiencing a strange issue - randomly some machines authenticate fine over wireless and we are able to see logs on ISE and nexst day the same machine stops authenticating itself and ISE doesnt generate any log.. seems like somehow no request is coming to ISE.
    we have checked all the settings including wireless settings ,services, 802.1x settings on the laptop but struggling to find the a reason why randomly machine would work and then not work.
    whenever a machine works we see all the logs but when a machine doesnt work no log is generated in ise.
    has anyone experienced a similar issue?
    Thanks

    Thanks, we have figured it out.
    Machine Auth timer would expire after 12 hours and ISE had another setting where it would blacklist the client and supress logs for an hour if it sees more then certain amount of failed authentication attempts.
    Thanks

  • ISE 1.2 / WLC 5508 EAP-TLS expired certificate error, but wireless still working

    Hi I have a customer that we've deployed ISE 1.2 and WLC 5508s at.  Customer is using EAP-TLS with and everything appears to setup properly.  Users are able to login to the network and authenticate, however, frequently, I'm getting the following error in ISE authentication logs:
    12516 EAP-TLS failed SSL/TLS handshake because of an expired certificate in the client certificates chain
    OpenSSL messages are:
    SSL alert: code=Ox22D=557 : source=local ; type=fatal : message="X509
    certificate ex pi red"'
    4 727850450.3616:error.140890B2: SS L
    rOYbne s: SSL 3_  G ET _CL IE NT  _CE RT IF ICAT E:no ce rtific ate
    relurned: s3_ srvr.c: 272 0
    I'm not sure if this is cosmetic or if this is something that I should be tracking down.  System isn't in full production yet, but every client seems to be working and there is no expired cert in the chain.  Any ideas what to check?

    Hello Dino,
      thanks very much for your reply.
      The client uses a machine-certificate, the PKI is not a microsoft one, but a third party PKI.   The certificate is fresh and valid, the root-cert is installed and checked to be validated against it for the login.
    Clock is correct too. The same setup works flawlessly in Windows 7 and XP.
    EKU is set on the certificate (1.3.6.1.5.5.7.3.2)
    I suspect the cert-setup itself, but don't get a clue where this might stuck...
    Björn

  • ISE 1.2 - WLC 5508 - NAS sends RADIUS accounting update messages too frequently

    I'm getting this error in ISE referring to my Cisco 5508 WLC.  I'm not sure how to turn down the frequency.  Any ideas?
    NAS sends RADIUS accounting update messages too frequently
    Verify NAS configuration. Verify known NAS issues.

    I opened up a TAC case with Cisco yesterday and this is the response i got from them:
    There is bug on the WLC side to reduce the number acct updates:
    CSCug14713- WLC sends acct-update twice in the same millisecond
    This is fixed in 8.x on the WLC.
    So, it looks at though we just have to deal with it until they release an 8.x version for the WLC. In the meantime, you can disable the alerts in ISE.
    Administration>Settings>Alarm Settings>Misconfigured Network Device Detected
    Edit that alarm and set it to disabled

  • ISE 1.1/WLC 7.2 Wireless MAB and Profiling

    I am trying to set up wireless MAB with CWA so that when devices connect to the open guest network they are profiled and if they match a device type (iphone, android) they are allowed access to the internet without AUP or Authentication and all other device type (including unknown) is redirected to the guest portal for authentication.  My configuration works when devices are correctly profiled, the issue is that it appears that the RADIUS probes are the only profiling components working on the guest side.  Devices are being correctly profiled on the corp network segment.  The key profiling components I need to get a match on iphone is DHCP and HTTP user agent.  Without those all iphones are categorized as an apple device and not iphone. I suspect this is because they are matching the MAC OUI from the RADIUS probe and MAC filtering with NAC RADIUS on the WLC.  The ISE is on a seperate LAN from the guest and right now I am only allowing DNS and 8443 through the ASA.  I also believe DHCP profiling is not working because the guest DHCP is running on the WLC internal DHCP and is not forwarding requests to the ISE for inspection because it will not relay the request to 2 servers, it just uses a secondary if the primary is unreachable.
    Can someone point me in the right direction?  I believe my Authentication, Authorization, and Identity Source Sequence, etc configuration is correct, but can post additional details if necessary.  My main issue is the profiling probes and getting them working correctly on the guest LAN.

    What we did to get around this was to adjust the profiler policy for Apple-Device to take network scan action when MAC:OUI contains Apple.  So basically the device connects to the wireless network, MAC filtering on the WLC identifies the OUI to belong to Apple and initiates an NMAP scan that properly identifies the OS of the iDevice.  This allows iPhones to connect and other Apple devices like iPads to be redirected to the login portal.
    We can also make similar adjustments to Android and other devices that require profiling to properly identify the device type.  In this case, allowing SmartPhones to connect directly to the internet and all other devices to be redirected to the portal.
    Hope that helps.

  • Linksys PCI cards and WLC problems

    /* Style Definitions */
    table.MsoNormalTable
    {mso-style-name:Standardowy;
    mso-tstyle-rowband-size:0;
    mso-tstyle-colband-size:0;
    mso-style-noshow:yes;
    mso-style-priority:99;
    mso-style-parent:"";
    mso-padding-alt:0cm 5.4pt 0cm 5.4pt;
    mso-para-margin:0cm;
    mso-para-margin-bottom:.0001pt;
    mso-pagination:widow-orphan;
    font-size:11.0pt;
    font-family:"Calibri","sans-serif";
    mso-ascii-font-family:Calibri;
    mso-ascii-theme-font:minor-latin;
    mso-hansi-font-family:Calibri;
    mso-hansi-theme-font:minor-latin;
    mso-bidi-font-family:"Times New Roman";
    mso-bidi-theme-font:minor-bidi;
    mso-fareast-language:EN-US;}
    Hi,
    I have Linksys
    /* Style Definitions */
    table.MsoNormalTable
    {mso-style-name:Standardowy;
    mso-tstyle-rowband-size:0;
    mso-tstyle-colband-size:0;
    mso-style-noshow:yes;
    mso-style-priority:99;
    mso-style-parent:"";
    mso-padding-alt:0cm 5.4pt 0cm 5.4pt;
    mso-para-margin:0cm;
    mso-para-margin-bottom:.0001pt;
    mso-pagination:widow-orphan;
    font-size:11.0pt;
    font-family:"Calibri","sans-serif";
    mso-ascii-font-family:Calibri;
    mso-ascii-theme-font:minor-latin;
    mso-hansi-font-family:Calibri;
    mso-hansi-theme-font:minor-latin;
    mso-bidi-font-family:"Times New Roman";
    mso-bidi-theme-font:minor-bidi;
    mso-fareast-language:EN-US;}
    WMP200 and WMP54G Wi-Fi PCI cards  installed on PC.
    My infrastructure is WLC 2106 and two APs 1231G and one 1242G.
    The problem is that the cards have problem with connection to WLAN.
    The broadcast SSID must be enable then the cards connect to WLAN otherwise is a problem with connection.
    When the card is connected but connection is unstable and poor.
    The cards have the newest firmware installed.
    Has anyone encountered a similar problem?
    Kamil

    Hi Kamil,
    Have you associated other types of clients with these AP's?  If so, do they perform better?
    You might want to start by checking the status of the poorly performing client on the controller while it's connected:
    monitor -> clients
    You'll primarily be interested in the RSSI and SNR. The other counters such as 'excessive retries' should be observed as well.
    Also check the AP's radio interface stats.  Check for excessive interference or channel utilization.
    This is a very helpful doc that you may want to check out:
    Unified Wireless Network: Troubleshoot Client  Issues
    http://www.cisco.com/en/US/products/ps6366/products_tech_note09186a00809d45a2.shtml
    Let us know if any of this helps.

  • ISE 1.3 / WLC 8.x + Server 2012 R2

    Hi All,
    Just wondering if anyone has seen this issue and if so – a solution or any advice would be great!
    Scenario.
    ISE 1.3 is connected to Server 2012(R2) AD – and this is showing as connected and all tests are successful.
    ISE is Connected to WLC 8.x  (Tests on attachment showing succesfull)
    The permissions of the service account I used for ISE to link in with AD – "domain admin" and also tried  "domain users" (using domain users now) and we can see AD security groups etc
    - WLC is succesfully connected to ISE
    SSID "Test" is configured to send to AAA - ISE
    ISE has a policy that permits "domain users" on the network.for web authentication
    Issue I am experiencing is when I connect to the SSID I get prompted for a login - this is my domain account it’s looking for
    (my account is a member of domain users only)
    ===============================================
    I get a message on BYOD Portal   (SEE ATTACHED SCREENSHOTS)
     “Unable to obtain the user information needed for network access. Try again”
    ===============================================
    If I use an account that has domain admin rights – everything works fine every time??  and I can start the process of registering my device on the network??
    I would like to rule out AD if i can. (Win Server 2012 R2) -
    everything looks ok from ISE as we can see AD groups etc when you select "retrieve AD groups"  - i can see all built in groups etc ....
    We get authenticated fine -  the issue appears to be in the web-redirect and it seems like you need to be a domain admin for us to get the correct registration page.
    Any help would be great
    Thanks
    James

    HI David
    Many thanks for your response.
    Yeah I have tried different users and also on ISE different groups and cross checked the SID on ISE groups to the SID on the AD group and seems both match.
    My colleague is doing the ISE part and I am doing the Windows 2012R2 part and all looks ok – the service account seems to be testing out fine when running tests on ISE and displaying groups etc when I "retrieve groups from AD" (from ISE)
    The finger at this time seems to be pointing at my AD …due to the domain admin accounts working and domain users not (I know these are both domain users but as my colleague is the “boss” I just need to make sure 110% that there is no special requirements that I need to add to the computer account & or the user account
    From the Cisco doc’s the service account just needs to be a domain user to read AD but is there anything special with the ISE computer account? – At this time the ISE computer account is in the default computer OU and the ISE service account is in the.
    After removing and re-adding and double checking the groups (External Identity Stores > Groups) both SIDs match on both domain users group
    When I connect to the SSID I initially get prompted for a username and password then –
    The BYOD Portal splash page just says BYOD Welcome “Unable to obtain the user information needed for access. Try again. (If I use a standard user account member of “domain users” only BUT if I use my domain admin account when joining the SSID (member of domain users + domain admin) I can start the process or registering my device and I can proceed through the required steps 1,2,3,4 until I access the web
    Standard “domain user” I can’t get by step 1 as I get the “Unable to obtain the user information needed for access. Try again” message
    The boss says this SSID is stripped back to just domain users and asks the question why does domain admins work??  - Hence Server AD getting a finger pointed at it.
    Regards
    James
    I have uploaded some picts that may assist & thanks again.

  • ISE License for WLC

    Hello Experts
    i have ISE with advanced license for 1500 user , and i have WLC 2504 , and i need to integrate the WLC with the ISE to get ISE features for the Wireless users  like posturing , remediation and the authentication as well .
    my question : is the advanced license is enough , or shall i install the Wireless License to the ISE to have the integration...
    your feedback and inputs appreciated....
    Reyad

    Here is some information regarding the different types of licenses -
    http://www.cisco.com/en/US/docs/security/ise/1.2/user_guide/ise_man_license.html#wp1074395
    Essentially a wireless license is much like the base license if your deployment is 100 percent wireless, the wireless upgrade is the equivalent to the advanced license once again for only a wireless deployment.
    Base and Advanced covers all (wired, wireless, vpn..etc). there are no restrictions to the deployment model.
    Thanks,
    Tarik Admani
    *Please rate helpful posts*

  • ISE and Anchor WLCs?

    Hi All,
    I'm trying to put together a Guest WLAN setup and want to know the best approach.
    If I use ISE for Guest portal/access control do I still have the standard setup of Anchor WLCs in DMZ for the guest WLANs?
    Or does the ISE tell the internal WLC's to place the allowed guest users onto a guest VLAN accessible to the internal WLCs?
    Do I lose anything with ISE compared to the old WCS/WLC guest portal methods?
    Any thoughts would be appreciated.
    Thanks,
    Brendan

    Brendan,
    From my experience you still should use a dmz guest anchor controller. The only difference is the ports you will need to open on the FW between the guest anchor and ISE. Now you can still do this without a guest anchor if there isn't an existing one or one not planned for.
    Thanks,
    Scott Fella
    Sent from my iPhone

  • ISE Compatibility with WLC 5760

    The ISE compatibility Matrix (June 5, 2013), does have a row for WLC 5760 in its tables.
    The WLC 5760 Release Notes says it is compatible with with ISE without specfying which features.
    Why is the WLC 5760 missing from the ISE Compat Matrix and how can I get specific ISE feature support (ie CoA, DACL).
    Thanks.         

    Hello Marvin,
    ISE 1.2 is in road map and it will be available till July 17, 2013 and that will support WLC 5760 and all the features which you are looking.

  • WLC Problem 4.0 with mobile devices

    The problem is we have a WLC version 4.0 and have multiple SSIDs, but one has been created with WEP security is specific to the directors of the company. The scenario is that mobile devices (Blackberry, Iphone 4, IPad 2, etc) have connectivity problems
    One of the scenarios is not automatically sign the WIFI mobile devices and can only be after several attempts. Another scenario we have is that it takes over 15 seconds to take ip and be signed into the network. Finally, it is to tell us that after a while the devices are out of the WLAN and take again after several attempts to register or
    I hope I can guide
    GREETINGS!

    Marco,
    My recommendation is that you upgrade your controller to current software. 4.0 is ancient code.
    Justin

  • WLC problem

    Hi Guys,
    I’m trying to connect a 2504 WLC with cisco 1041 lightweight access points. I have a simple setup where my WAN link comes and terminate at a 2911 ISR router (where the DHCP pool is configured) and it connects to the internal switch in which both my WLC and access points(02) directly connected.
    My problem is though I can see my 02 access points in the WLC’s GUI interface (under Monitor>CDP>interface neighbors) with ip addresses obtained from the DHCP pool. I can’t see any APs getting connected to the WLC.
    Can anyone assist me with this regard?
    Regards,
    Suthakar

    First off, make sure the time is set correctly on the WLC.  Place the AP's in the same subnet as the WLC management interface for now and make sure there is a dhcp scope on that subnet.  If you switchport is setup as an access port, then you need to make sure the wlc management interface is tagged with a vlan of "0".  If you have the switchport setup as at trunk port, then you can tag the wlc management interface with the vlan id.  Just make sure your not setting the native vlan on the trunk port and only allow the vlans you have defined on the WLC.

Maybe you are looking for

  • Q10 contacts and calendar syncroniza​tion

    Using outlook account, syncronization of contacs and calendar by usb connection fails, with message at the end of the process "writing of the coomit on the device failed". It was not like this at the beginning. Computer and device software are update

  • FDK 9 will not open file

    I have a c api I created to create a book with a template it copies FM files from a templete folder and renames the book and documents form a text file with the name it will be using. The problem is the api will not open the text file, I keep getting

  • Dvd software will not open "You can't open the application Install because PowerPC applications are no longer supported.

    I am trying to open the application for educational software and the message You can't open the application Install because PowerPC applications are no longer supported....keeps appearing...help

  • Lion iCal:  How to view many calendars, but reminders for only one

    I'm in an all MAC office setting.  I havea MacBook Pro 15 with Lion OS.  I get pop up reminders for the seven colleagues whose calendars I have selected.  I only want pop up reminders for my own calendar, but don't see any way to make that happen.  O

  • Opportunity team history

    Hello, I have a question regarding opportunity team. Here is the thing. 1. I am on an opportunity with Owner = Bryan 2. I change the owner to John 3. In the opportunity team i see Bryan AND John. 4. There is no way to delete (even manually) the previ