ISE CWA redirection problem for Apple devices

Similar Messages

• Lotus Traveler Address Encoding for Apple Devices Problems with Z10

  Hi,
  we have problems with the Lotus Traveler Address Encoding for Apple Devices IBM Notes and Domino wiki
  We are running Traveler 9.0 with BES 10.1 and 10.1.0.2354 on the Z10.
  When composing a new mail addresses from our Domino NAB are shown like this:  [email protected] instead of the name. It seems to me that name search is first looking to the Internet address field in the Domino NAB. In our case this field is empty (and cannot be filled with an address). If the field is empty, the User name or the Short name field seems to be used. This fields are filled with Domino like names like John Doe/City/Company. The Traveler Server will convert these names (see link above) and the Device (Z10) should only show the common name instead of the converted name.
  This is not working on our Z10s. The converted name is always shown like [email protected] and you don't know the real name.
  Is the problem known? Any workarounds?
  Edit: Further investigations have shown that the conversion works if you use an address in the mailbox the first time. If you use it later again, it is coming unconverted from the address chache. Also if you perform a remote search from the contacts app the converted name instead of the common name is shown.
  Regards
  Nico

  Hi Friend,
  While your idevices still having apps downloaded by the old Apple ID, Apple Store will ask you for the old Apple ID and password to updated them. But, if you delete all apps downloaded by the old Apple ID, then download again by the new Apple ID, Apple Store will not ask you anymore for the old one.
  Hope it helps

• For me, a time capsule is even safe when you have whatter damage op fire in your house. Am I wrong or is it just an additional HD like there are so maney with the only advantage that it goes automatically via your wifi for apple devices?

  For me, a time capsule is even safe when you have whatter damage op fire in your house. Am I wrong or is it just an additional HD like there are so maney with the only advantage that it goes automatically via your wifi for apple devices?

  Jloe,
  As I have posted before, You, and others having issues with Verizon would be much better off if you complained to the FCC and FTC as well as your Senators and Congressmen.  We, as individuals, have such small voices - use them where they might do the most good.
  Also, don't assume that Verizon doesn't monitor these postings, they actively do & sometimes contact those that post complaints.
  Sorry for your problems.  GC

• What is "run pregrade script for apple devices"?

  What  is  "Run pregade script for Apple Device mean. I am tryong to down load Itunes 10.5 on my 2005 Mac. What is the problem?

  Are you sure that's how the error message is phrased? Are you sure it doesn't actually say "run preupgrade script for Apple Mobile Device Support"? (note in particular the difference between "preupgrade" and "pregrade" as you have phrased it)
  If it really does instead say "preupgrade", not "pregrade", here are a couple of threads with suggestions:
  https://discussions.apple.com/thread/3373568?start=0&tstart=0
  https://discussions.apple.com/thread/2515630?start=0&tstart=0
  If those don't help, this support article may:
  http://support.apple.com/kb/HT1747
  Regards.

• H.264 for apple devices doesn't allow 48kHz audio!?

  I guess the bigger question is: What's the difference between using the *h.264 for apple devices* file format and *Quicktime movie* with compression set to h.264?
  Is there an actual difference in the algorithm? The documentation I've read claims that *h.264 for apple devices* is "low-complexity". Is this actually true? Is there any QT h.264 setting I can change to make it low-complexity?
  Here's why: I'm trying to make an iPhone/iPod compliant video podcast and using compressor. I'd like the audio to match the original 48kHz audio coming from my movie. If I go the *h.264 for apple* route, the only audio option I have is bit rate.
  This page...
  http://www.apple.com/itunes/whatson/podcasts/specs.html#formattingvideo
  ...claims that iPhone/iPod supports audio up to 48kHz and up to 160kbps, but I can't figure out how to create that with Compressor!
  Also, the *h.264 for apple* file format setting supposedly compresses the audio in the proper AAC-LC format. If I use *Quicktime movie* the only audio compression options that are close are AAC and AAC-LD.
  Thanks in advance for any help, guys!

  T-Bob wrote:
  OK, so my original high-quality movie opens MPEG Streamclip no problem, so I think that means I can skip the QT6-compatible step, right?
  To clarify, that wasn't a series of steps. That was two separate solutions to the problem.
  I've been fishing around in the 'export' settings, but I can't seem to find a straightforward way to convert it to h.264 low-complexity. Export to Quicktime Movie, or Export to Other Formats (iPhone, iPod?)?
  I just went to Export QuickTime and iTunes reported it as Low-Complexity. I guess MPEG Streamclip exports all H.264s as low complexity because I couldn't see a specific option either.
  ...and I can't seem to find AAC-LC setting in MPEG Streamclip either.
  I selected MPEG-4 AAC in the audio options. As I say, this was accepted by iTunes and synced to the device.
  Hope this helps.

• HD for Apple Devices (10 Mbps) not working

  I use Compressor 4 to convert a bunch of videos...
  Unfortunately the preset "HD for Apple Devices (10 Mbps)" is not working - result = "Failed"
  but the setting HD for "Apple Devices (5 Mbps)" >is< working.
  I have a Mac Pro 2010, 12-core 2.66 GHz with 32 GB RAM with an ATI Radeon HD 5870 1024 MB.
  There should be no performance problem... but what's wrong? Any ideas how to change this?

  I've found the problem... it depends on the file name. The file name was
  Chill & Ride 2011 - slomo long v4.mov
  I've changed the name to "slomo.mov" and it worked!
  Strange...
  The result: http://vimeo.com/34847568 ;-)

• As of today, ios 7 is available for Apple devices. I went to settings, then to general, and to software updates, but it says at iOS 6.1.3 my iPad 2 is up to date. How can I download https iOS  7?

  As of today, iOS 7 is available for Apple devices. I went to settings, then to general, and to software updates, but it says at iOS 6.1.3 my iPad 2 is up to date. How can I download https iOS  7?

  Well, now is probably not a good time to try it. The servers are overloaded, and if you look at most of the posts on this site right now, people are getting hung up at various points of their download and activation.
  You need to hook your device up to the computer you sync with and download it via iTunes, or keep checking your device until you see IOS 7 is available.
  But my advice would be to wait - otherwise you are just going to be frustrated, and unable to use your device....
  Cheers,
  GB

• HT4740 i already did the Hidding part and later moved the events and projects to the FCP events and projects folder . I still cannot share - keep getting this message "THE SHARE OPERATION 1080P FOR APPLE DEVICES (10 MBPS) HAS FAILED. Quicktime Error -50

  i already did the Hidding part and later moved the events and projects to the FCP events and projects folder . I still cannot share - keep getting this message "THE SHARE OPERATION 1080P FOR APPLE DEVICES (10 MBPS) HAS FAILED. Quicktime Error -50
  I dont know what else to do to be able to share my project - I know i updated FCPX before i shared this project  but i dont know what im doing wrong

  masterpieces wrote:
  later moved the events and projects to the FCP events and projects folder .
  Can you explain in detail what you did?
  Do any other shsre destinations complete? If not, do you get the same error message?

• What are the best AirPlay speakers for Apple devices?

  What are the best AirPlay speakers for Apple devices? I would like to get some good speakers to be used with my iPod, iPhone and iPad. Ideally, they should be able to play using AirPlay and be quite powerful, but with a good design if possible.
  I am particularly interested in the Fidelio range of speakers by Philips.
  Thank you for your help in advance.

  Best is going to be a matter of opinion.  What environment are the speakers going to be used in? How large is the room? What type of music are you going to play? What features/functions would you like in the speakers? What price range are you looking for?  All of these are going to effect which speakers will best fit your needs.

• Are purchased songs exclusively for Apple devices?

  This may sound like a simple question.
  Are the songs purchased from iTunes only playable for Apple devices? Meaning we can sync all Apple devices we have and get the same songs?
  Is there any way to convert the purchased songs to mp3 in order to transfer it to non-Apple device?
  iTunes is user-friendly for me, but if the purchased songs aren't playable on non-Apple devices, I might need to find another sources. Any idea?

  Yes you can convert tracks to MP3 version in iTunes.
  1. Go into iTunes preferences
  2. On the General Tab, click on Import Settings
  3. Change the Import Using setting to be MP3 Encoder.
  4. Click Ok and then Ok to close preferences.
  5. Now select a track or tracks that you want to convert to MP3.
  6. Then click on the Advanced Menu and select the Create MP3 Version.
  This will create an MP3 version of the tracks you selected, it works fro content purchased from the iTunes Store, provided it is in iTunes Plus format (no DRM). Make sure your use of the converted tracks does not breach the Terms of Use you agreed to here :
  http://www.apple.com/legal/itunes/us/terms.html#SERVICE
  http://www.apple.com/legal/itunes/us/terms.html#SALE
  Specifically:
  10. Purchase or Rental of Apple Content
  a. Products Requirements. You acknowledge that use of Products may require the use of other hardware and software products (e.g., the ability to make copies of Products on physical media and render performance of Products on authorized digital player devices), and that such hardware and software is your responsibility. Products may only be downloaded once; after being downloaded, they cannot be replaced if lost for any reason. Once a Product is purchased or rented (as applicable) and you receive the Product, it is your responsibility not to lose, destroy, or damage the Product, and Apple shall be without liability to you in the event of any loss, destruction, or damage.
  b. Use of Products. You acknowledge that Products (other than the iTunes Plus Products) contain security technology that limits your usage of Products to the following applicable Usage Rules, and, whether or not Products are limited by security technology, you agree to use Products in compliance with the applicable Usage Rules.
  Usage Rules
  Your use of the Products is conditioned upon your prior acceptance of the terms of this Agreement.
  (ii) You shall be authorized to use the Products only for personal, noncommercial use.
  (iii) You shall be authorized to use the Products on five Apple-authorized devices at any time, except in the case of Movie Rentals, as described below.
  (iv) You shall be able to store Products from up to five different Accounts on certain devices, such as an iPad, iPod or iPhone, and Apple TV at a time; provided that each iPhone may sync ring tone Products with only a single Apple-authorized device at a time, and that syncing an iPhone with another Apple-authorized device will cause any ring tone Products stored on such iPhone to be erased and, if you so choose, to be replaced with any ring tone Products stored on such other Apple-authorized device. Additional restrictions apply to Movies Rentals, as described below.
  (v) You shall be authorized to burn an audio playlist up to seven times.
  (vi) You shall not be entitled to burn video Products or ring tone Products.
  (vii) You shall be entitled to export, burn (if applicable) or copy (if applicable) Products solely for personal, noncommercial use.
  (viii) You may use only ring tone Products as a musical “ringer” in connection with phone calls.
  (ix) Any burning (if applicable) or exporting capabilities are solely an accommodation to you and shall not constitute a grant or waiver (or other limitation or implication) of any rights of the copyright owners in any audio or video content, sound recording, underlying musical composition, or artwork embodied in any Product.
  (x) You agree that you will not attempt to, or encourage or assist any other person to, circumvent or modify any security technology or software that is part of the Service or used to administer the Usage Rules.
  (xi) The delivery of Products does not transfer to you any commercial or promotional use rights in the Products.
  (xii) iTunes Plus Products do not contain security technology that limits your usage of such Products, and Usage Rules (iii) – (vi) do not apply to iTunes Plus Products. You may copy, store and burn iTunes Plus Products as reasonably necessary for personal, noncommercial use.
  (xiii) Usage rules for software Products are governed by the terms of any end-user agreements or other terms and conditions required for use of such Products.
  (xiv) You shall be able to manually sync a Movie from at least one iTunes-authorized device to devices that have manual sync mode, provided that the Movie is associated with an Account on the primary iTunes-authorized device, where the primary iTunes-authorized device is the one that was first synced with the device, or the one that you subsequently designate as primary using iTunes.

• Compressor 1080p for Apple Devices (10 Mbps) Does Not Include Dolby 5.1 Audio Track

  Compressor recognised my file's audio properties as: AAC 5.1 (C L R Ls Rs LFE), 48.000 kHz
  I use the 1080p for Apple Devices (10 Mbps) which should include Dobly 5.1 audio track
  After the succesfful completion of any file the output file only includes a 2 channel audio track.

  WIsh I could help and was hoping someone else would jump in with suggestions. The surround sound work I've done successfully is limited to the legacy versions of FCP and Compressor. When I've tested it in the FCPX  to Compreessor workflow, I've not got it to work either.
  I suggest you post your question in FCP X or Logic Pro forum to see whether you get some help.
  Good luck.
  Russ

• Wireless setting for Apple devices

  Hi All,
  I would like to share your experiences on how to optimize your network for Apple devices. The use of Apple devices are far more common in the U.S. than it is in Denmark (Europe) where I am. We are getting there, but certainly still "lags" a little I think.
  What is your experience with:
  802.11k config wlan assisted-roaming. What is your experience is that good or bad?
  - config wlan assisted-roaming neighbor-list enable [wlan-id]
  - config assisted-roaming floor-bias [dBm] Ho wmany dBm?
  - config wlan assisted-roaming dual-list enable [wlan-id]
  802.11r (Fast roaming) have any done some teting here?
  config wlan security ft enable [wlan-id]
  config wlan security ft over-the-ds enable [wlan-id]
  config wlan security wpa akm ft-psk enable [wlan-id]
  config wlan security wpa akm ft-802.1X enable [wlan-id]
  config wlan security ft [reassociation-timeouttimeout-in-seconds] [wlan-id]
  config wlan security wpa akm ft over-the-ds enable [wlan-id]
  Cisco recomend to use a WLAN for 802.11r clients and other WLAN for non 802.11r clients.
  Propperly because a non 802.11r client will not be able to understand the respond from the AP. Right?
  - Apple iOS earlier than 6.0 do not support FT.
  - iPhone4s with iOS6 code and iPhone5 user 802.11k. What abouth the IPAD?
  Another thing. What abouth WPAII+WPA on the same SSID (Tkip/AES) are Apple devices sensitive to this combination? I know some PC are.
  I normally disable the lower data rate 1, 2, 5,5, 11 6, 9 Mbps and make 12 mandatory. Is this also the way to go with Apple?
  Keep the mind open.
  regards. F

  Hi Scott,
  Thanks. Useful information...
  Do you also make a separate WLAN with FT enabled (for MAC´s) and a simular WLAN without FT (for PC)
  Or do you use the same WLAN for MAC´s and PC? and how does a WLAN enabled with FT, handle a PC?
  Frome the Cisco RocomenteEnterprise Best Practices for Apple Mobile Devices on Cisco Wireless LANs documentation i found:
  "The following are the WLAN configuration recommendations for adding 802.11r FT clients to the
  WLAN network"
  The best practices recommendation listed below is the result of cooperative work between Apple and Cisco.
  • Configure an additional WLAN for fast transition 802.1x clients.
  • Configure an additional WLAN for fast transition PSK clients.
  The reason for this recommendation is legacy radio drivers will not understand the added information in the association response packets of a WLAN with fast transition configurations.
  - Fair enough..But we then will have extra WLAN in the air.. Not great! Guess you cant winn all the time
  he following are the WLAN aaaaaaaaaaaaconfiguration recommendations for adding 802.11r FT clients to the
  WLAN network.
  Figure 2
  provides an example of these c
  onfigurations. The best practices
  recommendation listed below is the result of cooperative work between Apple and Cisco.
  Configure an additional WLAN for fast transition 802.1x clients.
  Configure an additional WLAN for fast transition PSK clients.
  The reason for this recommendation is legacy radio drivers will not understand the added
  information in the association response packets of
  a WLAN with fast transition configurations.
  Although the 802.11r specification was ratified in 2008, not all client radio drivers have been
  updated to handle the changes in management packets with respect to 802.11r. This includes
  several Apple products.
  Apple recommends using separate WL
  AN and SSIDs for legacy clients

• Configuration Profile for Apple Devices with ISE

  Hi,
  is there any possibility to put configuration profiles on apple device with the ise? I need to disable the dataroaming function in forgein countries for ipads.
  Best regards
  Felix

  Nice. Only trouble there seems to be multiple entry for same mac address there for same resource id.
  So when I try to get them as substring i get multiple copies of same mac address.
  But looks like this will work as solution to this problem.
  So far I was doing it this way (And i am sure there is clearer way to do it.)
  SUBSTRING((SELECT ',' + CAST(t2.MACAddress0 AS VARCHAR(40))
              FROM (SELECT DISTINCT ResourceID, MACAddress0 FROM  v_GS_NETWORK_ADAPTER) t2
              WHERE t2.ResourceID = ResourceID
              ORDER BY t2.ResourceID, t2.MACAddress0
              FOR XML PATH ('')
          ), 2, 100) [MACAddresses]

• Does any one know about the small Hardrive that "The Power Company" is producing, sponsored by Indiegogo, for small Apple mobile devices (iPhones, iPods, etc,).  Do they work or cause problems for the device or iCloud storage?

  Does any one about the small hard drive that "the Power Company" is bringing out as a crowdsourced project by Indiegogo?  Does it work, does it cause problems for IOS, iPOD Touch or iCloud?

  I have not heard that mentioned here before. What does the Indiegogo page say?

• ISE - CWA Redirection

  HI
  i am trying to implement guest portal and i have configure the ISE and switch to redirect guests and i see the whole process goes will when i issue
  show authentication session interface GigabitEthernet1/0/11
              Interface:  GigabitEthernet1/0/11
            MAC Address:  1078.d2fc.698c
             IP Address:  192.168.0.59
              User-Name:  10-78-D2-FC-69-8C
                 Status:  Authz Success
                 Domain:  DATA
         Oper host mode:  multi-domain
       Oper control dir:  both
          Authorized By:  Authentication Server
            Vlan Policy:  81
                ACS ACL:  xACSACLx-IP-TEST-WEBAUTH-DACL-519b76ec
       URL Redirect ACL:  ACL-WEBAUTH-REDIRECT
           URL Redirect:  https://HDOFFISEP01.mycompany.com:8443/guestportal/gateway?sessionId=0A0A6518000000010006F2B5&action=cwa
        Session timeout:  N/A
           Idle timeout:  N/A
      Common Session ID:  0A0A6518000000010006F2B5
        Acct Session ID:  0x00000003
                 Handle:  0x0D000001
  Runnable methods list:
         Method   State
         mab      Authc Success
         dot1x    Not run
  my problem that the web browser does NOT direct automtically to the portal but it does manually when i copy the URL from the switch, any idea ?
  switch configuration
  boot-start-marker
  boot-end-marker
  logging monitor informational
  enable secret 5 $1$PO2h$G1BUFwkbkA8ywc89FhBso/
  username cisco privilege 15 password 0 cisco
  username ise-rad-alive password 0 CICSOISEalive123
  aaa new-model
  aaa authentication login local local
  aaa authentication dot1x default group radius
  aaa authorization network default group radius
  aaa authorization auth-proxy default group radius
  aaa accounting auth-proxy default start-stop group radius
  aaa accounting dot1x default start-stop group radius
  aaa server radius dynamic-author
  client 10.10.20.13 server-key myshared
  client 10.10.20.14 server-key myshared
  aaa session-id common
  switch 1 provision ws-c2960s-24ps-l
  ip dhcp snooping vlan 1-2000
  no ip dhcp snooping information option
  ip dhcp snooping
  ip domain-name mycompany.com
  ip name-server 192.168.10.40
  ip device tracking probe use-svi
  ip device tracking
  ip admission name Webauth proxy http inactivity-time 60
  vtp mode transparent
  epm logging
  dot1x system-auth-control
  fallback profile Webauth
  ip access-group ACL-WEBAUTH-REDIRECT in
  ip admission Webauth
  spanning-tree mode pvst
  spanning-tree extend system-id
  interface GigabitEthernet1/0/11
  switchport mode access
  switchport voice vlan 93
  ip access-group ACL-ALLOW in
  authentication event fail action next-method
  authentication event server dead action reinitialize vlan 777
  authentication event server dead action authorize voice
  authentication host-mode multi-domain
  authentication order mab dot1x
  authentication priority dot1x mab
  authentication port-control auto
  mab
  dot1x pae authenticator
  spanning-tree portfast
  interface Vlan1
  no ip address
  shutdown
  interface Vlan80
  ip address 10.10.101.24 255.255.255.0
  ip default-gateway 10.10.101.1
  ip http server
  ip http secure-server
  ip access-list extended ACL-AGENT-REDIRECT
  remark explicitly prevent DNS from being redirected to address a bug
  deny   udp any any eq domain
  remark redirect HTTP traffic only
  permit tcp any any eq www
  remark all other traffic will be implicitly denied from the redirection
  ip access-list extended ACL-ALLOW
  permit ip any any
  ip access-list extended ACL-DEFAULT
  remark DHCP
  permit udp any eq bootpc any eq bootps
  remark DNS
  permit udp any any eq domain
  remark Ping
  permit icmp any any
  remark PXE / TFTP
  permit udp any any eq tftp
  remark Drop all the rest
  deny   ip any any log
  ip access-list extended ACL-WEBAUTH-REDIRECT
  deny   ip any host 10.10.20.13
  deny   ip any host 10.10.20.14
  deny   ip any host 192.168.10.43
  deny   ip any host 192.168.10.40
  deny   ip any host 192.168.10.41
  deny   ip any host 192.168.10.42
  remark explicitly prevent DNS from being redirected to accommodate certain switches
  deny   udp any any eq domain
  remark redirect all applicable traffic to the ISE Server
  permit tcp any any eq www
  permit tcp any any eq 443
  ip radius source-interface Vlan80
  logging origin-id ip
  logging source-interface Vlan80
  logging host 10.10.20.11 transport udp port 20514
  logging host 10.10.20.12 transport udp port 20514
  radius-server attribute 6 on-for-login-auth
  radius-server attribute 6 support-multiple
  radius-server attribute 8 include-in-access-req
  radius-server attribute 25 access-request include
  radius-server dead-criteria time 5 tries 3
  radius-server host 10.10.20.13 auth-port 1812 acct-port 1813 key myshared
  radius-server host 10.10.20.14 auth-port 1812 acct-port 1813 key myshared
  radius-server vsa send accounting
  radius-server vsa send authentication

  Verify that the redirection URL specified in Cisco ISE via Cisco-av pair "URL Redirect" is correct
  CWA Redirection URL: https://ip:8443/guestportal/gateway?sessionId=SessionIdValue&action=cwa
  802.1X Redirection URL: url-redirect=https://ip:8443/guestportal/gateway?sessionId=SessionIdValue&action=cpp