Issue switching authentication mode in ODI 11.1.1.6

Similar Messages

• We recently switched ISPs. To connect to the new ISP our Airport Extreme has to be in bridge mode. Now our Nintendo Wii won't connect to the Airport. Is it an issue with bridge mode that is causing this?

  We recently switched ISPs. To connect to the new ISP our Airport Extreme has to be in bridge mode. Now our Nintendo Wii won't connect to the Airport. Is it an issue with bridge mode that is causing this? We're running two Macs wirelessly with no problems.  And the Wii did connect before the switch.

  Hello and thanks for the reply.  I gave this a try, turned off Airport on one of the computers and tried the Wii again.  Still no connection.  I should say that we're also running an old G4 (wired) off the Airport as well, with no problems.  I've tried many things to make the Wii to work, including power cycling the Airport, turning off the security settings in the Airport, resetting the Airport to it's default and redoing the network, resetting the network setting on the Wii (several times), moved the Airport closer to the Wii, all with no luck.  The Wii "sees" the Airport but won't connect to it.  I'm at a loss for anything else to try, so any help is appreciated.

• Issue with the Authentication mode:

  Hello Guru's
  I have installed P6 Primavera and when I am trying to login to
  http://localhost:8080/primaveraweb/action/login
  It is giving the below error -
  "Primavera P6 was configured to use a different authentication mode that the database selected"
  I checked the authentication mode in the P6 Administrator scrren where it shows that the
  Authentication
  Mode: NATIVE
  Web Single Sign-On
  User Name Header Key: OAM_REMOTE_USER
  Context Path Override: /primaveraweb
  Server and Port override: http://<hostname>:8080 ----- I can see the correct hostname address.
  Gurus, please help me on this ASAP.
  Thanks
  Venu

  Hello Guru's,
  I could able to resolve the error by following the Admin Guide.
  This error is because you have migrated the PSUP database which is having the LDAP authentication mode, but the P6 Primavera is in NATIVE authentication mode.
  NOTE: A configuration for P6 Web Access might include database instances that are not set to the same authentication mode as the server of P6 Web Access.
  If a user connects and requests a database that is set to a different authentication mode than the server of P6 Web Access, an error message displays.
  The user must select a database that matches the authentication mode set for the server of P6 Web Access.
  I resolved the issue using the below steps:
  Run the D:\Oracle\installers\Enterprise Project Portfolio Management\P6_70_Client_Applications\install\database\ldap-config\ LDAPCfgWiz.exe
  Login as privuser for PMDB and select the authentication mode as “NATIVE”
  Login as privuser1 for MMDB and select the authentication mode as “NATIVE”
  Bounce the P6 Admin Server.
  Thanks
  Venu

• An issue with authentication and authorization on ISE 1.2

  Hi, I'm new to ISE.
  I have an issue with authentication and authorization.
  I have ISE 1.2 plus patch 6 installed on VMware.
  I have built-in Windows XP supplicant and 2960 cisco switch with IOS c2960-lanbasek9-mz.150-2.SE5.bin
  On supplicant I use EAP(PEAP) with EAP-MSCHAP v2.
  I created  authentication and authorization rules with Active Directory  as External Identity Source. Also I applied  authorization profile with DACL.I login on Windows XP machine under different Active Directory accounts. Everything works fine (authentication, authorization ), but only for several hours. After several hours passed , authentication and authorization stop working . I can see that ISE trying authenticate and authorize users, but ISE always use only one account for  authentication and authorization . Even if I login under different accounts ISE continue to use only one last account.
  I traied to reboot switch and PC,but it didn’t help. Only rebooting of ISE helps. After ISE rebooting, authentication and authorization start to work properly for several hours.
  I don’t understand is it a glitch or I misconfigured ISE or switch, supplicant?
  What  should I do to resolve this issue?
  Switch configuration:
   testISE#sh runn
  Building configuration...
  Current configuration : 7103 bytes
  ! Last configuration change at 12:20:15Tue Apr 15 2014
  ! NVRAM config last updated at 10:35:02  Tue Apr 15 2014
  version 15.0
  no service pad
  service timestamps debug datetime msec
  service timestamps log datetime msec
  no service password-encryption
  hostname testISE
  boot-start-marker
  boot-end-marker
  no logging console
  logging monitor informational
  enable secret 5 ************
  enable password ********
  username radius-test password 0 ********
  username admin privilege 15 secret 5 ******************
  aaa new-model
  aaa authentication dot1x default group radius
  aaa authorization network default group radius
  aaa authorization auth-proxy default group radius
  aaa accounting update periodic 5
  aaa accounting dot1x default start-stop group radius
  aaa server radius dynamic-author
   client 172.16.0.90 server-key ********
  aaa session-id common
  clock timezone 4 0
  system mtu routing 1500
  authentication mac-move permit
  ip dhcp snooping vlan 1,22
  ip dhcp snooping
  ip domain-name elauloks
  ip device tracking probe use-svi
  ip device tracking
  epm logging
  crypto pki trustpoint TP-self-signed-1888913408
   enrollment selfsigned
   subject-name cn=IOS-Self-Signed-Certificate-1888913408
   revocation-check none
   rsakeypair TP-self-signed-1888913408
  crypto pki certificate chain TP-self-signed-1888913408
  dot1x system-auth-control
  spanning-tree mode pvst
  spanning-tree extend system-id
  vlan internal allocation policy ascending
  ip ssh version 2
  interface FastEthernet0/5
   switchport mode access
   ip access-group ACL-ALLOW in
   authentication event fail action next-method
   authentication event server dead action reinitialize vlan 1
   authentication event server alive action reinitialize
   authentication host-mode multi-auth
   authentication open
   authentication order dot1x mab
   authentication priority dot1x mab
   authentication port-control auto
   authentication periodic
   authentication timer reauthenticate server
   authentication violation restrict
   mab
   dot1x pae authenticator
   dot1x timeout tx-period 10
   spanning-tree portfast
  interface FastEthernet0/6
   switchport mode access
   ip access-group ACL-ALLOW in
   authentication event fail action next-method
   authentication event server dead action reinitialize vlan 1
   authentication event server alive action reinitialize
   authentication order dot1x mab
   authentication priority dot1x mab
   authentication port-control auto
   authentication periodic
   authentication timer reauthenticate server
   authentication violation restrict
   mab
   dot1x pae authenticator
   dot1x timeout tx-period 10
   spanning-tree portfast
  interface FastEthernet0/7
  interface Vlan1
   ip address 172.16.0.204 255.255.240.0
   no ip route-cache
  ip default-gateway 172.16.0.1
  ip http server
  ip http secure-server
  ip access-list extended ACL-ALLOW
   deny   icmp any host 172.16.0.1
   permit ip any any
  ip radius source-interface Vlan1
  logging origin-id ip
  logging source-interface Vlan1
  logging host 172.16.0.90 transport udp port 20514
  snmp-server community public RO
  snmp-server community ciscoro RO
  snmp-server trap-source Vlan1
  snmp-server source-interface informs Vlan1
  snmp-server enable traps snmp linkdown linkup
  snmp-server enable traps mac-notification change move
  snmp-server host 172.16.0.90 ciscoro
  radius-server attribute 6 on-for-login-auth
  radius-server attribute 6 support-multiple
  radius-server attribute 8 include-in-access-req
  radius-server attribute 25 access-request include
  radius-server dead-criteria time 5 tries 3
  radius-server vsa send accounting
  radius-server vsa send authentication
  radius server ISE-Alex
   address ipv4 172.16.0.90 auth-port 1812 acct-port 1813
   automate-tester username radius-test idle-time 15
   key ******
  ntp server 172.16.0.1
  ntp server 172.16.0.5
  end

  Yes. Tried that (several times) didn't work.  5 people in my office, all with vers. 6.0.1 couldn't access their gmail accounts.  Kept getting error message that username and password invalid.  Finally solved the issue by using Microsoft Exchange and "m.google.com" as server and domain and that the trick.  Think there is an issue with imap.gmail.com and IOS 6.0.1.  I'm sure the 5 of us suddently experiencing this issue aren't the only ones.  Apple will figure it out.  Thanks.

• InfoPath 2010 does not work in claims authentication mode on SharePoint 2010

  Hi everyone,
  I created an Infopath 2010 Forms published on a Claims-based authentication site collection. This form has an external datasource plugged on the
  _vti_bin/UserProfileService.asmx webservice (within the same site collection). This datasource is queried when the form opens. When I check this form with Infopath designer preview, everything works fine.
  But once this forms is published, an error "Error while trying to contact Web Service" occured when opening a new form.
  Here ere an extract of the logs:
  The following query failed: GetUserProfileByName (User: DOMAIN\username, Form Name: library, IP: , Connection Target: , Request: http://server/_layouts/FormServer.aspx?xsnLocation=http://server/library/forms/template.xsn?DefaultItemOpen=1&Source=http://server/page.aspx, Form ID: urn:schemas-microsoft-com:office:infopath:library:-myXSD-2010-01-12T23-08-28 Type: DataAdapterException, Exception Message: The remote server returned an error: (500) Internal Server Error.
  Server was unable to process request. ---> Attempted to perform an unauthorized operation.
  The remote server returned an error: (500) Internal Server Error.)
  Here is an extract of my IIS log:
  2010-11-25 13:45:30 fe80::b9ab:23d9:ff9e:bb23%11 POST /_vti_bin/userprofileservice.asmx - 50000 - fe80::b9ab:23d9:ff9e:bb23%11 InfoPathDA 500 0 0 41
  Additionnaly, you have to know :
  If we set the web application authentication mode in "Classic mode", everything work fine
  As soon as we set "Claim mode authentication", we reproduce the issue and this even if we are using a Windows integrated  account or an external account (SQL Memberships, Claims/AD)
  We reproduce this issue in different SharePoint FARM.
  It seems that this issue is generic with "Claims mode authentication" and i'm not shure that other forum can help us.
  How can I make this WebService works for my form?
  Thanks in advance.
  Seb Nicot

  I am not sure but a Code Solution might work ... I assume InfoPath 2010 is not Claims-Based aware.
  I am on SP1 and June 2011 CU but still had no luck
  If you only need the current user’s login name, then in the “FormEvents_Loading” event, you can retrieve the current user name with a call to the “Application.User.LoginName” property.  Here is an example:
          public void FormEvents_Loading(object sender, LoadingEventArgs e)
              XPathNavigator codeUserNameXPN = this.CreateNavigator().SelectSingleNode(
                  "/my:myFields/my:CodeRetrievedUserName", this.NamespaceManager);
              codeUserNameXPN.SetValue(this.Application.User.LoginName);
  OR ----------------
          public void FormEvents_Loading(object sender, LoadingEventArgs e)
              //A place to write the results
              XPathNavigator codeUserNameXPN = this.CreateNavigator().SelectSingleNode(
                  "/my:myFields/my:CodeRetrievedUserName", this.NamespaceManager);
              //codeUserNameXPN.SetValue(this.Application.User.LoginName);
              try
                  //ThresholdAuthentication is the web service reference to the
                  //https://test:24575/_vti_bin/authentication.asmx web service
                  GetUserName.ThresholdAuthentication.Authentication authenticationWS =
                      new GetUserName.ThresholdAuthentication.Authentication();
                  //Call the web service's Login method and pass the username and password of a site
                  //administrator so we have rights to read all user profiles
                  authenticationWS.Url = "https://test:24575/_vti_bin/authentication.asmx";
                  authenticationWS.CookieContainer = new System.Net.CookieContainer();
                  GetUserName.ThresholdAuthentication.LoginResult result = authenticationWS.Login(
                      "Admin", "Pa$$w0rd");
                  if (result.ErrorCode == GetUserName.ThresholdAuthentication.LoginErrorCode.NoError)
                      //If we authenticated correctly, then set up a call to the user profile service
                      //ThresholdUserProfileService is the web service reference to the
                      //https://test:24575/_vti_bin/userprofileservice.asmx web service
                      GetUserName.ThresholdUserProfileService.UserProfileService userProfileWS =
                          new GetUserName.ThresholdUserProfileService.UserProfileService();
                      //Pass the authentication cookies we got back from the authentication web service
                      userProfileWS.Url = "https://test:24575/_vti_bin/userprofileservice.asmx";
                      userProfileWS.CookieContainer = authenticationWS.CookieContainer;
                      //Try to find the user profile information of the current
                      GetUserName.ThresholdUserProfileService.PropertyData[] resultData =
                          userProfileWS.GetUserProfileByName(this.Application.User.LoginName);
                      //Enumerate through the properties
                      foreach (GetUserName.ThresholdUserProfileService.PropertyData property in resultData)
                          //Pick out the "AccountName" property and display it
                          if (property.Name == "AccountName")
                              codeUserNameXPN.SetValue(property.Values[0].Value.ToString());
                  else
                      //If we failed to authenticate properly, display the reason why
                      codeUserNameXPN.SetValue(result.ErrorCode.ToString());
              catch (System.Exception ex)
                  //If an exception occurred, report it.
                  codeUserNameXPN.SetValue(ex.Message);
  Note that in order for this code to work, you will need to make your form template fully-trusted in the “Security” section of the “Form Options” dialog, and then publish your form template to SharePoint as an Administrator-Approved form
  template

• Is it possible to have different authentication mode for SQL Server Database Engine and corresponding SQL Server instance?

  Hi,
  I have installed the x64 SQL Server 2008 R2 Express with default settings and run MBSA 2.3 (using default settings too). It shows three SQL Server instances: MSSQL10_50.SQLEXPRESS, SQLEXPRESS and SQLEXPRESS (32-bit). For the first, authentication
  mode is Windows, for the rest two - mixed. Here https://social.msdn.microsoft.com/Forums/sqlserver/en-US/03e470dc-874d-476d-849b-c805acf5b24d/sql-mbsa-question-on-folder-permission?forum=sqlsecurity question
  about such multiple instances was asked and the answer is that "MSSQL10.TEST_DB
  is the instance ID for the SQL Server Database Engine of the instance, TEST_DB", so in my case, it seems that MSSQL10_50.SQLEXPRESS is the instance ID for SQL Server Database Engine  of the SQLEXPRESS instance.
  I have two questions:
  1) How can it be that SQL Server DB Engine instance has different authentication mode than corresponding SQL Server Instance?
  2) Why 32-bit instance reported although I installed only 64-bit version?
  Also, this https://social.technet.microsoft.com/Forums/security/en-US/6b12c019-eaf0-402c-ab40-51d31dce968f/mbsa-23-reporting-sql-32bt-instance-is-running-in-mixed-mode-when-it-is-set-to-integrated?forum=MBSA question seems to be related to this
  issue, but there is no answer :(.
  Upd: Tried on clean Windows 8 installation and Windows 7 with the same result.

    Because I DO NOT want the three people who will be having access to the production SQL Server to also have access to the primary host ProductionA.  Since I have to allow them to RDC into the box to manage the SQL Server, I figure why not create
  a separate VM for each one of them and they can RDC into those instead.
  Does this make any sense?
  Any tips are greatly appreciated.  The main reason for doing this is because the three people who will be accessing the box, I need to isolate each one of them and at the same time keep them off of the primary ProductionA.
  Thanks for your help.
  M
  Hello M,
  Since you dont want the 3 guys to have access to Production machine A.You can install SQL Server client .By client i mean SQL server management studio(SSMS) on there local desktop and then create login for them in SQL Server.Open port on which your SQL server
  is running for three of the machines so that they can connct.Now with SSMS installed on each machine each can connect to SQL server from there own machine.
  I would also like you to be cautious with giving Sysadmin privilege to all three of them ,first please note down what task they would do and then decide what rights to be provided.
  Your option will also work but you need to create 3 VM for that .Which is more tedious task.
  Hope this helps
  Please mark this reply as the answer or vote as helpful, as appropriate, to make it useful for other readers

• Whenever i on my iphone 5 from switch off mode, it always ask passward of my apple id for every downloaded application to get started?

  Whenver i on my iphone 5 from switch off mode, it always ask passward of my apple id for every downloaded application to get started?

  Hello knarfsnrub,
  Welcome to the Apple Support Communities. if you are having issues with connecting the Remote app with your Apple TV, then the following article provides troubleshooting steps to resolve the issue.
  Remote app for iPhone, iPad, or iPod touch can't connect to iTunes or Apple TV
  http://support.apple.com/kb/TS1741
  Regards,
  -Norm G.

• AUTHENTICATION MODE setting in universe connection.

  Hi All,
  I have an issue Related to Universe designer connection. Our system is BOE XI 3.1(Fix pack 1.3),sap integration kit, universe connection is based on sap bw query.
                       Main problem is i created a universe with connection to sap bw query(when creating the connection and there in connection for AUTHENTICATION MODE i set it to (*Use single sign on when refreshing reports at view time).* i am able to create reports using this universe in webintelligence in infoview and as well as rich client. But if our developer uses the same universe and creates Rich client report he is not able to create the report, but he can use infoview and the webintelligence reports are working fine. One more point he is able to use the same universe if the connection is modified by setting Authentication mode to Use specified user name and password then its working fine in Rich client. He is not able to create the universe in his machine setting this authentication mode to Use single sign on when refreshing reports at view time its throwing error  unable to connect to sap bw. But if he specifies the authentication mode to Use specified user name and password its working fine. I was able to create the universe with any type of authentication mode on my machine.
                Details:sun solaris(server)
                             BOE XI 3.1(FIX PACK 1.3)
                             SAP INTEGRATION KIT 3.1
                             CRYSTAL REPORTS 2008
                             XCELSIUS 2008.
                                 Can any one suggest any ideas about this situation. Sorry for the long message.Thanks in advance.
  Thanks,
  SK.
  Edited by: Siva Vallabhaneni on May 14, 2009 8:10 PM

  Hi SK,
  Can you Please make me clear first what is your intend to create the connection  (*Use single sign on when refreshing reports at view time) for creating universe.
  I have the solution to guide you Guys Please be clear to me what is your intend to created universe connection with (*Use single sign on when refreshing reports at view time) for creating universe.
  I am confident there is no need to change the universe connection to (*Use single sign on when refreshing reports at view time)for this simple issue right now.
  Please do keep me posted if you need any issues related to BOBJ.
  One Suggestion Please never use the word Main problem as a BO GUY.
  Nothing is impossible with BOBJ tool .
  Thanks
  Ashok Daliboyina

• Authentication mode in OAAM

  Hi,
  I am new with OAAM.
  In one of the models executed at pre-auth time I see a rule checking if the authentication mode of user is "Full Keypad".
  My question is: where I can change/read the authentication mode of a user? Directly in the the "VCRYPT_USERS.AUTH_TYPE_CODE" column of the OAAM schema?
  Thanks much.

  There seems to be some problem with your jps-config.xml . I think JPS experts in OPSS forum may be able to help you with jps-config
  Also check if correct jps-config is being picked by odi.

• IOS SMTP with authentication mode: none needed

  My smtp settings require an authentication mode set to None, but the option does not exist.
  How can I either add this as an option or work around the issue. I do not have the option to use another smtp server for outgoing mail.

  You probably have to do it on the computer

• Enterprise authentication Mode Login error

  Hi Gurus,
  I am having issues logging into webi client station with Enterprise authentication mode couldn't login, I trying to run it on administrator account.
  I was able to login through Standalone mode but not with other types of modes.
  As I am working on Universes with secured connection type it has to be on Enterprise mode in webi. Please correct me if my assumption is wrong.
  Thanks in Advance.
  Speedsin

  Hi,
  Check in CMC whether your login user (administrator) has all the required accesses or not.
  Cheers,
  Suresh

• SP 2013 Upgrade error - web application is configured with claims authentication mode however the content database you are trying to attach is intended to be used against a windows classic authentication mode.

  Hi there,
  I get this error when I perform a DB Attach upgrade from SharePoint 2010 to SharePoint 2013. 
  "web application is configured with claims authentication mode however the content database you are trying to attach is intended to be used against a windows classic authentication mode."
  Any help is appreciated. Thanks.

  There is other way of fixing this issue apart from what Amit mentioned. Create a classic based web application in SP 2013 using PowerShell.
  New-SPWebApplication -Name "TestApplication" -ApplicationPool "TestApplicationAppPool" -AuthenticationMethod "NTLM" -ApplicationPoolAccount (Get-SPManagedAccount "sppoc\spfarm") -Port 100 -URL "http://sp2013demo"
  Now mount the content database from SP 2010 on to the web application created above 
  Mount-SPContentDatabase WSS_Content_100 -DatabaseServer SQL2012Demo -WebApplication http://sp2013demo:100
  Once the mount is complete, convert the web application to use claims and migrate the user to use claims identity.
  Convert-SPWebApplication -Identity "http://sp2013demo:100" -To Claims –RetainPermissions -Force
  $w = Get-SPWebApplication "http://sp2013demo:100"
  $w.MigrateUsers($True)
  See my blog post about it: http://www.sharepointnadeem.com/2014/01/upgrade-from-sharepoint-2010-classic.html
  Please remember to up-vote or mark the reply as answer if you find it helpful.

• JDBC Connectivity for SQL Server 2005 Windows Authentication Mode

  Hi Everyone,
  In my Scenario we are using SQL Server 2005 with Mixed Mode Authentication. Now we are planning to move only with Windows Authentication Mode.
  We have configured DB with Window authentication mode & user id have been configured in PI channels however we are getting error. We checked microsoft site, which says Windows Authentication mode DB can not be connected using JDBC drivers.
  http://support.microsoft.com/kb/313100
  In this above link see Basic Connectivity Troubleshooting Section.
  Please let me know if someone confirued JDBC Channel Successfuly with Windows Authentication Mode.
  Thanks In Advance
  Regards,
  Bharathi.

  I think this issue is related to the way that Vista, Windows 7 and Windows 2008 / 2008 R2 treat users who are logged on to the system with an account that is a member of the local administrators group when SQL is running locally.
  If your SQL setup has left you with BUILTIN\Administrators being a member of the sysadmin server role and you start up SQL Management Studio you'd expect to be mapped to the sysadmin role if your user account is in the local administrators group, however
  these OS disable this ability and when you try to connect to the database engine SQL server doesn't know you are a member of the local administrators group.
  To get round this, close all your open SQL management studio windows and then start a new window by right clicking the icon in the start menu and chosing to run as administrator. This time when you try to connect to the SQL database engine, windows doesn't
  "hide" the fact that you are an administrator. If you need to do this a lot you can go to the compatibility tab on the properties of the shortcut and set it to always run as administrator.
  Alternatively you can install the admin tools remotely and you don't get this effect.
  Tim

• Data Federator authentication modes

  In Data Federator (3.0 SP1 or previous), Is there any authentication mode similar to AD/LDAP in BOE?
  What are the options available for dynamic logon, while connecting to a database via JDBC in the DF Data source definition screen?
  Thanks
  Tiji

  Hi Tiji,
  Connecting to Data Federator using BOE applications
  In Data Federator XI 3.0 SP1 and previous versions the only way to connect to Data Federator is to provide a user name and password. Data Federator manages its own repository of users.
  Using Universe Designer, you can create a Data Federator connection with two authentication modes:
  - Configured Identity: the same user name and password is used for all consumers of the connection
  - Database Mapping: the DBUser and DBPassword associated to the BOE user are used to connect to Data Federator.
  There is no support for single sign on.
  Creating a datasource using Data Federator Designer*
  When you register a new datasource using Data Federator Designer you have three authentication modes supported:
  - Configured Identity: the same user name and password is used to connect to the database (for all DF users).
  - Principal Mapping: a mapping can be defined between a DF user and data source credentials. This is done through creating and managing "login domains".
  - Caller Impersonation: the DF user and DF password is used to connect to the data source.
  The Principal Mapping mode is pretty similar to the feature in BOE called Database Mapping except that you are not restricted to a single DBUser/DFPassword pair whatever data source you want to access. This is more flexible. Note that there is no UI in Administrator to manage login domains. You have to run built in stored procedures in the query tool.
  Hope this helps,
  Mokrane
  Mokrane Amzal
  Software Development Manager
  SAP BusinessObjects Divison

• There is an inconsistency between the authentication mode of target web application and the source web application after migrating to claims

  I've had my farm upgraded from SP2010 to SP2013 for over 6 months now and all is well, however, I was refreshing my staging environment from production and I noticed that one of the databases still shows these errors when I run test-spcontentdatabase:
  Category             : Configuration
  Error             : False
  UpgradeBlocking : False
  Message           : The [SharePoint Web App] web application is configured with claims authentication mode however the content database you are trying to attach is intended to be used against
  a windows classic authentication mode.
  Remedy              : There is an inconsistency between the authentication mode of target web application and the source web application. Ensure that the authentication mode setting in upgraded web application is the
  same as what you had in previous SharePoint 2010 web application. Refer to the link "http://go.microsoft.com/fwlink/?LinkId=236865" for more information.
  This doesn't make sense considering I converted the production web application to claims during the upgrade and then verified all sites were working with claims logins. I also verified that existing AD user identities were converted to claims by checking out
  the database tables. Yet test-spcontentdatabase still thinks there is a mismatch here.
  My farm is SP1 and no further CUs. The point of this particular refresh is so I can update to the November CUs in my test farm. Anyone else see this? Seems like it's a bug/safe to ignore because my stuff is working.
  Thanks,
  Aaron

  See:
  http://thesharepointfarm.com/2014/11/test-spcontentdatabase-classic-to-claims-conversion/
  Trevor Seward
  Follow or contact me at...
  &nbsp&nbsp
  This post is my own opinion and does not necessarily reflect the opinion or view of Microsoft, its employees, or other MVPs.