Links Authentication

Hi Experts,
Why does following 1st links ask for login dialog and the 2nd link does not ask for it when send thest links via lotus notes email?
1:
http://servername.com/irj/go/km/docs/MyDocs/Home/News/e0f5e260-16f5-2a10-3c98-ed0dfec5122f.xml
2:
http://servername.com/irj/servlet/prt/portal/prtroot/com.sap.km.cm.xmlformpreview?XMLFormID=LanguageNews&show/test=/MyDocs/Home/TesNews/2013c26e-a1e3-2a10-5d8c-f66f51649a77.xml
Best Regards,
Satya

Hi,
Here are the component declarations of both components:
<component name="docs">
 <component-config>
 <property name="ClassName" value="com.sapportals.wcm.portal.proxy.WDServletProxy"/>
 <property name="ComponentType" value="servlet"/>
 <property name="SafetyLevel" value="low_safety"/>
 </component-config>
 <component-profile>
 <property name="path" value="">
 <property name="description" value="DOCS_PATH"/>
 <property name="longDescription" value="Path to the document to be displayed in iView."/>
 <property name="plainDescription" value="Path to Document"/>
 </property>
 <property name="AuthScheme" value="basicauthentication"/>
 <property name="SupportedUserAgents" value="(*,*,*)">
 <property name="validvalues" value="7/(*,*,*)"/>
 </property>
 </component-profile>
 </component>
 <component name="xmlformpreview">
 <component-config>
 <property name="ClassName" value="com.sapportals.wcm.portal.proxy.PreviewServletProxy"/>
 <property name="ComponentType" value="servlet"/>
 <property name="SafetyLevel" value="low_safety"/>
 </component-config>
 <component-profile>
 <property name="XMLFormID" value="">
 <property name="description" value="XMLFORM_XMLFORMID"/>
 <property name="plainDescription" value="XML Form ID"/>
 </property>
 </component-profile>
 </component>
You can see that docs component has profile property AuthScheme set to basicauthentication, which is the reason why it shows login dialog. When you create IView of this component you can change the AuthScheme to default which will not ask for login.
Then you can send the link to this KM Document IView as follows:
http://portalservername/irj/servlet/prt/portal/prtroot/pcd!3a!2f!2fportal_content!2fYourIView
Here your IView's pcd path should be given after prtroot.
Regards,
Praveen Gudapati

Similar Messages

WAD links authentication in Xcelsius

Hello All,
I am developing a swf file in Xcelsius dashboard in which WAD URL are pasted. This SWF file is deployed in the portal .
The requirement is when user clicks on the WAD links to open the reports system should not ask for user name and password , it should directly pick the portal credentials.
How this can be done?
Thanks!

We have the scenario working. We save the Xcelsius dashboard on the BW server and render it on the SAP portal using DASHBOARD=<Xcelsoius file name> query string.
In the Xcelsius dashboard we used the WAD URL link without the server:port information. If you need the exact URL part programmed in Xcelsius let me know and I can look it up.
Vineet

PHP iTunes U authentication issue

I’ve been working with integrating iTunes U with Moodle. On the Moodle site there is an iTunes U block available for integrating the 2 systems. I’ve been trying to use this and I am able to get to the iTunes U site from Moodle, but I am not being signed into the site as an authenticated user. I can’t seem to figure out why. I was however able to authenticate with a Perl script.
The Moodle block has a Setting section where I fill in all my site specific information such as the Shared Secret. This is definitely working fine as I am able to get to my site without issue. But, the passing of the credentials and identity do not seem to be working because I am not being signed in as an authenticated user.
Right now my Credentials are very basic – formatted just like the sample ones – such as:
Adminstrator@urn:mace:itunesu.com:sites:example.edu (where example.edu is my school’s name).
Can anyone review the files below and shed some light on why I am not getting authenticated?
Thanks.
Itunes_redirect.php
<?php // $Id: itunesu_redirect.php,v 1.1 2008/06/06 19:08:49 mchurch Exp $
require_once('../../config.php');
global $USER, $CFG;
require_once($CFG->dirroot.'/lib/weblib.php');
require_once($CFG->dirroot.'/lib/moodlelib.php');
require_once($CFG->dirroot.'/blocks/itunesu/itunes.php');
if (!isloggedin()) {
print_error('sessionerroruser', '' , $CFG->wwwroot);
$destination = required_param('destination', SITEID, PARAM_INT); // iTunes U destination
$name = fullname($USER);
/* Create instance of the itunes class and initalized instance variables */
$itunes = new itunes();
$itunes->setUser($name, $USER->email, $USER->username, $USER->id);
/* more work needs to be done with determining credentials */
$itunes->setAdminCredential($CFG->blockitunesuadmincred);
$itunes->setInstructorCredential($CFG->blockitunesuinsturctcred);
$itunes->addAdminCredentials();
$itunes->setSiteURL($CFG->blockitunesuurl);
$itunes->setSharedSecret($CFG->blockitunesusharedsecret);
$itunes->setDestination($destination);
$itunes->invokeAction();
?>
Itunes.php file:
<?php
# iTunes Authentication Class
# Written by Aaron Axelsen - [email protected]
# University of Wisconsin - Whitewater
# Edited by Ryan Pharis, [email protected] - Texas Tech University
# Class based on the Apple provided ITunesU.pl
# example script.
# REQUIREMENTS:
# PHP:
# - tested with PHP 5.2
# - make sure hash_hmac() works - <a class="jive-link-external-small" href="http://us2.php.net/manual/en/function.hash-hmac.php">http://us2.php.net/m anual/en/function.hash-hmac.php</a>
# - php curl support
#Example Usage:
<?php
include('itunes.php');
$itunes = new itunes();
// show loading screen while processing request
//include(ROOTURL.'/includes/pages/itunesload.php');
// Set User
$itunes->setUser("Jane Doe", "[email protected]", "jdoe", "42");
// Set Admin Permissions
$itunes->addAdminCredentials();
// Set Instructor Permission
//$itunes->addInstructorCredential('uniquename_fromitunes');
// Set Student Credential
//$itunes->addStudentCredential('uniquename_fromitunes');
// Set Handle
// This will direct login to the specific page
#$itunes->setHandle('');
// iTunes U Auth Debugging
$itunes->setDebug(true);
$itunes->invokeAction();
?>
class itunes {
// Oktech - add
var $authtoken;
var $siteURL;
var $debugSuffix;
var $sharedSecret;
var $administratorCredential;
var $instructorCredential;
var $studentCredential;
var $urlonly;
var $urlcredentials;
var $destination;
// Oktech
* Create iTunes Object
public function __construct() {
$this->setDebug(false);
$this->siteURL = 'https://deimos.apple.com/WebObjects/Core.woa/Browse/example.edu';
$this->directSiteURL = 'https://www.example.edu/cgi-bin/itunesu';
$this->debugSuffix = '/abc1234';
$this->sharedSecret = 'STRINGOFTHIRTYTWOLETTERSORDIGITS';
$this->administratorCredential = 'Administrator@urn:mace:itunesu.com:sites:example.edu';
$this->studentCredential = 'Student@urn:mace:itunesu.com:sites:example.edu';
$this->instructorCredential = 'Instructor@urn:mace:itunesu.com:sites:example.edu';
$this->credentials = array();
// Set domain
$this->setDomain();
// Oktech add
public function getInstructorCredential() {
return $this->instructorCredential;
public function setInstructorCredential($credential) {
$this->instructorCredential = $credential;
public function getStudentCredential() {
return $this->studentCredential;
public function setStudentCredential($credential) {
$this->studentCredential = $credential;
public function getAdminCredential() {
return $this->administratorCredential;
public function setAdminCredential($credential) {
$this->administratorCredential = $credential;
public function getSharedSecret() {
return $this->sharedSecret;
public function setSharedSecret($sharedsecret) {
$this->sharedSecret = $sharedsecret;
public function getAuthToken() {
return $this->authtoken;
public function setAuthToken($authtoken) {
$this->authtoken = $authtoken;
public function getDebugSuffix() {
return $this->directSiteURL;
public function setDebugSuffix($debugsuffix) {
$this->directSiteURL = $debugsuffix;
public function getSiteURL() {
return $this->siteURL;
public function setSiteURL($siteurl) {
$this->siteURL = $siteurl;
* Extract the URL from the return html
* block from the iTunes U server. Replace
* Apple's itmss tag with https
private function extractURL($htmlblock) {
$remainder = '';
$pos = 0;
$result = '';
$remainder = strstr($htmlblock, "_open('i");
$remainder = substr_replace($remainder, '', 0, 7);
$remainder = substr_replace($remainder, 'https', 0, 5);
$pos = strpos($remainder, "');");
$result = substr_replace($remainder, '', $pos);
$this->urlonly = $result;
public function getExtractedURL() {
return $this->urlonly;
* Extract the credentials part from the returned URL from
* the iTunes U server
public function extractURLCredentials($url) {
$result = '';
$pos = 0;
$remainder = strstr($url, "gtcc.edu?");
$remainder = substr_replace($remainder, '', 0, 9);
$this->urlcredentials = $remainder;
public function getExtractedURLCredentials() {
return $this->urlcredentials;
public function setDestination($destination) {
$this->destination = $destination;
public function getDestination() {
return $this->destination;
// Oktech add
* Add's admin credentials for a given user
public function addAdminCredentials() {
$this->addCredentials($this->administratorCredential);
* Add Student Credential for a given course
public function addStudentCredential($unique) {
$this->addCredentials($this->studentCredential.":$unique");
* Add Instructor Credential for a given course
public function addInstructorCredential($unique) {
$this->addCredentials($this->instructorCredential.":$unique");
* Set User Information
public function setUser($name, $email, $netid, $userid) {
$this->name = $name;
$this->email = $email;
$this->netid = $netid;
$this->userid = $userid;
return true;
* Set the Domain
* Takes the siteURL and splits off the destination, hostname and action path.
private function setDomain() {
$tmpArray = split("/",$this->siteURL);
$this->siteDomain = $tmpArray[sizeof($tmpArray)-1];
$this->actionPath = preg_replace("/https:\/\/(.+?)\/.*/",'$1',$this->siteURL);
$pattern = "/https:\/\/".$this->actionPath."(.*)/";
$this->hostName = preg_replace($pattern,'$1',$this->siteURL);
$this->destination = $this->siteDomain;
return true;
* Set the Handle
* Takes the handle as input and forms the get upload url string
* This is needed for using the API to upload files directly to iTunes U
public function setHandle($handleIn) {
$this->handle = $handleIn;
$this->getUploadUrl = "http://deimos.apple.com/WebObjects/Core.woa/API/GetUploadURL/".$this->siteDoma in.'.'.$this->handle;
return true;
* Get Identity String
* Combine user identity information into an appropriately formatted string.
* take the arguments passed into the function copy them to variables
private function getIdentityString() {
# wrap the elements into the required delimiters.
return sprintf('"%s" <%s> (%s) [%s]', $this->name, $this->email, $this->netid, $this->userid);
* Add Credentials to Array
* Allows to push multiple credientials for a user onto the array
public function addCredentials($credentials) {
array_push($this->credentials,$credentials);
return true;
* Get Credentials String
* this is equivalent to join(';', @_); this function is present
* for consistency with the Java example.
* concatenates all the passed in credentials into a string
* with a semicolon delimiting the credentials in the string.
private function getCredentialsString() {
#make sure that at least one credential is passed in
if (sizeof($this->credentials) < 1)
return false;
return implode(";",$this->credentials);
private function getAuthorizationToken() {
# Create a buffer with which to generate the authorization token.
$buffer = "";
# create the POST Content and sign it
$buffer .= "credentials=" . urlencode($this->getCredentialsString());
$buffer .= "&identity=" . urlencode($this->identity);
$buffer .= "&time=" . urlencode(mktime());
# returns a signed message that is sent to the server
$signature = hash_hmac('SHA256', $buffer, $this->sharedSecret);
# append the signature to the POST content
return sprintf("%s&signature=%s", $buffer, $signature);
* Invoke Action
* Send a request to iTunes U and record the response.
* Net:HTTPS is used to get better control of the encoding of the POST data
* as HTTP::Request::Common does not encode parentheses and Java's URLEncoder
* does.
public function invokeAction() {
$this->identity = $this->getIdentityString();
$this->token = $this->getAuthorizationToken();
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $this->generateURL() . '?' . $this->token);
//curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
// Oktech - change
$this->authtoken = curl_exec($ch);
curl_close($ch);
/* Start a new sesstion and send a request for specific content with the appropriate credentials */
$ch = curl_init();
$this->extractURL($this->authtoken);
$this->extractURLCredentials($this->urlonly);
curl_setopt($ch, CURLOPT_URL, $this->siteURL . '.' . $this->destination . '?' . $this->urlcredentials);
//curl_setopt($ch, CURLOPT_POST, 1);
curl_exec($ch);
curl_close($ch);
// Oktech
* Auth and Upload File to iTunes U
* This method is said to not be as heavily tested by apple, so you may have
* unexpected results.
* $fileIn - full system path to the file you desire to upload
public function uploadFile($fileIn) {
$this->identity = $this->getIdentityString();
$this->token = $this->getAuthorizationToken();
// Escape the filename
$f = escapeshellcmd($fileIn);
// Contact Apple and Get the Upload URL
$upUrl = curl_init($this->getUploadUrl.'?'.$this->token);
curl_setopt($upUrl, CURLOPT_RETURNTRANSFER, true);
$uploadURL = curl_exec($upUrl);
$error = curl_error($upUrl);
$http_code = curl_getinfo($upUrl ,CURLINFOHTTPCODE);
curl_close($upUrl);
print $http_code;
print "
$uploadURL";
if ($error) {
print "
$error";
# Currently not working using php/curl functions. For now, we are just going to echo a system command .. see below
#// Push out the designated file to iTunes U
#// Build Post Fields
#$postfields = array("file" => "@$fileIn");
#$pushUrl = curl_init($uploadURL);
#curl_setopt($pushUrl, CURLOPT_FAILONERROR, 1);
#curl_setopt($pushUrl, CURLOPT_FOLLOWLOCATION, 1);// allow redirects
#curl_setopt($pushUrl, CURLOPT_VERBOSE, 1);
#curl_setopt($pushUrl, CURLOPT_RETURNTRANSFER, true);
#curl_setopt($pushUrl, CURLOPT_POST, true);
#curl_setopt($pushUrl, CURLOPT_POSTFILEDS, $postfields);
#$output = curl_exec($pushUrl);
#$error = curl_error($pushUrl);
#$http_code = curl_getinfo($pushUrl, CURLINFOHTTPCODE);
#curl_close($pushUrl);
#print "
#print $http_code;
#print "
$output";
#if ($error) {
# print "
$error";
// Set the php time limit higher so it doesnt time out.
settimelimit(1200);
// System command to initiate curl and upload the file. (Temp until I figure out the php curl commands to do it)
$command = "curl -S -F file=@$f $uploadURL";
echo "
echo $command;
exec($command, $result, $error);
if ($error) {
echo "I'm busted";
} else {
print_r($result);
echo $command;
* Set Debugging
* Enable/Disable debugging of iTunes U Authentication
public function setDebug($bool) {
if ($bool) {
$this->debug = true;
} else {
$this->debug = false;
return true;
* Generate Site URL
* Append debug suffix to end of url if debugging is enabled
private function generateURL() {
if ($this->debug) {
return $this->siteURL.$this->debugSuffix;
} elseif ($this->isHandleSet()) {
return $this->directSiteURL.'.'.$this->handle;
} else {
return $this->siteURL;
* Check to see if the handle is set
private function isHandleSet() {
if (isset($this->handle))
return true;
else
return false;
?>

Janet ... hmmm ... I suppose it could also be "Jane T. Smith" ... ah well, anywho,
One thing to understand when it comes to credentialling is that, even if your transfer CGI (Moodle block) doesn't work ... if you redirect someone to your iTunes U site, that person will -always- carry two credentials ... "Unauthenticated" and "All". You do not have to assign the credentials ... they are automatic.
Put it this way, if I direct you to my site:
https://deimos.apple.com/WebObjects/Core.woa/Browse/uic.edu
if you click on that link, authentication or no, Apple will give you the "Unauthenticated" and "All" credentials. Anywhere on my site where those creds are good, you'll have access.
Hmmm ... maybe I can rephrase it this way ... there are four credentials that are a part of every site ...
All ... everyone who accesses your site gets this cred ... everyone.
Authenticated ... if you pass a valid iTunes U URL request for a user, he/she will get this cred.
Unauthenticated ... this cred is given whenever someone gets to your site -without- a tokenized (credentials, identity, time, signature) URL request. For example, if someone uses your site base URL without any modification.
Administrator ... this cred has total access to a site.
So if you access your site using your admin cred, you'll actually carry three creds ... "Administrator" (of course), but also "All" and "Authenticated".
So why this long discussion of creds? Well, if you're getting in with the "Unauthenticated" credential, it's a sure sign your transfer CGI (Moodle thingy) isn't working ... at all. It's not that you can't pass the admin cred ... or identity info ... you're not passing any info. And because you're not passing any info, iTunes U does the default thing ... give you "All" and "Unauthenticated" access.

How to configure Axis stubs for Integrated Windows Authentication ?

Hi All,
I am trying to consume a web service on https and it uses .NET with Integrated Windows Authentication Security Mechanism. When I type the web service endpoint address in browser I am prompted for a login dialog and I login using username (in the format <domain name>\\<username>) and password given by the web service provider.
Now I have generated stubs using AXIS 1.2 Final but I dont know how to pass or set the credentials (domain, username, password) in my client program. I tried <stub object>.setUsername and <stub object>.setPassword methods but I am not able to connect to the service and I always get HTTP Error Code 401.2 from the service. I am not sure this is right way to set credentials in my code. I tried searching this mailing list but no avail. Can anyone please help me.
Thanks & Regards,
Kr.

Hello all - I ran into this and spent way too much time looking for the answer, however this is how I got it to work. My code was specific to getting SSRS authenication working so it should work with any NTLM authenciation via HTTP. setAuthenticateProperty() actually does the enabling of NTLM.
* Sets up the needed information to enable NTLM authentication for SOAP/HTTP calls..
* @author Brian Hayes
public class NTLMAuthenticator {
 private Authenticator authenticator;
 private String username;
 private String password;
 private String domain;
 private String host;
 private URL wsdlurl;
 * Uses the endpoint.getHost() as the host name to use for authentication.
 * <li> Generally the endpoint host is the target for actual authenciation.
 * 
 * @param endpoint -
 * The URL location of SSRS ReportExecution2005 wsdl.
 * @param username -
 * User name needed for NTLM authentication.
 * @param password -
 * Password needed for NTLM authentication.
 * @param domain -
 * Domain for the user needed for NTLM authentication.
 public NTLMAuthenticator( URL wsdlurl, String username, String password, String domain ) {
 this.wsdlurl = wsdlurl;
 this.host = wsdlurl.getHost();
 this.username = username;
 this.password = password;
 this.domain = domain;
 this.authenticator = null;
 * Instruct our NTLM authenticator to use setPreemptiveAuthentication or not. Default is true;
 * @return - true or false
 protected boolean usePreemptiveAuthentication(){
 return true;
 * The {@link Authenticator} is used to setup NTLM authentication to a webservice stub/client. 
 * Example: 
 * If you extended a Stub object, you would call getClient() or your Stub object. 
 * Then super._getServiceClient().getOptions().setProperty(HTTPConstants.AUTHENTICATE, getAuthenticator()); 
 * <li>This should work with any URL/Soap call but it has only been tested with axis2 stubs.
 * <li> This also used PreemptiveAuthentication.
 * @return - {@link Authenticator} object populated.
 public Authenticator getAuthenticator() {
 if (this.authenticator == null) {
 this.authenticator = new Authenticator();
 List<String> auth = new ArrayList<String>();
 auth.add(Authenticator.NTLM);
 authenticator.setAuthSchemes(auth);
 authenticator.setUsername(this.getUsername());
 authenticator.setPassword(this.getPassword());
 authenticator.setDomain(this.getDomain());
 authenticator.setHost(this.getHost());
 authenticator.setPreemptiveAuthentication(this.usePreemptiveAuthentication());
 return authenticator;
 public void setAuthenticator( Authenticator authenticator ) {
 this.authenticator = authenticator;
 public String getUsername() {
 return username;
 public void setUsername( String username ) {
 this.username = username;
 public String getPassword() {
 return password;
 public void setPassword( String password ) {
 this.password = password;
 public String getDomain() {
 return domain;
 public void setDomain( String domain ) {
 this.domain = domain;
 public String getHost() {
 return host;
 public void setHost( String host ) {
 this.host = host;
 public URL getWsdlurl() {
 return wsdlurl;
 public void setWsdlurl( URL wsdlurl ) {
 this.wsdlurl = wsdlurl;
* NTML Support for webservices where our webservice is protected via NTLM.
* @author Brian Hayes
public class NTLMReportExecutionServiceStub extends ReportExecutionServiceStub {
 private NTLMAuthenticator endpointAuthenticator;
 * Enables NTML authentication to our SSRS reports by setting the property via setAuthenticeProperty();
 * @param authenticator
 * @throws AxisFault
 public NTLMReportExecutionServiceStub( NTLMAuthenticator endpointauthenticator ) throws AxisFault {
 this(endpointauthenticator.getWsdlurl().toString());
 this.endpointAuthenticator = endpointauthenticator;
 this.setAuthenticeProperty();
 private void setAuthenticeProperty(){
 super._getServiceClient().getOptions().setProperty(HTTPConstants.AUTHENTICATE, this.getEndpointAuthenticator().getAuthenticator());
 public NTLMAuthenticator getEndpointAuthenticator() {
 return endpointAuthenticator;
 public void setEndpointAuthenticator( NTLMAuthenticator endpointAuthenticator ) {
 this.endpointAuthenticator = endpointAuthenticator;
 * Overrides the default URL location.
 * @param wsdlurl
 * @throws AxisFault
 private NTLMReportExecutionServiceStub( String wsdlurl ) throws AxisFault {
 super(wsdlurl);
}

Database search not working

Hi all,
I am new to Orcale SES. I have to search database using SES. I have created database source with the following details:
Database Connection String,User ID,Password,View,Document Count,URL Prefix, Parse Attributes,
Remove deleted documents,Attachment Link Authentication Type
When I schedule crawler on database, log file shows following:
06:26:34:773 INFO     main          Total number of documents fetched = 0
06:26:34:773 INFO     main          Document fetch failures = 0
06:26:34:773 INFO     main          Document conversion failures = 0
06:26:34:774 INFO     main          Total number of unique documents indexed = 0
06:26:34:774 INFO     main          Total data collected = 0 bytes
06:26:34:774 INFO     main          Total number of non-indexable documents = 0
06:26:34:774 INFO     main
06:26:34:774 INFO     main          Number of times disk cache is full = 0
crawl statistics is 0.
Am I missing something here?
Please help.
Regards,
Purnima

Hi,
I have given table name (TESTSES) in view parameter. Yes TESTSES table contains all the mandatory parameters.
Crawler log file is not showing any errors. Following are the log file details:
06:26:10:518 INFO     main          Loading training data /u01/apps/oracle/product/11.1.2.0.0/ses/seshome/search/data/training//german.dat for language de
06:26:10:528 INFO     main          Loading training data /u01/apps/oracle/product/11.1.2.0.0/ses/seshome/search/data/training//italian.dat for language it
06:26:10:540 INFO     main          Loading training data /u01/apps/oracle/product/11.1.2.0.0/ses/seshome/search/data/training//portugue.dat for language pt
06:26:10:551 INFO     main          Loading training data /u01/apps/oracle/product/11.1.2.0.0/ses/seshome/search/data/training//spanish.dat for language es
06:26:10:570 INFO     main          Done
06:26:11:636 INFO     filter_0          Initializing crawler plug-in "Database Crawler Plugin"
06:26:11:636 INFO     crawler_4          Initializing crawler plug-in "Database Crawler Plugin"
06:26:11:637 INFO     crawler_4          AppJDBC crawler initialization: Connection string is jdbc:oracle:thin:@nacisdell221.us.oracle.com:1534:BFNDEV
06:26:11:636 INFO     crawler_3          Initializing crawler plug-in "Database Crawler Plugin"
06:26:11:636 INFO     filter_0          AppJDBC crawler initialization: Connection string is jdbc:oracle:thin:@nacisdell221.us.oracle.com:1534:BFNDEV
06:26:11:637 INFO     crawler_2          Initializing crawler plug-in "Database Crawler Plugin"
06:26:11:637 INFO     crawler_2          AppJDBC crawler initialization: Connection string is jdbc:oracle:thin:@nacisdell221.us.oracle.com:1534:BFNDEV
06:26:11:637 INFO     crawler_3          AppJDBC crawler initialization: Connection string is jdbc:oracle:thin:@nacisdell221.us.oracle.com:1534:BFNDEV
06:26:11:636 INFO     filter_1          Initializing crawler plug-in "Database Crawler Plugin"
06:26:11:638 INFO     filter_1          AppJDBC crawler initialization: Connection string is jdbc:oracle:thin:@nacisdell221.us.oracle.com:1534:BFNDEV
06:26:11:649 INFO     crawler_4          Loading oracle Driver
06:26:11:649 INFO     crawler_4          Connecting to database jdbc:oracle:thin:@nacisdell221.us.oracle.com:1534:BFNDEV, user: arg
06:26:11:650 INFO     filter_0          Loading oracle Driver
06:26:11:651 INFO     filter_0          Connecting to database jdbc:oracle:thin:@nacisdell221.us.oracle.com:1534:BFNDEV, user: arg
06:26:11:653 INFO     crawler_2          Loading oracle Driver
06:26:11:653 INFO     crawler_2          Connecting to database jdbc:oracle:thin:@nacisdell221.us.oracle.com:1534:BFNDEV, user: arg
06:26:11:658 INFO     crawler_3          Loading oracle Driver
06:26:11:658 INFO     crawler_3          Connecting to database jdbc:oracle:thin:@nacisdell221.us.oracle.com:1534:BFNDEV, user: arg
06:26:11:668 INFO     filter_1          Loading oracle Driver
06:26:11:668 INFO     filter_1          Connecting to database jdbc:oracle:thin:@nacisdell221.us.oracle.com:1534:BFNDEV, user: arg
06:26:15:328 INFO     crawler_4          Crawler plug-in "Database Crawler Plugin" crawl starts
06:26:15:331 INFO     crawler_4          Previous max. last modified date: 2010-05-24T00:00:00
06:26:15:331 INFO     crawler_4          Query key only= false; SQL Statement = select * from (select * from (TESTSES) mqry where LASTMODIFIEDDATE > ?) where ROLLNO = ?
06:26:15:331 INFO     crawler_4          No subqueries to create PreparedStatements
06:26:15:331 INFO     crawler_4          No subqueries to create PreparedStatements
06:26:18:332 INFO     filter_1          Crawler plug-in "Database Crawler Plugin" crawl starts
06:26:18:334 INFO     filter_1          Previous max. last modified date: 2010-05-24T00:00:00
06:26:18:334 INFO     filter_1          Query key only= false; SQL Statement = select * from (select * from (TESTSES) mqry where LASTMODIFIEDDATE > ?) where ROLLNO = ?
06:26:18:334 INFO     filter_1          No subqueries to create PreparedStatements
06:26:18:334 INFO     filter_1          No subqueries to create PreparedStatements
06:26:21:366 INFO     crawler_3          Crawler plug-in "Database Crawler Plugin" crawl starts
06:26:21:367 INFO     crawler_3          Previous max. last modified date: 2010-05-24T00:00:00
06:26:21:368 INFO     crawler_3          Query key only= false; SQL Statement = select * from (select * from (TESTSES) mqry where LASTMODIFIEDDATE > ?) where ROLLNO = ?
06:26:21:368 INFO     crawler_3          No subqueries to create PreparedStatements
06:26:21:368 INFO     crawler_3          No subqueries to create PreparedStatements
06:26:24:367 INFO     crawler_2          Crawler plug-in "Database Crawler Plugin" crawl starts
06:26:24:368 INFO     crawler_2          Previous max. last modified date: 2010-05-24T00:00:00
06:26:24:368 INFO     crawler_2          Query key only= false; SQL Statement = select * from (select * from (TESTSES) mqry where LASTMODIFIEDDATE > ?) where ROLLNO = ?
06:26:24:368 INFO     crawler_2          No subqueries to create PreparedStatements
06:26:24:368 INFO     crawler_2          No subqueries to create PreparedStatements
06:26:27:415 INFO     filter_0          Crawler plug-in "Database Crawler Plugin" crawl starts
06:26:27:416 INFO     filter_0          Previous max. last modified date: 2010-05-24T00:00:00
06:26:27:416 INFO     filter_0          Query key only= true; SQL Statement = select URL,ROLLNO,LANG,LASTMODIFIEDDATE from (select * from (TESTSES) mqry where LASTMODIFIEDDATE > ?)
06:26:27:686 INFO     filter_0          Master query execution time: 270ms
06:26:27:686 INFO     filter_0          Previous max. last modified date: 2010-05-24T00:00:00
06:26:27:687 INFO     filter_0          Query key only= false; SQL Statement = select * from (select * from (TESTSES) mqry where LASTMODIFIEDDATE > ?) where ROLLNO = ?
06:26:27:687 INFO     filter_0          No subqueries to create PreparedStatements
06:26:27:687 INFO     filter_0          No subqueries to create PreparedStatements
06:26:27:687 INFO     filter_0          Shut down crawler plug-in "Database Crawler Plugin"
06:26:27:956 INFO     filter_0          Shut down crawler plug-in "Database Crawler Plugin"
06:26:28:227 INFO     filter_0          Shut down crawler plug-in "Database Crawler Plugin"
06:26:28:497 INFO     filter_0          Shut down crawler plug-in "Database Crawler Plugin"
06:26:28:768 INFO     filter_0          Shut down crawler plug-in "Database Crawler Plugin"
06:26:29:038 INFO     filter_0          Shutting down all crawling threads...
06:26:29:038 INFO     filter_0          Crawler plug-in "Database Crawler Plugin" crawl finishes
06:26:29:039 INFO     filter_0          Shut down document service agent "Default pipeline"
06:26:29:039 INFO     crawler_4          Crawler plug-in "Database Crawler Plugin" crawl finishes
06:26:29:040 INFO     filter_1          Crawler plug-in "Database Crawler Plugin" crawl finishes
06:26:29:041 INFO     crawler_2          Crawler plug-in "Database Crawler Plugin" crawl finishes
06:26:29:041 INFO     crawler_3          Crawler plug-in "Database Crawler Plugin" crawl finishes
06:26:29:061 INFO     cache_0          Caching thread cache_0 returns without getting a file
06:26:29:062 INFO     cache_0          Shutting down all caching threads...
06:26:29:062 INFO     cache_1          Caching thread cache_1 returns without getting a file
06:26:29:062 INFO     cache_2          Caching thread cache_2 returns without getting a file
06:26:29:062 INFO     cache_0          Total number of documents cached = 0
06:26:29:062 INFO     cache_0          Total data collected = 0 bytes
06:26:29:062 INFO     cache_0          Indexing log file is "search_i1ds4.log" under oracle_home/ctx/log/
06:26:29:098 INFO     cache_0          Indexing started at 5/24/10 6:26 AM
06:26:29:098 INFO     cache_0          Task ID = 19
06:26:29:234 INFO     monitor          Remote command "reportstatistics" received, argument = "null"
06:26:29:262 INFO     monitor          Executing remote command "reportstatistics"
06:26:29:266 INFO     monitor          Send back remote command execution result
06:26:29:515 INFO     cache_0          Indexing completed at 5/24/10 6:26 AM
06:26:34:518 INFO     cache_0          Done
06:26:34:518 INFO     main          Shutting down crawler...
06:26:34:518 INFO     main          Shut down crawler plug-in "oracle.search.plugin.db.DBCrawlerManager"
06:26:34:718 INFO     monitor          Remote command "reportstatistics" received, argument = "quit"
06:26:34:718 INFO     monitor          Executing remote command "reportstatistics"
06:26:34:719 INFO     monitor          Send back remote command execution result
06:26:34:772 INFO     main          Done
06:26:34:772 INFO     main
06:26:34:772 INFO     main          =================== Crawling results ===================
06:26:34:773 INFO     main          Crawling started at 5/24/10 6:26 AM
06:26:34:773 INFO     main          Crawling stopped at 5/24/10 6:26 AM
06:26:34:773 INFO     main          Total crawling time = 0:0:28
06:26:34:773 INFO     main
06:26:34:773 INFO     main          Total number of documents fetched = 0
06:26:34:773 INFO     main          Document fetch failures = 0
06:26:34:773 INFO     main          Document conversion failures = 0
06:26:34:774 INFO     main          Total number of unique documents indexed = 0
06:26:34:774 INFO     main          Total data collected = 0 bytes
06:26:34:774 INFO     main          Total number of non-indexable documents = 0
06:26:34:774 INFO     main
06:26:34:774 INFO     main          Number of times disk cache is full = 0

Initial installation in AD environment

Hello, I would like to implement OS X Server in my Windows 2003 AD environment, specifically use the wiki and iChat server. I notice in the documentation you have 3 implementation options
Standard
Workgroup
Advanced
My vision is to only use the Wiki and iChat services and link authentication of these services to our AD so after reading I chose the Workgroup deployment. It seems like the preferred admin tool when in Workgroup is Server Preferences and it suggest that using Server Admin could create unexpected results. What I found weird was that in the user groups in Server Preferences are not shown in Server Admin or Workgroup Manager. For instance I cannot add any External Members tot he Server Preferences group titled Workgroup but can create a new group with the Server Preferences and add external members.
Here are my questions
Was choosing Workgroup deployment a wise choice?
How do I see and modify user groups from with Server Preferences, specifically the default titled "Workgroup"

Don't be afraid to use your AD account, if you were to leave the organization it is very easy to copy your account settings back into a local account using the root user.
You simply login as root (after enabling it) & use Finder to copy all home folder data over to another local account's home folder (make sure you delete contents of home folder you are copying stuff to).
When done you simply open a terminal (still in root account) & run the following 3 commands.
cd /Users
chown -R <desired owner> <home folder>
chgrp -R staff <home folder>
This recursively changes permissions on your files to match the new account. Note that <home folder> is the name of the home folder of the new local account you've created & <desired owner> would be the shortname of the new local account (which should match name of the home folder).
In your directory binding utility if you have force local home checked then you account lives on your Mac so if you left the place you work it would still work on cached credentials. I always keep a backup local admin though just in case. Especially handy if my screen is locked & my AD account gets locked, you can unlock the screen with any local admin account & then I RDC into DC to unlock my account.

SSRS 2014 / IIS / SSL questions

1. Does SSRS2014 run independently of IIS (self hosted) or can it be hosted via IIS?
2. Can SSRS2014 be configured to use a self signed SSL cert (for development testing purposes)?
3. Can SSRS be configured with custom asp.net HTTP modules for authentication?
scott

Hi scott_m,
>1. Does SSRS2014 run independently of IIS (self hosted) or can it be hosted via IIS?
For SQL Server 2008 or later version, it has removed the dependency on IIS. SQL Server uses http.sys to allow you to have total control of the of the URL's to be used. See link below:
http://blogs.devhorizon.com/reza/2008/10/20/say-goodbye-to-iis-say-hello-to-httpsys/
>2. Can SSRS2014 be configured to use a self signed SSL cert (for development testing purposes)?
Yes, we can configure a self signed SSL cert in SSRS 2014. Please refer to link below:
Configuring Certificate for Use by SSL
>3. Can SSRS be configured with custom asp.net HTTP modules for authentication?
Yes, we can custom authentication in SSRS. See the following link:
Authentication in Reporting Services
Best Regards,
Simon Hou

Setup outgoing email for RoadRunner

I use OS X Mavericks and Mail on my MacBook Pro. I have setup my RoadRunner account and receive mail without any issues for several months, however I have never been able to send mail from my MAC using the RoadRunner account. A dialogue box is constantly telling me that my settings are incorrect.
I tried:
smtp-server.cinci.rr.com
smtp-server-cinci.rr.com
I have tried both by forcing the 587 Socket, using the default sockets, using each socket separately. I have tried all of this with/without password authentication and with/without SSL checked.
I am at a loss. Some of these settings cause me to stop receiving as well.
Any ideas?
Thanks

After several months I have found the answers.
For OS X Mavericks Mail, I used the following:
Roadrunner SMTP server
smtp-server.cinci.rr.com
Use Default Ports
Uncheck “Use Secure Socket Links”
Authentication: Password
User Name: [email protected]
Entered my Password
I am away from home and not using the Time Warner network, so I might have to change something when I get back home. Everything working fine now.
I then experimented with MS Outlook 2011 for MAC and found the following works for Outlook:
1. Roadrunner SMTP server
     a) smtp-server.cinci.rr.com
     b) Override Default Port (Default Port was 25)
     c) Use Port 587
     d) Uncheck “Use Secure Socket Links”
2. Select “More Options” Button
3. Authentication: User Name and Password
4. User Name: [email protected]
5. Entered my Password
So far so good. Might have to change when I get back to Cincinnati from my trip.

Requires LDAP authentication on the click of a link

i want to use anonymous login and after anonymous login if the user wants to click a secure resource link he should be prompted for a login screen and after the successful authentication against LDAP he should be directed to that resource. Can you please help me in getting solve this problem. i don't have any idea how to do this.

Here you go..
Layout code:
 <htmlb:button id = "MyButton"
 design = "STANDARD"
 onClick = "Menu"
 layout = "BLOCK" />
<% if my_event = 'Menu'. %>
 <htmlb:dropdownListBox id = "dd_id"
 selection = "<%= selected %>"
 onSelect="DD_event" >
 <htmlb:listBoxItem key = "key_delete" value = " Delete" />
 <htmlb:listBoxItem key = "key_create" value = "Create" />
 </htmlb:dropdownListBox>
<% endif. %>
Oninputprocessing:
DATA EVENT TYPE REF TO CL_HTMLB_EVENT.
IF NOT EVENT_ID IS INITIAL.
EVENT ?= CL_HTMLB_MANAGER=>GET_EVENT_EX( REQUEST ).
IF NOT EVENT IS INITIAL.
 CASE EVENT->SERVER_EVENT.
 WHEN 'Menu'.
 my_event = 'Menu'.
 WHEN 'DD_event'.
 CALL METHOD REQUEST->GET_FORM_FIELD
 EXPORTING
 NAME = 'dd_id'
 RECEIVING
 VALUE = selected.
* Here you will get the value key_create or key_delete.
* Write the logic..
 ENDCASE.
ENDIF.
ENDIF
Raja T

Can't log into BOE system using SAP Authentication when using Document Link

Hi all.
We are setting up our dev SBOP 4.0 SP2 system and are working on getting everything configured to our requirements.
What I am currently struggling with is the Document Link functionality.
If you browse to a document (WEBI or Crystal) in the folder view in the BI Launchpad and right click and select Document View, the system presents a static link to the report. The problem is, when I execute that link in another browser window, the system prompts me with the default login screen that consists of the User Name and Password which utilizes the Enterprise authentication by default. Our login authentication is set to SAP everywhere else.
I've already set the parameters for BILaunchpad.properties to allow us to log into the BOE server using our user IDs and that works without a problem. I've also configured the OpenDocument.properties file as well. Neither of these two files seem to have any impact on the screen I'm seeing when I try to use the Document Link. (And yes, I've restarted the tomcat server each time I've made a change to the config files.)
I'm running out of ideas - have any of you encountered this issue before and do you have any suggestions?
Thanks.
-Brian

Hi,
i saw this also a couple of times that the changes to the "custom" folder wont take affect.
Try the following:
1. Stop the Tomcat
2. Rename the properties file in the custom folder
3. take a backup of the properties file from the config folder
4. make the changes to the properties file in the config folder
5. start tomcat
Maybe this will solve the issue but if you deploy a new Fix Pack or Service Pack these Settings will get override.
If this solved your problem i would recommend you open a Support Message with the SAP Support.
Regards
-Seb.

Sharepoint authentication Client object model for direct links

We have a Sharepoint 2010 site and another website [ASP.Net Web API 2] which uses Client object model to get data from Sharepoint, this is an intranet environment.
The Client object model part of it is working fine, if any user logs in, it works with that user credentials. But when a user tries to access a direct SP link, ex: a link to a document from a document library, it pops up a credentials window.
How to get rid of this pop up window, or how to set the authentication for the entire server when the user logs in to our web api.

Hi,
The prompt for credential can be seen as a behavior by designed for the sake of safe and there are no solutions to avoid it at this moment per my knowledge.
Here is a similar thread will provide more information:
http://social.msdn.microsoft.com/Forums/sharepoint/en-US/85b5d22a-88ed-4975-8de9-1d65df293aeb/avoiding-prompting-for-authentication-when-accessing-the-aspx-page-in-layouts-folder-from-my?forum=sharepointdevelopmentprevious
Thanks
Patrick Liang
Forum Support
Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
[email protected]
Patrick Liang
TechNet Community Support

User created SQL Agent Job that uses linked server with Windows authentication

OK, here's what I want to do, but not sure exactly what I need to accomplish it.
Environment
Windows 2008 Enterprise
SQL 2012 Enterprise
SQL Server & SQL Agent running under AD account (which has local Windows Administrative privileges...yes, I know..bad!)
Linked server to Teradata utilizing AD account mappings (the linked server works successfully and each windows login is mapped to a Teradata LDAP login)
Requirement
Allow non sysadmins to create SQL Agent jobs which execute TSQL statements which use OPENQUERY(LDAPLinkedServer, '....) syntax
I've already given the non sysadmins the necessary permissions to create and run SQL Agent jobs, and I understand that the jobs run under their login context, but I suspect that I'm missing something when it comes to the linked server.
Each windows user could have access to different databases/tables on the Teradata system that even I (the SQL Server sysadmin) don't have access to.
How can I facilitate this functionality? Any ideas?

I think I may have been over complicating the Teradata piece. The authentication methodology in Teradata is LDAP, which just means that it authenticates against AD, but you still have to submit your Windows login & password. It doesn't automatically
authenticate you just because you're logged into Windows.
The linked server has the mapping for the individual windows logins like:
Local Login = <domain>.<windows id>
Remote User = <windows id>
Remote Password = <windows password>
This setup requires the user to have to change the passwords in the linked server whenever they change their passwords according to domain policy (every xx days)...but we've created a utility proc that they can use to do this.
So, I'm thinking that Teradata isn't really part of this equation.

To create a database link from oracle to sqlserver with NT authentication

Hi ,
I need to create a database link from oracle 9i to sql server database with windows authentication.I dont have the database username and password instead the access is given to my NT ID and password.So can anyone provide me the information about creating a dblink to sql server with windows authentication.
Thanks

Oracle is attempting to log in to SQL Server using NT authentication.
The Oracle process, however, is running presumably with a local admin account (normal for a Windows service). SQL Server has no idea what this local account is, so it denies the login.
You could change the Oracle service to run as a known user (presumably not as your Windows ID but some other Windows ID you create explicitly for Oracle) and then grant that Windows ID in SQL Server appropriate privileges. That would mean, though, that when you queried tables over the database link, you'd be using that new Windows ID's privileges on SQL Server, not your Windows ID's privileges.
As I've said, though, this is a general architectural limitation for a multi-tier architecture. The end system (SQL Server) generally has no idea who the end user (your Windows ID) is when that user is coming through a middle tier (Oracle). So it cannot apply end-user permissions to connections created by the middle tier.
Justin

Custom authentication - different user - no edit links

Hi
In my apex 3 application I use a custom authentication scheme, in which I validate users against our backoffice tables. However, I don’t have in those tables the database user that I use to develop apex applications.
When I run my application for the first time in the session (from the application builder tool) I am redirected to the login page and need to login. As I have to login using a different user, I don’t see at the bottom of the pages the edit links and I need to go back a number of times to get back to the app builder page.
What is the best practice in this case? Is it possible to tell apex not to use the login page if the app is being run from the app builder tool? (or something like that)
Thanks
Luis

Hi Scott
Thanks for the reply. I understand why this happens, but I was wondering if there was a way to circumvent this limitation, as I can't login as the database user I am using to build the application (because I don't have that user in my custom authentication scheme).
Of course I could add that user, but as it is maintained by another department (it is a live system and I would have to justify well why I need a new user just for development purposes), I was looking for another quicker, simpler solution.
Thanks
Luis

No authentication prompt using DFS links to fileserver into another domain with no trusts between both domains

Users , Fileservers and DFS root with DFS links in Domain A all work fine.
each users from Domain A have also credentials and passwords from Domain B
There is NO trust between Domain A and Domain B, both Domains are in different site connected with VPN-tunnel.
Projectdata is stored at fileservers in both Domains. Now DFS links are added in the Domain A to a fileserver from Domain B
When users from Domain A connects to fileserver in Domain B first he/she gets a prompt to authenticated, then DFS link to the fileserver in Domain B work.
When users just use DFS link they get a prompt "not accessible" + "Logon failure unknown user or bad password"
No prompt is given to users from Domain A to enter the credential for Domain B.
We cannot created a trust between these 2 Domains due other policy's

Hi,
According to your description, there is no trust between domain A and domain B, right?
Based on my research, if there is no trust between domains/forests, then it is not possible
to share information across domain boundaries, because without trust, no authentication traffic can be passed across domain/forest.
That is why the user cannot access the file he has rights to access across domain.
Here is an article below for your references:
Trust Technologies
http://technet.microsoft.com/en-us/library/cc759554(v=WS.10).aspx
I hope this helps.
Amy Wang

Links Authentication

Similar Messages

Maybe you are looking for