Lion PAC proxy asking for authentication reapeatedly

Hello, Can some bro help with this problem which never happens with the same PAC proxy on Snow Leopard, like title says, Lion (10.7.2) frequently pops up the dialog asking for the authentication for the proxy server.

Do not use the suggestion to unload the notification center.  That does not fix the problem.
This post provides the correct solution.
Usually a proxy authentication dialog allows the user the option to 'allow once' or 'always' etc, and to save the proxy login details to the user's login keychain.
But under both 10.8 and in particular 10.9 whenever a proxy is in use, the user gets bombarded with multiple recurrent proxy authentication dialogs without any save options and without any identifier.
Using the terminal command nettop, I discovered that the offending dialogs come from system processes, most notably syncdefaultsd.  (How to do this at the end of the post)
The problem is that syncdefaultsd is not keychain aware. It needs access to the user's proxy settings at regular intervals, but can't get them from the user's login keychain. It's proxy request dialog does not have the option to save the details to the user's keychain, and worse still does not identify syncdefaultsd as the requesting process. Even if you open your login keychain to allow any application access to your proxy, syncdefaultsd will still keep asking for your proxy details.
The solution is to ensure that you have working proxy settings saved in the *system* keychain, not just your personal login keychain.
So when you next get one of these dialogs:
1. Note the server name that is requesting authentication, the port (usually 8080) and if it is an http or https request. Typically it will be something in the form https://someproxyserver.someorganization.com:8080
2. See if you already have an entry for that server in your login keychain. If not, make one manually, (being sure to enter the whole thing as per the example above with the :8080 at the end). Typically that there needs to be two separate keychain entries per proxy server, one for http and a second for https, though syncdefaultsd only uses https.
3. Once you have login keychain entries for the proxy server, double-click them and ensure that under Access all applications are allowed, and that your user name is saved.
4. Now for the fun bit. Option-drag and drop these entries into your system keychain. Click on the system keychain, and confirm that they are there, and that all the settings are exactly right.
For good measure, do a shift-restart then a normal restart.
You should now get no more annoying dialogs for that particular proxy server. If your proxy server has more than one alias, or if you have several, then whenever you get a new unidentified dialog, repeat the above.
I discovered it using the terminal command nettop, typing into the terminal:
nettop -m tcp
This lists all active network processes. If you quit all apps you should still see quite a few network processes. If you see syncdefaultsd, wait for it to go away, or kill it via the Activity Monitor. If you haven't done the fix as above, and you open Safari, you'll see syncdefaultsd open shortly after Safari, and the annoying dialog immediately appears. After the fix is implemented, the dialogs don't appear when syncdefaultsd tries to start up.
Hope this helps someone, and that Apple fixes it in 10.9.1
Cheers
Chris.

Similar Messages

  • Proxy server keeps asking for authentication

    My MacOS10.7.3 server coordinates a small subnet of 100 macs. To access the internet as provided by the larger organisation we must go through a proxy server. Unfortunately the proxy server keeps asking for authentication and checking the Remember This Password barely helps. Any tips would be appreciated.

    Hi, the reply by ctzsnooze in the following thread was very helpful to me:
    https://discussions.apple.com/message/23848959#23848959

  • Wikipedia asking for authentication

    Hello all. I'm not sure when this started happening for me, at least within the past couple of days, but when I search for something on Wikipedia, or go to it via a direct link, it asks for authentication. I'm not sure if it could be the result of a virus or not, but I am currently running a scan. Assuming URLs work on these forums, here is a link to a screen shot of this problem http://img707.imageshack.us/i/authent.png/ This problem has only begun occurring in the past 8-10 hours and seems to be isolated to Wikipedia.
    Well it appears that I can go to Wikipedia if I use a web based proxy.

    Create an SM50 trace with only the security component turned to trace level 2. In order to do so, run transaction SM50 and select some of the dialog work processes (around 5). Then choose 'Processes -> Trace -> Active components' from the menu (or use CTRL-SHIFT-F7). Set the trace level to 2 and select only the 'Security' component. Reproduce the SSO problem, and note the time. Return to the SAP system to check the traces you just started (CTRL-SHIFT-F8 in SM50). This trace collects information on work process level. Therefore, you need to find the work process that has handled the authentication attempt.
    This procedure is described in Note 495911 in more detail.
    Nick

  • SMTP  doesn't ask for authentication, but won't send

    Hello,
    I have a javaMail program that has worked in the past, but since then I have switched ISP's. The new ISP does not provide email service, but my mother still has an account with the old ISP, so I tried connecting to the old one using her username and password. The thing is the old ISP doesn't ask for authentication, I can connect and it says sender "ok" but then it just denies my email saying "relaying denied", invalid destination address. I used to be able to send emails with any sender and destination email addresses from this same smtp server when I had an account(from my computer). So I guess my question is it still possible for me to use this smtp server when I have authentication, but it doesn't ask for it?
    here is debug code:
    DEBUG: SMTPTransport trying to connect to host "smtp.paulbunyan.net", port 25
    DEBUG SMTP RCVD: 220 ns9.PaulBunyan.net ESMTP server ready at Sat, 10 Aug 2002 1
    4:47:53 -0500
    DEBUG: SMTPTransport connected to host "smtp.paulbunyan.net", port: 25
    DEBUG SMTP SENT: EHLO me
    DEBUG SMTP RCVD: 250-ns9.PaulBunyan.net Hello c65.102.026.224.stc.mn.charter.com
    [65.102.026.224], pleased to meet you
    250-ENHANCEDSTATUSCODES
    250-PIPELINING
    250-8BITMIME
    250-SIZE 10000000
    250-DSN
    250-ETRN
    250-DELIVERBY
    250 HELP
    DEBUG SMTP Found extension "ENHANCEDSTATUSCODES", arg ""
    DEBUG SMTP Found extension "PIPELINING", arg ""
    DEBUG SMTP Found extension "8BITMIME", arg ""
    DEBUG SMTP Found extension "SIZE", arg "10000000"
    DEBUG SMTP Found extension "DSN", arg ""
    DEBUG SMTP Found extension "ETRN", arg ""
    DEBUG SMTP Found extension "DELIVERBY", arg ""
    DEBUG SMTP Found extension "HELP", arg ""
    DEBUG SMTP: use8bit false
    DEBUG SMTP SENT: MAIL FROM:<[email protected]>
    DEBUG SMTP RCVD: 250 2.1.0 <[email protected]>... Sender ok
    DEBUG SMTP SENT: RCPT TO:<[email protected]>
    DEBUG SMTP RCVD: 550 5.7.1 <[email protected]>... Relaying denied
    Invalid Addresses
    [email protected]
    DEBUG SMTPTransport: Sending failed because of invalid destination addresses
    thanks for any help

    If JavaMail doesn't see the "AUTH" line from the server, it won't attempt to authenticate.

  • Why is my public web site asking for authentication ?

    Hi,
    Why is my public web site asking for authentication ?
    My web site and the section of the default page belongs to Public group.
    My layout belongs to the WebAsset group.
    The document inside the default page belongs to Public group and Web/FP/RepMetiersSP account.
    Public group has only read access to everything.
    Also, what is the difference between unspecified group (inside site studio designer) and Public group ?
    Thanks,
    Jean-Pierre

    My fault. Inside this environment, I've specified the need for an account to access documents.

  • Why is google safari asking for authentication?

    Why is google safari asking for authentication?

    What's Google Safari? If you mean the Google search engine, it shouldn't. If you are access another section of Google, another app of fucntion, then it wan't you to log on to get to it.
    You might try cleaing Safari's cache (Settings app > Safari > Clear History and then Clear Cookies and Data). but without knowing more about what you are doing, its hard to tell what the issue is.

  • Public page asking for authentication

    Hi there,
    I have three pages in my application (aside from the login page) that are publicly accessible; ie, they have the 'Authentication' field in the page attributes set to 'Page Is Public'. Two of the pages work fine; they are accessible to unauthenticated users and display without hindrance. However, the third page always displays the login page instead of the page itself.
    There are differences between the way the pages are referred to. For example, setting pages' caches to be cleared, so I have tried using URLs with these components being the same and still get different behaviour. Also, they differ in setting variables in the URL so again, I have tried both setting variables and not in both the working and non-working pages and always get different behaviour.
    This is most strange behaviour; I have, within the same application, pages which should work the same way but don't. I would create a test case but the test case already exists within the application (the working public pages) and doesn't cause a problem.
    What reason could there be that one page set to be publicly accessible works fine with unauthenticated users but another page asks for authentication?
    Thanks,
    Robert

    Hi Dimitri,
    There's been a misunderstanding here. I don't use caching. What I mentioned was regarding the ClearCache component of Apex URLs (the 6th component.) Any pages listed in this component will have their item values cleared. This is distinct from Apex's rendering cache which appears to be what you're referring to.
    The issue is to do with different authentication behaviour in pages with the same settings.
    Regards,
    Robert

  • Reinstalling Lion OS and asking for Apple ID

    I have recently purchased a mac book secondhand and i have lauched in to the system recovery partition and erased the HD.
    I have then tried to instal Lion OS but asking for the Apple ID
    I have entered my own and says i have no purachsed this  - although it come originally with the Mac.
    Any ideas!?
    I have done some reading and seen a post about using the online recovery system - i have no tried this yet but will this work??
    thank you in advance!!

    Settings>Store...is your Apple ID shown? If not, sign in. If it's shown, tap it...sign out...then sign back in.

  • Flash Player will not install:  Asks for authentication of a proxy server.

    Trying to install Flash Player.  The installer asks for confirmation of a proxy server:  American Family Online.   This is a third party content filter that I used over 3 years ago, but no longer use.   I cannot authenticate, since I do not use this service anymore.  this prevents me from installing Flash Player.  I cannot find a reference to this in browser settings or security settings and do not currently use a proxy server.  What do I need to do to get past this and install Flash Player?
    Thanks,
    Prowler61

    Could you check the progress of the install.
    (1) Physical file location
    The DLL is deposited in this folder:
    C:\Windows\SysWOW64\Macromed\Flash
    Can you find NPSWF32_11_9_900_170.dll there?
    (2) Registry entry
    If the file exists, the next link in the chain is the registry entry Adobe leaves for Firefox to find.
    If you are comfortable using RegEdit, that should be here:
    HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer

  • Java Applet Constantly Asks for Authentication

    With have a ADF application on Weblogic 10 that has occasional access to a Java applet. The Java applet is loaded whenever it's needed and not loaded whenever it isn't in a facet. The applet is currently in the public_html/applet folder.
    When we set the SSL configuration to requiring a client certificate, when the Java applet loads, it'll constantly ask for a client certificate even though the user already presented the client when hitting the website:
    Request Authentication Identification required. Please select certificate to be used for authentication.
    This is annoying to users and the Java Applet doesn't need authentication. Is there any way we can disable the authentication or remove the prompt?
    Here's the embedded applet code:
    <applet height="1" width="1" code="applet.Applet.class"archive="/app/applet/SApplet.jar" /><param name="permissions" value="all-permissions"/></applet>
    Things I've already tried:
    1) Setting the Applet up on HTTP instead of HTTPS; I get a warning about mixed content and still get the authentication pop-up.
    2) Created a minimal applet that only types out "HELLO WORLD" in the console, still get the authentication pop-up
    Here's the console window:
    Java Plug-in 1.6.0_35
    Using JRE version 1.6.0_35-b10 Java HotSpot(TM) Client VM
    User home directory = C:\Users\mfan
    security: property package.access value sun.,com.sun.xml.internal.ws.,com.sun.xml.internal.bind.,com.sun.imageio.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.
    security: property package.access new value sun.,com.sun.xml.internal.ws.,com.sun.xml.internal.bind.,com.sun.imageio.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.javaws
    security: property package.access value sun.,com.sun.xml.internal.ws.,com.sun.xml.internal.bind.,com.sun.imageio.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.javaws
    security: property package.access new value sun.,com.sun.xml.internal.ws.,com.sun.xml.internal.bind.,com.sun.imageio.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.javaws,com.sun.deploy
    security: property package.access value sun.,com.sun.xml.internal.ws.,com.sun.xml.internal.bind.,com.sun.imageio.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.javaws,com.sun.deploy
    security: property package.access new value sun.,com.sun.xml.internal.ws.,com.sun.xml.internal.bind.,com.sun.imageio.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.javaws,com.sun.deploy,com.sun.jnlp
    security: property package.definition value sun.,com.sun.xml.internal.ws.,com.sun.xml.internal.bind.,com.sun.imageio.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.
    security: property package.definition new value sun.,com.sun.xml.internal.ws.,com.sun.xml.internal.bind.,com.sun.imageio.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.javaws
    security: property package.definition value sun.,com.sun.xml.internal.ws.,com.sun.xml.internal.bind.,com.sun.imageio.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.javaws
    security: property package.definition new value sun.,com.sun.xml.internal.ws.,com.sun.xml.internal.bind.,com.sun.imageio.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.javaws,com.sun.deploy
    security: property package.definition value sun.,com.sun.xml.internal.ws.,com.sun.xml.internal.bind.,com.sun.imageio.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.javaws,com.sun.deploy
    security: property package.definition new value sun.,com.sun.xml.internal.ws.,com.sun.xml.internal.bind.,com.sun.imageio.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.javaws,com.sun.deploy,com.sun.jnlp
    security: property package.access value sun.,com.sun.xml.internal.ws.,com.sun.xml.internal.bind.,com.sun.imageio.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.javaws,com.sun.deploy,com.sun.jnlp
    security: property package.access new value sun.,com.sun.xml.internal.ws.,com.sun.xml.internal.bind.,com.sun.imageio.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.javaws,com.sun.deploy,com.sun.jnlp,org.mozilla.jss
    security: property package.definition value sun.,com.sun.xml.internal.ws.,com.sun.xml.internal.bind.,com.sun.imageio.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.javaws,com.sun.deploy,com.sun.jnlp
    security: property package.definition new value sun.,com.sun.xml.internal.ws.,com.sun.xml.internal.bind.,com.sun.imageio.,com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils.,com.sun.javaws,com.sun.deploy,com.sun.jnlp,org.mozilla.jss
    basic: Added progress listener: sun.plugin.util.GrayBoxPainter$GrayBoxProgressListener@1df073d
    basic: Plugin2ClassLoader.addURL parent called for https://192.168.130.99/app/applet/HelloWorld.jar
    network: Cache entry not found [url: https://192.168.130.99/app/applet/HelloWorld.jar, version: null]
    network: Connecting https://192.168.130.99/app/applet/HelloWorld.jar with proxy=DIRECT
    network: Connecting http://192.168.130.99:443/ with proxy=DIRECT
    security: Loading Root CA certificates from C:\Program Files (x86)\Java\jre6\lib\security\cacerts
    security: Loaded Root CA certificates from C:\Program Files (x86)\Java\jre6\lib\security\cacerts
    security: Loading SSL Root CA certificates from C:\Users\mfan\AppData\LocalLow\Sun\Java\Deployment\security\trusted.jssecacerts
    security: Loaded SSL Root CA certificates from C:\Users\mfan\AppData\LocalLow\Sun\Java\Deployment\security\trusted.jssecacerts
    security: Loading SSL Root CA certificates from C:\Program Files (x86)\Java\jre6\lib\security\cacerts
    security: Loaded SSL Root CA certificates from C:\Program Files (x86)\Java\jre6\lib\security\cacerts
    security: Loading Deployment SSL certificates from C:\Users\mfan\AppData\LocalLow\Sun\Java\Deployment\security\trusted.jssecerts
    security: Loaded Deployment SSL certificates from C:\Users\mfan\AppData\LocalLow\Sun\Java\Deployment\security\trusted.jssecerts
    security: Loading certificates from Deployment session certificate store
    security: Loaded certificates from Deployment session certificate store
    security: Loading certificates from Internet Explorer ROOT certificate store
    security: Loaded certificates from Internet Explorer ROOT certificate store
    security: Checking if certificate is in Deployment denied certificate store
    security: Checking if certificate is in Deployment session certificate store
    security: Checking if SSL certificate is in Deployment permanent certificate store
    security: KeyUsage does not allow digital signatures
    (and here's where the prompt comes up).

    Actually, setting the archive to http://URL works fine. No more request authentications come up.

  • How do I get Lion to stop asking for a network server?

    Hi all,
    I keep getting a very annoying message after upgrading to Lion.
    The message is: "there was a problem connecting to the server POZ.local"
    It does not make any difference if the server is up, running and connected to the network either.
    What can I do to get rid of this irritating dialogue box?
    Thanks in advance all!
    Patrik

    I have the same problem. I suspect it has something to do with the versioning function, as it only seems to happen when I have a document open that I have made a change to. In my case it's asking for my NAS. Sorry I can't be more help.
    Regards,
    Fiver

  • Flash movie asking for authentication???

    Hi,
    I'm new to flash 8, I recently created a simple menu with a
    couple of buttons. When I view the movie in an html file on the
    computer that hosts it, It appears fine. If I try to view that page
    from another computer on the network it brings up a secure realm
    type authentication window, asking for the username and password
    for the windows account on the machine hosting the file. If I don't
    enter any details the file never loads.
    Why is it doing this? How do I fix it?
    Thanks in advance

    Create an SM50 trace with only the security component turned to trace level 2. In order to do so, run transaction SM50 and select some of the dialog work processes (around 5). Then choose 'Processes -> Trace -> Active components' from the menu (or use CTRL-SHIFT-F7). Set the trace level to 2 and select only the 'Security' component. Reproduce the SSO problem, and note the time. Return to the SAP system to check the traces you just started (CTRL-SHIFT-F8 in SM50). This trace collects information on work process level. Therefore, you need to find the work process that has handled the authentication attempt.
    This procedure is described in Note 495911 in more detail.
    Nick

  • 6.0.1 asking for authentication

    I got this when trying to connect with my router after updating. Can't attach picture. It asks for username and password.

    I ended up doing a clean install of a MARS50, originally 4.3.6, and still have problems with graphgen shutting down.
    I have no support on my MARS 50 so I'm stuck waiting for a possible future upgrade beyond 6.0.1. It's odd that the same ISO install gives different results on the same hardware. MARS in not exactly an "appliance" like a PIX but still...ISO based installations should produce identical installations
    /Fredrik

  • [SOLVED] Systemd asking for authentication to suspend all of a sudden

    Hello,
    This morning, while experimenting with the Wake-on-lan settigns on my computer, systemd started asking for my credentials in order to suspend the system. This is annoying, becuase i have a script that does this automatically. It is now broken. Also, I'm not aware of any changes I've made to the system, other than waking it up on lan once or twice. I've done several normal reboots since then.
    The funny thing is, if i'm just in a TTY, it'll let me suspend the system. Once i start X, it starts asking for credentials. It's almost like it is interpreting the X session as a separate user logon...
    Any ideas on how to correct this? I've tried removing ck-launch-session from the .xinitrc shown below, but it had no effect (not that i really expected it to).
    Thanks,
    Aaron
    If it helps, this is how i start X:
    #! /bin/sh
    [ -f ~/.xprofile ] && . ~/.xprofile
    ck-launch-session /usr/bin/i3
    EDIT: Aaaand my .xprofile
    xrandr --output DVI-I-3 --left-of DVI-I-2
    xrandr --output DVI-I-3 --pos 0x312
    Last edited by usagi (2012-09-21 14:14:28)

    Hello,
    I have the same problem, I cannot start X into the same tty. I followed the procedure in the wiki to replace consolekit with systemd following this one https://wiki.archlinux.org/index.php/Sy … md-logind/  but with no luck. The problem is only into X.
    loginctl gives the following
    Id=1
    Timestamp=Sat, 06 Oct 2012 14:48:23 +0200
    TimestampMonotonic=13714786
    DefaultControlGroup=name=systemd:/user/user/1
    VTNr=1
    TTY=tty1
    Remote=no
    Service=login
    Leader=223
    Audit=1
    Type=tty
    Class=user
    Active=no
    State=online
    KillProcesses=no
    IdleHint=yes
    IdleSinceHint=1349527696047839
    IdleSinceHintMonotonic=6575930
    I know that Active should be yes but I cant figure out how to do it
    Thanks

  • Since upgrading to Mountain Lion LibreOffice keeps asking for Java and crashing.

    Java is needed only for Base which I don't use, so I disable Java in LibreOffice preferences, but it keeps asking if I want to enable it. In addition the preferences aren't  being remembered so sometimes LibreOffice crashes when I start to do anything and it has to recover documents. Its all a big nuisance. I have NeoOffice which seems OK, but I'd like to have the option of LibreOffice which I have used for some time. Any thoughts?

    Did you install the last Java update 006 _37?

Maybe you are looking for