Local management users and Radiusproblem

I have created a wlan for guests and would like to only authenticate guestusers against Local Net Users database on the WLC.
My problem is that it is also possible to log on with usercredentials for radiusauthentication.
I have not enabled any AAAservers for the guestwlan.
Any tips how to stop the radiusauthentication for this wlan ?
JF

That is how it currently works, but here are two options:
You can either change the Web Radius Authentication to CHAP or MD5-CHAP which is located in the GUI... Controller | General
Or else you can create 3 fake radius servers on the wlc and then specify those three under the guest wlan radius servers.

Similar Messages

Manage users and privleges is missing in security tab in rep admin 9.5

hi not able to see Manage users and privleges in security tab in rep admin is manage users and privleges in infa 9.5 is shifted to admin console or is it available with both the tools admin console.

Thanks Neil - Problem solved and I´ve saved a couple of new Applescripts for checking and reset in case (and when) this happens again.
Lets hope Apple discover the reason for random changes to file flagging and apply to a future update.
Again, thanks for your quick response.

Manage Users and -groups

Hi all,
I try to manage Users and -groups not with workspace administration but by HTML_UTIL. So I need to display all of the Usergroups and select mor than one group for a user and insert/edit this groups for the user.
How can I select mor than 1 item from a LOV? and use it with HTML_UTIL.CREATE_USER and HTML_UTIL.EDIT_USER
Thanks for yout help
Siegwin

Not sure if this is what you're asking, but certainly, one of the things you'd need to do is write your own PL/SQL procedure that loops through the selected rows of your UI element (whether it be a multi-select list, checkboxes or whatever) and perform the actions that you require.
Have you attempted anything yet? What parts of this do you need help with?
Earl

Looking for a tutorial/design-pattern for Manage User and Permissions.

Hello,
I wonder if anyone knows a good tutorial/blog with reference to security - howto Manage Users and Permissions.
In my application I have GROUPS and each group has access to different RECORDS and CASES.
Example:
Groups: Alfa, Beta, Gamma
Record: R1, R2, R3...
Case: C100, C200, C300
Group Alfa can view: R1, R2 and C300
Group Beta can view: R1, R3, C200, C100, C300,
Group Gamma can view: R3
My question is this: what should be the best way (design-pattern?) to force a policy to securing the Records/Cases?
What should every case/record implemented to verify that a user (part of a group) has the right to access the entity.
Thank You!

Sorry if this one is too basic for you but as I do not know your level of experience try:
http://www.adobe.com/devnet/dreamweaver/articles/first_dynamic_site_pt3_print.html
HTH
There are also many other tutorials on:
http://www.adobe.com/devnet/dreamweaver/application_development.html

Explain local manage tablespace and dictionary manage tablespace

hi all,
kindly help me to understand local manage and dictionary manage tablespace
i have read search result and oracle corporation book still unable to understand
what i know that local is managed by bitmap(no redo) and dictionary is managed by dictionary(generates redo) plz explain this as well
and also suggest me some documentation.
thanks
Navin

Navin,
These are excerpts from Oracle documentation
Dictionary Managed Tablespace_
If you created your database with an earlier version of Oracle, then you could be using dictionary managed tablespaces. For a tablespace that uses the data dictionary to manage its extents, Oracle updates the appropriate tables in the data dictionary whenever an extent is allocated or freed for reuse. Oracle also stores rollback information about each update of the dictionary tables. Because dictionary tables and rollback segments are part of the database, the space that they occupy is subject to the same space management operations as all other data.
Lcaolly Managed Tablesapce_
A tablespace that manages its own extents maintains a bitmap in each datafile to keep track of the free or used status of blocks in that datafile. Each bit in the bitmap corresponds to a block or a group of blocks. When an extent is allocated or freed for reuse, Oracle changes the bitmap values to show the new status of the blocks. These changes do not generate rollback information because they do not update tables in the data dictionary (except for special cases such as tablespace quota information).
Locally managed tablespaces have the following advantages over dictionary managed tablespaces:
Local management of extents automatically tracks adjacent free space, eliminating the need to coalesce free extents.
Local management of extents avoids recursive space management operations. Such recursive operations can occur in dictionary managed tablespaces if consuming or releasing space in an extent results in another operation that consumes or releases space in a data dictionary table or rollback segment.
The sizes of extents that are managed locally can be determined automatically by the system. Alternatively, all extents can have the same size in a locally managed tablespace and override object storage options.
http://download.oracle.com/docs/cd/B19306_01/server.102/b14220/physical.htm#sthref518
Regards

Manage users and groups on 10.5 client like 10.5 server?

can anyone recommend software for managing local users and groups on 10.5 client? we only need filesharing and don't need the added expense of OS X Server.
thanks

oh, right. we can add users with the File Sharing pref pane and can add groups under the Accounts pref pane.
i'm assisting a friend reconfigure a 'server' (os x client box) that was damaged.
i'd like to create a new group and then add a handful of users to that group for filesharing. these users don't really need to access the mac for local login.
they are using Windows Vista from the clients and the way it's set up now, if a user connects and modifies/creates a file, no one else can then modify the file. we have to run chmod on the file/directory for everyone to be able to change it. i'd like to configure it so the permissions work correctly without having to do this.

Managed users and import problems

Hi there
I'm having all kinds of issues with managed users on OSX... and the latest really takes the cake. A managed user trying to import a file is told they cannot. It's an MOV file, and imports just fine under a standard account. They have full access to the file. iMovie also always asks for an administrator password to access a couple of supporting libraries.
Anyone experience the same? Any way to solve this?
Dushan

They can download and install applications in their own user area.
However, if you have "Only allow selected applications" ticked for their profile in Parental Controls, they will not be able to run the application unless you authorize it. You can enter your password when the application prompts you (and either "allow once" or "always allow", which effectively adds it to the list of allowed applications), or, once it appears in your Parental Controls panel, tick it there to allow its use.
Matt

Change Request Management users and their profiles

Hello!
I would like know which users are useful for the usage of change request management functionality within SAP Solution Manager and which profiles should they have?
Users: Requester, Service Desk Empl., Change manager, Change advisory board(?), Developer, Tester, IT Operator, Administrator(?)
Profiles: SAP_SOCM_REQUESTER, SAP_CM_DEVELOPER_COMP, SAP_CM_CHANGE_MANAGER_COMP, SAP_CM_TESTER_COMP, SAP_CM_PRODUCTIONMANAGER_COMP, SAP_CM_ADMINISTRATOR_COMP,
SAP_CM_OPERATOR_COMP
The problem I have:
I get the errors (s. bellow), when I try to set correction in Development with development profile.
- you are not authorized to perform the activity selected last
- No maintenance cycle is open for the current system
The solution for this problem is to log in with user who has "SAP_ALL" to recheck
the correction.
Thank you very much!
regards
Thom

Dear Thom,
Please verify the note : 881553, this problem occur when the user not have SAP_CM_ADMINISTRATOR_COMP profile..
Best regards..
Claudenir Bispo

Clients local admin user is managed - how can it be unmanaged

Hi. I have a local user on all my client machines called admin with admin rights. Have had this same user with same password for many years for over 300 client machines from emacs to intel macs. With the 10.6.3-5 server update (major issues for the last6 months) with 10.6.2-5 intel imac clients, logging in as admin gives me a reduced dock. just finder and trash. Every use of any applications comes up with "you dont have permission to use the application "xyz". with 3 buttons Always Allow, Allow once and OK. entering admin and password always results in a second box with the same message. entering admin and password then allows me to use it. This behaviour does not happen on 10.5.8 clients and has never happened before.
In system preferences it says administrator, admin is managed. clicking the lock and authenticating allows me to access the tick for Enable parental controls. If I click on the tick to remove it, it comes up with the message. "You cannot enable parental controls for an adminstrator account. Create a new user account etc." It is unticked but the tick comes back on restarting the system preferences and even restarting the computer immediately.
I have tried deleting managed prefs etc but to no avail. I have tried removing the computer from the network account server and I get my dock back and can use applications but it still says I am a managed user. and I need the network account server for student logins. Any thoughts how to unmanaged local admin users on client machines to get back to the way it has been since 10.2.4 clients!!!

Did you try creating a new admin user, and then using that new account to make the Change to unmanage your "admin" account?
I don't think osx will let you create anaccount called admin these days, as security precaution. Perhaps that has something to do with your problem.

Setting Users for my managed services and application pools

I setup my SharePoint 2013 test environment and I developed an intranet site. Now inside my test environment I set all the application pool & managed services to use Farm user account for simplicity. Now I want to setup my UAT environment and I want
to follow the best practice for managing users and service accounts.
I have read the “Core Solutions Of MS SharePoint 2013” book, and it have listed the following table:-
First question. What is the difference when saying that the user “Must be a member of the Farm Administrators group” Or must be “Domain user account”?
Second question , when I first install SharePoint 2013 a lot of applications pools and managed services such as excel services , access services, Performance Point Service Application, business
data connectivity and Machine Translation Service will be automatically created , so which account they will be using and should I define separate accounts for each managed service ?
Third question. What is the recommendation for SharePoint 2013 regarding service accounts?, to use separate account for each manage service, for example one user for excel services , second user
for access services ,etc?
Fourth question. For example the documentation mentioned that the Required roles for the excel services is “Domain user account.”, but what permissions this domain user need to have ?
thanks for any help, and sorry so adding multiple questions inside the same post.

Q #1: This means the user must be part of the Farm Admins group. Every user is a Domain User.
Q #2: Generally those should be using a single Domain User account in a single Application Pool to minimize memory usage and reduce unnecessary complexity.
Q #3: The less Application Pools the better. E.g. One account/App Pool for all Web Applications, one account/App Pool for all Service Applications, and then Central Administration is obviously separate.
Q #4: You don't need to specifically give this type of user any sort of rights
Trevor Seward
Follow or contact me at...
&nbsp&nbsp
This post is my own opinion and does not necessarily reflect the opinion or view of Microsoft, its employees, or other MVPs.

Local net users - usernames case sensitive

I am facing an annoying issue with our WLC's 5508.We have configured some local accounts - local net users and we found out that usernames are case sensitive.For example when i setup an account with username:TEST and the then try to login with username:test i get authentication failure..
I thought that only the admin accounts were case sensitive.
Has anyone else faced this problem?Is there any solution for this as i have already configured 60 local accounts.
Thank you in advance.

#Management Usernames are case sensitive.
#Local net user seem to be case sensitive per below bug, however it is a old one on 4.0.
http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCsg72444
*for local netuser, Does WLC allows to create same usernames like this - Apple, APPLE, AppLe. If allowed then at this point its considered that wlc allows to create case insensitive users for local netusers. Else if only Apple is allowed then it is case sensitive for user creation.
*Now try to login like - apple, aPPLE and also like Apple, APPLE, AppLe.
*Share the result along with the tested wlc code for conclusion. Let see what works and doesn't.

JES Access Manager User Creation for Messanger

Hi Everyone
I installed JES 2005 Q4 on Solaris 10 x86 with schema 2 and Access Manager 7. The Directory Tree is as follows:
Sol1.nucleussoftware.com:389
dc=nucleussoftware,dc=com (34 acis)
DSAME Users
Internet
People
Groups
Client Data
services
nucleussoftware.com
People
Groups
o=Netscape Root (3 acis)
cn=Schema (6 acis)
cn=monitor (5 acis)
cn=config (4 acis)
Organization DN when I ran "configutil" after running comm_dssetup.pl, was specified o=nucleussoftware,dc=nucleussoftware,dc=com
This is fresh installation and not any migration.
Now I create user from Access Manager, http://sol1.nucleussoftware.com/amserver
There are two organizations 1. Nucleussoftware and 2. Nucleussoftware->nucleussoftware.com
So I have two locations to create users in People.
When I create user from Access Manager and try to login into WebMail, I get Login Failed.
But when I open "startconsole" or "mpsconsole" and open Messaging Server Console and in new user's property, Account Attribute, I mark the check box, and now try to login into WebMail, I get error message, "Mailbox is on a different server".
I am missing one attribute that I used to get with schema 1 on iPlanet 5.2 for any user, Mail Server Address.
Please tell me the exact method of creating a user for Messaging.
Regards
Amit Bist

Access Manager was never intended to create working mail users. The Delegated Admin package is provided as part of JES, and that's what it is for, to manage users and groups. There's both a web interface, and a command-line interface, "commadmin"
Or, you can examine the ldap entries for the automatically created accounts, and duplicate that. Messaging doesn't really care how the ldap entries get done, just so that they are done correctly.

Convert from dictionary to local managed?

Hi all,
Good day!
when we convert from dictionary to local managed is it dependant on CPU or no of extent?
Thanks in advance
Elina

How are you converting the tablespaces? 8 hours seems excessive if you are using dbms_space_admin.TABLESPACE_MIGRATE_TO_LOCAL , I have seen situations where creating new locally managed tablespaces and moving the objects accross takes a long time as the old extnets are deallocated from the UET$ table and added to FET$. in these cases the speed of an individual CPU core is the limiting factor as SMON handles the deallocation of extents.
If this is the case then migratig the tablespace to locally managed using dbms_space_admin then migrating to a new tablespace may be faster, if not then can you post what method you are uing to migrate and the version of the database
Chris

LDAP Users and Groups

Hi,

I have configured an LDAP Authenticator for an external LDAP directory in the security realm of the samples portal. User Management is working, but when I try to access the Group Management for the LDAP Authenticator I get the following error:

com.bea.p13n.usermgmt.hierarchy.TreeNotBuiltException: State: UNINITIALIZED. Tree is uninitialized. Add provider GAAD to list of providers to build. Tree is uninitialized. Add provider GAAD to list of providers to build.


It seems that this needs to be setup. How do I do this?


Some general notes on LDAP:

I think that in a production environment it is of great value to manage users and groups in a LDAP directory. For instance we have a company directory which contains all users. It seems that users from LDAP can not been added to groups which are in the DB. LDAP also has the advantage of supporting dynamic groups.
As in previous weblogic releases the LDAP authenticator is read only. It would be great if the write functionality could be added as well. Actually managing LDAP users and groups in one place would be a tremendous improvement for us.

Another thing on my wishlist are examples for delegated administration and visitor entitlements. For the sample portal these are empty. But I think it would be nice to have some out of the box examples that show what is possible and help developers and business analysts to understand the concepts and create their own roles.

It would be interesting to read what Bea and other developer think about this.

Kind regards,

Kai


Marcus,
Yes, I am using 9.2 TP.
We are already using LDAP for user management with 8.1.
Now, I try to configure 9.2 as well. I am running 9.2 installations on different machines. When I click on Service Administration in the Admin Portal, I get the following error message for each installation:
java.lang.NullPointerException at com.bea.jsptools.serviceadmin.ads.ToolAdServiceBean.cloneFromAdServiceBean(ToolAdServiceBean.java:190) at com.bea.jsptools.serviceadmin.ServiceAdminTreeBuilder.buildAdContentProviderNodes(ServiceAdminTreeBuilder.java:769) at com.bea.jsptools.serviceadmin.ServiceAdminTreeBuilder.buildAdServiceBranch(ServiceAdminTreeBuilder.java:746) at com.bea.jsptools.serviceadmin.ServiceAdminTreeBuilder.createTreeElement(ServiceAdminTreeBuilder.java:184) at com.bea.jsptools.patterns.tree.TreeService$DefaultTreeServiceImpl.buildWholeTree(TreeService.java:234) at com.bea.jsptools.patterns.tree.TreeService$DefaultTreeServiceImpl.buildWholeTree(TreeService.java:235) at com.bea.jsptools.patterns.tree.TreeService$DefaultTreeServiceImpl.buildTree(TreeService.java:122) at util.tree.TreeController.constructTree(TreeController.java:142) at util.tree.TreeController.buildTree(TreeController.java:422) at jrockit.reflect.VirtualNativeMethodInvoker.invoke(Ljava.lang.Object;[Ljava.lang.Object;)Ljava.lang.Object;(Unknown Source) at java.lang.reflect.Method.invoke(Ljava.lang.Object;[Ljava.lang.Object;I)Ljava.lang.Object;(Unknown Source) at org.apache.beehive.netui.pageflow.FlowController.invokeActionMethod(FlowController.java:852) at org.apache.beehive.netui.pageflow.FlowController.getActionMethodForward(FlowController.java:782) at org.apache.beehive.netui.pageflow.FlowController.internalExecute(FlowController.java:456) at org.apache.beehive.netui.pageflow.PageFlowController.internalExecute(PageFlowController.java:285) at org.apache.beehive.netui.pageflow.FlowController.execute(FlowController.java:336) at org.apache.beehive.netui.pageflow.internal.FlowControllerAction.execute(FlowControllerAction.java:48) at org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:419) at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.access$201(PageFlowRequestProcessor.java:97) at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor$ActionRunner.execute(PageFlowRequestProcessor.java:1984) at org.apache.beehive.netui.pageflow.interceptor.action.internal.ActionInterceptors.wrapAction(ActionInterceptors.java:90) at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.processActionPerform(PageFlowRequestProcessor.java:2055) at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:224) at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.processInternal(PageFlowRequestProcessor.java:535) at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.process(PageFlowRequestProcessor.java:821) at org.apache.beehive.netui.pageflow.AutoRegisterActionServlet.process(AutoRegisterActionServlet.java:625) at org.apache.beehive.netui.pageflow.PageFlowActionServlet.process(PageFlowActionServlet.java:156) at org.apache.struts.action.ActionServlet.doGet(ActionServlet.java:414) at org.apache.beehive.netui.pageflow.PageFlowUtils.strutsLookup(PageFlowUtils.java:1178)
java.lang.NullPointerException
java.lang.NullPointerException
at com.bea.jsptools.serviceadmin.ads.ToolAdServiceBean.cloneFromAdServiceBean(ToolAdServiceBean.java:190)
at com.bea.jsptools.serviceadmin.ServiceAdminTreeBuilder.buildAdContentProviderNodes(ServiceAdminTreeBuilder.java:769)
at com.bea.jsptools.serviceadmin.ServiceAdminTreeBuilder.buildAdServiceBranch(ServiceAdminTreeBuilder.java:746)
at com.bea.jsptools.serviceadmin.ServiceAdminTreeBuilder.createTreeElement(ServiceAdminTreeBuilder.java:184)
at com.bea.jsptools.patterns.tree.TreeService$DefaultTreeServiceImpl.buildWholeTree(TreeService.java:234)
at com.bea.jsptools.patterns.tree.TreeService$DefaultTreeServiceImpl.buildWholeTree(TreeService.java:235)
at com.bea.jsptools.patterns.tree.TreeService$DefaultTreeServiceImpl.buildTree(TreeService.java:122)
at util.tree.TreeController.constructTree(TreeController.java:142)
at util.tree.TreeController.buildTree(TreeController.java:422)
at jrockit.reflect.VirtualNativeMethodInvoker.invoke(Ljava.lang.Object;[Ljava.lang.Object;)Ljava.lang.Object;(Unknown Source)
at java.lang.reflect.Method.invoke(Ljava.lang.Object;[Ljava.lang.Object;I)Ljava.lang.Object;(Unknown Source)
at org.apache.beehive.netui.pageflow.FlowController.invokeActionMethod(FlowController.java:852)
at org.apache.beehive.netui.pageflow.FlowController.getActionMethodForward(FlowController.java:782)
at org.apache.beehive.netui.pageflow.FlowController.internalExecute(FlowController.java:456)
at org.apache.beehive.netui.pageflow.PageFlowController.internalExecute(PageFlowController.java:285)
at org.apache.beehive.netui.pageflow.FlowController.execute(FlowController.java:336)
at org.apache.beehive.netui.pageflow.internal.FlowControllerAction.execute(FlowControllerAction.java:48)
at org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:419)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.access$201(PageFlowRequestProcessor.java:97)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor$ActionRunner.execute(PageFlowRequestProcessor.java:1984)
at org.apache.beehive.netui.pageflow.interceptor.action.internal.ActionInterceptors.wrapAction(ActionInterceptors.java:90)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.processActionPerform(PageFlowRequestProcessor.java:2055)
at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:224)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.processInternal(PageFlowRequestProcessor.java:535)
at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.process(PageFlowRequestProcessor.java:821)
at org.apache.beehive.netui.pageflow.AutoRegisterActionServlet.process(AutoRegisterActionServlet.java:625)
at org.apache.beehive.netui.pageflow.PageFlowActionServlet.process(PageFlowActionServlet.java:156)
at org.apache.struts.action.ActionServlet.doGet(ActionServlet.java:414)
at org.apache.beehive.netui.pageflow.PageFlowUtils.strutsLookup(PageFlowUtils.java:1178)

Convert a tablespace to local managed

Is it possible to have a local managed tablespace and convert it to dictionary managed?

Really I have not seen that posibility directly with a command but you could check the ALTER TABLESPACE command but remember that you could do this:
1.- Create a tablespace dictionary managed if the system tablespace is not locally managed
2.- Move all tables and indexes to that tablespace found in the another tablespace.
Joel Pérez
http://otn.oracle.com/experts

Local management users and Radiusproblem

Similar Messages

Maybe you are looking for