Moving/Linking Claims Windows Auth user to an ADFS Claims

Hi guys, 
Here is my situation:
Initial deployment: SharePoint 2010 with Windows Authentication - Users login using AD
We successfully migrated the web application to use "Claims"
We then integrated the web application with ADFS 2.0 - Using the same AD users
Everything seems good and working fine. 
The question I have is related to content already created in SharePoint. Is it possible to map the new ADFS account usernames to the existing windows authentication claims usernames?
This is important for users, because we would like the "My" views of lists and libraries to work. SharePoint at the moment thinks that the logged in users (using ADFS) is different than the user who created/modified the documents. (Although it
is the same AD account)

Hi Inderjeet
Thanks for your reply. The article did help in moving users (Move-SPUser) from AD to ADFS (Which I noticed in the securities in groups), however, the issue I'm looking for is still standing where the items that were created by the user using "Windows
Auth Claim" were not moved/updated to the "ADFS Claim" user, which in fact they map to the same AD user.
Is there away to transfer/update the created by and modified by attributes of users from Windows Claims to ADFS Claims user?
UPDATE: The above statement is not correct. Move-SPUser actually updates the created by and modified by attributes to. 

Similar Messages

  • Which DB schema is used for Windows auth. users?

    I'm experimenting with using Windows auth. with Oracle and I'm curious about which schema is used for creating DB objects of the user, who is connected with Windows auth? Based on my experiments of one sample user connected with Windows auth. the objects that the user creates end up in SYS schema. This is very surprising, since Oracle discorages using SYS schema for user objects. Is this always the case (any user connected with Windows auth. will operate in the SYS schema)? Is there a way to provide a custom name for the schema that will be used by a particular user connected with Windows auth?
    Thanks,
    Vladimir.

    Thank you for clarification. Indeed each user does work in it's own schema that is the same as the OS user name ('DOMAIN\USER'). My mistake was that I had that OS user in ORA_DBA group which automatically maps into SYSDBA, so my objects were created under SYS schema.
    Now, here is a follow-up question: is there a way to make several OS-authenticated Oracle users to use the same schema if they are not a part of ORA_DBA group (I'm manually adding them to Oracle using "create user"). I know there is a way to do that with Oracle Internet Directory as described in the link you mentioned, but that requires us to force our customers to update to Oracle Advanced Security which we don't want to do.
    Thanks,
    Vladimir.

  • Disable the link respective of my users role in ADF Security

    Hi,
    Am using jdeveloper 11.1.1.6.0.,
    In my jspx page i have two links like Employees and Departments. The Departments button should be enabled only to the Managers role.
    I have also implemented ADF Security in my project.
    Regards,
    Prasad K T,

    Hi,
    Check out this blog : ADF Code Bits: Bit #17 - Using the securityContext bean in a JSF page
    -Arun

  • When I moved all my music stored in my Windows 7 user account under the My Music folder  to my PC's 'Public Music' folder, I could no longer add/delete music or movies to my iPhone using iTunes. How do I fix this?

    I have been synching my iPhone with iTunes without problems for a long time.  I also used iTunes to add/change/delete Music & Videos on my iPhone with tuch contents from my iTunes Library. 
    One day, I decided to move all my Music stored on my laptop's Windows 7 User Account under "My Music" to the Windows 7 User "Public"  under "Public Music".  When I opened iTunes, all my music was gone so I just added the folder "Public Music" to my iTunes Library, iTunes did some work and all my music was then back, listed in my iTunes.
    However, when I would synch my iPhone now, when I view the music or movie contents in my iPhone using iTunes, I can no longer ADD Music or Movies to my iPhone and I cannot delete music or movies in my iPhone using iTunes anymore.
    How do I fix this?  Please help.

    Try opening iTunes preferences. Then click on advanced tab. Then uncheck "Copy files to iTunes media folder when adding to library." By default, iTunes copies music to its own media folder when you use iTunes to play the music.

  • Issue with SharePoint foundation 2010 to use Claims Based Auth with Certificate authentication method with ADFS 2.0

    I would love some help with this issue.  I have configured my SharePoint foundation 2010 site to use Claims Based Auth with Certificate authentication method with ADFS 2.0  I have a test account set up with lab.acme.com to use the ACS.
    When I log into my site using Windows Auth, everything is great.  However when I log in and select my ACS token issuer, I get sent, to the logon page of the ADFS, after selected the ADFS method. My browser prompt me which Certificate identity I want
    to use to log in   and after 3-5 second
     and return me the logon page with error message “Authentication failed” 
    I base my setup on the technet article
    http://blogs.technet.com/b/speschka/archive/2010/07/30/configuring-sharepoint-2010-and-adfs-v2-end-to-end.aspx
    I validated than all my certificate are valid and able to retrieve the crl
    I got in eventlog id 300
    The Federation Service failed to issue a token as a result of an error during processing of the WS-Trust request.
    Request type: http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Issue
    Additional Data
    Exception details:
    Microsoft.IdentityModel.SecurityTokenService.FailedAuthenticationException: MSIS3019: Authentication failed. ---> System.IdentityModel.Tokens.SecurityTokenValidationException:
    ID4070: The X.509 certificate 'CN=Me, OU=People, O=Acme., C=COM' chain building failed. The certificate that was used has a trust chain that cannot be verified. Replace the certificate or change the certificateValidationMode. 'A certification chain processed
    correctly, but one of the CA certificates is not trusted by the policy provider.
    at Microsoft.IdentityModel.X509CertificateChain.Build(X509Certificate2 certificate)
    at Microsoft.IdentityModel.Tokens.X509NTAuthChainTrustValidator.Validate(X509Certificate2 certificate)
    at Microsoft.IdentityModel.Tokens.X509SecurityTokenHandler.ValidateToken(SecurityToken token)
    at Microsoft.IdentityModel.Tokens.SecurityTokenElement.GetSubject()
    at Microsoft.IdentityServer.Service.SecurityTokenService.MSISSecurityTokenService.GetOnBehalfOfPrincipal(RequestSecurityToken request, IClaimsPrincipal callerPrincipal)
    --- End of inner exception stack trace ---
    at Microsoft.IdentityServer.Service.SecurityTokenService.MSISSecurityTokenService.GetOnBehalfOfPrincipal(RequestSecurityToken request, IClaimsPrincipal callerPrincipal)
    at Microsoft.IdentityServer.Service.SecurityTokenService.MSISSecurityTokenService.BeginGetScope(IClaimsPrincipal principal, RequestSecurityToken request, AsyncCallback callback, Object state)
    at Microsoft.IdentityModel.SecurityTokenService.SecurityTokenService.BeginIssue(IClaimsPrincipal principal, RequestSecurityToken request, AsyncCallback callback, Object state)
    at Microsoft.IdentityModel.Protocols.WSTrust.WSTrustServiceContract.DispatchRequestAsyncResult..ctor(DispatchContext dispatchContext, AsyncCallback asyncCallback, Object asyncState)
    at Microsoft.IdentityModel.Protocols.WSTrust.WSTrustServiceContract.BeginDispatchRequest(DispatchContext dispatchContext, AsyncCallback asyncCallback, Object asyncState)
    at Microsoft.IdentityModel.Protocols.WSTrust.WSTrustServiceContract.ProcessCoreAsyncResult..ctor(WSTrustServiceContract contract, DispatchContext dispatchContext, MessageVersion messageVersion, WSTrustResponseSerializer responseSerializer, WSTrustSerializationContext
    serializationContext, AsyncCallback asyncCallback, Object asyncState)
    at Microsoft.IdentityModel.Protocols.WSTrust.WSTrustServiceContract.BeginProcessCore(Message requestMessage, WSTrustRequestSerializer requestSerializer, WSTrustResponseSerializer responseSerializer, String requestAction, String responseAction, String
    trustNamespace, AsyncCallback callback, Object state)
    System.IdentityModel.Tokens.SecurityTokenValidationException: ID4070: The X.509 certificate 'CN=Me, OU=People, O=acme., C=com' chain building
    failed. The certificate that was used has a trust chain that cannot be verified. Replace the certificate or change the certificateValidationMode. 'A certification chain processed correctly, but one of the CA certificates is not trusted by the policy provider.
    at Microsoft.IdentityModel.X509CertificateChain.Build(X509Certificate2 certificate)
    at Microsoft.IdentityModel.Tokens.X509NTAuthChainTrustValidator.Validate(X509Certificate2 certificate)
    at Microsoft.IdentityModel.Tokens.X509SecurityTokenHandler.ValidateToken(SecurityToken token)
    at Microsoft.IdentityModel.Tokens.SecurityTokenElement.GetSubject()
    at Microsoft.IdentityServer.Service.SecurityTokenService.MSISSecurityTokenService.GetOnBehalfOfPrincipal(RequestSecurityToken request, IClaimsPrincipal callerPrincipal)
    thx
    Stef71

    This is perfectly correct on my case I was not adding the root properly you must add the CA and the ADFS as well, which is twice you can see below my results.
    on my case was :
    PS C:\Users\administrator.domain> $root = New-Object System.Security.Cryptography.X509Certificates.X509Certificate2("C:\
    cer\SP2K10\ad0001.cer")
    PS C:\Users\administrator.domain> New-SPTrustedRootAuthority -Name "domain.ad0001" -Certificate $root
    Certificate                 : [Subject]
                                    CN=domain.AD0001CA, DC=domain, DC=com
                                  [Issuer]
                                    CN=domain.AD0001CA, DC=portal, DC=com
                                  [Serial Number]
                                    blablabla
                                  [Not Before]
                                    22/07/2014 11:32:05
                                  [Not After]
                                    22/07/2024 11:42:00
                                  [Thumbprint]
                                    blablabla
    Name                        : domain.ad0001
    TypeName                    : Microsoft.SharePoint.Administration.SPTrustedRootAuthority
    DisplayName                 : domain.ad0001
    Id                          : blablabla
    Status                      : Online
    Parent                      : SPTrustedRootAuthorityManager
    Version                     : 17164
    Properties                  : {}
    Farm                        : SPFarm Name=SharePoint_Config
    UpgradedPersistedProperties : {}
    PS C:\Users\administrator.domain> $cert = New-Object System.Security.Cryptography.X509Certificates.X509Certificate2("C:\
    cer\SP2K10\ADFS_Signing.cer")
    PS C:\Users\administrator.domain> New-SPTrustedRootAuthority -Name "Token Signing Cert" -Certificate $cert
    Certificate                 : [Subject]
                                    CN=ADFS Signing - adfs.domain
                                  [Issuer]
                                    CN=ADFS Signing - adfs.domain
                                  [Serial Number]
                                    blablabla
                                  [Not Before]
                                    23/07/2014 07:14:03
                                  [Not After]
                                    23/07/2015 07:14:03
                                  [Thumbprint]
                                    blablabla
    Name                        : Token Signing Cert
    TypeName                    : Microsoft.SharePoint.Administration.SPTrustedRootAuthority
    DisplayName                 : Token Signing Cert
    Id                          : blablabla
    Status                      : Online
    Parent                      : SPTrustedRootAuthorityManager
    Version                     : 17184
    Properties                  : {}
    Farm                        : SPFarm Name=SharePoint_Config
    UpgradedPersistedProperties : {}
    PS C:\Users\administrator.PORTAL>

  • NTLM and ADFS claim treated as different user

    Dear All:
    Currently our SharePoint is using mix authentication mode (claim mode with two authentcation providers):
    Windows-NTLM & ADFS2.0
    The ADFS'a identity store is same as SharePoint's domain, it means we have only a single AD, NTLM authentication provider is used for users who are in office, ADFS authentication provider is used when they are at home. (The same credential)
    When users opens SharePoint, it prompts a page to let user to select which authentication provider they want to use (NTLM or ADFS).
    The question is when the same user login by using NTLM or ADFS, the user will be treated as a different user
    For example:
    UserA login by using NTLM, his identity claim looks like: Domain\UserA
    UserA login by using ADFS, his identity claim looks like:  i:05.t|saml provider|[email protected]
    The profile and permissions of this user will be different
    Is there a way to treat the user as the same user no matter login by ADFS or NTLM ?
    I know if we remove the NTLM authentication provider, only use ADFS can solve this problem, but the client don't want to do this, because:
     The SharePoint is upgraded from 2007 (Classic mode) and it has a huge number of existing users, resources, permissions.
    After upgraded to the claim mode, SharePoint automatically used the NTLM authentication provider.
    If we removed the NTLM authentication provider, the client has to reset all permissions in SharePoint again, for example:
    A ListItem's Permission:
    1. In SharePoint 2007 Classic Mode:
    Domain\UserA -- Full Control
    2. After upgraded to SharePoint 2010 and upgraded to Claim Mode, the client didn't need to reset the permission:
    Domain\UserA -- Full Control
    3. If we remove the NTLM authentication provider, the client have to reset the permission:
    i:05.t|saml provider|[email protected] -- Full Control
    Any ideas would help,
    Thanks a lot!

    SharePoint sees the Windows and Claims identities as different, even though they are the are the same user in the same directory store.
    I'm troubled by the SAML token though, if it was a claims windows token (i:0.w) I would say you could use Move-SPUser to consolidate them. I've done this
    before when during configuration of a farm a user can appear with duplicate entries in the site, one for windows auth (DOMAIN\user) and one for claims (i:0.w#domain\user).
    Move-SPUser can merge the SPUser objects together (this was one of the purposes of it's predecesor, the migrateuser stsadm operation). If it was a windows token it works, but because of the ADFS provider it could be strange.
    Here's how I would test it out:
    Create a new test user (no sense in messing up a real user)
    Log test user in to the site with NTLM
    Log out test user
    Log test user in to the site with ADFS
    Log out test user
    With an admin account, verify using the method you previously used to determine duplicates that there are indeed two users for this test account (one windows, one SAML). 
    Move-SPUser (details below)
    Verify there is now one user for the test user
    Log test user on to the site with NTLM
    Log out test user
    Log test user on to the site with SAML
    Log out
    With an admin account, verify again to make sure there is still only one account
    For Move-SPUser and windows claims I would usually recommend merging the windows account into the claims. Without knowing what will happen I'd say let's try the same here (merge the windows account into the SAML claim):
    $testUser = Get-SPUser -Web "http://sitecollection/or/site" -Identity "DOMAIN\testuser"
    Move-SPUser -Identity $testUser -NewAlias "i:05.t|saml provider|[email protected]" -IgnoreSID
    Jason Warren
    Infrastructure Architect
    Habanero Consulting Group
    habaneroconsulting.com/blog

  • Getting SPWeb.CurrentUser as null with Windows Authentication (AD), when configured for Claims Authentication

    Hi All,
    We recently migrated to SP 2013 from SP 2010. We are using most of the OOB features, with a few custom code. We have implemented a custom ASP.NET Membership Provider that authenticates against a web service. This was working fine on SP 2010.
    The entire code base was migrated to SP 2013 (with .net fw 4.5, etc) and any issues Compile / Runtime were fixed. However, we are stuck at one bug, which seems to be occuring only while trying to login with Windows Authentication. When a user tries to login
    with Forms Authentication, the error is never noticed.
    Scenrio: Login as Windows Authentiction.
    Result: The user is signed into the system and is authenticated against the AD. For random page loads - it throws access denied (even though he is a site collection admin). While attaching a debugger, we found that, at times the SPWeb.CurrentUser is null (weird).
    At the same time, the HttpContext.Current.Request.IsAuthenticated returns true. Which means the User is Authenticated, but not available in the SPWeb.CurrentUser object. 
    Attached are couple of ULS Logs that we found. The line which says IsAuthenticated=True, UserIdentityName=, ClaimsCount=0 is a little disturbing. Can you please let me know what is happening here? I am not able to access the root site (http://win2012d2:1234/)
    however, i am able to access (http://win2012d2:1234/SitePages/Home.aspx) just fine, without any issues.
    Please note, this error is only when the user is logged into sharepoint as a windows user. The forms user faces no such issues.
    ULS Logs:
    Name=Request (GET:http://win2012d2:1234/)
    Non-OAuth request. IsAuthenticated=True, UserIdentityName=, ClaimsCount=0
    Application error when access /, Error=Exception of type 'System.ArgumentException' was thrown.  Parameter name: encodedValue  
     at Microsoft.SharePoint.Administration.Claims.SPClaimEncodingManager.DecodeClaimFromFormsSuffix(String encodedValue)    
     at Microsoft.SharePoint.Administration.Claims.SPClaimProviderManager.GetProviderUserKey(IClaimsIdentity claimsIdentity, String encodedIdentityClaimSuffix)    
     at Microsoft.SharePoint.Administration.Claims.SPClaimProviderManager.GetProviderUserKey(String encodedIdentityClaimSuffix)    
     at Microsoft.SharePoint.Utilities.SPUtility.GetFullUserKeyFromLoginName(String loginName)    
     at Microsoft.SharePoint.ApplicationRuntime.SPHeaderManager.AddIsapiHeaders(HttpContext context, String encodedUrl, NameValueCollection headers)    
     at Microsoft.SharePoint.ApplicationRuntime.SPRequestModule.PreRequestExecuteAppHandler(Object oSender, EventArgs ea)    
     at System.Web.HttpApplication.SyncEventExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()    
     at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
    Getting Error Message for Exception System.ArgumentException: Exception of type 'System.ArgumentException' was thrown.  Parameter name: encodedValue    
     at Microsoft.SharePoint.Administration.Claims.SPClaimEncodingManager.DecodeClaimFromFormsSuffix(String encodedValue)    
     at Microsoft.SharePoint.Administration.Claims.SPClaimProviderManager.GetProviderUserKey(IClaimsIdentity claimsIdentity, String encodedIdentityClaimSuffix)    
     at Microsoft.SharePoint.Administration.Claims.SPClaimProviderManager.GetProviderUserKey(String encodedIdentityClaimSuffix)    
     at Microsoft.SharePoint.Utilities.SPUtility.GetFullUserKeyFromLoginName(String loginName)    
     at Microsoft.SharePoint.ApplicationRuntime.SPHeaderManager.AddIsapiHeaders(HttpContext context, String encodedUrl, NameValueCollection headers)    
     at Microsoft.SharePoint.ApplicationRuntime.SPRequestModule.PreRequestExecuteAppHandler(Object oSender, EventArgs ea)    
     at System.Web.HttpApplication.SyncEventExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()    
     at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
    [Forced due to logging gap, Original Level: Verbose] Looking up {0} site {1} in the farm {2} 
    Unknown SPRequest error occurred. More information: 0x80070005
    SPRequest.GetPageListId: UserPrincipalName=, AppPrincipalName= ,bstrUrl=http://win2012d2:1234/
    System.UnauthorizedAccessException: Access is denied. (Exception from HRESULT: 0x80070005 (E_ACCESSDENIED)), StackTrace:   
     at Microsoft.SharePoint.SPContext.get_ListId()    
     at Microsoft.SharePoint.SPContext.get_List()    
     at Microsoft.SharePoint.WebControls.ScriptLink.InitJs_Register(Page page)    
     at Microsoft.SharePoint.WebControls.ScriptLink.RegisterForControl(Control ctrl, Page page, String name, Boolean localizable, Boolean defer, Boolean loadAfterUI, String language, Boolean injectNoDefer, Boolean controlRegistration, Boolean loadInlineLast,
    Boolean ignoreFileNotFound)    
     at Microsoft.SharePoint.WebControls.ScriptLink.Register(Control ctrl, Page page, String name, Boolean localizable, Boolean defer, Boolean loadAfterUI, String language, String uiVersion, String ctag)    
     at Microsoft.SharePoint.WebControls.ScriptLink.Register(String uiVersion, Control ctrl, Page page, String name, Boolean localizable, Boolean defer)    
     at Microsoft.SharePoint.WebControls.ScriptLink.Register(Control ctrl, Page page, String name, Boolean localizable, Boolean defer)    
     at Microsoft.SharePoint.WebControls.ScriptLink.GetOnDemandScriptKey(String strKey, String strFile, Boolean registerDependencies, Control ctrl, Page page)    
     at Microsoft.SharePoint.WebControls.ScriptLink.RegisterOnDemand(Control ctrl, Page page, String strKey, String strFile, Boolean localizable)    
     at Microsoft.SharePoint.WebControls.ScriptLink.RegisterOnDemand(Page page, String strFile, Boolean localizable)    
     at Microsoft.SharePoint.WebControls.ScriptLink.RegisterForControl(Control ctrl, Page page, String name, Boolean localizable, Boolean defer, Boolean loadAfterUI, String language, Boolean injectNoDefer, Boolean controlRegistration, Boolean loadInlineLast,
    Boolean ignoreFileNotFound)    
     at Microsoft.SharePoint.WebControls.ScriptLink.Register(Control ctrl, Page page, String name, Boolean localizable, Boolean defer, Boolean loadAfterUI, String language, String uiVersion, String ctag)    
     at Microsoft.SharePoint.WebControls.ScriptLink.RegisterOnDemand(Control ctrl, Page page, String strKey, String strFile, Boolean localizable)    
     at Microsoft.SharePoint.WebControls.ScriptLink.OnLoad(EventArgs e)    
     at System.Web.UI.Control.LoadRecursive()    
     at System.Web.UI.Control.LoadRecursive()    
     at System.Web.UI.Control.LoadRecursive()    
     at System.Web.UI.Control.LoadRecursive()    
     at System.Web.UI.Control.LoadRecursive()    
     at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)    
     at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)    
     at System.Web.UI.Page.ProcessRequest()    
     at System.Web.UI.Page.ProcessRequest(HttpContext context)    
     at System.Web.HttpServerUtility.ExecuteInternal(IHttpHandler handler, TextWriter writer, Boolean preserveForm, Boolean setPreviousPage, VirtualPath path, VirtualPath filePath, String physPath, Exception error, String queryStringOverride)    
     at System.Web.HttpServerUtility.Execute(String path, TextWriter writer, Boolean preserveForm)    
     at System.Web.HttpServerUtility.Transfer(String path)    
     at Microsoft.SharePoint.Utilities.SPUtility.TransferToErrorPage(String message, String linkText, String linkUrl)    
     at Microsoft.SharePoint.ApplicationRuntime.SPRequestModule.ErrorHandler(HttpApplication app, Boolean errorIsOnErrorPage)    
     at Microsoft.SharePoint.ApplicationRuntime.SPRequestModule.ErrorAppHandler(Object oSender, EventArgs ea)    
     at System.EventHandler.Invoke(Object sender, EventArgs e)    
     at System.Web.HttpApplication.RaiseOnError()    
     at System.Web.HttpApplication.PipelineStepManager.ResumeSteps(Exception error)    
     at System.Web.HttpApplication.BeginProcessRequestNotification(HttpContext context, AsyncCallback cb)    
     at System.Web.HttpRuntime.ProcessRequestNotificationPrivate(IIS7WorkerRequest wr, HttpContext context)    
     at System.Web.Hosting.PipelineRuntime.ProcessRequestNotificationHelper(IntPtr rootedObjectsPointer, IntPtr nativeRequestContext, IntPtr moduleData, Int32 flags)    
     at System.Web.Hosting.PipelineRuntime.ProcessRequestNotification(IntPtr rootedObjectsPointer, IntPtr nativeRequestContext, IntPtr moduleData, Int32 flags)    
     at System.Web.Hosting.UnsafeIISMethods.MgdIndicateCompletion(IntPtr pHandler, RequestNotificationStatus& notificationStatus)    
     at System.Web.Hosting.UnsafeIISMethods.MgdIndicateCompletion(IntPtr pHandler, RequestNotificationStatus& notificationStatus)    
     at System.Web.Hosting.PipelineRuntime.ProcessRequestNotificationHelper(IntPtr rootedObjectsPointer, IntPtr nativeRequestContext, IntPtr moduleData, Int32 flags)    
     at System.Web.Hosting.PipelineRuntime.ProcessRequestNotification(IntPtr rootedObjectsPointer, IntPtr nativeRequestContext, IntPtr moduleData, Int32 flags)
    SPRequest.OpenWeb: UserPrincipalName=, AppPrincipalName= ,bstrUrl=http://win2012d2:1234/
    System.UnauthorizedAccessException: Access is denied. (Exception from HRESULT: 0x80070005 (E_ACCESSDENIED)), StackTrace:   
     at Microsoft.SharePoint.SPWeb.InitWeb()    
     at Microsoft.SharePoint.SPWeb.get_WebTemplateConfiguration()    
     at Microsoft.SharePoint.WebControls.ScriptLink.InitJs_Register(Page page)    
     at Microsoft.SharePoint.WebControls.ScriptLink.RegisterForControl(Control ctrl, Page page, String name, Boolean localizable, Boolean defer, Boolean loadAfterUI, String language, Boolean injectNoDefer, Boolean controlRegistration, Boolean loadInlineLast,
    Boolean ignoreFileNotFound)    
     at Microsoft.SharePoint.WebControls.ScriptLink.Register(Control ctrl, Page page, String name, Boolean localizable, Boolean defer, Boolean loadAfterUI, String language, String uiVersion, String ctag)    
     at Microsoft.SharePoint.WebControls.ScriptLink.Register(String uiVersion, Control ctrl, Page page, String name, Boolean localizable, Boolean defer)    
     at Microsoft.SharePoint.WebControls.ScriptLink.Register(Control ctrl, Page page, String name, Boolean localizable, Boolean defer)    
     at Microsoft.SharePoint.WebControls.ScriptLink.GetOnDemandScriptKey(String strKey, String strFile, Boolean registerDependencies, Control ctrl, Page page)    
     at Microsoft.SharePoint.WebControls.ScriptLink.RegisterOnDemand(Control ctrl, Page page, String strKey, String strFile, Boolean localizable)    
     at Microsoft.SharePoint.WebControls.ScriptLink.RegisterOnDemand(Page page, String strFile, Boolean localizable)    
     at Microsoft.SharePoint.WebControls.ScriptLink.RegisterForControl(Control ctrl, Page page, String name, Boolean localizable, Boolean defer, Boolean loadAfterUI, String language, Boolean injectNoDefer, Boolean controlRegistration, Boolean loadInlineLast,
    Boolean ignoreFileNotFound)    
     at Microsoft.SharePoint.WebControls.ScriptLink.Register(Control ctrl, Page page, String name, Boolean localizable, Boolean defer, Boolean loadAfterUI, String language, String uiVersion, String ctag)    
     at Microsoft.SharePoint.WebControls.ScriptLink.RegisterOnDemand(Control ctrl, Page page, String strKey, String strFile, Boolean localizable)    
     at Microsoft.SharePoint.WebControls.ScriptLink.OnLoad(EventArgs e)    
     at System.Web.UI.Control.LoadRecursive()    
     at System.Web.UI.Control.LoadRecursive()    
     at System.Web.UI.Control.LoadRecursive()    
     at System.Web.UI.Control.LoadRecursive()    
     at System.Web.UI.Control.LoadRecursive()    
     at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)    
     at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)    
     at System.Web.UI.Page.ProcessRequest()    
     at System.Web.UI.Page.ProcessRequest(HttpContext context)    
     at System.Web.HttpServerUtility.ExecuteInternal(IHttpHandler handler, TextWriter writer, Boolean preserveForm, Boolean setPreviousPage, VirtualPath path, VirtualPath filePath, String physPath, Exception error, String queryStringOverride)    
     at System.Web.HttpServerUtility.Execute(String path, TextWriter writer, Boolean preserveForm)    
     at System.Web.HttpServerUtility.Transfer(String path)    
     at Microsoft.SharePoint.Utilities.SPUtility.TransferToErrorPage(String message, String linkText, String linkUrl)    
     at Microsoft.SharePoint.ApplicationRuntime.SPRequestModule.ErrorHandler(HttpApplication app, Boolean errorIsOnErrorPage)    
     at Microsoft.SharePoint.ApplicationRuntime.SPRequestModule.ErrorAppHandler(Object oSender, EventArgs ea)    
     at System.EventHandler.Invoke(Object sender, EventArgs e)    
     at System.Web.HttpApplication.RaiseOnError()    
     at System.Web.HttpApplication.PipelineStepManager.ResumeSteps(Exception error)    
     at System.Web.HttpApplication.BeginProcessRequestNotification(HttpContext context, AsyncCallback cb)    
     at System.Web.HttpRuntime.ProcessRequestNotificationPrivate(IIS7WorkerRequest wr, HttpContext context)    
     at System.Web.Hosting.PipelineRuntime.ProcessRequestNotificationHelper(IntPtr rootedObjectsPointer, IntPtr nativeRequestContext, IntPtr moduleData, Int32 flags)    
     at System.Web.Hosting.PipelineRuntime.ProcessRequestNotification(IntPtr rootedObjectsPointer, IntPtr nativeRequestContext, IntPtr moduleData, Int32 flags)    
     at System.Web.Hosting.UnsafeIISMethods.MgdIndicateCompletion(IntPtr pHandler, RequestNotificationStatus& notificationStatus)    
     at System.Web.Hosting.UnsafeIISMethods.MgdIndicateCompletion(IntPtr pHandler, RequestNotificationStatus& notificationStatus)    
     at System.Web.Hosting.PipelineRuntime.ProcessRequestNotificationHelper(IntPtr rootedObjectsPointer, IntPtr nativeRequestContext, IntPtr moduleData, Int32 flags)    
     at System.Web.Hosting.PipelineRuntime.ProcessRequestNotification(IntPtr rootedObjectsPointer, IntPtr nativeRequestContext, IntPtr moduleData, Int32 flags)

    Hi Mohamed,
    According to your description, my understanding is that the error occurred when users login with Windows Authentication.
    From the error message, I recommend to check if the anonymous access is enabled for the web application.
    And please also make sure that the users all are available and have permission to access the site.
    Here is a similar thread for you to take a look:
    http://social.technet.microsoft.com/Forums/en-US/28623bdc-a2f0-4876-9be4-9a764f106366/getting-spwebcurrentuser-as-null-with-windows-authentication-ad-when-configured-for-claims?forum=sharepointdevelopment
    Best regards.
    Thanks
    Victoria Xia
    TechNet Community Support

  • Can't see video of windows XP user

    i'm trying to video chat with a windows xp user (they are using AIM 5.9). I'm on an IMAC G5 using latest version of ichat. Windows user has turned off all firewalls. We can both send and accept video invitation. But i cannot see the video of my window user (i can hear him though) Yet he can see and hear me. So it seems like the problem is on my end but can't figure it out. Any suggestions?

    Hi afterifer,
    Welcome to the Apple Discussions
    Have they Tuned the camera and Mic they are using to the application ? AIM requires this. They need message 570 onwards in that link. Access is now through the Menus in the AIM Buddy list (The instructions were written for AIM 5.5).
    10:27 AM Thursday; January 11, 2007

  • Missing column value when logged on to windows with user id other then admi

    I am using crystal report 10 with oracle 10g database. Application is is developed on vissual studio.net 2005 (vb.net). Reports are launched from vb.net application.
    My report runs fine when I logon to windows as administrator and launch vb.net application. When I logeed on to windows with userid other then administrator my application works fine except one of the column value is missing a value in the report.  When I launch my vb.net application my oracle userid is same. Only difference is windows userid.  My application has no referance to windows userid. Why crystal report viewer is missing one column value when loged on to windows as user(xxxx)?

    CR 10.2 bundles with .NET 2005. If you do not see the CR assemblies of version 10.2.3600 in GAC, try to do a custom install of .net 2005, choosing just Crystal Reports. Note that Crystal Reports does not bundle with all versions of .NET (for example it does not ship with .NET Express - I believe...). Alternatively, you can upgrade to CR 2008 which is the latest sipping version of Crystal Reports. You can obtain a copy by calling sales at 866-681-3435, or go to this link:
    www.businessobjects.com/product/catalog/crystalreports
    An eval copy of CR 2008 can be downloaded from here:
    http://www.businessobjects.com/forms/default.asp?id=701600000009BXP
    Ludek

  • Error 15401: Windows NT user or group not found. Check the name again

    when adding a windows login on SQL SERVER 2008 R2 below error is throwing
    Windows NT user or group 'domain\user' not found. Check the name again.
    I have gone through the link
    http://support.microsoft.com/kb/324321/en-us &
    http://support.microsoft.com/kb/2770837
    collation setting of the instance is not case sensitive.

    Hi DevXYZ,
    Have you checked the other possible reasons for this issue?
    The login does not exist
    Verify that the Windows login still exists in the domain. Your network administrator may have removed the Windows login for specific reasons, and you may not be able to grant that login access
    to the SQL Server.
    Verify that you are spelling the domain and login name correctly and that you are using the following format:
    Domain\User
    If the login exists, and it is correct, and you still receive the error, continue with the following sections in this article.
    Duplicate security identifiers
    In a Windows domain, unique Security Identifiers (SIDs) are automatically assigned to Windows logins in the domain. When you add a Windows login as a SQL Server login, the SID is stored in a system table in SQL Server. If you try to add a new login which has
    the same SID as an existing SQL Server login, the 15401 error occurs.
    Authentication failure
    You might receive error 15401 when the domain controller for the domain where the login resides (the same or a different domain) is not available for some reason. 
    If the login is in a different domain than the SQL Server, verify that the correct trusts exist between the domains.
    Verify that the domain controller of the login is accessible by using the
    ping command from the computer that is running SQL Server. Check both the IP address and the name of the domain controller.
    After you tried all the possible methods list above, you still receive the same error, please check the error log as Dean Savović mentioned above and share us the detailed error message here
    as we can analysis further.
    Thanks
    Candy Zhou

  • Cisco WLC 5508 simultaneous Web Auth Users logins?

    Hi there,
    We have 2 WLC5508 (7.2.111.3) with several SSID's.
    One of them is configured as Passthrough with an external splash server. Works fine.
    Now we want to use the "On MAC Filter failure".
    If the client MAC-adresse is configured under MAC Filtering on the WLC, the authentication is done without WebAuth.
    If MAC-adress is not known, the client will be redirect to the external WebAuth server for authentication.
    To keep the Passthrough functionality for the user, we hardcoded an username&password in the splash-page.
    So, every client WebAuth uses the same username&password for authentication against the WLC.
    User Login Policies is set to unlimited.
    So far so good, it seems to work, but I have read, that Cisco 5500 controllers supports only 150 simultaneous Web Auth Users logins.
    The two WLC's have abount 100-170 clients connected.
    Question:
    - Will these be an issue with the 150 simultaneous logins, despited when usin only one user for all Wifi-clients?
    - Can the user WebAuth be done with a Cisco ISE like Passthrough, no username&password should be entered by the user.
      If yes, some guide information wolud be great.
    - When successfully authenticated, a logout screen shows on the Windows client. Can this be hidden some how?
    Thanks for the answers ;-)
    Kind regards,
    Norbert

    Question:
    - Will these be an issue with the 150 simultaneous logins, despited when usin only one user for all Wifi-clients?
    > I believe this means at the same time... I have clients doing the same thing with hundreds or more of guest users
    - Can the user WebAuth be done with a Cisco ISE like Passthrough, no username&password should be entered by the user.
      If yes, some guide information would be great.
    > ISE is really used to login with a username and password and to be able to profile.  You would need to ask that on the Security forum to get their input if this is something then would do or just leave it on the WLC
    - When successfully authenticated, a logout screen shows on the Windows client. Can this be hidden some how?
    > Not really... some machines with popup blocker does block this and you don't see the logout, but you can't remove this.
    Thanks,
    Scott
    *****Help out other by using the rating system and marking answered questions as "Answered"*****

  • Automatically Login Windows System User In TestStand 3.1

    I have checked the "Automatically Login Windows System User" in TestStand 3.1. However, when I re-start TestStand I still have to enter the password each time. Why is this happening? Both the username and password do exist in the Users.ini file. I am using Windows XP SP3. I have already talked to a NI support engineer and they did not have an answer. Thanks for the help.
    Felix 

    Hi ic2118,
    Can you move the Users.ini file (C:\Program Files\National Instruments\TestStand 3.1\Cfg) to a new location and restart TestStand. The file may have been corrupted and moving it out of the Cfg folder will force TestStand to create the file again.
    Regards,
    Michael M
    NI Americas | AE

  • Trial version, windows 7 user account control box comes up

    Downloaded trial version of InDesign CS4 on Windows 7 64 bit OS system. I've also downloaded the most current update. Initial problem during installation of the program was that it wouldn't allow me to dowload all components, I think when I followed the technical link, it said something about having to edit the registry and something to do with ICC profiles.  I skipped that for now, didn't really want to go in and edit the registry until I played with the program a bit.
    The question I have right now is, that while I can eventually get in the program and run it, when I click to start it, a Windows 7 User Account Control box pops up asking if I want to allow this program to make changes to my computer.  When I click details, it appears the Adobe certificate for this probram is not Windows 7 certified?? Does this happen to anyone else operating on Windows 7??  How do you get rid of that pop up box??  I know I can change my user account settings to not notify me, but that would leave my computer very vunerable so I rather not do that.
    Only other program I had bring up that pop up on Windows 7 was Netscape 7, and that pop up box got pretty annoying so I had to go to another browser (yes I know Netscape was out dated, but I loved the email program vs. IE Outlook. I thought maybe it had something to do with my Norton antivirus and called their tech support and they told me no, it was a problem between Windows 7 and the program compatibility.

    It's a brand new HP desktop PC with Windows 7 Professional factory insta
    lled.  Yes, I'm the ony User, have Admin rights.
    I looked at the certificate details when the pop up comes up and it lookes like the certificate is outdate, expired 12/10/09. I wonder if I'm getting an expired certificate because it's only a Trial version of InDesign CS4.
    I went into the Windows User Account and tried to figure out the certificate manager, but I just don't understand it and can't figure out how to get it to allow this certificate so I don't get this annoying pop up window asking me if I want to allow this program to make changes to my computer everytime I start the program.

  • Cannot connect to Admin Api Endpoint, using Authentication token obtained form Windows Auth Site

    Hi, I'm trying to connect to "AdminAPI" site, using Windows Authentication using REST API, but i always get the following error.
    user is not authorized to access the management service
    I also wrote a powershell script that gets the token from windows auth site, and connects to AdminAPi site, it works fine natively, when i run in ISE, but when i execute the same PS script using C# in my custom resource provider, it gives the same above
    error.
    How should i go about it? please help?
    string EnvironmentToUse = "https://localhost";
    string domainName = "//";
    string userName = "***";
    string password = "***@123";
    string adminApiEndpoint = "https://localhost:30004";
    ServicePointManager.ServerCertificateValidationCallback += new RemoteCertificateValidationCallback(delegate { return true; });
    string windowsAuthSiteEndPoint = EnvironmentToUse + ":30072";
    string token = TokenIssuer.GetWindowsAuthToken(windowsAuthSiteEndPoint, domainName, userName, password, true);
    var myAdminClient = new AdminManagementClient(new Uri(adminApiEndpoint), token);
    var u = await myAdminClient.ListUsersAsync(new Query { });
    PS Script:
    $AdminURI = "https://localhost:30004";
    $AuthSite = "https://localhost:30072/";
    $ClientRealm = "https://localhost:30091/";
    $Credential = Get-Credential
    $Token = Get-MgmtSvcToken -Type Windows –AuthenticationSite "https://localhost:30072/" -ClientRealm "http://azureservices/AdminSite" -User $Credential -DisableCertificateValidation
    $Token
    $users = Get-MgmtSvcUser -AdminUri "https://localhost:30004/" -Token $Token -DisableCertificateValidation;

    The user context you are executing the script/cmdlets needs to be added as an administrator into WAP, or else you won't be authorized.
    To add a new user to WAP Admin, see the following PS example:
    Add-MgmtSvcAdminUser -Principal <string> -Server <string>
    -kn
    Kristian (Virtualization and some coffee: http://kristiannese.blogspot.com )

  • Air application uninstall links in Windows start menu?

    Hi,
    Can anyone help how can be implemented Air application uninstall links in Windows start menu.
    Thanks,
    Premkant

    Thanks, In Windows 2000 it is "C:\Documents and Settings\All Users\Start Menu\Programs".
    One more doubt, How can I create Shortcuts using Java? I have tried to create desktop icons using following script.
    http://msdn.microsoft.com/library/default.asp?url=/library/en-us/script56/html/wsconcreatingshortcut.asp
    Shell = new ActiveXObject("WScript.Shell");
    DesktopPath = Shell.SpecialFolders("Desktop");
    link = Shell.CreateShortcut(DesktopPath + "\\test.lnk");
    link.Arguments = "1 2 3";
    link.Description = "test shortcut";
    link.HotKey = "CTRL+ALT+SHIFT+X";
    link.IconLocation = "app.exe,1";
    link.TargetPath = "c:\\blah\\app.exe";
    link.WindowStyle = 3;
    link.WorkingDirectory = "c:\\blah";
    link.Save();
    But my Antivirus tool is not allowing this script to run using Java.
    Is there any way to create DeskTop icons for Java application and add entry to Start Menu -- programs..?
    thanks

Maybe you are looking for

  • X40 2382-ECU Hard drive problem - please help!

    I have a X40 2382-ECU thinkpad.  I ran PC-doctor program and found the S.M.A.R.T. status test and short self-test both failed while the rest of the rest of the tests passed.  After that, I ran a "chkdsk" comment from window and found no error.  I was

  • 2nd Monitor with KVM switch

    hi, i work for a major broadcast company who use a MacPros for trade shows (NAB, IBC etc) with a mirrored output. monitor two goes directly into a 23" Cinema Display. monitor one goes onto a geffen KVM to a 42" panasonic plasma running at the same re

  • Cant able to change music from control center

    I am not able to change music from control center infact when the ipod is locked even then i am not able to change tracks,even pause and play not working this happed after i updated to ios 7....

  • Using queries in Visual compoer

    hi       i  am using Visual composer and very much new to it  and   my task ahead is to perform  database operations  using   queries  as in   perform  updates delete  insert  operations   using   visual composer   on  a  application  form      its a

  • Burning a projector to cd?

    hello, I would like to burn a projector (.exe) to a cd, and hide the files it links to (swf files and video files). how can I do this? my home file and the files that I want to hide were initially in the same folder, so I don't know if I have to chan