No Agent description in Exposure profile

Similar Messages

• Number of agents in Exposure profile

  Hi
  Does anybody know if there is a limit to the number of agents that it is possible to assign to an exposure profile in a given work area?
  We would need up to several thousend in some cases.
  Thanks
  Karin

  Do not know if this has been changed since but in 4.6C the maximum is 150 authorisations in a single profile. when there is more the profile will be split up.
  Edited by: Auke Visser on Jan 13, 2008 9:02 AM

• Exposure profile edition

  Hi Experts,
  I am developing  the report where I need to add/delete documents connected to exposure(TR CBIH92). I have already deleted unused documents from hazards, but I cannot delete document before it exists in any regulations for exposure.
  Is there any Bapi to manage that regulation list and add/remove documents for exposure or it can be done only by sql queries? Could you write me what tables are responsible for that documents connected to the exposure, please? It will be really helpful for me.
  Thanks & Regards
  Max

  Hello,
  The whole purpose of performing risk assessment exercise is not only to totally mitigate the risks of the individual agents, but also to finally restrict the overall risk rating of the concerned work area (which contains all those agents) to an acceptable level.
  That is why the concept of "Exposure profile match-up". As risk -assessment is a continual process till the no risk status is achieved for the agent, hence for one exposure profile of an agent, you keep on assessing the risk with the help of "Next risk assessment". Lets say if during the first assessment the risk is high; you need to define safety measures to mitigate the risks.
  The safety measures can be again of three types: organizational, person-related, & technical. When all the defined safety measures are in "Task completed" status, then "Value Assignment After Check' field become activated for input. This can now be filled based on the completion of the tasks defined. Once you have entered the value assignment after check, only then you can make a follow-on assessment.
  Now, If you execute the Exposure profile matchup function, the rating of the corresponding exposure profile entry is matched up with the Value assignment after check. If you have not made an entry in this field, the main rating is used for the matchup.
  You can use transaction "S_ALN_01001345" for displaying various versions of the risk assessment based on various search criterions.
  Regards,
  Pavan

• File Description in Planner Profile

  Hello All
  I am facing similar issue which few others have faced , linking File Description to Planner profile & using in upload file.
  I have linked the planner profile  Z-ALLXL , 'integrated excel' with file description COB_*  (as I intend to create sepearet file for different Cost centres for example : COB_C1.TXT , COB_C2.TXT)
  But when I enter COB_* in planner profile it say it does not exist.
  Also when I go to KP06 and use excel load, I cant see file description COB_ *  is not available for selection. The only thing available is 01_1P1_KSKA_EX_001ETG-KSKA
  I have refered from links before somehow not able to get through this.
  Also I want to know the 'excel' macro that is generated for profile can this be exactly used for load or we need to change somethings here.
  Best Regards

  Hi Vijay
  I would personally suggest using an LSMW... This excel upload is always a pain.. Moreover, you have to prepare files for each month separately...
  I always use LSMW.. I recorded it 4 yrs back in my 1st project and have been using it ever since... You can export-import it between systems in a txt file format
  Regards
  Ajay M

• Workflow not routing to agent specified in partner profile

  have included below notes regarding the mis-routing of workflow messages of "translation error" STATUS message idocs that are uploaded into R/3.
  The testing that I have been performing has been in Development System. The first thing that I check is that the Partner profile parameters are set to send the STATUS message type idoc to an agent via t-code we20. This agent does exist in the organization structure found at t-code ppome. I have been using the logical system (partner type LS) user=GEIS, inbound parameter message type=STATUS, message variant=AP, where myself is setup as the agent to receive workflow.
  When processing an inbound STATUS idoc containing an error code of "05", meaning that translation failed on the outbound corresponding idoc (e.g. invoice, desadv, etc.) in the EC subsystem, workflow should be triggered and route the message to the agent specified at the message type level of the partner profile. In the event that an agent is not configured at the message type level of the partner profile, then the workflow message should be routed to the agent specified at the partner profile global level. However, in the event that an agent is not specified at the message type level or partner profile global level, then the workflow message should be routed to the IDOC Administrator, which is configured in t-code we46.
  The results of my testing has been that regardless of the agent configuration set at the message type level or partner profile global level, all workflow messages are routed to the IDOC Administrator configured in we46.
  The request is to have development work completed so that error STATUS idocs can trigger workflow messages that will be routed to various agents for resolution, versus workflow messages being routed just to the IDOC Administrator - which is how it is working today.
  I would greatly appreciate for your immediate response.
  Regards,
  Shankar

  Hi Stacey
  If DEV is working and PRD is not have you gone through and compared both and ensure latest MSMP configuration in PRD has been activated?
  Also, is the approver COCHGG00 also the Role Owner?
  Are you able to show you MSMP configuration? It's makes sense to analyse the log in the context of your configuration. E.g. does the Z_ADDTNL_ACCESS_PATH path have two stages: Manager and Role Owner of which there is a routing rule on the Manager approval to go to the NO_ROLE_OWNER path where the business role has no role owner?
  Regards
  Colleen

• Cisco ISE NAC agent and Microsoft roaming profiles

  Hi there,
  I have installed Identity services engine version 1.1.3 in didstributed mode. The NAC agent is installed on the end user PC joined to the domain. when a user with a roaming profile logs into the PC, the NAC agent fails to run posture assesment, but if a user with non-roaming profile logs in, the NAC agent does posture and full network access is granted.
  Is there something i need to do to enable the NAC agent to perform posture for users with a roaming profile.
  Regards,
  Henry

  Hello,
  I found the following from the cicso doc. Hope it helps!
  The following failure  scenarios might cause the Cisco NAC Agent to appear following successful  user authentication when the client machine roams between CASs in Layer  3 (both In-Band and Out-of-Band) and Layer 2 /Layer 3 Out-of-Band  environments. Erroneous Agent login dialogs could also appear if users  roam from the Cisco NAC Appliance network in Layer 3 mode to a non-NAC  network:
  –ARP poisoning
  –Temporary loss of network connection between the client machine and the CAS
  –Access to untrusted interface IP address on the CAS from non-NAC network segments on NAC-enabled client machines
  Cisco offers the following recommendations to prevent this situation:
  –Ensure  all trusted networks (post-authentication) can reach the CAS untrusted  interface IP address through the CAS trusted interface only
  –Block  discovery packets from all non-NAC networks to the CAS untrusted  interface IP address (discovery packets that arrive on the trusted  interface of the CAS are blocked by default)
  For more information please refer to the following link:
  http://www.cisco.com/en/US/docs/security/nac/appliance/configuration_guide/48/cam/m_agntd.html

• OIM manipulating provisioning - description on resource profile

  Kamaraden!
  I have an OIM installation with AD and Exchange connectors. When users are provisioned, going back to the resource profile, you can see the resource and several data, for example the Description field. For AD User, descriptions shows the windows logon name (what I think it is correct), and for Exchange, it shows a number (probably a key of some table). Trying to discover from where this description field is taken, I realized that it comes from the ORC table, ORC_TOS_INSTANCE_KEY (if I change it, it changes in the description of the resource profile too).
  I have many questions about this. First of all, who puts this value in this field of the ORC table. I followed the provisioning tasks for AD and Exghange (Create User and Create Mailbox), and got inside the code (I decompiled it with cavaj), but the logic of the adapters attached to that process task and the code in the java classes, only creates efectively the user or the mailbox, and returns.. so, when the resource profile is being modified?
  Other question related to that, is where are the conventions of the process tasks names for provisioning? For example, FIELD Updated reacts over the event of modification of FIELD. Create User sounds logic for provisioning when a resource is granted on an application, but Create Mailbox? How is this task attached with the provisioning submit of a resource?
  DrLDAP

  You are right, the number that you see in the description field in the resource profile is the ORC KEY. If you need to change this to show any value in the process form, you can do so by going to the provisioning workflow form in the design console and click of Map Descriptive field.
  I dont think it has been documented anywhere about the field name<space updated> task.
  The name Create User or Create Mailbox has no significance. you can really keep any name for the task. The way OIM understands that it needs to execute this task is if it sees the task is marked as "Required for Completion". all tasks marked required for completion will be executed by oim before it can say that provisioning has been completed. For e.g i a provisioning process all you might need to do is send a mail and not create any account etc.
  then you have a task "Send mail" (or any name) mark the task as required for completion. Now when this resource is granted by the admin to the user, this task would have executed. The name is not of essence when it comes to provisioning.

• Erros in Agent Inbox Profiles for Account Factsheet

  Hello All,
  I need my service request and service orders to appear in the account fact sheet in the interaction center role
  For the missing customization I go to CRM-Interaction Center WebClient-Agent Inbox-Define Inbox Profiles where I have created a z profile screen shot attached
  When I try to add my custom transaction type
  The system gives me the error message below
  Entry ZRVR does not exist in crmc_aui_maincat
  Kind Regards
  Atul

  Hello,
  You may want to follow the system instruction, and maintain entry in the given table.
  This can be found in the SPRO here :
  Interaction Center WebClient->Agent Inbox->Inbox Search Definitions->Define Item Types for Searches
  Best regards,
  Sylvain AGUETTAZ

• Service ticket  -Agent inbox

  Hi ,
  After saveing Service ticket ,where it will appears and saved .
  if i want see saved service ticket again ,how can i see it .
  After entering data in service ticket and done dispatch , where it will go ?
  is we can see service ticket in Agent inbox ?
  can any please explain what will happen of above query's detaily .
  Thanks,
  Aravind .

  Hi Aravind
  The Service Ticket will be visible through Interaction Record - Activity Clipboard as well as Agent Inbox amonst other.
  To be able to Search on Service Tickets in the Agents Inbox there is some configuration required.
  Goto: SPRO->IMG->Customer Relationship Management->Interaction Center Webclient->Agent Inbox->Inbox Search Definitions->Define Item Categories for Searches
  Here add your Service Ticket Transaction into the  "Inbox One Order Item" Type with a description you will recognise as your service ticket
  Next:
  Goto: SPRO->IMG->Customer Relationship Management->Interaction Center Webclient->Agent Inbox->Define Inbox Profile
  Create a Z* Inbox Profile from Default-1 and in the Assign Main Categories option include the required Item categories as well as the one you created for your Service Ticket in the previous step.
  Next
  Add this profile to the Webclient Profile, when viewing the Inbox you should now see your Service Ticket as a searchable category.
  <b>Reward with points if useful</b>
  Regards
  Arden

• Added another subscriber to existing publication. Snapshot delivered but ket re-initializing if Distribution agent is restarted

  Hi,
  Here is the situation. We have existing replication with sql 2008 r2 publisher and a subscriber on same edition. The database is quite big so snapshot generally takes about 4 hours or more. There are additional tables on subscriber so a backup / restore
  mode of initialization is not suitable.
  This replication is working just fine, now there is a need to add a sql 2014 subscriber to this publisher and same tables as in current publication, so we decided to simply add another push subscription for this new sql 2014 subscriber. During the process
  the Initial snapshot is generated and applied to new 2014 subscribe, keep in mind we have not made any change to publication to avoid affecting the existing subscriber. So when snapshot is delivered and appeared in replication monitor it started creating primary
  keys on subscriber database. We have few big tables where we are not sending clustered and non clustered indexes across so that replication snapshot goes fast (although it is over 4 hours). These indexes and primary keys get created with manual scripts after
  snapshot is generated. During this time log reader agent has been actively sending transactions to existing subscriber that is telling me that as soon as distribution agent done with the snapshot it will start sending transactions to new subscriber (which
  is quite normal). Now the problem, after snapshot is done I need to run manual scripts to create PK and indexes on new subscriber, to do that I have to stop distribution agent so that indexes and PKs don't get blocked. After I stopped distrib
  agent temporarily, the Scripts got completed successfully within 20 minutes and when I re-started distribution agent , to my surprise it started initializing the new subscriber again and sending same snapshot that was already applied. It make me puzzled
  what caused the distribution agent to reinitialize although it already delivered snapshot and I have indexes created and ready to go. I tried this process again with more careful approach and gave about one hour after snapshot delivered message received. but
  it did the same thing.  Only explanation I can think of that publisher database is actively sending transactions when I was applying snapshot and as soon as it is delivered, the distribution agent started delivering transaction, I could see Undistributed
  Commands kept on growing high telling me that there are lots of transactions for new subscriber to catch up but without indexes and some missing primary keys it would not even catch up and so I always stop the distrib agent and run my scripts on subscriber
  and run into this situation. During all these times the existing subscriber never had any issue.
  Do I need to make sure no ort minimal transactions happening on publisher when I initialize the new subscriber.
  Or should I create new separate publication on the same publisher and use that.
  Any other suggestions are welcome
  Thanks!
  dba60

  Snapshot was set of initialize immediately.  No errors in repl_errors table.  Distribution agent was using default profile.
  Do you think that I should be running missing PK and indexing scripts as part of replication, replication provides an option run scripts before or after snapshot was applied. Also, I am wondering if creating some missing PKs is triggering the snapshot to
  be reapplied. Also, Why the primary key for some tables not coming along during snapshot delivery? 
  Do you think having lots of transactions on publisher database while snapshot being applied would be affecting it too?
  Also, is it possible to use a different distributors for each publication from same publisher?
  My plan now is to create new publication for same publisher and database, this way I will have more control over changing article properties.
  Thanks!
  dba60

• Wilyhost Agent could connect to the Enterprise Manager

  Hi Gurus,
  I'm trying to setup Diagnostic for Solman 7.0. I'd installed Wily Introscope and SDM Agent in Solution Manager. The Agent was configured for this server. The Application Agent in Diagnostic Setup -> Managed system was OK, but when I try to run the Setup Wizard for Self-Monitoring, every steps are in green (OK) but the first was in red with this error:
  Step Wilyhost Agent Details
  Created destination SM1_DVEBMGS00_server0
  Created destination SM1|qfmasr003_SM1_00
  Created action SAP GC|SM1_DVEBMGS00_server0 - SAP GC|SM1_DVEBMGS00_server0
  Created action SM1 - SM1 AbapSystem
  Created action SM1|qfmasr003_SM1_00 - SM1|qfmasr003_SM1_00 AbapInstance
  Created 3 action(s).
  0 Wilyhost Agent(s) and 0 EP Agent(s) from host qfmasr003 are connected to the EM.
  Wilyhost Agent configuration finished without errors, but on Enterprise Manager (qfmasr003.xxxxxxxx.com:6000) no Wilyhost Agent was detected from host qfmasr003. Please check the log file jvm_smdagent.out whether the Wilyhost Agent could connect to the Enterprise Manager. If the Enterprise Manager configuration has been changed recently please restart the SMD Agent on OS level.
  The file jvm_smdagent.out  said this:
  LoadBalanceRestricted=no
  P4ClassLoad=P4Connection
  SAPDBHOST=
  SAPINFO=SMD_98_server
  SAPMYNAME=qfmasr003_SMD_98
  SAPSTARTUP=1
  SAPSYSTEM=98
  SAPSYSTEMNAME=SMD
  application.home=/usr/sap/SMD/exe
  file.encoding=UTF-8
  file.encoding.pkg=sun.io
  file.separator=/
  j2ee.dbhost=
  java.awt.graphicsenv=sun.awt.X11GraphicsEnvironment
  java.awt.printerjob=sun.print.PSPrinterJob
  java.class.path=/usr/sap/SMD/exe/jstartup.jar:/usr/sap/SMD/exe/jvmx.jar:../../exe/jstartupapi.jar:../../exe/jstartupimpl.jar:lib/patch_7.00.15.20080806065909/launcher/smdagentlauncher.jar
  java.class.version=48.0
  java.endorsed.dirs=/j2sdk1.4.2_17/jre/lib/endorsed
  java.ext.dirs=/j2sdk1.4.2_17/jre/lib/ext
  java.home=/j2sdk1.4.2_17/jre
  java.io.tmpdir=/tmp
  java.library.path=/j2sdk1.4.2_17/jre/lib/i386/server:/j2sdk1.4.2_17/jre/lib/i386:/j2sdk1.4.2_17/jre/../lib/i386:/usr/sap/SMD/exe:/tmp/sapinst_exe.18845.1222346568:/usr/sap/SMD/exe:/usr/sap/SMD/exe:/usr/sap/SMD/exe
  java.runtime.name=Java(TM) 2 Runtime Environment, Standard Edition
  java.runtime.version=1.4.2_17-b06
  java.specification.name=Java Platform API Specification
  java.specification.vendor=Sun Microsystems Inc.
  java.specification.version=1.4
  java.util.prefs.PreferencesFactory=java.util.prefs.FileSystemPreferencesFactory
  java.vendor=Sun Microsystems Inc.
  java.vendor.url=http://java.sun.com/
  java.vendor.url.bug=http://java.sun.com/cgi-bin/bugreport.cgi
  java.version=1.4.2_17
  java.vm.info=mixed mode
  java.vm.name=Java HotSpot(TM) Server VM
  java.vm.specification.name=Java Virtual Machine Specification
  java.vm.specification.vendor=Sun Microsystems Inc.
  java.vm.specification.version=1.0
  java.vm.vendor=Sun Microsystems Inc.
  java.vm.version=1.4.2_17-b06
  jstartup.debuggable=yes
  jstartup.mode=JCONTROL
  jstartup.ownHardwareId=G1082288837
  jstartup.ownProcessId=1666
  jstartup.whoami=server
  line.separator=
  memory.manager=128M
  os.arch=i386
  os.name=Linux
  os.version=2.6.9-5.ELsmp
  path.separator=:
  sun.arch.data.model=32
  sun.boot.class.path=/j2sdk1.4.2_17/jre/lib/rt.jar:/j2sdk1.4.2_17/jre/lib/i18n.jar:/j2sdk1.4.2_17/jre/lib/sunrsasign.jar:/j2sdk1.4.2_17/jre/lib/jsse.jar:/j2sdk1.4.2_17/jre/lib/jce.jar:/j2sdk1.4.2_17/jre/lib/charsets.jar:/j2sdk1.4.2_17/jre/classes
  sun.boot.library.path=/j2sdk1.4.2_17/jre/lib/i386
  sun.cpu.endian=little
  sun.cpu.isalist=
  sun.io.unicode.encoding=UnicodeLittle
  sun.java2d.fontpath=
  sun.os.patch.level=unknown
  sys.global.dir=/usr/sap/SMD/SYS/global
  user.country=US
  user.dir=/usr/sap/SMD/J98/SMDAgent
  user.home=/home/smdadm
  user.language=en
  user.name=smdadm
  user.timezone=
  Running SMD Agent ...
  [Runtime] START
  ==> Loading application com.sap.smd.agent.application.runtime : 7.0015.20080806065229.0000
  ==> Loading application com.sap.smd.agent.application.global.configuration : 7.0015.20080806065229.0000
  ==> Loading application com.sap.smd.agent.application.connectors : 7.0015.20080806065229.0000
  ==> Loading application com.sap.smd.agent.application.wily : 7.0015.20080806065229.0000
  ==> Loading application com.sap.smd.agent.application.filesystem : 7.0015.20080806065229.0000
  ==> Loading application com.sap.smd.agent.application.tracing : 7.0015.20080806065229.0000
  ==> Loading application com.sap.smd.agent.application.remotesetup : 7.0015.20080806065229.0000
  ==> Loading application com.sap.smd.agent.application.wilyhost : 7.0015.20080806065229.0000
  10/14/08 01:13:55 PM ARST [INFO] [IntroscopeAgent] Introscope Agent Release 7.2.0.0 (Build 540138)
  10/14/08 01:13:55 PM ARST [INFO] [IntroscopeAgent] Using Java VM version "Java HotSpot(TM) Server VM 1.4.2_17" from Sun Microsystems Inc.
  10/14/08 01:13:55 PM ARST [INFO] [IntroscopeAgent] Trying to load agent profile based on system property "com.wily.introscope.agentProfile"
  10/14/08 01:13:55 PM ARST [INFO] [IntroscopeAgent] Trying to load file from ./applications.config/com.sap.smd.agent.application.wilyhost/IntroscopeSapAgent.profile
  10/14/08 01:13:55 PM ARST [INFO] [IntroscopeAgent] Loaded file from ./applications.config/com.sap.smd.agent.application.wilyhost/IntroscopeSapAgent.profile
  10/14/08 01:13:55 PM ARST [INFO] [IntroscopeAgent] Looking for agent profile property "introscope.agent.extensions.directory" to locate the extensions directory.
  10/14/08 01:13:55 PM ARST [INFO] [IntroscopeAgent] The agent extension property "introscope.agent.extensions.directory" is not set.  No extensions will be loaded.
  10/14/08 01:13:55 PM ARST [INFO] [IntroscopeAgent] Introscope Agent startup complete.               
  10/14/08 01:13:55 PM ARST [INFO] [IntroscopeAgent] The Agent will attempt to determine its name.
  10/14/08 01:13:55 PM ARST [INFO] [IntroscopeAgent] Using the Agent name "SAP HostAgent J98" based on the value of the System Property "com.wily.introscope.agent.agentName".
  10/14/08 01:13:55 PM ARST [INFO] [IntroscopeAgent] Initial agent name set to SAP HostAgent J98
  10/14/08 01:13:55 PM ARST [INFO] [IntroscopeAgent.Isengard] Initiating connection attempts to the Introscope Enterprise Manager.
  10/14/08 01:13:55 PM ARST [INFO] [IntroscopeAgent.Isengard] The Agent reconnection delay is set to 15 second(s).
  10/14/08 01:13:57 PM ARST [INFO] [IntroscopeAgent.IsengardServerConnectionManager] Connected Agent to the Introscope Enterprise Manager at qfmasr003.quickfood.com.ar:6000,com.wily.isengard.postofficehub.link.net.DefaultSocketFactory. Host = "qfmasr003", Process = "SAP HostAgent Process", Agent Name = "SAP HostAgent J98".
  10/14/08 01:13:57 PM ARST [INFO] [IntroscopeAgent] Remote Agent Configuration Service is enabled
  ==> Loading application com.sap.smd.agent.application.logviewer : 7.0015.20080806065229.0000
  ==> Loading application com.sap.smd.agent.application.flightrecorderdumpscan : 7.0015.20080806065229.0000
  ==> Loading application com.sap.smd.agent.application.telnet : 7.0015.20080806065229.0000
  ==> Loading application com.sap.smd.agent.application.database : 7.0015.20080806065229.0000
  ==> Loading application com.sap.smd.agent.application.datacollector : 7.0015.20080806065229.0000
  Initialization done.
  [ms://qfmasr003.xxxxxxxxxxxxxxxxxx:8101/P4] Agent ready.
  ==> Loading application com.sap.smd.agent.application.remoteos : 7.0015.20080806065229.0000
  only Initial Configuration files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only file configuration information will be considered
  Warning: ConfigStore [cfg/kernel/ThreadManager.properties][J2EE] has already been defined with another alias.
  Warning: ConfigStore [cfg/kernel/ClusterManager.properties][J2EE] has already been defined with another alias.
  Warning: ConfigStore [cfg/kernel/ClusterManager.properties][J2EE] has already been defined with another alias.
  Warning: ConfigStore [cfg/kernel/ServiceManager.properties][J2EE] has already been defined with another alias.
  Warning: ConfigStore [cfg/kernel/ThreadManager.properties][J2EE] has already been defined with another alias.
  Warning: ConfigStore [cfg/kernel/ThreadManager.properties][J2EE] has already been defined with another alias.
  Warning: ConfigStore [cfg/kernel/ClusterManager.properties][J2EE] has already been defined with another alias.
  Warning: ConfigStore [cfg/kernel/ClusterManager.properties][J2EE] has already been defined with another alias.
  Warning: ConfigStore [cfg/kernel/ServiceManager.properties][J2EE] has already been defined with another alias.
  Warning: ConfigStore [cfg/kernel/ThreadManager.properties][J2EE] has already been defined with another alias.
  only Abap configuration will be considered
  only Abap configuration will be considered
  only file version information will be considered
  only End2End log files will be considered
  only software change logs will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  10/15/08 01:16:17 PM ARST [WARN] [IntroscopeAgent.IsengardServerConnectionManager] The Introscope Agent is sending data to the Introscope Enterprise Manager too slowly.  Keeping the connection alive.
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only file configuration information will be considered
  Warning: ConfigStore [cfg/kernel/ThreadManager.properties][J2EE] has already been defined with another alias.
  Warning: ConfigStore [cfg/kernel/ClusterManager.properties][J2EE] has already been defined with another alias.
  Warning: ConfigStore [cfg/kernel/ClusterManager.properties][J2EE] has already been defined with another alias.
  Warning: ConfigStore [cfg/kernel/ServiceManager.properties][J2EE] has already been defined with another alias.
  Warning: ConfigStore [cfg/kernel/ThreadManager.properties][J2EE] has already been defined with another alias.
  Warning: ConfigStore [cfg/kernel/ThreadManager.properties][J2EE] has already been defined with another alias.
  Warning: ConfigStore [cfg/kernel/ClusterManager.properties][J2EE] has already been defined with another alias.
  Warning: ConfigStore [cfg/kernel/ClusterManager.properties][J2EE] has already been defined with another alias.
  Warning: ConfigStore [cfg/kernel/ServiceManager.properties][J2EE] has already been defined with another alias.
  Warning: ConfigStore [cfg/kernel/ThreadManager.properties][J2EE] has already been defined with another alias.
  only Abap configuration will be considered
  only Abap configuration will be considered
  only file version information will be considered
  only End2End log files will be considered
  only software change logs will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only End2End log files will be considered
  only Initial Configuration files will be considered
  This error is the same, when I try to connecto other system for Diagnostics,
  Any comments, suggestions, recomendations.... anythings.....
  Thanks in advice,
  Sergio Mazzeo.

  Hi Sergio,
  did you already stop and start your SMD agent on OS level ? It is not enough to restart it from the SMD.
  kind regards
  Davy

• Policy Agent 2.2, IIS 6.0, CDSSO and redirects after authentication

  Hi
  I've got a problem where a HTTP/1.1 200 and 302 are returned by the Policy Agent / Application, after the Javascripted POST by the CDCServlet content is performed.
  The expected functionality is that the user is authenticated with the AM, the CDC Servlet serves the JavaScript page that will do a POST to the Policy Agent. The Policy Agent should then do what it needs to do with the POST, and forward request to the Application. The Application then does what it needs to do, and in this case, serves a HTTP/1.1 302 for redirection back to the browser.
  However, it seems that the Policy Agent might be returning a HTTP/1.1 200, and setting the iPlanetDirectoryPro cookie, quickly followed by the HTTP/1.1 302 and the setting of whatever cookies it wants to set.
  The Policy Agent should be respecting the return code of the Application. This problem does not appear when run against the Policy Agent for the Sun ONE Web Server.
  Wondering if anyone has seen this before?
  Here is sanitized output from a trace on the POST and resulting response.
  POST /oslp/?sunwMethod=GET HTTP/1.1
  Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/x-shockwave-flash, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, */*
  Accept-Language: en-au
  Content-Type: application/x-www-form-urlencoded
  Accept-Encoding: gzip, deflate
  User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; .NET CLR 2.0.50727)
  Host: sco88342744.corp.qed.qld.gov.au
  Content-Length: 3496
  Connection: Keep-Alive
  Cache-Control: no-cache
  X-ProcessAndThread: IEXPLORE.EXE [904; 2908]
  LARES=<snip>
  HTTP/1.1 200 OK
  Date: Wed, 16 May 2007 22:25:42 GMT
  Server: Microsoft-IIS/6.0
  Set-Cookie: iPlanetDirectoryPro=AQIC5wM2LY4Sfcz8tCfJ96AXxjIgRzuZJDgE7gMeTO0iIS4%3D%40AAJTSQACMDQ%3D%23;Path=/
  HTTP/1.1 302 Found
  Date: Wed, 16 May 2007 22:25:42 GMT
  Server: Microsoft-IIS/6.0
  X-AspNet-Version: 1.1.4322
  Location: /oslp/user/signon.aspx
  Set-Cookie: ASP.NET_SessionId=lh4sus55y1iy2r5514onnjuj; path=/
  Cache-Control: no-cache
  Pragma: no-cache
  Expires: -1
  Content-Type: text/html; charset=utf-8
  Content-Length: 139
  <html><head><title>Object moved</title></head><body>
  <h2>Object moved to <a href='/oslp/user/signon.aspx'>here</a>.</h2>
  </body></html>

  Hi,
  we had the same problem, but we got support
  from readme.txt
  Bug#: 6789020
  Agent type: All Agents
  Description: In CDSSO mode non enforced POST requests cannot be accessed
  Bug#: 6736820
  Agent type: IIS 6 Agent
  Description: IIS 6 agent doesn't work properly with ASP pages in CDSSO mode
  Both bugs should be fixed in this version:
  Sun Java System Web Agents 2.2-02 hotpatch2

• Error 403 returned from WebSphere running Policy Agent

  Hi,
  I'm getting an error 403 (forbidden) in my browser when I try to access a URL that I have protected using a Policy that I have setup in SAM.
  My configuration is as follows:
  Sun Access Manager 6 2005Q1 on Solaris
  WebSphere AppServer 5.1.1.5 on Win 2000
  WebSphere 5.0 Policy Agent 2.1 on Win 2000
  At the moment, all I'm trying to do is protect a URL which is contained in a simple WAR file which I have deployed on WAS.
  As per the J2EE Policy Agents guide, I have installed the Agent Filter by adding the following into web.xml
  <web-app>
  <display-name>...</display-name>
  <description>...</description>
  <filter>
  <filter-name>Agent</filter-name>
  <display-name>Agent</display-name>
  <description>SunTM ONE Identity Server Policy Agent</description>
  <filter-class>com.sun.identity.agents.websphere.AmWAS50AgentFilter</filter-class>
  </filter>
  <filter-mapping>
  <filter-name>Agent</filter-name>
  <url-pattern>/*</url-pattern>
  </filter-mapping>
  </web-app>
  I've switched on Global Security in WAS and successfully logged back into the WebSphere Console using amldapuser. This confirms that the Agent Realm is working correctly.
  In SAM I set up a Policy with a Rule that specified the URL I want to protect. I added a Subject to this Rule of type LDAP User. The user I chose was amadmin (for the moment).
  I also configued an Agent with agentRootURL=http://<WAS fully qualified domain name>:9080/
  When I try to access the URL of the servlet in the WAR, I am redirected to the SAM's login page
  http://<SAM fully qualified domain name>/amserver/UI/Login?goto=http%3A%2F%2F<WAS fully qualified domain name>%3A9080%2FRoamingApp%2FRoaming
  However, when I enter the amadmin/ <password> error 403 is returned to the browser.
  I've checked the logs on SAM
  From amAuthentication.access
  "2005-07-28 11:58:15" "Login Success" LDAP dc=acme,dc=com INFO uid=amAdm
  in,ou=People,dc=acme,dc=com <WAS IP address> "cn=dsameuser,ou=DSAME Users,dc=acme,
  dc=com" <WAS IP address>
  From amSSO.access
  "2005-07-28 11:58:15" "SESSION CREATE" amSSO.access dc=acme,dc=com I
  NFO uid=amAdmin,ou=People,dc=acme,dc=com <WAS IP address> "cn=dsameuser,ou=
  DSAME Users,dc=acme,dc=com" <WAS IP address>
  From agent.log (Policy Agent on Win 2000)
  [Thursday, July 28, 2005 11:58:15 AM BST] [null]
  Access to http://<WAS fully qualified domain name>:9080/RoamingApp/Roaming denied for user UNKNOWN
  Perhaps I dont have the Policy in SAM configured correctly..... if anyone has come across this kind of problem before, I would greatly appreciate any help they can give me.
  Thanks,
  Justin

  Thanks for getting back to me Jerry.
  I had a look at the role-to-principal mappings you suggested. To do this I added a security constraint to my web.xml file.
  Then I reconfigured WebSphere so that the Active User Registry = LDAP instead of Custom. This allowed me to assign the LDAP group (in SAM) to the role (in web.xml). WAR file installed fine with these new bindings and I restarted WAS.
  Unfortunately, I'm still getting Error 403 in the browser!
  Any ideas as to what I might be doing wrong? Any help you can give me would be much appreciated.
  This is the amFilter log file from the Policy Agent...
  07/29/2005 05:48:44:980 PM IST: Thread[Servlet.Engine.Transports : 2,5,main]
  AmFilter: incoming request =>
  HttpServletRequest: class => com.ibm.ws.webcontainer.srt.SRTServletRequest@1af52898
       Character Encoding     : null
       Content Lenght          : -1
       Content Type          : null
       Locale               : en_IE
       Accept Locales:
            en_IE
       Protocol          : HTTP/1.1
       Remote Address          : 172.20.13.96
       Remote Host          : 172.20.13.96
       Scheme               : http
       Server Name          : dubwrk1589.ie.pri.o2.com
       Server Port          : 9080
       Is Secure          : false
       Auth Type          : null
       Context Path          : /RoamingApp
       Cookies:
            amFilterParam: AQIC5wM2LY4Sfcx0xX1Z1+1tK4SfLh/aCFlbIGuRNEPcAVc=
            amFilterRDParam: AQIC5wM2LY4Sfcwb7v6Sof6MpnvtyR8nae7hiKN7Y11QjCagyWAs9LzbAeB9Q4TP8VjruhK+oYForXxw/qq6TqbMAN1PlT1YOQI3Vy92iAaJ2N9x2bSRaUU7NlwZg8oTti+JOLdiRMTzwO17jIoWwCIx/0CtoQXpkX/meuAoFwf1feyAEp2NvK7AIbE82f/p8o4LxQbhK2NQNec=
            WASReqURL: http://dubwrk1589.ie.pri.o2.com:9080/RoamingApp/Roaming
            JSESSIONID: 0000HRZTVpt84dvtjaLaKWBnwzu:-1
       Headers:
            accept:
                 image/gif
                 image/x-xbitmap
                 image/jpeg
                 image/pjpeg
                 application/msword
                 application/vnd.ms-excel
                 application/vnd.ms-powerpoint
                 application/x-shockwave-flash
            referer:
                 http://sam.digifone.com/amserver/UI/Login?goto=http%3A%2F%2Fdubwrk1589.ie.pri.o2.com%3A9080%2FRoamingApp%2Flogin.jsp
            accept-language:
                 en-ie
            cookie:
                 amFilterParam=AQIC5wM2LY4Sfcx0xX1Z1+1tK4SfLh/aCFlbIGuRNEPcAVc=; amFilterRDParam=AQIC5wM2LY4Sfcwb7v6Sof6MpnvtyR8nae7hiKN7Y11QjCagyWAs9LzbAeB9Q4TP8VjruhK+oYForXxw/qq6TqbMAN1PlT1YOQI3Vy92iAaJ2N9x2bSRaUU7NlwZg8oTti+JOLdiRMTzwO17jIoWwCIx/0CtoQXpkX/meuAoFwf1feyAEp2NvK7AIbE82f/p8o4LxQbhK2NQNec=; WASReqURL=http://dubwrk1589.ie.pri.o2.com:9080/RoamingApp/Roaming; JSESSIONID=0000HRZTVpt84dvtjaLaKWBnwzu:-1
            accept-encoding:
                 gzip
                 deflate
            user-agent:
                 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322)
            host:
                 dubwrk1589.ie.pri.o2.com:9080
            connection:
                 Keep-Alive
            cache-control:
                 no-cache
       Method               : GET
       Path Info          : null
       Path Trans          : null
       Query String          : null
       Remote User          : null
       Requested Session ID     : 0000HRZTVpt84dvtjaLaKWBnwzu:-1
       Request URI          : /RoamingApp/login.jsp
       Servlet Path          : /login.jsp
       Session               : true
       User Principal          : null
       Attributes:
            com.ibm.servlet.engine.webapp.dispatch_type: forward
  07/29/2005 05:48:44:980 PM IST: Thread[Servlet.Engine.Transports : 2,5,main]
  FQDNHandler: Incoming Server Name: [dubwrk1589.ie.pri.o2.com] Result: null
  07/29/2005 05:48:44:980 PM IST: Thread[Servlet.Engine.Transports : 2,5,main]
  PatternRule{*/j_security_check}.matchString(/RoamingApp/login.jsp) => false
  07/29/2005 05:48:44:980 PM IST: Thread[Servlet.Engine.Transports : 2,5,main]
  NotEnforcedListManager.isNotEnforced(/RoamingApp/login.jsp) => false
  07/29/2005 05:48:44:980 PM IST: Thread[Servlet.Engine.Transports : 2,5,main]
  AmFilter: Login attempt number: 10
  07/29/2005 05:48:44:980 PM IST: Thread[Servlet.Engine.Transports : 2,5,main]
  AmFilter: SSO Validation failed for null
  07/29/2005 05:48:44:980 PM IST: Thread[Servlet.Engine.Transports : 2,5,main]
  AmFilter: Reseting Cookies in Response
  07/29/2005 05:48:44:980 PM IST: Thread[Servlet.Engine.Transports : 2,5,main]
  WARNING: AmFilter: Login attempt number 10 failed for request URI: /RoamingApp/login.jsp
  07/29/2005 05:48:44:980 PM IST: Thread[Servlet.Engine.Transports : 2,5,main]
  URLFailoverHelper: Checking if http://sam.digifone.com:80/amserver/UI/Login is available
  07/29/2005 05:48:44:980 PM IST: Thread[Servlet.Engine.Transports : 2,5,main]
  URLFailoverHelper: URL http://sam.digifone.com:80/amserver/UI/Login is available
  07/29/2005 05:48:44:980 PM IST: Thread[Servlet.Engine.Transports : 2,5,main]
  URLFailoverHelper: getAvailableURL() => http://sam.digifone.com:80/amserver/UI/Login
  07/29/2005 05:48:44:980 PM IST: Thread[Servlet.Engine.Transports : 2,5,main]
  AmFilter: redirectURL is: http://sam.digifone.com:80/amserver/UI/Login?goto=http%3A%2F%2Fdubwrk1589.ie.pri.o2.com%3A9080%2FRoamingApp%2Flogin.jsp
  07/29/2005 05:48:44:980 PM IST: Thread[Servlet.Engine.Transports : 2,5,main]
  WARNING: AmFilter: redirect attempt limit reached for http://sam.digifone.com:80/amserver/UI/Login?goto=http%3A%2F%2Fdubwrk1589.ie.pri.o2.com%3A9080%2FRoamingApp%2Flogin.jsp, access will be denied
  07/29/2005 05:48:44:980 PM IST: Thread[Servlet.Engine.Transports : 2,5,main]
  AmFilter: Using 403 forbidden to block access
  07/29/2005 05:48:44:980 PM IST: Thread[Servlet.Engine.Transports : 2,5,main]
  getResource: id = 20004
  07/29/2005 05:48:44:980 PM IST: Thread[Servlet.Engine.Transports : 2,5,main]
  AmFilter: result =>
  FilterResult:
       Status      : FORBIDDEN
       RedirectURL     : null
       RequestHelper:
            null
       Data:
            null
  07/29/2005 05:48:44:980 PM IST: Thread[Servlet.Engine.Transports : 2,5,main]
  getResource: id = 20008

• I created one profile in Firefox. But while deleting the Profile i deleted the files also. How to get those files?

  For creating a User agent, I created one profile in Fire fox. But while i am deleting the Profile, i clicked on the button 'Delete Files'. Now i want those files. Can you please tell me from where can i get those files?
  Please revert back to
  [email protected]

  Yes, the places.sqlite has been copied. I don't see any specific instructions in the "restoring to a different locaton" directions on how to open the new profile, though. Step 7 just says to paste the contents of the backed up file to the new profile (in this case, I've copied them over the default profile created when I first downloaded firefox). This overwrote the existing files. Then it says to Start Firefox. Which I did with no old bookmarks showing up. That's why I posted here - am I missing a step once I open Firefox to make it look at the new profile information?

• I accidentally deleted my firefox profile on OS X. My bookmarks, usernames, passwords - all gone. Used data recovery software...

  Data recovery software called Data Rescue 3. It seemed to have brought up many deleted files. I sifted through as many as I could. I have removed the ones that are .pdf, etc. and obviously not related to firefox.
  The folder & files I recovered:
  1) SQLite - I have many files called SQ00001.db, SQ00002.db, etc. I don't know if these are the user names or passwords or what? They are in a folder called SQLite. If I click on this nothing happens.
  2) There are files under misc called login-0001.keychain - Are these passwords, usernames?
  3) Web Bookmarks - Files called Bookmarks00001.plist. If I click on this it opens up in text edit and I can see some books randomly throughout.
  4) Mozilla - Only on file called bookmarks-00001.html
  5) There are many other files one in text ending in htm. and plist.
  6) Some other files called DS_Store-00001, etc.
  7) Also some files called embed.default.js.gz (under Archives folder and ZIP). I don't know what this is.
  I tried to recover the files... I don't know what to do with them. Obviously some files might be useless. If I could get the usernames saved that would mean everything to me. Literally. I have all my work on there... :(
  I could look up other files specifically, please just let me know. Running OS X 10.6.8.
  A lot of questions said use data recovery, I've read and read and am truly stuck. What do I do with these files? How do I get my username and profile info back. There is no file called .ini or 12345678.default. (example).
  Please, please, please help. Thank you.

  For passwords, look for 2 files key3.db and signons.sqlite
  For usernames saved in form fields, look for formhistory.sqlite
  Bookmarks are in places.sqlite
  For descriptions of each profile file, read:
  <br> [[Profiles - Where Firefox stores your bookmarks, passwords and other user data#w_what-information-is-stored-in-my-profile|What information is stored in my profile?]]