NT authentication : administration or programming solution ?
Yes, I know, there is already a lot of subjects about NT authentification in java
But I can't find a simple answer about my questions.
I have a web application on weblogic server 6.1
It's an intranet, and I must verify logins of users NT.
Here is my first question : can I simply configure this NT authentification in
weblogic administration console, or do I have to develop specific code in my JSP
Administration => I see there is in the console a node "configure a new NTRealm".
Is it the solution ? How can I configure NT users (not weblogic users) with it
Programmation => I see there is a few posibilities : JNDI, JAAS, jcom...
What is the best, the cleanest for simply checking nt logins ?
Or do I have to use the twice, configure administration weblogic AND program my
JSP with jcom or JAAS ?
There is a lot of possibilites, and I don't know what is the best.
And if I use JAAS or JCom I must add their .jar, I'm not sur it's very clean.
What the solution recommended by BEA ?
I'm a Java developer, not an expert in weblogic administration, so all help would
be great ! :)
PS :
about JAAS :
I have tested com.sun.security.auth.module.NTSystem, but I have this error "class
file has wrong version 48.0, should be 47.0", perhaps it makes compatibility problems
with weblogic server 6.1 ?
about jcom :
jcom is not in weblogic server 6.1, and I cannot find it to download
Does anybody know where I can find it (a true url), or send me the jar ?
Hello Yeshwan, think you for your response.
Ok, I have defined a NTRealm, wich inside the name of my Primary Domain, i.e.
the server which manages the NT accounts.
But it's the same problem, I don't see how to obtain NT login in my JSP (request.getRemoteUser()
is always empty)
I tried to define with it a Caching Realms and a Filerealm, but it didn't work.
What's your java code to read login NT in JSP with NTRealm ?
Do you finally use jcom ?
Think for your help
David
Yeshwant <[email protected]> wrote:
David,
You just have to provide the name of your Primary domain controller in
the NTtrealm
configuration pages. Once this is done all your applications deployed
on wls6.1 can use
the NT usernames and passwords.
once your provide the name of the Primary Domain Controller , weblogic
will internally
query it to get the user and group information
David Tysman wrote:
Yes, I know, there is already a lot of subjects about NT authentificationin java
But I can't find a simple answer about my questions.
I have a web application on weblogic server 6.1
It's an intranet, and I must verify logins of users NT.
Here is my first question : can I simply configure this NT authentificationin
weblogic administration console, or do I have to develop specific codein my JSP
Administration => I see there is in the console a node "configure anew NTRealm".
Is it the solution ? How can I configure NT users (not weblogic users)with it
Programmation => I see there is a few posibilities : JNDI, JAAS, jcom...
What is the best, the cleanest for simply checking nt logins ?
Or do I have to use the twice, configure administration weblogic ANDprogram my
JSP with jcom or JAAS ?
There is a lot of possibilites, and I don't know what is the best.
And if I use JAAS or JCom I must add their .jar, I'm not sur it's veryclean.
What the solution recommended by BEA ?
I'm a Java developer, not an expert in weblogic administration, soall help would
be great ! :)
PS :
about JAAS :
I have tested com.sun.security.auth.module.NTSystem, but I have thiserror "class
file has wrong version 48.0, should be 47.0", perhaps it makes compatibilityproblems
with weblogic server 6.1 ?
about jcom :
jcom is not in weblogic server 6.1, and I cannot find it to download
Does anybody know where I can find it (a true url), or send me thejar ?
Similar Messages
-
Windows 7 Running as Administrator & Allow Program to Make Changes Popup
Before someone tells me this question is posted elsewhere; I already know that. I've spent hours trying to figure this out. and have yet to find any answers that have helped.
The only way I can save presets is to run a program (let's say Photoshop) as Administrator (in Windows 7). If - I Run as Administrator - then - I get the UAC popup asking me if I want to allow Photoshop to make changes to my computer. I cannot tell you how annoying this is. I keep having to go back and forth between setting programs to Run as Administrator everytime I want to work with presets, and then I have to go back to Compatability and set the program to Not Run as Administrator, in order to stop getting that annoying UAC popup. I do not want to turn off my UAC! Perhaps the problem is in the location where I am storing my files. My files are in C:\myName rather than in C:\Users\myName. My Creative Cloud Programs were installed in C:\Program Files\Adobe (by default). myName is set as the Administrator Account in Windows.
Note: I can save the presets at other locations on my computer, just not in C:\Program Files\Adobe\Program Name\Presets\Gradients\(or whatever) which is where they need to be.
Please Advise.If I try to open Adobe by itself, without attaching it to a specific file, same thing- still got command.
But I can add this: Somehow awhile back I found the solution on line (if I recall, it was not in an Adobe forum). Kicking myself for not posting here. So I had it working, but then I recently had to reinstall the program and it went back to square one. However, I instructed the program to open with an previous version (Right click- properties - previous version) and I know can open again without getting that annoying command. Problem is I stll can't remember how I got it that way the first time. I was thinking it may have been tied in with making it compatible to an earlier version, but I just checked Properties again, and it says Windows 7, so that is not changing anything. I am sorry. I have searched and seached again to find that earlier solution, but now I can't find it! If anyone else can figure it out, please post to save the next person a bunch of time. I have spent hours on this already, searching, reading, tweaking. -
Linux/Unix administrator's programming language of choice
Greetings,
I finally got everything running to the point where i have 1-2 hours free time during work
So i was wondering which programming language i should learn with focus on linux server administration. (read below)
Some background: Most of my tasks atm include standartization and developing typical solutions for common business processes. I worked with MS AD enough to understand that it sucks (yes, honestly.. a time deviation of 1hour from the domain server preventing 70% of equipment from functioning) so my aim is to find (or develop) alternatives.
My "programming" background to this day involves only small tweaks with html and bash scripts (switching to reserve internet connection, basic server status scripts, backup, cleaning of old files etc.)
Hardware currently in use: Arch with drbd, kvm for virtualization and redundancy. CentOS - mailserver with Apache,postfix,mysql etc. FreeBSD as gateway cluster with BIND, NTP and stuff, also backup servers. And way too much microsoft running on the VMs.
Choosing a programming language i wanted to keep in mind following tasks:
1. Improving server monitoring script (which currently is really just a server pinging bash script that prints something on a webpage with apache)
- needs some way to check services beyond pinging the servers, f.e. telnet the mailserver on pop3, checking whether shared folders are mounted, printers are visible, checking the time on the AD server (hate this one )
- checking whether the backup is working (some way of analizing the logs and sending "ok" would be enough)
2. automatization of starting and stopping VM's in case of failure
- currently i have to assign primary and secondary drbd, change the autostart script on all nodes according to who is the new primary for the VM and then start the VM manually - which is annoying, especially if i forget to change even one line in one script and the whole MS servers start to hang because of an IP conflict.
3. Something to get rid of Acronis Enterprise Suite for backing up
- it hangs almost every time that someone forgot to close his damn xls file after work.
Therefore i worked out some guidelines for the language:
- crossplatform (MS, Linux and BSD servers in use)
- replacement for bash, should be as easy to implement on any linux and able to work with bash commands (or replace them without the need for much hassle)
- easy to implement with other languages and the web and maybe some common API (like the python script in O'reilly that steals the coffee bean prices from a webpage)
- able to create simple filters for analizing and reformatting huge chunks of texts
PS: i know there may be ready solutions, but i prefer to learn things by doing them myself
I'm looking forward to people sharing their experience in similar tasks,
RipI've actually had a hard time finding something that does exactly what I want (linux admin automation, and a "overview" of the general system status). Munin will give you graphs which is "ok", Nagios looks like its from the 90's and has better support for "paying customers", etc...
I'm wanting to build a standardized admining system, so I can actually have time to work on other things. I think it should be KISS, and modular (to keep it lightweight, and to do anything "extra" that someone might want). Webmin comes close, but I don't think it has a CLI. I've tried Puppet and I have problems maintaining Arch and Ubuntu (server), and I want something to fix that.
I've actually started this too, (in Python 2), https://github.com/Afterburn/hal. Its by far not complete, but I'm trying to adhear to what I've stated. Here is a pic http://imgur.com/MZls5. As of now it just logs stuff to a postgres db, and will email you if something is wrong (you have to tell it when it should email you, ie if free space in boot is less than %10).
Sorry if I've kinda skipped around (tired) but at the least I want a solid (lightweight) alerting system (mainly through email, but as I said I want it modular so people can receive updates via RSS if they choose). I'll sub to this thread and explain further when I get a chance. -
Functional and Technical Administration Roles in Solution Manager
Hello
A big company has been implementing new functionality in Solution Manager during the last couple of years, they started with System Monitoring and EWA, Maintenance Optimizar, then Project Implementation, now Service Desk and ChaRM. This is company has a wide open structure in IT and a discussion has been raised about who is the owner of soluton manager in IT.
In my experience I always propose two main roles one is Technical Administrator Role and the other is Functional Administrator role. The former is more basis oriented, in charge of the installation and update of stacks in Solman, basic-initial configuration and then working mainly in setting Solutions, RFCs, System Monitoring, EWA, SAP services, OSS connections, Diagnostic, E2E Root Cause Analysis and also support in ChaRM (in setting up the transport routes, security)
On the other hand, I support a role of SolMan Functional Administrator which deals with Implemenation side, ASAP methodologies, business process definition, integration with ARIS, setting up project standards, coaching Project Managers, ensuring good application information. Also in Service Desk and ChaRM, setting the process, customizing, implementing and controlling that things are running smooth in SolMan productive.
I would like to get from you your inputs and experiences regarding how to set-up those roles, whether there are clear lines to divide responsiblities or what kind of definitions should be made.
Many thanks
Esteban Hartzstein
Director
Tebyon ConsultingAs recommended by some colleagues I am also investigating Customer Center of Excelence as a reference to define roles and responsibilities, particularly in the concept of Application Lifecycle Management.
Any other input is welcome.
Regards
Esteban -
Free Java Authentication/Administration Tools
Hi all,
I thought it might be helpful to some of you if I shared my source code for iTunes U authentication. I also have included in the webapp a basic set of admin utilities with a showTree feature. The fun part of the showTree features is that I have written a digester that instantiates java objects of the xml nodes, so you can extend it to do any number of things (please honor the license agreement though!-)
There is a README.rtf that has the webapp instructions.
You can download the war file and all source from here:
http://uonline.utah.edu/temp/iTunesuFreeTools.jar
Hope this finds its way into "usefulness" somewhere. Enjoy!I've just installed this. (I had to also modify server.xml to include context before connection pooling would work. See below.)
Yeah, I am using virtual hosting, so your experience may differ. Thanks for the solution post!
I'm trying to get a better understanding of how I can use the framework to allow visitors to download content. Any help or documentation would be great..
You can use the [email protected]:itunesu.com:sites:yourschool.edu permission to allow unauthenticated users to download and stream content, of course, or you can publish a visitor login and password. There are 3 visitor profiles already listed in the visitor table; to download, edit, and shared. You can add the permissions to objects like this:
[email protected]:itunesu.com:sites:yourschool.edu with download access level.
[email protected]:itunesu.com:sites:yourschool.edu with edit access level.
[email protected]:itunesu.com:sites:yourschool.edu with shared access level.
So, to clarify, any_uid, when authenticated from the within the visitor table will be given the [email protected]:itunesu.com:sites:yourschool.edu credential. I added this for our staff that want to give seminars to professors where they can work on private test courses. But, you can use it for anything you choose. I also added the nonkdcauth table for the soul purpose of sharing the app with others. We use Kerberose to authenticate, and ldap to pull course credentials. Any uid listed in the nonkdcauth table will be given the [email protected]:itunesu.com:sites:yourschool.edu credential.
The credentials are built in the edu.utah.uonline.ViewBean. Refer to the source for adding or understanding the features. Sorry, not very well commented, but hopefully not too obscure.
Also, I'm a little confused on how to get this working with LDAP. I know our LDAP server and I know that we use 'cn' instead of 'uid'. I also know that we can traverse everything below our 'o=trinity'. Not sure how to fill out the resource file to make it work.
The hardest thing for me when I started writing java code to do lookups against LDAP was the connection stuff. This code can be found in the edu.utah.uonline.ViewBean as well (starting in line 156, initProperties(boolean useLDAP)). Each ldap server can be set up differently so you will need to know your structure to implement it. This code will also have to be changed to reflect your specific filter information (line 169 of same source file).
Just another couple thoughts about kdc and ldap. I originally added these features, like storing uids and passwords in tables to build our credentials so that I could publish the webapp for those who did not use KDC or LDAP. Hence, useKDC and useLDAP from the properties file was an after thought. If you choose to try to implement these features at your school, make sure you also check you kdc connection specific properties in the Resources.properties file and then change useKDC and useLDAP to "true" (also found in the Resources.properties file) and then check all connection and filtering code in both edu.utah.uonline.ViewBean and edu.utah.uonline.Login.
Nice work. I've been frustrated with this custom integration since we signed on to iTunes. Now I see light at the end of the tunnel.
Glad to help! -
Browser authentication from client program
How is it possible to authenticate a browser from a client program? For example, how does the small "mail" icon in yahoo messenger open up a browser, then authenticate it against yahoo.com and display the email Inbox? Do browsers provide some API through which this kind of authentication is possible? Any insights in this direction would be greatly appreciated.
ThanksKarthikeyan,
The error message says it all: feature is not supported.
For your information, your question has been asked (and answered) several times previously in this forum. Did you try searching the forum archives?
Personally, I just live with this limitation -- it's not critical for me. Have you tried the MetaLink Web site?
Good Luck,
Avi. -
Central system administration (CSA) in solution monitoring
Hello,
I want to configure my solution manager for central system administration (CSA) which is a service provided under solution monitoring of transaction dswp.
I couldnt find any documents for this configuration.
Could you please help me out..
Regards,
Gurudath PaiHi Gurudath,
If you have an s-user id, step-by-step tutor files with screenshots are available at
https://service.sap.com/rkt-solman > Solution Manager > Solution Manager 7 > Technology Consultant & System Administrator > System Monitoring, Administration
Before configuring CSA, you have to:
1. Perform basic settings for Solman (use wizard based approach)
2. Setup the system landscape
3. Create solution
4. Now you can configure CSA
Revert if you need clarifications
Prasad -
Screensharing authentication problem and weird solution
OK, I've been having the Screensharing authentication problem that crops up regularly on this forum. Accidentally I found a very weird solution. I want to know what's going on and to let others know of the solution.
Let's say my laptop account is called 'london' and I want to connect it to my tower account called 'paris' on the LAN. I browsed the network for the tower, click 'connect as' and in the dialog box I put in "Name: paris" and "Password: xxx". I click 'connect' and I am connected as the registered user 'paris' and I can browse all of the disks. File sharing is thus working normally.
Now I click the 'share screen...' button and I get another dialog box into which I once more type "Name: paris" and "Password: xxx". This yields an authentication failure message, which many users will be familiar with.
By accident instead of typing the name and password for the account on the distant machine, I typed into the dialog box the name and password of the local machine: ie. "Name: london" and "Password: yyy". Much to my amazement the screensharing works. What is going on?No, the username on london is london and on the machine paris it is paris. However, the passwords are different.
Just to be clear, I first connect to the remote machine's file sharing using the remote machine's username and password (ie. in the normal fashion). I then connect screensharing but give the local machine's username and password in the dialog box.
Before I made this discovery I had created a couple of fresh accounts on the remote machine. One was glitched, while the other functioned properly (ie. screensharing required the remote machine's username and password). The bizarre fix worked for my original account. I have not tested it on the new accounts for fear of screwing things up again. -
ITunes - not enough memory to run this program [Solution]
After upgrading to iTunes 7, if you install UNO - Unified GUI and use any option apart from 'Default Aqua' under the iTunes GUI choice you will get this error.
Note this does not make a difference if you have already modded the itunes GUI using UNO and upgrade, only if you run UNO after installing iTunes 7.
Just had this problem myself, took a couple of minutes to realise why it happened.
Solution: re run UNO revert to default Aqua for iTunes, and reinstall iTunes.in my case i have no UNO installed on my machine but i get this error when i tried to run itunes 7 for the first time since i upgraded
how could i get itunes to run in my machine, i have 512mb of ram and it's enough to run soem applications like flash, photoshop fireworks etc etc so why it's not enough for itunes?
si mi ingles es muy anemico aqui esta lo que trato de decir:
en mi caso no tengo uno instalado en mi maquina pero obtengo el mismo error cuando intento correr itunes 7 despues de haberlo instalado tengo 512mb de ram y me da el error de que no hay memoria sufucuente para ejecutar la aplicacion alguien tiene idea de por que es esto?
de antemano gracias
pd.
1,6Ghz pentuim 4 willamette "SSE2" en otra makina da le mismo error en tiger 10,4,6 pero las demas apicaciones corren sin problema alguno -
OS Authentication from Java Program
We are getting the below error while trying to get oracle connection using OS authentication.
from the unix shell, we are able to "sqlplus /" . ie., invoke a sqlplus session using / account
java.sql.SQLException: ORA-01004: default username feature not supported; logon denied
echo $TNS_ADMIN
/data/oracle/product/8.1.7.4/network/admin
We gave the below options
Option 1:
DriverManager.registerDriver(new oracle.jdbc.driver.OracleDriver());
conn = DriverManager.getConnection("jdbc:oracle:oci8:@database","","");
Option 2:
DriverManager.registerDriver(new oracle.jdbc.driver.OracleDriver());
conn = DriverManager.getConnection("jdbc:oracle:oci8:/@database");
However when substituted with actual user id and password the connection works
conn = DriverManager.getConnection("jdbc:oracle:oci8:@database", user , password);
The 8.1.7.4 oracle client is installed and am using classes12.jar of oracle8i version
Can you pls. helpKarthikeyan,
The error message says it all: feature is not supported.
For your information, your question has been asked (and answered) several times previously in this forum. Did you try searching the forum archives?
Personally, I just live with this limitation -- it's not critical for me. Have you tried the MetaLink Web site?
Good Luck,
Avi. -
SAP user authentication in ABAP program
We are building a custom application in SAP.
One of the functionality required is - Before printing a certificate ,we need to verify SAP user ID and password.
Is there any FM in SAP which I can use or any other way by which I can ask user to enter his user ID and password and then autheticate it against actual SAP credentials.Hi,
try using FM SUSR_CHECK_LOGON_DATA
with import parameters
AUTH_METHOD = 'P'
USERID = <userid>
PASSWORD= <password>
Roy -
Can't install app requiring Administrator Authentication
I'm attempting to install Didi and Ditto on my Mac Mini, and it reports it needs Administrator access, but never prompts me for the password (like most programs do). Even if I sign in as an Administrator, the program prompts me that it requires Admin access, but won't prompt me nor install.
On my iBook G4, I have done this with no issues.
How can you force authentication during an install with OS X?Are you getting any error messages? If so, what are they?
-
How to change user authentication program in windows 8.1
hello everyone,
i have developed a user authentication program through mouse gesture dynamics.
My program identifies user by its mouse gesture.
now , i want to use this authentication program when windows boots, and users would be authenticated by my program
(instead of windows default password authentication.)
can you please tell me how should i do this. how to use my program, where to place this in OS code. ?
thank you
raviFriz_ wrote:
I'm changing some stuff in the way of usernames and pictures right now, but I just can't figure out how to change my display name. I know I can't change my full name in skype, but I know I've changed my display name a few times before. Most of the threads I found on this were a few years old.
https://support.skype.com/en/faq/FA110/can-i-change-my-skype-name-or-display-name-in-skype-for-windo... -
Finding caller program in a RFC call
Hi experts,
We are having lots of CALL_FUNCTION_NOT_FOUND short dumps in one of our systems. The errors are caused because other systems call a function that does not exist, so the dumps are created.
What we would like to know is what program is doing these calls, since all we can see in the short dump is the caller system and the function it is trying to access, but not the exact program where the call is performed so we can fix the code.
Thanks in advance for your support.Sorry if this is too much of a wall of text, I can't find an "attach file" type feature.
ABAP runtime errors CALL_FUNCTION_NOT_FOUND
Occurred on 11.12.2006 at 10:04:34
Function module "Y_EF_DETERMINE_PICTURE" not found.
What happened?
The function module "Y_EF_DETERMINE_PICTURE" was called, but cannot be
found in the Function Library.
The current ABAP/4 program "SAPMSSY1 " had to be terminated because
one of the statements could not be executed.
This is probably due to an error in the ABAP/4 program.
What can you do?
Note the actions and input that caused the error.
Inform your SAP system administrator.
You can print out this message by choosing "Print". Transaction ST22
allows you to display and manage termination messages, including keeping
them beyond their normal deletion date.
Error analysis
The program "SAPMSSY1 " contains a CALL FUNCTION statement. The name
of the function module to be called is "Y_EF_DETERMINE_PICTURE".
No function module exists with the name "Y_EF_DETERMINE_PICTURE".
All function modules are stored in the Function Builder (SE37).
Possible reasons:
a) Wrong name specified. Particular attention should be paid
to upper/lower case and underscores ("_").
or
b) Transport error
c) In the case of an enqueue/dequeue module, the lock object
may not have been activated (ABAP Dictionary).
How to correct the error
Check the last transports to the R/3 System.
Is the program "SAPMSSY1 " currently being changed?
If an enqueue/dequeue module is involved, is the activation
of the lock object missing in the ABAP/4 Dictionary?
If the error occurred in a non-modified SAP program, you may be
able to find a solution in the SAP note system.
If you have access to the note system yourself, use the following
search criteria:
"CALL_FUNCTION_NOT_FOUND"
"SAPMSSY1 " or "SAPMSSY1 "
"REMOTE_FUNCTION_CALL"
Function modules with names similar to "Y_EF_DETERMINE_PICTURE":
Y_EF_USEX_DETERMINE_TAX
Y_GF1_DETERMINE_RECTYPE
Y_GK_DETERMINE_PRCTR
Y_EF_USEX_PICTURE_SUBMIT
Y_EF_USEX_SHOW_PICTURE
Y_EF_RFC_PICTURE_POST
Y_GF1_DETERMINE_SBU
Y_GF_DETERMINE_VERSION
Y_GF_DETERMINE_DATE_PREVMON
Y_GF1_DETERMINE_CURRENT_PERIOD
If you cannot solve the problem yourself, please send the
following documents to SAP:
1. A hard copy print describing the problem.
To obtain this, select the "Print" function on the current screen.
2. A suitable hardcopy prinout of the system log.
To obtain this, call the system log with Transaction SM21
and select the "Print" function to print out the relevant
part.
3. If the programs are your own programs or modified SAP programs,
supply the source code.
To do this, you can either use the "PRINT" command in the editor or
print the programs using the report RSINCL00.
4. Details regarding the conditions under which the error occurred
or which actions and input led to the error.
System environment
SAP Release.............. "46C"
Application server....... "sapgp1s"
Network address.......... "52.99.71.21"
Operating system......... "AIX"
Release.................. "5.3"
Hardware type............ "00C4449E4C00"
Database server.......... "sapgp1s"
Database type............ "DB6"
Database name............ "GP1"
Database owner........... "SAPR3"
Character set............ "en_US.ISO8859-1"
SAP kernel............... "46D"
Created on............... "Aug 26 2005 22:40:31"
Created in............... "AIX 1 5 0056AA8A4C00"
Database version......... "DB6_71 "
Patch level.............. "2113"
Patch text............... " "
Supported environment....
Database................. "DB6 06., DB6 07., DB6 08.*"
SAP database version..... "46D"
Operating system......... "AIX 1 4, AIX 2 4, AIX 3 4, AIX 1 5, AIX 2 5, AIX 3
5, , System build information:, -
, LCHN :
User, transaction...
Client.............. 000
User................ "SAPSYS"
Language............ "E"
Transaction......... " "
Program. ........... "SAPMSSY1 "
Screen. ............ "SAPMSSY1 3004"
Line of screen...... 2
Information about Remote Function Call (RFC) Caller:
System.............. "WP1 "
Database release.... "46C "
Kernel release. .... "46D "
Connection type. ... "3 " (2 = R/2, 3 = R/3, E = Extern, R = Reg.
Call type........... "S-" (S = synch., a/A = asynch., T = transactional
Client.............. 510
User................ "PC1706 "
Transaction......... "/COCKPIT/1 "
Function module..... "Y_EF_DETERMINE_PICTURE"
Call destination.... "GP1590"
Source server....... "wsdux44_WP1_10"
Source IP address... "52.99.71.124"
Additional information about RFC logon:
Trusted relationship " "
Logon return code... " "
Trusted return code. " "
Note: In Releases earlier than 4.0, some of the above information about
RFC calls may not be available.
Information on where termination occurred
The termination occurred in the ABAP/4 program "SAPMSSY1 " in
"REMOTE_FUNCTION_CALL".
The main program was "SAPMSSY1 ".
The termination occurred in line 67
of the source code of program "SAPMSSY1 " (when calling the editor 670).
Source code extract
000370 ENDMODULE.
000380
000390 MODULE %_RFCDIA_CALL OUTPUT.
000400 "Do not display screen !
000410 CALL 'DY_INVISIBLE_SCREEN'.
000420 PERFORM REMOTE_FUNCTION_DIACALL.
000430 ENDMODULE.
000440
000450 MODULE %_CPIC_START.
000460 IF SY-XPROG(4) = '%RFC'.
000470 PERFORM REMOTE_FUNCTION_CALL USING RFCTYPE_EXTERNAL_CPIC.
000480 ELSE.
000490 CALL 'APPC_HD' ID 'HEADER' FIELD HEADER ID 'CONVID' FIELD CONVID.
000500 PERFORM CPIC_CALL USING CONVID.
000510 ENDIF.
000520 ENDMODULE.
000530
000540
000550 FORM CPIC_CALL USING CONVID.
000560 COMMUNICATION SEND ID CONVID BUFFER HEADER.
000570 IF SY-SUBRC EQ 0.
000580 PERFORM (SY-XFORM) IN PROGRAM (SY-XPROG).
000590 ELSE.
000600 MESSAGE A800.
000610 ENDIF.
000620 ENDFORM.
000630
000640
000650 FORM REMOTE_FUNCTION_CALL USING VALUE(TYPE).
000660 DO.
CALL 'RfcImport' ID 'Type' FIELD TYPE.
000680 PERFORM (SY-XFORM) IN PROGRAM (SY-XPROG).
000690 RSYN >SCONT SYSC 00011111 0.
000700 ENDDO.
000710 ENDFORM.
000720
000730 FORM REMOTE_FUNCTION_DIASTART.
000740 DO.
000750 CALL 'RfcImport' ID 'Type' FIELD RFCTYPE_RFCDIA.
000760 PERFORM (SY-XFORM) IN PROGRAM (SY-XPROG).
000770 "Parking position for next request
000780 RSYN >SCONT SYSC 00011111 10.
000790 "ALternativ : Free mode
000800 "COMMIT WORK.
000810 "SYSTEM-CALL FREE MODE 0.
000820 ENDDO.
000830 ENDFORM.
000840
000850 FORM REMOTE_FUNCTION_DIACALL.
000860 SY-XCODE = '%_@no@'.
Contents of system fields
SY field contents..................... SY field contents.....................
SY-SUBRC 0 SY-INDEX 1
SY-TABIX 0 SY-DBCNT 0
SY-FDPOS 0 SY-LSIND 0
SY-PAGNO 0 SY-LINNO 1
SY-COLNO 1
Chosen variables
Name.......................... Contents.1........2........3....+....4
SY-XPROG
2222222222222222222222222222222222222222
0000000000000000000000000000000000000000
SY-XFORM Y_EF_DETERMINE_PICTURE
554454454544445544555422222222
9F56F45452D9E5F093452500000000
%_SPACE
0
0
SY-MSGID
22222222222222222222
00000000000000000000
EBC_TO_ASC-X05 P&QéRêSëTèUíVîWïXìY~ZÜ[$*])^;_^
525E5E5E5E5E5E5E5E575D5252525355
06192A3B485D6E7F8C9EACB4CAD9EBFE
RFCTYPE_QUEUE 6
0000
0006
%_PRINT 000
2222333222222222222222222222222222222222
0000000000000000000000000000000000000000
... + 40
2222222222222222222222222222222222222222
0000000000000000000000000000000000000000
... + 80 0 ########
2222222222320000000022222222222222222222
0000000000000000000000000000000000000000
... + 120
22222222
0000000
SY-MSGNO 000
333
000
EBC_TO_ASC-X04 @ A BâC{DàEáFãGåHçIñJÄK.L<M(N+O!
424A4E474E4E4E4E4E4F4C4243424242
0010223B405163758791A4BECCD8EBF1
SY-MSGV1
2222222222222222222222222222222222222222
0000000000000000000000000000000000000000
... + 40
2222222222
0000000000
SY-MSGV2
2222222222222222222222222222222222222222
0000000000000000000000000000000000000000
... + 40
2222222222
0000000000
SY-MSGV3
2222222222222222222222222222222222222222
0000000000000000000000000000000000000000
... + 40
2222222222
0000000000
SY-MSGV4
2222222222222222222222222222222222222222
0000000000000000000000000000000000000000
... + 40
2222222222
0000000000
%_?NOT_ASSIGNED?
2222
0000
SPACE
2
0
SY-REPID SAPMSSY1
5454555322222222222222222222222222222222
310D339100000000000000000000000000000000
TYPE 3
0000
0003
SYST ########################################
0000000000000000000000000000000000000000
0001000000000000000000000000000000000000
... + 40 ########################################
0000000000000000000000000000000000000000
0000000000010000000100000000000000000000
... + 80 ########################################
0000000000000000000000000000000000000000
0000000000000000000000000000000000000000
... + 120 #######################################T
00000000
0000000
Active calls / events
No.... Type........ Name..........................
Programm
Include Line
1 FORM REMOTE_FUNCTION_CALL
SAPMSSY1
SAPMSSY1 67
2 MODULE (PBO) %_RFC_START
SAPMSSY1
SAPMSSY1 31
Internal notes
The termination occurred in the function "link_rfdir" of the SAP
Basis System, specifically in line 165 of the module
"//bas/46D/src/krn/runt/ablink.c#3".
The internal operation just processed is "CALY".
The internal session was started at 20061211100434.
Active calls in SAP kernel
=> 64 bit R/3 Kernel
=> 64 bit AIX Kernel
=> Heap limit = unlimited
=> Stack limit = unlimited
=> Core limit = 51200000
=> File size limit = unlimited
=> Heap address = 0x118dba360
=> Stack address = 0xfffffffffff5d50
=> Stack low = 0xfffffffffff5d50
=> Stack high = 0xffffffffffff600
=> Stack Trace:
AixStack() at 0x100059364
CTrcStack2() at 0x10005945c
rabax_CStackSave() at 0x10003959c
ab_rabax() at 0x1000425b4
link_rfdir() at 0x100540418
ab_link() at 0x100540a18
ab_rfcimport() at 0x1005f49f0
ab_jcaly() at 0x100024560
ab_extri() at 0x100487474
ab_xevent() at 0x10059c804
ab_dstep() at 0x10043bd98
dynpmcal() at 0x100942f94
dynppbo0() at 0x100941320
dynprctl() at 0x100948f40
dynpen00() at 0x1008f7818
Thdynpen00() at 0x1001429f4
TskhLoop() at 0x100146368
tskhstart() at 0x1001576ac
DpMain() at 0x100e06e38
main() at 0x100de72f4
List of ABAP programs affected
Type
Program
Gen. date time
LoadSize
Prg
SAPMSSY1
04.01.2000 19:06:59
20480
List of internal tables
No dump information available
Directory of application tables (contents)
Program
Name.......... Contents.1........2........3....+....
Directory of data areas (administration information)
Program
No.. Name.......... Lgth Ofsg Type Next Gen date Gen time
SYST
L not assigned -15 0 IN
M /%_LISTTABLE -14 1 CO 0
T global stack -13 1 2 GL 0
SAPMSSY1
A global data 0 3 DA
L constant dat 1 4 LI .0 .0216
L constant dat 2 5 LI SSY .0 .018B
L not assigned 3 6 IN
L SYST 4 7 TA 0
L SY 5 8 TA
L RSJOBINFO 6 9 TA
M /%_SYS%% 7 0 CO
M field symbol 8 1 FS
L TCPIC 9 2 TA
M field symbol 10 3 FS
L text pool 11 4 TP
Directory of data areas (contents)
Program
No.. Name.......... Contents..1........2........3....+....
SYST
L not assigned 0
L text pool 102 |SAPMSSY1
ABAP control blocks CONT
Include Line source code
Index Name F1 Co Par01 Par2. Par3. Par4. Tabl
SAPMSSY1 60 MESSAGE A800.
215 CLEA 00 84
216 CLEA 00 85
217 MESS 00 27
SAPMSSY1 62 ENDFORM.
218 ENDF 00
219 -
223 -
SAPMSSY1 65 FORM REMOTE_FUNCTION_CALL USIN
227 PERP 00 1
228 PERP 02
SAPMSSY1 66 DO.
229 WHIL 00 2
233 WHIL 00 3
237 BRAN 05 Branch to 251
SAPMSSY1 67 CALL 'RfcImport' ID 'Type' FIE
238 CALY 00 3 86 70 71 71
>>>>> CALY 02 87 P0
SAPMSSY1 68 PERFORM (SY-XFORM) IN PROGRAM
246 xper 02 12 13
248 PERP 80
SAPMSSY1 69 RSYN >SCONT SYSC 00011111 0.
249 SYSC 1F
SAPMSSY1 70 ENDDO.
250 BRAX 00 Branch to 233
251 WHIL 00 4
SAPMSSY1 71 ENDFORM.
255 ENDF 00
256 -
End of runtime analysis -
NTS Authentication and External Users
Hi,
I am looking for advice on the following issue:
Oracle:9.2.0.6
OS:Windows 2000
This is a data warehouse and the data is loaded by batch scripts. To ensure that the batch scripts haven't got usernames and passwords hard coded then we used externally identified users. However to get this to work the parameter Autentication_Services has to be set to NTS. Therefore anyone who is in the ORA_DBA group can log into the database without a password, also anyone who is an administrator of the machine could potentially add themselves to the ORA_DBA group and then log into the database without a password.
Is there any way to use external autentication but then also force sysdba connections to specify a password?
Is it possible to just remove the ORA_DBA group without any impact?
Any clarification then please let me know
Thanks for your time and help
Regards
SebMore details (architecture etc) would be needed to suggest any kind of solution.
Also content served is static or dynamic ? If content is dynamic then backend component (app) would expect identity to be propagated to it. This could be potential issue if internal user wont authenticate.
If it is static content then you can make use of rewrite rules / rewrite conditions to filter ip address (internal users should have some ip address range). Although you may have to do multiple url rewrite at apache level to by pass authentication.
One another solution is to implement zero sign on experience via WNA for internal users. WNA would take advantage of user's login to desktop. Hope this helps.
Maybe you are looking for
-
My ipod is somehow synced to another library, because I plugged the charger to a wall. How can I sync my ipod shuffle back to the original Itunes library without erasing my current data in the Ipod shuffle?
-
Need API for Credit Memo creation-R12
Hi All, I am working on R12 Implementation process. I have a requirement for creating the "Credit Memo" using API. Could you please any one provide the API for Credit Memo creation process. Thanks, LSP
-
Sound wont work on my p-100. I looked in the basic information. It said sound = none. But it did work before. I reloaded the drivers. It worked for a day or two. Now stopped working again. It fails the diag. test from toshiba also. What now?? Solve
-
Mutiprovider not visible in RSSM (Table RSSTOBJDIR)
Hi guys, we are facing out a problem with Custom Authorization Object. We defined an Object (in RSSM) that works right with InfoCubes, ODSs ... Than we decided to build a MultiProvider and discovered that authorization check insn't carried out. So we
-
TNS-12518: listener could not hand off client connection
We've recently upgraded to Oracle 9.2 (on Solaris 9) and are having intermittent problems. After being up several hours we approach around 250-300 active connections to the database. Then intermintantly all clients receive TNS-12518 errors or Error 0