OC4J, JavaSSO and standard Linux authentication

Similar Messages

• ISE 802.1x EAP-TLS machine and smart card authentication

  I suspect I know the answer to this, but thought that I would throw it out there anway...
  With Cisco ISE 1.2 is it possible to enable 802.1x machine AND user smart card  authentication simultaneously for wired/wireless clients (specifically  Windows 7/8, but Linux or OSX would also be good).  I can find plenty of  information regarding 802.1x machine authentication (EAP-TLS) and user  password authentication (PEAP), but none about dual EAP-TLS  authentication using certificates for machines and users at the same time.  I think I can figure out how to configure such a policy in ISE, but options seem to be lacking on the client end.  For example, the Windows 7 supplicant seems only able to present either a machine or user smart card certificate, not one then the other.  Plus, I am not sure how the client would know which certificate to present, or if the type can be specified from the authenticator.

  Hope this video link will help you
  http://www.labminutes.com/sec0045_ise_1_1_wired_dot1x_machine_auth_eap-tls

• Custom Client-Side Video Codec for Standard Linux Flash Player

  I'm new to Flash development, so please excuse my naivete. I'd like to have the standard Linux Adobe Flash player use an experimental client-side H.264 codec I am working on when playing FLV media (even if embedded within an SWF file) instead of the standard one bundled with the player. Is there any way to accomplish that?
  Thanks,
  Brian McGann

  The problem, at least in my case, was QtCurve's opacity. If I have opacity set to less than 100%, flash would not display for sites like Youtube and Vimeo, but worked elsewhere.
  The solution for me was to go into qtcurve's settings, and put npviewer.bin in the application exceptions section for window and menu opacity. Doing that, I was able to keep my transparent menus, and also use flash everywhere.
  You can find out what the application name is by launching your browser of choice in a terminal with qtcurve debug turned on, like so:
  QTCURVE_DEBUG=1 firefox
  If you watch through the lines that start with "QtCurve" you'll see "Application name". Look for the one that shows up when you try to load a video. In my case it was npviewer.bin. In yours, it might be nspluginviewer or something else. If you add an exception for that specific application, you'll fix your problem without having to compromise on your theme.

• DirSync and Multi-Factor Authentication Server

  Can DirSync and Multi-Factor Authentication Server be installed on the same server?
  If so would there be any security issues?

  Hi,
  Thanks for posting here!
  There are no known caveats with it but its not a combination we recommend for or against.
  That said, our standard guidance is to put different roles on different machines if resources are available.
  If you are running into any issues, please let us know.
  Hope this helps!
  Regards,
  Sadiqh
  If a post answers your question, please click Mark As Answer on that post and Vote as Helpful.

• Potential JavaSSO and Custom Login Module Bugs In Clustered Environment

  We've been working with the custom login modules and JavaSSO and have found issues with deployment on 10.1.3.2 in a clustered environment. Deployment on a single server looks like it is working properly.
  I'm wondering whether any one here has been using CLM with JavaSSO and have deployed in a clustered application server environment? I've posted in the past regarding this in the OC4J side, but never got a response, so I thought I'd try the experts here...
  Here are some TARS that we've logged. Any help from the community would be appreciated.
  6320304.994 JAVASSO JSSOUTIL.LOGOUT FUNCTION REDIRECT NOT WORKING ON CLUSTER
  6365407.993 SETTING <distributable/> TAG IN WEB.XML CRASHES APPLICATION
  6338664.992 JAVASSO LOGIN PAGE DOES NOT LOGIN USER BUT RELOADS LOGIN PAGE
  Thanks!
  Kenton

  Hi Kenton,
  Specifically, what were the issues that you ran into when clustering JavaSSO? Was it a problem only when combined with the Custom LM?
  As long as the same CLM is configured for your app (I assume this is also clustered) and JavaSSO, that should be sufficient. Obviously, CLM need to be configured against the same user repository.
  If the apps were on different hosts, did you remember to set the property "custom.sso.cookie.domain" to set the right domain name in the cookie? Otherwise, you will keep getting redirected to the login page.
  http://download.oracle.com/docs/cd/B32110_01/web.1013/b28957/javasso.htm#BABJCGCB
  -skt

• Dual boot Windows 7 (64) and Arch Linux (64) problems

  Hello:
  I am new to Arch Linux and just finished installing the 64bit on my laptop. It had a prebuilt Windows 7 (64) installed which I kept but split the hdd from 160Gb to 80Gb and 80Gb. I installed Arch there and set 4 partitions, all of them as Logical - a 64 MB ext2 /boot partition; a 512 MB swap partition; a 15 GB root partition; and the rest as my /home partition. My partitions look like this:
  Disk Drive: /dev/sda
  Size: 160041885696 bytes, 160.0 GB
  Heads: 255 Sectors per Track: 63 Cylinders: 19457
  Name Flags Part Type FS Type [Label] Size (MB)
  sda1 Primary Unknown (27) 12889.02
  sda2 Boot Primary NTFS 106.93
  sda3 Primary NTFS [] 73915.11*
  sda5 Logical Linux ext2 65.81*
  sda6 Logical Linux 509.97*
  sda7 Logical Linux ext2 15002.92*
  sda8 Logical Linux ext2 57549.55*
  The install was succesful(this was running from the core install cd) and I installed GRUB to my /boot but when I restarted it loaded Windows 7. I have used Knoppix USB disc to boot and see my Arch Linux install files and edited the /boot/gur/menu.lst file.
  In Windows I installed EasyBCD 1.7.2 and tried to get NeoGrub bootloader working as a dual boot. I tried getting rid of the boot flag for Windows with cfdisk and setting it to my (Logical) sda5. That did not work. So far the only way I have booted into my Arch Linux install has been by going to the Live CD, choosing "Boot from Existing Linux Install" and editing the command files there.
  root (hd0,4)
  kernel /vmlinuz26 root=/dev/sda3 ro
  initrd /kernel26.img
  My goal is to get a dual boot working for Windows 7 and Arch Linux 64 and continue installing the Xorg and KDE to Arch. I just don't know what the problem is here. I don't mind reinstalling Arch if something went wrong, but I would like to keep my Windows running in order and add Arch on.
  Any help would be greatly appreciated.

  I ran the LiveCD and chose "Install to MBR hd0". I ended up with this:
  setup hd(0,1)
  Checking if "/boot/grub/stage1" exists.....yes
  Checking if "/boot/grub/iso9660_stage1_5" exists.....yes
  Running "embed /boot/grub/iso9660_stage1_5 (hd0,1)".....failed(this is not fatal)
  Running "embed /boot/grub/iso9660_stage1_5 (hd16)".....failed(this is not fatal)
  Running "install /boot/grub/stage1 d (hd0,1) /boot/grub/stage2 p (hd0,1) boot/grub/menu.lst".....failed
  Error 31: File is not sector aligned
  My entry for Windows into the menu.lst looks like this:
  # (0) Arch Linux x64
  title Arch Linux x64
  root (hd0,4)
  kernel /vmlinuz26 root=/dev/disk/by-uuid/3841273c-d91e-41d6-9dbf-716a15d03a01 ro
  initrd /kernel26.img
  # (1) Arch Linux x64
  title Arch Linux x64 Fallback
  root (hd0,4)
  kernel /vmlinuz26 root=/dev/disk/by-uuid/3841273c-d91e-41d6-9dbf-716a15d03a01 ro
  initrd /kernel26-fallback.img
  # (2) Windows 7
  title Windows 7
  rootnoverify (hd0,0)
  makeactive
  chainloader +1

• Open and Network-EAP authentication - difference in security?

  As far as security goes, and assuming Radius authentication wil actually authenticate and allow users access to the wireless network (or not), it there any difference (once again, as far as security goes), between Open Authentication and Network-EAP as described below?
  In any EAP/802.1x-based authentication method, you may question what the differences are between Network-EAP and Open authentication with EAP. These items refer to values in the Authentication Algorithm field in the headers of management and association packets. Most manufacturers of wireless clients set this field at the value 0 (Open authentication), and then signal their desire to do EAP authentication later in the association process. Cisco sets the value differently, from the start of association with the Network EAP flag.

  1. Join process - comparable to connecting a cable in the wired network world. Usually "OPEN".2. Authentication - this verifies the client is who they claim they are because they possess a certificate (EAP-TLS), know the password or a PSK.3. Encryption with TKIP or AES - this is about protecting data as it is transmitted through the air AFTER authentication.
  You are correct.
  What confuses me when attempting to configure the Aironet I'm working with is the difference in terminology with the familiar choices I had in Linksys access points, something like this:- WEP- WPA- WPA-Enterprise- WPA2- WPA2-EnterpriseI thought WPA-Enterprise has to do with Radius and indeed I was able to create a test network in which a Windows XP laptop could connect via a Linksys access point, authenticating with EAP-TLS, with WPA-Enterprise selected on the AP. The Windows 2008 server was both a certificate authority, a radius (NPS) server and a domain controller.With the Aironet, I'm not sure what the equivalent choices should be, because, if you look at the link in my last post, there is a larger selection: WEP 40 bit, WEP 128 bit, TKIP, AES, combinations of what precedes and no reference to WPA or WPA2. I'm guessing TKIP = WPA and AES = WPA2.And while I can select "EAP" in the Express Security Setup tab, I cannot see where I would opt for EAP-TLS rather than PEAP or EAP-TTLS and so forth.I'm going to take a look at your blog now and see if that doesn't enlighten me further.
  You are on track my friend keep the thinking going .... you are very close!
  Some more foundation for you ...
  WPA   -  Is PSK with TKIP
  WPA2 -  Is PSK with AES
  WPA Enterprsie -  EAP- ??? with TKIP
  WAP2 Enterprsie - EAP - ??? with AES
  ??? = Your selected EAP type
  Now, why dont you have to configure EAP type on the AP? Great question, lets break this down.
  1. The AP or WLC for that matter doesnt care what EAP type you use . Why you ask?
  When you configure 802.1X, there are 2 virtual ports . These are virtual and you do nothing to configure these. Once you connect to an AP and EAP starts, the ap BLOCKS ALL TRAFFIC except for EAPOL  traffic. This is the ONLY traffic allowed past the until the AP / WLC receives a RADIUS SUCCESS. Once the AP/WLC sees this radius success it then switches virtually over to the controlled port and allows ALL your traffic to pass.
  2. With that being said, your client is only passing traffic through the ap and wlc. The ap / wlc doesnt care what EAP you are using. Your client is talking directly to the radius server at that point. The AP/WLC at this point is only a pass through, nothing more.
  Does that help ?
  "Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin

• I'm looking for some help connecting linksys IP Cameras to my home network to monitor my property when I'm travelling. I used to do this with linksys WAPS, but since I've discarded all my old linksys networking and standardized on airport, I can't get the

  I'm looking for some help connecting linksys IP Cameras to my home network to monitor my property when I'm travelling.  I used to do this with linksys WAPS, but since I've discarded all my old linksys networking and standardized on airport, I can't get these things working.  I know that I have to identify my camera through the DHCP table and set up port forwarding and there is the problem. 
  My network consists of 4  base stations set up in a roaming network - same network name and passwords.  I need to do it this way so I don't have to switch network when I move from one side of the house to the other, go to the cabana, or my shop in the barn.  The network works pretty well since I went to a roaming set up.  Good performance, yata, yata, yata.
  However, the roaming network requires the AEBS's to be set up in bridge mode, rather than sharing an ip address.  When the AEBS is set to  bridge mode, you don't see a DCHP table or have the ability to identify your IP Cam through the AEBS - and hence, no port forwarding. 
  I am able to identify and set up my Linksys IP Cam by locating the ip address on my FIOS router, even though, it's plugged into an AEBS.  I set it up, see the video, remove the ethernet cable from the IP Cam, restart - and I can't get to it from an AEBS.  In researching this, it appears, I should be setting up the AEBS to "share an IP Address", going to the DHCP table and identifying the camera's IP address and setting up port forwarding.  However, you don't see any of the DHCP or port forwarding options in Airport Network Utility when configuring in bridge mode. 
  I'm hoping I'm missing something here and that the solution isn't to set it up at the FIOS router level, but I'm beginning to think that's my only hope.  What concerns me there is that I should be able to see the IP cam on the network without port forwarding since I'm not coming from outside, and I can't even do this unless it's connected hard wire.
  I'd appreciate any insight into this that anyone might have.  I've hit the wall with what I know.
  Thanks.

  In a roaming network, your "main" router is the device that would require port mapping/forwarding to be configured in order to access the IP camera from the Internet. This router is also the one that would be provide the private IP address for the camera which you will want to be a static one.
  So as you described your network, the IP cameras should be getting an IP address or you assigned it a static one and this is the address that you would enter in the Private IP address (or equivalent depending on the router used) field when setting up port mapping.
  If you are not able to access this camera from the local network, then this should be troubleshot first.

• I would like to know how i can create a bell graph with out using sub VIs, the data that i created consists in 500 readings with values of 0 to 100, i calculated the mean value and standard diviation. I hope some one can help me

  I would like to know how i can create a bell graph with out using sub VIs, the data that i created consists in 500 readings with values of 0 to 100, i calculated the mean value and standard diviation. I hope some one can help me

  Here's a quick example I threw together that generates a sort-of-bell-curve shaped data distribution, then performs the binning and plotting.
  -Kevin P.
  Message Edited by Kevin Price on 12-01-2006 02:42 PM
  Attachments:
  Binning example.vi ‏51 KB
  Binning example.png ‏12 KB

• Wiping WinXP and installing Linux

  Hello,
  I just joined today. I have a question about how I should go about updating certain things in my R51.
  I greatly favor Linux over Windows-- I use the Linux distro MEPIS 8.5 in one desktop tower, and the Linux distro sidux in another desktop tower. I just bought an R51 (type 2895-AU3) Thinkpad a few days ago- this is my first laptop. While I wasn't given any OS disc(s), it came loaded with WinXP. Shortly after getting home with the R51, I looked up what updates are available for it from Lenovo. For WinXP, there are a number of them but when I changed the OS option to Linux, only 3 turned up, as I recall, for the HDD and for the CD-RW/DVD. I'm wondering if, while I still have WinXP installed, I should update the BIOS and various other things for WinXP and then wipe the WindowsXP and install MEPIS.
  When I ran my MEPIS live CD in the R51 (and a Linux live CD doesn't install Linux, yet), I noticed that the boot info said the BIOS was outdated (and maybe it said it needs updating?) The BIOS is currently version 1.21 (1VET63WW) and is dated 21 Feb. 2005.
  Are there so many Lenovo-supplied updates for WinXP because that OS needs them in order for that OS to be optimized for use today, while so few updates for Linux because things are basically OK for Linux (except for the three I found in my seach)?
  So I'm asking:  Should I first do the Lenovo updates (BIOS, etc.) for WinXP, then wipe the WinXP and install MEPIS, doing later the Linux updates from Lenovo?
  [A short while ago I read about some bad update bug offered in a Lenovo BIOS update for some unspecified ThinkPad. I of course want to avoid anything that makes my laptop unuseable.]
  Thanks

  If I'm not too late, Just install Ubuntu. Not sure if it's the only one or not, But it can be installed inside windows like an program. When it boots you will have the option to choose windows or ubuntu. Best way to install it is to load the iso with any image loaders (poweriso, magiciso, deamontools) It will install faster than a burned CD. Also disconnect from the internet before install. Or it will install from the internet which will be over 30mins long. Ubuntu is very easy to use.
  IT Specialist and Consultant
  Lenovo Tablet Evangelist
  Current Machines: IdeaCentre A300, ThinkPad Tablet, IdeaPad U410, and Yoga 3 Pro Touch
  Deutsche Community   Comunidad en Español
  Lenovo - the latest in DOtabs, DOpads, DOcentre's, DOstations and DOservers!

• Sapscript and Standard Text - Polish Characters not printing

  Hi,
  I have created an English Sapscript and translated it to Polish via transaction SE76.
  Changing my PC Region and Language settings to Polish allowed me to enter Polish Characters into Hardcoded text in the Sapscript and Standard Text via s010.
  I have two problems:
  1) With my PC Region and Language settings set to Polish, when I create my sapscript output some of the polish characters that I have entered via SE76 and SO10 do not appear and are replaced by others e.g.
  ę is dispalyed as ê
  ć is displayed as æ
  ń is displazed as #
  2) I have a business requirement to be in England Logged with PC Region and Language set to English but to print a sapscript output in Polish. Is this possible.
  We are currently on non unicode SAP system.
  Please can anyone advise.
  Regards

  Hello,
  SAP discourages mixed code page or MDMP systems and with good reason. If there is any possibility of you upgrading to a Unicode system in the near future you should try to wait for it. Supporting multiple languages in Unicode is easy, in MDMP it can be quite tricky. And MDMP makes the move to Unicode more difficult.
  That said, your BASIS team can enable Polish and you can print in Polish while your PC is set for English. The SAPScript/Form must be in Polish or using an INCLUDE that is LANGUAGE 'PL' to let SAP know which code page to use when printing.
  Seriously, look at moving to Unicode, you need to do it eventually anyways.
  Michael

• Adobe AIR on RedHat and SUSE Linux

  Hi,
  I am trying to install AIR 2.5 runtime on RedHat Linux and SUSE Linux . When I try to do it on RedHat, I get the following error:
  error while loading shared libraries: libpangocairo-1.0.so.0: cannot open shared object file: No such file or directory
  Can anyone help me fix it. I assume I will get something on the same lines on SUSE as well? Also, has anyone successfully done what I am trying to do? I can see that Adobe AIR page doesn't mention RHEL and SUSE (but openSUSE) supported, but still.
  Thank you!
  -Amit

  The only version that works on RHEL 5 is 2.0.4. Check this thread for more details:
  http://www.cherpec.com/2010/12/adobe-air-2-5-1-glibc_2-7-error/
  It works as I tested on RHEL 5. But to ship AIR heelp to customers, this is for sure not a solution.

• Choice between UPK in-application help and standard EBS help

  Hi,
  We are on a EBS 11.5.10 project, implementing UPK.
  We got UPK in-application help working; changed custom.pll, set the profile option, everything fine.
  Now we would like the users to have the choice between UPK help (default) and standard EBS help.
  Therefore we opened the In-Application Support Player Configuration, and created a new Tab:
  Type: Oracle E-Business Suite help
  Tab Text: EBS help
  URL: ?
  Whatever we put in the URL, it won’t display the standard EBS context sensitive help. We can see the ‘EBS help’ tab when selecting ‘window help’ in the application but the page is blank or shows an error message.
  Do you have any tips on how to get this working?
  Thanks,
  Abe de Beer
  EBS Financials consultant
  Oracle Belgium

  Hi,
  I have the exact same requirtment, Could you please give the step what you have done so that it would be helpfull. Also after publishing the content on the i am not seeing the "Application Option" i am seeing the smart help. do we need to configure on "Application Option" or on smart help. Where ever is see the doc it says configure oracle_gateway.html but i dont see oracle/hemi folder at all. do know if there is a set up that has to be done to get this option (UPK 11.10.1)
  Thanks

• Customized and Standard Report

  How we can differentiate between Customize and Standard report???

  Hi Mike
  thats a tough one, the PO generation is a bit restrictive to say the least when it comes to customizing. It sounds like you have worked out how to get your own template in there to render the PO.
  On the data front, all I can think of is to customize and replace the seeded PO view with one that incorporates your extra data.
  Or, get into the page customization world and write your own extract and format concurrent program/procedure and then hook it onto the buttons where you want to launch it.
  You might have more luch, response wise from the EBS PO forum.
  Procurement : Procurement
  OAF: OA Framework
  Regards
  Tim

• Customer Statement using SAP Script and Standard print program RFKORD10

  Using sap script and standard print program RFKORD10 I need to create a customer statement where the main window will be as follows
  Invoice #     InvoiceDate  CustomerPO  Debit Amt  Credit Amt  Total
      6        7           8               9               10               11
      6        7           8               9               10               11
                                   Totals               12             13              14
  Where company code BKORM-KUKRS
              Invoice              BSID-BELNR
              Invoice date      BSID-BLDAT
              Customer PO    VBKD-BSTKD
  For each document number selected there will be one to many records in VBRP.  For each invoice item in VBRP:
  u2022     Select BSTKD from VBKD where
  o     VBELN = VBRP-VGBEL and
  o     POSNR = VBRP-VGPOS
  u2022     If no hits then select BSTKD from VBKD where
  o     VBELN = VBRP-VGBEL
  If there is more than one PO per invoice then list them in the Customer PO field without repeating the other fields.PO shouldnu2019t come more than once per invoice.
               Debit Amt         if BSEG-SHKZG = S then WRBTR ELSE 0
               Credit Amt        if BSEG-SHKZG = H then WRBTR ELSE 0
               Total                  Debit Amt u2013 Credit Amt
                Totals                Subtotals
  It will be of great help if some one can help me with the script and the alterations required in standard print program RFKORD10
  Points will b rewarded for sure.
  Thanks.

  Hi Suganya,
  The custom form is getting displayed properly. But the requirement is to have it as an editable PDF. So the functional team is working on configuring the settings of PDF forms with customers email address.
  But for right now, i customized the standard form F140_ACC_STAT_01 and standard print program RFKORD10_PDF and did the configuration. It is getting displayed (I tested only with the transaction FBL5N - customer open line items..)
  Please let me know any further details on this.
  Poornima