[OSB Security - OWSM:387256]Invalid CSF Key 'TestKey' set for override 'cs

Similar Messages

• [OSB Security - OWSM:387183]Invalid CSF Key 'basic.credentials'

  [OSB Security - OWSM:387183]Invalid CSF Key 'basic.credentials' set for override 'csf-key' on the service: OWSMTest/OWSMTestBS. This CSF Key does not exist in the Credential Store.
  I am getting the above error when trying to add a SAML client policy to my WSDL based business service.
  Any guide as how to fix it.
  When I test the proxy service please let me know how to see the SAML token exchanged between the business service and the target service

  any help please..

• Invalid CSF Key

  I am getting this error while testing the proxy service with oracle/wss_username_token_service_policy
  [OSB Security - OWSM:387256]Invalid CSF Key 'newuser' set for override 'csf-key'. This CSF Key does not exist in the Credential Store.
  Can anyone help me on this?

  First of all make sure that you have configured the OWSM and EM to work with OSB -
  Please refer section "50.2 Setting Up and Using Oracle Web Services Manager with Oracle Service Bus" at http://docs.oracle.com/cd/E23943_01/dev.1111/e15866/owsm.htm
  Then make sure that keystore has been configured correctly on EM -
  Please refer "Configuring Keystores for Message Protection" at http://docs.oracle.com/cd/E23943_01/web.1111/b32511/setup_config.htm#BAJJHHII OR
  http://biemond.blogspot.sg/2009/09/wsm-in-fusion-middleware-11g.html
  You may also refer -
  https://blogs.oracle.com/owsm/entry/osb_security_using_owsm_11g
  Regards,
  Anuj

• Control key is set for u2018Process mfg

  Hi ALL,
  Which control key is set for u2018Process mfg., Inspection, AutoGRu2019

  Hi,
  Adding to the information given by srini,You can find the config setting for each control key in OPJ8 (Tcode)
  If needed you can create your own control keys here & use the same in the Master recipe
  Regards,
  SVP

• Control key is set for u2018Process manufacturing with Inspectionu2019

  Hi,
  Which control key is set for u2018Process manufacturing with Inspectionu2019?
  What is the meaning of FS Relationship

  Hi,
  Control Key for "Process manufacturing with Inspection" is PI02.
  It is meant for Manufacturing is with Process Order with Quality inspection.
  Further this Control key you need to set in CR01/CR02 -Default Values-> Operation Default Values----> Control Key
  Regards,
  Tejas
  Edited by: Tejas  Kantilal Pujara on May 21, 2008 8:54 AM

• I can't remember my security questions and the email account I set for them no longer works what should I do???

  So I tried paying for games on my my new iPhone but they wanted me to answer security questions but I don't remember the answers and the email they send them to is one I made when I was younger so I'm not sure what it is what should I do?

  If it hasn't come through after a few hours and didn't end up in the spam filter, click here and request assistance.
  (79160)

• Setting  csf-key dynamically in OSB

  Hello
  We have configured a Business Service to invoke a external web service. The csf-key is assigned a value and the integration with the service works fine. We are trying to assign the value of the csf-key dynamically in the business service; but we are unable to do it.
  Is it possible to assign value csf-key dynamically in OSB? Any pointers will be helpful.
  Thanks

  984380 wrote:
  Is it possible to assign value csf-key dynamically in OSB? Any pointers will be helpful.I reckon it's possible by using OWSM, have a look at the docs bellow...
  http://docs.oracle.com/cd/E17904_01/doc.1111/e15866/owsm.htm#CHDBIJHD
  http://tim.blackamber.org.uk/?p=825
  Let me know how you go...
  Cheers,
  Vlad

• Dynamic csf-key to Business service of OSB?

  We have created single Business Service which is getting called from one proxy service to execute different Web Service end points.
  For different end point execution I want to pass different authentication parameters.
  Currently we have configured User Id and Password through single csf-key through policy.
  Since csf-key is secured option to pass authentication parameters to end point,  is it possible to configure dynamic csf-key to Business service of OSB?

  Create a business service using file transport and type "Text".
  Obtain the file name and assign to $body in ur proxy service stage and publish to the business service u just created.

• The name of the security certificate is invalid or does not match the name of the site error?

  I am looking for some help folks. We are in a Outlook 2007/Exchange2010/Windows2008R2 environment.
  When users open Outlook off the network, and occasionally on the network, they get the error
  The name of the security certificate is invalid or does not match the name of the site error
  The CAS hostname is HRECAS.XXX.ORG. The URL that is listed on the SSL certificate (issued by VeriSign) is WEB.XXX.ORG. WEB.XXX.ORG is what users use to get to OWA and such.
  When I use testexchangeconnectivity.com, under certificate name validation I see an error that reads:
  Host name autodiscover.xxx.org doesn't match any name found on the server certificate CN=web.xxx.org.
  Does this mean somehow we have to add autodiscover.xxx.org on the certificate?
  I tried to add AutoDiscoverExternalUri using
  http://support.microsoft.com/?kbid=940726 &
  http://social.technet.microsoft.com/Forums/en-US/exchange2010/thread/2d0c0f5f-e4ec-4f33-a37d-b94fd7a2319f on the CAS server.
  Set-ClientAccessServer -identity HRECAS -AutodiscoverServiceExternalUri
   https://autodiscover.xxx.org/Autodiscover/Autodiscover.xml 
  I get an error that says
  "a positional parameter cannot be found that accepts argument '-AutoDiscoverExternalUri'.
  Can someone point to me what I am doing wrong with the command and whether I should be concerning myself with adding that line? By the way the
  InternalUrl information is already configured on the system. Also should I edit the certificate to add autodiscover.xxx.org?
  Thank in advance for your support.
  TD
  TD

  Hi Tapera,
  Thanks for the question.
  SRV record is a good idea. You can set the SRV to
  https://web.abc.com/autodiscover/autodiscover.xml but you must make sure the
  url can be resolved from External clients.
  In addition, there is still a issue. It is hard coded that Outlook will find the autodiscover by the orders below:
  1. Access autodiscover via SCP in AD.
  https://web.abc.com/autodiscover/autodiscover.xml
  2. If SCP access fails, it will try:
  https://abc.com/autodiscover/autodiscover.xml
  3. Then
  https://autodiscover.abc.com/autodiscover/autodiscover.xml
  4. Local XML file
  5. SRV record
  As you can see, Outlook will try SRV record at last. Therefore, it will still try to access
  https://autodiscover.abc.com/autodiscover/autodiscover.xml each time you run Outlook. Then the certificate warning will still persists.
  I have a workaround solution. You can do a local policy to disable the autodiscover to access the
  https://autodiscover.abc.ocom/autodiscover/autodiscover.xml by:
  1.   
  On the Outlook client machine, open regedit and add the following key:
  HKEY_CURRENT_USER\Software\Microsoft\Office\12.0\Outlook\Autodiscover
           "ExcludeHttpsAutodiscoverDomain"
           "ExcludeHttpsRootDomain"
  2.   
  Then set the value to “1” on the above two keys.
  Thanks,
  Simon  

• Invalid API Key Error in Ecosign API

  I'm using the sample soap code(Developer kit) given by echosign api for testping, but it always show invalid api key error while i'm executing from terminal. Please give the solution as soon as possible, and i'm not able to get solution from google also.
  This is my API Key:
  Client Secret:
  6IaJHev8N48JbsZcM4Itggzt0pAHF0iS
  I tried with this comment in terminal:
  php demo.php https://secure.echosign.com/services/EchoSignDocumentService20?wsdl 6IaJHev8N48JbsZcM4Itggzt0pAHF0iS test
  This is demo.php file:
  <?php
  // get input
  array_shift($_SERVER['argv']);
  $Url = array_shift($_SERVER['argv']);
  $ApiKey = array_shift($_SERVER['argv']);
  $cmd = array_shift($_SERVER['argv']);
  $params = $_SERVER['argv'];
  if (!$cmd) print_usage();
  $S = new SOAPClient($Url);
  call_user_func("cmd_$cmd", $params);
  function cmd_test() {
      global $Url, $ApiKey, $S;
      print "Testing basic connectivity...\n";
      $r = $S->testPing(array('apiKey' => $ApiKey));
      print "Message from server: {$r->documentKey->message}\n";
      print "Testing file transfer...\n";
      $text = file_get_contents('../test.pdf');
      $r = $S->testEchoFile(array('apiKey' => $ApiKey, 'file' => base64_encode($text)))->outFile;
      if (base64_decode($r) === $text) {
          print "Woohoo! Everything seems to work.\n";
      else {
          die("ERROR: Some kind of problem with file transfer, it seems.\n");
  function cmd_send() {
      global $Url, $ApiKey, $S;
      list($filename, $recipient) = reset(func_get_args());
      $r = $S->sendDocument(array(
          'apiKey' => $ApiKey,
          'documentCreationInfo' => array(
                  'fileInfos' => array(
                      'FileInfo' => array(
                          'file'     => file_get_contents($filename),
                          'fileName' => $filename,
                  'message' => "This is neat.",
                  'name'    => "Test from SOAP-Lite: $filename",
                  'signatureFlow' => "SENDER_SIGNATURE_NOT_REQUIRED",
                  'signatureType' => "ESIGN",
                  'tos' => array( $recipient ),
      print "Document key is: {$r->documentKeys->DocumentKey->documentKey}\n";
  function cmd_info() {
      global $Url, $ApiKey, $S;
      list($doc_key) = reset(func_get_args());
      $r = $S->getDocumentInfo(array('apiKey' => $ApiKey, 'documentKey' => $doc_key))->documentInfo;
      print "Document is in status: {$r->status}\n";
      print "Document History: ";
      foreach($r->events->DocumentHistoryEvent as $_) {
          $keytext =
            $_->documentVersionKey
            ? " (versionKey: {$_->documentVersionKey})"
          print "{$_->description} on {$_->date}$keytext\n";
      print "Latest versionKey: {$r->latestDocumentKey}\n";
  function cmd_latest() {
      global $Url, $ApiKey, $S;
      list ($doc_key, $filename) = reset(func_get_args());
      $r = $S->getLatestDocument(array('apiKey' => $ApiKey, 'documentKey' => $doc_key))->pdf;
      //$r = base64_decode($r);
      file_put_contents($filename, $r);
  function print_usage() {
      die(<<<__USAGE__
  Usage:
    demo.php <URL> <API key> <function> [parameters]
  where the function is one of:
    test
    send <filename> <recipient_email>
    info <documentKey>
    latest <documentKey> <filename>
  test will run basic tests to make sure you can communicate with the web service
  send will create a new agreement in the EchoSign system, and returns a documentKey
  info returns the current status and all the history events for a given documentKey
  latest saves the latest version of the document as a PDF with the given filename
  __USAGE__
  --------------------------  End of file ---------------------------------------------------------------

  This is my API Key:
  Client Secret:
  6IaJHev8N48JbsZcM4Itggzt0pAHF0iS
  Client secret is not the same as an api key!
  in addition to the above, integration key or access codes can be had by going to personal preferences>access code and clicking the plus sign.

• [OSB and OWSM] - External Web service stacks and frameworks

  Hi everyone ! I'm starting to read about OSB and OWSM and I'm having some doubts. I've some developments of Web services with external Stacks like CXF, JBossWS, Metro and I'd like to ask some questions:
  1- Will I be able to productively leverage all features of OSB and OWSM like creating a proxy service to add WS-* standards policies and features (WS-Security, for instance) even with these web services implemented in different stacks other than Weblogic's ?
  2- If it is possible, do these web services need to be deployed at the Weblogic server to enable the OWSM and OSB to work effectively ?
  3- Even if it is possible to use the OSB and OWSM nicely with webservices developed at external stacks and deployed at other application servers is there any reason to quit using these external web service stacks in favor of Weblogic's (like features only enabled on OSB/OWSM when the services use the Weblogic stack) ?
  I suppose that if I ignore the JAX-WS stack from Weblogic and use an external framework (like CXF) I'll lose most of the application server administration capabilities since the Weblogic server won't be able to recognize the CXF stack as it does with its own.But, the main doubt I'm in is, since OSB and OWSM might be used with external providers I probably won't need to develop my web services using the Weblogic implementation (which my team does not yet know) since there will be no features of the OSB and OWSM which can only be used with the Weblogic's stack. I would like, please, to know your oppinions about these considerations. Sorry about the long post and possible errors (I just started learning).
  Thank you!

  Hi Lupan,
  I can speak mostly to OWSM as my experience with OSB is small thus far.
  +1- Will I be able to productively leverage all features of OSB and OWSM like creating a proxy service to add WS-* standards policies and features (WS-Security, for instance) even with these web services implemented in different stacks other than Weblogic's ?+
  OWSM (10gR3) has two types of policy enforcement point (PEP) -- Gateway and Agent. The Gateway acts as a remote proxy and is neutral to the service implementation technology as long as it adheres to SOAP 1.1. In this regard you can use OWSM freely with CXF, MS implementations, etc. Agents run in-process with the service and thus have far greater restrictions on what service implementation frameworks and containers that are supported. There is some certification for AXIS 1.x running in OAS and Tomcat; but practically speaking, my recommendation for Agents is to only use within OAS 10gR3 where it is built in (and using OC4J Web Services through JAX-RPC).
  OWSM 11gR1 initially supports only agent-style (in process) PEP and is built-in to Fusion Middleware and WLS. It is only for Fusion and WLS Web Service implementations.
  OWSM is quite full-featured for WS-*.
  +2- If it is possible, do these web services need to be deployed at the Weblogic server to enable the OWSM and OSB to work effectively ?+
  "No" if using OWSM Gateway PEP. A qualified "Yes" if using OWSM Agent PEP.
  +3- Even if it is possible to use the OSB and OWSM nicely with webservices developed at external stacks and deployed at other application servers is there any reason to quit using these external web service stacks in favor of Weblogic's (like features only enabled on OSB/OWSM when the services use the Weblogic stack) ?+
  There is the manageability that you mention, but also there is the identity propagation scenario and tight security integration. Both OAS and WLS hosted services in the native stacks (JAX-RPC and JAX-WS) allow sophisticated and secure passing of identity in the request -- for instance, via SAML Assertions in the WS-Sec header -- and built-in capabilities to map the passed identity into the running service's Subject (i.e. enabling JAAS security etc.).
  In my experience this type of identity propagation functionality has either been absent or less complete in other typical implementation frameworks not closely aligned with the container security mechanisms.
  Hope this helps,
  Todd

• My iPhone 4gs won't let me download any apps because the security code is invalid? I enter everything correct and my address, don't understand why this is happening! Help please

  I just need to be able to download apps and my phone keeps saying the security code is invalid which doesnt make sense because I enter everything correct and it's really fustrating I've been to the apple store I've called support and they can't seem to fix it! Can somebody please help me? I thought apple was suposta be easy to use :\

  This can sometimes happen because there is a missmatch between the billing address entered on your iTunes account and the billing address from your bank records.  See http://support.apple.com/kb/TS1646.

• 3 debit cards, updating, and my phone won't let me download apps or music because it says my security code is invalid no matter what I do. Help!!

  I don't know wha to do. When I try to get apps (even free) or music on iTunes (even with my gift card), a notice pops up saying there was a problem with a previous billing purchase, then it takes me to my card info and address and no matter what it always tells me my security code is invalid. I've gone through 3 cards (all worked to purchase items from a store or anything) and I've even updated my phone when i was told that I had to do that before I could download anything. I can't figure out what the problem is. PLEASE SOMEONE HELP!!

  From iTunes menu Bar, Store > View Account > Edit "Payment Type" under "Apple ID summary"

• So whenever I try and download an app, apple is making me put in my security code for my visa card. But, it's saying my security code is invalid. And I know that it's right. What do I do?

  Apple is making me put in my card information to get free apps. And when I put in the vista card information it's saying that the security code is invalid. It is also doing this to my brothers account. I have no idea what to do!

  Go to Settings > Store tap on your Apple ID, then billing information.
  Make sure every single bit of information in your credit card is 100% correct and matches the credit card information you have in iTunes (if you have an iTunes account and you have entered the credit card information there).  Make sure your credit card expiration date is accurate and correct.  Make sure that if in iTUnes you said you live at say 150 Red Road, you don't say you live at 150 Red Rd on your iPad.
  Once you've verified the billing information is 100% accurate, save and then try again to download from the App Store.

• When I try to download a song it tells me I need to sign in and when I put my billing information including my credit car and security code it tells me my security code is invalid.

  So I recently was like signed out of my iTunes account on my iPhone. Now when I try to sign it and let's me and all but when I click to download something it tells me I need to sign in and provide my credit card number and the security code. When I do all that it says the security code is invalid and won't let me download anything. Can someone tell me what to do?

  Hello
  I am having the same issue, I now my card number as well as the security code is valid so i am not sure what the issue is...CAN SOMEONE PLEASE HELP US?!