Policy Agent 2.2 release notes highlight need for 32 bit -  SPARC?

Similar Messages

• HT1338 Attempt to install Mountain Lion has highlighted need for internal disk repair. Even after "repair" ML still says disk is damaged. Attempt to restore from Time Machine back-up failed - cannot 'see' internal HD to restore to. Help!

  Attempt to install Mountain Lion has highlighted need for internal disk repair. Even after "repair" ML still says disk is damaged. Attempt to restore from Time Machine back-up failed - cannot 'see' internal HD to restore to. Help! Has attempt to install ML caused these problems or just highlighted existing need to Repair Disk? Even so, why can back-up from Time Machine not see the internal drive to restore to?

  Csound1, William & Sig .... thanks for taking the trouble to reply. I fear you are right - I'll need a new disk. I'm booked in at the Apple Genius Bar in Bordeaux, France on Wed ... quite a challenge as my French isn't great! The current internal disk is 500gb, does anyone know whether I can upgrade my 21.5" iMac (circa Oct-2009 vintage) to a larger size internal disk, 1Tb or even 2Tb? I already have one external 2Tb drive and another one on order (I have masses of media stored and more planned as I've just taken up photography). Seems a bit of a pain managing with only 500gb internal storage. OR, can you advise me on how I can store all my photos on my new 2Tb external drive - I can't seem to figure out how to set the path for iPhoto to see them (I can't even figure out where they are stored right now!). Same with iTunes, how do I set the default storage to the external drive (I moved everything manually and then imported them all from the new drive - it worked but seemed very convoluted). Any advice on how to manage multiple drives gratefully received. And thanks again for previous replies.

• RELEASE NOTES R180 - scheduled for September 25th 2012

  We are announcing a new Business Catalyst release, scheduled to go live on Tuesday, September 25th.
  This release includes some great improvements to our module templates, new features for our email marketing system, admin interface improvements, a few infrastructure updates and lots of bug corrections.
  Read through the following sections to get detailed information about this release:
  Features and enhancements
  Issues fixed by this release
  You can jump to the corresponding section by clicking the above links.
  Features and enhancements
  Modules improvement
  Starting with our September release, we have enabled users to use a html page or a static template as a module list template (layout) for all modules that are using templates today. The new addition allows partners to create different views for the same data for a personalize experience. To use this new functionality, just create a new module template and update your module properties by specifying the template to use.
  Ex: {module_blogsitepost,2 template="/ModuleTemplates/Custom/MyTemplate.tpl"}
  Note: although you can use any extension you feel comfortable with, we recommend using a .tpl extension for two reasons: help locate the template better and avoid having these templates being displayed in Page list.
  Email marketing application improvements
  This is release is packed with new features and enhancements to our email marketing system.
  Dynamic modules in email campaign - you can include modules (a subset of 19 modules) in the Email Campaigns content; the system will render these modules right before the campaign is sent, making sure your customers always receive the latest content;
  Fresh, new email templates - the release includes a set of new of new email templates that look much better; along with these new templates, the template selection page was re-done to show better thumbnails;
  Improved recipients selection - we have improved the recipients wizard step, replacing the checkbox list with a smart search and select control; additionally, with this release you will be able to  select multiple lists (including Customer Reports) to exclude from your campaign.
  Improved campaign status screen - before sending the campaign, you will now be able to view the exact number of recipients before sending the campaign (Note: reports and list requiring a long time to compute will be approximated); additionally, while the campaign is sending, we are displaying a meaningful status, that indicates that the campaign is being sent.
  Email clients reporting - the campaign report screen has also been improved to include a report showing you the email clients used to read your campaigns.
  Admin console improvements
  We have updated our new admin user interface and replaced the insert module and insert tag panels with the new Business Catalyst toolbox almost everywhere. With the new toolbox we'll make it easier for partners and business owners to insert and customize module or tags into pages, templates or system emails. The toolbox user interface will opened by default for partners for faster access to tags and modules.
  Other changes
  Some  FTP improvements (better error codes, performance, etc) and SFTP support
  DNS improvements (support for setting up Google Apps email out of the box, several bug fixes)
  When you change your email address on adobe.com, it syncs automatically with BC
  Various improvements of the caching engine for static assets
  Issues fixed by May release
  Issue 2869695 - Fixed an issue that broke the comments submitted by visitors by placing <br> tags after a random number of characters;
  Issue 3317538 -     Fixed an issue preventing the social media modules from being reinitialized after pressing "Add to cart"
  Issue 3317105 -     Files with spaces in the name do not get invalidated properly on FTP/API delete
  Issue 3317478 -     Fixed an issue causing hardcoded http paths to generate security alerts when on https
  Issue 2567045 -     Fixed an issue with Product Purchased with Details data field
  Issue 2567131 -     Fixed an issue causing web app creation forms to generate  [No Name] duplicates
  Issue 3319245 -     Fixed the search function on Help & Support
  Issue 3320623 -     Fixed an issue causing decimal prices to be incorrectly saved when editing/creating an order in admin and having the site admin language set to a country language that uses "," as decimal separator instead of "."
  Issue 3325526 -     Fixed an issue causing the CRM Session verification to fail for session IDs that contain +
  Issue 3162093 - Fixed a problem [AdminV4] HTML files for campaigns can't be edited
  Issue 3009528 -     Updated multiline fields to allow line breaks
  Issue 3010606 -     Changed FTP blog layouts  listing  to properly handle cases of invalid layout group names
  Issue 3315646 -     Fixed an issue causing {tag_blogcategorylist}to not limit the number of results as set
  Issue 3316323 -     Small bug/improvement at offline payments on copy/pasting the PDF password
  Issue 2900590 -     Fixed an issue causing a correct web app item address to change to another one on some sites
  Issue 3319299 -     Fixed some performance problems causing Edit Web Apps Settings -> Autoresponder  interface to freeze
  Issue 3320422 -     "Free shipping" not validated when enforcing shipping validation
  Issue 2918069 -     Cannot save values properly for webapp items when the custom field uses comma separated checkbox list, and it has more then 265 characters for the list of values
  Issue 2925458 -     Web App edit form is adding "X_" to the existing classes inside the description field. Every edit will add another x_ ending up in something like class="x_x_x_classname"
  Issue 2567035 -     Can not list files in FTP when there are invalid characters or similar in the directory
  Issue 3313655 -     Import fails if the username column values are already in the CRM
  Issue 3315485 -     Varnish cache is not invalidated when overwriting files with %20 in the path
  Issue 3315372 -     When adding a new item in the admin the address fields is pre-populated
  Known issues and limitations
  Product list layout outputs the products using an unordered list, requiring CSS for better formatting
  Favorites module does not support multiple templates (layouts)
  Module detail views do not support multiple templates (layouts)
  Recursive modules are not supported in email campaign preview
  Dreamweaver design view, ignores the custom template and always renders the tags from the default template (layout)
  For more information about this, follow the release announcement on the Business Catalyst blog: Introducing our feature packed September release!

  Thanks Mario, what is missing from the post and this notification is a fundamental pieces of information "TIMES". This is not just your info but also the release by Jackson Palmer on the blog - totally missed there also
  We need to be notified of the sceduled timing of this release not just a vague date which is not specific globally
  25th but we are global - what time specifically 0100am PST is very different to 1030pm PST , the latter being 26th in AU
  Why - because campaigns scheduled for around this time can be impacted, and also if the sites go offile during the maintenance window campaigns can be a wasted exercise.
  Previously mid week schedules have been a matter of heated discussion, yet the support guys say that schedule ahas not been decided upon
  Not planning is planning to fail, and we have witnessed that all to ofetn in the past. BC unfortunately has a history of failing to plan and inform, and this does little to activate confidence in the community.
  I have discussed with Dragos on numerous occassion how the missing ingridents at BC like communication, UX, planning and most importantly understanding from the customer perspective (rather than backroom coders).
  eg at 645am 26th of Sept 2012 we have a email campaign scheduled ( and can be rescheduled ), the issue I see is without your maintenance window timings being published in a timely manner how can we tell if we move to a sooner or later timing. You have to agree it is disasterious marketing to blast out a campaign and find systems down when customers open newsletter offers and want to shop then.
  If the time schedule is listed somewhere else even more shame that it is overlooked as an inclusion here plus that Chat team are not informed and kept up to date and the blog is just fluff sales and chest beating. That is not support of partners regargless of paid or free status.
  To much time is wasted with this sort of unthinking about unpublished / incomplete notifications, Live chat guy wasted > 15 min of his and my time becuase they don't know either, how many others are being inconvenienced by fialing to plan and notify information to  act upon, this communication in the blog is good info but by itself useless and creates more doubt and lack or faith. Just look at the "hope in the comments"

• Highlights needed for a webcast session

  hi,
  I have attended a session on 2nd july -09 regarding Strategic Database Management to Meet Tomorrow’s Challenges. Can anyone share the highlights or learnings of the session.
  *(Strategic Database Management to Meet Tomorrow’s Challenges "live" webcast*
  on 2 July 2009. )
  I need minimum 5 points.
  Rgds...

  user537350 wrote:
  hi,
  I have attended a session on 2nd july -09 regarding Strategic Database Management to Meet Tomorrow’s Challenges. Can anyone share the highlights or learnings of the session.
  *(Strategic Database Management to Meet Tomorrow’s Challenges "live" webcast*
  on 2 July 2009. )
  I need minimum 5 points.
  Rgds...If you have "attended" that session, you could compile that list yourself.

• Risk Analysis not highlighting SODs for critical transactions

  Hi,
  I am currently experiencing a problem when running risk analysis for critical transactions.
  SOD conflicts are not always being detected for critical transactions. This is happening both in role expert while creating a role and during role simulation in CC. For example risk BSSC, SU01 does not produce a violation when added to a role, but SOY1 does.
  It seems to be happening consistently. If  a transaction in risk BSSC has a permission object associated with it in the ruleset, a violation(at tcode or object level) is not detected by the risk analysis even when this authorisation object is maintained with the same value as in the rule set. If the transaction has no permission objects specified in the ruleset, then a violation is detected at tcode level analysis.
  These transactions are standard transactions in the ruleset and have not been changed in any way. I have checked the rules and there are critical action rules for both transactions.
  Has anybody experienced similiar problems?

  Hi..
  Check the note # SAP Note 1121978
  SAP Note 1121978 - Recommended settings to improve peformance risk analysis.
  Check for the following...
  CONFIGTOOL>SERVER>MANAGERS>THREADMANAGER
  ChangeThreadCountStep =50
  InitialThreadCount= 100
  MaxThreadCount =200
  MinThreadCount =50
  Regards
  Gangadhar

• FRM-99999:  Error 408 occurred.  See the release notes file (relnotes) for

  I am trying to insert the data in a a table and iam geeting this record
  please advise

  I get this error too. It is caused because of a check constraint violation on a materialized view that is fast refreshed on commit. First we see a FRM-40400 (1 record applied and saved) and immediately after that the FRM-99999 Error 408.
  Don't know if this is the case at your location, but it could be.
  At the moment I'm also looking for a solution.
  Kind regards,
  Rob van Wijk.

• What type of BufferedImage is needed for 24 bit image data

  Hello, i am using an image processing api, i have a 24 bit image data, i want to form a BufferedImage and set its pixel values with my data such as
  BufferedImage image = new BufferedImage(w, h, what type?);
  WritableRaster raster = image.getRaster();
  int[] imgpixels = ((DataBufferInt) raster.getDataBuffer()).getData();
  for (int i = 0; i < image.getHeight() * image.getWidth(); i++)
  imgpixels[i] = ((myArray).getRed()) << 16 | ((myArray[i]).getGreen()) << 8 | ((myArray[i]).getBlue());
  Then i will save the Buf. image to file as png. So what type of BufferedImage do i need?
  Regards.

  what is the reason when i read a 24 bit png image...it shows the type as 0 (TYPE_CUSTOM) ?
  From the the Field Detail section for the TYPE_CUSTOM field in BufferedImage: the image type is not recognized.
  You could make a new BufferedImage with TYPE_INT_RGB, or TYPE_INT_ARGB if the image has or will have transparent pixels, and copy the TYPE_CUSTOM image into it. Then you can manipulate/process the new image.

• No log for am policy agent for iis6

  Hello!
  Im trying to get Policy Agent for IIS to run on my Win Srv 2003 with IIS6 and Sharepoint Services.
  I am running the OpenSSO version of Access Manager.
  I have installed the agent and done the initial cofiguration.
  When i try to browse the resource i get a login prompt (IIS Basic Auth)and cannot login followed by "Not Authorized 401.3"
  I should get redirected to the AM Login page, shouldn't I?
  I tried to look for answers in the log file but the /debug/<id> directory i empty.
  Anyone know what to do?
  The amAgent.properties file:
  # $Id: AMAgent.properties,v 1.103 2005/09/19 22:08:34 madan Exp $
  # The syntax of this file is that of a standard Java properties file,
  # see the documentation for the java.util.Properties.load method for a
  # complete description. (CAVEAT: The SDK in the parser does not currently
  # support any backslash escapes except for wrapping long lines.)
  # All property names in this file are case-sensitive.
  # NOTE: The value of a property that is specified multiple times is not
  # defined.
  # WARNING: The contents of this file are classified as an UNSTABLE
  # interface by Sun Microsystems, Inc. As such, they are subject to
  # significant, incompatible changes in any future release of the
  # software.
  # The name of the cookie passed between the Access Manager
  # and the SDK.
  # WARNING: Changing this property without making the corresponding change
  # to the Access Manager will disable the SDK.
  com.sun.am.cookie.name = iPlanetDirectoryPro
  # The URL for the Access Manager Naming service.
  com.sun.am.naming.url = http://login.lta.mil.se:8080/opensso/namingservice
  # The URL of the login page on the Access Manager.
  com.sun.am.policy.am.login.url = http://login.lta.mil.se:8080/opensso/UI/Login
  # Name of the file to use for logging messages.
  com.sun.am.policy.agents.config.local.log.file = C:/Sun/Access_Manager/Agents/2.2/debug/Identifier_1414639615/amAgent
  # This property is used for Log Rotation. The value of the property specifies
  # whether the agent deployed on the server supports the feature of not. If set
  # to false all log messages are written to the same file.
  com.sun.am.policy.agents.config.local.log.rotate = true
  # Name of the Access Manager log file to use for logging messages to
  # Access Manager.
  # Just the name of the file is needed. The directory of the file
  # is determined by settings configured on the Access Manager.
  com.sun.am.policy.agents.config.remote.log = amAuthLog.sharepoint.lta.mil.se.80
  # Set the logging level for the specified logging categories.
  # The format of the values is
  # <ModuleName>[:<Level>][,<ModuleName>[:<Level>]]*
  # The currently used module names are: AuthService, NamingService,
  # PolicyService, SessionService, PolicyEngine, ServiceEngine,
  # Notification, PolicyAgent, RemoteLog and all.
  # The all module can be used to set the logging level for all currently
  # none logging modules. This will also establish the default level for
  # all subsequently created modules.
  # The meaning of the 'Level' value is described below:
  # 0 Disable logging from specified module*
  # 1 Log error messages
  # 2 Log warning and error messages
  # 3 Log info, warning, and error messages
  # 4 Log debug, info, warning, and error messages
  # 5 Like level 4, but with even more debugging messages
  # 128 log url access to log file on AM server.
  # 256 log url access to log file on local machine.
  # If level is omitted, then the logging module will be created with
  # the default logging level, which is the logging level associated with
  # the 'all' module.
  # for level of 128 and 256, you must also specify a logAccessType.
  # *Even if the level is set to zero, some messages may be produced for
  # a module if they are logged with the special level value of 'always'.
  com.sun.am.log.level = 5
  # The org, username and password for Agent to login to AM.
  com.sun.am.policy.am.username = UrlAccessAgent
  com.sun.am.policy.am.password = PN4rEZ1uhx1404ivWY6HPQ==
  # Name of the directory containing the certificate databases for SSL.
  com.sun.am.sslcert.dir = C:/Sun/Access_Manager/Agents/2.2/iis6/cert
  # Set this property if the certificate databases in the directory specified
  # by the previous property have a prefix.
  com.sun.am.certdb.prefix =
  # Should agent trust all server certificates when Access Manager
  # is running SSL?
  # Possible values are true or false.
  com.sun.am.trust_server_certs = true
  # Should the policy SDK use the Access Manager notification
  # mechanism to maintain the consistency of its internal cache? If the value
  # is false, then a polling mechanism is used to maintain cache consistency.
  # Possible values are true or false.
  com.sun.am.notification.enable = true
  # URL to which notification messages should be sent if notification is
  # enabled, see previous property.
  com.sun.am.notification.url = http://sharepoint.lta.mil.se:80/amagent/UpdateAgentCacheServlet?shortcircuit=false
  # This property determines whether URL string case sensitivity is
  # obeyed during policy evaluation
  com.sun.am.policy.am.url_comparison.case_ignore = true
  # This property determines the amount of time (in minutes) an entry
  # remains valid after it has been added to the cache. The default
  # value for this property is 3 minutes.
  com.sun.am.policy.am.polling.interval=3
  # This property allows the user to configure the User Id parameter passed
  # by the session information from the access manager. The value of User
  # Id will be used by the agent to set the value of REMOTE_USER server
  # variable. By default this parameter is set to "UserToken"
  com.sun.am.policy.am.userid.param=UserToken
  # Profile attributes fetch mode
  # String attribute mode to specify if additional user profile attributes should
  # be introduced into the request. Possible values are:
  # NONE - no additional user profile attributes will be introduced.
  # HTTP_HEADER - additional user profile attributes will be introduced into
  # HTTP header.
  # HTTP_COOKIE - additional user profile attributes will be introduced through
  # cookies.
  # If not within these values, it will be considered as NONE.
  com.sun.am.policy.agents.config.profile.attribute.fetch.mode=NONE
  # The user profile attributes to be added to the HTTP header. The
  # specification is of the format ldap_attribute_name|http_header_name[,...].
  # ldap_attribute_name is the attribute in data store to be fetched and
  # http_header_name is the name of the header to which the value needs
  # to be assigned.
  # NOTE: In most cases, in a destination application where a "http_header_name"
  # shows up as a request header, it will be prefixed by HTTP_, and all
  # lower case letters will become upper case, and any - will become _;
  # For example, "common-name" would become "HTTP_COMMON_NAME"
  com.sun.am.policy.agents.config.profile.attribute.map=cn|common-name,ou|organiz ational-unit,o|organization,mail|email,employeenumber|employee-number,c|country
  # Session attributes mode
  # String attribute mode to specify if additional user session attributes should
  # be introduced into the request. Possible values are:
  # NONE - no additional user session attributes will be introduced.
  # HTTP_HEADER - additional user session attributes will be introduced into HTTP header.
  # HTTP_COOKIE - additional user session attributes will be introduced through cookies.
  # If not within these values, it will be considered as NONE.
  com.sun.am.policy.agents.config.session.attribute.fetch.mode=NONE
  # The session attributes to be added to the HTTP header. The specification is
  # of the format session_attribute_name|http_header_name[,...].
  # session_attribute_name is the attribute in session to be fetched and
  # http_header_name is the name of the header to which the value needs to be
  # assigned.
  # NOTE: In most cases, in a destination application where a "http_header_name"
  # shows up as a request header, it will be prefixed by HTTP_, and all
  # lower case letters will become upper case, and any - will become _;
  # For example, "common-name" would become "HTTP_COMMON_NAME"
  com.sun.am.policy.agents.config.session.attribute.map=
  # Response Attribute Fetch Mode
  # String attribute mode to specify if additional user response attributes should
  # be introduced into the request. Possible values are:
  # NONE - no additional user response attributes will be introduced.
  # HTTP_HEADER - additional user response attributes will be introduced into
  # HTTP header.
  # HTTP_COOKIE - additional user response attributes will be introduced through
  # cookies.
  # If not within these values, it will be considered as NONE.
  com.sun.am.policy.agents.config.response.attribute.fetch.mode=NONE
  # The response attributes to be added to the HTTP header. The specification is
  # of the format response_attribute_name|http_header_name[,...].
  # response_attribute_name is the attribute in policy response to be fetched and
  # http_header_name is the name of the header to which the value needs to be
  # assigned.
  # NOTE: In most cases, in a destination application where a "http_header_name"
  # shows up as a request header, it will be prefixed by HTTP_, and all
  # lower case letters will become upper case, and any - will become _;
  # For example, "common-name" would become "HTTP_COMMON_NAME"
  com.sun.am.policy.agents.config.response.attribute.map=
  # The cookie name used in iAS for sticky load balancing
  com.sun.am.policy.am.lb.cookie.name = GX_jst
  # indicate where a load balancer is used for Access Manager
  # services.
  # true | false
  com.sun.am.load_balancer.enable = false
  ####Agent Configuration####
  # this is for product versioning, please do not modify it
  com.sun.am.policy.agents.config.version=2.2
  # Set the url access logging level. the choices are
  # LOG_NONE - do not log user access to url
  # LOG_DENY - log url access that was denied.
  # LOG_ALLOW - log url access that was allowed.
  # LOG_BOTH - log url access that was allowed or denied.
  com.sun.am.policy.agents.config.audit.accesstype = LOG_BOTH
  # Agent prefix
  com.sun.am.policy.agents.config.agenturi.prefix = http://sharepoint.lta.mil.se:80/amagent
  # Locale setting.
  com.sun.am.policy.agents.config.locale = en_US
  # The unique identifier for this agent instance.
  com.sun.am.policy.agents.config.instance.name = unused
  # Do SSO only
  # Boolean attribute to indicate whether the agent will just enforce user
  # authentication (SSO) without enforcing policies (authorization)
  com.sun.am.policy.agents.config.do_sso_only = true
  # The URL of the access denied page. If no value is specified, then
  # the agent will return an HTTP status of 403 (Forbidden).
  com.sun.am.policy.agents.config.accessdenied.url =
  # This property indicates if FQDN checking is enabled or not.
  com.sun.am.policy.agents.config.fqdn.check.enable = true
  # Default FQDN is the fully qualified hostname that the users should use
  # in order to access resources on this web server instance. This is a
  # required configuration value without which the Web server may not
  # startup correctly.
  # The primary purpose of specifying this property is to ensure that if
  # the users try to access protected resources on this web server
  # instance without specifying the FQDN in the browser URL, the Agent
  # can take corrective action and redirect the user to the URL that
  # contains the correct FQDN.
  # This property is set during the agent installation and need not be
  # modified unless absolutely necessary to accommodate deployment
  # requirements.
  # WARNING: Invalid value for this property can result in the Web Server
  # becoming unusable or the resources becoming inaccessible.
  # See also: com.sun.am.policy.agents.config.fqdn.check.enable,
  # com.sun.am.policy.agents.config.fqdn.map
  com.sun.am.policy.agents.config.fqdn.default = sharepoint.lta.mil.se
  # The FQDN Map is a simple map that enables the Agent to take corrective
  # action in the case where the users may have typed in an incorrect URL
  # such as by specifying partial hostname or using an IP address to
  # access protected resources. It redirects the browser to the URL
  # with fully qualified domain name so that cookies related to the domain
  # are received by the agents.
  # The format for this property is:
  # com.sun.am.policy.agents.config.fqdn.map = [invalid_hostname|valid_hostname][,...]
  # This property can also be used so that the agents use the name specified
  # in this map instead of the web server's actual name. This can be
  # accomplished by doing the following.
  # Say you want your server to be addressed as xyz.hostname.com whereas the
  # actual name of the server is abc.hostname.com. The browsers only knows
  # xyz.hostname.com and you have specified polices using xyz.hostname.com at
  # the Access Manager policy console, in this file set the mapping as
  # com.sun.am.policy.agents.fqdn.map = valid|xyz.hostname.com
  # Another example is if you have multiple virtual servers say rst.hostname.com,
  # uvw.hostname.com and xyz.hostname.com pointing to the same actual server
  # abc.hostname.com and each of the virtual servers have their own policies
  # defined, then the fqdnMap should be defined as follows:
  # com.sun.am.policy.agents.fqdn.map = valid1|rst.hostname.com,valid2|uvw.hostname.com,valid3|xyz.hostname.com
  # WARNING: Invalid value for this property can result in the Web Server
  # becoming unusable or the resources becoming inaccessible.
  com.sun.am.policy.agents.config.fqdn.map =
  # Cookie Reset
  # This property must be set to true, if this agent needs to
  # reset cookies in the response before redirecting to
  # Access Manager for Authentication.
  # By default this is set to false.
  # Example : com.sun.am.policy.agents.config.cookie.reset.enable=true
  com.sun.am.policy.agents.config.cookie.reset.enable=false
  # This property gives the comma separated list of Cookies, that
  # need to be included in the Redirect Response to Access Manager.
  # This property is used only if the Cookie Reset feature is enabled.
  # The Cookie details need to be specified in the following Format
  # name[=value][;Domain=value]
  # If "Domain" is not specified, then the default agent domain is
  # used to set the Cookie.
  # Example : com.sun.am.policy.agents.config.cookie.reset.list=LtpaToken,
  # token=value;Domain=subdomain.domain.com
  com.sun.am.policy.agents.config.cookie.reset.list=
  # This property gives the space separated list of domains in
  # which cookies have to be set in a CDSSO scenario. This property
  # is used only if CDSSO is enabled.
  # If this property is left blank then the fully qualified cookie
  # domain for the agent server will be used for setting the cookie
  # domain. In such case it is a host cookie instead of a domain cookie.
  # Example : com.sun.am.policy.agents.config.cookie.domain.list=.sun.com .iplanet.com
  com.sun.am.policy.agents.config.cookie.domain.list=
  # user id returned if accessing global allow page and not authenticated
  com.sun.am.policy.agents.config.anonymous_user=anonymous
  # Enable/Disable REMOTE_USER processing for anonymous users
  # true | false
  com.sun.am.policy.agents.config.anonymous_user.enable=false
  # Not enforced list is the list of URLs for which no authentication is
  # required. Wildcards can be used to define a pattern of URLs.
  # The URLs specified may not contain any query parameters.
  # Each service have their own not enforced list. The service name is suffixed
  # after "# com.sun.am.policy.agents.notenforcedList." to specify a list
  # for a particular service. SPACE is the separator between the URL.
  com.sun.am.policy.agents.config.notenforced_list = SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/UI/* SERVER_PROTO://SERVER_HOST:SERVER_PORTCONSOLE_DEPLOY_URI/* SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/login_images/* SERVER_PROTO://SERVER_HOST:SERVER_PORT/docs* SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/namingservice SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/sessionservice SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/loggingservice SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/profileservice SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/policyservice SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/config* SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/js/* SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/css/* SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/authservice SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/SAMLAwareServlet SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/SAMLSOAPReceiver SERVER_PROTO://SERVER_HOST:SERVER_PORTSERVER_DEPLOY_URI/SAMLPOSTProfileServlet
  # Boolean attribute to indicate whether the above list is a not enforced list
  # or an enforced list; When the value is true, the list means enforced list,
  # or in other words, the whole web site is open/accessible without
  # authentication except for those URLs in the list.
  com.sun.am.policy.agents.config.notenforced_list.invert = false
  # Not enforced client IP address list is a list of client IP addresses.
  # No authentication and authorization are required for the requests coming
  # from these client IP addresses. The IP address must be in the form of
  # eg: 192.168.12.2 1.1.1.1
  com.sun.am.policy.agents.config.notenforced_client_ip_list =
  # Enable POST data preservation; By default it is set to false
  com.sun.am.policy.agents.config.postdata.preserve.enable = false
  # POST data preservation : POST cache entry lifetime in minutes,
  # After the specified interval, the entry will be dropped
  com.sun.am.policy.agents.config.postcache.entry.lifetime = 10
  # Cross-Domain Single Sign On URL
  # Is CDSSO enabled.
  com.sun.am.policy.agents.config.cdsso.enable=false
  # This is the URL the user will be redirected to for authentication
  # in a CDSSO Scenario.
  com.sun.am.policy.agents.config.cdcservlet.url =
  # Enable/Disable client IP address validation. This validate
  # will check if the subsequent browser requests come from the
  # same ip address that the SSO token is initially issued against
  com.sun.am.policy.agents.config.client_ip_validation.enable = false
  # Below properties are used to define cookie prefix and cookie max age
  com.sun.am.policy.agents.config.profile.attribute.cookie.prefix = HTTP_
  com.sun.am.policy.agents.config.profile.attribute.cookie.maxage = 300
  # Logout URL - application's Logout URL.
  # This URL is not enforced by policy.
  # if set, agent will intercept this URL and destroy the user's session,
  # if any. The application's logout URL will be allowed whether or not
  # the session destroy is successful.
  com.sun.am.policy.agents.config.logout.url=
  # Any cookies to be reset upon logout in the same format as cookie_reset_list
  com.sun.am.policy.agents.config.logout.cookie.reset.list =
  # By default, when a policy decision for a resource is needed,
  # agent gets and caches the policy decision of the resource and
  # all resource from the root of the resource down, from the Access Manager.
  # For example, if the resource is http://host/a/b/c, the the root of the
  # resource is http://host/. This is because more resources from the
  # same path are likely to be accessed subsequently.
  # However this may take a long time the first time if there
  # are many many policies defined under the root resource.
  # To have agent get and cache the policy decision for the resource only,
  # set the following property to false.
  com.sun.am.policy.am.fetch_from_root_resource = true
  # Whether to get the client's hostname through DNS reverse lookup for use
  # in policy evaluation.
  # It is true by default, if the property does not exist or if it is
  # any value other than false.
  com.sun.am.policy.agents.config.get_client_host_name = true
  # The following property is to enable native encoding of
  # ldap header attributes forwarded by agents. If set to true
  # agent will encode the ldap header value in the default
  # encoding of OS locale. If set to false ldap header values
  # will be encoded in UTF-8
  com.sun.am.policy.agents.config.convert_mbyte.enable = false
  #When the not enforced list or policy has a wildcard '*' character, agent
  #strips the path info from the request URI and uses the resulting request
  #URI to check against the not enforced list or policy instead of the entire
  #request URI, in order to prevent someone from getting access to any URI by
  #simply appending the matching pattern in the policy or not enforced list.
  #For example, if the not enforced list has the value http://host/*.gif,
  #stripping the path info from the request URI will prevent someone from
  #getting access to http://host/index.html by using the URL http://host/index.html?hack.gif.
  #However when a web server (for exmample apache) is configured to be a reverse
  #proxy server for a J2EE application server, path info is interpreted in a different
  #manner since it maps to a resource on the proxy instead of the app server.
  #This prevents the not enforced list or policy from being applied to part of
  #the URI below the app serverpath if there is a wildcard character. For example,
  #if the not enforced list has value http://host/webapp/servcontext/* and the
  #request URL is http://host/webapp/servcontext/example.jsp the path info
  #is /servcontext/example.jsp and the resulting request URL with path info stripped
  #is http://host/webapp, which will not match the not enforced list. By setting the
  #following property to true, the path info will not be stripped from the request URL
  #even if there is a wild character in the not enforced list or policy.
  #Be aware though that if this is set to true there should be nothing following the
  #wildcard character '*' in the not enforced list or policy, or the
  #security loophole described above may occur.
  com.sun.am.policy.agents.config.ignore_path_info = false
  # Override the request url given by the web server with
  # the protocol, host or port of the agent's uri specified in
  # the com.sun.am.policy.agents.agenturiprefix property.
  # These may be needed if the agent is sitting behind a ssl off-loader,
  # load balancer, or proxy, and either the protocol (HTTP scheme),
  # hostname, or port of the machine in front of agent which users go through
  # is different from the agent's protocol, host or port.
  com.sun.am.policy.agents.config.override_protocol =
  com.sun.am.policy.agents.config.override_host =
  com.sun.am.policy.agents.config.override_port = true
  # Override the notification url in the same way as other request urls.
  # Set this to true if any one of the override properties above is true,
  # and if the notification url is coming through the proxy or load balancer
  # in the same way as other request url's.
  com.sun.am.policy.agents.config.override_notification.url =
  # The following property defines how long to wait in attempting
  # to connect to an Access Manager AUTH server.
  # The default value is 2 seconds. This value needs to be increased
  # when receiving the error "unable to find active Access Manager Auth server"
  com.sun.am.policy.agents.config.connection_timeout =
  # Time in milliseconds the agent will wait to receive the
  # response from Access Manager. After the timeout, the connection
  # will be drop.
  # A value of 0 means that the agent will wait until receiving the response.
  # WARNING: Invalid value for this property can result in
  # the resources becoming inaccessible.
  com.sun.am.receive_timeout = 0
  # The three following properties are for IIS6 agent only.
  # The two first properties allow to set a username and password that will be
  # used by the authentication filter to pass the Windows challenge when the Basic
  # Authentication option is selected in Microsoft IIS 6.0. The authentication
  # filter is named amiis6auth.dll and is located in
  # Agent_installation_directory/iis6/bin. It must be installed manually on
  # the web site ("ISAPI Filters" tab in the properties of the web site).
  # It must also be uninstalled manually when unintalling the agent.
  # The last property defines the full path for the authentication filter log file.
  com.sun.am.policy.agents.config.iis6.basicAuthentication.username =
  com.sun.am.policy.agents.config.iis6.basicAuthentication.password =
  com.sun.am.policy.agents.config.iis6.basicAuthentication.logFile = C:/Sun/Access_Manager/Agents/2.2/debug/Identifier_1414639615/amAuthFilter

  If the agent doesnot start properly you would always get redirected to com.sun.am.policy.agents.config.accessdenied.url , if thats not specified you will get a 403.
  For the agent itself check that the naming.url is correct. the agent username and passwords are correct, and see that the user has priviledges to write to the agent log files. Apart from these post the windows event logs.

• Policy Agent 2.2, IIS 6.0, CDSSO and redirects after authentication

  Hi
  I've got a problem where a HTTP/1.1 200 and 302 are returned by the Policy Agent / Application, after the Javascripted POST by the CDCServlet content is performed.
  The expected functionality is that the user is authenticated with the AM, the CDC Servlet serves the JavaScript page that will do a POST to the Policy Agent. The Policy Agent should then do what it needs to do with the POST, and forward request to the Application. The Application then does what it needs to do, and in this case, serves a HTTP/1.1 302 for redirection back to the browser.
  However, it seems that the Policy Agent might be returning a HTTP/1.1 200, and setting the iPlanetDirectoryPro cookie, quickly followed by the HTTP/1.1 302 and the setting of whatever cookies it wants to set.
  The Policy Agent should be respecting the return code of the Application. This problem does not appear when run against the Policy Agent for the Sun ONE Web Server.
  Wondering if anyone has seen this before?
  Here is sanitized output from a trace on the POST and resulting response.
  POST /oslp/?sunwMethod=GET HTTP/1.1
  Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/x-shockwave-flash, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, */*
  Accept-Language: en-au
  Content-Type: application/x-www-form-urlencoded
  Accept-Encoding: gzip, deflate
  User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; .NET CLR 2.0.50727)
  Host: sco88342744.corp.qed.qld.gov.au
  Content-Length: 3496
  Connection: Keep-Alive
  Cache-Control: no-cache
  X-ProcessAndThread: IEXPLORE.EXE [904; 2908]
  LARES=<snip>
  HTTP/1.1 200 OK
  Date: Wed, 16 May 2007 22:25:42 GMT
  Server: Microsoft-IIS/6.0
  Set-Cookie: iPlanetDirectoryPro=AQIC5wM2LY4Sfcz8tCfJ96AXxjIgRzuZJDgE7gMeTO0iIS4%3D%40AAJTSQACMDQ%3D%23;Path=/
  HTTP/1.1 302 Found
  Date: Wed, 16 May 2007 22:25:42 GMT
  Server: Microsoft-IIS/6.0
  X-AspNet-Version: 1.1.4322
  Location: /oslp/user/signon.aspx
  Set-Cookie: ASP.NET_SessionId=lh4sus55y1iy2r5514onnjuj; path=/
  Cache-Control: no-cache
  Pragma: no-cache
  Expires: -1
  Content-Type: text/html; charset=utf-8
  Content-Length: 139
  <html><head><title>Object moved</title></head><body>
  <h2>Object moved to <a href='/oslp/user/signon.aspx'>here</a>.</h2>
  </body></html>

  Hi,
  we had the same problem, but we got support
  from readme.txt
  Bug#: 6789020
  Agent type: All Agents
  Description: In CDSSO mode non enforced POST requests cannot be accessed
  Bug#: 6736820
  Agent type: IIS 6 Agent
  Description: IIS 6 agent doesn't work properly with ASP pages in CDSSO mode
  Both bugs should be fixed in this version:
  Sun Java System Web Agents 2.2-02 hotpatch2

• Policy Agent Install - Tomcat problems

  Hello,
  After trying to install policy agent on many different OS with no success, I had to finally ask here:
  I followed the instructions and did the following on Debian, Fedora, and Win server 2003:
  1.downloaded the policy agent for tomcat
  2.stopped tomcat
  3.decompressed the j2ee agents folder to the root of the system,
  4 run the agentadmin -install
  5. put the agentapp folder in the webapps directory
  6. started tomcat...
  get the same error on three OS about it not finding AMRealm,
  I found someone pointing out that setagentclasspath could fix this,
  but I see all the classpaths there, so I went I start moving some classes to the tomcat/lib dir
  then the AMRealm error went away but many others came in.
  What I'm doing wrong !!

  I'm having the same problem with windows 2003 server Enterprise Edition. (installer complains about web server instance directory, is not 6.0 or 6.1...)
  You said that "Policy Agent 2.1 does *NOT* work with MS Windows 2003 Server Enterprise edition". But does Policy Agent 2.2 work with Windows 2003 Server Enterprise edition?
  Thanks for your help!!!

• Building OpenSSO Policy Agent 2.2 for Apache 2.x

  Hi,
  I've been trying to build OpenSSO policy agent using sources from opensso_agentbranch22 on WINNT for Apache 2.0 web server. The reason I can't use the pre-build binary is because we are trying to customize the agent to integrate with another SSO app which sends us data. The compilation itself seems to work OK. But the libamapc2.dll (Apache module dll) created seems to be only 24-26k in size vs the 700k size in the binary distributed by Sun.
  Apache fails to start when this agent is installed, saying that the dll is invalid. Am I missing something in my compilation and linking process? I'm using VS 6 for the cl and link, Ant and Cygwin.
  Any input from the Sun OpenSSO gurus is greatly appreciated.

  I can show a snapshot from the Depends tool that clearly shows that amsdk.dll is dynamically linked. It creates all sorts of issues with Apache 2.0 as it doesn't like the dynamic linking. Until I changed the Makefile in the am directory to use the static library, I could not get my libamapc2.dll to match the libamapc2.dll distributed by Sun. Even now there are issues with libnspr4 and msvcrt.dll. Apache crashes as soon as it loads the libamapc2.dll and the issue has been narrowed down to the strlen() method. This method is used for logging messages by the agent.
  I wish Sun maintained a copy of the 3rd party libs they use to build the agent in their CVS instead of asking us to fetch those libraries from another website, in which case libraries may not correspond 1:1.

• English release notes for AIR 3.4 missing

  On the Adobe web page for AIR:
  http://www.adobe.com/support/documentation/en/air/releasenotes.html
  the English release notes for AIR 3.4 are no longer available. There is a 404 error.
  http://helpx.adobe.com/en/flash-player/release-note/fp_114_air_34_release_notes.html

  Thanks for reporting, it's fixed now.
  -Pahup

• 6233 RM-145: 05.10 Release notes?

  According to some discussion forums Nokia has released a new version of 6233 firmware. Does anyone have release notes/improvements listed for this version?
  Thanks,
  Antti

  Before posting in this thread please bear in mind complete firmware change notes are the property of Nokia service centres and should not be posted on this board.
  Users are free to post changes / improvements they themselves have experienced after a firmware update.
  Thanks
  Moderator
  Nokia Discussions
  Useful Links:
  Nokia Customer Support
  Nokia Service Points

• Release notes for Smartforms 4.7

  Dear Friends,
    If anybody can provide release notes on Smartforms for SAP 4.7
  Thanks in Advance.........
  Message was edited by:
          Ashish Kansara

  Hi
  Refer this link for ECC 5.0 & 6.0:
  http://help.sap.com/saphelp_erp2005/helpdata/en/43/68805bb88f297ee10000000a422035/frameset.htm
  A similar post
  /message/1783778#1783778 [original link is broken]
  <b>You can go through the Release Notes for each of the versions after 4.6B (4.6C, 4.7 , ECC 5.0 & ECC 6.0)
  http://help.sap.com/saphelp_erp2005/helpdata/en/43/688055b88f297ee10000000a422035/content.htm
  For 4.7 SAP R/3 http://help.sap.com/saphelp_47x200/helpdata/en/12/9d78d6d8f74043a32e82be87e433b7/content.htm</b>
  Release Notes on SAP Web Application Server 6.30
  http://help.sap.com/saphelp_47x200/helpdata/en/2b/64fc3e9d3b6927e10000000a114084/content.htm
  http://solutionbrowser.erp.sap.fmpmedia.com/
  How to create a New smartfrom, it is having step by step procedure
  http://sap.niraj.tripod.com/id67.html
  Here is the procedure
  1. Create a new smartforms
  Transaction code SMARTFORMS
  Create new smartforms call ZSMART
  2. Define looping process for internal table
  Pages and windows
  First Page -> Header Window (Cursor at First Page then click Edit -> Node -> Create)
  Here, you can specify your title and page numbering
  &SFSY-PAGE& (Page 1) of &SFSY-FORMPAGES(Z4.0)& (Total Page)
  Main windows -> TABLE -> DATA
  In the Loop section, tick Internal table and fill in
  ITAB1 (table in ABAP SMARTFORM calling function) INTO ITAB2
  3. Define table in smartforms
  Global settings :
  Form interface
  Variable name Type assignment Reference type
  ITAB1 TYPE Table Structure
  Global definitions
  Variable name Type assignment Reference type
  ITAB2 TYPE Table Structure
  4. To display the data in the form
  Make used of the Table Painter and declare the Line Type in Tabstrips Table
  e.g. HD_GEN for printing header details,
  IT_GEN for printing data details.
  You have to specify the Line Type in your Text elements in the Tabstrips Output options.
  Tick the New Line and specify the Line Type for outputting the data.
  Declare your output fields in Text elements
  Tabstrips - Output Options
  For different fonts use this Style : IDWTCERTSTYLE
  For Quantity or Amout you can used this variable &GS_ITAB-AMOUNT(12.2)&
  5. Calling SMARTFORMS from your ABAP program
  REPORT ZSMARTFORM.
  Calling SMARTFORMS from your ABAP program.
  Collecting all the table data in your program, and pass once to SMARTFORMS
  SMARTFORMS
  Declare your table type in :-
  Global Settings -> Form Interface
  Global Definintions -> Global Data
  Main Window -> Table -> DATA
  Written by : SAP Hints and Tips on Configuration and ABAP/4 Programming
  http://sapr3.tripod.com
  TABLES: MKPF.
  DATA: FM_NAME TYPE RS38L_FNAM.
  DATA: BEGIN OF INT_MKPF OCCURS 0.
  INCLUDE STRUCTURE MKPF.
  DATA: END OF INT_MKPF.
  SELECT-OPTIONS S_MBLNR FOR MKPF-MBLNR MEMORY ID 001.
  SELECT * FROM MKPF WHERE MBLNR IN S_MBLNR.
  MOVE-CORRESPONDING MKPF TO INT_MKPF.
  APPEND INT_MKPF.
  ENDSELECT.
  At the end of your program.
  Passing data to SMARTFORMS
  call function 'SSF_FUNCTION_MODULE_NAME'
  exporting
  formname = 'ZSMARTFORM'
  VARIANT = ' '
  DIRECT_CALL = ' '
  IMPORTING
  FM_NAME = FM_NAME
  EXCEPTIONS
  NO_FORM = 1
  NO_FUNCTION_MODULE = 2
  OTHERS = 3.
  if sy-subrc <> 0.
  WRITE: / 'ERROR 1'.
  MESSAGE ID SY-MSGID TYPE SY-MSGTY NUMBER SY-MSGNO
  WITH SY-MSGV1 SY-MSGV2 SY-MSGV3 SY-MSGV4.
  endif.
  call function FM_NAME
  EXPORTING
  ARCHIVE_INDEX =
  ARCHIVE_INDEX_TAB =
  ARCHIVE_PARAMETERS =
  CONTROL_PARAMETERS =
  MAIL_APPL_OBJ =
  MAIL_RECIPIENT =
  MAIL_SENDER =
  OUTPUT_OPTIONS =
  USER_SETTINGS = 'X'
  IMPORTING
  DOCUMENT_OUTPUT_INFO =
  JOB_OUTPUT_INFO =
  JOB_OUTPUT_OPTIONS =
  TABLES
  GS_MKPF = INT_MKPF
  EXCEPTIONS
  FORMATTING_ERROR = 1
  INTERNAL_ERROR = 2
  SEND_ERROR = 3
  USER_CANCELED = 4
  OTHERS = 5.
  if sy-subrc <> 0.
  MESSAGE ID SY-MSGID TYPE SY-MSGTY NUMBER SY-MSGNO
  WITH SY-MSGV1 SY-MSGV2 SY-MSGV3 SY-MSGV4.
  endif.
  check this:
  http://help.sap.com/saphelp_nw04s/helpdata/en/a5/de6838abce021ae10000009b38f842/content.htm
  http://www.sapbrain.com/ARTICLES/TECHNICAL/SMARTFORMS/smartforms.html
  http://www.sapbrain.com/TUTORIALS/TECHNICAL/SMARTFORMS_tutorial.html
  check this linkls------>
  https://www.sdn.sap.com/irj/sdn/collaboration
  http://help.sap.com/saphelp_erp2004/helpdata/en/a9/de6838abce021ae10000009b38f842/frameset.htm
  http://www.sap-img.com/smartforms/sap-smart-forms.htm
  http://www.sap-img.com/smartforms/sap-smart-forms.htm
  Reward points for useful Answers
  Regards
  Anji
  Message was edited by:
          Anji Reddy Vangala

• MHM-5.1.0-1958177 release notes

  I see MHM-5.1.0-1958177 released on 9/9 with vCenter Server 5.5 Update 2.
  I don't see any release notes or documentation for this build; any information on what's new?
  Hopefully support for 2012 R2 Hyper-V?

  Hi,
  Please, fillow this link for all resources for this release of Multi-Hypervisor Manager (including Release Notes).
  Version 2012 R2 of Hyper-V is not yet supported in this release (it is a minor release addressing just high-priority issues with the product).
  Let me know if you have further questions.
  Regards,