POP authentication without username/password ??

Is there a way to disable authentication (authentication/password) in POP (incoming mails). Our mail client does not provide user info for authentication.
Sunil.

Got it. Uncheck the access login checkbox in IMAP.

Similar Messages

OAM 11gR2 Authentication using username/password/additional ldap field

I want to add additional credential parameter along with username and password to be validated against LDAP.
Is there any out of the box solution for authentication using username/password/additional ldap field in OAM 11gR2?
This solutions exist in 10g and could not find any OOB feature in 11g.

Do you need to accept additional parameter from user via login form & then use it in credential mapping step
Not sure if %% syntax would work .. havent tried it. next option is to develop custom authentication plugin
Additional ldap attribute against static value
If you need to add additional ldap attribute (check against static value) that you can specify in LDAP search filter in "User Identification plugin" configuration
Take a look at "MTLDAPPlugin" under custom authentication modules
Hope this helps

Howto access Apex through dbms_epg without username/password ?

I had just setup HTMLDB using dbms_epg (htmldb_epg_config.sql).
Now i'm unable to access http://localhost:port/htmlb via http without username/password.
Granting anonymous access to xdb repository doesn't help. I'm able to access http://localhost:port without username/password, but then i try http://localhost:port/htmlb - no go.
How can i enable http access to http://localhost:port/htmlb without username/password ?

We are using 10.2.0.2 EE Edition and decided to try Apex without use of standalone Apache.
I've already done that while running dbms_epg_config.sql
declare
l_cfg xmltype;
begin
dbms_xdb.cfg_update(xmltype.appendchildxml(dbms_xdb.cfg_get(),'/xdbconfig/sysconfig/protocolconfig/httpconfig', xmltype('<allow-repository-anonymous-access xmlns="http://xmlns.oracle.com/xdb/xdbconfig.xsd">true</allow-repository-anonymous-access>')));
exception
when others then
select updatexml(dbms_xdb.cfg_get(),'/xdbconfig/sysconfig/protocolconfig/httpconfig/allow-repository-anonymous-access/text()','true') into l_cfg from dual;
dbms_xdb.cfg_update( l_cfg );
commit;
dbms_xdb.cfg_refresh;
end;
I'm actually able to access repository without supply username/password.
The troubles begin as sun as i try to access /htmldb - it wants password for HTMLDB_PUBLIC_USER account before i can proceed.

Connecting Using SSL Authentication Without Username and Password

Hi,
We're on RedHat Linux 4.0 using 10.2.0.3 (server/client). We're trying to figure out a way to connect to the database using instantclient and JDBC-OCI and SSL authentication without using a username or password. According to the documentation this should be possible but no sample code is given.
LD_LIBRARY_PATH is set /opt/app/oracle/product/10.2.0/db_1/lib:/usr/lib:/home/oracle/instantclient where the instantclient was installed from the 10.2.0.1 client software
and we are using JDK version 1.6.0_03.
We're also referencing the following paper:
http://www.oracle.com/technology/tech/java/sqlj_jdbc/pdf/wp-oracle-jdbc_thin_ssl_2007.pdf
We've got our client and server wallets configured and the sample code we tried looks like this:
import java.sql.*;
import java.sql.*;
import java.io.*;
import java.util.*;
import oracle.net.ns.*;
import oracle.net.ano.*;
import oracle.jdbc.*;
import oracle.jdbc.pool.*;
import java.security.*;
import oracle.jdbc.pool.OracleDataSource;
public static void main(String[] argv) throws Exception {
DriverManager.registerDriver(new oracle.jdbc.driver.OracleDriver());
Security.addProvider(new oracle.security.pki.OraclePKIProvider());
System.setProperty("oracle.net.tns_admin", "/opt/app/oracle/product/10.2.0/db_1/network/admin");
String url = "jdbc:oracle:thin:@orcl";
java.util.Properties props = new java.util.Properties();
props.setProperty("oracle.net.authentication_services","(TCPS)");
props.setProperty("javax.net.ssl.trustStore",
"/opt/app/oracle/product/10.2.0/db_1/admin/wallet/server/cwallet.sso");
props.setProperty("javax.net.ssl.trustStoreType","SSO");
props.setProperty("javax.net.ssl.keyStore", "/opt/app/oracle/product/10.2.0/db_1/admin/wallet/client/cwallet.sso");
props.setProperty("javax.net.ssl.keyStoreType","SSO");
props.put ("oracle.net.ssl_version","3.0");
props.put ("oracle.net.wallet_location", "(SOURCE=(METHOD=file)(METHOD_DATA=(DIRECTORY=/opt/app/oracle/product/10.2.0/db_1/admin/wallet/client)))");
System.out.println("At Here...");
OracleDataSource ods = new OracleDataSource();
//ods.setUser("scott");
//ods.setPassword("tiger");
ods.setURL(url);
ods.setConnectionProperties(props);
System.out.println("At Here1...");
Connection conn = ods.getConnection();
System.out.println("At Here2...");
Statement stmt = conn.createStatement();
ResultSet rset = stmt.executeQuery("select 'Hello Thin driver SSL "
+ "tester ' from dual");
while (rset.next())
System.out.println(rset.getString(1));
rset.close();
stmt.close();
conn.close();
When this code is compiled and run, the following error is thrown:
Exception in thread "main" java.sql.SQLException: invalid arguments in call
at oracle.jdbc.driver.DatabaseError.throwSqlException(DatabaseError.java:112)
If a username and password is supplied, the code works. So does anyone have a working of using SSL to authenticate without supplying username/password?
Thanks
mohammed

Hi,
I just solved this. I noticed from another thread that I was not using the OCI driver (see below):
String url = "jdbc:oracle:thin:@pki14";
Once I changed it to:
String url = "jdbc:oracle:oci:@pki14";
The code worked perfectly. One more setting that you'll have to do is to create the user you want to connect as externally:
create user scott identified externally as
'CN=acme, OU=development, O=acme, C=US';
grant connect,create session to scott;
Note that the DN should be the same as the SSL certificate that you created in your wallet.
hth
mohammed

Authentication with username/password *OR* certificates?

Hi folks,
we have to authenticate users either via username/password combo or via
certificate.
Of course, by using SSL in both cases. Is this possible with WLS 6.0? Since
I've read
that I have to configure WLS explicitly to support client certificates, I'm
rather suspiscious
if this will work.
Any ideas anybody?
Regards,
Gerhard

You can use certificates for authentication if you do the following:
1) you need to implement a CertAuthenticator which, given a
certificate from SSL, extracts a user name (for example, get
the email address from the certificate and return the name
portion - [email protected] might use foo as the user name)
2) in your realm, you must have a user for the user name in
the certificate (so, for the example above, you need to have
a user named "foo" in the realm)

Auto_master, mounting afp shares without username/password in plain text?

Hi,
i'm trying to mount afp-shares from a Synology Diskststation and an Airport Time Capsule via the automountd.
I've modified the /etc/auto_master as follows:
# Automounter master map
+auto_master            # Use directory service
/net                    -hosts          -nobrowse,hidefromfinder,nosuid
/home                   auto_home       -nobrowse,hidefromfinder
/Network/Servers        -fstab
/-                      -static
/Synology               /etc/auto_afp   -nosuid
I've created the /etc/auto_afp:
iTunes -fstype=afp afp://"Username":"Password"@DiskStation.local/iTunes
Data -fstype=afp afp://"Username":"Password"@AirPort.local/Data
Providing Username and Password works fine, but is there a way to make this work without the Username and Password in plain text?
Thank you.

An applescript application set as a user login item should be a better choice.
I'm just about to work this out for an SMB mount of a users Windows home (augmented AFP homes are breaking preventing the 'Mount UNC path' option in the AD plugin).
Post back if you still want info.
D

Publish ESB without username/password of connection using Jdeveloper

Hi,
I have used jdeveloper10.1.3.3 to developer BPEL Process and ESB services.
I have created a Application Server Connection in jdeveloper with hostname, url path and RMI Port right, but without username and password.
I have created a Integration Server Connection mapping the connection above. I tested this Integration Server and the result was:
Application Server: FAILED
BPEL Process Manager Server: OK
ESB Server: OK
After the test of Integration Serve Connection , I tried register my ESB project using the action "Register witn ESB" from Jdeveloper and the result was the error:
"Reload services from ESB Server failed while trying to query service definitions from server."
After the registry, I saw in the ESB Crontol that the ESB Service was publish.
Question:
Is possible resgistry a ESB service with URL connection correct, but without username and password of Application Server Conncetion from Jdeveloper?
Is there any configuration for validat of username and password of Application Server Connection in the publish of ESB service?
Is a bug of jdeveloper?
Thanks,
Fabrício.

Hello. I'm pretty sure you cannot register an ESB with no username/password - it uses the username/password information in the integration server connection properties to login and deploy. We were surprised that BPEL uses ant build properties so you can specify the name/password, ESB does not - it only uses the integration server connection info.
In 10.1.3.4 (which we don't have yet) the ability to use ant for ESB deploys has been added.
Daren
Edited by: djcasey on Jan 30, 2009 11:12 AM

Goto Responsiblity Page without Username/Password !!

Hi all,
In 11.5.10.2, Is it possible to go to the Responsibility page without issuing the username and password?
In 10g Application server we are able to do this by adding the following line in
formsweb.cfg under ORACLE_HOME/forms90/server:
[example]
userid= test/test@db_name
After saving this file we restart the forms service.
see the url below:
url : http://host-name.domain-name/forms90/f90servlet?config=[example]&form=<location_of_main_form>.fmx
Now we are able to access the forms and it wont ask for username/password.
Is it poosible to do the same in 11.5.10.2 ?
Thanks,
Mahesh

Mahesh,
There is no supported way to pass the application username/password and skip the main login page. You can pass the username only in the application URL by adding "username=<username>" to the application URL.
What is the point of accessing the responsibility page without entering the username/password?
Regards,
Hussein

Connection without username, password or database name

I'm trying to find an automated way (for a given dbms) to check whether a server name and port number correctly identifies that the given dbms is running at that location.
For example, in MySQL, I can do something like:
DriverManager.getConnection("jdbc:mysql://" + serverName + ":" + port + "/");
So, I havent specified a username, password or database name. And this works (at least on my installation) by simply checking for an exception.
My question is: Can I always rely on this for MySQL or does it depend on how the MySQL dbms is configured?
What about MS SQL Server and Oracle?
Any help, much appreciated.

Your question was "Can I always rely on this for MySQ"No it wasn't. My question was:
"Can I always rely on this for MySQL or does it depend on how the MySQL dbms is configured?"
Its the bit between the "My question is: " and the question mark. I understand that if you chop the question in half then "no" is a valid answer but then thats not the same question.
and the answer is[i] No! If your abilitydepends on the MySQL configuration then the answer to
your question is still No because it means you
can't always rely on it.
Wrong again!
If I was to ask "does it depend on how the MySQL dbms is configured?" then the answer is yes.
I think "No, yes" is a better answer to the question. Although I think masijade answer is best.
But anway, thanks for your constructive reply.

OSB Authentication using username and password (plaintext or digest)

Hi,
I want to implement a simple osb authentication using username/password (plain text or digest) , so that client required to provide username password token in soap header (message Level security) to access our webservices. I have read some of articles which shows how to create custom ws policy, but received following error during deployment.
weblogic.wsee.ws.init.WsDeploymentException: The WebLogic Server 9.x-style policy is not supported in JAX-WS web services
Please note - I can not install OWSM as part of my requirement
=======
<?xml version="1.0"?>

<wsp:Policy xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"
xmlns:wssp="http://www.bea.com/wls90/security/policy"
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"
xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
xmlns:wls="http://www.bea.com/wls90/security/policy/wsee#part">

<wssp:Identity>
<wssp:SupportedTokens>

<wssp:SecurityToken IncludeInMessage="true"
TokenType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#UsernameToken">
<wssp:UsePassword Type="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-username-token-profile-1.0#PasswordDigest"/>
</wssp:SecurityToken>
</wssp:SupportedTokens>
</wssp:Identity>
</wsp:Policy>

You can use the default Auth.xml WS policy in OSB and be able implement the authentication using username and plain text password.
Just assign the Auth.xml on the Request Policies of the Proxy Service (under Policies).
Then use any user credentials that has access to the domain for testing.
If you want to restrict access for each operation then in the Security tab, under Message Access Control, specify a Role.
Then in the OSB > Security Configuration, create the appropriate role with the specific role conditions like User is User1 or User is User2 etc ...
Hope this helps.
Thanks,
Patrick

Frontrow chokes on iphoto galleries protected with username password

When I try to select in Frontrow a web gallery (as they are listed on the bottom on the selection list) which is protected by a username and password the screen turns black, after a few seconds the list comes back and is blocked. Again after a few seconds an error message pops up telling to press pause/play which brings you back to the main menu.
Galleries without username password work fine and also the tumbnails left of the protected gallery names in the list are correct.

adrenalin. I couldn't disagree more about the AppleTV still being a useless device.
it USED TO BE a brick in our living room, the only time it got turned on was when the Comcast remote's code became liked by the AppleTV and turned it on every time I turned on the cable box.
However after this update... I must say, the thing rocks. It's not cheaper to rent movies at my local store, it's certainly not more convenient, and the integration with my iPhone is insane. I just rented a movie last night after the update. And have tested moving it between computer, tv, and phone, all without a hitch. This is going to be awesome.
My complaint with the .mac settings is an easy fix. Hopefully in the next incremental update. Apple?
Now what I want to know is, once the iPhone SDK is released, who out there is going to be first to get me a third party app that turns my iPhone into a full fledged bluetooth remote for my appleTV. Can't wait to be able to use a full keyboard.

Is it possible to have an AP that doesn't ask for username & password?

Hi,
I have been asked to take some APs to factory default and leave them without username & password.
I don't have the devices with me at the moment and I don't remember if that is possible, as long as I remember when you take them to factory default the username and passwords are set to Cisco. But actually I need to leave them without username and password.
By the way the APs are AIR-LAP1242!
Any help is much appreciated.

So in conclusion it is possible, right?
Yes and no. Yes, it's possible. No, it's not possible just by simply doing a factory default/factory reset. This solution is a two-step process.
After leaving the AP whithout user/pass when I Telnet/SSH the IP address of the AP, I won't be prompt to type username/password, right?
Again, yes and no. Yes, you WON'T be prompted. NO, you CANNOT remote into a Cisco appliance (Telnet or SSH) UNLESS you have a username and password.

Testing a secured Web Service (Basic -Username/Password)

Hello,
I configured security for a custom web service using [this |https://www.sdn.sap.com/irj/scn/index?rid=/library/uuid/e08627de-9816-2a10-02b7-cbd60f7e4b2c&overridelayout=true] . I configured section
3.2 Configuring Document Authentication
Basic (Username/Password)
How should I go about testing this. I tried using Web Service Navigator, I get this error:
00118565098B00220000011400001D8C00047182FEC71535 : Authentication using a wsse:Username token failed. The error was com.sap.security.core.ws.wss.NoSecurityHeaderException No wsse:Security header has been defined for role soap:finalActor. Please verify the policy configuration..

Please download tutorial bundle from:
http://java.sun.com/javaee/5/docs/tutorial/information/download.html
some details about it:
http://docs.sun.com/app/docs/doc/819-3669/gfiud?a=view
You can try examples after downloading zip file :
The zip file also contains a documentation e.g. pdf file.
There you can find more info.
Here is one chapter from doc.
Example: Basic Authentication with JAX-WS
This section discusses how to configure a JAX-WS-based web service for HTTP basic
authentication. When a service that is constrained by HTTP basic authentication is requested,
the server requests a user name and password from the client and verifies that the user name
and password are valid by comparing them against a database of authorized users.
Regards Miro

CFSchedule : Username & Password Scope

When using username and password attributes of cfschedule (or in CFAdmin), what scope or how do I reference them (username and password)? Do they come in as attributes or form variables?
Thank you.

According to the documentation, the username and password is used for HTTP authentication. If you are using basic authentication, the username/password would be available in the cgi scope
Username : #cgi.auth_user#<br>
Password : #cgi.auth_password#<br>

Logon failure with username/password authentication in WLE 5.1

Hi,
I have WLE 5.1 configured and running on a Win2K system. I am able to
build and run the simpapp sample program. I am also able to build the
interceptor_cxx sample and run with all interceptors other than the
security interceptor. What I realised in this case was that the
PersonQueryClient did not perform any login of a user from which the
security interceptor could extract user ID information (have I missed
something? I am a WLE and CORBA newbie) so I modified the ubb config
file to define SECURITY as USER_AUTH and add the AUTHSVC, modified
personqueryclientc.cpp to get access to the SecurityLevel2 principal
authenticator, built the app, created a user with the tpussradd command,
and ran the app (the AUTHSVC successfully starts).
The Tobj::AuthType returned by the get_auth_type method of the
PrincipalAuthenticator is Tobj::TOBJ_APPAUTH as I expect. I call the
logon method with the parameters (user_name, argv[0], sys_password,
password, 0) where user_name is the same as the user I created with the
tpusradd command, argv[0] is personqueryclient (I've tried tpusradd'ing
the user both with the "-c personqueryclient" argument and without),
sys_password is the password I specified when tmloadcf was run against
the modified ubb config file, password is the password I specified when
I ran tpusradd. The logon always fails returning
Security::SecAuthFailure. In the ULOGxxxx file the following message is
displayed:
181605.NUMBAT!TMSYSEVT.2180: LIBTUX_CAT:1484: WARN: .SysClientSecurity:
User tbartley on SITE1 authentication failure
I've tried running in the following manners all with the same result:
1. With or without the security_cxx interceptor registered
2. With the user in or not in a group
3. With the the user created using the "-c personqueryclient" arg to
tpusradd or not
If I change the security level down to APP_PW then everything works and
the security_cxx interceptor sees a client name of personqueryclient and
a username of personqueryclient. The logon fails if I use a sys_password
other than the one specified to tmloadcf and succeeds if I use the
correct password.
Can anyone tell me what I might be doing wrong in the username/password
authentication case?
Here's the code I inserted to personqueryc.cpp to perform the logon:
// Get SecurityCurrent object
CORBA::Object_var var_security_current_oref
= bootstrap.resolve_initial_references("SecurityCurrent");
SecurityLevel2::Current_var var_security_current_ref =
SecurityLevel2::Current::_narrow(var_security_current_oref.in());
// Get the principal authenticator
SecurityLevel2::PrincipalAuthenticator_var
var_principal_authenticator_oref =
var_security_current_ref->principal_authenticator();
char user_name[100] = "";
char password[100] = "";
char sys_password[100] = "";
// Narrow to a BEA Principal Authenticator
Tobj::PrincipalAuthenticator_var v_bea_pa =
Tobj::PrincipalAuthenticator::_narrow(var_principal_authenticator_oref.in());
// See what level of logon has been turned on
Tobj::AuthType auth_type = v_bea_pa->get_auth_type();
cout << "Auth type: ";
switch (auth_type) {
case Tobj::TOBJ_APPAUTH: cout << "TOBJ_APPAUTH"; break;
case Tobj::TOBJ_SYSAUTH: cout << "TOBJ_SYSAUTH"; password[0] = '\0';
break;
case Tobj::TOBJ_NOAUTH: cout << "TOBJ_NOAUTH"; break;
default: cout << "TOBJ_<unknown>"; break;
cout << endl;
cout << "Username: ";
cin >> user_name;
switch (auth_type) {
case Tobj::TOBJ_APPAUTH: {
cout << "User password: ";
cin >> password;
// fall through
case Tobj::TOBJ_SYSAUTH: {
cout << "App password: "; cin >> sys_password;
break;
default: {
break;
// now that we've got all the data necessary, logon
Security::AuthenticationStatus status =
v_bea_pa->logon(user_name,
argv[0],
sys_password,
password,
0); // user data
cout << "Logon result: ";
switch (status) {
case Security::SecAuthSuccess: cout << "SecAuthSuccess"; break;
case Security::SecAuthFailure: cout << "SecAuthFailure"; break;
case Security::SecAuthContinue: cout << "SecAuthContinue"; break;
case Security::SecAuthExpired: cout << "SecAuthExpired"; break;
default: cout << "SecAuth<unknown>"; break;
cout << endl;
if (status != Security::SecAuthSuccess) {
cerr << "Invalid password." << endl;
exit(1);
Here are the entries I added to the ubb config file:
*RESOURCES
SECURITY USER_AUTH
AUTHSVC AUTHSVR
*SERVERS
AUTHSVR SRVGRP=SYS_GRP SRVID=6 RESTART=Y GRACE=600 MAXGEN=2 CLOPT="-A"
I do not have the WLE Security Services installed (i.e. the package
that provides SSL and crypto). Is this required? It's not clear to me
from the documentation if this is required for username/password based
authentication or not.
Thanks for any help,
Tim Bartley

Hi Michael
I am using SSL in my application. So that it asks for the certificate username
and password while startup. But now i want to mention the username and password
in weblogic.properties file itself. So that the client need not have to provide
the username and password everytime. I am using weblogic server 5.1 version.
How do i do this?
Hope my question is clear. Please help.
with regds
siva
Michael Young <[email protected]> wrote:
Hi.
It's not 100% clear to me what you are asking for. Do you want authentication
turned off for
your application? That will certainly turn off prompting for authentication
information. You
can set your ACL for your application (in your properties file) to allow
everyone to execute
it. Something like:
weblogic.allow.execute.<myApplication>=everyone
But maybe you want some kind of silent authentication so that not everyone
can execute your
app? I suppose you could pass authentication info in a cookie. I really
don't know enough
about your application, though.
I suggest you post this question in weblogic.developer.interest.security
- you have a better
chance of getting an answer there for security related questions.
Hope this helps.
Michael
siva wrote:
Hi all,
I have the following requirements. I have an application which asksfor the authentication
information like username and password at first. The application isrunning in
weblogic5.1 server. Is there a way where in weblogic.properties file,i mention
the username and password so that the application will not ask forin the browser.
please help. It's urgent.
with regds
siva--
Developer Relations Engineer
BEA Support

POP authentication without username/password ??

Similar Messages

Maybe you are looking for