Problem opening SSL url
When I am trying to open https://xxxx:50101/irj/portal, I received The page can not displayed
1) The default trace contains one error mesage and warning message.
The error message is
Category: /System/Security/SSL
Location: com.sap.engine.services.ssl
Peer certificate is not trusted or expired.
The warning message is
Category: /System/Network
Location:com.sap.engine.core.manipulator.TCPRunnableConnection.init()
Cannot get input and output streams from socket. Connection is not initialized.
[EXCEPTION]
java.io.EOFException: Connection closed by remote host.
at iaik.security.ssl.Utils.a(Unknown Source)
at iaik.security.ssl.o.b(Unknown Source)
at iaik.security.ssl.o.c(Unknown Source)
at iaik.security.ssl.r.f(Unknown Source)
at iaik.security.ssl.f.c(Unknown Source)
at iaik.security.ssl.f.a(Unknown Source)
at iaik.security.ssl.r.d(Unknown Source)
at iaik.security.ssl.SSLTransport.startHandshake(Unknown Source)
at iaik.security.ssl.SSLSocket.startHandshake(Unknown Source)
at com.sap.engine.services.ssl.factory.SSLSocket.startHandshake(SSLSocket.java:169)
at com.sap.engine.services.ssl.factory.SSLSocket.getInputStream(SSLSocket.java:287)
at com.sap.engine.core.manipulator.TCPRunnableConnection.init(TCPRunnableConnection.java:351)
at com.sap.engine.core.manipulator.TCPRunnableConnection.run(TCPRunnableConnection.java:564)
at com.sap.engine.frame.core.thread.Task.run(Task.java:64)
at com.sap.engine.core.thread.impl6.SingleThread.execute(SingleThread.java:82)
at com.sap.engine.core.thread.impl6.SingleThread.run(SingleThread.java:154)
Argument Objects: java.io.EOFException: Connection closed by remote host.
at iaik.security.ssl.Utils.a(Unknown Source)
at iaik.security.ssl.o.b(Unknown Source)
at iaik.security.ssl.o.c(Unknown Source)
at iaik.security.ssl.r.f(Unknown Source)
at iaik.security.ssl.f.c(Unknown Source)
at iaik.security.ssl.f.a(Unknown Source)
at iaik.security.ssl.r.d(Unknown Source)
at iaik.security.ssl.SSLTransport.startHandshake(Unknown Source)
at iaik.security.ssl.SSLSocket.startHandshake(Unknown Source)
at com.sap.engine.services.ssl.factory.SSLSocket.startHandshake(SSLSocket.java:169)
at com.ap.engine.services.ssl.factory.SSLSocket.getInputStream(SSLSocket.java:287)
at com.sap.engine.core.manipulator.TCPRunnableConnection.init(TCPRunnableConnection.java:351)
at com.sap.engine.core.manipulator.TCPRunnableConnection.run(TCPRunnableConnection.java:564)
at com.sap.engine.frame.core.thread.Task.run(Task.java:64)
at com.sap.engine.core.thread.impl6.SingleThread.execute(SingleThread.java:82)
at com.sap.engine.core.thread.impl6.SingleThread.run(SingleThread.java:154)
Arguments: java.io.EOFException: Connection closed by remote host.
at iaik.security.ssl.Utils.a(Unknown Source)
at iaik.security.ssl.o.b(Unknown Source)
at iaik.security.ssl.o.c(Unknown Source)
at iaik.security.ssl.r.f(Unknown Source)
at iaik.security.ssl.f.c(Unknown Source)
at iaik.security.ssl.f.a(Unknown Source)
at iaik.security.ssl.r.d(Unknown Source)
at iaik.security.ssl.SSLTransport.startHandshake(Unknown Source)
at iaik.security.ssl.SSLSocket.startHandshake(Unknown Source)
at com.sap.engine.services.ssl.factory.SSLSocket.startHandshake(SSLSocket.java:169)
at com.sap.engine.services.ssl.factory.SSLSocket.getInputStream(SSLSocket.java:287)
at com.sap.engine.core.manipulator.TCPRunnableConnection.init(TCPRunnableConnection.java:351)
at com.sap.engine
Before I got this error message, I noticed that my SSO certificate is expired. I updated the certifcate through Visual Administrator -> Services->Key Storage->TicketKeystore
OS Netweaver 7.01 SP8
If any one had solution for this issue, please reply to my thread.
Thanks
Ramesh.
Take a look at [SAP Note 1663313|https://service.sap.com/sap/support/notes/1663313]. There's a patch for your release.
Unfortunately I'm not on SP7 so I had to use the second solution:
- Open the Visual Administrator and login
- In Cluster, select Dispatcher -> Services -> SSL Provider
- select the line with port number in the Configuration tab corresponding to your web server (default 5xx01)
- remove all cipher suites except the following: SSL_RSA_WITH_RC4_128_SHA
- leave SSL Provider configuration
- Restart J2EE
Regards,
Sean
Similar Messages
-
Problem opening live web page (url) from within keynote
hi.
i encountered this problem during a recent presentation. i have a standard two-monitor set-up, on my laptop viewing notes etc and presenting on the attached monitor. the transitions between my slides are all set onClick.
so, when i encounter a hyperlink in my presentation (of the web page type), when i click on it, i am not taken to the web page, but rather to the next slide.
how do i avoid this? how do i make keynote follow the hyperlink -- i.e. open the webpage during the presentation?
many thanks in advance for your tips.use '_blank' as parameter, not '_self'.
Guy Dallaire (guest) wrote:
: Hi,
: We would like to open a Web Page from a forms running in
: client/server as well as from a form runningover the web.
: Over the web, we plan to use SHOW_DOWUMENT (Even tough it
seems
: broken, on forms 6.0, the only way we have got it working was
by
: using the parameter that overwrites the current page (the
form),
: we cannot have it open an URL in another window)
: In C/S mode, the SHOW DOCUMENT does not work. What is the
proper
: way to lauch an URL in a browser in C/S mode ?
: Is there a way to determine if we're running in CS mode or Web
: Mode ? We would like to use the same code both on the web and
in
: C/S
: Example pseudo code:
: if (Running in CS Mode) then
: open the URL using C/S method
: else
: open the URL with show dowument
: fi
: Thanks
null -
Problem establishing SSL VPN from only 1 IP address
Hi,
I'm experiencing strange problem.
I can't establish SSL VPN connection from 1 IP address, but I don't have problem establishing SSL VPN from any other IP address.
Remote IP address: 10.0.0.1
ASA's public IP address: 192.168.1.1
Output of packet-tracer:
1. with problematic source IP address:
packet-tracer input wan tcp 10.0.0.1 50601 192.168.1.1 443 detailed
Phase: 1
Type: ROUTE-LOOKUP
Subtype: input
Result: ALLOW
Config:
Additional Information:
in 192.168.1.1 255.255.255.255 identity
Phase: 2
Type: ACCESS-LIST
Subtype:
Result: ALLOW
Config:
Implicit Rule
Additional Information:
Forward Flow based lookup yields rule:
in id=0x7fff37573f00, priority=119, domain=permit, deny=false
hits=861, user_data=0x0, cs_id=0x0, flags=0x0, protocol=6
src ip/id=0.0.0.0, mask=0.0.0.0, port=0
dst ip/id=0.0.0.0, mask=0.0.0.0, port=443, dscp=0x0
input_ifc=wan, output_ifc=identity
Phase: 3
Type: CONN-SETTINGS
Subtype:
Result: ALLOW
Config:
Additional Information:
Forward Flow based lookup yields rule:
in id=0x7fff38a10a50, priority=8, domain=conn-set, deny=false
hits=4069, user_data=0x7fff38770910, cs_id=0x0, reverse, flags=0x0, protocol=6
src ip/id=0.0.0.0, mask=0.0.0.0, port=0
dst ip/id=192.168.1.1, mask=255.255.255.255, port=443, dscp=0x0
input_ifc=wan, output_ifc=identity
Phase: 4
Type: IP-OPTIONS
Subtype:
Result: ALLOW
Config:
Additional Information:
Forward Flow based lookup yields rule:
in id=0x7fff395c7d70, priority=0, domain=inspect-ip-options, deny=true
hits=4044934, user_data=0x0, cs_id=0x0, reverse, flags=0x0, protocol=0
src ip/id=0.0.0.0, mask=0.0.0.0, port=0
dst ip/id=0.0.0.0, mask=0.0.0.0, port=0, dscp=0x0
input_ifc=wan, output_ifc=any
Phase: 5
Type: VPN
Subtype: ipsec-tunnel-flow
Result: ALLOW
Config:
Additional Information:
Forward Flow based lookup yields rule:
in id=0x7fff37560700, priority=13, domain=ipsec-tunnel-flow, deny=true
hits=2268518, user_data=0x0, cs_id=0x0, flags=0x0, protocol=0
src ip/id=0.0.0.0, mask=0.0.0.0, port=0
dst ip/id=0.0.0.0, mask=0.0.0.0, port=0, dscp=0x0
input_ifc=wan, output_ifc=any
Phase: 6
Type: TCP-MODULE
Subtype: webvpn
Result: ALLOW
Config:
Additional Information:
Forward Flow based lookup yields rule:
in id=0x7fff38a10cc0, priority=13, domain=soft-np-tcp-module, deny=false
hits=4627, user_data=0x7fff38c14300, cs_id=0x0, reverse, flags=0x0, protocol=6
src ip/id=0.0.0.0, mask=0.0.0.0, port=0
dst ip/id=192.168.1.1, mask=255.255.255.255, port=443, dscp=0x0
input_ifc=wan, output_ifc=identity
Phase: 7
Type: VPN
Subtype: encrypt
Result: DROP
Config:
Additional Information:
Reverse Flow based lookup yields rule:
out id=0x7fff375504a0, priority=69, domain=encrypt, deny=false
hits=40747, user_data=0x0, cs_id=0x7fff3754fa40, reverse, flags=0x0, protocol=0
src ip/id=192.168.1.1, mask=255.255.255.255, port=0
dst ip/id=10.0.0.1, mask=255.255.255.255, port=0, dscp=0x0
input_ifc=any, output_ifc=wan
Result:
input-interface: wan
input-status: up
input-line-status: up
output-interface: NP Identity Ifc
output-status: up
output-line-status: up
Action: drop
Drop-reason: (acl-drop) Flow is denied by configured rule
If I run packet-tracer with any other source IP address, let's say 10.0.0.2, everything is OK:
packet-tracer input wan tcp 10.0.0.2 50601 192.168.1.1 443 de
Phase: 1
Type: ROUTE-LOOKUP
Subtype: input
Result: ALLOW
Config:
Additional Information:
in 192.168.1.1 255.255.255.255 identity
Phase: 2
Type: ACCESS-LIST
Subtype:
Result: ALLOW
Config:
Implicit Rule
Additional Information:
Forward Flow based lookup yields rule:
in id=0x7fff37573f00, priority=119, domain=permit, deny=false
hits=862, user_data=0x0, cs_id=0x0, flags=0x0, protocol=6
src ip/id=0.0.0.0, mask=0.0.0.0, port=0
dst ip/id=0.0.0.0, mask=0.0.0.0, port=443, dscp=0x0
input_ifc=wan, output_ifc=identity
Phase: 3
Type: CONN-SETTINGS
Subtype:
Result: ALLOW
Config:
Additional Information:
Forward Flow based lookup yields rule:
in id=0x7fff38a10a50, priority=8, domain=conn-set, deny=false
hits=4090, user_data=0x7fff38770910, cs_id=0x0, reverse, flags=0x0, protocol=6
src ip/id=0.0.0.0, mask=0.0.0.0, port=0
dst ip/id=192.168.1.1, mask=255.255.255.255, port=443, dscp=0x0
input_ifc=wan, output_ifc=identity
Phase: 4
Type: IP-OPTIONS
Subtype:
Result: ALLOW
Config:
Additional Information:
Forward Flow based lookup yields rule:
in id=0x7fff395c7d70, priority=0, domain=inspect-ip-options, deny=true
hits=4047886, user_data=0x0, cs_id=0x0, reverse, flags=0x0, protocol=0
src ip/id=0.0.0.0, mask=0.0.0.0, port=0
dst ip/id=0.0.0.0, mask=0.0.0.0, port=0, dscp=0x0
input_ifc=wan, output_ifc=any
Phase: 5
Type: VPN
Subtype: ipsec-tunnel-flow
Result: ALLOW
Config:
Additional Information:
Forward Flow based lookup yields rule:
in id=0x7fff37560700, priority=13, domain=ipsec-tunnel-flow, deny=true
hits=2270040, user_data=0x0, cs_id=0x0, flags=0x0, protocol=0
src ip/id=0.0.0.0, mask=0.0.0.0, port=0
dst ip/id=0.0.0.0, mask=0.0.0.0, port=0, dscp=0x0
input_ifc=wan, output_ifc=any
Phase: 6
Type: TCP-MODULE
Subtype: webvpn
Result: ALLOW
Config:
Additional Information:
Forward Flow based lookup yields rule:
in id=0x7fff38a10cc0, priority=13, domain=soft-np-tcp-module, deny=false
hits=4648, user_data=0x7fff38c14300, cs_id=0x0, reverse, flags=0x0, protocol=6
src ip/id=0.0.0.0, mask=0.0.0.0, port=0
dst ip/id=192.168.1.1, mask=255.255.255.255, port=443, dscp=0x0
input_ifc=wan, output_ifc=identity
Phase: 7
Type: USER-STATISTICS
Subtype: user-statistics
Result: ALLOW
Config:
Additional Information:
Reverse Flow based lookup yields rule:
out id=0x7fff3a1cc320, priority=0, domain=user-statistics, deny=false
hits=4902651, user_data=0x7fff3a0043c0, cs_id=0x0, reverse, flags=0x0, protocol=0
src ip/id=0.0.0.0, mask=0.0.0.0, port=0
dst ip/id=0.0.0.0, mask=0.0.0.0, port=0, dscp=0x0
input_ifc=any, output_ifc=wan
Phase: 8
Type: FLOW-CREATION
Subtype:
Result: ALLOW
Config:
Additional Information:
New flow created with id 4384689, packet dispatched to next module
Module information for forward flow ...
snp_fp_tracer_drop
snp_fp_inspect_ip_options
snp_fp_tcp_normalizer
snp_fp_tcp_mod
snp_fp_adjacency
snp_fp_fragment
snp_fp_drop
Module information for reverse flow ...
snp_fp_tracer_drop
snp_fp_inspect_ip_options
snp_fp_tcp_normalizer
snp_fp_adjacency
snp_fp_fragment
snp_ifc_stat
Result:
input-interface: wan
input-status: up
input-line-status: up
output-interface: NP Identity Ifc
output-status: up
output-line-status: up
Action: allow
I run packet capture on WAN interface - and I can only see incoming packets (SYN) with destination to tcp/443 but there isn't any outgoing packet (SYN/ACK).
I even can't open web page from internet browser (url https://192.168.1.1) when source IP is 10.0.0.1, but I can open "SSL VPN Service" web page from any other source IP address.
The only thing different with this IP address is that there's configured site-to-site (IPsec) vpn tunnel from same source to same destination IP address.
Here is the configuration of the tunnel:
group-policy GroupPolicy_10.0.0.1 internal
group-policy GroupPolicy_10.0.0.1 attributes
vpn-filter value VPN-ACL
vpn-tunnel-protocol ikev1 ssl-client
access-list VPN-ACL:
access-list VPN-ACL extended permit ip object-group DM_INLINE_NETWORK_83 object-group DM_INLINE_NETWORK_84
object-group network DM_INLINE_NETWORK_83
network-object 10.11.217.0 255.255.255.0
network-object 192.168.201.0 255.255.255.0
object-group network DM_INLINE_NETWORK_84
network-object 10.11.217.0 255.255.255.0
network-object 192.168.201.0 255.255.255.0
tunnel local & remote networks:
access-list wan_cryptomap_5 extended permit ip 10.11.217.0 255.255.255.0 192.168.201.0 255.255.255.0
crypto map wan_map 5 match address wan_cryptomap_5
crypto map wan_map 5 set connection-type answer-only
crypto map wan_map 5 set peer 10.0.0.1
crypto map wan_map 5 set ikev1 transform-set ESP-3DES-SHA
I've configured the same setup in my lab and I can't reproduce the error.
The SW version running on ASA is asa861-12.
I'm out of ideas.Just collected some other information:
1. traceroute shows that traffic is not leaving ASA at all
1 * * *
2 * * *
3 * * *
I double checked that there is no "strange" entry for remote public IP in routing. Traffic with destination to remote IP should be sent via default gateway like all other traffic.
2. debug crypto ipsec shows this information when I ping public IP address of the remote host (with VPN
IPSEC(crypto_map_check)-3: Looking for crypto map matching 5-tuple: Prot=1, saddr=192.168.1.1, sport=30647, daddr=10.0.0.1, dport=30647
IPSEC(crypto_map_check)-5: Checking crypto map wan_map 1: skipping because 5-tuple does not match ACL wan_cryptomap_1.
IPSEC(crypto_map_check)-5: Checking crypto map wan_map 2: skipping because 5-tuple does not match ACL wan_cryptomap_2.
IPSEC(crypto_map_check)-5: Checking crypto map wan_map 3: skipping because 5-tuple does not match ACL wan_cryptomap_3.
IPSEC(crypto_map_check)-5: Checking crypto map wan_map 4: skipping because 5-tuple does not match ACL wan_cryptomap_4.
IPSEC(crypto_map_check)-5: Checking crypto map wan_map 5: skipping dormant map.
IPSEC(crypto_map_check)-5: Checking crypto map wan_map 5: skipping dormant map.
IPSEC(crypto_map_check)-5: Checking crypto map wan_map 6: skipping because 5-tuple does not match ACL wan_cryptomap_6.
IPSEC(crypto_map_check)-5: Checking crypto map wan_map 7: skipping because 5-tuple does not match ACL wan_cryptomap_7.
IPSEC(crypto_map_check)-5: Checking crypto map wan_map 8: skipping because 5-tuple does not match ACL wan_cryptomap_8.
IPSEC(crypto_map_check)-5: Checking crypto map wan_map 9: skipping because 5-tuple does not match ACL wan_cryptomap_9.
IPSEC(crypto_map_check)-5: Checking crypto map wan_map 10: skipping because 5-tuple does not match ACL wan_cryptomap_10.
IPSEC(crypto_map_check)-5: Checking crypto map wan_map 11: skipping because 5-tuple does not match ACL wan_cryptomap_11.
IPSEC(crypto_map_check)-5: Checking crypto map wan_map 13: skipping because 5-tuple does not match ACL wan_cryptomap_13.
IPSEC(crypto_map_check)-5: Checking crypto map wan_map 65535: skipping dynamic_link.
IPSEC(crypto_map_check)-1: Error: No crypto map matched.
It really seems that the whole problem is that ASA is trying to encrypt traffic sent from public IP address of one VPN endpoint and targeted to public IP address of another VPN endpoint and send it to remote VPN endpoint via IPcec tunel.
There is indeed VPN tunnel established between both VPN endpoints, but there are just local and remote networks defined with private IP address space for this tunnel, VPN endpoint's public IP addresses are not included in the definition of this IPsec VPN tunnel.
And there are at least two more IPsec VPN tunnels configured the same way and I can't reprodure this error on there two VPN tunnels.
Any idea? -
Problem with SSL weblogic plug in and Apache
We're using mod_wl_22.so with Apache, and after some problems with the mod failing on startup it is now working. We can access the weblogic SSL page fine directly on port 16101 with no warning, when we try via the proxy we get a failure of server Apache bride --------------------------------------------------------------------------------
No backend server available for connection: timed out after 10 seconds or idempotent set to OFF. And in the wl_proxy.log there is a message that I think relates to the trustedcertfile in our http.conf file. We have a root certificate in pem format as the trustedcertfile.
================New Request: [GET /irm_desktop HTTP/1.1] =================
Thu Jan 27 21:52:15 2011 <258812961651354> INFO: SSL is configured
Thu Jan 27 21:52:15 2011 <258812961651354> INFO: SSL configured successfully
Thu Jan 27 21:52:15 2011 <258812961651354> Using Uri /irm_desktop
Thu Jan 27 21:52:15 2011 <258812961651354> After trimming path: '/irm_desktop'
Thu Jan 27 21:52:15 2011 <258812961651354> The final request string is '/irm_desktop'
Thu Jan 27 21:52:15 2011 <258812961651354> SEARCHING id=[sealedinfo-prod:16101] from current ID=[sealedinfo-prod:16101]
Thu Jan 27 21:52:15 2011 <258812961651354> The two ids matched
Thu Jan 27 21:52:15 2011 <258812961651354> @@@FOUND...id=[sealedinfo-prod:16101], server_name=[uat.sealedinfo.com], server_port=[443]
Thu Jan 27 21:52:15 2011 <258812961651354> attempt #0 out of a max of 5
Thu Jan 27 21:52:15 2011 <258812961651354> Trying a pooled connection for '10.10.10.10/16101/16101'
Thu Jan 27 21:52:15 2011 <258812961651354> getPooledConn: No more connections in the pool for Host[10.10.10.10] Port[16101] SecurePort[16101]
Thu Jan 27 21:52:15 2011 <258812961651354> general list: trying connect to '10.10.10.10'/16101/16101 at line 2658 for '/irm_desktop'
Thu Jan 27 21:52:15 2011 <258812961651354> New SSL URL: match = 0 oid = 22
Thu Jan 27 21:52:15 2011 <258812961651354> Connect returns -1, and error no set to 10035, msg 'Unknown error'
Thu Jan 27 21:52:15 2011 <258812961651354> EINPROGRESS in connect() - selecting
Thu Jan 27 21:52:15 2011 <258812961651354> Setting peerID for new SSL connection
Thu Jan 27 21:52:15 2011 <258812961651354> 0a0a 0a0a e53e 0000 .....>..
Thu Jan 27 21:52:15 2011 <258812961651354> Local Port of the socket is 63867
Thu Jan 27 21:52:15 2011 <258812961651354> Remote Host 10.10.10.10 Remote Port 16101
Thu Jan 27 21:52:15 2011 <258812961651354> general list: created a new connection to '10.10.10.10'/16101 for '/irm_desktop', Local port:63867
Thu Jan 27 21:52:15 2011 <258812961648171> WARN: GetSessionCallback: No session match found
Thu Jan 27 21:52:16 2011 <258812961651354> INFO: SSL certificate chain validation failed: 3015
Thu Jan 27 21:52:16 2011 <258812961651354> trusted certs = 0
Thu Jan 27 21:52:16 2011 <258812961651354> dumping cert chain
Thu Jan 27 21:52:16 2011 <258812961651354> commonName is uat.sealedinfo.com
Thu Jan 27 21:52:16 2011 <258812961648171> WARN: DeleteSessionCallback: No match found!!
Thu Jan 27 21:52:16 2011 <258812961651354> ERROR: SSLWrite failed
Thu Jan 27 21:52:16 2011 <258812961651354> SEND failed (ret=-1) at 793 of file ../nsapi/URL.cpp
Thu Jan 27 21:52:16 2011 <258812961651354> *******Exception type [WRITE_ERROR_TO_SERVER] raised at line 794 of ../nsapi/URL.cpp
Thu Jan 27 21:52:16 2011 <258812961651354> Marking 10.10.10.10:16101 as bad
Thu Jan 27 21:52:16 2011 <258812961651354> got exception in sendRequest phase: WRITE_ERROR_TO_SERVER [os error=0, line 794 of ../nsapi/URL.cpp]: at line 3094
Thu Jan 27 21:52:16 2011 <258812961651354> INFO: Closing SSL context
Thu Jan 27 21:52:16 2011 <258812961651354> INFO: Error after SSLClose, socket may already have been closed by peer
Thu Jan 27 21:52:16 2011 <258812961651354> Failing over after WRITE_ERROR_TO_SERVER exception in sendRequest()
Thu Jan 27 21:52:16 2011 <258812961651354> attempt #1 out of a max of 5
Thu Jan 27 21:52:16 2011 <258812961651354> general list: trying connect to '10.10.10.10'/16101/16101 at line 2658 for '/irm_desktop'
Thu Jan 27 21:52:16 2011 <258812961651354> New SSL URL: match = 0 oid = 22
Thu Jan 27 21:52:16 2011 <258812961651354> Connect returns -1, and error no set to 10035, msg 'Unknown error'
Thu Jan 27 21:52:16 2011 <258812961651354> EINPROGRESS in connect() - selecting
Thu Jan 27 21:52:16 2011 <258812961651354> Setting peerID for new SSL connection
Thu Jan 27 21:52:16 2011 <258812961651354> 0a0a 0a0a e53e 0000 .....>..
Thu Jan 27 21:52:16 2011 <258812961651354> Local Port of the socket is 63868
Thu Jan 27 21:52:16 2011 <258812961651354> Remote Host 10.10.10.10 Remote Port 16101
Thu Jan 27 21:52:16 2011 <258812961651354> general list: created a new connection to '10.10.10.10'/16101 for '/irm_desktop', Local port:63868
Thu Jan 27 21:52:16 2011 <258812961648171> WARN: GetSessionCallback: No session match found
Thu Jan 27 21:52:16 2011 <258812961651354> INFO: SSL certificate chain validation failed: 3015
Thu Jan 27 21:52:16 2011 <258812961651354> trusted certs = 0
Thu Jan 27 21:52:16 2011 <258812961651354> dumping cert chain
Thu Jan 27 21:52:16 2011 <258812961651354> commonName is uat.sealedinfo.com
Thu Jan 27 21:52:16 2011 <258812961648171> WARN: DeleteSessionCallback: No match found!!
Thu Jan 27 21:52:16 2011 <258812961651354> ERROR: SSLWrite failed
Thu Jan 27 21:52:16 2011 <258812961651354> SEND failed (ret=-1) at 793 of file ../nsapi/URL.cpp
Thu Jan 27 21:52:16 2011 <258812961651354> *******Exception type [WRITE_ERROR_TO_SERVER] raised at line 794 of ../nsapi/URL.cpp
Thu Jan 27 21:52:16 2011 <258812961651354> Marking 10.10.10.10:16101 as bad
Thu Jan 27 21:52:16 2011 <258812961651354> got exception in sendRequest phase: WRITE_ERROR_TO_SERVER [os error=0, line 794 of ../nsapi/URL.cpp]: at line 3094
Thu Jan 27 21:52:16 2011 <258812961651354> INFO: Closing SSL context
Thu Jan 27 21:52:16 2011 <258812961651354> INFO: Error after SSLClose, socket may already have been closed by peer
Thu Jan 27 21:52:16 2011 <258812961651354> Failing over after WRITE_ERROR_TO_SERVER exception in sendRequest()
Thu Jan 27 21:52:16 2011 <258812961651354> attempt #2 out of a max of 5
Thu Jan 27 21:52:16 2011 <258812961651354> general list: trying connect to '10.10.10.10'/16101/16101 at line 2658 for '/irm_desktop'
Thu Jan 27 21:52:16 2011 <258812961651354> New SSL URL: match = 0 oid = 22
Thu Jan 27 21:52:16 2011 <258812961651354> Connect returns -1, and error no set to 10035, msg 'Unknown error'
Thu Jan 27 21:52:16 2011 <258812961651354> EINPROGRESS in connect() - selecting
Thu Jan 27 21:52:16 2011 <258812961651354> Setting peerID for new SSL connection
Thu Jan 27 21:52:16 2011 <258812961651354> 0a0a 0a0a e53e 0000 .....>..
Thu Jan 27 21:52:16 2011 <258812961651354> Local Port of the socket is 63869
Thu Jan 27 21:52:16 2011 <258812961651354> Remote Host 10.10.10.10 Remote Port 16101
Thu Jan 27 21:52:16 2011 <258812961651354> general list: created a new connection to '10.10.10.10'/16101 for '/irm_desktop', Local port:63869
Thu Jan 27 21:52:16 2011 <258812961648171> WARN: GetSessionCallback: No session match found
Thu Jan 27 21:52:16 2011 <258812961651354> INFO: SSL certificate chain validation failed: 3015
Thu Jan 27 21:52:16 2011 <258812961651354> trusted certs = 0
Thu Jan 27 21:52:16 2011 <258812961651354> dumping cert chain
Thu Jan 27 21:52:16 2011 <258812961651354> commonName is uat.sealedinfo.com
Thu Jan 27 21:52:16 2011 <258812961648171> WARN: DeleteSessionCallback: No match found!!
Thu Jan 27 21:52:16 2011 <258812961651354> ERROR: SSLWrite failed
Thu Jan 27 21:52:16 2011 <258812961651354> SEND failed (ret=-1) at 793 of file ../nsapi/URL.cpp
Thu Jan 27 21:52:16 2011 <258812961651354> *******Exception type [WRITE_ERROR_TO_SERVER] raised at line 794 of ../nsapi/URL.cpp
Thu Jan 27 21:52:16 2011 <258812961651354> Marking 10.10.10.10:16101 as bad
Thu Jan 27 21:52:16 2011 <258812961651354> got exception in sendRequest phase: WRITE_ERROR_TO_SERVER [os error=0, line 794 of ../nsapi/URL.cpp]: at line 3094
Thu Jan 27 21:52:16 2011 <258812961651354> INFO: Closing SSL context
Thu Jan 27 21:52:16 2011 <258812961651354> INFO: Error after SSLClose, socket may already have been closed by peer
Thu Jan 27 21:52:16 2011 <258812961651354> Failing over after WRITE_ERROR_TO_SERVER exception in sendRequest()
Thu Jan 27 21:52:16 2011 <258812961651354> attempt #3 out of a max of 5
Thu Jan 27 21:52:16 2011 <258812961651354> general list: trying connect to '10.10.10.10'/16101/16101 at line 2658 for '/irm_desktop'
Thu Jan 27 21:52:16 2011 <258812961651354> New SSL URL: match = 0 oid = 22
Thu Jan 27 21:52:16 2011 <258812961651354> Connect returns -1, and error no set to 10035, msg 'Unknown error'
Thu Jan 27 21:52:16 2011 <258812961651354> EINPROGRESS in connect() - selecting
Thu Jan 27 21:52:16 2011 <258812961651354> Setting peerID for new SSL connection
Thu Jan 27 21:52:16 2011 <258812961651354> 0a0a 0a0a e53e 0000 .....>..
Thu Jan 27 21:52:16 2011 <258812961651354> Local Port of the socket is 63870
Thu Jan 27 21:52:16 2011 <258812961651354> Remote Host 10.10.10.10 Remote Port 16101
Thu Jan 27 21:52:16 2011 <258812961651354> general list: created a new connection to '10.10.10.10'/16101 for '/irm_desktop', Local port:63870
Thu Jan 27 21:52:16 2011 <258812961648171> WARN: GetSessionCallback: No session match found
Thu Jan 27 21:52:16 2011 <258812961651354> INFO: SSL certificate chain validation failed: 3015
Thu Jan 27 21:52:16 2011 <258812961651354> trusted certs = 0
Thu Jan 27 21:52:16 2011 <258812961651354> dumping cert chain
Thu Jan 27 21:52:16 2011 <258812961651354> commonName is uat.sealedinfo.com
Thu Jan 27 21:52:16 2011 <258812961648171> WARN: DeleteSessionCallback: No match found!!
Thu Jan 27 21:52:16 2011 <258812961651354> ERROR: SSLWrite failed
Thu Jan 27 21:52:16 2011 <258812961651354> SEND failed (ret=-1) at 793 of file ../nsapi/URL.cpp
Thu Jan 27 21:52:16 2011 <258812961651354> *******Exception type [WRITE_ERROR_TO_SERVER] raised at line 794 of ../nsapi/URL.cpp
Thu Jan 27 21:52:16 2011 <258812961651354> Marking 10.10.10.10:16101 as bad
Thu Jan 27 21:52:16 2011 <258812961651354> got exception in sendRequest phase: WRITE_ERROR_TO_SERVER [os error=0, line 794 of ../nsapi/URL.cpp]: at line 3094
Thu Jan 27 21:52:16 2011 <258812961651354> INFO: Closing SSL context
Thu Jan 27 21:52:16 2011 <258812961651354> INFO: Error after SSLClose, socket may already have been closed by peer
Thu Jan 27 21:52:16 2011 <258812961651354> Failing over after WRITE_ERROR_TO_SERVER exception in sendRequest()
Thu Jan 27 21:52:16 2011 <258812961651354> attempt #4 out of a max of 5
Thu Jan 27 21:52:16 2011 <258812961651354> general list: trying connect to '10.10.10.10'/16101/16101 at line 2658 for '/irm_desktop'
Thu Jan 27 21:52:16 2011 <258812961651354> New SSL URL: match = 0 oid = 22
Thu Jan 27 21:52:16 2011 <258812961651354> Connect returns -1, and error no set to 10035, msg 'Unknown error'
Thu Jan 27 21:52:16 2011 <258812961651354> EINPROGRESS in connect() - selecting
Thu Jan 27 21:52:16 2011 <258812961651354> Setting peerID for new SSL connection
Thu Jan 27 21:52:16 2011 <258812961651354> 0a0a 0a0a e53e 0000 .....>..
Thu Jan 27 21:52:16 2011 <258812961651354> Local Port of the socket is 63871
Thu Jan 27 21:52:16 2011 <258812961651354> Remote Host 10.10.10.10 Remote Port 16101
Thu Jan 27 21:52:16 2011 <258812961651354> general list: created a new connection to '10.10.10.10'/16101 for '/irm_desktop', Local port:63871
Thu Jan 27 21:52:16 2011 <258812961648171> WARN: GetSessionCallback: No session match found
Thu Jan 27 21:52:16 2011 <258812961651354> INFO: SSL certificate chain validation failed: 3015
Thu Jan 27 21:52:16 2011 <258812961651354> trusted certs = 0
Thu Jan 27 21:52:16 2011 <258812961651354> dumping cert chain
Thu Jan 27 21:52:16 2011 <258812961651354> commonName is uat.sealedinfo.com
Thu Jan 27 21:52:16 2011 <258812961648171> WARN: DeleteSessionCallback: No match found!!
Thu Jan 27 21:52:16 2011 <258812961651354> ERROR: SSLWrite failed
Thu Jan 27 21:52:16 2011 <258812961651354> SEND failed (ret=-1) at 793 of file ../nsapi/URL.cpp
Thu Jan 27 21:52:16 2011 <258812961651354> *******Exception type [WRITE_ERROR_TO_SERVER] raised at line 794 of ../nsapi/URL.cpp
Thu Jan 27 21:52:16 2011 <258812961651354> Marking 10.10.10.10:16101 as bad
Thu Jan 27 21:52:16 2011 <258812961651354> got exception in sendRequest phase: WRITE_ERROR_TO_SERVER [os error=0, line 794 of ../nsapi/URL.cpp]: at line 3094
Thu Jan 27 21:52:16 2011 <258812961651354> INFO: Closing SSL context
Thu Jan 27 21:52:16 2011 <258812961651354> INFO: Error after SSLClose, socket may already have been closed by peer
Thu Jan 27 21:52:16 2011 <258812961651354> Failing over after WRITE_ERROR_TO_SERVER exception in sendRequest()
Thu Jan 27 21:52:16 2011 <258812961651354> attempt #5 out of a max of 5
Thu Jan 27 21:52:16 2011 <258812961651354> general list: trying connect to '10.10.10.10'/16101/16101 at line 2658 for '/irm_desktop'
Thu Jan 27 21:52:16 2011 <258812961651354> New SSL URL: match = 0 oid = 22
Thu Jan 27 21:52:16 2011 <258812961651354> Connect returns -1, and error no set to 10035, msg 'Unknown error'
Thu Jan 27 21:52:16 2011 <258812961651354> EINPROGRESS in connect() - selecting
Thu Jan 27 21:52:16 2011 <258812961651354> Setting peerID for new SSL connection
Thu Jan 27 21:52:16 2011 <258812961651354> 0a0a 0a0a e53e 0000 .....>..
Thu Jan 27 21:52:16 2011 <258812961651354> Local Port of the socket is 63872
Thu Jan 27 21:52:16 2011 <258812961651354> Remote Host 10.10.10.10 Remote Port 16101
Thu Jan 27 21:52:16 2011 <258812961651354> general list: created a new connection to '10.10.10.10'/16101 for '/irm_desktop', Local port:63872
Thu Jan 27 21:52:16 2011 <258812961648171> WARN: GetSessionCallback: No session match found
Thu Jan 27 21:52:16 2011 <258812961651354> INFO: SSL certificate chain validation failed: 3015
Thu Jan 27 21:52:16 2011 <258812961651354> trusted certs = 0
Thu Jan 27 21:52:16 2011 <258812961651354> dumping cert chain
Thu Jan 27 21:52:16 2011 <258812961651354> commonName is uat.sealedinfo.com
Thu Jan 27 21:52:16 2011 <258812961648171> WARN: DeleteSessionCallback: No match found!!
Thu Jan 27 21:52:16 2011 <258812961651354> ERROR: SSLWrite failed
Thu Jan 27 21:52:16 2011 <258812961651354> SEND failed (ret=-1) at 793 of file ../nsapi/URL.cpp
Thu Jan 27 21:52:16 2011 <258812961651354> *******Exception type [WRITE_ERROR_TO_SERVER] raised at line 794 of ../nsapi/URL.cpp
Thu Jan 27 21:52:16 2011 <258812961651354> Marking 10.10.10.10:16101 as bad
Thu Jan 27 21:52:16 2011 <258812961651354> got exception in sendRequest phase: WRITE_ERROR_TO_SERVER [os error=0, line 794 of ../nsapi/URL.cpp]: at line 3094
Thu Jan 27 21:52:16 2011 <258812961651354> INFO: Closing SSL context
Thu Jan 27 21:52:16 2011 <258812961651354> INFO: Error after SSLClose, socket may already have been closed by peer
Thu Jan 27 21:52:16 2011 <258812961651354> Failing over after WRITE_ERROR_TO_SERVER exception in sendRequest()
Thu Jan 27 21:52:16 2011 <258812961651354> request [irm_desktop] did NOT process successfully..................I see that it is six months ago that I first posted this. Nothing has changed. When I use affixa to create a message with an attachment from my gmail account in firefox, the message is created in drafts, but the gmail window is closed and I have to re-open it. Not critical, but annoying.
Now there is a plug-in on the affixa site that is supposed to be designed for Firefox, and which affixa support claims should take care of this. And I've downloaded it twice. When you download it and open it, it says that it will be installed when Firefox restarts, and gives you a button to restart Firefox. But after you click that button and firefox disappears and re-appears, the affixa plug-in is NOT in the plugin list.
Please, somebody, HELP. -
Running Windows XP service pack 3. Updated Firefox from 8.0 to 9.0. Now when Firefox opens "The URL is not valid and cannot be loaded" is displayed in a window and no home page appears. What's wrong?
That issue can be caused by an extension that isn't working properly.
Start Firefox in <u>[[Safe Mode]]</u> to check if one of the extensions or if hardware acceleration is causing the problem (switch to the DEFAULT theme: Firefox (Tools) > Add-ons > Appearance/Themes).
*Don't make any changes on the Safe mode start window.
*https://support.mozilla.com/kb/Safe+Mode
*https://support.mozilla.com/kb/Troubleshooting+extensions+and+themes -
Problem with SSL Activated on SSO Login
Hi Guys,
One of my applications has recently hit a few problems when SSL was activated on several environments. My application requires you to login using a SSO username and password before you can use the application. Before SSL was implemented, when you pressed the main menu button the page would redirect to the login server and the SSO login would remember your details and log you in again and then take you to the 1st page with a new session id. However, with SSL implemented, when the main menu button is pressed it redirects you to the login server but this time it asks you to enter your username and password. This is a problem as every time authentication is required on my application, it will keep telling you to login even if you have already done so before.
For extra information, the main menu button (which is a navigation bar entry) redirects you to a piece of javascript which is used to take you back to the 1st page depending on what page you are on.
I am also using the latest version of APEX.
Any help is much appreciated as I am not sure where to go with this problem.
Also is it a problem with the SSL setup or my application?
Thanks
-MarkI have tried to pass the cookie through the URL to the login server but this does nothing.I can't imagine what you mean by that or what exactly you did.
it just takes me to the login page and resets the session id after i have logged in again!What do you mean by "reset"?
How can I make cookies be accepted by SSL?Have you constructed an experiment to prove that this is the problem?
Is there something i can put in the application itself?Definitely not.
Scott -
How to open text URL in the new tab
Hi guys,
We know that when we click on a hyperlink it will directly open the linked web site, e.g.
www.bing.com
But sometimes we may find some URL in plain text that we couldn't click on it, e.g. www.bing.com
I'll have to select the URL and copy&paste it to a new tab to open it, this is time wasting.
The time IE 9 came out, I found a wonderful add-on, Open URL in New Tab (with Preview)
This will do the trick to open the text URL in the new tab by right click on it.
http://www.iegallery.com/us/addons/detail.aspx?id=3614
But I don't like two things of it.
1st, it will try to preview the web site when I using it which is undesired.
2nd, it will open the link through another site and then jump back to the link I need to open. But I'd like to open the link directly. Which will open the link more quickly also save my time.
Questions:
Is there any other way to open the plain text URL directly? I mean without copy and past it to another page.
It would be great if I can open the URL by dragging it like the other...Is there any other way to open the plain text URL directly? I mean without copy and past it to another page.
In these forums? If you are using the NNTP Bridge you could view your message in your News reader's Plain text mode and then see that your two examples worked equivalently. <eg>
Otherwise, in general, I agree there are some pretty obvious "accelerators" which could have been provided.
I suspect much of the problem will be due to "security". E.g. Windows used to have a functionality called text scraps, where you could select some text and drag and drop it just about anywhere to create a scrap file. That's
not working for me any more either. If it were we could at least drag it to the Address bar and press Enter...
http://technet.microsoft.com/en-us/magazine/2008.02.windowsconfidential.aspx
(Microsoft search for
text scraps
<quote>
virus writers loved this
</quote>
QED -
Open doc URL: unable to open the report in same window
Hi
I'm trying to open a report using open doc url with "swindow=same" but still it opens in a separate window. This happens only when I use JAVA viewer. it works fine in ActiveX and HTML but I want this in JAVA viewer as i'm including this page in my JAVA application and it should open the report in the same window. I tried using "<a>URL</a>" and also target="_self" by HTML interpretation for that object but still the same problem. I'm unable to open the report in the same window by using JAVA viewer for Crystal Reports in info view. Please help me!!!
Envirorment Details: Crystal Reports 2008 SP3, BOE XI R3 SP3
regards
Raghavendra.GI have tested that myself and It seems that HTML interpretation does not work with the Java viewer.
I have also tried using a hyperlink containing javascript
eg.
javascript:window.location.href='http://www.sap.com'
but the java viewer seems always to launch a new window before processing the command.
I would recommend to open a case by SAP support ( httP://service.sap.com/support )
Regards,
Stratos -
Hi,
My objective is to open a URL when i click on a webdynpro iView in the same window.
I created a outbound plug in the InterfaceViewController.
And wrote this piece of code in wdDoBeforeNavigation() in Component controller.
wdThis.wdGetExternalComponentInterfaceViewController().wdFirePlugGoToUrl(Url);
Where "Url" is a string variable contaning the value.
But when i run this piece of sode it gives exception
"Exit-Plug must no be triggered with an URL when running in portal. Use portal navigation instead to navigate to another application!"
So what should i do solve this problem
Regards,
PareshHI,
Procudere to create the LogoffURL
In the Application properties add your URL name.
LogoffURL = http:
www.google.com
1. Define an exit plug in the interface view of your Web Dynpro component:
a. Enter a name and check the checkbox Exit Plug.
b. Enter the name Url for the parameter and select string as the type.
This parameter is case-sensitive and must be entered exactly this way.
2. In your view, define the action Exit and add the event handler onActionExit().
3. In the view layout, define a button and bind its onAction event to the Exit action.
4. In your view, define the use of the interface view controller of your Web Dynpro component under Properties.
5. Insert the following code in this method of the implementation:
String logoffURL = wdComponentAPI.getApplication().getApplicationInfo().findInApplicationProperties("sap.logoffURL").getValue();
wdThis.wdGetTimeCompInterfaceViewController().wdFirePlugExit(logoffURL);
OR Do u need to generate the URL by using the application?
Thanks,
Lohi. -
I can't get rid of a message which keeps popping up which says:
There is no application set to open the URL ximadpzl://save_ximad_token/(etc)
I have no idea to what they are referring and I can find no application which satisfy this requirement. How do I get rid of this message? It won't go away. I have tried turning off the computer, closing Safari, etc.All of these suggestions (delete caches, restart, terminal commands, etc) do nothing to actually LOCATE the problem. They are just standard purging processes, and they have all failed to achieve resolution. And it is NOT Little Snitch either (tried turning that off and nothing changed). All these forums on this matter have been speculative and useless.
Ladies and Gents... I have found and isolated the ACTUAL PROBLEM. It is a Safari Extension that is doing it... specifically "VideoCatcher 5.3.8" which for me was installed with MovieSherlock. The extension adds the ability to download YouTube movies directly from Safari (by showing a small download button next to any embedded movie). When I remove that extension, all the annoying pop-ups go away.
MovieSherlock is not the only utility that does this however. There are several YouTube downloaders out there that ALL install an extension that detects YouTube videos on the page. I bet my hat that many (if not all) of you who are experiencing this pop-up issue... have installed one of those downloader utilities.
So, the solution is simple: disable that extension. If you need to download a YouTube video from a page, either temporarily enable that extension again as needed, or leave the Safari integration disabled and launch the actual utility itself and enter the URL into it for your download.
I would expect that MovieSherlock and the other YouTube downloading utilities will need to update their extensions (soon?) to deal with Yosemite's new browser script management.
PROBLEM SOLVED. -
Hi,
We have a problem using Sharepoint 2013 explorer view. (Error - We're having a problem opening this location in file explorer. Add this web site to your trusted sites list and try again).
I'm using Windows 7 Enterprise 64 bit, Office 2007 32 bit and IE9 32 bit. And the sharepoint site is a https site.
Some people in my organization are able to browse and some users getting the above error. (with the same client machine configuration)
If I clear my browser cache, closes the browser and open it then the explorer view is working. But after a minute if I try again I'm getting the above mentioned error. This 1 minute expiration happens is since the first time I have used explorer
view, not since I opened the browser.
I have tried the following on my machine:
1. Modified the web client service to run automatically.
2. Verified the sharepoint site is part of trusted sites (https://*.spsite.com/)
3. Compatibility mode is turned on.
4. Tried adding
AuthForwardServerList in the webclient registry settings under parameters. (restarted the web client)
5. Verified the BasicAuthLevel set to 1 (since we are using SSL). Tried setting the BasicAuthLevel to 2 as well. (restarted the web client)
6. Tried installing software update for web folders (KB907306).
Verified the below on the production server:
1. The web application has the root site collection.
2. It has WebDav Publishing disabled under IIS Web Server feature.
Could some one please help me in resolving this issue?
Thanks.Hi Deepak,
According to your post, my understanding is that you failed to use "Open with Explorer" in a document library.
For your issue, please verify the following:
ActiveX controls must be enabled in IE.
As you are using Windows 7 Server as the client computer, you must install the Desktop Experience feature from Server Manager.
Make sure there is a working Root site collection.
Install this hotfix for windows 7 work with sharepoint 2013 :hotfixv4.microsoft.com/.../463266_intl_x64_zip.exe
Best Regards,
Eric
Eric Tao
TechNet Community Support -
Problem while creating URL iview (in EP7.0)
Hi,
I encountered a problem while creating URL iview (in EP7.0) as when I selected the iview template for creating the URL iview, the content area got displayed as
"No templates to display. You are not assigned to any existing templates."
please assist me in this regard.
Thanks,
SuriHi Manoj,
Thank you for your reply.
I am still getting the same messages even after creating the iview template in EP7.0
Created through:
content Admin --> portal content --> <folder>new --> iview --> seleting "Portal component - create an iView from a portal component contained in a deployed portal archive (PAR file)" <next> --> seleting "com.sap.portal.appintegrator.sap" <next> --> webdynpro <next> --> finish.
Open object for editing...--> Object is a Template to Yes.
Result :
content Admin --> portal content --> <folder>new --> iview --> seleting "iview template- create an iView from an existing iView template" <next> which displays the same message.
"No templates to display. You are not assigned to any existing templates."
Rgrds,
Suri. -
Error opening file/URL reference by alias and Administrative limit exceeded
Hello All,
Problem:
SMTP Error: 4.5.0 error opening file/URL reference by alias
and
Search failed with: netscape.ldap.LDAPException: error result (11); Administrative limit exceeded
Here is my configuration:
Windows 2000 server (without Active Directory)
SP4
Iplanet Messaging Server 5.2
Netscape Directory Server 4.16
IPlanet Messaging Server 5.2 Hotfix 1.09 (built Jan 7 2003)
We have a group which we use to flash messages to all the users of the mail server. Till last week it was working fine but now I am not able to send messages to this group <group-name>.
There are around 800 (Eight Hundred) E-mail id the messaging server and the flashed message is supposed to go to all 800 + users.
Note: I have another group of 300 users and I am able to send an E-mail to this group of 300 users.
I am using Dynamic Group for Members list.
The error message I get while trying to send message to this group is
SMTP Error: 4.5.0 error opening file/URL reference by alias.
The corresponding error in mail.log file is
30-Jan-2004 10:55:21.40 41c.7e4.1098 tcp_intranet J 0 <group-name>@domain rfc822; <group-name>@domain domain (localhost [127.0.0.1]) 452 4.5.0 error opening file/URL referenced by alias: <group-name>@domain
Now when I construct and Test the LDAP URL from Console, the error I get is:
Search failed with: netscape.ldap.LDAPException: error result (11); Administrative limit exceeded
I have increased the various limits but I still get the same error when I send mail to that group or do a LDAP Test:
The deafult and new limits are:
Sizelimit: Default 2000 New 10000
Timelimit Default 3600 New 3600
Lookthroughlimit Default 5000 New 6000
The corresponding error entry in access log of slapd is:
30/Jan/2004:12:19:26 +051800] conn=34 op=213 RESULT err=11 tag=101 nentries=0 etime=2 notes=U
My search for Administrative limit problem and error opening file/URL error in Sun forum and other groups did get some hits but that did not solve my problem.
I will appreciate any suggestion/comments.
Thanks and Regards,
Maneesh BishtThanks Jay.
My problem has been fixed.
Your suggestion was to increase the lookthrough limit. As you would have noticed in my posting that I had increased this limit to 6000 but that did not solve my problem. Today I increased this limit to 10000. And after that I did not get "administrative limit exceeded" error. Also I do not get "error opening file/URL reference by alias" error while sending E-mail to a particular group of 800+ ids.
Regards,
Maneesh Bisht -
Probelm client auth from jsse client with open ssl server
I tried to connect jsse client with a openssl server.. with clientAuth
This is what i did ..
Using openssl req comand i created a X509 certificate for server and imported the same to java keystore..
The communication works fine without client authentication.
To enable client auth i create client private/public key pair using keytool and exported the public key to a file client.public. and used it in open ssl server .
This is how i invoke the client ..
java
-Djavax.net.debug=all
-Djavax.net.ssl.trustStore=cacerts
-Djavax.net.ssl.trustStorePassword=changeit
-Djavax.net.private -Djavax.net.ssl.keyStorePassword=password EchoClient
After which i get following error in server
SSL3 alert write:fatal:handshake failure
SSL_accept:error in SSLv3 read client certificate B
SSL_accept:error in SSLv3 read client certificate B
ERROR
17246:error:140890C7:SSL routines:SSL3_GET_CLIENT_CERTIFICATE:peer did not return a certificate:s3_srvr.c:1666:
shutting down SSL
CONNECTION CLOSED
The client debug says it is recieving a certificate request.. what could be the problem.. can anybody help...i also have that problem. I was trying to configure SSL in apache in Win XP machine, but this error occurs. Is there anyone, who can help on it?
-
Hello,
I want to open an URL like www.google.com when a user press
on button.
How should i do it because if i choose for example On success
: Open URL or a File and in URL I write www.google.com. It doesn't
work.We're having the same problem...trying to open a URL
(actually, a PowerPoint file stored on our intranet) without
success. One of coworkers just got a hung system; I get a "No page
to display" window with the message "Action canceled. Internet
Explorer was unable to link to the Web page you requested." I've
tried publishing the Captivate files to the intranet (which puts
them in the same folder as the PowerPoint file), but it didn't
help. Interestingly, the link works just fine in native preview
mode, but not in Web preview or the published version.
It's quite possible that you're right about the security
settings being the issue, but I don't think that the solution
presented in that demo (changing the security settings) would
really help, because that would just change the settings for my
computer, not the users' computers, right? I don't have any control
over their computers, nor can I expect them all to go out and
change their security settings like that :(
I also looked into the MenuBuilder solution... The problem
there is that I would need to download and save and copy of the
PowerPoint file, which I can do, but then we're stuck with the
version of that file as of when I downloaded it (as opposed to if
the link was working and they can see the "live" copy of the file
on the intranet). We don't own that file, so we'd have no way of
knowing when/if it was updated down the road...
Has anyone found any other possible solutions? In case it
helps, we're using Captivate 3 and IE6....
TIA!
Laura
Update: I tried the MenuBuilder approach anyway, but I think
I must be doing something wrong... It launches the .swf file
produced by the MenuBuilder, but nothing even tries to open the
document attached to it. Can someone review the instructions posted
in
this
thread and see if anything's missing?
Maybe you are looking for
-
Problem in logic of the Function Module
Hi, I am working on FM in which i have to pass the value as string and it gives value that if there is a space in the string it will pick the rest of the string in the next value starting from the spcae. here's d code:- IF TEXT1+20(1) EQ ' '.
-
I am unable to copy files from my macbook pro to my external hard disk.
I am unable to copy files from my macbook pro to my external hard disk. I tried to copy a movie 800mb in size to my EDD and it shows the loading box and it says zero kb loaded out of 800mb and sometimes it loads a a few kb of the file, then after a
-
My output panel in Adobe Bridge is blank - any suggestions??
-
The e-mail icon has disapeared from dashboard. How to retrieve it?
The e-mail icon has disapeared from dashboard. How to retrieve it?
-
I have installed TC and TM is up and running. I want now to use TC without TimeMachine using my own backup startegy with f.e rsync. Don't know how to mount the device as a second disk permanently connected and up. I can see TC inside Finder but canno