Proxy authentication for Internet

I have searched high and low for an answer to this and cant belive nokia havn't included it as part of the firmware.
At work on my laptop I connect via wireless to a access point that then passes my connection to a proxy server.
When I try and access the internet on my phone I get No Gateway Reply
Now my laptop requires I am authenticated on the network
(username, password, domain) before allowing me access to the web/email etc
How do I get these credentials on to my phone??NOKIA 5800 XM)
someone out there must know

I'm afraid you can't. S60 does not support proxy authentication.
Was this post helpful? If so, please click on the white "Kudos!" star below. Thank you!

Similar Messages

ASA - cut through proxy authentication for RDP?

I know how to set this up on a router (dynamic access-list - lock and key)... But, I'm having trouble understanding how to setup OUTSIDE to INSIDE cut through proxy authentication for RDP.
OUTSIDE to INSIDE RDP is currently working.
I have 2 servers I want RDP open for..
[*]OUTSIDE 1.1.1.1 to INSIDE 10.10.70.100
[*]OUTSIDE 1.1.1.2 to INSIDE 10.10.50.200
What's required for OUTSIDE users to authenticate on the ASA before allowing port 3389 opens? I was hoping for is a way to SSH into this ASA, login with a special user, then have the ASA add a dynamic ACE on the OUTSISE interface to open 3389 for a designated time limit. Is this possible?
Here is my current config.
[code]
ASA Version 8.2(5)
hostname ASA5505
names
name 10.10.0.0 LANTraffic
name 10.10.30.0 SALES
name 10.10.40.0 FoodServices
name 10.10.99.0 Management
name 10.10.20.0 Office
name 10.10.80.0 Printshop
name 10.10.60.0 Regional
name 10.10.70.0 Servers
name 10.10.50.0 ShoreTel
name 10.10.100.0 Surveillance
name 10.10.90.0 Wireless
interface Ethernet0/0
description TO INTERNET
switchport access vlan 11
interface Ethernet0/1
description TO INSIDE 3560X
switchport access vlan 10
interface Ethernet0/2
shutdown
interface Ethernet0/3
shutdown
interface Ethernet0/4
shutdown
interface Ethernet0/5
shutdown
interface Ethernet0/6
shutdown
interface Ethernet0/7
shutdown
interface Vlan1
no nameif
security-level 50
no ip address
interface Vlan10
description Cisco 3560x
nameif INSIDE
security-level 100
ip address 10.10.1.1 255.255.255.252
interface Vlan11
description Internet Interface
nameif OUTSIDE
security-level 0
ip address 1.1.1.1 255.255.255.224
ftp mode passive
clock timezone PST -8
clock summer-time PDT recurring
dns domain-lookup OUTSIDE
dns server-group DefaultDNS
name-server 8.8.8.8
name-server 4.2.2.2
domain-name test.local
access-list RDP-INBOUND extended permit tcp any host 1.1.1.1 eq 3389
access-list RDP-INBOUND extended permit tcp any host 1.1.1.2 eq 3389
pager lines 24
logging enable
logging timestamp
logging trap warnings
logging device-id hostname
logging host INSIDE 10.10.70.100
mtu INSIDE 1500
mtu OUTSIDE 1500
ip verify reverse-path interface OUTSIDE
icmp unreachable rate-limit 1 burst-size 1
asdm image disk0:/asdm-645.bin
no asdm history enable
arp timeout 14400
global (OUTSIDE) 1 interface
nat (INSIDE) 1 LANTraffic 255.255.0.0
static (INSIDE,OUTSIDE) tcp interface 3389 10.10.70.100 3389 netmask 255.255.255.255
static (INSIDE,OUTSIDE) tcp 1.1.1.2 3389 10.10.50.200 3389 netmask 255.255.255.255
access-group RDP-INBOUND in interface OUTSIDE
route OUTSIDE 0.0.0.0 0.0.0.0 1.1.1.1 1
route INSIDE LANTraffic 255.255.0.0 10.10.1.2 1
timeout xlate 3:00:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
timeout tcp-proxy-reassembly 0:01:00
timeout floating-conn 0:00:00
dynamic-access-policy-record DfltAccessPolicy
aaa authentication ssh console LOCAL
aaa authentication http console LOCAL
http server enable
http Management 255.255.255.0 INSIDE
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart
crypto ipsec security-association lifetime seconds 28800
crypto ipsec security-association lifetime kilobytes 4608000
telnet timeout 5
ssh 10.10.70.100 255.255.255.255 INSIDE
ssh Management 255.255.255.0 INSIDE
ssh 0.0.0.0 0.0.0.0 OUTSIDE
ssh timeout 5
ssh version 2
console timeout 0
threat-detection basic-threat
threat-detection scanning-threat shun
threat-detection statistics access-list
threat-detection statistics tcp-intercept rate-interval 30 burst-rate 400 average-rate 200
webvpn
username scott password CNjeKgq88PLZXETE encrypted privilege 15
class-map inspection_default
match default-inspection-traffic
policy-map type inspect dns preset_dns_map
parameters
message-length maximum client auto
message-length maximum 512
policy-map global_policy
class inspection_default
inspect dns preset_dns_map
inspect ftp
inspect h323 h225
inspect h323 ras
inspect ip-options
inspect netbios
inspect rsh
inspect rtsp
inspect skinny
inspect esmtp
inspect sqlnet
inspect sunrpc
inspect tftp
inspect sip
inspect xdmcp
service-policy global_policy global
prompt hostname context
no call-home reporting anonymous
call-home
profile CiscoTAC-1
no active
destination address http https://tools.cisco.com/its/service/oddce/services/DDCEService
destination address email [email protected]
destination transport-method http
subscribe-to-alert-group diagnostic
subscribe-to-alert-group environment
subscribe-to-alert-group inventory periodic monthly
subscribe-to-alert-group configuration periodic monthly
subscribe-to-alert-group telemetry periodic daily
Cryptochecksum:1e9d278ce656f22829809f4c46b04a07
: end
[/code]

You're running ASA 8.2(5). In 8.4(2) Cisco added support for what they call Identity Firewall rules. That is, you can make access-lists entries specific to users (or object groups containing users).
There's an overview document on this posted here. It's a bit dated but I believe the only change is that Cisco is now preferring use of the more current Context Directory Agent (CDA) - a free VM they provide - vs. the deprecated AD agent (software service that runs on your DC).

User Authentication for Internet access

Hi,
Is it possible to configure authentication for internal (LAN) users to Authenticate (local/RADIUS/LDAP) for any kind of internet access through the ISA550/570? (like cut-through authentication proxy in ASA.)
And Can the ISA550/570 act as a Web proxy?
Thanks in advance.

HI Sulu,
You can configure captive portal for internal LAN users to authenticate (local/Radius/LDAP) for internet
access through ISA500. (see attached screenshot)
ISA500 cannot act as a web proxy. what is your use case ?
Regards,
Wei

Http proxy authentication for JDev 10.1.3

Hi,
I found the http proxy settings in the "tools->preferences->Web Browser and Proxy" but there are no settings for the username and password. Is there some other way that I can add these.
The problem is that whenver JDeveloper wants to do some http stuff it (or something else is doing it) asks me for the proxy user name & password - this happens over and over again. If JDev is doing this then surely it should remember the username & password.
I sometimes get a JDeveloper dialog "waiting for the connection" come up over the proxy auth dialog and I have to cancel the function so I can authenticate, then re-request the function.
I wish I didn't have the proxy authentication but I have no choice in this dev environment. I do get to choose JDeveloper at least.
Regards,
Simon.

Hi,
I get it when I 'check for updates' and I get it again when I 'go to JavaDoc' - and this is the one where the "waiting for connection dialog" pops on top of the proxy log in and I have to cancel it to log in. Then all subsequent 'go to JavaDoc' requests go straight through.
I would prefer it if I could just configure (in proxy preferences) the username and password so it never asks me. I dont care if it less secure storing the password since I think authenticating proxies are a dumb idea anyway. If the password is not supplied then JDev can ask for it like it does now to keep the security-paranoid people happy.
Also, this morning I got this Exception which appeared at the same time I got a proxy auth window. When JDev finally started all my previously open windows were lost. No real problem but unexpected. Here is the stack dump:
java.lang.NullPointerException
     at oracle.jdevimpl.webdav.api.DAVAuthenticator.getPasswordAuthentication(DAVAuthenticator.java:79)
     at java.net.Authenticator.requestPasswordAuthentication(Authenticator.java:300)
     at sun.net.www.protocol.http.HttpURLConnection$1.run(HttpURLConnection.java:267)
     at java.security.AccessController.doPrivileged(Native Method)
     at sun.net.www.protocol.http.HttpURLConnection.privilegedRequestPasswordAuthentication(HttpURLConnection.java:263)
     at sun.net.www.protocol.http.HttpURLConnection.getHttpProxyAuthentication(HttpURLConnection.java:1427)
     at sun.net.www.protocol.http.HttpURLConnection.resetProxyAuthentication(HttpURLConnection.java:1246)
     at sun.net.www.protocol.http.HttpURLConnection.getInputStream(HttpURLConnection.java:950)
     at oracle.ide.net.HttpURLFileSystemHelper.exists(HttpURLFileSystemHelper.java:191)
     at oracle.jdevimpl.webdav.net.WebDAVURLFileSystemHelper.exists(WebDAVURLFileSystemHelper.java:423)
     at oracle.ide.net.URLFileSystem.exists(URLFileSystem.java:498)
     at oracle.ideimpl.editor.EditorUtil.getNode(EditorUtil.java:126)
     at oracle.ideimpl.editor.EditorUtil.loadContext(EditorUtil.java:91)
     at oracle.ideimpl.editor.TabGroupState.loadStateInfo(TabGroupState.java:950)
     at oracle.ideimpl.editor.TabGroup.loadLayout(TabGroup.java:1758)
     at oracle.ideimpl.editor.TabGroupXMLLayoutPersistence.loadComponent(TabGroupXMLLayoutPersistence.java:31)
     at oracle.ideimpl.controls.dockLayout.DockLayoutInfoLeaf.loadLayout(DockLayoutInfoLeaf.java:123)
     at oracle.ideimpl.controls.dockLayout.AbstractDockLayoutInfoNode.loadLayout(AbstractDockLayoutInfoNode.java:631)
     at oracle.ideimpl.controls.dockLayout.AbstractDockLayoutInfoNode.loadLayout(AbstractDockLayoutInfoNode.java:628)
     at oracle.ideimpl.controls.dockLayout.AbstractDockLayoutInfoNode.loadLayout(AbstractDockLayoutInfoNode.java:614)
     at oracle.ideimpl.controls.dockLayout.DockLayout.loadLayout(DockLayout.java:302)
     at oracle.ideimpl.controls.dockLayout.DockLayoutPanel.loadLayout(DockLayoutPanel.java:128)
     at oracle.ideimpl.editor.Desktop.loadLayout(Desktop.java:353)
     at oracle.ideimpl.editor.EditorManagerImpl.init(EditorManagerImpl.java:1824)
     at oracle.ide.layout.Layouts.activate(Layouts.java:758)
     at oracle.ide.layout.Layouts.activateLayout(Layouts.java:179)
     at oracle.ideimpl.MainWindowImpl$2.runImpl(MainWindowImpl.java:734)
     at oracle.javatools.util.SwingClosure$1Closure.run(SwingClosure.java:50)
     at java.awt.event.InvocationEvent.dispatch(InvocationEvent.java:199)
     at java.awt.EventQueue.dispatchEvent(EventQueue.java:461)
     at java.awt.EventDispatchThread.pumpOneEventForHierarchy(EventDispatchThread.java:242)
     at java.awt.EventDispatchThread.pumpEventsForHierarchy(EventDispatchThread.java:163)
     at java.awt.EventDispatchThread.pumpEvents(EventDispatchThread.java:157)
     at java.awt.EventDispatchThread.pumpEvents(EventDispatchThread.java:149)
     at java.awt.EventDispatchThread.run(EventDispatchThread.java:110)

Proxy setting for Internet Explorer

Recently purchased new CPU with Windows 8.1. I am not able to access Explorer. I get an error message about proxy settings. How do I change this?

Hi,
To change proxy server settings.
Click the Tools button, and then click Internet Options.
Click the Connections tab, and then click LAN settings.
uncheck the Use a proxy server for your LAN check box..
Sudheer MCP,MCSA(Server 2012)

CE507 Authentication for Internet Browsing

Hi,
I have a CE507. I would like to use Cisco ACS Tacacs+ to authenticate user before allowing them to browse internet.
I have use tacacs key and tacacs server command to configure the tacacs server. However, I cannot authenticate user for internet browsing.
Is there any command required for the authentication?
Thanks.
Regards,
Hui

You also need to put in the command
tacacs enable
HTH
Phil

Proxy authentication for multiple users

Hi, I'm hoping someone can help me out with the following situation.
I need to deploy a number of iPads to students.
An iPad may be used by more than 1 student.
Our network requires authenticating against our proxy server to allow internet access.
I do not want to cache the credentials of a user.
Is there a way to 're-authenticate' access to the proxy?
What is the best way of deploying iPads with multiple users?

Thanks for posting the link. I have seen it, however I did notice some helpful information towards the bottom of the document.
Unfortunately though, I didn't answer my question.
Yes, I want the proxy credentials to be required every time they go on the internet. (Even if it's just Safari, and I can push all other access (apps etc) through a transparent proxy.
Either way, the proxy credentials need to be renewed frequently, as the device may be used by multiple people throughout the day.

Proxy Settings for Internet

My university has Wifi throughout the campus and I would like to connect to it with an iPhone.
Does the iPhone have settings for entering a proxy to connect through. I can either type a .pac file or the actual proxy (proxy.brighton.ac.uk). Without this I can't access the internet.
Any solutions?
Many thanks.

Follow this link, it shows where the dhcp is and where the proxy settings are found!
http://docs.info.apple.com/article.html?artnum=305715

Proxy authentication for existing Java application

Hi all,
I'm trying to run Protege - http://protege.stanford.edu - and it needs to fetch some files from the net, so I have to make it pass my company's proxy, which requires authentication.
I tried to add the following options in the .lax file, but got a 407 / proxy auth error
lax.nl.java.option.additional=-Dhttp.proxySet=true
-Dhttp.proxyHost=YOUR_PROXY_HOST -Dhttp.proxyPort=YOUR_PROXY_PORT
-Dhttp.proxyUser=YOUR_PROXY_USER -Dhttp.proxyPassword=YOUR_PROXY_PASSWOR
The only way I found to make an application accept proxy auth is http://www.javaworld.com/javaworld/javatips/jw-javatip42.html but I'll need to hack my application source code, recompile ...
Is there a way to pass such proxy auth parameters to an existing app without changing any line in its source code ? Or a way to create a wrapper around it that will catch HTTP connections to add proxy parameters to it ?
Thanks a lot for any hint !

-Dhttp.proxyUser=YOUR_PROXY_USER
-Dhttp.proxyPassword=YOUR_PROXY_PASSWORAs far as I can tell these two settings seem to be urban myth, or specific to some non-Sun vendor or external package. They do nothing in the JDK.

Proxy authentication for Internet N8 - Symbian 3

Hello, Who can help me with proxy authentication for internet N8, i can configure proxy adress and port but i need user name and password, i can't find it.
Please if anybody know it, help me.
Thks,
Cristian

Curious, I have not observed many of the issues you indicate.
0. Haven't had issues, but haven't really paid attention either.
1. This works very nicely for me. Switches to known WiFi when available and automatically uses 3G when not.
2. Have not observed.
3. Lots of apps are missing or don't work on S^3 - terrible shame.
4. It's a **bleep** app so don't worry about it. Half-baked junk, IMO.
5. Yep, it's bad.
6. No problem for me here. Entered Ovi credentials when phone first started up and haven't had to do it anywhere else or ever again.
7. Try Windows Media Player for sync. As for other issues, have not observed any of them.
Have not tried the rest.

Annoying Proxy authentication requests

In our lan we use Firefox (various versions, from 8 to 23, also 17 ESR releases) on windows computers (xp and 7 32 bit) . We require a http proxy authentication (squid) with username and password. We usually configure only Internet Options in windows control panel checking the flag on "use automatic configuration script" with an url like "http://proxy/proxy.pac". In this script we give a list of intranet sites (web applications) that don't require a proxy authentication on internet because are internal sites on our lan. So on firefox we use the option "Use system proxy settings". The issue is: during a session on those intranet sites the firefox dialog window for proxy authentication often appears annoying the operator who has to close it every time. We have tried to mitigate the problem disabling firefox automatic updates, add-ons updates, search engines updates, do not track requests, attack sites and web forgeries lists updates, telemetry, health and crash reports. It seems not to be enough to solve the problem.
Are there other settings to set in "about:config" page? workarounds? add-ons?
Thanks for your help in advance.
PS: sorry for my english, I'm still learning.

I have done some other tests and disabling all settings i mentioned above in the topic the issue is solved.
Bye

Bypass ISA Proxy authentication

Hi
My environment: External users access SharePoint intranet site by entering credentials in Microsoft ISA server login page(authenticate to ISA server then accessing all sharepoint sites).
one client wants to access sharepoint intranet without ISA authentication.Is there any way to access SharePoint intranet site(https://domainname/sites/site1) from internet without ISA authentication.I mean bypass ISA proxy authentication for this particular
SharePoint site(https://domainname/sites/site1)
SharePoint site(https://domainname/site/site1) is enabled with anonymous authentication.
Thanks for any help.

Your client can edit his hostfile.
C:\Windows\System32\drivers\etc\hosts
Here you specify the IP-Adress of your particular SP server and your URL.

Exchange server 2013 proxy authentication

Hi All,
I wanted to know what is the recommended proxy authentication for exchange server 2013.
I have observed the following from different proxy authentications:
1. Negotiate: By default, the proxy authentication is set to negotiate and uses anonymous as Log on network security(un-encrypted MAPI)
2. Basic: It always prompts for the user credentials and uses encrypted MAPI.
3. NTLM: Use negotiate at MAPI level by default
Please provide me some information on different authentication mechanisms and the one which is recommended to use.
Thanks,
Srinivas.

Hi Srinivas,
According to my knowledge, there are my views below:
Basic authentication: If you select this authentication type, Outlook will prompt for username and password
while attempting a connection with Exchange.
NTLM authentication: If you select this authentication type, exchange does not prompt users for a user
name and password. The current Windows user information on the client computer is supplied by the browser through a cryptographic exchange involving hashing with the Web server. If the authentication exchange initially fails to identify the user, the browser
will prompt the user for a Windows user account user name and password. So, when Outlook is trying to connect to Exchange and if the machine is domain joined, there isn’t a need to provide password.
Negotiate authentication: Enabled by default in Exchange 2013. This is a combination of Windows integrated
authentication and Kerberos authentication. If we employ negotiate authentication, exchange will authenticate the client using NTLM authentication type and if unable to verify authenticity, will challenge the client to authenticate using a username and password.
And you could set the authentication type like this:
ExternalClientAuthenticationMethod : Basic
InternalClientAuthenticationMethod : Ntlm
IISAuthenticationMethods : {Basic, Ntlm, Negotiate}
The command below for your reference:
Get-OutlookAnywhere | Set-OutlookAnywhere -InternalHostname "internalServer.contoso.com" -InternalClientAuthenticationMethod Ntlm -InternalClientsRequireSsl $true -ExternalHostname "externalServer.company.com" -ExternalClientAuthenticationMethod Basic -ExternalClientsRequireSsl $true -IISAuthenticationMethods Negotiate,NTLM,Basic
If you have any further questions, please let me know.
Best regards,
Eric

IAS 9i, JAAS and Proxy Authentication

Hi
I'm trying to use proxy authentication for a web application hosted on IAS. The 'Oracle 9i Application Server Security guide' states that proxy authentication is supported using JDBC, but I can't find instructions on how to use this approach. Is this feature configurable, or it must be hand coded in the web application.
Ideally, I'd like to establish the lightweight session using the credentials used to perform a JAAS authentication.
I've seen an example for a similar situation linking JAAS authentication to VPDs setting up the application context for the database connection, but the example was tied to BC4J. I'd like to use a more general approach, for example to use this feature with BI Beans.
I think this is not an unusual setup, but I can't find clear instructions on how to make the pieces work together.
Fernando

Thanks,
Any additional recommendations are welcome. We plan to use forms and reports service with SSL.

TopLink Proxy authentication issue

Hello all,
I tried to use proxy authentication for TopLink for connecting to a database via TopLink in a J2EE application deployed on an Oracle iAS 10.1.2. For doing that, I tried to follow the steps described in the TopLink documentation (http://www.oracle.com/technology/products/ias/toplink/doc/1013/main/_html/dblgcfg008.htm#BABDABCF) with the last scenario, "Server Session uses Proxy Connection".
According to the previously mentioned documentation, I created a session event handler for the preLoginEvent session event, the preLogin(SessionEvent event) method that I copied below.
The issue with this is that, when I try to run a TopLink query in a Java DAO class, I obtained some exceptions. There are two cases here:
1-If the code preLogin(SessionEvent event) is exactly as below, it seems that the queried views/tables cannot be seen. The exception obtained is:
Exception [TOPLINK-4002] (Oracle TopLink - 10g Release 3 (10.1.3.0.0) (Build 060118)): oracle.toplink.exceptions.DatabaseException
Internal Exception: java.sql.SQLException: ORA-00942: table or view does not exist
Error Code: 942
Call:SELECT count(*) FROM CIFHUB.SCQA_TEMPLATE
Query:DataReadQuery()
at oracle.toplink.exceptions.DatabaseException.sqlException(DatabaseException.java:290)
at oracle.toplink.internal.databaseaccess.DatabaseAccessor.basicExecuteCall(DatabaseAccessor.java:570)
at oracle.toplink.internal.databaseaccess.DatabaseAccessor.executeCall(DatabaseAccessor.java:442)
at oracle.toplink.threetier.ServerSession.executeCall(ServerSession.java:453)
at oracle.toplink.internal.queryframework.DatasourceCallQueryMechanism.executeCall(DatasourceCallQueryMechanism.java:117)
at oracle.toplink.internal.queryframework.DatasourceCallQueryMechanism.executeCall(DatasourceCallQueryMechanism.java:103)
at oracle.toplink.internal.queryframework.DatasourceCallQueryMechanism.executeSelectCall(DatasourceCallQueryMechanism.java:174)
at oracle.toplink.internal.queryframework.DatasourceCallQueryMechanism.executeSelect(DatasourceCallQueryMechanism.java:156)
at oracle.toplink.queryframework.DataReadQuery.executeNonCursor(DataReadQuery.java:118)
at oracle.toplink.queryframework.DataReadQuery.executeDatabaseQuery(DataReadQuery.java:110)
at oracle.toplink.queryframework.DatabaseQuery.execute(DatabaseQuery.java:603)
at oracle.toplink.queryframework.DataReadQuery.execute(DataReadQuery.java:96)
at oracle.toplink.publicinterface.Session.internalExecuteQuery(Session.java:2062)
at oracle.toplink.publicinterface.Session.executeQuery(Session.java:981)
at oracle.toplink.publicinterface.Session.executeQuery(Session.java:938)
at oracle.toplink.publicinterface.Session.executeSelectingCall(Session.java:1027)
at oracle.service.infra.myservlet.ACSProxyTestServlet.callTopLinkQuery3(ACSProxyTestServlet.java:138)
at oracle.service.infra.myservlet.ACSProxyTestServlet.doGet(ACSProxyTestServlet.java:60)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:740)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
at com.evermind.server.http.ResourceFilterChain.doFilter(ResourceFilterChain.java:65)
at oracle.service.infra.servlets.SecurityFilter.doFilter(SecurityFilter.java:105)
at com.evermind.server.http.ServletRequestDispatcher.invoke(ServletRequestDispatcher.java:663)
at com.evermind.server.http.ServletRequestDispatcher.forwardInternal(ServletRequestDispatcher.java:330)
at com.evermind.server.http.HttpRequestHandler.processRequest(HttpRequestHandler.java:830)
at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:224)
at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:133)
at com.evermind.util.ReleasableResourcePooledExecutor$MyWorker.run(ReleasableResourcePooledExecutor.java:192)
at java.lang.Thread.run(Thread.java:534)
2 - If in the preLogin(SessionEvent event) code, the line login.setProperty("proxytype", Integer.toString(OracleConnection.PROXYTYPE_USER_NAME)); is uncommented, then another exception is obtained. In this case another exception is obtained: an Invalid User/Password exception is thrown. If I comment this line, the login is successfull, but I obtain the exception at section 1.
I have to tell you in both cases the parameters of the Data source are properly set. I tested the datasource in another servlet where I created directly the connection based on the same datasource taken from the application server's JNDI.
Do you have any hint or idea about this issue?
Thanks a lot in advance!
Regards,
Marinel
public void preLogin(SessionEvent event)
DatabaseLogin login = event.getSession().getLogin();
// Make sure that external connection pooling is used
login.setUsesExternalConnectionPooling(true);
// Custom code to get the connector
try
login.setConnector(new OracleJDBC10_1_0_2ProxyConnector("jdbc/acs_proxyDS"));
} catch (Exception ex)
ex.printStackTrace();
// End of custom code to get connector
// login.setProperty("proxytype", Integer.toString(OracleConnection.PROXYTYPE_USER_NAME));
login.setProperty(OracleConnection.PROXY_USER_NAME, "[email protected]");
login.setProperty(OracleConnection.PROXY_DISTINGUISHED_NAME, "cn=my_name,l=emea,dc=oracle,dc=com");
String[] roles = new String[1];
roles[0] = "Manager";
login.setProperty(OracleConnection.PROXY_ROLES, roles);
}

Hi, I am also working on proxy authentication and am having the same problem as Marinel.
If I use a normal jdbc proxy connection, I can access the table just fine, and using a direct Toplink connection works fine.However, when i try and use proxy authentication via Toplink, i do not have permissions on the table.
From your last update,it seems that if I want to use DISTINGUISED NAME authentication, I should set "proxytype" to OracleConnection.PROXYTYPE_DISTINGUISHED_NAME, and set OracleConnection.PROXY_DISTINGUISHED_NAME to the full user distinguised name.
I have temporarily altered my preLogin Event as below to show these two scenarios, to access the table via normal jdbc proxy connection (and this part works), and then below that I try and set up the Toplink proxy session(which fails).
public void preLogin(SessionEvent event) {
DatabaseLogin login = event.getSession().getLogin();
// Make sure that external connection pooling is used
login.setUsesExternalConnectionPooling(true);
String urlThin =
"<jdbc_url>";
OracleDataSource ds;
OracleConnection oc = null;
try {
// Part 1 - Setup and access the PROXYDUMMY1 table using jdbc proxy sessions
DriverManager.registerDriver(new oracle.jdbc.driver.OracleDriver());
ds = new OracleDataSource();
ds.setURL(urlThin);
Properties props = new java.util.Properties();
props.put(OracleConnection.PROXY_DISTINGUISHED_NAME,
"cn=firstname_lastname,l=emea,dc=oracle,dc=com"); props.put("proxytype",OracleConnection.PROXYTYPE_DISTINGUISHED_NAME);
ds.setUser("database_account");
ds.setPassword("database_password");
oc = (OracleConnection)ds.getConnection();
oc.openProxySession (OracleConnection.PROXYTYPE_DISTINGUISHED_NAME, props);
String sql= " SELECT COL1, COL2 FROM PROXYDUMMY1";
Statement stmt = oc.createStatement();
ResultSet rSet = stmt.executeQuery(sql);
System.out.println("==============User requested data=================");
while ( rSet.next() )
System.out.println(rSet.getString(1));
rSet.close();
stmt.close();
//Part 2 - set up the proxy session for use by Toplink
login.setConnector(new OracleJDBC10_1_0_2ProxyConnector(ds));
login.setProperties(props);
} catch (Exception e) {
System.out.println("Exception: ProxyConnection.getConnection: "+e.getMessage());
e.printStackTrace();
}

Proxy authentication for Internet

Similar Messages

Maybe you are looking for