Regarding ADS Authentication

Hi,
We are developing application using weblogic workshop8.1 with integration domain.
Let me explain the scenario and requirement.
We need to use ADS for storing and authenticating users.
In admin console, defaultauthenticator under security.Realms.myrealm.Providers.Authentication is used.
Now list of users available under security.Realms.myrealm.Users in admin console can be viewed also in wliconsole's User Management.
We have add some user in ADS..
In admin console, We have configured a Active Directory Authenticator. After configuring, we have re-ordered the configured ADS Authenticator such that it is listed first followed by DefaultAuthenticator and DefaultIdentityAssertor.
Now when we go to security.Realms.myrealm.Users, we can see the users that has been added in ADS.
But the user under User Management in wliconsole are old users and not the ADS users..
to some extent understand that admin console users are stored in Embdedded LDAP and that of wliconsole are stored in pointbase database.
But our doubt is if we use the defaultAuthenticator, admin and wli users are in sync.
we need the ADS users to appear in wliconsole..
Please help us to achieve this...
Thanx & Regards,
Ram

Hi All,
Please somebody give me the solution for this as i need it very badly.. Please help... If the query is not clear, please let me know.
Thx & Regards,
Ram

Similar Messages

MS ADS Authentication

Hello,
How can I realize a ADS Authentication in a Great MS ADS
System with a lot of Domain Controllers (DC)?
Top Domain is DC=corp
Down under these Domain there are the country Domains
de.corp, fr.corp, gb.corp,... and this Domains contains the
Container users where e.g. my Account resist. [email protected] The
Domains down the corp Domain trusted to the Top Domain corp.
For a allover-the-company functionally Login-Dialog I have to
realize a Dialog, who has a Dropdown with all availables Domains
(de.corp, fr.corp,...) or a Dialog wo automatically find out in
which domain the actual user resist. When I enter my Userdata to
this mask, the CF Skript have to find automatically the correct IP
or DNS Name for the DC of my Account. This will be a 2-step Login
First the Form Data post my Loginname adiedler and try to find it
recursivly from top (corp) down to user.de.corp. If found, the
CFLDAP has to get back the result set with full ADS String for my
name. Then the 2nd Step try to autenticate with the full Name and
Passwort to the ADS. Any suggestions from you?

Hi,
make sure to keep your Authentication provider in provider specific select group member search as limited where as default would be unlimited.
Once you made this changes then it will solve this issue.
Regards,
Kal

WebLogic 11g - Stuck Thread issue observed during MS-ADS authentication

Hi
We have weblogic server 10.3.5 installed on RHEL 5.6. For our application authentication, we are getting user credentials authenticated for application login page using Microsoft Active Directory Service (MS-ADS) configured under WebLogic Security Realm. We are getting the below error message now due to STUCK Thread observed at JVM level.
Could you please help me to fix this issue and my thanks in advance.
]", which is more than the configured time (StuckThreadMaxTime) of "600" seconds. Stack trace:
Thread-6424 "[STUCK] ExecuteThread: '11' for queue: 'weblogic.kernel.Default (self-tuning)'" <alive, suspended, waiting, priority=1, DAEMON> {
-- Waiting for notification on: netscape.ldap.LDAPResponseListener@3a8ecc70[fat lock]
java.lang.Object.wait(Object.java:???)
java.lang.Object.wait(Object.java:485)
netscape.ldap.LDAPMessageQueue.waitForMessage(LDAPMessageQueue.java:198)
netscape.ldap.LDAPMessageQueue.waitFirstMessage(LDAPMessageQueue.java:100)
netscape.ldap.LDAPConnection.sendRequest(LDAPConnection.java:1782)
^-- Holding lock: netscape.ldap.LDAPConnection@3a8ecc83[thin lock]
netscape.ldap.LDAPConnection.simpleBind(LDAPConnection.java:1752)
netscape.ldap.LDAPConnection.authenticate(LDAPConnection.java:1260)
netscape.ldap.LDAPConnection.authenticate(LDAPConnection.java:1273)
netscape.ldap.LDAPConnection.authenticate(LDAPConnection.java:1240)
netscape.ldap.LDAPConnection.referralRebind(LDAPConnection.java:4955)
netscape.ldap.LDAPConnection.performReferrals(LDAPConnection.java:5065)
netscape.ldap.LDAPConnection.checkSearchMsg(LDAPConnection.java:2632)
netscape.ldap.LDAPConnection.search(LDAPConnection.java:2500)
weblogic.security.providers.authentication.LDAPAtnDelegate.getDNForUser(LDAPAtnDelegate.java:3667)
weblogic.security.providers.authentication.LDAPAtnDelegate.authenticate(LDAPAtnDelegate.java:3513)
weblogic.security.providers.authentication.LDAPAtnLoginModuleImpl.login(LDAPAtnLoginModuleImpl.java:145)
com.bea.common.security.internal.service.LoginModuleWrapper$1.run(LoginModuleWrapper.java:110)
com.bea.common.security.internal.service.LoginModuleWrapper.login(LoginModuleWrapper.java:101)
sun.reflect.GeneratedMethodAccessor2808.invoke(Unknown Source)
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
java.lang.reflect.Method.invoke(Method.java:575)
javax.security.auth.login.LoginContext.invoke(LoginContext.java:720)
javax.security.auth.login.LoginContext.access$000(LoginContext.java:186)
javax.security.auth.login.LoginContext$4.run(LoginContext.java:683)
javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:680)
javax.security.auth.login.LoginContext.login(LoginContext.java:566)
com.bea.common.security.internal.service.JAASLoginServiceImpl.login(JAASLoginServiceImpl.java:77)
sun.reflect.GeneratedMethodAccessor366.invoke(Unknown Source)
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
java.lang.reflect.Method.invoke(Method.java:575)
com.bea.common.security.internal.utils.Delegator$ProxyInvocationHandler.invoke(Delegator.java:57)
$Proxy28.login(Unknown Source)
weblogic.security.service.internal.WLSJAASLoginServiceImpl$ServiceImpl.login(WLSJAASLoginServiceImpl.java:81)
com.bea.common.security.internal.service.JAASAuthenticationServiceImpl.authenticate(JAASAuthenticationServiceImpl.java:74)
sun.reflect.GeneratedMethodAccessor364.invoke(Unknown Source)
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
java.lang.reflect.Method.invoke(Method.java:575)
com.bea.common.security.internal.utils.Delegator$ProxyInvocationHandler.invoke(Delegator.java:57)
$Proxy46.authenticate(Unknown Source)
weblogic.security.service.WLSJAASAuthenticationServiceWrapper.authenticate(WLSJAASAuthenticationServiceWrapper.java:29)
weblogic.security.service.PrincipalAuthenticator.authenticate(PrincipalAuthenticator.java:339)
weblogic.security.services.Authentication.doLogin(Authentication.java:127)
weblogic.security.services.Authentication.login(Authentication.java:69)
weblogic.security.services.Authentication.login(Authentication.java:51)
in.sis.ps.view.template.user.UserAdapter.doLogin(UserAdapter.java:681)
sun.reflect.GeneratedMethodAccessor2824.invoke(Unknown Source)
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
java.lang.reflect.Method.invoke(Method.java:575)
com.sun.el.parser.AstValue.invoke(Unknown Source)
com.sun.el.MethodExpressionImpl.invoke(Unknown Source)
org.apache.myfaces.trinidad.component.MethodExpressionMethodBinding.invoke(MethodExpressionMethodBinding.java:46)
com.sun.faces.application.ActionListenerImpl.processAction(ActionListenerImpl.java:85)
org.apache.myfaces.trinidad.component.UIXCommand.broadcast(UIXCommand.java:171)
oracle.adf.view.rich.component.fragment.ContextSwitchingComponent$1.run(ContextSwitchingComponent.java:130)
oracle.adf.view.rich.component.fragment.ContextSwitchingComponent._processPhase(ContextSwitchingComponent.java:447)
oracle.adf.view.rich.component.fragment.ContextSwitchingComponent.broadcast(ContextSwitchingComponent.java:122)
oracle.adf.view.rich.component.fragment.UIXInclude.broadcast(UIXInclude.java:106)
oracle.adf.view.rich.component.fragment.ContextSwitchingComponent$1.run(ContextSwitchingComponent.java:130)
oracle.adf.view.rich.component.fragment.ContextSwitchingComponent._processPhase(ContextSwitchingComponent.java:447)
oracle.adf.view.rich.component.fragment.ContextSwitchingComponent.broadcast(ContextSwitchingComponent.java:122)
oracle.adf.view.rich.component.fragment.UIXInclude.broadcast(UIXInclude.java:106)
javax.faces.component.UIViewRoot.broadcastEvents(UIViewRoot.java:720)
javax.faces.component.UIViewRoot.processApplication(UIViewRoot.java:1247)
oracle.adfinternal.view.faces.lifecycle.LifecycleImpl._invokeApplication(LifecycleImpl.java:964)
oracle.adfinternal.view.faces.lifecycle.LifecycleImpl._executePhase(LifecycleImpl.java:259)
oracle.adfinternal.view.faces.lifecycle.LifecycleImpl.execute(LifecycleImpl.java:181)
javax.faces.webapp.FacesServlet.service(FacesServlet.java:284)
weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:224)
weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:108)
weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:206)
weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:55)
oracle.adf.model.servlet.ADFBindingFilter.doFilter(ADFBindingFilter.java:115)
weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:55)
oracle.adfinternal.view.faces.webapp.rich.RegistrationFilter.doFilter(RegistrationFilter.java:65)
org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterListChain.doFilter(TrinidadFilterImpl.java:459)
oracle.adfinternal.view.faces.activedata.AdsFilter.doFilter(AdsFilter.java:44)
org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl$FilterListChain.doFilter(TrinidadFilterImpl.java:459)
org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl._doFilterImpl(TrinidadFilterImpl.java:253)
org.apache.myfaces.trinidadinternal.webapp.TrinidadFilterImpl.doFilter(TrinidadFilterImpl.java:148)
org.apache.myfaces.trinidad.webapp.TrinidadFilter.doFilter(TrinidadFilter.java:91)
weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:55)
oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:111)
oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:299)
oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUtil.java:405)
oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.java:94)
oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:98)
oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:70)
weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:55)
oracle.dms.servlet.DMSServletFilter.doFilter(DMSServletFilter.java:86)
weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:55)
weblogic.servlet.internal.RequestEventsFilter.doFilter(RequestEventsFilter.java:25)
weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:55)
weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.wrapRun(WebAppServletContext.java:3687)
weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3681)
weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:308)
weblogic.security.service.SecurityManager.runAs(SecurityManager.java:116)
weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2213)
weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2135)
weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1420)
weblogic.work.ExecuteThread.execute(ExecuteThread.java:203)
weblogic.work.ExecuteThread.run(ExecuteThread.java:170)
}

Hi,
make sure to keep your Authentication provider in provider specific select group member search as limited where as default would be unlimited.
Once you made this changes then it will solve this issue.
Regards,
Kal

Regarding Kerberos authentication for webservices.

Hi,
I need to use kerberos authentication for my receiver webservice. I am working in PI7.1 . Which adapter I can use for this ( WS-RM adapter or SOAP adapter) and How to configure it for kerberos. I mean, which value of authentication parameter refers to kerberos authentication.
Regards,
Reyaz hussain

Hi Reyaz,
To tell you frankly i never come across this kerberos protocol but since you would like to use there is certainly a chance after the launch of PI 7.1. The launch has Opened the Door to the World of Web Services Reliable Messaging. "The Integration Directory enables you to easily configure scenarios where the Integration Server acts as a message hub between WS-RM-enabled applications and any other application or technical system. Thus, you can configure scenarios where either a Web Service client calls the Integration Server and the message is then routed to any other application, or the other way around where any application calls a Web Service provider via the Integration Server. In the Integration Directory you can do the complete configuration of the Integration Server inbound or outbound processing."
https://www.sdn.sap.com/irj/scn/wiki?path=/display/profile/2007/07/25/new+news&focusedcommentid=44360
Regards
joel

Regarding ADS depreciation

Hi All,
           My client uses the ADS depreciation for property outside the US and for conversion of this data from legacy system to SAP system has to be done.. i.e the depreciation keys need to be identified. They are following the MACRS-ADS methodology. any input on this would be highly appreciated.
                                          Thanks & Regards,
                                         Abhinav Kumar

Hello
Depreciation keys for MACRS
M200 3, 5, 7, 10 years property
M150 15, 20 years property
MSTL 27.5 and 31.5 years property
For ACRS, the following depreciation keys are defined in accordance with the Internal Revenue Service depreciation rate tables:
A0xx defines the ACRS depreciation percentages for 3.5 and 10 years property.
A15x defines the ACRS depreciation percentages for 15 years property. Depending on the month placed in service, use A15A (Jan.) through A15L (Dec.).
A18x defines the ACRS depreciation percentages for 18 years property. Use A18A (Jan.) through A18L (Dec.) for assets placed in service before June 23rd 1984. Use A18M (Jan.) through A18X (Dec.) for assets placed in service after June 22nd 1984.
A19x defines the ACRS-depreciation percentages for 19 years property. Depending on the month placed in service, use A19A (Jan.) through A19L (Dec.).
Reg
*assign points if useful

How to add a switch to acs for login and ads authentication

Hi all
I want to add my switch so that it authenticates to my acs for login auth, I have done the switch end, using radius, also added the switch on the acs, how do I force the acs to use windows auth for this login? do i just go under the network config where the device is and tick the box saying use windows database for authentication, and then do a group mapping ?
cheers

Hi,
Easiest way is to download the table eg into an Excel table (if possible) or text table. Drop the table from the database. Build your table with the new key field. Build the database table again and fill it.
You can do it also over the database into a new table. Drop the old one. Build the enhanced one and fill it. Afterwards drop your (temporary) table.
Maybe there are other ways, but this works.
Success,
Rob

Please Help Me Regarding OS Authentication..

Hi All,
I am using Oracle Database 10g on Windows XP.
My problem is when I provide my Operating System Username and Password(Host Credentials) for example,
Username: Administrator and
Password: *******. I am getting the error shown below :
Validation Error
Examine and correct the following errors, then retry the operation:
Error - RemoteOperationException: ERROR: Wrong password for user
This is happening everytime when I give my OS username and password such as when starting up or shutting down the Instance through EM Database Control or when using Datapump utility or SQL * Loader. I have set OS_AUTHENT_PREFIX parameter to NULL.
Thanks in Advance...

This section of the Install Guide may be relevant for OEM and Windows rights assignment.
You may have been overly generous when granting the privileges. A common security measure is to not grant more than necessary (the old Principle of least privilege).
For the EM jobs to be able to 'do its job', just adding Log on as batch job should suffice. (The LocalSystem account does normally have (built-in) rights to log on as a service and full local rights.) Perhaps you have the agent running under a different user.

Authentication for ADS

hi,
I am setting authentication for ADS. When i click on Webservice security, under services, i get "Error while loading service web service security" in visual admin.
Can you also add a point as to why do we need ads authentication.

I was accessing Visual Administrator thorugh my local file (by Pasting the server directories ) system and connecting to a remote server.hence i had issues.
Solution is to access visual admin directly from the server where it is installed.

Questions regarding authentication used in SRDemo ADF Tutorial

Hello,
I am currently in the process of learning ADF with the help of SR Demo application from OTN.
I have a few questions regarding the authentication used in SRDemo ADF Tutorial.
1) Why do I need to specify the list of the all the users in the jazn-data.xml file with the name and credential attributes?
2) How I change the authentication mechanism to point to database tables.(If it's not using, correct me if I am wrong).
3) The prompt which I am getting for authentication is like OEM authentication. Can I change this to a normal authentication login page?
4) As an option I would like to pass the person who logged in to windows , should be able to log in to the application. How can I pass the username(which I have in a java string) to my application and get logged in?
Any help is highly appreciable.
Thanks

Read these two, should help
http://technology.amis.nl/blog/?p=1462
http://stegemanoracle.blogspot.com/2006/02/using-custom-login-module-with-jdev.html
But to be honest, I couldn't get it working.

Tta4.2 AD authentication

Hi,
I try to setup a tta4.2 environment with ADS
authentication -- for some test -- we use
tta4.2 server running on SuSE 9.2 and
Win2003 server as DC (resp. KDC).
The setup works perfectly, when we use LDAP
authentication but it fails with ADS auth.
To analyse the problem, I use the client
kerberos tools (MIT dist. 1.4.2) with a config
file that determins the win2003 srv as KDC;
then I can use kinit and klist to verfy that
my test user obtains a krb ticket, in deed.
To get involved with the tta-ADS problem, I
further truned on full logging (by a log filter
*/*/*:err.log), that got the log lines below.
Btw.: the password for 'anton' isn't wrong,
since I got the ticket by hand...
2nd: I had to add a DNS A record for gc.tcp
in DNS domain aep.... (the DC is also DNS srv.),
this record is only be used by tta not the
MIT krb tools!
Any idea what went wrong?
Kind regards,
Tankred
=========================================
log lines:
2005/10/18 11:18:04.600 (pid 23231) server/kerberos/info
#1129627084600
Kerberos attempting to log in anton in to AEP.PASS.NET
2005/10/18 11:18:04.837 (pid 23231) server/kerberos/moreinfo
#1129627084837
Kerberos succeeded in authenticating [email protected] to AEP.PASS.NET
2005/10/18 11:18:04.987 (pid 23231) server/ldap/info
#1129627084987
LDAP config is: "ad://aep.pass.net"
2005/10/18 11:18:05.071 (pid 23231) server/kerberos/info
#1129627085071
Kerberos attempting to log in adm in to AEP.PASS.NET
2005/10/18 11:18:05.107 (pid 23231) server/kerberos/moreinfo
#1129627085107
Kerberos succeeded in authenticating [email protected] to AEP.PASS.NET
2005/10/18 11:18:05.108 (pid 23231) server/ldap/info
#1129627085108
LDAP server user was changed for scope "forest" to "[email protected]"
2005/10/18 11:18:05.161 (pid 23231) server/login/info
#1129627085161
The password for anton was incorrect or has expired.
Exception was: java.lang.NullPointerException
at
com.sco.tta.common.jndi.provider.ldap.NslookupHelper.addService(NslookupHelper.java:163)
at
com.sco.tta.common.jndi.provider.ldap.LdapRemoteService.doBasicADSetup(LdapRemoteService.java:357)
at
com.sco.tta.common.jndi.provider.ldap.LdapRemoteService.doBasicSetup(LdapRemoteService.java:262)
at
com.sco.tta.common.jndi.provider.ldap.LdapRemoteService.getServers(LdapRemoteService.java:126)
at
com.sco.tta.common.jndi.provider.ldap.LdapScopeState.getServerList(LdapScopeState.java:266)
at
com.sco.tta.common.jndi.provider.ldap.LdapCallState.<init>(LdapCallState.java:110)
at
com.sco.tta.common.jndi.provider.ldap.LdapMultiCtx.lookupLink(LdapMultiCtx.java:130)
at
com.sco.jndi.toolkit.provider.BaseContext.lookup(BaseContext.java:1024)
... more java exceptions
at com.sco.cid.common.WorkerPool$Worker.run(WorkerPool.java:524)
at java.lang.Thread.run(Thread.java:595)
2005/10/18 11:18:05.169 (pid 23231) server/login/auditinfo
#1129627085169
Login attempt for anton.
Login failed: none of the enabled login authorities authenticated the user.
2005/10/18 11:18:05.170 (pid 23231) server/login/auditinfo
#1129627085170
Login attempt for anton.
Login failed: vetoed by a login filter.

Hi,
I resolved the problem by myself :-)
TTA4.x wants two DNS service records to locate
the GC and LDAP services form an ADS:
gc.tcp.<doamain>
ldap.tcp.<domain>
If only the first record is present, a ADS user
can login, but it has no webtop...
Curious enough, Microsoft itself, seems not to
rely on these DNS records.
Btw., I used a bind9 server on the TTA srv. that
supports SRV, and TTA takes these records seriously, since a wrong port
number will not
work.
Regards,
Tankred

ADS render error

Hi,
Our BC group reviewed every note on SDN regarding ads rendering problems. I am trying to create an offline PDF form (ready for input - optional), but we are still not able to find a proper solution. ADS service trace (not whole... it is rather large) and source of my test report are included.
Report FP_PDF_TEST_00 executes successfully - result:
Versionsinformationen:              705.20060620101936.310918
ADS trace -
#1.5#0011254F5F860065000005710000358300043A8EDB2F5B5D#1190285143923#com.sap.security.core.server.destinations.service.DestinationServiceImpl#com.adobe/AdobeDocumentServices#com.sap.security.core.server.destinations.service.DestinationServiceImpl.getDestination#ADSUSER#175#SAP J2EE Engine JTA Transaction : [0ffffffb5ffffffcca0044ffffff92]#xisap.up.telekom_XI1_11914250#ADSUSER#a2d69810676611dca89c0011254f5f86#SAPEngine_Application_Thread[impl:3]_118##0#0#Error#1#/System/Security/destinations#Java###An error occurred while reading the destination , type . The error was .#3#FP_ICF_DATA_XI1#HTTP#<Localization failed: ResourceBundle='com.sap.exception.io.IOResourceBundle', ID='No such destination FP_ICF_DATA_XI1 of type HTTP exists ', Arguments: []> : Can't find resource for bundle java.util.PropertyResourceBundle, key No such destination FP_ICF_DATA_XI1 of type HTTP exists #
#1.5#0011254F5F860065000005720000358300043A8EDB2F6D2E#1190285143928#com.adobe.AdobeDocumentServices#com.adobe/AdobeDocumentServices#com.adobe.AdobeDocumentServices#ADSUSER#175#SAP J2EE Engine JTA Transaction : [0ffffffb5ffffffcca0044ffffff92]#xisap.up.telekom_XI1_11914250#ADSUSER#a2d69810676611dca89c0011254f5f86#SAPEngine_Application_Thread[impl:3]_118##0#0#Error##Plain###Problem trying read data from Destination: dest:FP_ICF_DATA_XI1//sap/bc/fp/form/layout/ZPDF_FORM.XDP?fp-language=EN&fp-cacheinfo=2007-09-10T10%3a45%3a36Z%24305d7718-345f-4592-be96-36a22a680bca%240%24sl_SL%24v0%2e9
com.adobe.ads.destination.DestinationException: Destination exception during destination lookup: FP_ICF_DATA_XI1
     at com.adobe.ads.destination.Destination.getDestination(Unknown Source)
     at com.adobe.ads.destination.Destination.readUrlStream(Unknown Source)
     at com.adobe.ads.destination.Destination.readTemplate(Unknown Source)
     at com.adobe.ads.data.DestURLData.setData(Unknown Source)
     at com.adobe.ads.data.DestURLData.<init>(Unknown Source)
     at com.adobe.ads.data.PDFData.createFromURL(Unknown Source)
     at com.adobe.ads.data.PDFData.create(Unknown Source)
     at com.adobe.ads.request.Template.setPDFData(Unknown Source)
     at com.adobe.ads.request.Template.initialize(Unknown Source)
     at com.adobe.ads.request.Renderer.initializeTemplates(Unknown Source)
     at com.adobe.ads.request.Renderer.execute(Unknown Source)
     at com.adobe.BaseADSRequest.doWork(Unknown Source)
     at com.adobe.AdobeDocumentServicesWorker.processRender(Unknown Source)
     at com.adobe.AdobeDocumentServicesWorker.execute(Unknown Source)
     at com.adobe.AdobeDocumentServicesEJB.processRequest(Unknown Source)
     at com.adobe.AdobeDocumentServicesEJB.rpData(Unknown Source)
     at com.adobe.AdobeDocumentServicesLocalLocalObjectImpl0.rpData(AdobeDocumentServicesLocalLocalObjectImpl0.java:120)
     at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
     at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
     at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
     at java.lang.reflect.Method.invoke(Method.java:324)
     at com.sap.engine.services.webservices.runtime.EJBImplementationContainer.invokeMethod(EJBImplementationContainer.java:126)
     at com.sap.engine.services.webservices.runtime.RuntimeProcessor.process(RuntimeProcessor.java:157)
     at com.sap.engine.services.webservices.runtime.RuntimeProcessor.process(RuntimeProcessor.java:79)
     at com.sap.engine.services.webservices.runtime.servlet.ServletDispatcherImpl.doPost(ServletDispatcherImpl.java:92)
     at SoapServlet.doPost(SoapServlet.java:51)
     at javax.servlet.http.HttpServlet.service(HttpServlet.java:760)
     at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
     at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:401)
     at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:266)
     at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:387)
     at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:365)
     at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:944)
     at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:266)
     at com.sap.engine.services.httpserver.server.Client.handle(Client.java:95)
     at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:160)
     at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
     at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
     at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
     at java.security.AccessController.doPrivileged(Native Method)
     at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:100)
     at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:170)
Caused by: com.sap.security.core.server.destinations.api.DestinationException: [destination_0001] The properties for destination FP_ICF_DATA_XI1 of type HTTP could not be located.
     at com.sap.security.core.server.destinations.service.DestinationServiceImpl.getDestination(DestinationServiceImpl.java:168)
     at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
     at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
     at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
     at java.lang.reflect.Method.invoke(Method.java:324)
     at com.sap.engine.services.rmi_p4.reflect.LocalInvocationHandler.invokeInternal(LocalInvocationHandler.java:78)
     at com.sap.engine.services.rmi_p4.reflect.AbstractInvocationHandler.invoke(AbstractInvocationHandler.java:50)
     at $Proxy253.getDestination(Unknown Source)
     ... 42 more
Caused by: com.sap.exception.io.SAPIOException: <Localization failed: ResourceBundle='com.sap.exception.io.IOResourceBundle', ID='No such destination FP_ICF_DATA_XI1 of type HTTP exists ', Arguments: []> : Can't find resource for bundle java.util.PropertyResourceBundle, key No such destination FP_ICF_DATA_XI1 of type HTTP exists
     at com.sap.security.core.server.destinations.io.ConfigurationManagerStorage.get(ConfigurationManagerStorage.java:123)
     at com.sap.security.core.server.destinations.service.DestinationServiceImpl.getDestination(DestinationServiceImpl.java:138)
     ... 49 more
#1.5#0011254F5F860065000005740000358300043A8EDB321166#1190285144101#com.adobe.AdobeDocumentServicesWorker#com.adobe/AdobeDocumentServices#com.adobe.AdobeDocumentServicesWorker#ADSUSER#175#SAP J2EE Engine JTA Transaction : [0ffffffb5ffffffcca0044ffffff92]#xisap.up.telekom_XI1_11914250#ADSUSER#a2d69810676611dca89c0011254f5f86#SAPEngine_Application_Thread[impl:3]_118##0#0#Error#1#/System/Server#Plain###Error embedding request inputs in error log.#
#1.5#0011254F5F860065000005750000358300043A8EDB321812#1190285144102#com.adobe.AdobeDocumentServices#com.adobe/AdobeDocumentServices#com.adobe.AdobeDocumentServices#ADSUSER#175#SAP J2EE Engine JTA Transaction : [0ffffffb5ffffffcca0044ffffff92]#xisap.up.telekom_XI1_11914250#ADSUSER#a2d69810676611dca89c0011254f5f86#SAPEngine_Application_Thread[impl:3]_118##0#0#Error##Plain###Error embedding request inputs in error log.
java.lang.NullPointerException
     at com.adobe.ads.request.Renderer.embedInputs(Unknown Source)
     at com.adobe.AdobeDocumentServicesWorker.processRenderLog(Unknown Source)
     at com.adobe.AdobeDocumentServicesWorker.processRender(Unknown Source)
     at com.adobe.AdobeDocumentServicesWorker.execute(Unknown Source)
     at com.adobe.AdobeDocumentServicesEJB.processRequest(Unknown Source)
     at com.adobe.AdobeDocumentServicesEJB.rpData(Unknown Source)
     at com.adobe.AdobeDocumentServicesLocalLocalObjectImpl0.rpData(AdobeDocumentServicesLocalLocalObjectImpl0.java:120)
     at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
     at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
     at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
     at java.lang.reflect.Method.invoke(Method.java:324)
     at com.sap.engine.services.webservices.runtime.EJBImplementationContainer.invokeMethod(EJBImplementationContainer.java:126)
     at com.sap.engine.services.webservices.runtime.RuntimeProcessor.process(RuntimeProcessor.java:157)
     at com.sap.engine.services.webservices.runtime.RuntimeProcessor.process(RuntimeProcessor.java:79)
     at com.sap.engine.services.webservices.runtime.servlet.ServletDispatcherImpl.doPost(ServletDispatcherImpl.java:92)
     at SoapServlet.doPost(SoapServlet.java:51)
     at javax.servlet.http.HttpServlet.service(HttpServlet.java:760)
     at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
     at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:401)
     at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:266)
     at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:387)
     at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:365)
     at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:944)
     at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:266)
     at com.sap.engine.services.httpserver.server.Client.handle(Client.java:95)
     at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:160)
     at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
     at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
     at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
     at java.security.AccessController.doPrivileged(Native Method)
     at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:100)
     at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:170)
#1.5#0011254F5F860065000005770000358300043A8EDB338AB8#1190285144197#com.adobe.AdobeDocumentServicesWorker#com.adobe/AdobeDocumentServices#com.adobe.AdobeDocumentServicesWorker#ADSUSER#175#SAP J2EE Engine JTA Transaction : [0ffffffb5ffffffcca0044ffffff92]#xisap.up.telekom_XI1_11914250#ADSUSER#a2d69810676611dca89c0011254f5f86#SAPEngine_Application_Thread[impl:3]_118##0#0#Error#1#/System/Server#Plain###No output was generated while rendering
The render error log file has been written to /usr/sap/XI1/SYS/global//AdobeDocumentServices/renderErrorLog/errorFiles/2007.09.20.124544SAFPUPUKOLBL.pdf.
Please validate the input files or streams attached with it and try again#
#1.5#0011254F5F860065000005790000358300043A8EDB3392F2#1190285144199#com.adobe.AdobeDocumentServicesWorker#com.adobe/AdobeDocumentServices#com.adobe.AdobeDocumentServicesWorker#ADSUSER#175#SAP J2EE Engine JTA Transaction : [0ffffffb5ffffffcca0044ffffff92]#xisap.up.telekom_XI1_11914250#ADSUSER#a2d69810676611dca89c0011254f5f86#SAPEngine_Application_Thread[impl:3]_118##0#0#Error#1#/System/Server#Plain###Processing exception during a "Render" operation.
Request start time: Thu Sep 20 12:45:43 CEST 2007
com.adobe.ads.destination.DestinationException: Destination exception during destination lookup: FP_ICF_DATA_XI1
Exception Stack Trace:
com.adobe.ads.destination.DestinationException: Destination exception during destination lookup: FP_ICF_DATA_XI1
source code -
I get exception system_error when executing generated fm.
*& Report ZCREATE_PDF_FORM_OFFLINE_TEST
REPORT ZCREATE_PDF_FORM_OFFLINE_TEST.
tables:
zpdf_data_1.
parameters:
p_emso like zpdf_data_1-emso.
data:
wa_inter like zpdf_data_1,
fm_name type FPNAME,
fp_outputparams type SFPOUTPUTPARAMS,
fp_docparams type sfpdocparams,
fp_formoutput type fpformoutput,
e_ads type string.
select single *
from zpdf_data_1 into corresponding fields of wa_inter
where
emso = p_emso.
First get name of the generated function module
call function 'FP_FUNCTION_MODULE_NAME'
EXPORTING
    i_name     = 'ZPDF_FORM'
IMPORTING
    e_funcname = fm_name.
Set output parameters and open spool job
fp_outputparams-nodialog = 'X'. " suppress printer dialog popup
fp_outputparams-GETPDF = 'X'. " launch print preview
fp_outputparams-ADSTRLEVEL = '04'.
call function 'FP_JOB_OPEN'
CHANGING
    ie_outputparams = fp_outputparams
EXCEPTIONS
    cancel          = 1
    usage_error     = 2
    system_error    = 3
    internal_error = 4
    others          = 5.
Set form language and country (->form locale)
fp_docparams-langu = 'E'.
fp_docparams-country = 'EN'.
fp_docparams-FILLABLE = 'X'.
Now call the generated function module
call function fm_name
EXPORTING
    /1bcdwb/docparams = fp_docparams
    I_ZPDF_DATA_1       = wa_inter
IMPORTING
    /1BCDWB/FORMOUTPUT = fp_formoutput
EXCEPTIONS
    usage_error        = 1
    system_error       = 2
    internal_error     = 3
    others             = 4.
CALL FUNCTION 'FP_GET_LAST_ADS_ERRSTR'
IMPORTING
   E_ADSERRSTR       = e_ads
Close spool job
call function 'FP_JOB_CLOSE'
EXCEPTIONS
    usage_error    = 1
    system_error   = 2
    internal_error = 3
    others         = 4.
data:
lt_att_content_hex type solix_tab.
CALL FUNCTION 'SCMS_XSTRING_TO_BINARY'
EXPORTING
    buffer     = fp_formoutput-PDF   "PDF file from function module
TABLES
    binary_tab = lt_att_content_hex.
CLASS cl_bcs DEFINITION LOAD.
DATA:
lo_send_request TYPE REF TO cl_bcs VALUE IS INITIAL.
lo_send_request = cl_bcs=>create_persistent( ).
Message body and subject
DATA:
lt_message_body TYPE bcsy_text VALUE IS INITIAL,
lo_document TYPE REF TO cl_document_bcs VALUE IS INITIAL.
APPEND 'Dear Vendor,' TO lt_message_body.
append ' ' to lt_message_body.
APPEND 'Please fill the attached form and send it back to us.'
TO lt_message_body.
append ' ' to lt_message_body.
APPEND 'Thank You,' TO lt_message_body.
lo_document = cl_document_bcs=>create_document(
i_type = 'RAW'
i_text = lt_message_body
i_subject = 'Vendor Payment Form' ).
DATA: lx_document_bcs TYPE REF TO cx_document_bcs VALUE IS INITIAL.
TRY.
    lo_document->add_attachment(
    EXPORTING
    i_attachment_type = 'PDF'
    i_attachment_subject = 'Vendor Payment Form'
I_ATTACHMENT_SIZE =
I_ATTACHMENT_LANGUAGE = SPACE
I_ATT_CONTENT_TEXT =
I_ATTACHMENT_HEADER =
    i_att_content_hex = lt_att_content_hex ).
CATCH cx_document_bcs INTO lx_document_bcs.
ENDTRY.
Add attachment
Pass the document to send request
lo_send_request->set_document( lo_document ).
Create sender
DATA:
lo_sender TYPE REF TO if_sender_bcs VALUE IS INITIAL,
l_send type ADR6-SMTP_ADDR value '[email protected]'.
lo_sender = cl_cam_address_bcs=>create_internet_address( l_send ).
Set sender
lo_send_request->set_sender(
EXPORTING
i_sender = lo_sender ).
Create recipient
DATA:
lo_recipient TYPE REF TO if_recipient_bcs VALUE IS INITIAL.
lo_recipient = cl_sapuser_bcs=>create( sy-uname ).
Set recipient
lo_send_request->add_recipient(
EXPORTING
i_recipient = lo_recipient
i_express = '' ).
lo_send_request->add_recipient(
EXPORTING
i_recipient = lo_recipient
i_express = '' ).
Send email
DATA: lv_sent_to_all(1) TYPE c VALUE IS INITIAL.
lo_send_request->send(
EXPORTING
i_with_error_screen = 'X'
RECEIVING
result = lv_sent_to_all ).
COMMIT WORK.
message 'The payment form has been emailed to the Vendor' type 'I'.
Please help!
Regards,
Uros

I went through all steps in note 944221, and the one you suggested. I get stuck in the Visual Admin when i try to extend Destinations service - i get an error:
<b>Error while loading service Destinations</b>
Check the status bar on the screenshot (link below). Any suggestions?
<a href="http://freeweb.siol.net/vkolbl/ADS_Problem.gif">ADS Problem</a>

Authenticated Users Group Question

I have a quick question regarding the Authenticated Users "group". I used to be a systems administrator, but I'm a bit rusty since I've been a software developer for the last 10 years. A conflict with data center operations (DCO) group
at work lead me to get another opinion.
The question is this... is the authenticated users group a domain-level group or is there a local authenticated users group that would allow only users authenticated locally? We have a share that permits the authenticated users group access.
My opinion is that all domain users who have authenticated successfully have access to this share. The DCO group is telling me that this is the local (to the server containing the share of course) authenticated users group only.
Is there such a thing as a local-only authenticated users group? To me this doesn't even make sense, but I could very well be wrong.
Nathon Dalton
Sr. Software Engineer
Blog: http://nathondalton.wordpress.com

I apologize. I don't think I explained myself correctly. Let's consider the following...
SERVER: SERVER1
DOMAIN: DOMAIN1
SHARE: \\SERVER1\SHARE1
SHARE PERMISSIONS: Authenticated Users - Full Control
Given the above information, is it possible that the Authenticated Users group will allow ONLY users that are defined on SERVER1 to access \\SERVER1\SHARE1?
My understanding is that's not possible. There's one defined Authenticated Users group and that represents ALL users that are authenticated against DOMAIN1, whether added to local groups, shares, etc.
What I'm being told however is that SHARE1 having Authenticated Users assigned is okay since only those user accounts defined on SERVER1 will be able to access it. All the users in the domain will NOT be able to access it. I think this is bogus. Am I wrong?
Nathon Dalton
Sr. Lead Developer
Blog: http://www.nathondalton.com

Basic Authentication in Exchange 2013

Dear All,
I am facing issue regarding basic authentication in exchange 2013 I run all the command and from Server setting I set the outlook anywhere on Basic Authentication but when I configure outlook client after successfully run the wizard the setting
of outlook in Exchange proxy setting its show NTLM. I run all the below commands and done with the srver setting but outlook will configured only on NTLM. Externally and Internally both are same through autodiscover.
Set-OutlookAnywhere -Identity: "servername\rpc (Default Web Site)" -ExternalClientAuthenticationMethod Basic
Set-OutlookAnywhere -Identity "servername\rpc (Default Web Site)" -SSLOffloading $false
Set-OutlookAnywhere -Identity "servername\rpc (Default Web Site)" -IISAuthenticationMethods Basic
Set-OutlookAnywhere -Identity "servername\rpc (Default Web Site)" -IISAuthenticationMethods Basic,NTLM
I just need to confrim that there is no more Basic Authentication support in Exchange 2013 or is there any work around ?
Danish Khan DK

Hi Danish,
Basic authentication is supported on Exchange 2013, you can use the following cmdlet to set it.
Set-OutlookAnywhere -Identity "servername\Rpc (Default Web Site)" -InternalClientAuthenticationMethod Basic
What's more, it is recommended to set the IISAuthenticationMethods to: {Basic, Ntlm, Negotiate}.
For your reference:
Set-OutlookAnywhere
https://technet.microsoft.com/en-us/library/bb123545(v=exchg.150).aspx
Hope this can be helpful to you.
Best regards,
Amy Wang
TechNet Community Support

Adobe Document Services: How to upgrade from ADS SP 9 to ADS SP 15

Hi,
Can anyone tell me that how I can upgrade from ADS SP9 to ADS SP15.
I have downloaded the files ADSSAP15_0-20000262.SCA and ADSSAPOFF15_0-20000262.SCA.
Can anyone tell me the procedure for upgrading i.e Is there anything which is to undeploy regarding ADS SP9 or directly to deploy it through SDM and which of these above two files to deploy first through SDM or something else to do first.
Regards
Deep

Hey Deep,
you have to do following:
1. Deploy these two files using SDM
2. Undeploy DocumentServicesBinaries using SDM
3. Remove the alias "ReaderRights" from "Document Services Configuration" in the Visual Administrator
4. Move the Credential file to the directory <INSTDIR>/<SAPSID>/SYS/global/AdobeDocumentServices/TrustManagerService/trust/credentials
5. Go back to the Visual Administrator and register the "ReaderRights" again
6. Restart the SAP J2EE Engine
Kind Regards,
Marita

Safari 2.x vs FireFox v2.x and authentication (passwords sent as clear text

Hi All,
first time poster here. I have been asked by a colleague if Safari 2.x under OS X 10.4.x behaves in the exact same manner as FireFox 2.x - specifically with regard to authentication challenges and sending text in the clear. In safari, He has stated that when accessing a specific proxy site with auth the dialog box say that the password will be sent in the clear.
Advice, correction, suggestions from anyone would be greatly appreciated.
Regards,
Ed Cox
NSW DET ITD.
[email protected]
iMac 20" dual Core Mac OS X (10.4.8)

egillis, welcome to Discussions!
This is really a developer question. Though someone may answer it here, you may have better luck posting in Safari's own development forum.
See this post for a couple of links.
Hope this helps!

Regarding ADS Authentication

Similar Messages

Maybe you are looking for