Remote os authentication

Similar Messages

• Acrobat Pro 9 SharePoint PDF Review Remote Service Authentication

  I am using Adobe Acrobat Pro Extended 9.4.3 (as part of the Technical Communication Suite 2.5). I am hosting PDF reviews on our company SharePoint server. In the past, I haven't had any problems doing this.
  However today I cannot connect, and a "Remote Service Authentication" dialog box (see below) appears everytime I try to connect to a PDF review. This is the same for both reviews I have started, or for reviews others have started. Also, I have full permissions for the SharePoint Document Library.
  I entered my credentials, then clicked OK. The dialog box just reappears over... and over... and over.
  It doesn't seem to matter which program the PDF documents were created with (same dialog for documents generated from MS Word and Framemaker). And a co-worker was able to connect without a problem and enter comments (of course, I can't see his comments since I cannot connect to the server). This leads me to believe that it is a problem on my machine.
  Any ideas?

  Yes, I initiated the review. When I initiated the review, I saw a different dialog for entering my username and password. That took my credentials and uploaded the PDF to SharePoint.
  I don't remember seeing RSA dialog (see the image I attached to the first post) when I created the review, only when I opened the PDF after the review was generated. At that point, I did select to save the credentials, but it didn't seem to save them (since everytime the dialog appears it is blank).
  I had another one of our tech writers test it before sending it to the rest of the team, and he was able to access the review and put in test comments. He never saw the dialog. At that point, I looked at other reviews that I had initiated in the past, and was unable to add comments to those either (at least for the ones that didn't have a deadline). So I am pretty sure it is something that has changed on my system in the last few weeks. Perhaps a Microsoft Security update?

• ASA Remote Access Authentication with LDAP Server

  Thank you in advance for your help.
  I am configuring an ASA to authenticate with a ldap server for ipsec vpn access.  My customer has 3 networks that are to be accessed by remote users.  However they want to be able to say that one user can get to 2 of the networks and not the 3rd.  So basically they want control over what network behind the firewall each user can access.  This seems doable from my reading and I had planned to creating a group for each network that needs accessible and either do attribute maps to each group with a separate group created on the ldap server for authentication.  Basically a ldap group on the ldap server that will have the users name in the group in order for access.  I can restrict access via acl's or filtering to force my group to only be allowed access to a specific network.  Here is the problem I am having now.
  The ldap server has been created and seems to be working fine.  I have created my AAA groups and servers and I have done the ldap test with a test user vpntest and a password on the ldap server.  When I run the authentication test from the ADSM or command line I get a good authentication successful message.  So I configured a vpn client remotely and attempted to authenticate to this group and it says there is no user by that name.  Below is a paste of the debug.  The second part is when I did a successful test from the ASDM or CLI and it worked great.  The first part is when I attempted from the vpn client.  It all looks the same from the search criteria.  What am I missing here or does anyone more knowledgeable see anything that I am doing wrong.  Can this be done this way or should I try radius.  The customer was just adament about using ldap.
  extvpnasa5510#
  [243] Session Start
  [243] New request Session, context 0xd5713fe0, reqType = 1
  [243] Fiber started
  [243] Creating LDAP context with uri=ldaps://130.18.22.44:636
  [243] Connect to LDAP server: ldaps://130.18.22.44:636, status = Successful
  [243] supportedLDAPVersion: value = 2
  [243] supportedLDAPVersion: value = 3
  [243] No Login DN configured for server 130.18.22.44
  [243] Binding as administrator
  [243] Performing Simple authentication for  to 130.18.22.44
  [243] LDAP Search:
          Base DN = [ou=employees,o=msues]
          Filter  = [uid=vpntest]
          Scope   = [SUBTREE]
  [243] User DN = [uid=vpntest,ou=employees,o=msues]
  [243] Talking to iPlanet server 130.18.22.44
  [243] No results returned for iPlanet global password policy
  [243] Fiber exit Tx=386 bytes Rx=414 bytes, status=-1
  [243] Session End
  extvpnasa5510#
  [244] Session Start
  [244] New request Session, context 0xd5713fe0, reqType = 1
  [244] Fiber started
  [244] Creating LDAP context with uri=ldaps://130.18.22.44:636
  [244] Connect to LDAP server: ldaps://130.18.22.44:636, status = Successful
  [244] supportedLDAPVersion: value = 2
  [244] supportedLDAPVersion: value = 3
  [244] No Login DN configured for server 130.18.22.44
  [244] Binding as administrator
  [244] Performing Simple authentication for  to 130.18.22.44
  [244] LDAP Search:
          Base DN = [ou=employees,o=msues]
          Filter  = [uid=vpntest]
          Scope   = [SUBTREE]
  [244] User DN = [uid=vpntest,ou=employees,o=msues]
  [244] Talking to iPlanet server 130.18.22.44
  [244] Binding as user
  [244] Performing Simple authentication for vpntest to 130.18.22.44
  [244] Processing LDAP response for user vpntest
  [244] Authentication successful for vpntest to 130.18.22.44
  [244] Retrieved User Attributes:
  [244]   sn: value = test user
  [244]   givenName: value = vpn
  [244]   uid: value = vpntest
  [244]   cn: value = vpn test user
  [244]   objectClass: value = top
  [244]   objectClass: value = person
  [244]   objectClass: value = organizationalPerson
  [244]   objectClass: value = inetOrgPerson
  [244] Fiber exit Tx=284 bytes Rx=414 bytes, status=1
  [244] Session End

  Hi Larry,
  You can map AD group memberships to specific group policies on the ASA, you can find that configuration here:
  - http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/91831-mappingsvctovpn.html
  Let me know if further assistance is required!
  Please proceed to rate and mark as correct the helpful Post!
  David Castro,
  Regards,

• Remote user Authentication in customize login page

  Hi all,
  I would like to make sincere request to all you that I am not able authenticate my users based on tables. I start to learn HTML DB before 20 days and created simple application.
  Requirement:
  1: Created new login page P16 other than inbuilt login page 101.
  2: created table “trx_employee_login” which will keep track of user information
  3: after giving URL to user if user enters usr/passwd then it should take username and password (remote ) and validate in “trx_employee_login” table and if it exist then open some (page 34) page
  in the current application.
  Approach:
  1: written authentication function as
  CREATE OR REPLACE FUNCTION custom_auth (
  p_username IN VARCHAR2,
  p_password IN VARCHAR2
  RETURN BOOLEAN
  IS
  l_password VARCHAR2 (4000);
  l_stored_password VARCHAR2 (4000);
  l_count NUMBER;
  BEGIN
  SELECT COUNT (*)
  INTO l_count
  FROM trx_employee_login
  WHERE user_name LIKE p_username;
  IF l_count > 0
  THEN
  SELECT PASSWORD
  INTO l_stored_password
  FROM trx_employee_login
  WHERE user_name LIKE p_username;
  IF l_password = l_stored_password
  THEN
  RETURN TRUE;
  ELSE
  RETURN FALSE;
  END IF;
  ELSE
  RETURN FALSE;
  END IF;
  END;
  2: created authentication scheme and entered
  return custom_auth;
  in authentication function.
  3: same like I created Set Username cookie :
  begin
  owa_util.mime_header('text/html', FALSE);
  owa_cookie.send(
  name=>'LOGIN_USERNAME_COOKIE',
  value=>lower(:P16_USERNAME));
  exception when others then null;
  end;
  and other process to like 101 page
  but I m not able to get the result showing always message “Invalid Login Credentials”
  Please it will be great help if any one will help me. I m trying from the last 5 days but not able to do. I love to do myself first and if not possible then like to ask others. So please need help. Any other approach will be appreciated.
  Thanks && Regards
  Ravi

  Thanks Scott very Much,
  I changed but still I am not getting showing invalid credetial.
  Any how I got some hope by you. Can you have look on this please again.I am very new in HTML so after six days trying I am bit tensed.Here is what I am doing
  1: Created new login page Page 16.
  2: In page rendering process I created a “Before Header process named Get cookie Name ” just like inbuilt login Page :
  declare
  v varchar2(255) := null;
  c owa_cookie.cookie;
  begin
  c := owa_cookie.get('LOGIN_USERNAME_COOKIE');
  :P16_USERNAME := c.vals(1);
  exception when others then null;
  end;
  Incase of :P101_USERNAMR I change it as :P101_USERNAMR .
  3: In page rendering I created “Clear Cache for all Items on Pages (PageID,PageID,PageID)”
  process for page 16.
  4: In Page processing I created a process named “Set Username Cookie” type After computation and Validation.
  5: In page processing I ceated process Login just like page 101 and changed as
  wwv_flow_custom_auth_std.login(
  P_UNAME => v('P16_USERNAME'),
  P_PASSWORD => :P16_PASSWORD,
  P_SESSION_ID => v('APP_SESSION'),
  P_FLOW_PAGE => :APP_ID||':1'
  6: created one branch “On submit after processing to go to page 1 my welcome page”
  7: Created Authorisation scheme function returning Boolean:
  DECLARE
  l_count NUMBER;
  BEGIN
  SELECT COUNT (*)
  INTO l_count
  FROM trx_employee_login
  WHERE user_name = :p16_username AND PASSWORD = :p16_password;
  IF l_count > 0
  THEN
  RETURN TRUE;
  ELSE
  :p16_username := NULL;
  :p16_password := NULL;
  RETURN FALSE;
  END IF;
  END;
  8: I modified the function and make it UPPER case comparison as :
  CREATE OR REPLACE FUNCTION custom_auth (
  p_username IN VARCHAR2,
  p_password IN VARCHAR2
  RETURN BOOLEAN
  IS
  l_password VARCHAR2 (4000);
  l_stored_password VARCHAR2 (4000);
  l_count NUMBER;
  BEGIN
  -- First, check to see if the user is in the user table
  SELECT COUNT (*)
  INTO l_count
  FROM trx_employee_login
  WHERE UPPER (user_name) = UPPER (p_username);
  IF l_count > 0
  THEN
  -- First, we fetch the stored hashed password & expire date
  SELECT PASSWORD
  INTO l_stored_password
  FROM trx_employee_login
  WHERE UPPER (user_name) = UPPER (p_username);
  -- Finally, we compare them to see if they are the same and return
  -- either TRUE or FALSE
  IF l_password = l_stored_password
  THEN
  RETURN TRUE;
  ELSE
  RETURN FALSE;
  END IF;
  ELSE
  RETURN FALSE;
  END IF;
  END;
  In case of point 5 I mentioned how should I call my custom_auth function.
  I m not getting if I am changing it as
  custom_auth_ (
  P_UNAME => v('P16_USERNAME'),
  P_PASSWORD => :P16_PASSWORD,
  P_SESSION_ID => v('APP_SESSION'),
  P_FLOW_PAGE => :APP_ID||':1'
  then showing error and if
  custom_auth_ (
  P_UNAME => v('P16_USERNAME'),
  P_PASSWORD => :P16_PASSWORD
  then wroung number of argument showing .
  That’s what I am doing. I know I am doing some blunder but not getting where.
  Can u please take a look and tell me what changes I should made to work this code.
  Thanks && Regards.

• Remoting security/authentication

  Hi all CF developers,
  I'm starting my journey with ColdFusion 9. I'm Flex developer and I would like to implement authorization mechanism for my Flex app in CF.
  I'm interested in implementing user authentication, roles(authorization) and session management in Flex context, using remoting services.
  Do you know any useful resources and/or examples?
  Regards,
  Adrian

  Hi Zonski,
  That sounds like a great idea. I have a similar setup with a current live application written in JavaFx (Script) 1.3 and Java, which will need to be converted across to the latest JavaFX (perhaps Visage) next year. Similar but not exactly the same. The application uses Spring remoting and also Spring Security, with XML for configuration. For the ORM Cayenne is used.
  ~ Chris

• Horizon Workspace Remote App Authentication

  Hello,
  I am receiving the following message inside my Win7 VDI Horizon Workspace User Portal: "For security, this remote application requires entering your username and password to launch.  This is NOT your RSA SecureID password."
  I have Kerberos enabled successfully using the secondary connector-va for SSO, so when I launch the "Open VMware Workspace web page" it authenticates me to my user portal automatically, but when I click a hosted app icon I get the above message.  IF... I supply my credentials one time I am able to launch all entitled applications for the duration of that browser session.  Once I close that window/session and launch another "Open VMware Workspace web page", I then have to repeat the process of supplying credntials.
  I am running Horizon Workspace 2.0 with Horizon 6, I have default Authentication Methods and Policies from the Settings on the gateway-va(FQDN).  All SSL certs are in place and trusted for the vApp/vCenter/View.  The time on the vApps/View/vCenter/RDSH/VDI are in sync.  I have three hosted apps and all work normally once submitting username/password authentication or directly launched from the Horizon View Client.  Any thoughts?  Thanks.
  Matt

  This is working as designed. You will need to supply your password once per session to able to launch Horizon resources (Desktops and Apps). Since you are logging into Workspace Portal using kerberos, you are being prompted to enter a password on first launch of Horizon resources. If you logged in to Workspace Portal using username/password, you dont need to enter your password again.

• Remote Desktop Authentication

  Hi is there a way to authenticate users for Remote Desktop from Directory services?
  Thanks,
  pucky

  Yep…
  You need to have your server configured as OpenDirectory Master.
  Then, u have 2 options :
  1 • If your server is set up as DHCP server. U just need on your client's *Directory Access* to check (in LDAPv3) the +Add DHCP-supplied LDAP…+
  2 • If your server is not a DHCP server, client. In your client's *Directory Access* add the address of your server with the New button. You just have to set up the address (ip or dns) of your server. The authentification is optional.
  Now u need to configure your ARD client. On the Remote Desktop application choose *Create Client Installer* on the File menu. U have to made several choice until the app ask you to create or not local users. Says no and then you can choose OD authentification.
  Install the +client installer+ on your client and… voilà !
  Now you can access to the client, with ARD and with an admin login of the serveur.
  I hope I have answered your question. And excuse me for my english

• Remote Connection Authentication Inquiry

  Hi,
  I have two Oracle 11g R1 databases installed on two different machines (Windows XP) connected through a network. The instance name on both machines are the same but, of course, the global name are different.
  When I tried logging on from one of machines as SYSDBA using a tnsname naming method, the connection established even if wrong password was incorrect. For me, this is serious security problem.
  Any clarification is appreciated.
  C:\Documents and Settings\Administrator>hostname
  lab4pc8
  C:\Documents and Settings\Administrator>sqlplus /nolog
  SQL*Plus: Release 11.1.0.7.0 - Production on Tue Mar 2 18:32:28 2010
  Copyright (c) 1982, 2008, Oracle.  All rights reserved.
  SQL> conn sys/anypassword@hanan as sysdba
  Connected.
  SQL>
  SQL>

  SQL> show parameter remote
  NAME                                 TYPE        VALUE
  remote_dependencies_mode             string      TIMESTAMP
  remote_listener                      string
  remote_login_passwordfile            string      EXCLUSIVE
  remote_os_authent                    boolean     FALSE
  remote_os_roles                      boolean     FALSE
  result_cache_remote_expiration       integer     0
  SQL> exit
  Disconnected from Oracle Database 11g Enterprise Edition Release 11.1.0.7.0 - Pr
  oduction
  With the Partitioning, OLAP, Data Mining and Real Application Testing options
  C:\Documents and Settings\Administrator>tnsping hanan
  TNS Ping Utility for 32-bit Windows: Version 11.1.0.7.0 - Production on 02-MAR-2
  010 18:52:28
  Copyright (c) 1997, 2008, Oracle.  All rights reserved.
  Used parameter files:
  d:\oracle\product\11.1.0\db_1\network\admin\sqlnet.ora
  Used TNSNAMES adapter to resolve the alias
  Attempting to contact (DESCRIPTION = (ADDRESS_LIST = (ADDRESS = (PROTOCOL = TCP)
  (HOST = 100.10.100.96)(PORT = 1521))) (CONNECT_DATA = (SERVICE_NAME = ora11g.1la
  b1)))
  OK (20 msec)

• How do I access remote patron authentication website

  I am trying to access retrieve law from Mass Trial Court Law Library website. I was able to do this before recently upgrading to firefox 4. (Tab now reads Remote Patron Authentication

  There are a couple of routes you can take:
  1) LabVIEW has built in ability to connect to OPC servers using DataSocket. You can find examples of DataSocket OPC vi's by going to Help->Examples->Communication->DataSocket OPC.
  If you don't want to use the datasocket vi's it is also possible to use Front Panel Datasocket. Just place a control on your front panel, right click, and select Data Operations->Datasocket Connection. This will bring up a dialog box that will allow you to browse available OPC servers and their associated tags.
  2) Purchase LabVIEW Datalogging and Supervisory Control Module. If you are monitoring many tags, datasocket will not perform well. I would recommend getting this piece of software if you will be monitoring extensive (hund
  reds of) tags. You can find more information on LabVIEW DSC at: http://sine.ni.com/apps/we/nioc.vp?cid=1010〈=US
  Matt Kisler
  Application Engineer
  National Instruments
  http://www.ni.com/ask

• Windows authentication on a database on Linux

  Hi,
  i've a 11.2 database installed on linux.
  I need that a client on windows can connect on this database without using pwd.
  Can external auth works in this case or need I to map this user on the linux server?
  Thank you.

  The remote OS authentication is not safe at all.
  If I have access to your network, I will be able to connect ( or try ) with a user that you created as externally within the database ( usually ORACLE os user - OPS$ORACLE - depending on the os_authent_prefix value)
  However, what you can use is an external password store.
  You have an example step by step over here: Configuring Authentication

• Remote Desktop Certificates

  H
  I have an Azure hosted RD deployment that consists of 2 x RDG/WebAccess servers (one of these is the connection broker) that sit behind an Azure Traffic manager. Behind these I have 6 RD Session Hosts.
  I am totally confused over certifcates. What certificates do I need where and where do I create the CSR for each certificate.
  Any help gretly appreciated.
  Simon

  Hi,
  Thank you for posting in Windows Server Forum.
  As per your case, you can use wildcard certificate or SAN certificate for your network. Which can serve the certificate for all your server. Basic requirements for Remote Desktop certificates:
  1. The certificate is installed into computer’s “Personal” certificate store. 
  2. The certificate has a corresponding private key. 
  3. The "Enhanced Key Usage" extension has a value of either "Server Authentication" or "Remote Desktop Authentication" (1.3.6.1.4.1.311.54.1.2). Certificates with no "Enhanced Key Usage" extension can be used as well. 
  More information.
  A. Certificate Requirements for Windows 2008 R2 and Windows 2012 Remote Desktop Services
  B. Minimum Certificate Requirements for Typical RDS implementation
  Hope it helps!
  Thanks.
  Dharmesh Solanki

• Network Policy Server Two-factor authentication OTP

  Hello,
  I don't have much knowledge about the Network Policy Server so before digging into this; I would like to know if it offers two-factor authentication. If so, what are the possibilites? I'm looking for a validation based on a one-time password OTP (hardware/software
  token or sms) and  the Active Directory user/pwd.
  Is there anything builtin in the Network Policy Server offering this?
  Thank you!

  Hi,
  NPS supports smart card.
  Two-factor authentication provides improved security because it requires the user to meet two authentication criteria: a user name/password combination and a token or certificate.
  A typical example of two-factor authentication with a certificate is the use of a smart card.
  To use smart cards for remote access authentication, we may do the following:
  Configure remote access on the remote access server.
  Install a computer certificate on the remote access server computer.
  Configure the Smart card or other certificate (TLS) EAP type in remote access policies.
  Enable smart card authentication on the dial-up or VPN connection on the remote access client.
  For detailed information, please refer to the link below,
  Using smart cards for remote access
  http://technet.microsoft.com/en-us/library/cc783310(v=WS.10).aspx
  Best Regards.
  Steven Lee
  TechNet Community Support

• AP 802.1X switched port-authentication

  Hi,
  I've setup EAP authentication (PEAP) to authenticate WLAN client on an AP.
  The AP is connected to a switch where the port is not configured for 802.1X.
  On this switched port I enabled, in multi-host, 802.1X to authenticate also the AP as a client, but since it's enabled I've not been able to authenticate anymore the WLAN client due to the fact that the port will not transition to Authorized
  If I connect on the same port a PC using 802.1X,this is working fine..
  Am I missing something to configure on the switch or AP ???
  Any suggestion are appreciated
  Regards
  Omar

  Omar,
  There's a gotcha with this...most likely a trunk issue...
  Here is a snippet for EAPOL guidelines:
  Authentication Configuration Guidelines
  This section provides the guidelines for configuring 802.1x authentication on the switch:
  802.1x will work with other protocols, but we recommend that you use RADIUS with a remotely located authentication server.
  802.1x is supported only on Ethernet ports.
  Software release 7.5(1) supports two in-band management interfaces, sc0 and sc1.
  802.1x authentication always uses the sc0 interface as the identifier for the authenticator when communicating with the RADIUS server.
  802.1x authentication is not supported with the sc1 interface.
  You cannot enable 802.1x on a trunk port until you turn off the trunking feature on that port.
  You cannot enable trunking on an 802.1x port.
  You cannot enable 802.1x on a dynamic port until you turn off the DVLAN feature on that port.
  You cannot enable DVLAN on an 802.1x port.
  You cannot enable 802.1x on a channeling port until you turn off the channeling feature on that port. You cannot enable channeling on an 802.1x port.
  You cannot enable 802.1x on a switched port analyzer (SPAN) destination port. You cannot configure SPAN destination on an 802.1x port. However, you can configure an 802.1x port as a SPAN source port.
  You cannot set the auxiliary VLAN to dot1p or untagged and the auxiliary VLAN should not be equal to the native VLAN on the 802.1x-enabled port.
  You cannot enable the multiple-authentication option on an 802.1x-enabled auxiliary VLAN port. Enabling the multiple-host option on an 802.1x-enabled auxiliary VLAN is not recommended.
  Do not assign a guest VLAN equal to an auxiliary VLAN because an 802.1x-enabled auxiliary VLAN port will not be put into the guest VLAN if the auxiliary VLAN on the port is the same as the guest VLAN.
  Here is the url for the link:
  http://www.cisco.com/en/US/customer/products/hw/switches/ps708/products_configuration_guide_chapter09186a0080121d12.html#1029697

• ACS SE 4.01 crashing when enabled remote logging

  We are running acs se 4.01 and whenever i turn on the remote logging to our agent, the ACS itself becomes unusable until I turn logging off again. Any ideas?

  Hi
  If you mean, that as soon as you enable remote logging, authentication starts failing, then there are some issues with remote logging.
  Also consider upgrading to latest ACS version, rather then being on 4.0(1)
  CSCeg40355 : Authentication failures when remote logging fails
  I am pretty sure its resolved in 4.1.1
  http://tools.cisco.com/Support/BugToolKit/action.do?hdnAction=searchBugs
  Be sure to use same remote agent version, as your ACS server software version.
  Regards,
  Prem

• ITunes Store Connection Problem and R6025 Error

  I have a problem with iTunes (v 7.6.2.9) on my desktop machine that I haven't been able to resolve. The same version works without problem on my laptop, both are fully up-to-date XP SP3 installs with no iTunes add-ons.
  iTunes starts correctly, but then does one of three things:
  1) It hangs during connection to the Store, with the bargraph almost at the end of the travel.
  2) It brings up the Store page, but although I can move the cursor around to click the Store links, nothing happens. Eventually the 'Accessing iTunes Store' bargraph may appear but it never connects.
  In both of these two instance, no error messages appear, the Store simply locks up. I can still use iTunes perfectly as a player, access my library etc. However, I have to CTRL-ALT-DEL to close the iTunes process from the Task Manager.
  3) As per (2), but about five seconds after the Store appears, an error box pops up:
  Microsoft Visual C++ Runtime Library
  Runtime Error!
  Programe: C:\Programe Files\iTunes\iTunes.exe
  R6025 Pure Virtual Function Call
  Pressing OK closes iTunes.
  I've done all the obvious things - removed and reinstalled, cleaned out registry errors using jv16 Powertools 2008, I've even used Process Explorer to examine all the dlls in use with iTunes and compared the version numbers to the correctly working version on the laptop - they're all the same. I've also run a low-level memory error checker, but it passed with flying colours.
  So I'm a bit stumped to know how to take this any further. I know other people have had R6025 problems in the past, but they seem to have generally been resolved by installing a later version of the application... which isn't much use to me, as I'm on the latest already. Incidentally, I did try going back one version to 7.6.1, but that behaved in exactly the same way.
  If anyone has any ideas about how to troubleshoot this sort of problem, I'd be very interested. I'm assuming that I have another application conflicting with iTunes, but I've no idea how to find it.
  Thanks,
  Steve

  Yay! I've found the culprit...
  For historical reasons, I still maintain my old Compuserve 3 account as my public e-mail address. Part of the CS3 installation is a Remote Password Authentication system called Virtual Key. I noticed that these dlls were being invoked during Store connection attempts, which I thought was a little odd.
  I deleted the following files from Windows/System32: (annotations courtesy of the Compuserve info text file for Virtual Key)
  RPA.DLL - The dynamic link library that implements the RPA protocol for Virtual Key.
  RPACFG.DLL - The dynamic link library that implements the Virtual Key accounts wizard API and other configuration APIs.
  RPAWINET.DLL - The dynamic link library that is required to enable Virtual Key for Internet Explorer, version 3.0.
  RPASSPC.DLL - The dynamic link library that is required to enable Virtual Key for the Internet Mail client and other non-web clients.
  RPAEDIT.EXE - An editor application for editing Virtual key Accounts as well as viewing and deleting sites from the Virtual Key Site List that is created by Virtual Key when accessing secure sites.
  RPAUI.HLP - Help for Virtual Key features.
  VKUNINST.DLL - An uninstaller program for Virtual Key.
  RPAINFO.TXT - This file.
  As I only access Compuserve through the proprietary CS3 front end, removing Virtual Key has had no impact on my Compuserve mail system and iTunes is now working perfectly.
  I hope this information might be of some use to others in the future!
  Steve