SAML2 Service Provider not writing artifact key to cache
I have been following http://biemond.blogspot.com/2009/09/sso-with-weblogic-1031-and-saml2.html to attempt to get Single Sign On working.
I created 2 new WebLogic 10.3.3 domains using an RDBMS Security Store (They are both pointing to the same RDBMS Security Store). I went through the guide, and after some time and troubleshooting was able to complete all the steps. I then created a very very basic JSF2 application that basically has a secured blank page. I set up this URL in the Service Provider configuration so that when I attempt to browse to the url http://localhost:7002/saml-test/ (7002 is the port I assigned the second server, it is not ssl) it does successfully attempt to redirect to the Identity Provider for authentication. However; when it redirects I get a 403 Forbidden Error.
Based on the logs it appears that the Service Provider is writing the artifact key to "the cache" (logs aren't specific, but I'm assuming DemoIdentity.jks?). But when the Identity Provider attempts to retrieve the key from the cache it finds nothing and returns null, causing an exception. I also attempted to view the DemoIdentity.jks contents by using:
keytool -list -keystore DemoIdentity.jks -storepass DemoIdentityKeyStorePassPhrase
And the key specified in the logs is not there. I also looked at all the data in the RDBMS database and could not find the key there. I'm assuming I am just missing some basic understanding of what is going on here, but I've been pulling my hair out with this thing for a week, and have had no luck figuring it out.
Below are the logs: (Note: I removed some of the leading debug info like time and date to save space)
Service Provider Logs:
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '19' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667020> <BEA-000000> <SAML2Filter: Processing request on URI '/saml-test/index.xhtml'>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '19' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667020> <BEA-000000> <getServiceTypeFromURI(): request URI is '/saml-test/index.xhtml'>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '19' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667020> <BEA-000000> <getServiceTypeFromURI(): request URI is not a service URI>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '19' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667020> <BEA-000000> <getServiceTypeFromURI(): returning service type 'SPinitiator'>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '19' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667020> <BEA-000000> <SP initiating authn request: processing>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '19' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667036> <BEA-000000> <SP initiating authn request: partner id is null>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '19' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667036> <BEA-000000> <weblogic.security.service.internal.SAMLKeyServiceImpl.getKeyInfo>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '19' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667036> <BEA-000000> <weblogic.security.service.internal.SAMLKeyServiceImpl.getKeyStore>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '19' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667036> <BEA-000000> <weblogic.security.service.internal.SAMLKeyServiceImpl.getKeyStore Checking if the Keystore file was modified>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '19' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667052> <BEA-000000> <put: item with key _0x55e0aecb9df9ad1a2061c408ed8fb7a6 is saved in cache.>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '19' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667052> <BEA-000000> <SP initiating authn request: use partner binding HTTP/Artifact>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '19' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667067> <BEA-000000> <put: item with key AAQAAApriktiqPxDEvWbV4yOYVVARn3nNdPnLeD3F4z6gSCUJyQg8b2cZZI= is saved in cache.>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '19' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667067> <BEA-000000> <store saml object org.opensaml.saml2.core.impl.AuthnRequestImpl@1d0397d, BASE64 encoded artifact is AAQAAApriktiqPxDEvWbV4yOYVVARn3nNdPnLeD3F4z6gSCUJyQg8b2cZZI=>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '19' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667067> <BEA-000000> <post artifact: false>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '19' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667067> <BEA-000000> <local ARS binding location: http://localhost:7001/saml2/idp/sso/artifact>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '19' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667067> <BEA-000000> <post form template url: null>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '19' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667067> <BEA-000000> <URL encoded artifact: AAQAAApriktiqPxDEvWbV4yOYVVARn3nNdPnLeD3F4z6gSCUJyQg8b2cZZI%3D>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '19' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667067> <BEA-000000> <URL encoded relay state: null>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '19' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667067> <BEA-000000> <artifact is sent in http url:http://localhost:7001/saml2/idp/sso/artifact?SAMLart=AAQAAApriktiqPxDEvWbV4yOYVVARn3nNdPnLeD3F4z6gSCUJyQg8b2cZZI%3D>
Identity Provider Logs:
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667083> <BEA-000000> <SAML2Servlet: Processing request on URI '/saml2/idp/sso/artifact'>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667083> <BEA-000000> <getServiceTypeFromURI(): request URI is '/saml2/idp/sso/artifact'>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667083> <BEA-000000> <getServiceTypeFromURI(): service URI is '/idp/sso/artifact'>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667083> <BEA-000000> <getServiceTypeFromURI(): returning service type 'SSO'>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667083> <BEA-000000> <Request URI: /saml2/idp/sso/artifact>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667083> <BEA-000000> <Method: GET>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667083> <BEA-000000> <Query string: SAMLart=AAQAAApriktiqPxDEvWbV4yOYVVARn3nNdPnLeD3F4z6gSCUJyQg8b2cZZI%3D>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667083> <BEA-000000> < Accept: */*>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667083> <BEA-000000> < Accept-Language: en-us>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667083> <BEA-000000> < User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0; .NET CLR 3.0.04506.648; MS-RTC LM 8; .NET CLR 1.0.3705; .NET CLR 1.1.4322; .NET CLR 3.0.04506.30; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET CLR 2.0.50727)>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667083> <BEA-000000> < Accept-Encoding: gzip, deflate>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667083> <BEA-000000> < Host: localhost:7001>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667083> <BEA-000000> < Connection: Keep-Alive>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667083> <BEA-000000> <weblogic.security.service.internal.SAMLKeyServiceImpl.getKeyInfo>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667083> <BEA-000000> <weblogic.security.service.internal.SAMLKeyServiceImpl.getKeyStore>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667083> <BEA-000000> <weblogic.security.service.internal.SAMLKeyServiceImpl.getKeyStore Checking if the Keystore file was modified>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667083> <BEA-000000> <ssl client key:Sun RSA private CRT key, 512 bits
modulus: 7817332509587397552890028336578207339286770598290114724527725719770879356379795125511472689827439136630867724827096844273172334826513804343303721031800247
public exponent: 65537
private exponent: 2389560434022984500008330220587930903580143665342415250567830833638555718851227441135738538593823573280638974177840057994863001694333515217638747428107137
prime p: 89878601557891020780681845905770729690536603261106674473148151816104280723703
prime q: 86976570330283066459007767878319559738265898367448286741620259855280595939649
prime exponent p: 49531492934775012550710075660752268859317797579709015700240960055270126903855
prime exponent q: 86241336493473679108071803409323587446354469591404733468585827031687427955905
crt coefficient: 20900431671220180283467175612491957186643034513437468583594091501365673934630, ssl client cert chain:[Ljava.security.cert.Certificate;@17de8c5>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667083> <BEA-000000> <get BASE64 encoded artifact from http request, value is:AAQAAApriktiqPxDEvWbV4yOYVVARn3nNdPnLeD3F4z6gSCUJyQg8b2cZZI=>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667083> <BEA-000000> <ArtifactResolver: sha-1 hash value of remote partner id is '0x0a6b8a4b62a8fc4312f59b578c8e615540467de7'>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667099> <BEA-000000> <ArtifactResolver: found remote partner 'WebSSO-SP-Partner-0' with entity ID 'saml2AP'>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667099> <BEA-000000> <ArtifactResolver: returning partner: [email protected]ba20>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667099> <BEA-000000> <partner entityid issaml2AP, end point index is:0>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667099> <BEA-000000> <find end point:[email protected]6886, binding location is:http://localhost:7001/saml2/sp/ars/soap>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667099> <BEA-000000> <weblogic.security.service.internal.SAMLKeyServiceImpl.getKeyInfo>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667099> <BEA-000000> <weblogic.security.service.internal.SAMLKeyServiceImpl.getKeyInfo>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667099> <BEA-000000> <got samlp:ArtifactResolve signing key:Sun RSA private CRT key, 512 bits
modulus: 7817332509587397552890028336578207339286770598290114724527725719770879356379795125511472689827439136630867724827096844273172334826513804343303721031800247
public exponent: 65537
private exponent: 2389560434022984500008330220587930903580143665342415250567830833638555718851227441135738538593823573280638974177840057994863001694333515217638747428107137
prime p: 89878601557891020780681845905770729690536603261106674473148151816104280723703
prime q: 86976570330283066459007767878319559738265898367448286741620259855280595939649
prime exponent p: 49531492934775012550710075660752268859317797579709015700240960055270126903855
prime exponent q: 86241336493473679108071803409323587446354469591404733468585827031687427955905
crt coefficient: 20900431671220180283467175612491957186643034513437468583594091501365673934630>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667099> <BEA-000000> <weblogic.security.service.internal.SAMLKeyServiceImpl.getKeyInfo>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667099> <BEA-000000> <weblogic.security.service.internal.SAMLKeyServiceImpl.getKeyInfo>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667114> <BEA-000000> <<?xml version="1.0" encoding="UTF-8"?><samlp:ArtifactResolve xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" ID="_0x419833daa9699be237eb505d62fe5ab2" IssueInstant="2012-09-17T13:47:47.099Z" Version="2.0"><saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">saml2CMP</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:SignedInfo>
<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
<ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
<ds:Reference URI="#_0x419833daa9699be237eb505d62fe5ab2">
<ds:Transforms>
<ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#WithComments"><ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="ds saml samlp"/></ds:Transform>
</ds:Transforms>
<ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
<ds:DigestValue>QBOav/grXIftH9szz7jigjkJSXe5oeTUe+mecOWQs44=</ds:DigestValue>
</ds:Reference>
</ds:SignedInfo>
<ds:SignatureValue>
C9bKLG5yYjU0UvLj0nlN8KJJfRoQiGzse8ZeSVOR2nHicx3M3YQjGgzNJdDIiC69FoUitEOBNAHg
oYfLcc/5Uw==
</ds:SignatureValue>
</ds:Signature><samlp:Artifact>AAQAAApriktiqPxDEvWbV4yOYVVARn3nNdPnLeD3F4z6gSCUJyQg8b2cZZI=</samlp:Artifact></samlp:ArtifactResolve>>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667114> <BEA-000000> <open connection to send samlp:ArtifactResolve. partner id:saml2AP, endpoint url:http://localhost:7001/saml2/sp/ars/soap>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667114> <BEA-000000> <isClientPasswordSet:false>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667114> <BEA-000000> <connect to remote ARS.>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667114> <BEA-000000> <SoapSynchronousBindingClient.sendAndReceive: begin to send SAMLObject to server.>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667114> <BEA-000000> <SoapSynchronousBindingClient.sendAndReceive: sending completed, now waiting for server response.>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '17' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667317> <BEA-000000> <SAML2Servlet: Processing request on URI '/saml2/sp/ars/soap'>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '17' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667317> <BEA-000000> <getServiceTypeFromURI(): request URI is '/saml2/sp/ars/soap'>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '17' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667317> <BEA-000000> <getServiceTypeFromURI(): service URI is '/sp/ars/soap'>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '17' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667317> <BEA-000000> <getServiceTypeFromURI(): returning service type 'ARS'>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '17' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667317> <BEA-000000> <ArtifactResolutionService.process: get SoapHttpBindingReceiver as receiver and SoapHttpBindingSender as sender.>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '17' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667333> <BEA-000000> <remove: key AAQAAApriktiqPxDEvWbV4yOYVVARn3nNdPnLeD3F4z6gSCUJyQg8b2cZZI= does not exist in cache.>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '17' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667333> <BEA-000000> <retrieve: no message was found in cache with the messageHandle, return null.>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '17' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667333> <BEA-000000> <SoapHttpBindingSender.sendResponse: Set HTTP headers to prevent HTTP proxies cache SAML protocol messages.>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '17' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667333> <BEA-000000> <SoapHttpBindingSender.send: the SOAP envelope to be sent is :
>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '17' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667333> <BEA-000000> <<?xml version="1.0" encoding="UTF-8"?><soap11:Envelope xmlns:soap11="http://schemas.xmlsoap.org/soap/envelope/"><soap11:Body><samlp:ArtifactResponse xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" ID="_0xd927ce91bb367412a50520dc7695df1e" InResponseTo="_0x419833daa9699be237eb505d62fe5ab2" IssueInstant="2012-09-17T13:47:47.333Z" Version="2.0"><saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">saml2CMP</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/><samlp:StatusMessage>[Security:096502]There is no saml message in returned samlp:ArtifactResponse.</samlp:StatusMessage></samlp:Status></samlp:ArtifactResponse></soap11:Body></soap11:Envelope>>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667349> <BEA-000000> <SoapSynchronousBindingClient.sendAndReceive: response code from server is: 200>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667349> <BEA-000000> <SoapSynchronousBindingClient.sendAndReceive: get a HTTP_OK response, now receive a SOAP envelope message.>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667349> <BEA-000000> <SoapSynchronousBindingClient.sendAndReceive: found XMLObject in envelope, return it.>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667349> <BEA-000000> <http url connection disconnect.>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667349> <BEA-000000> <<?xml version="1.0" encoding="UTF-8"?><samlp:ArtifactResponse xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" ID="_0xd927ce91bb367412a50520dc7695df1e" InResponseTo="_0x419833daa9699be237eb505d62fe5ab2" IssueInstant="2012-09-17T13:47:47.333Z" Version="2.0"><saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">saml2CMP</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/><samlp:StatusMessage>[Security:096502]There is no saml message in returned samlp:ArtifactResponse.</samlp:StatusMessage></samlp:Status></samlp:ArtifactResponse>>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667349> <BEA-000000> <get samlp:ArtifactResponse and verify it.>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667349> <BEA-000000> <saml version:2.0>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667349> <BEA-000000> <inResponseTo:_0x419833daa9699be237eb505d62fe5ab2>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667349> <BEA-000000> <status code: urn:oasis:names:tc:SAML:2.0:status:Success>
#<SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889667349> <BEA-000000> <status message: [Security:096502]There is no saml message in returned samlp:ArtifactResponse.>
####<Sep 17, 2012 9:47:49 AM EDT> <Debug> <SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889669802> <BEA-000000> <[Security:096577]Failed to receive AuthnRequest document from the requester.>
####<Sep 17, 2012 9:47:49 AM EDT> <Debug> <SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889669802> <BEA-000000> <Caused by: [Security:096502]There is no saml message in returned samlp:ArtifactResponse.>
####<Sep 17, 2012 9:47:49 AM EDT> <Debug> <SecuritySAML2Service> <AdminServer> <[ACTIVE] ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1347889669802> <BEA-000000> <exception info
com.bea.security.saml2.service.SAML2Exception: [Security:096577]Failed to receive AuthnRequest document from the requester.
at com.bea.security.saml2.service.sso.SSOServiceProcessor.receive(SSOServiceProcessor.java:301)
at com.bea.security.saml2.service.sso.SSOServiceProcessor.processAuthnRequest(SSOServiceProcessor.java:118)
at com.bea.security.saml2.service.sso.SSOServiceProcessor.process(SSOServiceProcessor.java:100)
at com.bea.security.saml2.service.sso.SingleSignOnServiceImpl.process(SingleSignOnServiceImpl.java:50)
at com.bea.security.saml2.cssservice.SAML2ServiceImpl.process(SAML2ServiceImpl.java:161)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at com.bea.common.security.utils.ThreadClassLoaderContextInvocationHandler.invoke(ThreadClassLoaderContextInvocationHandler.java:27)
at $Proxy26.process(Unknown Source)
at com.bea.security.saml2.servlet.SAML2Servlet.service(SAML2Servlet.java:34)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:300)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:183)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.doIt(WebAppServletContext.java:3686)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3650)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:121)
at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2268)
at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2174)
at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1446)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
Caused By: com.bea.security.saml2.binding.BindingHandlerException: [Security:096502]There is no saml message in returned samlp:ArtifactResponse.
at com.bea.security.saml2.artifact.impl.AbstractArtifactResolver.getSamlMsg(AbstractArtifactResolver.java:459)
at com.bea.security.saml2.artifact.impl.AbstractArtifactResolver.resolve(AbstractArtifactResolver.java:304)
at com.bea.security.saml2.binding.impl.ArtifactBindingReceiver.resolve(ArtifactBindingReceiver.java:77)
at com.bea.security.saml2.binding.impl.ArtifactBindingReceiver.receiveRequest(ArtifactBindingReceiver.java:40)
at com.bea.security.saml2.service.sso.SSOServiceProcessor.receive(SSOServiceProcessor.java:295)
at com.bea.security.saml2.service.sso.SSOServiceProcessor.processAuthnRequest(SSOServiceProcessor.java:118)
at com.bea.security.saml2.service.sso.SSOServiceProcessor.process(SSOServiceProcessor.java:100)
at com.bea.security.saml2.service.sso.SingleSignOnServiceImpl.process(SingleSignOnServiceImpl.java:50)
at com.bea.security.saml2.cssservice.SAML2ServiceImpl.process(SAML2ServiceImpl.java:161)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at com.bea.common.security.utils.ThreadClassLoaderContextInvocationHandler.invoke(ThreadClassLoaderContextInvocationHandler.java:27)
at $Proxy26.process(Unknown Source)
at com.bea.security.saml2.servlet.SAML2Servlet.service(SAML2Servlet.java:34)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:300)
at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:183)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.doIt(WebAppServletContext.java:3686)
at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3650)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:121)
at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2268)
at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2174)
at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1446)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:201)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:173)
>
Hi user13435437,
The key=AAQAAApriktiqPxDEvWbV4yOYVVARn3nNdPnLeD3F4z6gSCUJyQg8b2cZZI= is the SAMLArtifact id, it has nothing to do with any of the public/private keys of the managed servers.
My scenario is a little bit different: Weblogic working as SP and ADFS2 as IdP. What I would recommend you s to use the HTTP-POST & HTTP-REDIRECT binding instead of the Artifact one.
But if you want to remain with this binding maybe you should check the "Authentication Request Cache Timeout" attribute.
Hope it helps,
Luis
Similar Messages
-
How to configure weblogic as a SAML2 Service Provider
Hi,
I have to configure weblogic 11g to work with an external IdP, which is in fact the Dutch SurfConext for the Dutch Education Sector, so I used their metadata (https://wiki.surfnet.nl/display/surfconextdev/Connection+metadata)
I configured the weblogic server mainly following https://blogs.oracle.com/blogbypuneeth/entry/steps_to_configure_saml_2.
I have configured a SAML2 Authenticator (Sufficient) and SAM2 Identity Asserter (in that order). Then on the machine I configured the Service Provider tab under Federation Services and the SAML2 Services tab.
But although I turned on the debug for saml2 at the configured managed server, I don't see any logging when I tried to reach the webapplication. I used the sample destination app from the blog. The application that I have to secure this way has an own login-page. When trying the sample dest webapplication URL I get the 403 forbidden error, but no logging on saml2.
I search google around several times, and I feel that I should configure something in the web.xml and/or weblogic.xml. But I actually can't find the settings. I assumed that the web.xml of the sampl dest app (where auth-method is set to BASIC and realm-name myrealm) would do. And if that works that the actual application should be configured the same.
What needs to happen is that when I try to reach the base URL of the web app, the browser gets rerouted to the IdP-'Where are you from" page, where the user can choose his/her college/university/organization and then login. After logging the Idp (SurfConext) should route the browser together with the SAML token to weblogic where the user gets routed to the actual main page of the webapp.
So I feel that there is some configuration to do to get the webapplication secured via the SAML2 Identity Asserter. Either in weblogic (correct URL) and/or in the web.xml.
Can anyone help me on the steps I apparently missed? And maybe ask me the correct questions to get me on the right track?
Thanks in advance.
Regards,
MartienApparently I wrongly repackaged the zip from the blog into a war file. There was an faulty extra level of directory structure in the zip.
I created a new war file from the bottom up, with own jsp's. And that worked. -
How to change JNDI service provider for EJB's?
I need EJBean's home interface to be bound to another JNDI provider, not Weblogic.
How can I do it?
The most simple solution is not working: to specify <jndi-name> in weblogic-ejb-jar.xml
for bean as "xxx:bean_name".
By JNDI rules for such names context factory with name com.sun.jndi.url.xxx.xxxURLContextFactory
will be used. But for Weblogic this does not work. An exception is thrown during
bean deployment -
javax.management.MalformedObjectNameException: ObjectName: Invalid value -> xxx:bean_name
at javax.management.ObjectName.validateAndAdd(ObjectName.java:440) at javax.management.ObjectName.initObjectName(ObjectName.java:409)
at javax.management.ObjectName.<init>(ObjectName.java:254) at weblogic.management.WebLogicObjectName.<init>(WebLogicObjectName.java:196)
at weblogic.management.runtime.RuntimeMBeanDelegate.register(RuntimeMBeanDelegate.java:90)
at weblogic.management.runtime.RuntimeMBeanDelegate.<init>(RuntimeMBeanDelegate.java:83)
at weblogic.ejb20.internal.BaseEJBHomeMBean.<init>(BaseEJBHomeMBean.java:33) ......................This is not an answer on my
question - My questions was: how to force a Welogic EJB Container to BIND EJBean's
home interface to another JNDI Service provider, not Weblogic.
But you wrote how to use JNDI in general - I already know how to use it :)))
Phil.
"VSK" <[email protected]> wrote:
Hi
Have a look at the code below
private Context getInitialContext () throws NamingException
String from = "CtxHelper::getInitialContext ";
String webLogicHostUrl = t3://SERVERNAME:9001
Logger.debug(from, "Begin Method", 3);
Hashtable h = System.getProperties();
h.put(Context.INITIAL_CONTEXT_FACTORY,"weblogic.jndi.WLInitialContextFactory
h.put(Context.PROVIDER_URL, webLogicHostUrl);
return new InitialContext(h);
} //end getInitialContext
This way we will get the InitailContext and then do a jndi lookup using
the
Context object as follows
ctx.lookup..........
Now in the above code replace weblogic.jndi.WLInitialContextFactory by
ur
provider.
Hope this helps.
-VKS
"Phil Peshin" <[email protected]> wrote in message
news:[email protected]...
I need EJBean's home interface to be bound to another JNDI provider,not
Weblogic.
How can I do it?
The most simple solution is not working: to specify <jndi-name> inweblogic-ejb-jar.xml
for bean as "xxx:bean_name".
By JNDI rules for such names context factory with namecom.sun.jndi.url.xxx.xxxURLContextFactory
will be used. But for Weblogic this does not work. An exception isthrown
during
bean deployment -
javax.management.MalformedObjectNameException: ObjectName: Invalidvalue -> xxx:bean_name
at javax.management.ObjectName.validateAndAdd(ObjectName.java:440)at
javax.management.ObjectName.initObjectName(ObjectName.java:409)
at javax.management.ObjectName.<init>(ObjectName.java:254) atweblogic.management.WebLogicObjectName.<init>(WebLogicObjectName.java:196)
atweblogic.management.runtime.RuntimeMBeanDelegate.register(RuntimeMBeanDelega
te.java:90)
atweblogic.management.runtime.RuntimeMBeanDelegate.<init>(RuntimeMBeanDelegate
..java:83)
atweblogic.ejb20.internal.BaseEJBHomeMBean.<init>(BaseEJBHomeMBean.java:33) -
How service Provider Provide MPLS different level of Class of Service!!!
Hi Team,
Most of the time Service provider says that they can provide any class of service and any level (CoS1 to N)...On a global setup, how Service Provider Core is being provisioned to provide this kind of scalability and redundancy...I am interested in mainly the core Cloud of Service provider not the PE...Any docs or link will be of gr8 help...Service provider will no away running 50% of their capacity and provide redundancy..So there should be some tweking which allow them to Provide different level of SLA..How need to know..
Thanks in advance..
With best regards,
Mani1) Irrespective of how many ever COS they are providing/selling for the Customer at the Edge most SP will have only 4 to 5 major classes in the core, and the SLA provided on DSCP,COS,PREC are merged into these super classes where they map to.
2) The question of BW of 50% this is subjective to each SP, just like you have a pipe of 1 gig for Internet in what ratio would you sell this BW is subjective to each SP. SImilarly when you provide SLA with certain guranteed uptime, the bandwdith availability during backup is considered and the its generally sold in the same ratio.
If the ratio at which the BW is sold at the edge, exceeds the available 50% during failure, then olny your upper higher priority classes get tranmistted. But this is seldom recommended.
HTH-Cheers,
Swaroop -
How to get the UDDI Key to publish a service provider system in SR?
Hi,
I am following instruction in appendix 1 & 2 of the white paper at https://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/1079b1af-dcb7-2b10-9ebb-eafcaa3cbbea?overridelayout=true
trying to publish a service provider system into the service registry. One thing not clear to me is how to get the uddikey as needed in step 6 in appendix 1.
My service registry is in a PI 7.1 SP4 system. I followed the instruction in appendix 2 but there is no uddi key displayed in the General tab. Please help.
Regards,
Jiannan
Paragraph extracted from the whitepaper:
There may be cases in which the NWA logical settings do not match the Services Repository
settings when Visual Composer is trying to locate the enterprise services. Such cases can occur
when there is no SLD ID definition of the physical system in the Services Repository.
Currently, Visual Composer cannot search for services on a physical system with an empty SLD ID
(which is not a valid one).
To obtain this capability, the following steps should be performed to generate the necessary data
for each system with a non-valid SLD ID, so that Visual Composer can search for services over it.
1.Log on to http://<serverName>:<serverPort>/WSNavigator.
2.Select the Services Registry radio button.
3.In the Find field, enter sr and choose Go.
4.Select the ServicesRegistrySi line and choose Next.
5.Under the Operation Name, search for the publishPhysicalSystems operation, select it and choose Next.
6.Fill the service information parameters with the following (see Appendix 2 for details on how to get this information) :
6.1.Click the + icon in the physical system[].
6.2.Deselect the Classifications checkbox.
6.3.Click the + icon in the classificationReferenceGroups[].
6.4.Click the + icon in the classificationReferences[].
6.5.Deselect the classificationSystemKey checkbox.
6.6.Deselect the uddiKey checkbox and enter the value <localUddiKey>.
6.7.Deselect the value checkbox and enter the value <localSystemHostName>.
6.8.Deselect the host checkbox and enter the value <localHostName>.
6.9.Deselect the physicalSystemKey checkbox.
6.10.Deselect the logical key checkbox and enter the value <System name>.<SystemHome>.<host name>.
6.11.Deselect the systemName checkbox and enter the value <system name>.
6.12.Deselect the type checkbox and enter the value 2.Hi Jiannan,
No worries, you can go to UDDI client from the main page of PI i.e. http://<serverName>:<serverPort>/
And you use the search function for the TModel for your Physical System. Search parameters can use the % wildcard.
Hit the search and you find the UDDI Key for the Physical System.
Cheers.
Hemant Chahal -
Configure SAP ABAP as service provider using SAML holder-of-key
Hi
We are trying to configure "SAML Holder of key" between Microsoft (as
a service consumer) and SAP ABAP (as service provider).
The service provider/SAP ABAP is release 7.11 and we need to configure this component.
We have found SAP note 1254821 and are trying to follow the instructions for
the "SAML Holder of key" scenario:
However there is one step that we do not understand: step 5 "The private key to decrypt the
encrypted....at the provider system must be a WS Security Identity in transaction TRUST"
Anyone who can elaborate of the meaning of this step and describe a procedure for what
exactly to do?
BR
Tom BoHi,
a service provider needs to check two things when processing message. The first thing is that SAML assertion was issued by STS by checking signature of SAML assertion. The SAML assertion is signed by STS (step 4 in OSS note). The second thing is to verify that sender knows key from SubjectConfirmation element (that's why it is called holder of key). One way is to encrypt and sign SOAP message using symmetric key. There is also option to use asymmetric key. The key is encrypted by STS using the public key of service provider. Therefore the private key must be imported in service provider system (step 5 from OSS note). More info can be found [here|http://help.sap.com/saphelp_nw73/helpdata/en/e5/9f9913fc9c418db98c8693b2bbdb7c/frameset.htm].
Cheers -
i phones updated iso 8.01 all three phones will not connect to service provider and touch id
will not work APPLE HELP !!!!!!!!!
anyone know i fix as i have spent over 2000 pound on three phones that won't work
all three where working fine until the 8.01 updateApple just pulled the update because it is a major fubar! You will have to rollback your iPhone to the base iOS 8 using iTunes and Apple needs to seriously test its patches!
Update:
Simply connect your phone to iTunes and back up your data. Then, click the “Restore iPhone” button and follow the on-screen instructions. It’s a huge pain, but at least it’s better than having your shiny new iPhone turned into a big expensive iPod touch. -
How to fix this error "this iPad is not able to complete the activation process. Please press Home and start over. If the issue persists, please visit your nearest Apple Store or Authorized service provider for more information or replacement"? When I plugged in my iPad this popped up!
Hi csreddy,
If you are receiving a message to contact an Apple Retail Store or Authorized Service Provider for help updating from iOS 3, click on the link below to initiate that support:
Update the iOS software on your iPhone, iPad, and iPod touch - Apple Support
http://support.apple.com/en-us/HT204204
Update your device using iTunes
If you can’t update wirelessly, or if you want to update with iTunes, follow these steps:
Install the latest version of iTunes on your computer.
Plug in your device to your computer.
In iTunes, select your device.
In the Summary pane, click Check for Update.
Click Download and Update.
If you don't have enough free space to update using iTunes, you'll need to delete content manually from your device.
Find out what to do if you get other error messages while updating your device.
Last Modified: Jan 12, 2015
Apple - Find Locations
https://locate.apple.com
Contact Apple for support and service - Apple Support
http://support.apple.com/en-us/HT201232
Regards,
- Judy -
Error encountered while signing. Windows cryptographic service provider reported an error. Object not found. Error code:2148073489. Windows 7, Adobe Reader XI, Symantec PKI, Smart Card and CAC. I have seen other threads for this error but none have a resolution. Any help would be appreciated.
Sorry for the long title, first time poster here.This thread is pretty old, are you still having this issue?
-
Hi, I have a problem that I receive lots of Spam messages from my office, I cannot bar the spam text from service provider due to official constrain.
I just want to know if there is any mechanisme where i can bar the message from a specific sender. I know there are some apps like Iblacklist available but we do not find it in any Iphone which is not jailbreak. I was just thinking of developing some code for it.No. You can't. Filtering would have to be done at the server level.
-
My iPhone 4 cellphone was stolen last year. I have done all the procedures of reporting it to the South African Police Services and my Vodacom service provider. I do have the case number and I did blacklist my stolen phone. I have not had any assistance. I had installed Find My iPhone but did not have any iCloud account on it (ie. iCloud Username and Password). So I am unable to track it or find its location as yet. Please help me find my iPhone 4.
Your only chance is setting it up as new device without using the latest backup afterwards, which you already did.
If this does not work, you should get it serviced:
Apple - Support - Service Answer Center
How to back up your data and set up as a new device -
I am living and working here in the sultanate of Oman. Its been two days that I have not been able to use viber on my iPhone unless I use VPN. I talked to colleagues who have iPhones and other apple devices and they said they are also experiencing the same problem. I tried to call up my service provider (NAWRAS) and they informed me that the problem is not on their side, that they have not blocked the app. Surprisingly, when I asked my colleagues using samsung, they said the app is working just fine. What seems to be the problem? Are the codecs (I hope I am using the right terms here) used by viber now are similar to that of the other messaging blocked apps like Tango, weChat and skype?
Please help us on this. Thank you!Maybe its a Viber problem. As that is not an Apple product, why don't you try and contact the developer?
-
Problem with outlook connector LDAP Directory MAPI Service Provider is not
Hi,
I have very basic problem with sun outlook connector client.
I am using sun java system connector deployment tools to create client installation script, on first page I have to supply the location for web publisher and Microsoft LDAP service, I can find web publisher and I don't have any clue about location of LDAP services and without this my client instaltion script keep failing with following error.
The Microsoft LDAP Directory MAPI Service Provider is not installed.
--- 2006/09/25 14:14 ---
14:14:25 [5365] Outlook version is 11.0.5608.0.
14:14:25 [5376] Adding MAPI directory 'C:\Program Files\Common Files\System\MAPI\1033' to PATH.
14:14:25 [5475] TMP directory is 'C:\DOCUME~1\MMESKA~1\LOCALS~1\Temp'.
14:14:26 [5362] Checking Windows version.
14:14:26 [5363] Windows version is 5.1.
14:14:26 [5364] Checking Outlook version.
14:14:26 [5509] Checking default mail client.
14:14:26 [5508] Default mail client is 'Microsoft Outlook'.
14:14:26 [5178] Verifying that Outlook is not running.
14:14:26 [5179] Trying to login to shared session.
14:14:26 [5369] Installing Sun Java System MAPI Service Providers using 'C:\DOCUME~1\MMESKA~1\LOCALS~1\Temp\Sun Outlook Connector\sunone-mapi-services.msi'.
14:14:28 [5502] Upgrading the Sun Java System MAPI Service Providers.
14:14:38 [5370] Finished installing Sun Java System MAPI Service Providers.
14:14:38 [5366] Checking whether Sun Java System MAPI Service Providers are installed.
14:14:38 [5367] Sun Java System MAPI Service Providers are installed.
14:14:38 [5416] Checking whether Microsoft LDAP Directory MAPI Service Provider is installed.
14:14:38 [5418] The Microsoft LDAP Directory MAPI Service Provider is not installed:
14:14:38 File 'C:\Program Files\Common Files\System\MAPI\1033\EMABLT32.DLL' does not exist.
14:14:38 [5416] Checking whether Microsoft LDAP Directory MAPI Service Provider is installed.
14:14:38 [5418] The Microsoft LDAP Directory MAPI Service Provider is not installed:
14:14:38 File 'C:\Program Files\Common Files\System\MAPI\1033\EMABLT32.DLL' does not exist.
14:14:38 ERROR: Microsoft LDAP Directory MAPI Service Provider must first be installed.
Thank you for your help.
Best regards
MoHi,
If memory serves, Outlook XP offered the ability to set what address-book connectors were installed, one of which was LDAP (by default enabled). It may be a similar situation with Outlook 2003 (which I assume you are using based on the version number in the debug logs). Try using the Office '03 install CD and see if you can find the LDAP addressbook option and install it.
Regards,
Shane. -
iPhone 4S. My e-mail service provider is Embarq. I am receiving e-mails, but I cannot SEND/REPLY to e-mails. I get message that recipient was rejected by the server because it does not allow relaying. Any suggestions.
Problem has been solved thanks to a posting by AmberDrivingKendal on 5/15/11. More Like This section was a great help.
-
Not all of my photos upload to my website when I publish it. when my site finishes publising I get an error that says, "There was an error communicating with the FTP server. Try again later, or check with your service provider."
I am publishing directly to an FTP server (option 1). Is this the optimal method or should I be publishing to a folder and then (how do/would I?) publish to my hosting domain?
I'm wondering if this has really anything to do with the publishing process, or whether it just has to do with the photos and/or the photo albums. I've deleted the photo albums with the missing pictures from my site on iweb thinking a file might be corrupt. (I'm getting the albums from iphoto -- drag/drop method into iweb) I then replaced these albums with the same albums as the previous ones from iphoto and then published my site again -- and the EXACT same photos were once again missing in the NEW albums as were missing in the old albums...
Maybe it is a publishing issue, or it could be a photo/file issue. However, these albums aren't very large -- the largest containing 135 photos --
Please! if you have any suggestions or ideas as to what is happening I would be greatly appreciative!
I'm pulling my hair out here trying to diagnose the problem...
Maybe you are looking for
-
Java Message Mapping : Dynamic FileName and Directory for ASMA
How to Put Dynamic FileName and Directory for ASMA Properties of File Receiver adapter in Java Message Mapping ??? I know How to Do this in UDF , But In Java Type Message Mapping . How to do this ???? Regards PS.
-
How do I transfer a word document in my e-mail on my iPhone to a desktop computer
I want to know the answer
-
How to use vector file without adobe illustrator?? please help
I am using the free trial period of adobe illustrator to creat a logo. I don't want to buy illustrator b/c I don't plan on using the program for anything else, I would like to save my logo in some kind of vector format so I can use it for lots of d
-
Struts-JSP with custom field rendering
If I have an ADF/JSP in a struts framework and I have built some data pages with a default set of entity attributes being displayed, is there any JSTL/struts tags that can let the application at runtime decide if a column/field should be displayed? k
-
Cs2 Install Serial Number Issue
I am installing the Older Photoshop Cs2 into my computer from their Download as adobe is not activating it through my Disk install any longer, After downloading the CS2 File I start the installation, it asks for the Serial Number I ENTER IT, and it t