Secure Zone Issue

First of all it is a kind of a nice idea and it seems to work quite well. However, if you put some apps in the secure zone, and deactive it in the open zone, you can still reactivate it in the open zone. That is you cant hide the existance of certane apps, only the date in them. Is that correct? Say you have a secret bank account with bank XYZ and you want to hide that you are using XYZ internet banking app from the open zone, or you want to hide your dating apps from your friends or family - you can't really do this with the current implementation, if I am right.  P.S: I get it, that the date will stay secure and protected, but you can not completely hide your ussage of some apps from the oppen zone. Finally, question if you have a virus or malware in the Open Zone, in theory this should not impact your secure zone? If the infected apps are deactivated? 

Thanks again, huangzg, for the prompt and professional reply. I am also quite impressed and excited that you looked at my suggestions and considered to implement some of them.  Regarding the remaining open issues, I will repy in blue:
4. Error when installing apps in SZ
This should be an issue, we need more details to fix it. Please help to provide, thanks. When I tested the Vibe Z2 Pro, I was not able to install apps in the Secure Zone, via the Play Store (or any other way). When in SZ, I opened Google Play Store, I found an app, I clicked install, and the Google Playstore started installing, after it interrupted and gave me an error message, like there is a bug.  I do not remember the exact error message, but I can provide it if necessary. It was only possible to install apps in the Open Zone. Some other users confirmed that this is the case.  Franky, I do not think this is a problem as the Open Zone is a sort of administration zone where all the apps are installed. So I thought this is a functionality , that it is not possible to install apps in the Secure Zone. That is fine and I do  think it is probably increasing the security of the SZ. However, what bothers me from user perspective, is that the google play store gives error message like as if there was a bug.  Which might confuse users. Although, this is not a bug only a functionality. So I suggested, that instead of getting an error message when installing apps in playstore via the SZ, the SZ could give a message something like "All new apps have to be installed in the Open Zone". Having that said, I do not know if this is possible to implement, as the error message comes form the google play store, so I do not know if you can actually catch the play-store error message or pressing of the install button and replace it with secure zone message. It is just cosmetics. 6. It is a great secure zone but not a guest zone
Guest mode is coming in Google Android L version. Any devices upgraded to Android L will include this feature. What kind of guest mode will this be? Will it be basically a second secure zone that will be labeled guest mode? Will it only have 1 extra guest mode or several? I am not trying to push the limits, I am just being curious.  P.S. I also think a guest mode could be used as an personal user mode. I could put all the apps that I use daily in the "user mode / guesst mode" and thus the Open Zone would serve only as an admin zone for installing apps. Or think of it as a glorified app drawer. I.e. it would be possible under some conditions to use the guest mode as your own user account with just selected enabled apps. That would go a bit beyond anything that currently exists by other developers. Thus, it is just brainstorming, not a suggestion.  Above changes will be available in K920 ROW L version. I am now testing the Vibe Z2 (5.5 inch, 2 GB RAM). I did not find the secure zone there. Should I assume that the secure zone will only be available on the Vibe Z2 Pro also after the L update? Does this has to do anything with the 3GB of RAM in the Pro version? Vibe X2 and Vibe Z2 have 2GB RAM, is that too little to roll out a secure zone on those phones?

Similar Messages

  • Browser security zone issue

    All,
    On one of our 11.5.10.2 Vision instances, we've experiencing a strange browser issue using IE 6 & 7. We have the domain registered under trusted sites. You can log into EBS and see the browser read "Trusted Sites" and navigate around the menus. However, forms won't launch and any link that pops up another browser window, opens in the "Internet" zone. Even the Logout link displays this behavior. Because the zone is Internet, we get a 404 page.
    This instance previously worked fine and we haven't done anything on the box in months.
    I've tried all sorts of IE security setups, clearing IE temp files, JAR caches, bouncing apps & the db, deleting the apache cached files. This behavior occurs on multiple client PCs.
    Anybody have any ideas?

    Yes, the issue appears from multiple PCs.
    I don't see any unusual invalid objects, just some PJI & EUL stuff.
    In the Apache error_log file, I am seeing a bunch of "client denied by server configuration" and "file doesn't exist" errors. Here are some samples:
    [Thu May 22 14:48:24 2008] [error] [client 192.168.11.7] File does not exist: /u
    01/oracle/apps/viscomn/html/oracle.apps.fnd.sso.AppsLogout
    [Fri May 23 07:06:11 2008] [error] [client 192.168.11.7] client denied by server
    configuration: /u01/oracle/apps/viscomn/java/java

  • Secure Zone Login Issues:  It worked great and now just stopped.

    The secure zone on my client's site worked great for about a month and now it just stopped.  All of a sudden it won't let us type into the username and password boxes.  We can click on the "remember me" button and the "submit button" but not type.  I've tried deleting and redoing the code and still nothing.  Our issue is occuring most when used with Chrome's browser.  Any thoughts or suggestions?

    Thanks for your reply, Liam.  Oddly enough I was just reading your expectional contributor profile that popped up in my side collumn.
    Here is the link to the site.  The login works fine in Safari, it's just a problem with Chrome I believe.
    www.myadvancedpt.com
    The login area is in the bottom right of the footer titled "Employee Login."

  • Mobile - Secure zone login issues

    Hi All,
    I'm able to log in to BC sites with secure zones using a samsung galaxy s1 and iphone pretty consistently however when using a samsung galaxy s2
    I can't login - tested over 3 sites so I know it's not the code on the page interfering with login.
    Anyone else have issues logging in to secure zones with mobiles?
    Thanks,
    Nathan

    Sure,
    Using the Default browser on
    Samsung Galaxy s2
    firmware version : PDA:LP8 / PHONE:LPS / CSC:LP4 (XSA)
    firmware version : PDA:LPW / PHONE:LQ6 / CSC:LP6 (XSA) upgraded to see if it would help but no luck
    1. Click the link to login (either on login form or just clicking on a link to a page within the zone I'm trying to log in to).
    2. Enter correct username and password (multiple testings and changes of password have been tested)
    3. In either case, URL will change to /Default.aspx?PageID=######
    Sometimes it will show /Default.aspx?PageID=######&Error=Thank+you+for+logging+in.
    On some of the websites I've tried - Creating a new customer on the samsung galaxy s2 will register the new user for the zone - but the form will not allow the user to be logged directly in on submission - error page " We're not able to log you in "  appears however the user is created, assigned to zone and can be used fine on a desktop.
    Content that should be accessible once logged in - isn't (example. Login changes to logout, customer name "Hi Firstname lastname" won't display etc. because it's just not logging in.)
    Zone subscription is checked, works on Samsung Galaxy s1 as it should.
    Galaxy S
    Operating System
    Linux Android
    Screen Resolution
    800 x 1130
    Web Browser
    Android Webkit 4.0
    Browser Size
    800 x 1130
    IP Address
    withheld
    Color Depth
    32
    Javascript
    Enabled
    Flash Version
    11.1.111
    Cookies
    Enabled
    User Agent
    Mozilla/5.0 (Linux; U; Android 2.3.3; en-au; GT-I9000 Build/GINGERBREAD) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile Safari/533.1
    Galaxy S2
    Operating System
    Android Android4.0.4
    Screen Resolution
    480 x 800
    Web Browser
    Android Webkit Browser --
    Browser Size
    320 x 456
    IP Address
    withheld
    Color Depth
    32
    Javascript
    Enabled
    Flash Version
    11.1.115
    Cookies
    Enabled
    User Agent
    Mozilla/5.0 (Linux; U; Android 4.0.4; en-au; GT-I9100 Build/IMM76D) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30

  • Secure Zone Log In Box issues (when published from Muse)

    I can't log in to one secure zone when I publish the log in box from Muse. When I put the same log in box on a page in Business Catalyst, I am able to use it to log in. However when I take the log in box code and publish from Muse, it keeps denying access. All other log in boxes for other secure zones on the site are working but they have been in place for a while. Has something changed with a newer version of Muse?
    Is there a work around for this (like the way webforms made in BC now have to published in BC and submitted to prevent deletion by publication from Muse)?

    Please share the link to the page where the form is placed , along with test user login details, so that we may further look into this. Also a screenshot demonstrating the issue you facing would be of great help.

  • Secure Zone login form logs user in who isn't registered for it?!

    I have a client who runs an eCommerce site through BC.  We have a secure zone setup for his site and he wants to review and approve users before they are given access.  There is good reason for this so please don't bring up counter-points as it is non-negotiable.
    Anyway, the secure zone registration form basicly creates a user CRM record and allows them to select a username and password.  I've instructed to client to continue into the CRM and select the checkbox next to the appropriate secure zone in order to authorize the account to login.  As far as we know this has been working until yesterday.  Now, when somebody who has an account but it is not approved yet tries to login, they receive the form error as to be expected.  However they get logged into some phantom secure zone.
    I say "phantom" zone because the actual registration form doesn't subscribe them to a secure zone, it's manual (as previously stated).  This is a pretty big issue as a major reason for doing this is that my client doesn't want his prices visible to the public.  Only after the person is in the secure zone are prices visible.  Any help would be much appreciated.  I know BC launched a new update recently which my be a contributing factor....thanks in advance!

    Hi Mike,
    This has always been the case.
    IF you have a username and password and login to a site you are logged in. You may very well not be part of a securezone but you are logged in. This is why hiding and showing content soley based on the isloggedin module is a very thoughtful process as you can not show content based on this knowledge.
    This has nothing to do with the update, you probably only just noticed this behavior but this has been the case since BC born.

  • Security Zone error.

    I have a federated portal, i.e. producer - consumer relationship (7.0 sp18) and when I federate a BEx qry I'm getting a Security Zone error with the following message:
    Caused by: com.sapportals.portal.pcd.gl.PermissionControlException: Access denied (Object(s): com.sap.portal.system/security/sap.com/NetWeaver.Portal/high_safety/com.sap.portal.runtime.system.console/components/default)
    I did the following:
    Go to System Administration -> Support.
    Under the Area column select Portal Runtime. Scroll down to the JNDI Browsers section, and select Security Zones Browser. Drill down to sap.com/NetWeaver.Portal/high_safety/com.sap.portal.runtime.system.console/components/default.
    I'm seeing "No service is bound to this secutiy zone"
    I understand I need to go to System Administration  ->  Permissions,
    Browse to Security Zones:
    sap.com/NetWeaver.Portal/high_safety/com.sap.portal.runtime.system.console/components/default
    and right-click  -> Edit Permissions.
    All I have to do is add end-user-read permissions is that correct?
    I currenlty see just content_admin, super_admin, and system_admin all with End USer checked. Do I have to add my "Everyone" role as an assigned permission and ck End User?
    Then when I go back to the Support Desk I see a service bound?
    Mike

    From what I am seeing I now understand that in my federated env I am generating a URL that exceeds 2083 characters.  We are using IE Version 7.0.5730.13CO
    I also understand that I am not having this issue when using Firefox.
    These urls are getting generated when the users save a BEx qry to the BEx Portfolio or their My Portfolio.
    The reason I was getting the security errors was the url's were getting chopped off and the users did not have access to those components.
    Anyone implement a method to fix this issue?
    MIke

  • Problems accessing secure zones in admin panel from Chrome

    Is anyone else having this issue? I have tried everything I know and every time I try to access and individual secure zone in chrome it just tries loading and never get anywhere (like after hours) but works fine on safari.
    I contacted support but they seem to think it is a cache issue with me (but I don't have cache enabled and have cleared my entire history). urg.

    I have the opposite view. I would expect people in the industry to frown on AdBlocking since we often build projects for clients that rely on advertising to survive so you can appreciate the negative effect AdBlock has on client's revenue.  I don't know how you're pumping money into Facebook besides buying ads which you are then blocking.  If anything, you are directly removing money from the pockets of the owners of these free sites which provide a valuable free service to you and yours.
    And, you're right. I'm over it.

  • Best practice for secure zone various access

    I am setting up a new site with a secure zone.
    There will be a secure zone. Once logged in, users will have access to search and browse medical articles/resources
    This is how an example may go:
    The admin user signs up Doctor XYZ to the secure zone.
    The Doctor XYZ is a heart specialist, so he only gets access to web app items that are classified as "heart".
    However, he may also be given access to other items, eg: "lung" items.
    Or, even all items. It will vary from user to user.
    Is there any way to separate areas within the secure zone and give access to those separate areas (without having to give access to individual items - which will be a pain because there will be hundreds of records; and also without having the user log out and log into another secure area)

    my only issue with this is that I have no idea how to open up File Sharing to ONLY allow users who are connecting from the VPN
    Simple - don't expose your server to the outside world.
    As long as you're running on a NAT network behind some firewall or router that's filtering traffic, no external traffic can get to your server unless you setup port forwarding - this is the method used to run, say, a public web server where you tell the router/firewall to allow incoming traffic on port 80 to get to your server.
    If you don't setup any port forwarding, no external traffic can get in.
    There are additional steps you can take - such as running the software firewall built into Mac OS X to tell it to only accept network connections from the local network, but that's not necessary in most cases.
    And 2. The best way to ensure secure AND encrypted file sharing via the server...
    VPN should take care of most of your concerns - at least as far as the file server is concerned. I'd be more worried about what happens to the files once they leave the network - for example have you ensured that the remote user's local system is sufficiently secured so that no one can get the documents off his machine once they're downloaded?

  • WebApps (Liquid) Secure Zone Help

    Hi BC Team,
    Hoping someone can help me with this... I am developing a Secured Team Portal for a client of mine.  Unfortunately I haven't had a chance to delve deep into Liquid yet, so, sort of looking for some help here : ).  Here is what I want to achieve:
    A customer is assigned to a particular secure zone (via my client, securing the customer to a secure zone that relates to them).  This customer would only see the web app relates to them only.  More than one customer may have access to the same web app item.
    Assuming we assign these web app items to a Secure Zone, is there anyway to achieve this easily with Liquid? If so, any tips and tricks?
    Thanks in advance,
    Aaron

    Hi Aaron,
    Ownership in the system of a web app item is limited to 1 person, you can not add to that, change that in any form.
    You could have a custom field for a list of peoples names and run a liquid check to see if that name was the same as the person logged in (setting this with javascript on the web app item submission) BUT this is open to issues....
    1. If someone made an admin entry and forgot to add or did not put the correct names down.
    2. Liquid has a scope limit of only 500 items. You can run if statements, your own collection etc but it effectively only works within that 500 item scope. This is a major issue for me and I am trying to get even feedback from BC on this but they avoiding it at the moment

  • Set expiration dates for Secure Zone Memberships

    We run an online exercise company offering memberships with access to exercise videos so users can exercise online - we sell memberships by the week, month, or month to month memberships. We also sell a beginner courses. The site has been built in Adobe Muse, integrated with Business Catalyst.
    For the time-based memberships we have inserted a snippet of code in Business Catalyst that limits the amount of time members have access to the secure zone where we keep the videos - this is tied to the form members fill out when they purchase. The issue is that when the entire Muse site is republished or just the page with the form - the code disappears. So we have to go into each form and reinsert the code. This has been going on for quite some time. Below is most of the code we've been using - which we found in Business Catalyst Forum Section a couple years ago:
    function setExpiryDate( )
    var dat=new Date();
    dat.setDate(dat.getDate() + 8);
    var monthname=new Array("Jan","Feb","Mar","Apr","May","Jun", "Jul","Aug","Sep","Oct","Nov","Dec")
    var pretty = dat.getDate() + "-" + monthname[dat.getMonth()] + "-" + dat.getFullYear();
    document.getElementById("ExpiryDate").value = pretty;
    };setExpiryDate( );
    We are looking to 'permanently' anchor the code in the form.

    Hi
    If you are using BC secure zones then you can setup the expiry date from BC end only, regarding the code that you are using , I believe you are trying to use specific form for secure zone sign up and limiting the expiry date.
    Regarding form code being stripped off, are you submitting the form once from site front end and then also code is stripped off ?
    Please include site url in your response.
    Thanks,
    Sanjit

  • Why can't I add a secure zone to my web site in the admin panel?

    I would like to add a secure zone (or add files to the site) to one of my web sites but I don't have that option in this account. What is the problem here and how to I fix this? In my main account I have the more options under the "Site Manager" tab. However, under this account I only have two options, Web Forms and System emails. Need help ASAP.

    Hi Mr. Baker,
    The option of secure zone depends on your site plan. However, I'd suggest you to please login to your site, hover mouse on your name at the top and go to My Details. Scroll down and make sure "Enable online editing" is checked. If its checked already and still not getting the secure zone option, please provide us the site URL and we'll investigate the issue.
    Regards,
    Aish

  • Setting a secure zone expiry date beyond the invoice date.

    Is it possible to set the secure zone expiry date later than the invoice date? We're just looking at a way to let our members continue to have access for say 1 week after an invoice has failed so that they can log in and update their credit card details, possibly without seeing the 'access expired' message.
    I've seen this behaviour on a site before, but I think that may have had something to do with the fact that it was a weekly membership site and that the invoices were already generated.
    Cheers
    Pat

    Hey Gaurav,
    This is for a monthly recurring subscription. What I was thinking was that if for example a user signed up on the 1st of the month that their SZ access expires on the 8th of the next month, but the invoice is still issued and paid on the 1st of the following month, and when the invoice is successfully paid the SZ access gets extended till the 8th of the next month - now that I've written it out like that I'm pretty sure this isn't possible, unless there is some setting that dev can see in the backend?
    Pat

  • Secure Zone Setup without Customer Registration

    How do I setup a secure zone that I control the Username and Passwords?  I do not want the client to register because I want to set up and control all access.

    Okay - I've got the client to finally sort paypal pro... but still having issues.
    Goal - Paid access to a web app submission form, so the visitor can add an advert to the site
    The process as I see it:
    1/ Register paypal and pro account - add details to payment gateway settings (done)
    2/ Setup web app & setup web app submission form (done - tested fine when no payment requried)
    3/ Setup secure zone with paid access requirement - landing page is the web app form (done)
    4/ Setup web form to process the payment and give access to the secure zone....
    Right... this is where the confusion starts... With Paypal Pro my thought was after they submit the web form - it would then take them to paypal and and ask them to process the payment, then return them to the correct landing page...  right?  Or does it need to ask for credit card details on the form before paypal??
    Confused...?
    I wish Adobe would put up some proper videos on Adobe TV.. not just the rubbish overview videos... most of the other Adobe products have good videos.  The knowledge base is outdated with old version help... needs serious work Adobe!  BC promises a huge amount, but without proper reasources busy agencies don't have the time... means BC fails to deliver...

  • IE 11 Internet Security Zone Protected Mode Problem

    Hi All
    We have a couple of random issues using IE 11 and was wondering if someone could shed a little light on it.
    I think it boils down to an issue of the running of java but it's hard to pinpoint.
    An example of the issue is present the below Technet article, it has expansion arrows on the left of the text that allow you to expand and collapse articles, this work in older version on IE and also other browsers, however in IE 11 they do not work until
    you uncheck protected mode from the Internet Security Zone:
    http://technet.microsoft.com/en-us/library/gg398125.aspx
    If left checked these not work, this issue manifests itself in various different ways depending on the site but the above is the clearest example. Scripting of Java applets is enabled as part of the default Medium-High setting.

    Hi,
    regardless, click the "Reset all zones to default" button... by default only sites in the RESTRICTED zone will have ActiveScripting (javascript) disabled.
    I would expect it to be in the Internet zone... Are you MSFT? Intranet sites are usually detected automatically. It is uncommon to have a public access website listed in your Intranet zone sites list. If so please contact your system administrators.
    or check if its in your list or applied by your network administrators.
    Internet Options>Security tab, Local Intranet zone button, Sites button, Advanced... If its in your list, remove it... if its not in your list consult your system administrators....(it is not visible to you if they (the system administrators) have placed
    it there.
    Commonly....sites like TechNet or MSDN may be added to the TRUSTED sites lists.. On server versions of IE, Microsoft.com is placed in the TRUSTED sites list... Server versions of windows have a higher security, and MS.com is placed in the
    On private computers there is little need to place sites in any security zone.... they will map automatically to the internet zone. Placing sites in the Trusted zone actually DECREASES the site security... hence you have to TRUST them first before putting
    them into a lower security zone.
    Questions regarding Internet Explorer 8, 9 and 10 and Internet Explorer 11 for the IT Pro Audience. Topics covered are: Installation, Deployment, Configuration, Security, Group Policy, Management questions. If you are a consumer looking for answers or to
    raise a question, it's highly recommended you head on over to http://answers.microsoft.com
    Rob^_^

Maybe you are looking for

  • Using array from one vi in another vi

    Hi, Im new with NI LabView and i have few Qs: 1. I'm writing a vi and I'm creating a numeric array in it. How can I use the array (It's content) in a different vi that's I'm writing? 2. How do I link between vi's? Im writing few vi's and pressing a b

  • Showing product key doesnt work

    Hi, my name is varun, I bought my laptop (G6 pavilion 2320tx) one and a half year ago with inbuild windows 8 in it, 2 weeks earlier i refreshed my laptop. Now its showing "Activate Windows, This product key doesnt work".  What should I do......

  • Loading properies file from JSP

    Hi All, I am storing both the jsp file and properties file in the same folder. I am using tomcat web container. When I load the JSP into a browser, I am getting file not found exception. Can you please tell me how to resolve this problem. Very urgent

  • Could anybody explain me what is data guard real time sync ??

    This was asked as an interview question to me . am a fresher please help me out.. thanks in advance.

  • Computer won't wake up after sleep

    I've been reporting sleep problems with my iMac for a while in the past. No-one here would take it seriously (probably hardware, your reports are incidents, no-one else has these problems) so I just went away and I disabled the sleep function of my i