Security and encryption inside Integration Server

Similar Messages

• SOAP Security and Encryption...

  Hi All,
  My scenarios are SOAP to IDOC Async and IDOC to SOAP Async.
  How to achieve security and encryption in SOAP side?

  Hi Arthita
  You can use SSL encryption via SAML (http://scn.sap.com/docs/DOC-16302)
  Or you migt find it usefull to check out Siva Kumar Arivinti document http://scn.sap.com/docs/DOC-26144 SSL Configuration in SAP ABAP AS and JAVA AS – Step-by-step procedure.
  Regards Torben

• Remote desktop is it secure and encrypted for windows 7 and windows 2008 servers

  Remote desktop is it secure and encrypted? any supporting documenting showing if it is secure and encrypted .

  Hi,
  Yes, RDP is secure and encrypted. RDP uses RSA Security's RC4 cipher, a stream cipher designed to efficiently encrypt small amounts of data. RC4 is designed for secure communications over
  networks. Administrators can choose to encrypt data by using a 56- or 128-bit key.
  For more details, you can refer to the following:
  Standard RDP Security
  http://msdn.microsoft.com/en-us/library/cc240771.aspx
  Enhanced RDP Security
  http://msdn.microsoft.com/en-us/library/cc240795.aspx
  Secure RDS (Remote Desktop Services) Connections with SSL
  http://technet.microsoft.com/en-us/magazine/ff458357.aspx
  Configure Security Settings for Remote Desktop Services Connections
  http://technet.microsoft.com/en-us/library/cc753488.aspx
  Thanks.
  Jeremy Wu
  TechNet Community Support

• Client Copy and Configuration of Integration Server

  Hi All,
  We have PI 7.0 DEv(ABAP and JAVA) system installed on AIX 5.3 and configured client 150 as Integration Server.
  Further we have an requirement for two more clients to be created by client copy
     For example : Say 160 as Unit test and 170 for X.
  1) Now my question is do we have to do a client copy with 150 as source or 000.
  2) Once the client copy is done do we have to Configure these clients 160/170 as Interation Server (Is it Possible to configure multiple client as Integration server in one system) or as Application system.
  Cheers
  Deepu

  hi,
  >2) Once the client copy is done do we have to Configure these clients 160/170 as Interation Server (Is it Possible to configure multiple client as Integration server in one system) or as Application system.
  no it is not possible to have more then one integration server (XI)
  on one server
  you need a new server if you want test environment etc.
  Regards,
  Michal Krawczyk
  http://mypigenie.com XI/PI FAQ

• Where is the FF4 "lock" icon that indicates secure and encrypted transmission?

  Prior to FF4 upgrade, a 'lock' icon would appear on bottom of screen to indicate when of if transmission was secure. With FF4 this icon never appears (or I don't know where to find it). Does it have a new location? Is there some way to have it return for those sites with which transmission will be encrypted?

  The lock has been replaced by the [[Site Identity Button]], which will tell you whether the connection is encrypted ''and'' the identity of the web site on the other end of the connection.
  The reason for this change is that it is important to verify identity, not just security. The "lock" icon could be misleading, because an encrypted connection is not actually secure unless the identity is verified too.

• Email security and AMP ( Sourcefire ) integration

  Hi,
  According to public release from cisco :
  http://newsroom.cisco.com/release/1354516/Cisco-Adds-Advanced-Malware-Protection-to-Web-and-Email-Security-Appliances-and-Cloud-Web-Security?utm_medium=rss
  There is now integration of AMP into the email and web appliance. I cannot find any information regarding versions or licenses needed to take advantage of this functionality. If customer is sitting on a Sophos license today for example, will AMP be an addon or replacement of this license ?
  Any info is appreciated.

  Hi Daniel,
  We announced the software integration at RSA last week. It will be available as a feature in the next 2 to 4 weeks as FCS code (First Customer Ship.) It will be a separate software license for the cloud inspection and a separate license for the cloud sandboxing. It will not be included in any existing licenses. This is the upcoming 8.5.5 version of AsyncOS.
  In the mail pipeline it will come after Anti-Spam and Anti-Virus engines and before Content Filters and Outbreak Filters. You will be able to do Content Filter inspections and actions based on AMP results.
  Also at RSA we announced the integration of Web Categorization and Web Reputation technology from the WSA into the ESA. This will be included as part of the Outbreak Filters license. Web Reputation is embedded into the anti-spam engine and Outbreak Filters. Web Categorization is available as a condition and as an action in Content Filters. You can do actions such as defang, re-write to Proxy, or replace URL with text or any other Content Filter action such as drop or quarantine messages with Adult or Pornographic category URLs. This is the 8.5.0 version of AsyncOS and is available today as FCS code.
  Please work with Cisco TAC to have your devices provisioned for 8.5.0 FCS code if you wish to test.
  Thanks,
  Raymond Jett
  Technical Marketing Engineer
  Email Security Products

• File Security and Encryption - any information?

  I'm impressed with the file sharing (free version) but if its used for business information and documents how secure are they from prying eyes / unauthorised download / hacking etc. ?

  Thank you for your post. You can read about security for Acrobat.com here.

• JBoss 4.2.0 does not contain need folders and files inside default server

  Dear,
  In the Virtual Appliance you provided, you will find under the /home/livecycle/jboss-4.2.0/server/default ONLY: log folder and tmp folder.
  When you start jboss like:
  ~jboss4.2.0/bin>./run.sh -c default
  It will give this error:
  Failed to boot JBoss:
  org.jboss.deployment.DeploymentException: url file:/home/livecycle/jboss-4.2.0/server/default/conf/jboss-service.xml could not be opened, does it exist?
  The answer is NO as i explain before. But why? is there a problem in the Virtual Appliance when you prepare the jboss server on it?
  Please let me know

  JBoss in the Virtual Appliance does not have a "default" configuration.  You should not start it with the command "./run.sh -c default".
  Please read the readme.pdf before you use it:
  http://d2x45prcet210j.cloudfront.net/readme.pdf

• How to enable both WS Security and MTOM

  I am trying to call a web service running in JBoss. The web service is enabled with both ws
  security and MTOM as per the requirement. When i am trying to call the web method from my
  java client, i am getting the below exception
  Exception in thread "main" javax.xml.ws.soap.SOAPFaultException: Endpoint
  {http://wsg.hpos.om.hp.com/}HPOSGatewayPort does not contain operation meta data for:
  {http://www.w3.org/2001/04/xmlenc#}EncryptedData
  at org.jboss.ws.core.jaxws.SOAPFaultHelperJAXWS.getSOAPFaultException
  (SOAPFaultHelperJAXWS.java:72)
  at org.jboss.ws.core.jaxws.binding.SOAP11BindingJAXWS.throwFaultException
  (SOAP11BindingJAXWS.java:109)
  at org.jboss.ws.core.CommonSOAPBinding.unbindResponseMessage
  (CommonSOAPBinding.java:579)
  at org.jboss.ws.core.CommonClient.invoke(CommonClient.java:381)
  at org.jboss.ws.core.jaxws.client.ClientImpl.invoke(ClientImpl.java:300)
  at org.jboss.ws.core.jaxws.client.ClientProxy.invoke(ClientProxy.java:166)
  at org.jboss.ws.core.jaxws.client.ClientProxy.invoke(ClientProxy.java:152)
  at $Proxy17.getName(Unknown Source)
  at wsclient.TestHPOSClient.main(TestHPOSClient.java:106)
  my client code is:
  URL endpoint_new = new URL("http://15.70.176.190:9000/HPOSGateway/HPOSGateway?wsdl");
  QName qname = new QName("http://wsg.hpos.om.hp.com/", "HPOSGatewayService");
  HPOSGateway port = new HPOSGatewayService(endpoint_new,qname).getHPOSGatewayPort();
  BindingProvider bp=(BindingProvider)port;
  SOAPBinding binding = (SOAPBinding)bp.getBinding();
  binding.setMTOMEnabled(true);
  Map<String,Object> map = bp.getRequestContext();
  map.put(BindingProvider.USERNAME_PROPERTY,"administrator");
  map.put(BindingProvider.PASSWORD_PROPERTY,"da1sy");
  URL securityURL = new File("c://jboss-wsse-client.xml").toURL();
  ((StubExt)port).setSecurityConfig(securityURL.toExternalForm());
  ((StubExt)port).setConfigName("Standard WSSecurity Client");
  map.put(BindingProvider.ENDPOINT_ADDRESS_PROPERTY,
  "http://15.70.176.190:9000/HPOSGateway/HPOSGateway");
  System.setProperty("org.jboss.ws.wsse.keyStore", "c:\\wsse.keystore");
  System.setProperty("org.jboss.ws.wsse.trustStore", "c:\\wsse.truststore");
  System.setProperty("org.jboss.ws.wsse.keyStorePassword", "jbossws");
  System.setProperty("org.jboss.ws.wsse.trustStorePassword", "jbossws");
  System.setProperty("org.jboss.ws.wsse.keyStoreType", "jks");
  System.setProperty("org.jboss.ws.wsse.trustStoreType", "jks");
  System.out.println(port.getName("Welcome to this testing part."));
  ,, my jboss.wsse.client.xml is...
  <?xml version="1.0" encoding="UTF-8" ?>
  <jboss-ws-security xmlns="http://www.jboss.com/ws-security/config"
  xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
  xsi:schemaLocation="http://www.jboss.com/ws-security/config http://www.jboss.com/ws-
  security/schema/jboss-ws-security_1_0.xsd">
  <config>
  <encrypt type="x509v3" alias="wsse" />
  <requires>
  <encryption />
  </requires>
  </config>
  </jboss-ws-security>
  and my jboss-wsse-server.xml is ...
  <?xml version="1.0" encoding="UTF-8"?>
  <jboss-ws-security xmlns="http://www.jboss.com/ws-security/config"
  xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
  xsi:schemaLocation="http://www.jboss.com/ws-security/config http://www.jboss.com/ws-
  security/schema/jboss-ws-security_1_0.xsd">
  <key-store-file>WEB-INF/wsse.keystore</key-store-file>
  <key-store-password>jbossws</key-store-password>
  <trust-store-file>WEB-INF/wsse.truststore</trust-store-file>
  <trust-store-password>jbossws</trust-store-password>
  <config>
  <encrypt type="x509v3" alias="wsse"/>
  <requires>
  <encryption/>
  </requires>
  </config>
  </jboss-ws-security>
  i have my web service annotations like below.
  @WebService(name="HPOSGateway",targetNamespace="http://wsg.hpos.om.hp.com/")
  @EndpointConfig(configName = "Standard WSSecurity Endpoint")
  @BindingType(javax.xml.ws.soap.SOAPBinding.SOAP11HTTP_MTOM_BINDING)
  @HandlerChain(name = "HPOSGateway_handlerChain", file = "HPOSGateway_handler.xml")
  public class HPOSGateway{
  Can any one help me what is the problem and where i need to change? Please it is very
  urgent.
  Regards
  Ramchand

  Welcome to the forum!
  Even if it were physically possible, you wouldn't be able to use both Ethernet ports at the same time, because the motherboard doesn't support more than one connection at the time.
  Cheers,
  George
  In daily use: R60F, R500F, T61, T410
  Collecting dust: T60
  Enjoying retirement: A31p, T42p,
  Non-ThinkPads: Panasonic CF-31 & CF-52, HP 8760W
  Starting Thursday, 08/14/2014 I'll be away from the forums until further notice. Please do NOT send private messages since I won't be able to read them. Thank you.

• Difference between Integration server andSun Java system applivation server

  Hi,
  What is the difference between Sun Java system application server and Sun Seebeyond integration server???
  When I see the documentation it says that Sun Seebeyond integration server is a specialized thing of Sun Java system application server.
  What needs to be configured in Sun Java system application server to make it work like a integration server??
  Thanks in advance
  KKS

  Hi KKS,
  The SSIS is based on SJSAS 8.0 PE UR1. Some core features have been modified so that it's optimized for integration scenario's with fast throughput.
  You can deploy your JCAPS code on SJSAS 8.1 EE as it's fully J2EE1.4 compliant, and this version has been tested and verified.
  Configuring the AS's JVM helps.. especially taking note of the space division inside the JVM.
  Good luck
  Paul

• [XI] Missing related integration server in SLD

  Hi Experts.
  I'm very new in SAP Netweaver and it's components. Now I study <b>XI</b> and I would like to config some simple scenarios (FILE-XI-FILE etc). My colleague have installed XI on our machine and everything set up as well. I started with <b>SLD</b> in order to configure Technical systems and Bussiness systems. At first, I configured <b>Technical system</b> as <b>Third-Party system</b> and then I start to configure <b>Bussiness system</b>. I used Third-Party system as well and when I was on the last step of the Business system wizard. The Business System role was preddefined (Application System) and unabled to change. I wanted to choose from the List of Related Integration Servers, but there is <b>nothing in the list</b>. Now I'm helpless and I don't know how to get the name of the integration server to the list. Could anyone help me with my issue? Any help would be welcome. Thanks

  Hi
  Thank you for your help. Your posts were helpful, but it didn't solve my problem yet. Look at that scenario: <a href="/people/srinivas.vanamala2/blog/2007/02/05/step-by-step-guide-xml-file-2-xml-file-scenario-part-i:///people/srinivas.vanamala2/blog/2007/02/05/step-by-step-guide-xml-file-2-xml-file-scenario-part-i. I have exactly followed <b>that scenario</b> and in the <b>step 6</b> I wanted to choose <b>related integration server</b> (in that scenario it's <b>SXI</b>) but I have an <b>empty list</b> of my related integration servers. In SLD I tried in Administration->Content Maintenance->(subset)Landscape Description->(class)XI Domain and I found out that there are <b>XI Contained Adapter and XI Contained Integration Server</b> associated with it. So is there needed some configuration in Content maintenance in order to solve my problem. Probably my question isn't very well described, but I'm sorry because I don't have any experience with XI and I just started with it. <u><i><b>So my question again: How will I get the name of my integration server to be in that list (like in that scenario in step 6 ...)?</b></i></u>

• Security And Cryptography

  I'm so much new in Java Card programming and know alittle about security and cryptions in Javacards..
  Would u please help me to start learning in these topics from basic, or introduce any refrences that learns basic security and encrypt & decrypt
  thanks all..
  Kind Regards
  Hana

  This feature is often implemented using a secure channel.
  basically you have to authenticate with the card before being able to acess any data.
  pros:
  avoid internal encryption, which is costly
  allows to authenticate and encrypt the real important thing : communication. The card internals are secure by design: there are light/frequency/temperature sensors to protect from tampering.
  cons:
  i don't know :)
  how does it work? with a shared key and 3 ways handshake.
  (card contains a key that was loaded previously)
  1 host generates a random string H and sends it to the card.
  2 card generates a random string C and sends enc(H) and enc(C)
  host verifies that dec(enc(C))==C This way, we are sure the card knows the same key as us.
  3 host sends enc(H)
  card verifies that dec(enc(H))==H This way the card is sure the host knows the same key as it.
  access to data is granted only if all these steps passes.
  the crypto alg is generally 3DES with 16 bytes keys and 8 byte datablocks, this algo is managed in the card HARDware, so it's fast.
  this sort of process is used in global platform. Read this doc for more information, this is a bible.
  If you use the global platform mechanism, you will get excellent security with few code to write.
  Note that there are many possibilities here, this one is only an example to help you get the idea.

• When turning on Advanced Security Network Encryption tnsping fails

  Hi people,
  I'm installing Advanced Security Network Encryption in my server (RHEL 3), I've configured my sqlnet.ora as follows:
  SQLNET.CRYPTO_CHECKSUM_SERVER = REQUIRED
  SQLNET.CRYPTO_CHECKSUM_TYPES_SERVER = MD5
  SQLNET.ENCRYPTION_TYPES_SERVER= (RC4_256)
  SQLNET.ENCRYPTION_SERVER = REQUIRED
  SQLNET.CRYPTO_SEED = "abcdefg"
  After that, tnsping do not work anymore, I'm getting TNS-03505 - "Failed to resolve name".
  If I remove Adv. Security configuration tnsping become normal.
  Do anybody knows what can it be?
  Thanks in Advance
  André Teixeira

  Are you running tnsping from the server to itself? Or from the client? Has Advanced Security been configured on the client?
  Justin
  Distributed Database Consulting, Inc.
  http://www.ddbcinc.com/askDDBC

• Error in Admin and manager server startup - BEA-149205-  due to error weblogic.security.internal.encryption.EncryptionServiceException

  Hi -
  I have installed OIM 11g r2 ps2, I an tring to start my Admin and SOA server :
  1. Though my admin server is coming up fine, but I am getting the following error when I am trying to start Admin server.
  ####<Apr 22, 2015 12:22:27 AM PDT> <Error> <Deployer> <devoimx003> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS
  Kernel>> <> <> <1429687347654> <BEA-149205> <Failed to initialize the application 'opss-DBDS' due to error weblogic.security.internal.encryption.EncryptionServiceException.
  weblogic.security.internal.encryption.EncryptionServiceException
          at weblogic.security.internal.encryption.JSafeEncryptionServiceImpl.decryptBytes(JSafeEncryptionServiceImpl.java:139)
          at weblogic.security.internal.encryption.JSafeEncryptionServiceImpl.decryptString(JSafeEncryptionServiceImpl.java:187)
          at weblogic.security.internal.encryption.ClearOrEncryptedService.decrypt(ClearOrEncryptedService.java:96)
          at sun.reflect.GeneratedMethodAccessor143.invoke(Unknown Source)
          at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
          at java.lang.reflect.Method.invoke(Method.java:597)
          at weblogic.descriptor.DescriptorManager$SecurityServiceImpl$SecurityProxy._invokeServiceMethod(DescriptorManager.java:173)
          at weblogic.descriptor.DescriptorManager$SecurityServiceImpl$SecurityProxy.decrypt(DescriptorManager.java:192)
          at weblogic.descriptor.DescriptorManager$SecurityServiceImpl.decrypt(DescriptorManager.java:114)
          at weblogic.descriptor.internal.AbstractDescriptorBean._decrypt(AbstractDescriptorBean.java:1092)
          at weblogic.j2ee.descriptor.wl.JDBCDriverParamsBeanImpl.getPassword(JDBCDriverParamsBeanImpl.java:337)
          at weblogic.jdbc.common.internal.DataSourceConnectionPoolConfig.getDriverProperties(DataSourceConnectionPoolConfig.java:368)
          at weblogic.jdbc.common.internal.DataSourceConnectionPoolConfig$2.run(DataSourceConnectionPoolConfig.java:304)
          at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
          at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:146)
          at weblogic.jdbc.common.internal.DataSourceConnectionPoolConfig.initJDBCParameters(DataSourceConnectionPoolConfig.java:300)
          at weblogic.jdbc.common.internal.DataSourceConnectionPoolConfig.access$000(DataSourceConnectionPoolConfig.java:24)
          at weblogic.jdbc.common.internal.DataSourceConnectionPoolConfig$1.run(DataSourceConnectionPoolConfig.java:78)
          at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
          at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:146)
          at weblogic.jdbc.common.internal.DataSourceConnectionPoolConfig.getPoolProperties(DataSourceConnectionPoolConfig.java:75)
          at weblogic.jdbc.common.internal.ConnectionPool.doStart(ConnectionPool.java:1329)
          at weblogic.jdbc.common.internal.ConnectionPool.start(ConnectionPool.java:176)
          at weblogic.jdbc.common.internal.ConnectionPoolManager.createAndStartPool(ConnectionPoolManager.java:507)
          at weblogic.jdbc.common.internal.ConnectionPoolManager.createAndStartPool(ConnectionPoolManager.java:428)
          at weblogic.jdbc.module.JDBCModule.prepare(JDBCModule.java:280)
          at weblogic.application.internal.flow.ModuleListenerInvoker.prepare(ModuleListenerInvoker.java:199)
          at weblogic.application.internal.flow.DeploymentCallbackFlow$1.next(DeploymentCallbackFlow.java:517)
          at weblogic.application.utils.StateMachineDriver.nextState(StateMachineDriver.java:52)
          at weblogic.application.internal.flow.DeploymentCallbackFlow.prepare(DeploymentCallbackFlow.java:159)
          at weblogic.application.internal.flow.DeploymentCallbackFlow.prepare(DeploymentCallbackFlow.java:45)
          at weblogic.application.internal.BaseDeployment$1.next(BaseDeployment.java:648)
          at weblogic.application.utils.StateMachineDriver.nextState(StateMachineDriver.java:52)
          at weblogic.application.internal.BaseDeployment.prepare(BaseDeployment.java:191)
          at weblogic.application.internal.SingleModuleDeployment.prepare(SingleModuleDeployment.java:44)
          at weblogic.application.internal.DeploymentStateChecker.prepare(DeploymentStateChecker.java:154)
          at weblogic.deploy.internal.targetserver.AppContainerInvoker.prepare(AppContainerInvoker.java:60)
      at weblogic.deploy.internal.targetserver.SystemResourceDeployment.prepare(SystemResourceDeployment.java:55)
          at weblogic.management.deploy.internal.DeploymentAdapter$1.doPrepare(DeploymentAdapter.java:39)
          at weblogic.management.deploy.internal.DeploymentAdapter.prepare(DeploymentAdapter.java:191)
          at weblogic.management.deploy.internal.AppTransition$1.transitionApp(AppTransition.java:21)
          at weblogic.management.deploy.internal.ConfiguredDeployments.transitionApps(ConfiguredDeployments.java:240)
          at weblogic.management.deploy.internal.ConfiguredDeployments.prepare(ConfiguredDeployments.java:165)
          at weblogic.management.deploy.internal.ConfiguredDeployments.deploy(ConfiguredDeployments.java:122)
          at weblogic.management.deploy.internal.DeploymentServerService.resume(DeploymentServerService.java:180)
          at weblogic.management.deploy.internal.DeploymentServerService.start(DeploymentServerService.java:96)
          at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
          at weblogic.work.ExecuteThread.execute(ExecuteThread.java:256)
          at weblogic.work.ExecuteThread.run(ExecuteThread.java:221)
  Caused By: weblogic.security.internal.encryption.EncryptionServiceException
          at weblogic.security.internal.encryption.JSafeEncryptionServiceImpl.decryptBytes(JSafeEncryptionServiceImpl.java:139)
          at weblogic.security.internal.encryption.JSafeEncryptionServiceImpl.decryptString(JSafeEncryptionServiceImpl.java:187)
          at weblogic.security.internal.encryption.ClearOrEncryptedService.decrypt(ClearOrEncryptedService.java:96)
          at sun.reflect.GeneratedMethodAccessor143.invoke(Unknown Source)
          at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
          at java.lang.reflect.Method.invoke(Method.java:597)
          at weblogic.descriptor.DescriptorManager$SecurityServiceImpl$SecurityProxy._invokeServiceMethod(DescriptorManager.java:173)
          at weblogic.descriptor.DescriptorManager$SecurityServiceImpl$SecurityProxy.decrypt(DescriptorManager.java:192)
          at weblogic.descriptor.DescriptorManager$SecurityServiceImpl.decrypt(DescriptorManager.java:114)
          at weblogic.descriptor.internal.AbstractDescriptorBean._decrypt(AbstractDescriptorBean.java:1092)
          at weblogic.j2ee.descriptor.wl.JDBCDriverParamsBeanImpl.getPassword(JDBCDriverParamsBeanImpl.java:337)
          at weblogic.jdbc.common.internal.DataSourceConnectionPoolConfig.getDriverProperties(DataSourceConnectionPoolConfig.java:368)
          at weblogic.jdbc.common.internal.DataSourceConnectionPoolConfig$2.run(DataSourceConnectionPoolConfig.java:304)
          at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
          at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:146)
          at weblogic.jdbc.common.internal.DataSourceConnectionPoolConfig.initJDBCParameters(DataSourceConnectionPoolConfig.java:300)
          at weblogic.jdbc.common.internal.DataSourceConnectionPoolConfig.access$000(DataSourceConnectionPoolConfig.java:24)
          at weblogic.jdbc.common.internal.DataSourceConnectionPoolConfig$1.run(DataSourceConnectionPoolConfig.java:78)
          at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
          at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:146)
          at weblogic.jdbc.common.internal.DataSourceConnectionPoolConfig.getPoolProperties(DataSourceConnectionPoolConfig.java:75)
          at weblogic.jdbc.common.internal.ConnectionPool.doStart(ConnectionPool.java:1329)
          at weblogic.jdbc.common.internal.ConnectionPool.start(ConnectionPool.java:176)
          at weblogic.jdbc.common.internal.ConnectionPoolManager.createAndStartPool(ConnectionPoolManager.java:507)
          at weblogic.jdbc.common.internal.ConnectionPoolManager.createAndStartPool(ConnectionPoolManager.java:428)
          at weblogic.jdbc.module.JDBCModule.prepare(JDBCModule.java:280)
          at weblogic.application.internal.flow.ModuleListenerInvoker.prepare(ModuleListenerInvoker.java:199)
          at weblogic.application.internal.flow.DeploymentCallbackFlow$1.next(DeploymentCallbackFlow.java:517)
          at weblogic.application.utils.StateMachineDriver.nextState(StateMachineDriver.java:52)
        at weblogic.application.internal.flow.DeploymentCallbackFlow.prepare(DeploymentCallbackFlow.java:159)
          at weblogic.application.internal.flow.DeploymentCallbackFlow.prepare(DeploymentCallbackFlow.java:45)
          at weblogic.application.internal.BaseDeployment$1.next(BaseDeployment.java:648)
          at weblogic.application.utils.StateMachineDriver.nextState(StateMachineDriver.java:52)
          at weblogic.application.internal.BaseDeployment.prepare(BaseDeployment.java:191)
          at weblogic.application.internal.SingleModuleDeployment.prepare(SingleModuleDeployment.java:44)
          at weblogic.application.internal.DeploymentStateChecker.prepare(DeploymentStateChecker.java:154)
          at weblogic.deploy.internal.targetserver.AppContainerInvoker.prepare(AppContainerInvoker.java:60)
          at weblogic.deploy.internal.targetserver.SystemResourceDeployment.prepare(SystemResourceDeployment.java:55)
          at weblogic.management.deploy.internal.DeploymentAdapter$1.doPrepare(DeploymentAdapter.java:39)
          at weblogic.management.deploy.internal.DeploymentAdapter.prepare(DeploymentAdapter.java:191)
          at weblogic.management.deploy.internal.AppTransition$1.transitionApp(AppTransition.java:21)
          at weblogic.management.deploy.internal.ConfiguredDeployments.transitionApps(ConfiguredDeployments.java:240)
          at weblogic.management.deploy.internal.ConfiguredDeployments.prepare(ConfiguredDeployments.java:165)
          at weblogic.management.deploy.internal.ConfiguredDeployments.deploy(ConfiguredDeployments.java:122)
          at weblogic.management.deploy.internal.DeploymentServerService.resume(DeploymentServerService.java:180)
          at weblogic.management.deploy.internal.DeploymentServerService.start(DeploymentServerService.java:96)
          at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
          at weblogic.work.ExecuteThread.execute(ExecuteThread.java:256)
          at weblogic.work.ExecuteThread.run(ExecuteThread.java:221)
  2. My SOA server is coming up but in admin mode and giving OPSS connections errors.
  Any help is really appreciated!
  Thanks,
  SK

  Hi Faisal -
  is your domain in development mode or production mode?
       - While configuring my domian , I had selected Prod Mode, but pon start up when I see in admin server console, it is starting in developement mode already ?
  Any idea how, why ?
  if its production mode you can switch to development mode, change all the credentials in the config.xml and configurations under sub folders to cleartext and start the server..
  - Let me still try these and get back to you.
  Thanks,
  SK

• Integrated ITS in a Separate App Server (DI) for Security and LoadBalancing

  Hi Experts,
  I have a specific requirement for ITS Configuration.
  1. Production Server ( CI + DB ) -> Existing
  [ ERP6.0 ]
  OS : Solaris 10
  DB : oracle 10.2.0.2
  H/W: PRIMEPOWER650
  Unicode Enabled
  2. Application Server ( DI ) --> to be made ( and to be used exclusively for Web users)
  OS : Windows2003 sv
  H/W: RX200 S3
  x64
  MEM: 8GB
  No. 1 is existing Production Server Environment.
  The Customer Requirement.
  The Customer wants to use the ITS . But he doesn't want the existing Production Server to be disturbed for the same for 2 reasons. [ Security and Load Balancing ]
  We are planning to create a Separate Application Server (DI) to work as ITS.
  As the Kernel is 700. The ITS is integrated into the Production Server by Default.
  We have written to SAP and have asked whether the Production Server ITS can be disabled and the Separate DI's ITS be enabled so that the NEW ( No.2 ) Application Server will be used for ITS activities.
  SAP has replied saying the Integrated ITS cannot be disabled at the Production Server. Instead as an alternative we can create a Logon Group (using transaction SMLG) and divert all the Web users to the Separated DI (No.2). We have decided to go according to SAP.
  Now I have the following questions :
  1. The Operating Systems of the Production Server (No.1) and the Separate AP (No. 2)
  are different. ( Are there any complexities involved or must do points to be taken care. )
  2. Brief / MUST DO tasks at the Production Server Environment and Must do tasks at the DI Environment.
  I hope someone has already done some few installations on the above combination, if so, request to please share me your ideas.
  Thanks in anticipation
  Best Regards,
  Paguras
  PS :
  my earlier discussion on the same topic on this community.
  ITS Specific Requirement

  Hi Markus,
  Thanks for the Reply.
  We have the following 2 plans :
  Plan-01.
  As you have advised, we will try to disable ITS of CI and enable ITS of DI.
  Plan-02.
  If Plan-01 could be worked out successfully, well implement as per SAP suggests. Creating a Logon Group and divert all the web users to the DI alone.
  To deactivate ITS on CI, you have mentioned to make sure, that the  system does not listen on the HTTP port (transaction SMICM) on the Servers
  BTW, I have seen a parameter called <b>ITSP/ENABLE</b>. if we deactivate this parameter at CI & DB and then activate the same parameter at DI.
  My questions to you :
  1. Shall we go for Plan-01 ignoring what SAP OSS has said. ?
  2. Disable ITSP/Enable Parameter  -> CI & DB
      Enable ITSP/Enable Parameter   -> DI          has to be implemented .
  Thanks & best Regards,
  Paguras
  PS: Sorry for always pounding you with so many questions on the same topic.
  SAP Help on ITSP / enable parameter
  itsp/enable
  You use this parameter to deactivate (0) or activate (1) the integrated ITS. Even if the integrated ITS is activated, it only accesses system resources when it is actually used. Nevertheless, it can make sense to deactivate it to prevent users from accessing the SAP system with SAP GUI for HTML via special application servers (such as batch or update instances). Since the conversion of SAP screens into HTML pages uses additional CPU time, it makes sense to reserve a number of dedicated application servers to be used with SAP GUI for HTML and to use a special logon group to balance the load between them.