Security and encryption inside Integration Server
Hi,
is it possible to encrypt the entire message process INSIDE PI. I don't mean "Adapter-Inbound" or "Adapter Outbound" communication, but rather "Adapter-to-Integration Server" and "Integration-Server-to-Adapter"?
For example, that the message payload cannot be seen in SXMB_MONI etc.
A potential scenario are HCM payroll data exchange.
Thanks for any idea.
-hs
For example, that the message payload cannot be seen in SXMB_MONI etc.
1) Do not log the message (check the blog: /people/michal.krawczyk2/blog/2007/04/30/xipi-personalized-logging-tracing) ....monitoring may not be possible then.
2) restrict the user from viewing the payload....adding new-users to the no-view list to be managed by the Admins
3) Make use of java logic in adapter module to encode the message before passing it to SXMB_MONI.....not all adapters support modules...complexity increases....decoding logic at receiving end required
4) Make use of com.sap.security.api.ssf...disadvantages same as for point 3.
Regards,
Abhishek.
Similar Messages
-
SOAP Security and Encryption...
Hi All,
My scenarios are SOAP to IDOC Async and IDOC to SOAP Async.
How to achieve security and encryption in SOAP side?Hi Arthita
You can use SSL encryption via SAML (http://scn.sap.com/docs/DOC-16302)
Or you migt find it usefull to check out Siva Kumar Arivinti document http://scn.sap.com/docs/DOC-26144 SSL Configuration in SAP ABAP AS and JAVA AS – Step-by-step procedure.
Regards Torben -
Remote desktop is it secure and encrypted for windows 7 and windows 2008 servers
Remote desktop is it secure and encrypted? any supporting documenting showing if it is secure and encrypted .
Hi,
Yes, RDP is secure and encrypted. RDP uses RSA Security's RC4 cipher, a stream cipher designed to efficiently encrypt small amounts of data. RC4 is designed for secure communications over
networks. Administrators can choose to encrypt data by using a 56- or 128-bit key.
For more details, you can refer to the following:
Standard RDP Security
http://msdn.microsoft.com/en-us/library/cc240771.aspx
Enhanced RDP Security
http://msdn.microsoft.com/en-us/library/cc240795.aspx
Secure RDS (Remote Desktop Services) Connections with SSL
http://technet.microsoft.com/en-us/magazine/ff458357.aspx
Configure Security Settings for Remote Desktop Services Connections
http://technet.microsoft.com/en-us/library/cc753488.aspx
Thanks.
Jeremy Wu
TechNet Community Support -
Client Copy and Configuration of Integration Server
Hi All,
We have PI 7.0 DEv(ABAP and JAVA) system installed on AIX 5.3 and configured client 150 as Integration Server.
Further we have an requirement for two more clients to be created by client copy
For example : Say 160 as Unit test and 170 for X.
1) Now my question is do we have to do a client copy with 150 as source or 000.
2) Once the client copy is done do we have to Configure these clients 160/170 as Interation Server (Is it Possible to configure multiple client as Integration server in one system) or as Application system.
Cheers
Deepuhi,
>2) Once the client copy is done do we have to Configure these clients 160/170 as Interation Server (Is it Possible to configure multiple client as Integration server in one system) or as Application system.
no it is not possible to have more then one integration server (XI)
on one server
you need a new server if you want test environment etc.
Regards,
Michal Krawczyk
http://mypigenie.com XI/PI FAQ -
Where is the FF4 "lock" icon that indicates secure and encrypted transmission?
Prior to FF4 upgrade, a 'lock' icon would appear on bottom of screen to indicate when of if transmission was secure. With FF4 this icon never appears (or I don't know where to find it). Does it have a new location? Is there some way to have it return for those sites with which transmission will be encrypted?
The lock has been replaced by the [[Site Identity Button]], which will tell you whether the connection is encrypted ''and'' the identity of the web site on the other end of the connection.
The reason for this change is that it is important to verify identity, not just security. The "lock" icon could be misleading, because an encrypted connection is not actually secure unless the identity is verified too. -
Email security and AMP ( Sourcefire ) integration
Hi,
According to public release from cisco :
http://newsroom.cisco.com/release/1354516/Cisco-Adds-Advanced-Malware-Protection-to-Web-and-Email-Security-Appliances-and-Cloud-Web-Security?utm_medium=rss
There is now integration of AMP into the email and web appliance. I cannot find any information regarding versions or licenses needed to take advantage of this functionality. If customer is sitting on a Sophos license today for example, will AMP be an addon or replacement of this license ?
Any info is appreciated.Hi Daniel,
We announced the software integration at RSA last week. It will be available as a feature in the next 2 to 4 weeks as FCS code (First Customer Ship.) It will be a separate software license for the cloud inspection and a separate license for the cloud sandboxing. It will not be included in any existing licenses. This is the upcoming 8.5.5 version of AsyncOS.
In the mail pipeline it will come after Anti-Spam and Anti-Virus engines and before Content Filters and Outbreak Filters. You will be able to do Content Filter inspections and actions based on AMP results.
Also at RSA we announced the integration of Web Categorization and Web Reputation technology from the WSA into the ESA. This will be included as part of the Outbreak Filters license. Web Reputation is embedded into the anti-spam engine and Outbreak Filters. Web Categorization is available as a condition and as an action in Content Filters. You can do actions such as defang, re-write to Proxy, or replace URL with text or any other Content Filter action such as drop or quarantine messages with Adult or Pornographic category URLs. This is the 8.5.0 version of AsyncOS and is available today as FCS code.
Please work with Cisco TAC to have your devices provisioned for 8.5.0 FCS code if you wish to test.
Thanks,
Raymond Jett
Technical Marketing Engineer
Email Security Products -
File Security and Encryption - any information?
I'm impressed with the file sharing (free version) but if its used for business information and documents how secure are they from prying eyes / unauthorised download / hacking etc. ?
Thank you for your post. You can read about security for Acrobat.com here.
-
JBoss 4.2.0 does not contain need folders and files inside default server
Dear,
In the Virtual Appliance you provided, you will find under the /home/livecycle/jboss-4.2.0/server/default ONLY: log folder and tmp folder.
When you start jboss like:
~jboss4.2.0/bin>./run.sh -c default
It will give this error:
Failed to boot JBoss:
org.jboss.deployment.DeploymentException: url file:/home/livecycle/jboss-4.2.0/server/default/conf/jboss-service.xml could not be opened, does it exist?
The answer is NO as i explain before. But why? is there a problem in the Virtual Appliance when you prepare the jboss server on it?
Please let me knowJBoss in the Virtual Appliance does not have a "default" configuration. You should not start it with the command "./run.sh -c default".
Please read the readme.pdf before you use it:
http://d2x45prcet210j.cloudfront.net/readme.pdf -
How to enable both WS Security and MTOM
I am trying to call a web service running in JBoss. The web service is enabled with both ws
security and MTOM as per the requirement. When i am trying to call the web method from my
java client, i am getting the below exception
Exception in thread "main" javax.xml.ws.soap.SOAPFaultException: Endpoint
{http://wsg.hpos.om.hp.com/}HPOSGatewayPort does not contain operation meta data for:
{http://www.w3.org/2001/04/xmlenc#}EncryptedData
at org.jboss.ws.core.jaxws.SOAPFaultHelperJAXWS.getSOAPFaultException
(SOAPFaultHelperJAXWS.java:72)
at org.jboss.ws.core.jaxws.binding.SOAP11BindingJAXWS.throwFaultException
(SOAP11BindingJAXWS.java:109)
at org.jboss.ws.core.CommonSOAPBinding.unbindResponseMessage
(CommonSOAPBinding.java:579)
at org.jboss.ws.core.CommonClient.invoke(CommonClient.java:381)
at org.jboss.ws.core.jaxws.client.ClientImpl.invoke(ClientImpl.java:300)
at org.jboss.ws.core.jaxws.client.ClientProxy.invoke(ClientProxy.java:166)
at org.jboss.ws.core.jaxws.client.ClientProxy.invoke(ClientProxy.java:152)
at $Proxy17.getName(Unknown Source)
at wsclient.TestHPOSClient.main(TestHPOSClient.java:106)
my client code is:
URL endpoint_new = new URL("http://15.70.176.190:9000/HPOSGateway/HPOSGateway?wsdl");
QName qname = new QName("http://wsg.hpos.om.hp.com/", "HPOSGatewayService");
HPOSGateway port = new HPOSGatewayService(endpoint_new,qname).getHPOSGatewayPort();
BindingProvider bp=(BindingProvider)port;
SOAPBinding binding = (SOAPBinding)bp.getBinding();
binding.setMTOMEnabled(true);
Map<String,Object> map = bp.getRequestContext();
map.put(BindingProvider.USERNAME_PROPERTY,"administrator");
map.put(BindingProvider.PASSWORD_PROPERTY,"da1sy");
URL securityURL = new File("c://jboss-wsse-client.xml").toURL();
((StubExt)port).setSecurityConfig(securityURL.toExternalForm());
((StubExt)port).setConfigName("Standard WSSecurity Client");
map.put(BindingProvider.ENDPOINT_ADDRESS_PROPERTY,
"http://15.70.176.190:9000/HPOSGateway/HPOSGateway");
System.setProperty("org.jboss.ws.wsse.keyStore", "c:\\wsse.keystore");
System.setProperty("org.jboss.ws.wsse.trustStore", "c:\\wsse.truststore");
System.setProperty("org.jboss.ws.wsse.keyStorePassword", "jbossws");
System.setProperty("org.jboss.ws.wsse.trustStorePassword", "jbossws");
System.setProperty("org.jboss.ws.wsse.keyStoreType", "jks");
System.setProperty("org.jboss.ws.wsse.trustStoreType", "jks");
System.out.println(port.getName("Welcome to this testing part."));
,, my jboss.wsse.client.xml is...
<?xml version="1.0" encoding="UTF-8" ?>
<jboss-ws-security xmlns="http://www.jboss.com/ws-security/config"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://www.jboss.com/ws-security/config http://www.jboss.com/ws-
security/schema/jboss-ws-security_1_0.xsd">
<config>
<encrypt type="x509v3" alias="wsse" />
<requires>
<encryption />
</requires>
</config>
</jboss-ws-security>
and my jboss-wsse-server.xml is ...
<?xml version="1.0" encoding="UTF-8"?>
<jboss-ws-security xmlns="http://www.jboss.com/ws-security/config"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://www.jboss.com/ws-security/config http://www.jboss.com/ws-
security/schema/jboss-ws-security_1_0.xsd">
<key-store-file>WEB-INF/wsse.keystore</key-store-file>
<key-store-password>jbossws</key-store-password>
<trust-store-file>WEB-INF/wsse.truststore</trust-store-file>
<trust-store-password>jbossws</trust-store-password>
<config>
<encrypt type="x509v3" alias="wsse"/>
<requires>
<encryption/>
</requires>
</config>
</jboss-ws-security>
i have my web service annotations like below.
@WebService(name="HPOSGateway",targetNamespace="http://wsg.hpos.om.hp.com/")
@EndpointConfig(configName = "Standard WSSecurity Endpoint")
@BindingType(javax.xml.ws.soap.SOAPBinding.SOAP11HTTP_MTOM_BINDING)
@HandlerChain(name = "HPOSGateway_handlerChain", file = "HPOSGateway_handler.xml")
public class HPOSGateway{
Can any one help me what is the problem and where i need to change? Please it is very
urgent.
Regards
RamchandWelcome to the forum!
Even if it were physically possible, you wouldn't be able to use both Ethernet ports at the same time, because the motherboard doesn't support more than one connection at the time.
Cheers,
George
In daily use: R60F, R500F, T61, T410
Collecting dust: T60
Enjoying retirement: A31p, T42p,
Non-ThinkPads: Panasonic CF-31 & CF-52, HP 8760W
Starting Thursday, 08/14/2014 I'll be away from the forums until further notice. Please do NOT send private messages since I won't be able to read them. Thank you. -
Difference between Integration server andSun Java system applivation server
Hi,
What is the difference between Sun Java system application server and Sun Seebeyond integration server???
When I see the documentation it says that Sun Seebeyond integration server is a specialized thing of Sun Java system application server.
What needs to be configured in Sun Java system application server to make it work like a integration server??
Thanks in advance
KKSHi KKS,
The SSIS is based on SJSAS 8.0 PE UR1. Some core features have been modified so that it's optimized for integration scenario's with fast throughput.
You can deploy your JCAPS code on SJSAS 8.1 EE as it's fully J2EE1.4 compliant, and this version has been tested and verified.
Configuring the AS's JVM helps.. especially taking note of the space division inside the JVM.
Good luck
Paul -
[XI] Missing related integration server in SLD
Hi Experts.
I'm very new in SAP Netweaver and it's components. Now I study <b>XI</b> and I would like to config some simple scenarios (FILE-XI-FILE etc). My colleague have installed XI on our machine and everything set up as well. I started with <b>SLD</b> in order to configure Technical systems and Bussiness systems. At first, I configured <b>Technical system</b> as <b>Third-Party system</b> and then I start to configure <b>Bussiness system</b>. I used Third-Party system as well and when I was on the last step of the Business system wizard. The Business System role was preddefined (Application System) and unabled to change. I wanted to choose from the List of Related Integration Servers, but there is <b>nothing in the list</b>. Now I'm helpless and I don't know how to get the name of the integration server to the list. Could anyone help me with my issue? Any help would be welcome. ThanksHi
Thank you for your help. Your posts were helpful, but it didn't solve my problem yet. Look at that scenario: <a href="/people/srinivas.vanamala2/blog/2007/02/05/step-by-step-guide-xml-file-2-xml-file-scenario-part-i:///people/srinivas.vanamala2/blog/2007/02/05/step-by-step-guide-xml-file-2-xml-file-scenario-part-i. I have exactly followed <b>that scenario</b> and in the <b>step 6</b> I wanted to choose <b>related integration server</b> (in that scenario it's <b>SXI</b>) but I have an <b>empty list</b> of my related integration servers. In SLD I tried in Administration->Content Maintenance->(subset)Landscape Description->(class)XI Domain and I found out that there are <b>XI Contained Adapter and XI Contained Integration Server</b> associated with it. So is there needed some configuration in Content maintenance in order to solve my problem. Probably my question isn't very well described, but I'm sorry because I don't have any experience with XI and I just started with it. <u><i><b>So my question again: How will I get the name of my integration server to be in that list (like in that scenario in step 6 ...)?</b></i></u> -
I'm so much new in Java Card programming and know alittle about security and cryptions in Javacards..
Would u please help me to start learning in these topics from basic, or introduce any refrences that learns basic security and encrypt & decrypt
thanks all..
Kind Regards
HanaThis feature is often implemented using a secure channel.
basically you have to authenticate with the card before being able to acess any data.
pros:
avoid internal encryption, which is costly
allows to authenticate and encrypt the real important thing : communication. The card internals are secure by design: there are light/frequency/temperature sensors to protect from tampering.
cons:
i don't know :)
how does it work? with a shared key and 3 ways handshake.
(card contains a key that was loaded previously)
1 host generates a random string H and sends it to the card.
2 card generates a random string C and sends enc(H) and enc(C)
host verifies that dec(enc(C))==C This way, we are sure the card knows the same key as us.
3 host sends enc(H)
card verifies that dec(enc(H))==H This way the card is sure the host knows the same key as it.
access to data is granted only if all these steps passes.
the crypto alg is generally 3DES with 16 bytes keys and 8 byte datablocks, this algo is managed in the card HARDware, so it's fast.
this sort of process is used in global platform. Read this doc for more information, this is a bible.
If you use the global platform mechanism, you will get excellent security with few code to write.
Note that there are many possibilities here, this one is only an example to help you get the idea. -
When turning on Advanced Security Network Encryption tnsping fails
Hi people,
I'm installing Advanced Security Network Encryption in my server (RHEL 3), I've configured my sqlnet.ora as follows:
SQLNET.CRYPTO_CHECKSUM_SERVER = REQUIRED
SQLNET.CRYPTO_CHECKSUM_TYPES_SERVER = MD5
SQLNET.ENCRYPTION_TYPES_SERVER= (RC4_256)
SQLNET.ENCRYPTION_SERVER = REQUIRED
SQLNET.CRYPTO_SEED = "abcdefg"
After that, tnsping do not work anymore, I'm getting TNS-03505 - "Failed to resolve name".
If I remove Adv. Security configuration tnsping become normal.
Do anybody knows what can it be?
Thanks in Advance
André TeixeiraAre you running tnsping from the server to itself? Or from the client? Has Advanced Security been configured on the client?
Justin
Distributed Database Consulting, Inc.
http://www.ddbcinc.com/askDDBC -
Hi -
I have installed OIM 11g r2 ps2, I an tring to start my Admin and SOA server :
1. Though my admin server is coming up fine, but I am getting the following error when I am trying to start Admin server.
####<Apr 22, 2015 12:22:27 AM PDT> <Error> <Deployer> <devoimx003> <AdminServer> <[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS
Kernel>> <> <> <1429687347654> <BEA-149205> <Failed to initialize the application 'opss-DBDS' due to error weblogic.security.internal.encryption.EncryptionServiceException.
weblogic.security.internal.encryption.EncryptionServiceException
at weblogic.security.internal.encryption.JSafeEncryptionServiceImpl.decryptBytes(JSafeEncryptionServiceImpl.java:139)
at weblogic.security.internal.encryption.JSafeEncryptionServiceImpl.decryptString(JSafeEncryptionServiceImpl.java:187)
at weblogic.security.internal.encryption.ClearOrEncryptedService.decrypt(ClearOrEncryptedService.java:96)
at sun.reflect.GeneratedMethodAccessor143.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at weblogic.descriptor.DescriptorManager$SecurityServiceImpl$SecurityProxy._invokeServiceMethod(DescriptorManager.java:173)
at weblogic.descriptor.DescriptorManager$SecurityServiceImpl$SecurityProxy.decrypt(DescriptorManager.java:192)
at weblogic.descriptor.DescriptorManager$SecurityServiceImpl.decrypt(DescriptorManager.java:114)
at weblogic.descriptor.internal.AbstractDescriptorBean._decrypt(AbstractDescriptorBean.java:1092)
at weblogic.j2ee.descriptor.wl.JDBCDriverParamsBeanImpl.getPassword(JDBCDriverParamsBeanImpl.java:337)
at weblogic.jdbc.common.internal.DataSourceConnectionPoolConfig.getDriverProperties(DataSourceConnectionPoolConfig.java:368)
at weblogic.jdbc.common.internal.DataSourceConnectionPoolConfig$2.run(DataSourceConnectionPoolConfig.java:304)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:146)
at weblogic.jdbc.common.internal.DataSourceConnectionPoolConfig.initJDBCParameters(DataSourceConnectionPoolConfig.java:300)
at weblogic.jdbc.common.internal.DataSourceConnectionPoolConfig.access$000(DataSourceConnectionPoolConfig.java:24)
at weblogic.jdbc.common.internal.DataSourceConnectionPoolConfig$1.run(DataSourceConnectionPoolConfig.java:78)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:146)
at weblogic.jdbc.common.internal.DataSourceConnectionPoolConfig.getPoolProperties(DataSourceConnectionPoolConfig.java:75)
at weblogic.jdbc.common.internal.ConnectionPool.doStart(ConnectionPool.java:1329)
at weblogic.jdbc.common.internal.ConnectionPool.start(ConnectionPool.java:176)
at weblogic.jdbc.common.internal.ConnectionPoolManager.createAndStartPool(ConnectionPoolManager.java:507)
at weblogic.jdbc.common.internal.ConnectionPoolManager.createAndStartPool(ConnectionPoolManager.java:428)
at weblogic.jdbc.module.JDBCModule.prepare(JDBCModule.java:280)
at weblogic.application.internal.flow.ModuleListenerInvoker.prepare(ModuleListenerInvoker.java:199)
at weblogic.application.internal.flow.DeploymentCallbackFlow$1.next(DeploymentCallbackFlow.java:517)
at weblogic.application.utils.StateMachineDriver.nextState(StateMachineDriver.java:52)
at weblogic.application.internal.flow.DeploymentCallbackFlow.prepare(DeploymentCallbackFlow.java:159)
at weblogic.application.internal.flow.DeploymentCallbackFlow.prepare(DeploymentCallbackFlow.java:45)
at weblogic.application.internal.BaseDeployment$1.next(BaseDeployment.java:648)
at weblogic.application.utils.StateMachineDriver.nextState(StateMachineDriver.java:52)
at weblogic.application.internal.BaseDeployment.prepare(BaseDeployment.java:191)
at weblogic.application.internal.SingleModuleDeployment.prepare(SingleModuleDeployment.java:44)
at weblogic.application.internal.DeploymentStateChecker.prepare(DeploymentStateChecker.java:154)
at weblogic.deploy.internal.targetserver.AppContainerInvoker.prepare(AppContainerInvoker.java:60)
at weblogic.deploy.internal.targetserver.SystemResourceDeployment.prepare(SystemResourceDeployment.java:55)
at weblogic.management.deploy.internal.DeploymentAdapter$1.doPrepare(DeploymentAdapter.java:39)
at weblogic.management.deploy.internal.DeploymentAdapter.prepare(DeploymentAdapter.java:191)
at weblogic.management.deploy.internal.AppTransition$1.transitionApp(AppTransition.java:21)
at weblogic.management.deploy.internal.ConfiguredDeployments.transitionApps(ConfiguredDeployments.java:240)
at weblogic.management.deploy.internal.ConfiguredDeployments.prepare(ConfiguredDeployments.java:165)
at weblogic.management.deploy.internal.ConfiguredDeployments.deploy(ConfiguredDeployments.java:122)
at weblogic.management.deploy.internal.DeploymentServerService.resume(DeploymentServerService.java:180)
at weblogic.management.deploy.internal.DeploymentServerService.start(DeploymentServerService.java:96)
at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:256)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:221)
Caused By: weblogic.security.internal.encryption.EncryptionServiceException
at weblogic.security.internal.encryption.JSafeEncryptionServiceImpl.decryptBytes(JSafeEncryptionServiceImpl.java:139)
at weblogic.security.internal.encryption.JSafeEncryptionServiceImpl.decryptString(JSafeEncryptionServiceImpl.java:187)
at weblogic.security.internal.encryption.ClearOrEncryptedService.decrypt(ClearOrEncryptedService.java:96)
at sun.reflect.GeneratedMethodAccessor143.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at weblogic.descriptor.DescriptorManager$SecurityServiceImpl$SecurityProxy._invokeServiceMethod(DescriptorManager.java:173)
at weblogic.descriptor.DescriptorManager$SecurityServiceImpl$SecurityProxy.decrypt(DescriptorManager.java:192)
at weblogic.descriptor.DescriptorManager$SecurityServiceImpl.decrypt(DescriptorManager.java:114)
at weblogic.descriptor.internal.AbstractDescriptorBean._decrypt(AbstractDescriptorBean.java:1092)
at weblogic.j2ee.descriptor.wl.JDBCDriverParamsBeanImpl.getPassword(JDBCDriverParamsBeanImpl.java:337)
at weblogic.jdbc.common.internal.DataSourceConnectionPoolConfig.getDriverProperties(DataSourceConnectionPoolConfig.java:368)
at weblogic.jdbc.common.internal.DataSourceConnectionPoolConfig$2.run(DataSourceConnectionPoolConfig.java:304)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:146)
at weblogic.jdbc.common.internal.DataSourceConnectionPoolConfig.initJDBCParameters(DataSourceConnectionPoolConfig.java:300)
at weblogic.jdbc.common.internal.DataSourceConnectionPoolConfig.access$000(DataSourceConnectionPoolConfig.java:24)
at weblogic.jdbc.common.internal.DataSourceConnectionPoolConfig$1.run(DataSourceConnectionPoolConfig.java:78)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:146)
at weblogic.jdbc.common.internal.DataSourceConnectionPoolConfig.getPoolProperties(DataSourceConnectionPoolConfig.java:75)
at weblogic.jdbc.common.internal.ConnectionPool.doStart(ConnectionPool.java:1329)
at weblogic.jdbc.common.internal.ConnectionPool.start(ConnectionPool.java:176)
at weblogic.jdbc.common.internal.ConnectionPoolManager.createAndStartPool(ConnectionPoolManager.java:507)
at weblogic.jdbc.common.internal.ConnectionPoolManager.createAndStartPool(ConnectionPoolManager.java:428)
at weblogic.jdbc.module.JDBCModule.prepare(JDBCModule.java:280)
at weblogic.application.internal.flow.ModuleListenerInvoker.prepare(ModuleListenerInvoker.java:199)
at weblogic.application.internal.flow.DeploymentCallbackFlow$1.next(DeploymentCallbackFlow.java:517)
at weblogic.application.utils.StateMachineDriver.nextState(StateMachineDriver.java:52)
at weblogic.application.internal.flow.DeploymentCallbackFlow.prepare(DeploymentCallbackFlow.java:159)
at weblogic.application.internal.flow.DeploymentCallbackFlow.prepare(DeploymentCallbackFlow.java:45)
at weblogic.application.internal.BaseDeployment$1.next(BaseDeployment.java:648)
at weblogic.application.utils.StateMachineDriver.nextState(StateMachineDriver.java:52)
at weblogic.application.internal.BaseDeployment.prepare(BaseDeployment.java:191)
at weblogic.application.internal.SingleModuleDeployment.prepare(SingleModuleDeployment.java:44)
at weblogic.application.internal.DeploymentStateChecker.prepare(DeploymentStateChecker.java:154)
at weblogic.deploy.internal.targetserver.AppContainerInvoker.prepare(AppContainerInvoker.java:60)
at weblogic.deploy.internal.targetserver.SystemResourceDeployment.prepare(SystemResourceDeployment.java:55)
at weblogic.management.deploy.internal.DeploymentAdapter$1.doPrepare(DeploymentAdapter.java:39)
at weblogic.management.deploy.internal.DeploymentAdapter.prepare(DeploymentAdapter.java:191)
at weblogic.management.deploy.internal.AppTransition$1.transitionApp(AppTransition.java:21)
at weblogic.management.deploy.internal.ConfiguredDeployments.transitionApps(ConfiguredDeployments.java:240)
at weblogic.management.deploy.internal.ConfiguredDeployments.prepare(ConfiguredDeployments.java:165)
at weblogic.management.deploy.internal.ConfiguredDeployments.deploy(ConfiguredDeployments.java:122)
at weblogic.management.deploy.internal.DeploymentServerService.resume(DeploymentServerService.java:180)
at weblogic.management.deploy.internal.DeploymentServerService.start(DeploymentServerService.java:96)
at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:256)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:221)
2. My SOA server is coming up but in admin mode and giving OPSS connections errors.
Any help is really appreciated!
Thanks,
SKHi Faisal -
is your domain in development mode or production mode?
- While configuring my domian , I had selected Prod Mode, but pon start up when I see in admin server console, it is starting in developement mode already ?
Any idea how, why ?
if its production mode you can switch to development mode, change all the credentials in the config.xml and configurations under sub folders to cleartext and start the server..
- Let me still try these and get back to you.
Thanks,
SK -
Integrated ITS in a Separate App Server (DI) for Security and LoadBalancing
Hi Experts,
I have a specific requirement for ITS Configuration.
1. Production Server ( CI + DB ) -> Existing
[ ERP6.0 ]
OS : Solaris 10
DB : oracle 10.2.0.2
H/W: PRIMEPOWER650
Unicode Enabled
2. Application Server ( DI ) --> to be made ( and to be used exclusively for Web users)
OS : Windows2003 sv
H/W: RX200 S3
x64
MEM: 8GB
No. 1 is existing Production Server Environment.
The Customer Requirement.
The Customer wants to use the ITS . But he doesn't want the existing Production Server to be disturbed for the same for 2 reasons. [ Security and Load Balancing ]
We are planning to create a Separate Application Server (DI) to work as ITS.
As the Kernel is 700. The ITS is integrated into the Production Server by Default.
We have written to SAP and have asked whether the Production Server ITS can be disabled and the Separate DI's ITS be enabled so that the NEW ( No.2 ) Application Server will be used for ITS activities.
SAP has replied saying the Integrated ITS cannot be disabled at the Production Server. Instead as an alternative we can create a Logon Group (using transaction SMLG) and divert all the Web users to the Separated DI (No.2). We have decided to go according to SAP.
Now I have the following questions :
1. The Operating Systems of the Production Server (No.1) and the Separate AP (No. 2)
are different. ( Are there any complexities involved or must do points to be taken care. )
2. Brief / MUST DO tasks at the Production Server Environment and Must do tasks at the DI Environment.
I hope someone has already done some few installations on the above combination, if so, request to please share me your ideas.
Thanks in anticipation
Best Regards,
Paguras
PS :
my earlier discussion on the same topic on this community.
ITS Specific RequirementHi Markus,
Thanks for the Reply.
We have the following 2 plans :
Plan-01.
As you have advised, we will try to disable ITS of CI and enable ITS of DI.
Plan-02.
If Plan-01 could be worked out successfully, well implement as per SAP suggests. Creating a Logon Group and divert all the web users to the DI alone.
To deactivate ITS on CI, you have mentioned to make sure, that the system does not listen on the HTTP port (transaction SMICM) on the Servers
BTW, I have seen a parameter called <b>ITSP/ENABLE</b>. if we deactivate this parameter at CI & DB and then activate the same parameter at DI.
My questions to you :
1. Shall we go for Plan-01 ignoring what SAP OSS has said. ?
2. Disable ITSP/Enable Parameter -> CI & DB
Enable ITSP/Enable Parameter -> DI has to be implemented .
Thanks & best Regards,
Paguras
PS: Sorry for always pounding you with so many questions on the same topic.
SAP Help on ITSP / enable parameter
itsp/enable
You use this parameter to deactivate (0) or activate (1) the integrated ITS. Even if the integrated ITS is activated, it only accesses system resources when it is actually used. Nevertheless, it can make sense to deactivate it to prevent users from accessing the SAP system with SAP GUI for HTML via special application servers (such as batch or update instances). Since the conversion of SAP screens into HTML pages uses additional CPU time, it makes sense to reserve a number of dedicated application servers to be used with SAP GUI for HTML and to use a special logon group to balance the load between them.
Maybe you are looking for
-
Hi Experts, I believe that the SAP B1 is a back end financial software. As a retail company expands and grows maybe it is more economical to deploy front end software to its retail stores or business units for functions or modules such as Sales - A/
-
Bi7.0 to portal integration using template installer
hi frnds, i change my connectivity step to bi to ep 7.0 now i m using template installer for full bi installation all the step are successfully completd. when i am cheking with java based Note 937697 - Usage of SAP NetWeaver BI Diagnostics & Support
-
JDBC Sender select/update problem
Hi all, we have a serious problem. We are running the scenario JDBC>XI>RFC. In the JDBC sender adapter we do a select statement (select * from table where flag='0') and an update statement (update * from table set flag ='1' where flag='0'). Now, the
-
Logic Pro how to record bass guitar
Logic Pro how to record bass guitar any tips?
-
Hello, I have created two customer exit variables, although I'm not an ABAP expert. Both are calculated based on two optional variables selected by the user. When running my query I get the message "Warning Value '' is too long for variable ZPERSTRT"