Security data access protection

Similar Messages

• Securing Data Access In Same Schema

  Dear All Experts,
  Please guide us to Securing the Data Access In Same Schema in Oracle Forms & Reports.
  Currently our application (Based on Oracle Forms , DB & AS 10g) is running for 6 COMPANIES in same schema. All the 6 COMPANY's employee can access the other COMPANY's Data.
  Please give us any idea to Secure the Data Access as we want that if any Employee have the Rights of one or two COMPANIES then he can only access the data of those companies instead of all the companies.
  How can we got it using same Oracle Form & Reports...?
  Please guide....
  Thanks
  Eidy

  Hello,
  <p>Did you check out the Virtual Private Database feature ? </p>
  Francois

• Securing data from dba access , like Credit Card Details

  Hello ,
  is there any way of hiding CC details from all users in db level except specifc users
  enrypting cc data like oracle hashed passwords
  for ex,
  case (1)
  user 1 ( has access to these details )
  select acc#,customer_name from cc_details
  output : it will show all the details decrypted
  case (2)
  user 2 : ( doesnt have access )
  select acc#,customer_name from cc_details
  output : it will show all the details encrypted
  both in db level , like using sqlplus or toad
  any idea!
  thanks and regards,

  Hi, Peter,
  You wrote:
  Can you please document the problems you mention for Patch Sets/ CPU?
  What are the vulnerabilities? Search Alex's Web site but didn't find anything in regards to >DBVault.I've told about these
  http://dms.aladdin.ru/file.php?id=d7eb03f7f47ec3c68f4b1f1fe3317119
  http://dms.aladdin.ru/file.php?id=88cf1d7a962eddf7e57e2447d1e5b207
  and may be this
  http://dms.aladdin.ru/file.php?id=232eb8ed58d04295bb3920dbe805358d
  (Note: The link will be valid until 26 Jun 2008 GMT).
  In reg's to reading data from datafile, that's where TDE comes into the picture; then no-one can read from data file directly.
  There is no user who owns TDE; TDE is enabled on a database-wide level. So the >normal data owner (who is the only who should have full access to his own data with >DBVault) can use TDE to encrypt; no extra privileges needed.I’ve told about the user who is the owner of the database wallet (usually SYS). He can temporary disable encryption, takes the data, then restore encryption.
  DBVault and TDE should be the perfect match for 'securing data from dba access , like >Credit Card Details'In other words we have yet another administrator (DV owner) instead of the good old SYS :)
  And I have a question: in case the protection with DV of some tables was made from the SYS, can he make (in example) full backup or full export of the data (his ordinary administrative tasks)? If yes, then it isn't protection, if no, then...what?
  The solution is somewhere else, I think

• Data Access Service is unable to log audit events to the security event log

  Hi,
  Scenario: SCOM 2012 R2 UR4. (Windows 2012 R2)
  Today SCOM have generated 4 alerts Data Access Service is unable to log audit events to the security event log.
  The service account for "System Center Data Access Service" service is "Local System".
  The users at "Generate security audits" are: LOCAL SERVICE and NETWORK SERVICE.
  The question is:
  how to resolve this alert? (Where look for to obtain more information to resolve this problem)
  Thanks in advance!

  Local system account is differet to local service account. Fo detail description of these accounts, pls. refer
  LocalService Account
  http://msdn.microsoft.com/en-us/library/windows/desktop/ms684188(v=vs.85).aspx
  LocalSystem Account
  http://msdn.microsoft.com/en-us/library/windows/desktop/ms684190(v=vs.85).aspx
  Generate security audits which is under Computer Configuration\Windows Settings\Security Settings\Local Policies\User Rights Assignment of Group policy, determines which accounts can be used by a process to add entries to the security log. This user right
  is defined in the Default Domain Controller Group Policy object (GPO) and in the local security policy of workstations and servers. By default, only the LocalSystem account has the privilege to be used by processes to generate security audits.
  For identified the SDK account
  1) open services.msc
  2) From the system Center Data Access Service, you can see the SDK logon on as account 
  Roger

• BI Data Access Set-based security

  Hi,
  My client is using EBS security feature “Data Access Set” for segment security. I'm looking for a tech note to implement this type of security from the OBIEE/OBIA side.
  Any pointers on this topic would be very much appreciated,
  Tarik Bouaziz.
  Environment: OBIEE 11.1.1.5.0 on Solaris Sparc64, OBIA 7.9.6.3, EBS 12.1.3

  Tarik,
  If I don't mistake, the "Data Access Set" security on EBS 12 is based on the Ledger-Based Security in OBIA (2.6.4 Ledger-Based Security for Oracle EBS).
  Gurus, thanks to confirm.
  Hope it helps,
  Benoît

• Latest Security Updates cause Data Execution Protection errors

  Since the latest Windows updates I have been inundated with Data Execution Protection errors in IE 11. I have tired the troubleshoot of tuning off add-ons but the error continues. I only have Norton 360 toolbar as an add on anyway.
  I can't isolate the problem - any suggestions?
  As a side issue I also can't launch Google Chrome - it crashes on launch from a new installation.
  I am running Windows 8.1 on a Lenovo X1 carbon laptop.

  Hello Adrian0511,
  Which update do you mean?
  Have you tried to reset Internet Explorer as MVP Rob mentioned?
  We could go to Control Panel\Programs\Programs and Features click View Installed Updates and then uninstall the update and check if the issue stseill exists.
  For more information about troubleshoot problems with removing updates, please take a look at the following article.
  http://windows.microsoft.com/en-hk/windows/troubleshoot-problems-removing-updates#1TC=windows-7
  About the Chrome issue, it is recommended to ask in the related Chrome forum.
  Best regards,
  Fangzhou CHEN
  Fangzhou CHEN
  TechNet Community Support

• [Fwd: Security problem accessing MBeanServer from a servlet]

  Reposting to Security and Servlet newsgroups.
  -------- Original Message --------
  Subject: Security problem accessing MBeanServer from a servlet
  Date: 10 Feb 2004 13:02:09 -0800
  From: Alain <[email protected]>
  Reply-To: Alain <[email protected]>
  Organization: BEA NEWS SITE
  Newsgroups: weblogic.developer.interest.management
  Hi,
  I am trying to understand how WLS 7.0 secures a call to an MBean. Got
  the following
  scenario:
  - I am in a servlet context
  - I have created and registered an MBean with the WLS MBeanServer. Fine
  so far
  - Within the same call I can retrieve the MBean attributes. Fine so far
  - I keep the MBeanServer reference in an object global to the servlet
  context
  The problem:
  - When I do another request and try to use the cached MBeanServer
  instance to
  access the MBean, I get the following error:
  weblogic.management.NoAccessRuntimeException: Access not allowed for
  subject:
  principals=[], on ResourceType ...
  Any idea?
  Alain

  PaulF <paulf@reply_in_newsgroup.com> wrote:
  On 10 Feb 2004 13:02:09 -0800, Alain <[email protected]> wrote:
  Hi,
  I am trying to understand how WLS 7.0 secures a call to an MBean. Got
  the following
  scenario:
  - I am in a servlet context
  - I have created and registered an MBean with the WLS MBeanServer.Fine
  so far
  - Within the same call I can retrieve the MBean attributes. Fine sofar
  - I keep the MBeanServer reference in an object global to the servlet
  context
  The problem:
  - When I do another request and try to use the cached MBeanServer
  instance to
  access the MBean, I get the following error:
  weblogic.management.NoAccessRuntimeException: Access not allowed for
  subject:
  principals=[], on ResourceType ...
  Any idea?
  AlainWhat ResourceType are you trying to access. From the Exception you're
  trying to access it as an Anonymous user (principals=[]) and evidently
  you're attempting to access something that is protected. I can't tell
  what
  from the snippet you've included.
  Using M2, Opera's revolutionary e-mail client: http://www.opera.com/m2/
  Thanks Paul for your reply.
  You are right. I can access my custom MBeans if I am authenticated for example
  as an Administrator. My problem is that I want any application to access this
  MBean authenticated or not. I am trying to find how I could grant permission to
  this MBean to everyone. Still searching.
  Thanks.

• How to implement Oracle user/role security with Access front end?

  Hi,
  We have successfully migrated our Access database tables to Oracle 10g using SQL developer. We've recreated all the users and roles(i.e., access groups) in Oracle and granted rights to tables.
  In the Access front end database, in the Database window we have saved linked Oracle tables which replaced the Access tables. The forms, reports, queries run fine with the linked Oracle tables. All the linked table use one ODBC DSN to the Oracle database with the same Oracle user id.
  We need to be able to authenticate users into the Oracle database and RE-link the tables based on their own unique user id. By during so we can allow users to use the Oracle standard user id/role and system privileges to control select, update, ect. rights to the database.
  I've been able to use the VB code within Access to logon into the database with a unique id, but I have not been able to find out how to RE-link the tables to the unique user id using VB. There should be some way to relink tables dynamically, based on users login into the Access front end.
  I don't know a great deal about Access projects, but I do know with SQL server allows login into your Access project and link tables dynamically.
  Can someone give me some assistance or point me in the right direction?
  Thanks in advance,
  Larry

  We had one of our programmers here come up with a VB code solution for re-linking table within Access. However the relinking takes 3-4 minutes for 100+ tables.
  In an effort to help you understand the situation better, I will attempt to elaborate on the problem:
  We have an Access 2003 application which currently has a front end using Access(forms, reports, queries, & VB code) and a MS Access 2003 backend.
  We have migrated the backend tables to Oracle. However, we still have a need to maintain the front end in Access, since we have over 60 forms, 40 reports, 200+ queries in Access. Its easy to understand, we have a significant investment in the front end(Obviously, the plan is to migrate the front end also at some future date).
  In order to utilized the existing front end, we have to validate and modify the current front end connections to the new Oracle backend. One of the features of Access is that you can "link" tables and save the link for runtime. Each Access table can have its own link which is a separate ODBC/JET connection. As such, each separate link has its own userid/database information.
  The other issue with using the Access front-end is that Access utilizes a workgroup file to implement user and group security. The workgroup file contains all the users and which groups the users belong to in Access. Then within Access, you allow users access to object(tables, queries, ect) by their userid and or group. When users open an Access database with Access security enabled, they are required to log into Access. The login is authenticated by the workgroup file. Once, logged into Access, users have rights to Access objects based on their rights granted to their userid and groups they belong. The problem here is that when you remove the linked Access tables and replace them with linked Oracle tables, Access has knowledge about Oracle table rights granted to users; nor would you expect it to.
  The dilema is the disconnect between Access and the fact Oracle utilizes a similar but much more sophisticated security model. It creates users and roles(which are similar to Access groups), and again this is independent of Access security.
  Our solution was to still use the Access workgroup file security along with the Oracle security model. By using the Access userid and then creating a similar Oracle userid with similar table rights granted in Access, you could apply security within Access and also with the Oracle database.
  For example, a user BOB logs into Access via the workgroup file, using VB code, Access then establishes a Oracle connection logining into Oracle using the same unique userid BOB into Oracle.
  After connecting and validating user BOB into Oracle, then the Access tables are relinked to Oracle using the user BOB userid and table rights.
  This Oracle userid has been granted table rights specific for this userid.This allows the user BOB to use the Access application and still be authenticated into the Oracle database.
  The problem with this solution is that the relinking of the saved Access tables takes 3-7 minutes for about 100+ tables. This is not acceptable for users each time they log into the application.
  Our current alternative is to use one Oracle userid to login each user, and use Access form restrictions/security to allow/prevent users from updating/viewing data. Obviously, this is not the optimal solution in respect to security, but it at least allows us to control access to the data(via the forms) by using one logon required for each user, and quick startup time for the application.
  I understand SQL server does a better job in integration, but we use Oracle which is what I am trying to work with.
  Larry

• Security error accessing ur unable to load wsdl

  HI
  I am using a webservice(.net webservice) that is on my
  localhost and using it in flex application that is also on my
  system. Means both the webservice and flex application are on the
  same system.
  But when i gives the reference of the webservice using the
  system ip and run the application by the flex builder it generates
  the error as:
  mx.messaging.messages::ErrorMessage)#0
  body = (Object)#1
  clientId = "DirectHTTPChannel0"
  correlationId = "24CD6542-F141-1A05-BA35-00A108CB30A0"
  destination = ""
  extendedData = (null)
  faultCode = "Channel.Security.Error"
  faultDetail = "Destination: DefaultHTTP"
  faultString = "Security error accessing url"
  headers = (Object)#2
  messageId = "CC123DF0-0E6C-05FF-7894-00A109676283"
  rootCause = (flash.events::SecurityErrorEvent)#3
  bubbles = false
  cancelable = false
  currentTarget = (flash.net::URLLoader)#4
  bytesLoaded = 0
  bytesTotal = 0
  data = (null)
  dataFormat = "text"
  eventPhase = 2
  target = (flash.net::URLLoader)#4
  text = "Error #2170: Security sandbox violation:
  http://localhost:3000/MYCIMS/flex_bin/Design.swf
  cannot send HTTP headers to
  http://myip/MyServer/AdminWS.asmx."
  type = "securityError"
  timestamp = 0
  timeToLive = 0
  I have put crossdomain.xml file in the root of the localhost
  and made every changes possible in the crossdomain.xml file but the
  application is not running.
  Please somebody provide an effective solution, I have spend
  lots of time to resolve the problem but its not being....
  Thanks in advance
  Gopi Saini

  Have you seen this blog
  "Crossdomain.xml" in ABAP Web AS Server cache

• Failed to open the console and System Center Data Access Service wont start - SCOM 2012

  Log Name: Operations Manager
  Source: Data AccessLayer
  Event ID: 33333
  Data Access Layer rejected retry on SqlError:
   Request: ManagementGroupInfo
   Class: 16
   Number: 208
   Message: Invalid object name 'dbo.__MOMManagementGroupInfo__'.
  =============================================================
  Log Name: Operations Manager
  Source: OpsMgr SDK Service
  Event ID: 26380
  The System Center Data Access service failed due to an unhandled exception.  
  The service will attempt to restart.
  Exception:
  Microsoft.EnterpriseManagement.Common.SdkServiceNotInitializedException: The Data Access service has not yet initialized. Please try again.
     at Microsoft.EnterpriseManagement.ServiceDataLayer.DispatcherService.get_Container()
     at Microsoft.EnterpriseManagement.Mom.Sdk.Service.SdkSubService.SdkChannel.Start()
     at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state)
     at System.Threading._ThreadPoolWaitCallback.PerformWaitCallbackInternal(_ThreadPoolWaitCallback tpWaitCallBack)
     at System.Threading._ThreadPoolWaitCallback.PerformWaitCallback(Object state)
  =============================================================
  Failed to connect to server ' xxxxx'
  Date: 16/09/2013 20:36:16
  Application: Operations Manager
  Application Version: 7.0.8560.0
  Severity: Error
  Message: Failed to connect to server 'xxxxxx'
  Microsoft.EnterpriseManagement.Common.ServiceNotRunningException: The Data Access service is either not running or not yet initialized. Check the event log for more information. ---> System.ServiceModel.EndpointNotFoundException: Could not connect to net.tcp://xxxxx:5724/DispatcherService.
  The connection attempt lasted for a time span of 00:00:02.0020300. TCP error code 10061: No connection could be made because the target machine actively refused it xxx.xxx.xxx.xxx:5724.  ---> System.Net.Sockets.SocketException: No connection could
  be made because the target machine actively refused it xxx.xxx.xxx.xxx:5724
     at System.Net.Sockets.Socket.DoConnect(EndPoint endPointSnapshot, SocketAddress socketAddress)
     at System.Net.Sockets.Socket.Connect(EndPoint remoteEP)
     at System.ServiceModel.Channels.SocketConnectionInitiator.Connect(Uri uri, TimeSpan timeout)
     --- End of inner exception stack trace ---
  Server stack trace:
     at System.ServiceModel.Channels.SocketConnectionInitiator.Connect(Uri uri, TimeSpan timeout)
     at System.ServiceModel.Channels.BufferedConnectionInitiator.Connect(Uri uri, TimeSpan timeout)
     at System.ServiceModel.Channels.ConnectionPoolHelper.EstablishConnection(TimeSpan timeout)
     at System.ServiceModel.Channels.ClientFramingDuplexSessionChannel.OnOpen(TimeSpan timeout)
     at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)
     at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)
     at System.ServiceModel.Channels.ServiceChannel.OnOpen(TimeSpan timeout)
     at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)
     at System.ServiceModel.Channels.ServiceChannel.CallOnceManager.CallOnce(TimeSpan timeout, CallOnceManager cascade)
     at System.ServiceModel.Channels.ServiceChannel.EnsureOpened(TimeSpan timeout)
     at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs, TimeSpan timeout)
     at System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage methodCall, ProxyOperationRuntime operation)
     at System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage message)
  Exception rethrown at [0]:
     at System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg)
     at System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type)
     at Microsoft.EnterpriseManagement.Common.Internal.IDispatcherService.Connect(SdkClientConnectionOptions connectionOptions)
     at Microsoft.EnterpriseManagement.Common.Internal.SdkDataLayerProxyCore.Initialize(EnterpriseManagementConnectionSettings connectionSettings, SdkChannelObject`1 channelObjectDispatcherService)
     at Microsoft.EnterpriseManagement.Common.Internal.SdkDataLayerProxyCore.CreateEndpoint[T](EnterpriseManagementConnectionSettings connectionSettings, SdkChannelObject`1 channelObjectDispatcherService)
     --- End of inner exception stack trace ---
     at Microsoft.EnterpriseManagement.Common.Internal.ExceptionHandlers.HandleChannelExceptions(Exception ex)
     at Microsoft.EnterpriseManagement.Common.Internal.SdkDataLayerProxyCore.CreateEndpoint[T](EnterpriseManagementConnectionSettings connectionSettings, SdkChannelObject`1 channelObjectDispatcherService)
     at Microsoft.EnterpriseManagement.Common.Internal.SdkDataLayerProxyCore.ConstructEnterpriseManagementGroupInternal[T,P](EnterpriseManagementConnectionSettings connectionSettings, ClientDataAccessCore clientCallback)
     at Microsoft.EnterpriseManagement.Common.Internal.SdkDataLayerProxyCore.RetrieveEnterpriseManagementGroupInternal[T,P](EnterpriseManagementConnectionSettings connectionSettings, ClientDataAccessCore callbackDispatcherService)
     at Microsoft.EnterpriseManagement.Common.Internal.SdkDataLayerProxyCore.Connect[T,P](EnterpriseManagementConnectionSettings connectionSettings, ClientDataAccessCore callbackDispatcherService)
     at Microsoft.EnterpriseManagement.ManagementGroup.InternalInitialize(EnterpriseManagementConnectionSettings connectionSettings, ManagementGroupInternal internals)
     at Microsoft.EnterpriseManagement.Mom.Internal.UI.Common.ManagementGroupSessionManager.Connect(String server)
     at Microsoft.EnterpriseManagement.Monitoring.Console.Internal.ConsoleWindowBase.TryConnectToManagementGroupJob(Object sender, ConsoleJobEventArgs args)
  System.ServiceModel.EndpointNotFoundException: Could not connect to net.tcp://xxxxx:5724/DispatcherService. The connection attempt lasted for a time span of 00:00:02.0020300. TCP error code 10061: No connection could be made because the target machine actively
  refused it xxx.xxx.xxx.xxx:5724.  ---> System.Net.Sockets.SocketException: No connection could be made because the target machine actively refused it xxx.xxx.xxx.xxx:5724
     at System.Net.Sockets.Socket.DoConnect(EndPoint endPointSnapshot, SocketAddress socketAddress)
     at System.Net.Sockets.Socket.Connect(EndPoint remoteEP)
     at System.ServiceModel.Channels.SocketConnectionInitiator.Connect(Uri uri, TimeSpan timeout)
     --- End of inner exception stack trace ---
  Server stack trace:
     at System.ServiceModel.Channels.SocketConnectionInitiator.Connect(Uri uri, TimeSpan timeout)
     at System.ServiceModel.Channels.BufferedConnectionInitiator.Connect(Uri uri, TimeSpan timeout)
     at System.ServiceModel.Channels.ConnectionPoolHelper.EstablishConnection(TimeSpan timeout)
     at System.ServiceModel.Channels.ClientFramingDuplexSessionChannel.OnOpen(TimeSpan timeout)
     at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)
     at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)
     at System.ServiceModel.Channels.ServiceChannel.OnOpen(TimeSpan timeout)
     at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)
     at System.ServiceModel.Channels.ServiceChannel.CallOnceManager.CallOnce(TimeSpan timeout, CallOnceManager cascade)
     at System.ServiceModel.Channels.ServiceChannel.EnsureOpened(TimeSpan timeout)
     at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs, TimeSpan timeout)
     at System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage methodCall, ProxyOperationRuntime operation)
     at System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage message)
  Exception rethrown at [0]:
     at System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg)
     at System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type)
     at Microsoft.EnterpriseManagement.Common.Internal.IDispatcherService.Connect(SdkClientConnectionOptions connectionOptions)
     at Microsoft.EnterpriseManagement.Common.Internal.SdkDataLayerProxyCore.Initialize(EnterpriseManagementConnectionSettings connectionSettings, SdkChannelObject`1 channelObjectDispatcherService)
     at Microsoft.EnterpriseManagement.Common.Internal.SdkDataLayerProxyCore.CreateEndpoint[T](EnterpriseManagementConnectionSettings connectionSettings, SdkChannelObject`1 channelObjectDispatcherService)
  System.Net.Sockets.SocketException (0x80004005): No connection could be made because the target machine actively refused it xxx.xxx.xxx.xxx:5724
     at System.Net.Sockets.Socket.DoConnect(EndPoint endPointSnapshot, SocketAddress socketAddress)
     at System.Net.Sockets.Socket.Connect(EndPoint remoteEP)
     at System.ServiceModel.Channels.SocketConnectionInitiator.Connect(Uri uri, TimeSpan timeout)
  =============================================================
  Log Name: Operations Manager
  Source: OpsMgr Root Connector
  Event ID: 28001
  The Root connector received an exception from the Config Service on StateSyncRequest:
  System.Runtime.Remoting.RemotingException: Failed to connect to an IPC Port: The system cannot find the file specified.
  Server stack trace:
     at System.Runtime.Remoting.Channels.Ipc.IpcPort.Connect(String portName, Boolean secure, TokenImpersonationLevel impersonationLevel, Int32 timeout)
     at System.Runtime.Remoting.Channels.Ipc.ConnectionCache.GetConnection(String portName, Boolean secure, TokenImpersonationLevel level, Int32 timeout)
     at System.Runtime.Remoting.Channels.Ipc.IpcClientTransportSink.ProcessMessage(IMessage msg, ITransportHeaders requestHeaders, Stream requestStream, ITransportHeaders& responseHeaders, Stream& responseStream)
     at System.Runtime.Remoting.Channels.BinaryClientFormatterSink.SyncProcessMessage(IMessage msg)
  Exception rethrown at [0]:
     at System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg)
     at System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type)
     at Microsoft.EnterpriseManagement.Mom.Internal.IConfigService.OnStateSyncRequest(Guid source, UInt64 messageIdentifier, String cookie)
     at Microsoft.Mom.Connectors.Root.RootConnector.OnStateSyncRequest(Guid source, UInt64 messageIdentifier, String cookie)
  ================================================================
  Log Name: Operations Manager
  Source: OpsMgr Management Configuration
  Event ID: 29105
   The management group is not yet fully upgraded. OpsMgr Management Configuration Service will idle until upgrade is completed.
   Operations Manager database version: 1.0.0.0
   Minimum required version: 7.0.0.0

  Yes, i change the credentials, but doesnt work.
  Yes, i put the events in the
  main question!
  Events Logs:
  =======================================================
  Log Name: Operations Manager
  Source: Data AccessLayer
  Event ID: 33333
  Data Access Layer rejected retry on SqlError:
   Request: ManagementGroupInfo
   Class: 16
   Number: 208
   Message: Invalid object name 'dbo.__MOMManagementGroupInfo__'.
  =======================================================
  Log Name: Operations Manager
  Source: OpsMgr SDK Service
  Event ID: 26380
  The System Center Data Access service failed due to an unhandled exception.  
  The service will attempt to restart.
  Exception:
  Microsoft.EnterpriseManagement.Common.SdkServiceNotInitializedException: The Data Access service has not yet initialized. Please try again.
     at Microsoft.EnterpriseManagement.ServiceDataLayer.DispatcherService.get_Container()
     at Microsoft.EnterpriseManagement.Mom.Sdk.Service.SdkSubService.SdkChannel.Start()
     at System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state)
     at System.Threading._ThreadPoolWaitCallback.PerformWaitCallbackInternal(_ThreadPoolWaitCallback tpWaitCallBack)
     at System.Threading._ThreadPoolWaitCallback.PerformWaitCallback(Object state)
  =======================================================
  Log Name: Operations Manager
  Source: OpsMgr Root Connector
  Event ID: 28001
  The Root connector received an exception from the Config Service on StateSyncRequest:
  System.Runtime.Remoting.RemotingException: Failed to connect to an IPC Port: The system cannot find the file specified.
  Server stack trace:
     at System.Runtime.Remoting.Channels.Ipc.IpcPort.Connect(String portName, Boolean secure, TokenImpersonationLevel impersonationLevel, Int32 timeout)
     at System.Runtime.Remoting.Channels.Ipc.ConnectionCache.GetConnection(String portName, Boolean secure, TokenImpersonationLevel level, Int32 timeout)
     at System.Runtime.Remoting.Channels.Ipc.IpcClientTransportSink.ProcessMessage(IMessage msg, ITransportHeaders requestHeaders, Stream requestStream, ITransportHeaders& responseHeaders, Stream& responseStream)
     at System.Runtime.Remoting.Channels.BinaryClientFormatterSink.SyncProcessMessage(IMessage msg)
  Exception rethrown at [0]:
     at System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg)
     at System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type)
     at Microsoft.EnterpriseManagement.Mom.Internal.IConfigService.OnStateSyncRequest(Guid source, UInt64 messageIdentifier, String cookie)
     at Microsoft.Mom.Connectors.Root.RootConnector.OnStateSyncRequest(Guid source, UInt64 messageIdentifier, String cookie)
  =======================================================
  Log Name: Operations Manager
  Source: OpsMgr Management Configuration
  Event ID: 29105
   The management group is not yet fully upgraded. OpsMgr Management Configuration Service will idle until upgrade is completed.
   Operations Manager database version: 1.0.0.0
   Minimum required version: 7.0.0.0

• How do i turn on network access protection on windows 8.1 with an hp p6-2326S pc?

  i got a phone call from a unknown source today  at around  3 pm they said  that hackers where trying to access my computer . they  ran a scan  and it showed thre things one was  my network access protection was turned off .  2 hackers were trying to hack into my computer  i cant remember the 3rd one its in my note pad  but  then i got this big run around and i told them from the start that i had no money and that i had just buried my mom on the 2nd of this month after a long battle   and that i had just had a bad episode with my blood pressure wasnt feeling god  and so on ,all of which are true  once i finally convinced the  worker of the fact i had no money he put his super visor on the line .the supervisor was stalling i could tell im no dummy when it comes to software and computers i taught myself  xp professional and the windows 8.1 which im still learning   i finally got tired of his super visor retstartd my computer and got control uninstalled skype  mozilla nightly and mozilla experimental  and several other prorams  with my revo pro uninstaller  my computer is rinning smooth now but i have seen .that ny network access protection is turned off ,how do i turn this on and is it neccasary i have malware bytes new 2.7. something full time  bought and paid for protection and windows defender .i run  a discclean every day and my mal;ware bytes and windows defender any thoughts and ideas would be appreciated i do have HP SUPPORT ASSISTANT AND MY  WARRANTY IS UP TO DATE AND PAID FOR .. sincerely donald hutchison

  dhutch1 wrote:
  i got a phone call from a unknown source today  at around  3 pm they said  that hackers where trying to access my computer . they  ran a scan  and it showed thre things one was  my network access protection was turned off . ...
  Hi,
  Now the trouble may start, you did allow people to logon to your computer and you believe them !  HP Support Assisstant is there to support your technical problems it does not know you will open the door of your house for someone to comes in to steal your money.
  Now, please change all your passwords to logon to email, bank account(s) ..... before too late. Also please download the following tool nd run on your computer, hope it can remove the nasty bits.
  Good luck.
  BH
  **Click the KUDOS thumb up on the left to say 'Thanks'**
  Make it easier for other people to find solutions by marking a Reply 'Accept as Solution' if it solves your problem.

• "unable to connect to the data access service" installing report server

  Trying to do a 2 server SCOM 2012 R2 install on Server 2012 w/SQL 2012.  Management server and operations console on one, and SQL, web console, and reporting server on the other.  When I get to the web console and reporting server install, and
  the "Specify Management Server" screen, I input the 1st management server name and it gives me a red X with the message:
  "Unable to connect to the Data Access service for this management server. Ensure the Data Access service is running and that the service, the management group, and setup are all the same version."  
  Here is the setup log error:  
  "Info: :Could not connect to Management Server: scom-app with exception: Threw Exception.Type: System.ArgumentException, Exception Error Code: 0x80070057, Exception.Message: Version string portion was too short or
  too long."
  I don't see the "Data Access" service in services on either server.  I followed all of the setup prereqs in SCOM 2012 unleashed book, and also referenced this article for setup advice:
  http://blogs.technet.com/b/kevinholman/archive/2013/01/16/opsmgr-2012-sp1-quickstart-deployment-guide.aspx
  Everything seems to be working until I get to this point. 
  Thank you for any help you can provide,
  Dan

  Hi Tom,
  1. Did the setup complete successfully on the MS and Console server?
  >>>Yes, without issue
  2. You do not see the service "System Center Data Access Service"
  >>>I do indeed see it on the MS and Console server, it is set to Auto and running.  (I also tried rebooting this server and retried, no help)
  3. Is the Windows Firewall enabled?
  >>>It has symantec endpoint protection.  I disabled symantec completely on both servers and retried, no help.
  Thx,
  Dan

• The Date Accessed attribute is resetting to all the files in a folder

  Hi all,
  I have an issue that the "Date Accessed" attribute is often resetting to all the files in a folder if i open single file as this folder is from File server mapped as Drive to me. This is happening to all the users whoever connect to that fileserver
  and i see same issue from RDP as well. is there any option to check which is resetting the "Date Accessed" attribute to all the files. The Date Access attribute is simillar to Date accessed and Date modified. We need to fix this issue as it is related
  to security concern for us. The file server is windows 2008 R2 and the client machines are windows 7.
  Side note: I can see that there is no software, antivirus, offline sycn is causing this issue.
  Thank you,
  Sampath
  P.Sampath

  Hi,
  It seems that some specific process accessed the files and updated the attribute. You could configure auditing on the shared folder. Then you can go through the auditing log to check which process is doing the read operation on all these files. 
  Configuring Audit Policies
  http://technet.microsoft.com/en-us/library/dd277403.aspx
  Best Regards,
  Mandy
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• Urgent requirement : security error accessing url and http error: standalone flex

  Hi,
  I have a requirement to create record from standalone flex. I am using Flex builder 3.
  I used Flex-force toolkit to login  to salesforce. The swf file generated when used internal to salesforce it works great.
  But my requirement is to run it from public sites page / standalone pages. How will I configure it? I am getting error 'security error accessing url', default HTTP
  The requirement is on priority, please help me to resolve this issue.
  The login code is also furnished below. please help.
  Full error details:
  (com.salesforce.events::ApexFaultEvent)#0
    bubbles = false
    cancelable = true
    context = (null)
    currentTarget = (null)
    eventPhase = 2
    fault = (mx.rpc::Fault)#1
      content = (null)
      errorID = 0
      faultCode = "Channel.Security.Error"
      faultDetail = "Destination: DefaultHTTP"
      faultString = "Security error accessing url"
      message = "faultCode:Channel.Security.Error faultString:'Security error accessing url' faultDetail:'Destination: DefaultHTTP'"
      name = "Error"
      rootCause = (flash.events::SecurityErrorEvent)#2
        bubbles = false
        cancelable = false
        currentTarget = (flash.net::URLLoader)#3
          bytesLoaded = 0
          bytesTotal = 0
          data = (null)
          dataFormat = "text"
        eventPhase = 2
        target = (flash.net::URLLoader)#3
        text = "Error #2170: Security sandbox violation: file:///C|/Users/R/DOCUME%7E1/FLEXBU%7E1/TESTLO%7E1/BIN%2DRE%7E1/TESTLO%7E1.SWF cannot send HTTP headers to https://login.salesforce.com/services/Soap/u/14.0?1000.1153011256829."
        type = "securityError"
    headers = (null)
    message = (mx.messaging.messages::ErrorMessage)#4
      body = (null)
      clientId = "DirectHTTPChannel0"
      correlationId = "B8A1B02E-CE17-DCBA-4894-F2E4CBEB7C04"
      destination = ""
      extendedData = (null)
      faultCode = "Channel.Security.Error"
      faultDetail = "Destination: DefaultHTTP"
      faultString = "Security error accessing url"
      headers = (Object)#5
        DSStatusCode = 0
      messageId = "41F6A90D-ECAE-EA2D-7C84-F2E4DABD72F3"
      rootCause = (flash.events::SecurityErrorEvent)#2
      timestamp = 0
      timeToLive = 0
    messageId = "41F6A90D-ECAE-EA2D-7C84-F2E4DABD72F3"
    statusCode = 0
    target = (null)
    token = (mx.rpc::AsyncToken)#6
      message = (mx.messaging.messages::HTTPRequestMessage)#7
        body = "<se:Envelope xmlns:se="http://schemas.xmlsoap.org/soap/envelope/"><se:Header xmlns:sfns="urn:partner.soap.sforce.com"/><se:Body><login xmlns="urn:partner.soap.sforce.com" xmlns:ns1="sobject.partner.soap.sforce.com"><username>uname</username><password>pwdandsec token</password></login></se:Body></se:Envelope>"
        clientId = (null)
        contentType = "text/xml; charset=UTF-8"
        destination = "DefaultHTTP"
        headers = (Object)#8
          DSEndpoint = "direct_http_channel"
        httpHeaders = (Object)#9
          Accept = "text/xml"
          SOAPAction = """"
          X-Salesforce-No-500-SC = "true"
        messageId = "B8A1B02E-CE17-DCBA-4894-F2E4CBEB7C04"
        method = "POST"
        recordHeaders = false
        timestamp = 0
        timeToLive = 0
        url = "https://login.salesforce.com/services/Soap/u/14.0?1000.1153011256829"
      responders = (Array)#10
        [0] (::SalesForceResponder)#11
      result = (null)
    type = "fault"
  Login code:
  [Bindable] public var sfdc:Connection = new Connection();
  private function login():void {
  Security.loadPolicyFile("http://salesforce.com/services/crossdomain.xml");
  var lr:LoginRequest = new LoginRequest();
  lr.username = "uname";
  lr.password = "pwdtoken";
  sfdc.protocol = "https";
  sfdc.serverUrl = "https://login.salesforce.com/services/Soap/u/14.0";
  lr.callback = new AsyncResponder(loginSuccess, loginFault);
  sfdc.login(lr);

  This is resolved.
  I have copied the crossdomain.xml file to tomcat Root folder
  and the issue is resolved.

• Windows 7, file properties - Is "date accessed" ALWAYS 100% accurate?

  Hello,
  Here's the situation: I went on vacation for a couple of weeks, but before I left, I took the harddrive out of my computer and hid it in a different location. Upon coming back on Monday (January 10, 2011) and putting the harddrive back in my computer, I
  right-clicked on different files to see their properties. Interestingly enough, several files had been accessed during the time I was gone! I right-clicked different files in various locations on the harddrive, and all of these suspect files had been accessed
  within a certain time range (Sunday, ‎January ‎09, ‎2011, approximately ‏‎between 6:52:16 PM - 9:06:05 PM). Some of them had been accessed at the exact same time--down to the very second. This makes me think that someone must have done
  a search on my harddrive for certain types of files and then copied all those files to some other medium. The Windows 7 installation on this harddrive is password protected, but NOT encrypted, so they could have easily put the harddrive into an enclosure/toaster
  to access it from a different computer.
  Of course I did not right-click every single file on my computer, but did so in different folders. For instance, one of the folders I went through has different types of files: .mp3, ,prproj, .3gp, .mpg, .wmv, .xmp, .txt with file-sizes ranging from 2 KB
  to 29.7 MB (there is also a sub-folder in this folder which contains only .jpg files); however, of all these different types of files in this folder and its subfolder, all of them had been accessed (including the .jpg files from the sub-folder) EXCEPT the
  .mp3 files (if it makes any difference, the .mp3 files in this folder range in size from 187 KB to 4881 KB). Additionally, this sub-folder which contained only .jpg files (48 .jpg files to be exact) was not accessed during this time--only the .jpg files within
  it were accessed-- (between 6:57:03 PM - 6:57:08 PM).
  I thought that perhaps this was some kind of Windows glitch that was displaying the wrong access date, but then I looked at the "date created" and "date modified" for all of these files in question, and their created/modified dates and
  times were spot on correct.
  My first thought was that someone put the harddrive into an enclosure/toaster and viewed the files; but then I realized that this was impossible because several of the files had been accessed at the same exact time down to the second. So this made me think
  that the only other way the "date accessed" could have changed would have been if someone copied the files.
  Is there any chance at all whatsoever that this is some kind of Windows glitch or something, or is it a fact that someone was indeed accessing my files (and if someone was accessing my files, am I right about the files in question having been copied)? Is
  there any other possibility for what could have happened?
  Do I need to use any kinds of forensics tools to further investigate this matter (and if so, which tools), or is there any other way in which I can be certain of what took place in that timeframe the day before I got back? Or is what I see with Windows 7
  good enough (i.e. accurate and truthful)?
  Thanks in advance, and please let me know if any other details are required on my part.
  P.S. The harddrive is NTFS.

  Never mind.  Someone else already answered this for me:
  "I use last accessed-created date time stamps all the time when troubleshooting-investigating software installs, its been very accurate in my uses of it in NTFS file systems.
  Since some of the dates are while you were gone, I assume it was several days to a week, I would say someone did access those files.
  These timestamps along with other data are used by computer forensics teams to reconstruct what a user did on a computer.
  Experienced Hackers use software to alter these time stamps to cover their tracks when breaking into computer systems."
  http://superuser.com/questions/232143/windows-7-file-properties-is-date-accessed-always-100-accurate/232320#232320
  Additionally, I just now found out what happened. Someone else found the harddrive and thought it was theirs (since it was identical to one they had been missing), so they put it in their computer and scanned it with an anti-virus software. They realized it
  wasn't theirs and then put it back in the place I had hidden it.
  In my original question, I stated a possible theory that someone may have copied the files, but I later realized that copying in itself doesn't affect the "date accessed" of the original/source file, but rather only the "date accessed" of
  the copy.
  Thanks to all those that may have read my question.