Security Set-up for MSC2N

Similar Messages

• Password security - set permissions for different users

  I am using Abobe Acrobat 9 Pro.
  In the HELP menu, there is a security section in the contents, In the overview, it states the following:
  "Each security method offers a different set of benefits. However, they all allow you to specify encryption algorithms, select the document components to encrypt, and set permissions for different users."
  I would like to know how you can set permissions for different users using Password Security.
  I am the only one in the company who has Acrobat 9 Pro and all others have Adobe Reader 8.
  I have created a PDF file in Acrobat 9, this file is accessible to anyone with Abobe Reader. I would like to set different permissions for different users. For example, i would like certain individuals to print the document and other individuals to not be allowed to print. Can this be acheived using Password Security?
  Many Thanks

  I have created a PDF file in Acrobat 9, this file is accessible to
  anyone with Abobe Reader. I would like to set different permissions for
  different users. For example, i would like certain individuals to print
  the document and other individuals to not be allowed to print. Can this
  be acheived using Password Security?
  No.

• How can I configure FireFox security setting globally for all users on a PC? Is there something I can do in group policies or throught the registry to insure all users have the same settings?

  Our Bank's core processor has rewritten their product to run in a web browser. Their browser of choice is Firefox 3.6. The specifications from our core processor specify specific security and settings parameters that must be adhered to by all users for their product to run properly. Is there a way to globally configure these settings via the registry or group policies to insure everyone who logs in to a given workstation opens Firefox with the same settings? Thank you for any assistance you can provide - Steve Gish, First Bank Kansas.
  == User Agent ==
  Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)

  You can try:
  *http://kb.mozillazine.org/Locking_preferences

• The OMS is not set up for Enterprise Manager Security

  Hi, I'm trying to add an agent to grid control and its not connecting with the management server because i cant secure it...
  bash-2.05$ ../../bin/emctl secure agent <password>
  Oracle Enterprise Manager 10g Release 3 Grid Control 10.2.0.3.0.
  Copyright (c) 1996, 2007 Oracle Corporation. All rights reserved.
  Agent is already stopped... Done.
  Securing agent... Started.
  Requesting an HTTPS Upload URL from the OMS... Failed.
  The OMS is not set up for Enterprise Manager Security.
  i have tried this on two seperate servers, both do the exact same thing. However, on my repository server where the OMS is housed, i can secure the agent no problem. Does anyone know what the problem could be? My OMS is on a Linux (SuSE 10.2) 32-bit machine.
  heres the emdctl.trc on the agent machine:
  2007-07-11 11:00:20 Thread-1 ERROR main: nmectla_agentctl: Error connecting to http://cbldb3:3872/emd/main/. Returning status code 1
  2007-07-11 11:00:21 Thread-1 WARN http: snmehl_connect: connect failed to (cbldb3:3872): Connection refused (error = 239)
  2007-07-11 11:00:21 Thread-1 ERROR main: nmectla_agentctl: Error connecting to http://cbldb3:3872/emd/main/. Returning status code 1
  2007-07-11 11:00:21 Thread-1 WARN http: snmehl_connect: connect failed to (cbldb3:3872): Connection refused (error = 239)
  2007-07-11 11:00:21 Thread-1 ERROR main: nmectla_agentctl: Error connecting to http://cbldb3:3872/emd/main/. Returning status code 1
  2007-07-11 11:00:22 Thread-1 WARN http: snmehl_connect: connect failed to (cbldb3:3872): Connection refused (error = 239)
  2007-07-11 11:00:22 Thread-1 ERROR main: nmectla_agentctl: Error connecting to http://cbldb3:3872/emd/main/. Returning status code 1
  2007-07-11 11:05:10 Thread-1 WARN http: snmehl_connect: connect failed to (cbldb3:3872): Connection refused (error = 239)
  2007-07-11 11:05:10 Thread-1 ERROR main: nmectla_agentctl: Error connecting to http://cbldb3:3872/emd/main/. Returning status code 1
  2007-07-11 11:10:08 Thread-1 WARN http: snmehl_connect: connect failed to (cbldb3:3872): Connection refused (error = 239)
  2007-07-11 11:10:08 Thread-1 ERROR main: nmectla_agentctl: Error connecting to http://cbldb3:3872/emd/main/. Returning status code 1
  bash-2.05$ lsof | grep 3872
  bash-2.05$
  seems to be failing the connect but nothing is running on the port so i'm not sure why
  Thanks in advance
  Message was edited by:
  user581869

  some further information and hopefully someone can help me...
  I went to the OMS binary folder (fmc45712:$OMS_HOME/bin) and executed the following commands...
  $OMS_HOME/opmn/bin/opmnctl stopall
  $OMS_HOME/bin/emctl stop oms
  $OMS_HOME/bin/emctl secure oms
  $OMS_HOME/bin/emctl start oms
  $OMS_HOME/opmn/bin/opmnctl startall
  then i go to $AGENT_HOME on the OMS machine (fmc45712:$AGENT_HOME/bin) and execute..
  $AGENT_HOME/bin/emctl status agent -secure
  Oracle Enterprise Manager 10g Release 3 Grid Control 10.2.0.3.0.
  Copyright (c) 1996, 2007 Oracle Corporation. All rights reserved.
  Checking the security status of the Agent at location set in /opt/oracle/OracleHomes/agent10g/sysman/config/emd.properties... Done.
  Agent is secure at HTTPS Port 3872.
  Checking the security status of the OMS at http://fmc45712:4889/em/upload/... Done.
  OMS is secure on HTTPS Port 1159
  I then to go the server i deployed the agent on that i want to get communicating wtih my OMS...
  $AGENT_HOME/bin/emctl status agent -secure
  Oracle Enterprise Manager 10g Release 3 Grid Control 10.2.0.3.0.
  Copyright (c) 1996, 2007 Oracle Corporation. All rights reserved.
  Checking the security status of the Agent at location set in /u101/em/agent10g/sysman/config/emd.properties... Done.
  Agent is unsecure at HTTP Port 3872.
  Checking the security status of the OMS at http://fmc45712:4889/em/upload/... Done.
  OMS is running but has not been secured. No HTTPS Port available.
  same command, different computer, but on the same network, and it just doesn't work. The OMS is on Linux x86 and the agent on the alternate computer is on HP-UX. If anyone has any help it'd be much appreciated.

• High (Maximum) Security Setting for FIOS Firewall

  If you set the maximum security setting on the Verizon FIOS Firewall then whenever Verizon decides to swap its IP's you are screwed; the unit will not get the new IP.
  To compensage for the maximum settings I have enable all of the verizon unit (SBU's) to have unrestricted access aka ANY but this does not do the trick.
  Verizon in its ultimate wisdom has not bothered to document anywhere what are the minimum outbould settings should be that would enable this communication in the High (Maximum) security mode.
  Does anyone from Verizon read this stuff?

  So, I'm pretty much convinced now that the problem with low-quality LR previews seems to be mostly isolated to the previews that LR generates after you make edits in the 'Develop' module.
  Upon first import, this image looked fine in the 'Library' & 'Slideshow' modules. After making some edits (color, tone, etc.) in the 'Develop' module, I ended up getting this hideous preview in the 'Library' & 'Slideshow' modules:
  http://web.mac.com/rishisanyal/Lightroom/07-0310_BandingBlocking.jpg
  You people with LCDs will be able to see the JPEG artifacts better than those with CRTs, since LCDs tend to be sharper.
  So, the obvious question is this:
  Does LR, when *re-generating* previews for edited images, ignore the quality-setting for JPEG previews (which I have set to 'high')??

• Best security setting for TC? WPA, WPA2 clarification?

  I am using TC just as a wireless hard drive. What would the best security setting be? I am confused by WPA Personal and WPA/WPA2 Personal?
  Thanks in advance!

  With the TC the choices are: WPA/WPA2 Personal, WPA2 Personal, WPA/WPA2 Enterprise, and WPA2 Enterprise.
  The basic difference between WPA & WPA2 is the encryption type. WPA uses Temporal Key Integrity Protocol (TKIP), whereas WPA2 uses either TKIP or the stronger Advanced Encryption Standard (AES) encryption.
  WPA/WPA2 Personal allows for both types of clients to connect, whereas, WPA2 Personal only allows clients that support AES.
  The strongest security of the two would be to use WPA/WPA2 Personal with all clients (Mac and PC) running WPA2.

• Need help for the security setting

  We are preparing the demo environment with ADF Security turn on with Http Basic Authentication.
  Everything works fine but for a command that is send to one of our proxy servlet (context path /BIProxy), we got a pop up dialog that asks you to login to weblogic container.
  Anyone have any suggestion regarding what extra security configuration that I need to config to access to context path/servlet that is not default Faces servlet.
  The following is what we have in jazn-data.xml for region:
  <permission>
  <class>oracle.adf.share.security.authorization.RegionPermission</class>
  <name>testsecurity.pageDefs.untitled1PageDef</name>
  <actions>view</actions>
  </permission>

  Hi, we find more informaiton.
  We got two 401 errors which causes the login popup.
  o. For the 1st 401 error (expected), the http header is set to: WWW-Authenticate: Basic realm="jazn.com" so we enter the correct user credential, the dialog goes away.
  o. For the 2nd 401 error, the http header is set to: WWW-Authenticate: Basic realm="WebLogic Server" so we get "Authentication Required" dialog ask for WLS login.
  For the 2nd 401 error, we are pointing to /Sales-BaseSalesSalesHomePageUi-context-root/BIProxy?cid=BIPresentationServer&RedirectURL=res/b_mozilla/common/obips.ImportMeFirst.js from Referer URL: /Sales-BaseSalesSalesHomePageUi-context-root/faces/zbsSalesHomePage?_adf.ctrl-state=x5a1n5x2d_11
  So my quesiton is that do we need to add some security setting in jazn-data.xml or someother files to specify security setting for /BIProxy?
  Thanks

• ON RESTORING 1601 ERROR COMING HOE WE SET SECURE SETTING FOR RESTORE AND UPDATE

  ON RESTORING 1601 ERROR COMING HOE WE SET SECURE SETTING FOR RESTORE AND UPDATE

  If you don't have a sim card in the phone, you won't be able to activate it. You can't activate any GSM iPhone without a valid sim card installed in the phone. The sim itself need not be activated, but it must be valid & present.

• I have set up as security password-code for home screen.  So when I turn it on, I forgotten the correct code and I'm locked out for 60 minutes ;(  How do I retrieve or reset so I can use phone

  I have set up as security password-code for home screen.  So when I turn it on, I forgotten the correct code and I'm locked out for 60 minutes ;(  How do I retrieve or reset so I can use phone again. Please help!

  You need to connect to iTunes and restore the iPhone to remove the passcode...then from a recent backup restore the content.

• No security set up yet it is asking for an encryption key

  I have the WRT54G wireless router.  I am running 3 pc's on the network.  I had some issues with the router the other day.  I restored to factory defaults and now 2 of the pc's can connect no problem but the third is listing the router as security enabled.  It has no security set up on it.  All three pc's are running xp.  Is there a setting on my pc to change?  Do I delete a temp file or something?  I have never set up a key on this router and this is getting to the frustration point.
  Thanks!

  I assume your router has a unique SSID, and you are not trying to connect to your neighbor's router.
  Try deleting all the "Preferred Networks" on the non-working computer.
  In the non-working computer, if you are running both Linksys wireless card management software, and WZC at the same time, turn one of them off.
  In the non-working computer, if you are running a software firewall, temporarily turn it off.  Note that some users have had difficulty turning off Zone Alarm, and they needed to uninstall it to get it turned off.
  Message Edited by toomanydonuts on 05-03-200701:20 AM
  Message Edited by toomanydonuts on 05-03-200703:36 AM

• How to set filter for few Setup Objects on Geneneral Foundation?

  Controlling the download of sub-entities:
  By default all sub-entities are downloaded. Pass a non-existing value
  for the parameter (primary key) of the sub-entity if you don't want to
  download a specific sub-entity.
  For example, if you don't want to download the values of a value set,
  then use following input to FLEX_VALUE attribute while setting filter;
  FLEX_VALUE='THIS_IS_A_NON_EXISTING_VALUE_I_DONT_WANT_TO_DOWNLOAD_VALUES'
  VALUE_SET
  Notes:
  - To download '$FLEX$.%' value sets pass '$FLEX$.%' argument.
  - Upload API automatically submits the hierarchy compiler request
  - FLEX_VALUE_SET_NAME is a required argument for download.
  You can find the following parameters in Set Filter screen of Value Set Values.
  VALUE_SET has subenities such as VSET_SECURITY_RULE, VSET_ROLLUP_GROUP and VSET_VALUE.
  Setting value for attribute FLEX_VALUE_SET_NAME downloads all the subentities. If you want
  to restrict the subentities, set appropriate filter at VSET_SECURITY_RULE, VSET_ROLLUP_GROUP
  and VSET_VALUE.
  Parameters:
  VALUE_SET
  | FLEX_VALUE_SET_NAME : Value set name.
  |
  +-VSET_SECURITY_RULE
  | FLEX_VALUE_RULE_NAME : Value set security rule name.
  | PARENT_FLEX_VALUE_LOW : Independent value for the dependent value sets.
  |
  +-VSET_ROLLUP_GROUP
  | HIERARCHY_CODE : Hierarchy (rollup group) code.
  |
  +-VSET_VALUE
  PARENT_FLEX_VALUE_LOW : Independent value for the dependent value sets.
  FLEX_VALUE : Flexfield segment value.
  DESC_FLEX
  Notes:
  - Upload API automatically submits the flexfield compiler request
  - Upload API automatically submits the DFV view generator request
  - APPLICATION_SHORT_NAME is a required argument for download.
  You can find the following parameters in Set Filter screen of Descriptive Flexfields.
  DESC_FLEX has subenities such as DFF_REF_FIELD, DFF_CONTEXT and DFF_SEGMENT.
  Setting value for attributes DESC_FLEX and DESCRIPTIVE_FLEXFIELD_NAME downloads all the subentities.
  If you want to restrict the subentities, set appropriate filter at DFF_REF_FIELD, DFF_CONTEXT
  and DFF_SEGMENT.
  Parameters:
  DESC_FLEX
  | APPLICATION_SHORT_NAME : Application Short Name.
  | DESCRIPTIVE_FLEXFIELD_NAME : Descriptive Flexfield Name.
  |
  +-DFF_REF_FIELD
  | DEFAULT_CONTEXT_FIELD_NAME : BLOCK.FIELD reference field name.
  |
  +-DFF_CONTEXT
  | DESCRIPTIVE_FLEX_CONTEXT_CODE : Context Code
  |
  +-DFF_SEGMENT
  END_USER_COLUMN_NAME : Segment Name
  APPLICATION_COLUMN_NAME : Column Name
  KEY_FLEX
  Notes:
  - Upload API automatically submits the flexfield compiler request
  - Upload API automatically submits the KFV view generator request
  - Upload API automatically submits the structure view generator request
  - APPLICATION_SHORT_NAME is a required argument for download.
  You can find the following parameters in Set Filter screen of Key Flexfields.
  KEY_FLEX has subenities such as DFF_REF_FIELD, DFF_CONTEXT and DFF_SEGMENT.
  Setting value for attributes APPLICATION_SHORT_NAME and ID_FLEX_CODE downloads all the subentities.
  If you want to restrict the subentities, set appropriate filter at KFF_FLEX_QUAL, KFF_SEGMENT_QUAL,
  ,KFF_STRUCTURE,KFF_WF_PROCESS,KFF_SH_ALIAS,KFF_CVR_RULE and KFF_SEGMENT.
  Parameters:
  KEY_FLEX
  | APPLICATION_SHORT_NAME : Application Short Name.
  | ID_FLEX_CODE : Key Flexfield Code.
  |
  +-KFF_FLEX_QUAL
  | | SEGMENT_ATTRIBUTE_TYPE : Flexfield Qualifier Name
  | |
  | +-KFF_SEGMENT_QUAL
  | VALUE_ATTRIBUTE_TYPE : Segment Qualifier Name
  |
  +-KFF_STRUCTURE
  | ID_FLEX_STRUCTURE_CODE : Structure Code
  |
  +-KFF_WF_PROCESS
  | WF_ITEM_TYPE : Workflow Item Type
  |
  +-KFF_SH_ALIAS
  | ALIAS_NAME : Shorthand Alias Name
  |
  +-KFF_CVR_RULE
  | FLEX_VALIDATION_RULE_NAME : Cross Val. Rule Name.
  |
  +-KFF_SEGMENT
  SEGMENT_NAME : Segment Name
  APPLICATION_COLUMN_NAME : Column Name
  MENU
  You can find the following parameters in Set Filter screen of Menus.
  PARENT_MENU_NAME Name of the menu to start downloading at. If this
  parameter is specified on its own, that menu and
  all its children will be downloaded. If specified
  with FUNCTION_NAME and/or SUB_MENU_NAME, then only
  the menu entry with that function and/or submenu name
  immediately under the PARENT_MENU_NAME will be
  downloaded.
  FUNCTION_NAME Function name to limit download to. If this parameter
  is specified then PARENT_MENU_NAME must also be
  specified in order to download menus. Specifies
  the function on a menu entry immediately under
  PARENT_MENU_NAME which will be downloaded; all other
  menu entries under PARENT_MENU_NAME will not be
  downloaded.
  SUB_MENU_NAME Sub Menu name to limit download to. If this parameter
  is specified then PARENT_MENU_NAME must also be
  specified in order to download menus. Specifies
  the Sub Menu on a menu entry immediately under
  PARENT_MENU_NAME which will be downloaded (along with
  all its children); all other menu entries under
  PARENT_MENU_NAME will not be downloaded.
  MENU_APP_SHORT_NAME Application short name of Menu. The menu on the resp
  for this application will be downloaded. If you
  pass this parameter, do not pass any of the other
  parameters; this parameter is only supported on its
  own.

  Oh never mind.... I figured it out myself helps to read up on the manuals. d'oh. sorry for the bandwidth waste...

• How to Export local security setting all filed name & value against filed.

  HI all,
  I am trying to export local security setting from local policy using bellow scrip. but it is showing only these are configured. I need expert help which allowed me to export all filed with value where it is configure or not. Please give me.
  $output=@()
  $temp = "c:\"
  $file = "$temp\privs.txt"
  [string] $readableNames
  $process = [diagnostics.process]::Start("secedit.exe", "/export /cfg $file /areas USER_RIGHTS")
  $process.WaitForExit()
  $in = get-content $file
  foreach ($line in $in) {
  if ($line.StartsWith("Se")) {
  $privilege = $line.substring(0,$line.IndexOf("=") - 1)
  switch ($privilege){
  "SeCreateTokenPrivilege " {$privilege = "Create a token object"}
  "SeAssignPrimaryTokenPrivilege" {$privilege = "Replace a process-level token"}
  "SeLockMemoryPrivilege" {$privilege = "Lock pages in memory"}
  "SeIncreaseQuotaPrivilege" {$privilege = "Adjust memory quotas for a process"}
  "SeUnsolicitedInputPrivilege" {$privilege = "Load and unload device drivers"}
  "SeMachineAccountPrivilege" {$privilege = "Add workstations to domain"}
  "SeTcbPrivilege" {$privilege = "Act as part of the operating system"}
  "SeSecurityPrivilege" {$privilege = "Manage auditing and the security log"}
  "SeTakeOwnershipPrivilege" {$privilege = "Take ownership of files or other objects"}
  "SeLoadDriverPrivilege" {$privilege = "Load and unload device drivers"}
  "SeSystemProfilePrivilege" {$privilege = "Profile system performance"}
  "SeSystemtimePrivilege" {$privilege = "Change the system time"}
  "SeProfileSingleProcessPrivilege" {$privilege = "Profile single process"}
  "SeCreatePagefilePrivilege" {$privilege = "Create a pagefile"}
  "SeCreatePermanentPrivilege" {$privilege = "Create permanent shared objects"}
  "SeBackupPrivilege" {$privilege = "Back up files and directories"}
  "SeRestorePrivilege" {$privilege = "Restore files and directories"}
  "SeShutdownPrivilege" {$privilege = "Shut down the system"}
  "SeDebugPrivilege" {$privilege = "Debug programs"}
  "SeAuditPrivilege" {$privilege = "Generate security audit"}
  "SeSystemEnvironmentPrivilege" {$privilege = "Modify firmware environment values"}
  "SeChangeNotifyPrivilege" {$privilege = "Bypass traverse checking"}
  "SeRemoteShutdownPrivilege" {$privilege = "Force shutdown from a remote system"}
  "SeUndockPrivilege" {$privilege = "Remove computer from docking station"}
  "SeSyncAgentPrivilege" {$privilege = "Synchronize directory service data"}
  "SeEnableDelegationPrivilege" {$privilege = "Enable computer and user accounts to be trusted for delegation"}
  "SeManageVolumePrivilege" {$privilege = "Manage the files on a volume"}
  "SeImpersonatePrivilege" {$privilege = "Impersonate a client after authentication"}
  "SeCreateGlobalPrivilege" {$privilege = "Create global objects"}
  "SeTrustedCredManAccessPrivilege" {$privilege = "Access Credential Manager as a trusted caller"}
  "SeRelabelPrivilege" {$privilege = "Modify an object label"}
  "SeIncreaseWorkingSetPrivilege" {$privilege = "Increase a process working set"}
  "SeTimeZonePrivilege" {$privilege = "Change the time zone"}
  "SeCreateSymbolicLinkPrivilege" {$privilege = "Create symbolic links"}
  "SeDenyInteractiveLogonRight" {$privilege = "Deny local logon"}
  "SeRemoteInteractiveLogonRight" {$privilege = "Allow logon through Terminal Services"}
  "SeServiceLogonRight" {$privilege = "Logon as a service"}
  "SeIncreaseBasePriorityPrivilege" {$privilege = "Increase scheduling priority"}
  "SeBatchLogonRight" {$privilege = "Log on as a batch job"}
  "SeInteractiveLogonRight" {$privilege = "Log on locally"}
  "SeDenyNetworkLogonRight" {$privilege = "Deny Access to this computer from the network"}
  "SeNetworkLogonRight" {$privilege = "Access this Computer from the Network"}
    $sids = $line.substring($line.IndexOf("=") + 1,$line.Length - ($line.IndexOf("=") + 1))
    $sids =  $sids.Trim() -split ","
    $readableNames = ""
    foreach ($str in $sids){
      $str = $str.substring(1)
      $sid = new-object System.Security.Principal.SecurityIdentifier($str)
      $readableName = $sid.Translate([System.Security.Principal.NTAccount])
      $readableNames = $readableNames + $readableName.Value + ", "
  $output += New-Object PSObject -Property @{            
          privilege       = $privilege               
          readableNames   = $readableNames.substring(0,($readableNames.Length - 1))
          #else            = $line."property" 
  $output  

  As an alternate approach wee can preset the hash and just update it.  This version also deal with trapping the errors.
  function Get-UserRights{
  Param(
  [string]$tempfile="$env:TEMP\secedit.ini"
  $p=Start-Process 'secedit.exe' -ArgumentList "/export /cfg $tempfile /areas USER_RIGHTS" -NoNewWindow -Wait -PassThru
  if($p.ExitCode -ne 0){
  Write-Error "SECEDIT exited with error:$($p.ExitCode)"
  return
  $selines=get-content $tempfile|?{$_ -match '^Se'}
  Remove-Item $tempfile -EA 0
  $dct=$selines | ConvertFrom-StringData
  $hash=@{
  SeCreateTokenPrivilege =$null
  SeAssignPrimaryTokenPrivilege=$null
  SeLockMemoryPrivilege=$null
  SeIncreaseQuotaPrivilege=$null
  SeUnsolicitedInputPrivilege=$null
  SeMachineAccountPrivilege=$null
  SeTcbPrivilege=$null
  SeSecurityPrivilege=$null
  SeTakeOwnershipPrivilege=$null
  SeLoadDriverPrivilege=$null
  SeSystemProfilePrivilege=$null
  SeSystemtimePrivilege=$null
  SeProfileSingleProcessPrivilege=$null
  SeCreatePagefilePrivilege=$null
  SeCreatePermanentPrivilege=$null
  SeBackupPrivilege=$null
  SeRestorePrivilege=$null
  SeShutdownPrivilege=$null
  SeDebugPrivilege=$null
  SeAuditPrivilege=$null
  SeSystemEnvironmentPrivilege=$null
  SeChangeNotifyPrivilege=$null
  SeRemoteShutdownPrivilege=$null
  SeUndockPrivilege=$null
  SeSyncAgentPrivilege=$null
  SeEnableDelegationPrivilege=$null
  SeManageVolumePrivilege=$null
  SeImpersonatePrivilege=$null
  SeCreateGlobalPrivilege=$null
  SeTrustedCredManAccessPrivilege=$null
  SeRelabelPrivilege=$null
  SeIncreaseWorkingSetPrivilege=$null
  SeTimeZonePrivilege=$null
  SeCreateSymbolicLinkPrivilege=$null
  SeDenyInteractiveLogonRight=$null
  SeRemoteInteractiveLogonRight=$null
  SeServiceLogonRight=$null
  SeIncreaseBasePriorityPrivilege=$null
  SeBatchLogonRight=$null
  SeInteractiveLogonRight=$null
  SeDenyNetworkLogonRight=$null
  SeNetworkLogonRight=$null
  for($i=0;$i -lt $dct.Count;$i++){
  $hash[$dct.keys[$i]]=$dct.Values[$i].Split(',')
  $privileges=New-Object PsObject -Property $hash
  $privileges
  Get-UserRights
  A full version would be pipelined and remoted or, perhaps use a workflow to access remote machines in parallel.
  ¯\_(ツ)_/¯

• Airport Express not recognized by Utility after changing security setting.

  We use an Extreme with an Express to extend the network and run speakers. While trying to eradicate Airtunes dropouts I changed the security setting on the Express using the Airport Utility. After the update, the Express is no longer being recognized. Help!!! I've unplugged it and used the reset button to no avail. I'm a techno-dummy, so please be gentle. I really do appreciate any insight.

  Hi,
  It seems you have set a too strong security on the Extreme that is not supported on the Express.
  I don't know what model of Express you have so try to use a less strong security on the Extreme.
  (you can find the security specs of your express on Apple's website : http://support.apple.com/specs/#airport )
  As you have reset the Express... you will first have to set it up again...
  P.S. : Do the connection drop problems occur on the Express and / or on the extreme ?
  As security settings "should" not be the cause for WiFi connection drop, something else is.
  Can you give more info on what you already tried ? Ex : Multicast Rate, Transmit Power, Use wide channels, Closed network, Use interference robustness
  Kind regards,

• Why can't I connect to my brother MFC-J4510DW printer wirelessly? The printer is connected to the router and I can surf the web. I wonder if some security setting may be keeping it from connecting to my MacBook Pro.

  Why can't I connect to my brother MFC-J4510DW printer wirelessly? The printer is connected to the router.
  I can surf the web. My wife can print from her PC wirelessly on it.
  I wonder if some security setting may be keeping it from connecting to my MacBook Pro. I've installed the software, firmware and driver updates but
  it still shows "off line"
  with the printer power on. Any suggestions?

  All I can suggest right now is back up first the try to reset the printing system, (all printers in the list will be removed).
  Then connect directly to the printer via ethernet or to the Mac using USB and restart the efforts you have made up until now.
  As for router settings, it's possible but not likely that your router only allows a small number of clients. It's also posible that you have MAC address filtering on, lastly are you using the correct wireless protocol, (802.11a/b/g WEP or WPA etc)?

• SendAndLoad fails in mac .app version - possible security setting problem?

  Hi all,
  I'm having trouble with sendAndLoad working on the .app version of a flash application I made. So far it's only happening on one computer, so it appears to be some sort of security setting.  Here's what's going on:
  I've built a flash application (Flash 9, AS2) that has three versions: an online version, a standalone  .exe version for PC, and a standalone .app version for mac. The user must log in to use the application. Online, this is handled by the portal hosting the flash. In the standalone versions, the user must login through the flash application. Through sendAndLoad, it accesses the same database of user info as the online version. The user just enters username/password, clicks "Submit," and if it finds the combination in the database, it lets the user in. If not, it gives them a message saying they entered the wrong username/password.
  This has tested fine across macs and pcs, but sadly one macbook can't use the .app version. It launches, they put in valid username/password, hit submit and it freezes. All I can tell is that it gets the httpStatus number 0. As you can see below, I've got it set up to spit out an error message if it fails to load (login_lv.onLoad = function(success)), but it doesn't even do that.
  I've put a crossdomain.xml file at the root level of the domain that's set to allow access from any domain.
  This computer can log in successfully to the online version of the course, but the .app version seems to be hampered by some sort of security setting. The problem computer's settings match the settings of a mac I've tested successfully. It has up-to-date Flash 10 and is running Leopard. Here are security settings:
  System Preferences>Security
       General
            Everything is unchecked
       FileVault
            Turned off
       Firewall
            "Allow all incoming connections" is selected
  I'd appreciate any ideas anyone has. I'm far from wise about the ins-and-outs of mac security, so I may be missing something. I'm happy to clarify anything.
  Code is below. It loads login_lv first, then bookmark_lv. It never gets far enough to load bookmark_lv. The severAppUrl is set to a placeholder for confidentiality's sake. The path is defintely right. It works on other computers.
  Thanks!
  Mike
  // create a LoadVars instance
  var login_lv:LoadVars = new LoadVars();
  // add the login variables to pass to the server
  login_lv.userid = "";
  login_lv.pwd = "";
  login_lv.modname = "a";
  // setup login urls
  var serverAppUrl = "http://myurlhere"; //this is just a placeholder. good ol' confidentiality agreements...
  var loginUrl = serverAppUrl+"login.asp";
  // setup bookmark urls
  var bookmarkUrl = serverAppUrl+"menu.asp";
  var bookmark_lv:LoadVars = new LoadVars();
  // add the bookmark variables to pass to the server
  bookmark_lv.studentid = "";
  bookmark_lv.isAdmin = "";
  bookmark_lv.modname = "A";
  _global.modnameTemp = bookmark_lv.modname;
  // setup login function
  function doLogin() {
  login_lv.userid = login_mc.user_txt.value;
  login_lv.pwd = login_mc.pwd_txt.value;
  login_lv.sendAndLoad(loginUrl,login_lv,"GET");
  // send the login info
  login_mc.continueBtn_mc.onRelease = function() {
  this.enabled = false;
  doLogin();
  // variables will appear in the login_lv object
  login_lv.onLoad = function(success) {
  if (success) {
  if (this.studentid == undefined) {
  login_mc._x = 0;
  trace("not logged in");
  debug_mc.body_txt.text+="\nnot logged in";
  if(this.reas == "Please Complete Overview and first 3 Module(s) with at least 70 score."){
  login_mc.loginBad_mc.gotoAndStop("r2");
  login_mc.loginBad_mc._visible = true;
  } else if(this.reas == "Please Complete Overview Module first."){
  login_mc.loginBad_mc.gotoAndStop("r3");
  login_mc.loginBad_mc._visible = true;
  } else {
  login_mc.loginBad_mc._visible = true;
  } else {
  login_mc._x = 800;
  trace("now logged in");
  debug_mc.body_txt.text+="\nnow logged in";
  trace("studentid: "+this.studentid);
  trace("isAdmin: "+this.isAdmin);
  //track variables for later use
  _global.studentidTemp = this.studentid;
  _global.isAdminTemp = this.isAdmin;
  bookmark_lv.studentid = ""+this.studentid+"";
  bookmark_lv.isAdmin = ""+this.isAdmin+"";
  bookmark_lv.sendAndLoad(bookmarkUrl,bookmark_lv,"GET");
  }else{
  debug_mc.body_txt+="\nlogin load error"
  login_lv.onHTTPStatus = function(httpStatus:Number) {
      this.httpStatus = httpStatus;
      if(httpStatus < 100) {
          this.httpStatusType = "flashError";
      else if(httpStatus < 200) {
          this.httpStatusType = "informational";
      else if(httpStatus < 300) {
          this.httpStatusType = "successful";
      else if(httpStatus < 400) {
          this.httpStatusType = "redirection";
      else if(httpStatus < 500) {
          this.httpStatusType = "clientError";
      else if(httpStatus < 600) {
          this.httpStatusType = "serverError";
  debug_mc.body_txt.text+="\n login_lv HTTPStatus number="+httpStatus+" HTTPStatus type="+this.httpStatusType;
  //prepare bookmarkXML to receive returned info from bookmark_lv function
  var bookmarkXML = new XML();
  bookmarkXML.ignoreWhite = true;
  bookmarkXML.onLoad = bookmark_lv;
  // variables will appear in the bookmark_lv object
  bookmark_lv.onLoad = function(success) {
  if (success) {
  trace("bookmarked");
  debug_mc.body_txt.text+="\nbookmarked";
  trace("bookmarkXML: "+bookmarkXML);
  var bookmarkNode = mx.xpath.XPathAPI.selectNodeList(this.firstChild, "/bookmark");
  trace("bookmarkNode: "+bookmarkNode);
  var bookmarker:String = unescape(eval("bookmark_lv"));
  trace("bookmarker: "+bookmarker);
  bookmarker = bookmarker.split("<xml>").join("");
  bookmarker = bookmarker.split("<bookmark").join("");
  bookmarker = bookmarker.split("/bookmark>").join("");
  bookmarker = bookmarker.split("</xml>").join("");
  var startIndex:Number;
  var endIndex:Number;
  startIndex = bookmarker.indexOf(">");
  trace(startIndex);
  endIndex = bookmarker.indexOf("<");
  trace(endIndex);
  var bookFinally:String;
  bookFinally = bookmarker.substr(startIndex+1, endIndex-2);
  bookFinally = bookFinally.split("<").join("");
  setBookmarkStr = ""+bookFinally+"";
  trace("string: "+setBookmarkStr);
  _global.newBookmark = bookFinally;
  play();
  }else{
  debug_mc.body_txt+="\nbookmark load error"
  bookmark_lv.onHTTPStatus = function(httpStatus:Number) {
      this.httpStatus = httpStatus;
      if(httpStatus < 100) {
          this.httpStatusType = "flashError";
      else if(httpStatus < 200) {
          this.httpStatusType = "informational";
      else if(httpStatus < 300) {
          this.httpStatusType = "successful";
      else if(httpStatus < 400) {
          this.httpStatusType = "redirection";
      else if(httpStatus < 500) {
          this.httpStatusType = "clientError";
      else if(httpStatus < 600) {
          this.httpStatusType = "serverError";
  debug_mc.body_txt.text+="\n bookmark_lv HTTPStatus number="+httpStatus+" HTTPStatus type="+this.httpStatusType;

  try using different loadvars instances for your send loadvars and for your receive loadvars.