Security to be added

Similar Messages

• New security group then added into either built in administrator or domain admin group

  I am having windows 2012 R2 DC so i need to create administrator group please let me know if we create new security group then added into either built in administrator or domain admin group it will work? i have tried but not working any other alternative
  methods to get admin access

  Controlling local group membership could be done by GPOs:
  Using Group Policy Restricted Groups: http://social.technet.microsoft.com/wiki/contents/articles/20402.active-directory-group-policy-restricted-groups.aspx
  Using a startup script that adds a domain group as member of a local group: http://technet.microsoft.com/en-us/library/bb490706.aspx
  If you have manually added a domain security group to local Administrators group of a computer and you still see that the members are not admins then you can do the following:
  Logoff and logon again and see if that helps
  If you are using a universal group then you be having a problem with the membership. More details here: http://www.windowsdevcenter.com/pub/a/windows/2004/06/15/fsmo.html. You can try converting the group to a global one for testing.
  Adding a user to Domain Admins group will make you, by default, a local administrator on domain-joined Windows Systems. This is because, domain admins are, by default, members of local Administrators group. However, you should make the membership of Domain
  Admins group very limited and only for users who do global domain administration.
  This posting is provided AS IS with no warranties or guarantees , and confers no rights.
  Ahmed MALEK
  My Website Link
  My Linkedin Profile
  My MVP Profile

• Most secure method of adding windows for my limited purposes?

  I only need windows on this particular computer, a Macbook 13 inch 2.1 Ghz with 2 GB RAM ("111.47 GB hard disk space capacity") to run Internet Explorer in those instances where my Mac browsers (Safari, Firefox, Opera thus far) will not work on some part of a website (for instance, try ordering something on equifax.com - a major site that's not fully mac compatible). I have the latest update of Leopard. I bought the computer in the past three weeks and have run software update regularly.
  I did not want to put windows on this computer when I originally bought it. Now it appears from the failure of Mac browsers to work in some situations, I have to put windows on. I'm not even sure I can find XP although I had it on my old HP desktop I'm getting rid of. I might be forced to buy Vista and I don't have probably enough space for it to run well, do I? Do I need to upgrade to 4 gb RAM? Expensive.
  Anyway, for security purposes, I want to be very cautious in how I use windows. I found keyloggers and periodically had files show up on my old windows computer in AVG, Ad-Aware, Spybot and other programs that worried me (most recently "Omniquad" kept showing up even after I deleted it and AVG free has no notes on what this means).
  Is the least vulnerable way as far as internet viruses to run windows on my Mac to just install it in BootCamp assistant and reboot when I need it? Or theoretically is there any more vulnerability if I use VMware Fusion or Parallels with it? Do I first set it up in Bootcamp assistant (what partition size?) before I worry about choosing Vmware Fusion or Parallels? Or do I need to install one of those before I install windows?
  What was it someone was saying in a different thread about needing to edit one's "virtual machine" -- see below:
  +"One other tip, I would recommend editing the virtual machine before activation of windows to use emulate the same MAC address for your virtual ethernet card in parallels as for your real network card. This seems to convince WIN XP at lease that it is the same machine whether you boot it through boot camp or through Parallels. Otherwise, activation quickly becomes a pain."+
  (Where would my virtual machine be?)
  And also, do I need to do some special reconfiguration with my router manufacturer (Linksys) after adding windows through bootcamp and/or Parallels/Vmware in order for the the windows side to connect to the internet as my Mac is doing?
  Also: should I get Windows XP Professional or Vista in this situation with the small Macbook and limited needs? I hope XP will still be used years from now.
  P.S. I wish it weren't so hard to find out how to do all this. It makes me not want to go through this again with another computer and I actually need another.

  VMWare Fusion and Parallels create Virtual Machines. When you are running Windows inside the Mac os
  you are running a Windows Virtual Machine. A Virtual Machine accesses the physical machine differently than a Boot Camp installation, since it is going through Fusion or Parallels, which is why set-up is trickier. See this wiki article: http://en.wikipedia.org/wiki/Virtual_machine
  XP Pro was originally aimed at businesses and power users. It can access 2 physical processors (in contrast to two cores on one processor), so it benchmarks faster on my Mac Pro which has 2 dual core processors. It also has some advanced networking features. I use both XP and XP Pro at home and don't notice much difference in day to day use. You did buy the superior version of XP, and since it is aimed at businesses, Microsoft will continue to provide security updates for it long after they stop providing them for XP. So you will get some value from buying it.
  Its great that you are checking the AV Comparative site for yourself and not just relying on my opinion. The version of Avira they are using in the tests however is the Premium version, not the free version. If you notice on the AV Comparatives site, there are 2 types of tests, on demand and proactive. One reason I prefer paid versions of anti-virus software is that only they provide proactive protection. On demand protection relies on signature files that the AV company provides your copy of the program - when you update an AV program you are updating the signature files. Signature files allow the program to recognize any known virus. They will not catch something new - this is why when a new virus arrives it spreads so quickly - no one has a signature file for it so their AV program doesn't recognize it as a threat. Then your AV program gets a signature file update and you can scan and find the virus. Proactive protection works differently. It looks for certain features in a file that are common to virus files. If the file fits this profile, the program will block it even though it doesn't have a signature file for that particular virus yet. So while everyone else gets the virus maybe you don't (if you notice, the success rate for proactive protection is much lower than on demand). Yet some programs, like NOD32 and (usually) Kaspersky do proactive much better than other programs (don't know why Kaspersky slipped so much this time). I prefer NOD32 because it not only rates advanced plus in both on demand and proactive but also update signature files very quickly, uses few system resources so it doesn't slow you down, and works quietly behind the scenes
  (Kaspersky can bug you to death sometimes).

• How to change security questions after adding a second email address?

  I'm at a loss and really really frustrated with Apple for the first time in my life.
  I've added a second email address and tried over the last 3 days on my iPad and Mac to change my security questions. There is no option present that I can see that allows you to do this without first entering the answers. (to which I don't know anymore)
  I called Apple support (even in english) and every time the call has been dropped.
  In all the years since switching to Apple I've always been impressed with the level of customer service. This is the first time that I've felt this level of sincere frustration.
  I'm not sure why I have to book a time to speak with someone. Updating or changing security questions, should be a process one can do over the internet. I'm confused either way why questions are necessary if the apple password entered was correct. It's not my bank account; why the need for such extreme security just to download an app paid for by an iTunes card!
  Any help or direction would be appreciated!!
  Thank you
  Kate

  Hello there, Kate.
  Apologies for your frustration. For your security the existing questions need to be answered before new ones can be created. The following Knowledge Base article provides some additional steps to try if you are unsure of the answers to the existing ones:
  Apple ID: All about Apple ID security questions
  http://support.apple.com/kb/HT5665
  Specifically:
  What should I do if I don't remember the answers to my Apple ID security questions?
  Try answering them at least once to see if you can get them right, even if you are not sure you remember the answers to your security questions.
  If you are confident you can't remember them, try one of the following:
  If you have three security questions and a rescue email address
  sign in to My Apple ID and select the Password and Security tab to send an email to your rescue email address to reset your security questions and answers. 
  If you have one security question and you know your Apple ID passwordsign in to My Apple ID and select the Password and Security tab to reset your security question.
  If you have one security question, but don't remember your Apple ID password
  contact Apple Support for assistance. Learn more about creating a temporary support PIN to help Apple confirm your identity when you contact Apple Support.
  Note: If you have forgotten your password and answer your security questions incorrectly too many times in a row, you will be unable to try to answer your security questions for a period of time. During that time you will not be able to reset your password and will not have access to your account.
  Thanks for reaching out to Apple Support Communities.
  Cheers,
  Pedro D.

• Firefox won't allow security certificate, even adding new will add a expired one. Clock is correct.

  So i was trying to get into a admin panel for my mumble server.
  www.mmo-mumble.com
  But for some reason firefox decided this website is unsecured.
  So i checked my security certificate and it was showing it expired yesterday.
  I can get into that one, but when i removed it.
  It did not even ask me to add a new one after visiting the site again.
  I cannot even ignore the warning and continue to the site.
  Adding the certificate manually worked, but it added one which was already expired.

  I have experienced this problem exactly as the OP has described. I have to open task manager to temporarily restore Firefox functionality.
  Also, my sister bought a new HP PC about a month ago. I intalled Firefox on it, and she also sees this problem.
  I've been forced to go back to IE (which does not have this problem) until Firefox can sort this out, which hopefully will be soon.

• Security Deposit for adding new lines

  Hi, I have an AtnT family plan for about 8 months now. Some of my friends want to join my plan but they are reluctant to pay any security deposit. Could you please let me know if it is needed in the first place?

  Hi there
  I’d be happy to help address your concerns regarding security deposits!
  While a deposit is not always required, it is determined automatically based upon a number of factors including credit score of the account holder and any associated AT&T payment history. If a deposit is indeed required to add additional lines to your account, the deposit is refunded to you after 12 months from the payment date with good payment history.
  I hope this helps!
  Charise

• Help with asp ... security levels

  I made a change to the security level for the end user. i add
  a security feature by adding 12345 to their security level.
  <%@LANGUAGE="VBSCRIPT"%>
  <%Option Explicit%>
  <%
  'check to see if the page is submitted
  Dim validLogin
  Dim strErrorMessage
  Dim intLevel
  Dim sLevel
  If (Request.Form("uname")<>"") Then
  'user has submitted the form
  'get the entered values and hit the database
  Dim strUserName
  Dim strPassword
  'going to use an implicit connection, no connection object
  needed
  Dim objRS
  strUserName = UCase(Request.Form("uname"))
  strPassword = UCase(Request.Form("pwd"))
  response.write("strUserName")
  'prepare the RS
  Set objRS = Server.CreateObject("ADODB.Recordset")
  'set the sql statement
  objRS.Source = "SELECT * FROM tblEmployee WHERE
  strEmpUserName = '" & strUserName & "' AND strEmpPassword =
  '" & strPassword & "'"
  ' heres the implicit connection
  objRS.ActiveConnection =
  "Provider=Microsoft.Jet.OLEDB.4.0;Data
  Source=c:\Inetpub\db\IMPCustomers.mdb"
  objRS.CursorType = 0
  objRS.CursorLocation = 3
  objRS.Open
  'check for EOF
  If(objRS.EOF) Then
  'no records matched, invalid login
  Response.Redirect("invalidLogin.asp")
  'strErrorMessage = "Invalid Login. Try Again."
  validLogin = false
  Else
  'added intLevel to add more security on 3/29/07
  intLevel = Cint(objRS("intEmpSecurityLevel"))
  intLevel = intLevel + 12345
  sLevel = intLevel
  'valid login, set session variables
  Session("username") = UCase(strUserName)
  Session("userpass") = UCase(strPassword)
  Session("sLevel") = sLevel
  'Session("sLevel") = objRS("intEmpSecurityLevel") - changed
  to add more security on 3/29/07
  Session("fn") = objRS("strEmpFN")
  'release the RS
  Set objRS.ActiveConnection = Nothing
  Set objRS = nothing
  'redirect off this page
  Response.Redirect("custSearch.asp")
  End If
  End If
  %>
  I'm now having trouble removing the 12345 from their security
  level in the custSearch.asp.
  <%@LANGUAGE="VBSCRIPT"%>
  <%Option Explicit%>
  <%
  Dim strUserName
  Dim strPassword
  Dim intSLevel
  Dim isum
  Dim intS
  Dim intNewSLevel
  Dim sLevel
  Dim strFN
  Dim strErrorMessage
  Dim strError
  'get pass parameters
  strUserName = Session("username")
  strPassword = Session("userpass")
  intSLevel = Session("sLevel")
  'add on 3/29/07 for security
  'get the security level
  isum = sLevel
  'take isum which contains sLevel and subtract 12345 from it
  isum = isum - 12345
  'now intS equals security level in the db
  intS = isum
  'put into a session
  Session("intS") = intS
  strFN = Session("fn")
  strErrorMessage = ("strError")
  'If strErrorMessage = "" Then
  'strError = "There is no customer with that last name."
  'End If
  %>
  <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0
  Transitional//EN" "
  http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
  <html xmlns="
  http://www.w3.org/1999/xhtml">
  <head>
  <title>Employee Intranet - Customer Database, Search
  for a particular customer.</title>
  <meta http-equiv="content-type" content="text/html;
  charset=utf-8" />
  <link rel="stylesheet" type="text/css"
  href="../css/pop_style.css" />
  <link rel="stylesheet" type="text/css"
  href="../css/forms.css" />
  <style type="text/css">
  /* HMTL selectors start here */
  h2 {
  margin-bottom:15px;
  p {
  margin-bottom:20px;
  hr {
  border:thin;
  border-color:#CCCCCC;
  border-style:dotted;
  width:100%;
  text-align:center;
  table {
  width:300;
  align:center;
  cellpadding:2px;
  cellspacing:2px;
  margin-left:30%;
  td {
  font-size:14px;
  font-style:normal;
  font-weight:normal;
  border:0;
  padding:0;
  /* HMTL selectors start here */
  /* ID selectors start */
  #mainText {
  height:400px;
  font-family:Arial, Helvetica, sans-serif;
  font-size:14px;
  text-align:left;
  margin-left:1%;
  margin-right:1%;
  padding: 10px 5px;
  word-spacing:1px;
  letter-spacing:1px;
  /* id ends here */
  </style>
  <script language="JavaScript" type="text/JavaScript">
  <!-- function MM_reloadPage(init) { //reloads the window
  if Nav4 resized if (init==true) with (navigator) {if
  ((appName=="Netscape")&&(parseInt(appVersion)==4)) {
  document.MM_pgW=innerWidth; document.MM_pgH=innerHeight;
  onresize=MM_reloadPage; }} else if (innerWidth!=document.MM_pgW ||
  innerHeight!=document.MM_pgH) location.reload(); }
  MM_reloadPage(true); //-->
  </script>
  </head>
  <body>
  <!-- CASCADING POPUP MENUS v5.2 by Angus Turnbill
  http://www.twinhelix.com -->
  <script language="javascript" type="text/javascript"
  src="../js/pop_core.js"></script>
  <script language="javascript" type="text/javascript"
  src="../js/pop_data.js"></script>
  <!-- border begins here -->
  <div id="border">
  <!-- second nav start here -->
  <div id="secNavBar"><a
  href="../index.htm">Home</a>  |  <a
  href="../htm/quality.htm">Quality</a> 
  |  <a href="../htm/contactUs.htm">Contact
  Us</a>  | <a
  href="../htm/siteMap.htm"> Site
  Map</a></div>
  <!-- logo starts here -->
  <div id="logo">
  <img src="../art/NewLogo.jpg" alt="Logo of IMPulse NC,
  INC." usemap="#Map" />
  <map name="Map" id="Map">
  <area shape="rect" coords="5,3,280,74"
  href="../index.htm" alt="Return to home page" />
  </map>
  </div>
  <!-- primary navigation div tags starts here -->
  <div id="priNav">
  <a id="home" name="home"
  style="visibility:hidden;">Home</a>
  <!-- primary navigation div tags ends here -->
  </div>
  <!-- main text starts here -->
  <div id="mainText">
  <h2>Customer Database </h2>
  <p
  style="font-size:14px;font-style:normal;font-weight:normal;">Welcome
  <%=strFN%></p>
  <p
  style="font-size:14px;font-style:normal;font-weight:normal;">Please
  search for a customer by using the fields below. You can use one
  field or multiple fields for your search.</p>
  <!-- signIn form starts here -->
  <div id="signIn">
  <div id="CSearch">
  <table>
  <form action="results.asp" method="post" name="search"
  id="search">
  <tr>
  <td width="98" height="29">Last Name:</td>
  <td width="150" tabindex="1"><input type="text"
  name="clname" size="25" maxlength="25" /></td>
  </tr>
  <tr>
  <td height="30">First Name:</td>
  <td tabindex="2"><input type="text" size="25"
  maxlength="25" name="cfname" /></td>
  </tr>
  <tr>
  <td height="30">Company:</td>
  <td tabindex="3"><input type="text" size="25"
  maxlength="25" name="ccomp" /></td>
  </tr>
  <tr>
  <td height="48" colspan="2" tabindex="4">
  <input type="submit" name="login" value="Submit" />
  <input type="reset" name="Reset" value="Reset" />
  <a href="logOut.asp">
  <input type="button" name="logOut" value="Log Out" />
  </a> </td>
  </tr>
  </form>
  </table>
  <!-- customer search form ends here -->
  </div>
  <blockquote> </blockquote>
  <!-- signIn form ends here -->
  </div>
  <!-- main text ends here -->
  </div>
  <div id="btm_Bar">
  100 IMPulse Way • Mount Olive, North Carolina 28365
  • Main (919) 658-2200 • Fax (919) 658-2268<br />
  &copy;2006 IMPulse NC, Inc. All Rights Reserved. </div>
  </div>
  <script language="javascript" type="text/javascript"
  src="../js/pop_events.js"></script>
  <!-- Places text blinker in the uname text box thru
  javascript -->
  <script language="javascript" type="text/javascript">
  document.search.clname.focus();
  </script>
  <!-- javascript ends here -->
  <%
  Response.Write(Session("username")) & "<br />"
  Response.Write(Session("userpass")) & "<br />"
  Response.Write(Session("sLevel")) & "<br />"
  Response.Write(Session("intS")) & "<br />"
  %>
  </body>
  </html>
  What am I doing wrong?

  "pqer" <[email protected]> wrote in message
  news:eugsik$kt5$[email protected]..
  > What am I doing wrong?
  1. You're allowing unfiltered user input into your SQL query.
  I could do
  some horrible damage to your system.
  2. You have SELECT * in your query.
  3. You're doing something that doesn't make any sense. Why
  add a constant
  to the security level just to subtract it again when you
  actually want to
  use it? You're just making more work for yourself. There is
  no benefit
  there.

• How can I securely erase the hard drive for PowerBook G4 running 10.2.3?

  I'm about to sell a PowerBook G4 12-inch running 10.2.3 after I erased the hard drive via the the original software install and restore disk. There was no secure erase option like there is in subsquent versions of OSX. Is there a way I can do a 7 (or 35) time erase on this machine? Thanks!

  See this Apple note. Secure erase was added in 10.2.3, but in a different place than later releases.

• Extracting username and password from security header

  Hey all,
  I'm writing a BPEL process that invokes two secured web services. One of them authenticates using Username Token and the other has a authenticate method in which the username and password are supplied as Strings. I have successfully propagated the credentials from the BPEL process to the web service using Username Token by doing the following:
  1) I secured my BPEL process
  2) I imported oasis-200401-wss-wssecurity-secext-1.0.xsd and from it created a variable of type Security
  3) I added the security variable to the Header Variables for the BPEL process input
  4) I added the security variable to the Input Header Variables for the web service's invoke operation
  This worked fine. However, I need to be able to extract out the username and password and supply them as Strings to the authenticate method of the other web service. How can this be done? If it can't, what are some alternatives?
  Environment:
  JDeveloper 11.1.1.6.0
  Thanks,
  Bill

  Hi Sri,
  If I understand your steps correctly, I think the problem I'm having rests with the second step. I don't know how to get a hold of the username and password to assign to the local variables you mention. The BPEL process itself uses Username Token for authentication. These credentials need to be passed to the web services invoked within the BPEL process. If I assign the security header variable directly to the string output for the BPEL process, the string returned will be the complete XML security header, which includes the username and password. However, the security header variable itself doesn't expose the username and password directly. In other words, I can't expand the security header variable node in the dialog for editing the Assign operation and get to the username and password. I think one solution is to parse out the username and password from the complete XML security header using string operations (substring, index-within-string, etc). Also, regarding step 4, I'm not sure if passing the credentials in the header will work for this web service. I think the web service is expecting the credentials as parameters to its authenticate method.
  Thanks,
  Bill

• Problem in updating a java client to invoke data-secured web service

  hello
  i'm following the document 'programming weblogic web services' to use ws-security
  functionality to encrypt & digitally sign SOAP Request & Response
  and I first made a client that calls a secure weblogic web service.
  ( using a keystore having RSA key pair. )
  the code is like below -----------------------------------------------------------------
  final KeyStore keystore = loadKeystore(CLIENT_KEYSTORE, KEYSTORE_PASS);
  TestEJB_Impl service = new TestEJB_Impl("file:///C:/bea/user_projects/domains/FirstDomain/working/TestEJB_with_Security_surpport.wsdl");
  WebServiceContext context = service.context();
  System.out.println("passing context info to the client");
  X509Certificate clientcert;
  clientcert = getCertificate(CLIENT_KEYNAME, keystore);
  PrivateKey clientprivate;
  clientprivate = getPrivateKey(CLIENT_KEYNAME, CLIENT_KEYPASS, keystore);
  WebServiceSession session = context.getSession();
  session.setAttribute(WSSEClientHandler.CERT_ATTRIBUTE, clientcert);
  session.setAttribute(WSSEClientHandler.KEY_ATTRIBUTE, clientprivate);
  UserInfo ui = new UserInfo(AUTHENTICATION_USER, AUTHENTICATION_USER_PASS);
  session.setAttribute(WSSEClientHandler.REQUEST_USERINFO, ui);
  TestEJBPort port = service.getTestEJBPort();
  String result = null;
  result = port.firstMethodTest("A123");
  System.out.println(result);
  and there comes error stacktrace like below ------------------------------
  <Info> <WebService> <BEA-220024> <Handler
  weblogic.webservice.core.handler.WSSEClientHandler threw an exception from its
  h
  andleRequest method. The exception was:
  weblogic.xml.security.SecurityConfigurationException: Failed adding encryption
  t
  o request - with nested exception:
  [weblogic.xml.security.SecurityProcessingException: No keywrapping algorithm ava
  ilable for DSA keys].>
  Exception in thread "main" java.rmi.RemoteException: SOAP Fault:javax.xml.rpc.so
  ap.SOAPFaultException: Exception during processing: weblogic.xml.security.Securi
  tyConfigurationException: Failed adding encryption to request - with nested exce
  ption:
  [weblogic.xml.security.SecurityProcessingException: No keywrapping algorithm ava
  ilable for DSA keys] (see Fault Detail for stacktrace)
  Detail:
  <detail>
  <bea_fault:stacktrace xmlns:bea_fault="http://www.bea.com/servers/wls70/webse
  rvice/fault/1.0.0">
  </bea_fault:stacktrace>weblogic.xml.security.SecurityProcessingException: No
  ke
  ywrapping algorithm available for DSA keys
  at weblogic.xml.security.wsse.v200207.SecurityImpl.getWrappingAlgorithm(
  SecurityImpl.java:200)
  at weblogic.xml.security.wsse.v200207.SecurityImpl.addEncryption(Securit
  yImpl.java:175)
  at weblogic.xml.security.wsse.v200207.SecurityImpl.addEncryption(Securit
  yImpl.java:153)
  i am using RSA key pair but, when i use DSA key pair , the error message is same
  as above.
  what is problem? and what am i missing?

  Hello,
  The current implementation only supports RSA key types as legal
  wrapping. It is on the TODO list to expand this to other algorithms.
  Regards,
  Bruce
  dolso wrote:
  >
  hello
  i'm following the document 'programming weblogic web services' to use ws-security
  functionality to encrypt & digitally sign SOAP Request & Response
  and I first made a client that calls a secure weblogic web service.
  ( using a keystore having RSA key pair. )
  the code is like below -----------------------------------------------------------------
  final KeyStore keystore = loadKeystore(CLIENT_KEYSTORE, KEYSTORE_PASS);
  TestEJB_Impl service = new TestEJB_Impl("file:///C:/bea/user_projects/domains/FirstDomain/working/TestEJB_with_Security_surpport.wsdl");
  WebServiceContext context = service.context();
  System.out.println("passing context info to the client");
  X509Certificate clientcert;
  clientcert = getCertificate(CLIENT_KEYNAME, keystore);
  PrivateKey clientprivate;
  clientprivate = getPrivateKey(CLIENT_KEYNAME, CLIENT_KEYPASS, keystore);
  WebServiceSession session = context.getSession();
  session.setAttribute(WSSEClientHandler.CERT_ATTRIBUTE, clientcert);
  session.setAttribute(WSSEClientHandler.KEY_ATTRIBUTE, clientprivate);
  UserInfo ui = new UserInfo(AUTHENTICATION_USER, AUTHENTICATION_USER_PASS);
  session.setAttribute(WSSEClientHandler.REQUEST_USERINFO, ui);
  TestEJBPort port = service.getTestEJBPort();
  String result = null;
  result = port.firstMethodTest("A123");
  System.out.println(result);
  and there comes error stacktrace like below ------------------------------
  <Info> <WebService> <BEA-220024> <Handler
  weblogic.webservice.core.handler.WSSEClientHandler threw an exception from its
  h
  andleRequest method. The exception was:
  weblogic.xml.security.SecurityConfigurationException: Failed adding encryption
  t
  o request - with nested exception:
  [weblogic.xml.security.SecurityProcessingException: No keywrapping algorithm ava
  ilable for DSA keys].>
  Exception in thread "main" java.rmi.RemoteException: SOAP Fault:javax.xml.rpc.so
  ap.SOAPFaultException: Exception during processing: weblogic.xml.security.Securi
  tyConfigurationException: Failed adding encryption to request - with nested exce
  ption:
  [weblogic.xml.security.SecurityProcessingException: No keywrapping algorithm ava
  ilable for DSA keys] (see Fault Detail for stacktrace)
  Detail:
  <detail>
  <bea_fault:stacktrace xmlns:bea_fault="http://www.bea.com/servers/wls70/webse
  rvice/fault/1.0.0">
  </bea_fault:stacktrace>weblogic.xml.security.SecurityProcessingException: No
  ke
  ywrapping algorithm available for DSA keys
  at weblogic.xml.security.wsse.v200207.SecurityImpl.getWrappingAlgorithm(
  SecurityImpl.java:200)
  at weblogic.xml.security.wsse.v200207.SecurityImpl.addEncryption(Securit
  yImpl.java:175)
  at weblogic.xml.security.wsse.v200207.SecurityImpl.addEncryption(Securit
  yImpl.java:153)
  i am using RSA key pair but, when i use DSA key pair , the error message is same
  as above.
  what is problem? and what am i missing?

• How do I disable security settings on PDF fillable form?

  The PDF fillable form was made in Word and saved as a PDF. I tried copying it then bringing into Acrobat Pro X to make it a fillable form. Saved with Enabled Features but when opened into Reader I get a security warning restricting adding text or placing a signature. I've tried changing setting and can't figure out what is wrong or even if it's possible it fix this.
  Does anyone know how to fix this?
  Kwiley

  It is "The security settings on this document prevent adding text and /or placing a signature on it from Adobe Reader. To fill and sign this document you need to print it out."  These forms need to be fillable because they change and then my client places her signature or her bosses signature on the page.  Is there another way to do this?
  Thanks,
  Kathy

• Security manager & mention "Java Applet Window"

  A simple program that displays a frame with one button in it.
  The frame displays, no problem.
  When a security manager is added "System.setSecurityManager(new SecurityManager());"
  and the program is run again a "status bar" is added at the bottom of the frame
  mentioning "Java Applet Window".
  Why is that, and can it be suppressed ? (I am working in JDK 1.4)
  Any tip greatly appreciated

  I was dealing with this myself and just discovered that the adding the following line to my security policy removed the message:
  permission java.awt.AWTPermission "showWindowWithoutWarningBanner";

• ADF security from Datababse

  Hello ,
  I am using JDeveloper 11.2.3.0.
  I am using ADF security and I am using DB tables for authentication.
  I created the DB authentication in th weblogic and I inserted the SQL queries in the provider configuration.
  In the ADF app , I enabled adf security. I added the enterprise roles as mentioned in my DB tables. I created the application roles and I gave grants to users.
  My problem is , when I run the application, the users are not loaded from weblogic but recreated with new IDs and like that the DB doesn't assign roles to every user ( because fdifferent ID).
  Any want knows how to solve this problem ??
  thanks in advance
  FARAJ

  Hello frank,
  My problem is , when I run the application , the application roles are not loaded from DB ( as in weblogic ) but they are recreated with new IDs.
  I have 3 tables : users , roles and grant_roles.
  when I run the application , the roles are deleted and recreated with new IDs :
  before running :
  table user :
  ID | User ......
  1 | x
  table roles:
  ID | role ......
  2 | y
  table grant_roles:
  ID | role | user
  3 | 2 | 1
  after running the tables become :
  table user :
  ID | User ......
  1 | x
  table roles:
  ID    |    role ......
  *4 |* y
  table grant_roles:
  ID | role | user
  3 | 2 | 1
  Edited by: Faraj on Feb 13, 2013 5:56 AM

• SOAP message security fault:FailedCheck error

  Hi,
  I have a client application that adds a signature to the SOAP request. (Most of
  the code has been taken from "Writing the Java Code to Invoke a Secure Non-WebLogic
  Web Service" at http://e-docs.bea.com/wls/docs81/webserv/security.html)
  Enabling the jvmarg verbose flag in build.xml indicates that the request going
  out has a wsse:Security element with a signature, binary and username token.
  The response from the server is as follows :
  [java] <env:Envelope xmlns:env="http://schemas.xmlsoap.org/soap/envelope/"
  xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:soapenc="http://sche
  mas.xmlsoap.org/soap/encoding/" xmlns:xsd="http://www.w3.org/2001/XMLSchema"><en
  v:Header/><env:Body><env:Fault xmlns:fault="http://schemas.xmlsoap.org/ws/2002/0
  7/secext"><faultcode>fault:FailedCheck</faultcode><faultstring>failed security
  c
  heck for message body</faultstring></env:Fault></env:Body></env:Envelope>
  After which i get a javax.xml.rpc.soap.SOAPFaultException: failed security check
  for message body.
  I believe that i maybe getting this error because the server is unable to verify
  the signature for some reason. Am i missing something here?
  Also please let me know if you need more information to diagnose the problem.
  thanks,
  Nadeem.

  The root cause being:
  [java] [weblogic.xml.security.encryption.EncryptionException: http://www.w3
  org/2001/04/xmlenc#tripledes-cbc can only be used with a domestic license]].>
  I believe the security frameworks checks the WebLogic license file
  (license.bea) to determine whether to use domestic or international
  strength encryption.
  Nadeem Ilkal wrote:
  Hi Bruce,
  I tried the example you pointed out and i am getting the following exception.
  The signature and encryption verbose flags are enabled by default in build.xml.
  run:
  [java] <Jun 2, 2003 11:19:22 AM PDT> <Info> <webservice> <BEA-220024> <Hand
  ler weblogic.webservice.core.handler.WSSEClientHandler threw an exception from
  i
  ts handleRequest method. The exception was:
  [java] weblogic.xml.security.SecurityConfigurationException: Failed adding
  encryption to request - with nested exception:
  [java] [weblogic.xml.security.SecurityProcessingException: Problem adding
  e
  ncrypted key - with nested exception:
  [java] [weblogic.xml.security.encryption.EncryptionException: http://www.w3
  org/2001/04/xmlenc#tripledes-cbc can only be used with a domestic license]].>
  [java] java.rmi.RemoteException: SOAP Fault:javax.xml.rpc.soap.SOAPFaultExc
  eption: Failed adding encryption to request; nested exception is:
  [java] javax.xml.rpc.soap.SOAPFaultException: Failed adding encryption
  to request
  [java] at sign.SecurityPort_Stub.echo(SecurityPort_Stub.java:30)
  [java] at sign.SecureClient.main(SecureClient.java:63)
  [java] Caused by: javax.xml.rpc.soap.SOAPFaultException: Failed adding encr
  yption to request
  [java] at weblogic.webservice.core.ClientDispatcher.receive(ClientDispa
  tcher.java:270)
  [java] at weblogic.webservice.core.ClientDispatcher.dispatch(ClientDisp
  atcher.java:131)
  [java] at weblogic.webservice.core.DefaultOperation.invoke(DefaultOpera
  tion.java:430)
  [java] at weblogic.webservice.core.DefaultOperation.invoke(DefaultOpera
  tion.java:416)
  [java] at weblogic.webservice.core.rpc.StubImpl._invoke(StubImpl.java:2
  75)
  [java] at weblogic.webservice.core.rpc.StubImpl._invoke(StubImpl.java:2
  50)
  [java] at sign.SecurityPort_Stub.echo(SecurityPort_Stub.java:27)
  [java] ... 1 more
  [java] Exception in thread "main"
  [java] Java Result: 1
  thanks,
  Nadeem.
  Bruce Stephens <[email protected]> wrote:
  Hello,
  Have you tried going through the example:
  http://webservice.bea.com/index.html#qz15 and making sure this works
  OK
  for you?
  Also, try the following system properties to view more runtime security
  information:
  weblogic.xml.encryption.verbose=true
  weblogic.xml.signature.verbose=true
  HTH,
  Bruce
  Nadeem Ilkal wrote:
  Hi,
  I have a client application that adds a signature to the SOAP request.
  (Most of
  the code has been taken from "Writing the Java Code to Invoke a Secure
  Non-WebLogic
  Web Service" at http://e-docs.bea.com/wls/docs81/webserv/security.html)
  Enabling the jvmarg verbose flag in build.xml indicates that the request
  going
  out has a wsse:Security element with a signature, binary and username
  token.
  The response from the server is as follows :
  [java] <env:Envelope xmlns:env="http://schemas.xmlsoap.org/soap/envelope/"
  xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:soapenc="http://sche
  mas.xmlsoap.org/soap/encoding/" xmlns:xsd="http://www.w3.org/2001/XMLSchema"><en
  v:Header/><env:Body><env:Fault xmlns:fault="http://schemas.xmlsoap.org/ws/2002/0
  7/secext"><faultcode>fault:FailedCheck</faultcode><faultstring>failed
  security
  c
  heck for message body</faultstring></env:Fault></env:Body></env:Envelope>
  After which i get a javax.xml.rpc.soap.SOAPFaultException: failed security
  check
  for message body.
  I believe that i maybe getting this error because the server is unable
  to verify
  the signature for some reason. Am i missing something here?
  Also please let me know if you need more information to diagnose the
  problem.
  thanks,
  Nadeem.
  [att1.html]

• Security sync issue with a newly create group

  We have created some groups like A to D . in that for C we are not able to refresh the security . we have added 2 users only. later we have deleted the group and created the same. even then also we are not able to find the group or not able to do refresh from web. its telleing failed. if i check the log i found like : another child with name C already exists under parent. failed to sync with user provisions. Could you please suggest me any solution on this to resolve it.
  Edited by: user4483519 on Sep 30, 2009 4:52 AM

  So you can see the MSAD group in the user management console as well as the users part of this group, right?
  Try deprovisioning the group completely, then synch native directory, refresh security from Shared Services (in AAS - Only if you have externalised your Essbase users) and run a Planning security refresh.
  In theory the refresh should complete successfully.
  If it does try reprovisioning your group.
  Are you sure you dont have another group or user called C either in your MSAD directory or in the native directory?
  Seb
  www.capiotech.com