Security to be added
HiAll,
I have created a Y program and attached it to a transaction code. Now the requirement is i need to add security to that program.
I have sytem profile like activity group,testid,password and validenddate. How should i add security programmatically??
Is this something related to release managament?/
Rgds,
Sri
DATA NO_AUTH.
SELECT COUNT( * ) FROM AGR_USERS
WHERE AGR_NAME EQ 'YGCA_CUSTOMIZING_TEAM_1M'
AND UNAME EQ SY-UNAME
AND FROM_DAT LE SY-DATUM
AND TO_DAT GE SY-DATUM.
IF SY-SUBRC NE 0.
NO_AUTH = 'X'.
ENDIF.
Similar Messages
-
New security group then added into either built in administrator or domain admin group
I am having windows 2012 R2 DC so i need to create administrator group please let me know if we create new security group then added into either built in administrator or domain admin group it will work? i have tried but not working any other alternative
methods to get admin accessControlling local group membership could be done by GPOs:
Using Group Policy Restricted Groups: http://social.technet.microsoft.com/wiki/contents/articles/20402.active-directory-group-policy-restricted-groups.aspx
Using a startup script that adds a domain group as member of a local group: http://technet.microsoft.com/en-us/library/bb490706.aspx
If you have manually added a domain security group to local Administrators group of a computer and you still see that the members are not admins then you can do the following:
Logoff and logon again and see if that helps
If you are using a universal group then you be having a problem with the membership. More details here: http://www.windowsdevcenter.com/pub/a/windows/2004/06/15/fsmo.html. You can try converting the group to a global one for testing.
Adding a user to Domain Admins group will make you, by default, a local administrator on domain-joined Windows Systems. This is because, domain admins are, by default, members of local Administrators group. However, you should make the membership of Domain
Admins group very limited and only for users who do global domain administration.
This posting is provided AS IS with no warranties or guarantees , and confers no rights.
Ahmed MALEK
My Website Link
My Linkedin Profile
My MVP Profile -
Most secure method of adding windows for my limited purposes?
I only need windows on this particular computer, a Macbook 13 inch 2.1 Ghz with 2 GB RAM ("111.47 GB hard disk space capacity") to run Internet Explorer in those instances where my Mac browsers (Safari, Firefox, Opera thus far) will not work on some part of a website (for instance, try ordering something on equifax.com - a major site that's not fully mac compatible). I have the latest update of Leopard. I bought the computer in the past three weeks and have run software update regularly.
I did not want to put windows on this computer when I originally bought it. Now it appears from the failure of Mac browsers to work in some situations, I have to put windows on. I'm not even sure I can find XP although I had it on my old HP desktop I'm getting rid of. I might be forced to buy Vista and I don't have probably enough space for it to run well, do I? Do I need to upgrade to 4 gb RAM? Expensive.
Anyway, for security purposes, I want to be very cautious in how I use windows. I found keyloggers and periodically had files show up on my old windows computer in AVG, Ad-Aware, Spybot and other programs that worried me (most recently "Omniquad" kept showing up even after I deleted it and AVG free has no notes on what this means).
Is the least vulnerable way as far as internet viruses to run windows on my Mac to just install it in BootCamp assistant and reboot when I need it? Or theoretically is there any more vulnerability if I use VMware Fusion or Parallels with it? Do I first set it up in Bootcamp assistant (what partition size?) before I worry about choosing Vmware Fusion or Parallels? Or do I need to install one of those before I install windows?
What was it someone was saying in a different thread about needing to edit one's "virtual machine" -- see below:
+"One other tip, I would recommend editing the virtual machine before activation of windows to use emulate the same MAC address for your virtual ethernet card in parallels as for your real network card. This seems to convince WIN XP at lease that it is the same machine whether you boot it through boot camp or through Parallels. Otherwise, activation quickly becomes a pain."+
(Where would my virtual machine be?)
And also, do I need to do some special reconfiguration with my router manufacturer (Linksys) after adding windows through bootcamp and/or Parallels/Vmware in order for the the windows side to connect to the internet as my Mac is doing?
Also: should I get Windows XP Professional or Vista in this situation with the small Macbook and limited needs? I hope XP will still be used years from now.
P.S. I wish it weren't so hard to find out how to do all this. It makes me not want to go through this again with another computer and I actually need another.VMWare Fusion and Parallels create Virtual Machines. When you are running Windows inside the Mac os
you are running a Windows Virtual Machine. A Virtual Machine accesses the physical machine differently than a Boot Camp installation, since it is going through Fusion or Parallels, which is why set-up is trickier. See this wiki article: http://en.wikipedia.org/wiki/Virtual_machine
XP Pro was originally aimed at businesses and power users. It can access 2 physical processors (in contrast to two cores on one processor), so it benchmarks faster on my Mac Pro which has 2 dual core processors. It also has some advanced networking features. I use both XP and XP Pro at home and don't notice much difference in day to day use. You did buy the superior version of XP, and since it is aimed at businesses, Microsoft will continue to provide security updates for it long after they stop providing them for XP. So you will get some value from buying it.
Its great that you are checking the AV Comparative site for yourself and not just relying on my opinion. The version of Avira they are using in the tests however is the Premium version, not the free version. If you notice on the AV Comparatives site, there are 2 types of tests, on demand and proactive. One reason I prefer paid versions of anti-virus software is that only they provide proactive protection. On demand protection relies on signature files that the AV company provides your copy of the program - when you update an AV program you are updating the signature files. Signature files allow the program to recognize any known virus. They will not catch something new - this is why when a new virus arrives it spreads so quickly - no one has a signature file for it so their AV program doesn't recognize it as a threat. Then your AV program gets a signature file update and you can scan and find the virus. Proactive protection works differently. It looks for certain features in a file that are common to virus files. If the file fits this profile, the program will block it even though it doesn't have a signature file for that particular virus yet. So while everyone else gets the virus maybe you don't (if you notice, the success rate for proactive protection is much lower than on demand). Yet some programs, like NOD32 and (usually) Kaspersky do proactive much better than other programs (don't know why Kaspersky slipped so much this time). I prefer NOD32 because it not only rates advanced plus in both on demand and proactive but also update signature files very quickly, uses few system resources so it doesn't slow you down, and works quietly behind the scenes
(Kaspersky can bug you to death sometimes). -
How to change security questions after adding a second email address?
I'm at a loss and really really frustrated with Apple for the first time in my life.
I've added a second email address and tried over the last 3 days on my iPad and Mac to change my security questions. There is no option present that I can see that allows you to do this without first entering the answers. (to which I don't know anymore)
I called Apple support (even in english) and every time the call has been dropped.
In all the years since switching to Apple I've always been impressed with the level of customer service. This is the first time that I've felt this level of sincere frustration.
I'm not sure why I have to book a time to speak with someone. Updating or changing security questions, should be a process one can do over the internet. I'm confused either way why questions are necessary if the apple password entered was correct. It's not my bank account; why the need for such extreme security just to download an app paid for by an iTunes card!
Any help or direction would be appreciated!!
Thank you
KateHello there, Kate.
Apologies for your frustration. For your security the existing questions need to be answered before new ones can be created. The following Knowledge Base article provides some additional steps to try if you are unsure of the answers to the existing ones:
Apple ID: All about Apple ID security questions
http://support.apple.com/kb/HT5665
Specifically:
What should I do if I don't remember the answers to my Apple ID security questions?
Try answering them at least once to see if you can get them right, even if you are not sure you remember the answers to your security questions.
If you are confident you can't remember them, try one of the following:
If you have three security questions and a rescue email address
sign in to My Apple ID and select the Password and Security tab to send an email to your rescue email address to reset your security questions and answers.
If you have one security question and you know your Apple ID passwordsign in to My Apple ID and select the Password and Security tab to reset your security question.
If you have one security question, but don't remember your Apple ID password
contact Apple Support for assistance. Learn more about creating a temporary support PIN to help Apple confirm your identity when you contact Apple Support.
Note: If you have forgotten your password and answer your security questions incorrectly too many times in a row, you will be unable to try to answer your security questions for a period of time. During that time you will not be able to reset your password and will not have access to your account.
Thanks for reaching out to Apple Support Communities.
Cheers,
Pedro D. -
So i was trying to get into a admin panel for my mumble server.
www.mmo-mumble.com
But for some reason firefox decided this website is unsecured.
So i checked my security certificate and it was showing it expired yesterday.
I can get into that one, but when i removed it.
It did not even ask me to add a new one after visiting the site again.
I cannot even ignore the warning and continue to the site.
Adding the certificate manually worked, but it added one which was already expired.I have experienced this problem exactly as the OP has described. I have to open task manager to temporarily restore Firefox functionality.
Also, my sister bought a new HP PC about a month ago. I intalled Firefox on it, and she also sees this problem.
I've been forced to go back to IE (which does not have this problem) until Firefox can sort this out, which hopefully will be soon. -
Security Deposit for adding new lines
Hi, I have an AtnT family plan for about 8 months now. Some of my friends want to join my plan but they are reluctant to pay any security deposit. Could you please let me know if it is needed in the first place?
Hi there
I’d be happy to help address your concerns regarding security deposits!
While a deposit is not always required, it is determined automatically based upon a number of factors including credit score of the account holder and any associated AT&T payment history. If a deposit is indeed required to add additional lines to your account, the deposit is refunded to you after 12 months from the payment date with good payment history.
I hope this helps!
Charise -
Help with asp ... security levels
I made a change to the security level for the end user. i add
a security feature by adding 12345 to their security level.
<%@LANGUAGE="VBSCRIPT"%>
<%Option Explicit%>
<%
'check to see if the page is submitted
Dim validLogin
Dim strErrorMessage
Dim intLevel
Dim sLevel
If (Request.Form("uname")<>"") Then
'user has submitted the form
'get the entered values and hit the database
Dim strUserName
Dim strPassword
'going to use an implicit connection, no connection object
needed
Dim objRS
strUserName = UCase(Request.Form("uname"))
strPassword = UCase(Request.Form("pwd"))
response.write("strUserName")
'prepare the RS
Set objRS = Server.CreateObject("ADODB.Recordset")
'set the sql statement
objRS.Source = "SELECT * FROM tblEmployee WHERE
strEmpUserName = '" & strUserName & "' AND strEmpPassword =
'" & strPassword & "'"
' heres the implicit connection
objRS.ActiveConnection =
"Provider=Microsoft.Jet.OLEDB.4.0;Data
Source=c:\Inetpub\db\IMPCustomers.mdb"
objRS.CursorType = 0
objRS.CursorLocation = 3
objRS.Open
'check for EOF
If(objRS.EOF) Then
'no records matched, invalid login
Response.Redirect("invalidLogin.asp")
'strErrorMessage = "Invalid Login. Try Again."
validLogin = false
Else
'added intLevel to add more security on 3/29/07
intLevel = Cint(objRS("intEmpSecurityLevel"))
intLevel = intLevel + 12345
sLevel = intLevel
'valid login, set session variables
Session("username") = UCase(strUserName)
Session("userpass") = UCase(strPassword)
Session("sLevel") = sLevel
'Session("sLevel") = objRS("intEmpSecurityLevel") - changed
to add more security on 3/29/07
Session("fn") = objRS("strEmpFN")
'release the RS
Set objRS.ActiveConnection = Nothing
Set objRS = nothing
'redirect off this page
Response.Redirect("custSearch.asp")
End If
End If
%>
I'm now having trouble removing the 12345 from their security
level in the custSearch.asp.
<%@LANGUAGE="VBSCRIPT"%>
<%Option Explicit%>
<%
Dim strUserName
Dim strPassword
Dim intSLevel
Dim isum
Dim intS
Dim intNewSLevel
Dim sLevel
Dim strFN
Dim strErrorMessage
Dim strError
'get pass parameters
strUserName = Session("username")
strPassword = Session("userpass")
intSLevel = Session("sLevel")
'add on 3/29/07 for security
'get the security level
isum = sLevel
'take isum which contains sLevel and subtract 12345 from it
isum = isum - 12345
'now intS equals security level in the db
intS = isum
'put into a session
Session("intS") = intS
strFN = Session("fn")
strErrorMessage = ("strError")
'If strErrorMessage = "" Then
'strError = "There is no customer with that last name."
'End If
%>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0
Transitional//EN" "
http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="
http://www.w3.org/1999/xhtml">
<head>
<title>Employee Intranet - Customer Database, Search
for a particular customer.</title>
<meta http-equiv="content-type" content="text/html;
charset=utf-8" />
<link rel="stylesheet" type="text/css"
href="../css/pop_style.css" />
<link rel="stylesheet" type="text/css"
href="../css/forms.css" />
<style type="text/css">
/* HMTL selectors start here */
h2 {
margin-bottom:15px;
p {
margin-bottom:20px;
hr {
border:thin;
border-color:#CCCCCC;
border-style:dotted;
width:100%;
text-align:center;
table {
width:300;
align:center;
cellpadding:2px;
cellspacing:2px;
margin-left:30%;
td {
font-size:14px;
font-style:normal;
font-weight:normal;
border:0;
padding:0;
/* HMTL selectors start here */
/* ID selectors start */
#mainText {
height:400px;
font-family:Arial, Helvetica, sans-serif;
font-size:14px;
text-align:left;
margin-left:1%;
margin-right:1%;
padding: 10px 5px;
word-spacing:1px;
letter-spacing:1px;
/* id ends here */
</style>
<script language="JavaScript" type="text/JavaScript">
<!-- function MM_reloadPage(init) { //reloads the window
if Nav4 resized if (init==true) with (navigator) {if
((appName=="Netscape")&&(parseInt(appVersion)==4)) {
document.MM_pgW=innerWidth; document.MM_pgH=innerHeight;
onresize=MM_reloadPage; }} else if (innerWidth!=document.MM_pgW ||
innerHeight!=document.MM_pgH) location.reload(); }
MM_reloadPage(true); //-->
</script>
</head>
<body>
<!-- CASCADING POPUP MENUS v5.2 by Angus Turnbill
http://www.twinhelix.com -->
<script language="javascript" type="text/javascript"
src="../js/pop_core.js"></script>
<script language="javascript" type="text/javascript"
src="../js/pop_data.js"></script>
<!-- border begins here -->
<div id="border">
<!-- second nav start here -->
<div id="secNavBar"><a
href="../index.htm">Home</a> | <a
href="../htm/quality.htm">Quality</a>
| <a href="../htm/contactUs.htm">Contact
Us</a> | <a
href="../htm/siteMap.htm"> Site
Map</a></div>
<!-- logo starts here -->
<div id="logo">
<img src="../art/NewLogo.jpg" alt="Logo of IMPulse NC,
INC." usemap="#Map" />
<map name="Map" id="Map">
<area shape="rect" coords="5,3,280,74"
href="../index.htm" alt="Return to home page" />
</map>
</div>
<!-- primary navigation div tags starts here -->
<div id="priNav">
<a id="home" name="home"
style="visibility:hidden;">Home</a>
<!-- primary navigation div tags ends here -->
</div>
<!-- main text starts here -->
<div id="mainText">
<h2>Customer Database </h2>
<p
style="font-size:14px;font-style:normal;font-weight:normal;">Welcome
<%=strFN%></p>
<p
style="font-size:14px;font-style:normal;font-weight:normal;">Please
search for a customer by using the fields below. You can use one
field or multiple fields for your search.</p>
<!-- signIn form starts here -->
<div id="signIn">
<div id="CSearch">
<table>
<form action="results.asp" method="post" name="search"
id="search">
<tr>
<td width="98" height="29">Last Name:</td>
<td width="150" tabindex="1"><input type="text"
name="clname" size="25" maxlength="25" /></td>
</tr>
<tr>
<td height="30">First Name:</td>
<td tabindex="2"><input type="text" size="25"
maxlength="25" name="cfname" /></td>
</tr>
<tr>
<td height="30">Company:</td>
<td tabindex="3"><input type="text" size="25"
maxlength="25" name="ccomp" /></td>
</tr>
<tr>
<td height="48" colspan="2" tabindex="4">
<input type="submit" name="login" value="Submit" />
<input type="reset" name="Reset" value="Reset" />
<a href="logOut.asp">
<input type="button" name="logOut" value="Log Out" />
</a> </td>
</tr>
</form>
</table>
<!-- customer search form ends here -->
</div>
<blockquote> </blockquote>
<!-- signIn form ends here -->
</div>
<!-- main text ends here -->
</div>
<div id="btm_Bar">
100 IMPulse Way • Mount Olive, North Carolina 28365
• Main (919) 658-2200 • Fax (919) 658-2268<br />
©2006 IMPulse NC, Inc. All Rights Reserved. </div>
</div>
<script language="javascript" type="text/javascript"
src="../js/pop_events.js"></script>
<!-- Places text blinker in the uname text box thru
javascript -->
<script language="javascript" type="text/javascript">
document.search.clname.focus();
</script>
<!-- javascript ends here -->
<%
Response.Write(Session("username")) & "<br />"
Response.Write(Session("userpass")) & "<br />"
Response.Write(Session("sLevel")) & "<br />"
Response.Write(Session("intS")) & "<br />"
%>
</body>
</html>
What am I doing wrong?"pqer" <[email protected]> wrote in message
news:eugsik$kt5$[email protected]..
> What am I doing wrong?
1. You're allowing unfiltered user input into your SQL query.
I could do
some horrible damage to your system.
2. You have SELECT * in your query.
3. You're doing something that doesn't make any sense. Why
add a constant
to the security level just to subtract it again when you
actually want to
use it? You're just making more work for yourself. There is
no benefit
there. -
How can I securely erase the hard drive for PowerBook G4 running 10.2.3?
I'm about to sell a PowerBook G4 12-inch running 10.2.3 after I erased the hard drive via the the original software install and restore disk. There was no secure erase option like there is in subsquent versions of OSX. Is there a way I can do a 7 (or 35) time erase on this machine? Thanks!
See this Apple note. Secure erase was added in 10.2.3, but in a different place than later releases.
-
Extracting username and password from security header
Hey all,
I'm writing a BPEL process that invokes two secured web services. One of them authenticates using Username Token and the other has a authenticate method in which the username and password are supplied as Strings. I have successfully propagated the credentials from the BPEL process to the web service using Username Token by doing the following:
1) I secured my BPEL process
2) I imported oasis-200401-wss-wssecurity-secext-1.0.xsd and from it created a variable of type Security
3) I added the security variable to the Header Variables for the BPEL process input
4) I added the security variable to the Input Header Variables for the web service's invoke operation
This worked fine. However, I need to be able to extract out the username and password and supply them as Strings to the authenticate method of the other web service. How can this be done? If it can't, what are some alternatives?
Environment:
JDeveloper 11.1.1.6.0
Thanks,
BillHi Sri,
If I understand your steps correctly, I think the problem I'm having rests with the second step. I don't know how to get a hold of the username and password to assign to the local variables you mention. The BPEL process itself uses Username Token for authentication. These credentials need to be passed to the web services invoked within the BPEL process. If I assign the security header variable directly to the string output for the BPEL process, the string returned will be the complete XML security header, which includes the username and password. However, the security header variable itself doesn't expose the username and password directly. In other words, I can't expand the security header variable node in the dialog for editing the Assign operation and get to the username and password. I think one solution is to parse out the username and password from the complete XML security header using string operations (substring, index-within-string, etc). Also, regarding step 4, I'm not sure if passing the credentials in the header will work for this web service. I think the web service is expecting the credentials as parameters to its authenticate method.
Thanks,
Bill -
Problem in updating a java client to invoke data-secured web service
hello
i'm following the document 'programming weblogic web services' to use ws-security
functionality to encrypt & digitally sign SOAP Request & Response
and I first made a client that calls a secure weblogic web service.
( using a keystore having RSA key pair. )
the code is like below -----------------------------------------------------------------
final KeyStore keystore = loadKeystore(CLIENT_KEYSTORE, KEYSTORE_PASS);
TestEJB_Impl service = new TestEJB_Impl("file:///C:/bea/user_projects/domains/FirstDomain/working/TestEJB_with_Security_surpport.wsdl");
WebServiceContext context = service.context();
System.out.println("passing context info to the client");
X509Certificate clientcert;
clientcert = getCertificate(CLIENT_KEYNAME, keystore);
PrivateKey clientprivate;
clientprivate = getPrivateKey(CLIENT_KEYNAME, CLIENT_KEYPASS, keystore);
WebServiceSession session = context.getSession();
session.setAttribute(WSSEClientHandler.CERT_ATTRIBUTE, clientcert);
session.setAttribute(WSSEClientHandler.KEY_ATTRIBUTE, clientprivate);
UserInfo ui = new UserInfo(AUTHENTICATION_USER, AUTHENTICATION_USER_PASS);
session.setAttribute(WSSEClientHandler.REQUEST_USERINFO, ui);
TestEJBPort port = service.getTestEJBPort();
String result = null;
result = port.firstMethodTest("A123");
System.out.println(result);
and there comes error stacktrace like below ------------------------------
<Info> <WebService> <BEA-220024> <Handler
weblogic.webservice.core.handler.WSSEClientHandler threw an exception from its
h
andleRequest method. The exception was:
weblogic.xml.security.SecurityConfigurationException: Failed adding encryption
t
o request - with nested exception:
[weblogic.xml.security.SecurityProcessingException: No keywrapping algorithm ava
ilable for DSA keys].>
Exception in thread "main" java.rmi.RemoteException: SOAP Fault:javax.xml.rpc.so
ap.SOAPFaultException: Exception during processing: weblogic.xml.security.Securi
tyConfigurationException: Failed adding encryption to request - with nested exce
ption:
[weblogic.xml.security.SecurityProcessingException: No keywrapping algorithm ava
ilable for DSA keys] (see Fault Detail for stacktrace)
Detail:
<detail>
<bea_fault:stacktrace xmlns:bea_fault="http://www.bea.com/servers/wls70/webse
rvice/fault/1.0.0">
</bea_fault:stacktrace>weblogic.xml.security.SecurityProcessingException: No
ke
ywrapping algorithm available for DSA keys
at weblogic.xml.security.wsse.v200207.SecurityImpl.getWrappingAlgorithm(
SecurityImpl.java:200)
at weblogic.xml.security.wsse.v200207.SecurityImpl.addEncryption(Securit
yImpl.java:175)
at weblogic.xml.security.wsse.v200207.SecurityImpl.addEncryption(Securit
yImpl.java:153)
i am using RSA key pair but, when i use DSA key pair , the error message is same
as above.
what is problem? and what am i missing?Hello,
The current implementation only supports RSA key types as legal
wrapping. It is on the TODO list to expand this to other algorithms.
Regards,
Bruce
dolso wrote:
>
hello
i'm following the document 'programming weblogic web services' to use ws-security
functionality to encrypt & digitally sign SOAP Request & Response
and I first made a client that calls a secure weblogic web service.
( using a keystore having RSA key pair. )
the code is like below -----------------------------------------------------------------
final KeyStore keystore = loadKeystore(CLIENT_KEYSTORE, KEYSTORE_PASS);
TestEJB_Impl service = new TestEJB_Impl("file:///C:/bea/user_projects/domains/FirstDomain/working/TestEJB_with_Security_surpport.wsdl");
WebServiceContext context = service.context();
System.out.println("passing context info to the client");
X509Certificate clientcert;
clientcert = getCertificate(CLIENT_KEYNAME, keystore);
PrivateKey clientprivate;
clientprivate = getPrivateKey(CLIENT_KEYNAME, CLIENT_KEYPASS, keystore);
WebServiceSession session = context.getSession();
session.setAttribute(WSSEClientHandler.CERT_ATTRIBUTE, clientcert);
session.setAttribute(WSSEClientHandler.KEY_ATTRIBUTE, clientprivate);
UserInfo ui = new UserInfo(AUTHENTICATION_USER, AUTHENTICATION_USER_PASS);
session.setAttribute(WSSEClientHandler.REQUEST_USERINFO, ui);
TestEJBPort port = service.getTestEJBPort();
String result = null;
result = port.firstMethodTest("A123");
System.out.println(result);
and there comes error stacktrace like below ------------------------------
<Info> <WebService> <BEA-220024> <Handler
weblogic.webservice.core.handler.WSSEClientHandler threw an exception from its
h
andleRequest method. The exception was:
weblogic.xml.security.SecurityConfigurationException: Failed adding encryption
t
o request - with nested exception:
[weblogic.xml.security.SecurityProcessingException: No keywrapping algorithm ava
ilable for DSA keys].>
Exception in thread "main" java.rmi.RemoteException: SOAP Fault:javax.xml.rpc.so
ap.SOAPFaultException: Exception during processing: weblogic.xml.security.Securi
tyConfigurationException: Failed adding encryption to request - with nested exce
ption:
[weblogic.xml.security.SecurityProcessingException: No keywrapping algorithm ava
ilable for DSA keys] (see Fault Detail for stacktrace)
Detail:
<detail>
<bea_fault:stacktrace xmlns:bea_fault="http://www.bea.com/servers/wls70/webse
rvice/fault/1.0.0">
</bea_fault:stacktrace>weblogic.xml.security.SecurityProcessingException: No
ke
ywrapping algorithm available for DSA keys
at weblogic.xml.security.wsse.v200207.SecurityImpl.getWrappingAlgorithm(
SecurityImpl.java:200)
at weblogic.xml.security.wsse.v200207.SecurityImpl.addEncryption(Securit
yImpl.java:175)
at weblogic.xml.security.wsse.v200207.SecurityImpl.addEncryption(Securit
yImpl.java:153)
i am using RSA key pair but, when i use DSA key pair , the error message is same
as above.
what is problem? and what am i missing? -
How do I disable security settings on PDF fillable form?
The PDF fillable form was made in Word and saved as a PDF. I tried copying it then bringing into Acrobat Pro X to make it a fillable form. Saved with Enabled Features but when opened into Reader I get a security warning restricting adding text or placing a signature. I've tried changing setting and can't figure out what is wrong or even if it's possible it fix this.
Does anyone know how to fix this?
KwileyIt is "The security settings on this document prevent adding text and /or placing a signature on it from Adobe Reader. To fill and sign this document you need to print it out." These forms need to be fillable because they change and then my client places her signature or her bosses signature on the page. Is there another way to do this?
Thanks,
Kathy -
Security manager & mention "Java Applet Window"
A simple program that displays a frame with one button in it.
The frame displays, no problem.
When a security manager is added "System.setSecurityManager(new SecurityManager());"
and the program is run again a "status bar" is added at the bottom of the frame
mentioning "Java Applet Window".
Why is that, and can it be suppressed ? (I am working in JDK 1.4)
Any tip greatly appreciatedI was dealing with this myself and just discovered that the adding the following line to my security policy removed the message:
permission java.awt.AWTPermission "showWindowWithoutWarningBanner"; -
Hello ,
I am using JDeveloper 11.2.3.0.
I am using ADF security and I am using DB tables for authentication.
I created the DB authentication in th weblogic and I inserted the SQL queries in the provider configuration.
In the ADF app , I enabled adf security. I added the enterprise roles as mentioned in my DB tables. I created the application roles and I gave grants to users.
My problem is , when I run the application, the users are not loaded from weblogic but recreated with new IDs and like that the DB doesn't assign roles to every user ( because fdifferent ID).
Any want knows how to solve this problem ??
thanks in advance
FARAJHello frank,
My problem is , when I run the application , the application roles are not loaded from DB ( as in weblogic ) but they are recreated with new IDs.
I have 3 tables : users , roles and grant_roles.
when I run the application , the roles are deleted and recreated with new IDs :
before running :
table user :
ID | User ......
1 | x
table roles:
ID | role ......
2 | y
table grant_roles:
ID | role | user
3 | 2 | 1
after running the tables become :
table user :
ID | User ......
1 | x
table roles:
ID | role ......
*4 |* y
table grant_roles:
ID | role | user
3 | 2 | 1
Edited by: Faraj on Feb 13, 2013 5:56 AM -
SOAP message security fault:FailedCheck error
Hi,
I have a client application that adds a signature to the SOAP request. (Most of
the code has been taken from "Writing the Java Code to Invoke a Secure Non-WebLogic
Web Service" at http://e-docs.bea.com/wls/docs81/webserv/security.html)
Enabling the jvmarg verbose flag in build.xml indicates that the request going
out has a wsse:Security element with a signature, binary and username token.
The response from the server is as follows :
[java] <env:Envelope xmlns:env="http://schemas.xmlsoap.org/soap/envelope/"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:soapenc="http://sche
mas.xmlsoap.org/soap/encoding/" xmlns:xsd="http://www.w3.org/2001/XMLSchema"><en
v:Header/><env:Body><env:Fault xmlns:fault="http://schemas.xmlsoap.org/ws/2002/0
7/secext"><faultcode>fault:FailedCheck</faultcode><faultstring>failed security
c
heck for message body</faultstring></env:Fault></env:Body></env:Envelope>
After which i get a javax.xml.rpc.soap.SOAPFaultException: failed security check
for message body.
I believe that i maybe getting this error because the server is unable to verify
the signature for some reason. Am i missing something here?
Also please let me know if you need more information to diagnose the problem.
thanks,
Nadeem.The root cause being:
[java] [weblogic.xml.security.encryption.EncryptionException: http://www.w3
org/2001/04/xmlenc#tripledes-cbc can only be used with a domestic license]].>
I believe the security frameworks checks the WebLogic license file
(license.bea) to determine whether to use domestic or international
strength encryption.
Nadeem Ilkal wrote:
Hi Bruce,
I tried the example you pointed out and i am getting the following exception.
The signature and encryption verbose flags are enabled by default in build.xml.
run:
[java] <Jun 2, 2003 11:19:22 AM PDT> <Info> <webservice> <BEA-220024> <Hand
ler weblogic.webservice.core.handler.WSSEClientHandler threw an exception from
i
ts handleRequest method. The exception was:
[java] weblogic.xml.security.SecurityConfigurationException: Failed adding
encryption to request - with nested exception:
[java] [weblogic.xml.security.SecurityProcessingException: Problem adding
e
ncrypted key - with nested exception:
[java] [weblogic.xml.security.encryption.EncryptionException: http://www.w3
org/2001/04/xmlenc#tripledes-cbc can only be used with a domestic license]].>
[java] java.rmi.RemoteException: SOAP Fault:javax.xml.rpc.soap.SOAPFaultExc
eption: Failed adding encryption to request; nested exception is:
[java] javax.xml.rpc.soap.SOAPFaultException: Failed adding encryption
to request
[java] at sign.SecurityPort_Stub.echo(SecurityPort_Stub.java:30)
[java] at sign.SecureClient.main(SecureClient.java:63)
[java] Caused by: javax.xml.rpc.soap.SOAPFaultException: Failed adding encr
yption to request
[java] at weblogic.webservice.core.ClientDispatcher.receive(ClientDispa
tcher.java:270)
[java] at weblogic.webservice.core.ClientDispatcher.dispatch(ClientDisp
atcher.java:131)
[java] at weblogic.webservice.core.DefaultOperation.invoke(DefaultOpera
tion.java:430)
[java] at weblogic.webservice.core.DefaultOperation.invoke(DefaultOpera
tion.java:416)
[java] at weblogic.webservice.core.rpc.StubImpl._invoke(StubImpl.java:2
75)
[java] at weblogic.webservice.core.rpc.StubImpl._invoke(StubImpl.java:2
50)
[java] at sign.SecurityPort_Stub.echo(SecurityPort_Stub.java:27)
[java] ... 1 more
[java] Exception in thread "main"
[java] Java Result: 1
thanks,
Nadeem.
Bruce Stephens <[email protected]> wrote:
Hello,
Have you tried going through the example:
http://webservice.bea.com/index.html#qz15 and making sure this works
OK
for you?
Also, try the following system properties to view more runtime security
information:
weblogic.xml.encryption.verbose=true
weblogic.xml.signature.verbose=true
HTH,
Bruce
Nadeem Ilkal wrote:
Hi,
I have a client application that adds a signature to the SOAP request.
(Most of
the code has been taken from "Writing the Java Code to Invoke a Secure
Non-WebLogic
Web Service" at http://e-docs.bea.com/wls/docs81/webserv/security.html)
Enabling the jvmarg verbose flag in build.xml indicates that the request
going
out has a wsse:Security element with a signature, binary and username
token.
The response from the server is as follows :
[java] <env:Envelope xmlns:env="http://schemas.xmlsoap.org/soap/envelope/"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:soapenc="http://sche
mas.xmlsoap.org/soap/encoding/" xmlns:xsd="http://www.w3.org/2001/XMLSchema"><en
v:Header/><env:Body><env:Fault xmlns:fault="http://schemas.xmlsoap.org/ws/2002/0
7/secext"><faultcode>fault:FailedCheck</faultcode><faultstring>failed
security
c
heck for message body</faultstring></env:Fault></env:Body></env:Envelope>
After which i get a javax.xml.rpc.soap.SOAPFaultException: failed security
check
for message body.
I believe that i maybe getting this error because the server is unable
to verify
the signature for some reason. Am i missing something here?
Also please let me know if you need more information to diagnose the
problem.
thanks,
Nadeem.
[att1.html] -
Security sync issue with a newly create group
We have created some groups like A to D . in that for C we are not able to refresh the security . we have added 2 users only. later we have deleted the group and created the same. even then also we are not able to find the group or not able to do refresh from web. its telleing failed. if i check the log i found like : another child with name C already exists under parent. failed to sync with user provisions. Could you please suggest me any solution on this to resolve it.
Edited by: user4483519 on Sep 30, 2009 4:52 AMSo you can see the MSAD group in the user management console as well as the users part of this group, right?
Try deprovisioning the group completely, then synch native directory, refresh security from Shared Services (in AAS - Only if you have externalised your Essbase users) and run a Planning security refresh.
In theory the refresh should complete successfully.
If it does try reprovisioning your group.
Are you sure you dont have another group or user called C either in your MSAD directory or in the native directory?
Seb
www.capiotech.com
Maybe you are looking for
-
Dreamweaver CS4 - Record Insertion Form js error
Hi I'm dreamweaver cs4 and started using the Record Insertion form, I was mainly experimenting with it and just seeing what it could do. However when I get to the wizard i have to wait a few seconds for it to connect to the database and then I get an
-
How to load file with seperators
Hi, I am attempting to load a CSV file. Currently the first column has data in the format '101-000-12345-345' where 101 is the entity 000 is the Custom1 12345 is account 345 is ICP. There are other columns in the file for C2, C3 etc. My problem is th
-
Hello CRM ICWC gurus, need help please, I have a follow up document available for a service order, I need this follow up document link attached to a specific item in the service order, This is possible in GUI, but looking for the possibilites from IC
-
How can i change printer settings from command line
hello i want to use command that changes printer to print grayscale or color the best i find is to use: rundll32 printui.dll,PrintUIEntry but i cant find color settings there i would like your help with that thanks alot !
-
Transpose Text-to-Column of Oracle table using ODI
Here is what I am trying to do: Source table has the columns: Time, Blob, Item-ID Expected Target has the columns: Time, Data, Item1, Item2,...ItemN 1. Where Item1, Item2 are as illustrated: Say for example source table has 10 rows of different IDs,