SGD with Third Party Authentication issue

Similar Messages

• OAAM Integration with Third Party Authentication tool

  Hi Guys,
  In our project we are planning to integrate OAAM11GR2 with OIM11GR2 and OAM11GR2 through Advanced integration. We have a requirement to call a third party authentication service from OAAM as a step up authentication for a particular user base (based on the group membership). Kindly suggest if this requirement is feasible and if you can provide any pointers to implement this requirement.
  Thanks

  Yes, you can use third party step up authentication.
  You can customize the challenge flow. Here is the link.
  http://docs.oracle.com/cd/E28389_01/doc.1111/e15480/igotp.htm
  (It is for 11gR1 but same applies to 11gR2)

• Anyone else having issues with third party changers saying "this accessory not supported". I get it every time I plug my phone. It only started after the iOS 7 updates

  Anyone else having issues with third party changers saying "this accessory not supported". I get it every time I plug my phone. It only started after the iOS 7 update?

  That's because part of iOS7 had code in it to look for and recognize unsigned cables.
  In other words, Apple knew that people used non-signed ones and didn't care....until last month when they decided to care. People with iOS6 and lower should experience no issues (unless Apple patches those iOS versions) but folks with iOS7 will need to deal with it.

• SharePoint 2013 on-premises integration with third party email account

  the Email sending issue from SharePoint is causing too much time waste 
  First let me explain how our SharePoint is deployed
  Sharepoint version : 2013
  Deployment type : on-premise
  Authentication : from Domain controller also hosted locally 
  domain name ; say domain.com this domain.com is same as our website address hosted on godaddy
  SharePoint computer name on local DNS :  sharepoint.domain.com
  OS and IIS : 2008 r2 , IIS 7.5 
  Network firewall : 25 26 ports  opened for sharepoint , both incoming and outgoing.
  Server firewall : turned off
  Email configuration Attempts by IIS 6.0 
  We tried following setting on IIS 6.0 SMTP local server properties
  In General tab
  qualified name was shown as : sharepoint.dts-solution.com
  IP assigned : sharepoint server IP  , advanced putted two entries of IP with ports as 25,26
  In Access tab
  Authentication : selected as Anonymous 
  Connection : All except below list : empty list
  Relay : only the list below , one entry as 127.0.0.1 and other is local static IP of SharePoint server
  in Delivery tab
  outbound security : Basic authentication : accessed user in AD and given the right password, also checked with annonymous -not working 
  outbound connection: all default values and port = 25
  Advance : fully qualified domain name = sharepoint.domain.com , DNS test showed success, rest every check box unchecked 
  On sharepoint central management settings
  Outbound email = sharepoint.domain.com
  from and reply to address = [email protected] 
  IIS 7.5 SMTP settings 
  In IIS 7.5 sharepoint application we added SMTP settings as smtp server = godaddy out going smtp , user name as [email protected] , password = godaddy password , port : godaddy outgoing port  .
  Godaddy account 
  Our website hosted on godaddy with same name as domain.com
  open relay not possible on emails.
  Results
  After setting alerts on SharePoint sites and assigning tasks with alerts we receive email in queue folder but they never get forwarded. We just wish to use any of our email *.domain.com to send outgoing emails from SharePoint . Its been a while we have no
  success. 
  Tech Learner

  Hi,
  As I understand, you are using SharePoint 2013 integrating with third party SMTP server which provides email function.
  From SharePoint side, I'd suggest you refer to the link below to configure email integration:
  http://technet.microsoft.com/en-us/library/ee956941(v=office.15).aspx
  If you have already confirm that message is sent from SharePoint, while stuck in queue on SMTP server, then the issue might be related to relay on SMTP server. Since the issue is related to third party product, we do not have enough resource here,
  I'd recommend you contact their support engineer for more assistance:
  https://support.godaddy.com/help/category/154/email
  https://support.godaddy.com/help/article/3552/managing-your-email-account-smtp-relays
  Thanks for the understanding.
  Regards,
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
  [email protected] .
  Rebecca Tu
  TechNet Community Support

• Third-Party Authentication: Search User identity problem

  I have installed OpenSSO agent on my SGD server. I have followed this doc: http://wikis.sun.com/display/SecureGlobalDesktop/HOWTO+Use+OpenSSO+With+SGD
  Everything works except the part where the SGD server tries to map the username with the Local+LDAP repository
  I have enabled the Third-Party Authentication and selected the option: "Search the User Identity in the LDAP Repository and use the closest matching LDAP Profile from the Local Repository"
  I have also kept the already working System Authentication (Active Directory) enabled
  I have 2 problems:
  1 - If the user does not exist in local directory (but exists in the active directory) the user is not automatically logged (the login screen of sgd appears).
  In the log file (catalina.out) I have an "Invalid credentials" message.
  The user is then able to log on manually.
  2 - If the user exists in both directories (local and Active Directory) the user is automatically logged-in but the profile is not the same. (the application list is different and the client settings are reset)
  I have checked the open session on the Administration console and I see a difference in the case of the User identity.
  If I log manually I will see "DC=COM / DC=DOMAIN / CN=User Name (LDAP)" (this is the right user)
  If I log with opensso I will see "DC=com / DC=domain / CN=User Name (LDAP)"
  I can log on with both at the same time, SGD seems to consider it like two different users.
  Thanks

  Hi,
  You need to create at least one high level "LDAP Profile" user profile in the SGS ENS.
  Regards,
  Arno Staal
  Divider B.V.

• How to integrate single sign on with third party system

  we are in the process of implementing istore application. we already have home grown isupport application to contact support personnal for any issues. Now we are wondering how do we integrate oracle applications single sign on with our third pary system. Is there any recommendation provided by oracle to achieve the same.

  We too are in the process of implementing iStore with SSO features.
  And if you believe me it seems to me as nightmare.
  In our scenerio we are intgrating this SSO with Third party access control too (AD and Siteminder). I would request you to please respond me on the following mail id , so we can share our experince which will help us in our implementation
  [email protected]
  regards and thanks in advance
  Vikas Deep

• How to integrate DRM with third party tool for loading metadata in SQL table

  Experts,
  I am new to DRM and I have a requirement in which we want to integrate DRM with third party tool(lets say SQL table) as target and load metadata from DRM (Parent node, name , alias etc) to SQL table (same column name)
  Is there any way we can integrate DRM to export the same to table directly instead to files. If yes what are the steps we have to follow.
  Is there anyway we can customize DRM to execute queries or run batch
  Can I have a basic example please.
  Thanks in advance,
  Regards,

  1. Use DRM Export to Table option, for that create an External Connection first for the Target Database and select the respective Tables to which you wish to Export the Hierarchy information.
  2. You can perform most of the DRM Actions via the DRM_BATCH_CLIENT.exe.
      Please refer to Using the Data Relationship Management Batch Client of DRM User guide.
  let me know if you have any issues.

• Need connectivity of SAP Oracle with Third Party tool with dsn

  Hi Friends,
  We need to access SAP's Oracle database with third party tool with the help of dsn creation. For that we need to create 2 staging tables and need a new segment for these tables. Our data will move from SAP transactions to these 2 tables and we want to fetch this data via dsn into another third party S/W.
  I am unaware of such kind of working, can you please help me how to create new segment and how to create dsn for accessing tables in this segment.
  Our requirement is as follow.
  The staging tables are required in the SAP database with user name and password. The user should have all access to the staging table only.
  Requesting your kind help on this issue. Please suggest for further processing of activity.
  Rgds, Krishan Raheja.

  Hi,
  Common way to integrate SAP (database) with third party Application is to use and implement SAP Connector (Java or .Net).
  Using this, you can fetch the data from SAP database to use it in Third party application.
  As per my understanding the method you mentioned, will void the SAP database license term.
  So Please check before doing such configuraiton. Also that method is NOT recommended..
  Regards.
  Rajesh Narkhede

• MainStage message: possible conflict with third party midi or audio drivers

  Just when I thought everything was going to be ok...
  MainStage gives me a message that it detects a possible conflict with third party audio or midi drivers. The only midi device I'm using is class compliant (doesn't need a driver). My audio interface is an Apogee Duet and I'm using the most recent driver. Logic registers no such complaint. MainStage freezes. Any ideas?
  Thanks,
  Mark

  Hello.
  I am seeing this whenever MIDI events are being sent into either Logic or MainStage (primarily MainStage), while they are launching. On my setup, this will either crash the application during launch, ( sent to Apple ) or trigger this "...3rd party conflict / driver..." dialog.
  In either instance, disabling incoming MIDI messages by turning them off on all connected MIDI devices, or as suggested, waiting to connect the device in question until, the application is fully launched, fixes my version of this issue.
  ** Please Note: In my experience, increasing the number incoming MIDI messages, exacerbates the issue and, makes a dialog or crash more likely to occur.
  Hope this is helpful.

• Replace Self-Signed FAST Search Certificate with Third Party Certificate

  We are trying to replace the Self-Signed FAST Search Certificate with Third Party Certificate in our SP 2010 environment. And are facing issues while enabling the SSL communication between the FAST servers and the corporate servers.
  Our FAST search servers are in a different farm than that of the Corporate Servers.
  The details of the certificate we received is as follows:
  Issued to : FastSearchCert
  Issued By: Issuer Name
  Valid From: 4/21/2015 to 4/20/2017
  We were able to successfully renew the certificate on the FAST Search Server by following the below steps:
  1.  Login to the Administrative and the Non-Administrative nodes 
  of the FAST server. Go to Windows Service and stop the FAST Search for SharePoint and the FAST Search for SharePoint Monitoring services in both the servers.
  Follow the below steps in the Administrative Node followed by the Non-Administrative Node
  2. 
  Install the certificate in the following paths in the certificate store:
  “Certificates(Local Computer)\Personal”
  “Certificates(Local Computer)\Trusted Root Certification Authorities”
  3. Ensure that the user account configured for the “FAST Search Server 2010 for SharePoint” has access to the private key of the certificate.
  4. Go the Administrative node of the FAST farm and follow the below steps:
  Go to the certificate store.
  Expand the Personal folder and then click the Certificates folder. Double-click the third party signed FAST certificate.
  Open the Details tab and then click Thumbprint. Note down this thumbprint.
  5. Next, open
  Microsoft FAST Search Server 2010 for SharePoint with Administrator
  Privileges.
  6.
  Navigate to the directory, “D:\FASTSearch\installer\scripts” and execute the below command to replace the current certificate with the newly created
  third party signed FAST certificate.
  .\ReplaceDefaultCertificate.ps1 -thumbprint "certificate thumbprint".
  7. The FAST certificate was renewed successfully.
  Once the certificate has been renewed successfully in both the nodes, follow the below step:
  8. Start the FASTSearch for SharePoint and the FAST Search
  for SharePoint Monitoring services in the administrator server.
  Next, while enabling the SSL communication between the FAST servers and the other corporate servers, we follow the below steps:
  1. 
  Copy the new certificate from any of the FAST servers to all the web-front end and application servers in the corporate farm, in order to enable SSL communication between these servers and the FAST farm.
  2.   Also, copy the script
  ‘SecureFASTSearchConnector.ps1’ from the location “%FASTSearchFolder%\installer\scripts” in the FAST servers 
  to the web-front end and application servers of the corporate farm.
  3.  Follow the below steps on each of the servers in the corporate farm:
  Open ‘SharePoint 2010 Management Shell’ with administrator privileges and navigate to the directory in which
  SecureFASTSearchConnector.ps1’ script is located.
  And then, execute the below command:
   .\SecureFASTSearchConnector.ps1 -certThumbprint "certificate thumbprint" –ssaName “FASTCibtebtSSA” –username “DOMAIN\SP_Farm”
   Where,
  -certThumbprint 
  - Thumbprint of the certificate
  -ssaName – FAST Content SSA
  -username – The account configured to run the SharePoint
  Search Service
  On execution of the above command, we receive an error message stating that the "Connection to the Content Distributor servername.corp.abc.org: 14391 could not be validated...instance of FAST search server backend is running"
  Please help us resolve this issue. We have not been able to find the cause of the above error for a long time.
  Any help is much appreciated.

  Your tip on exporting from eDir to locate a missing private key was very helpful. Here are my steps to renew an expired third party certificate when the private key, generated 30 months ago in my case, could not be located.
  In iManager, browse the tree and locate the likely certificate object. The Attributes for the object show Subject Name = webmail.acme.com. Selected the certificate and exported to webmailcert.pfx.
  Then, the openssl commands in TID 7004039, "How to convert a SSL PFX to a PEM file", were run against the .pfx file to create cert.pem, key.pem and server.key files.
  TID 7015500, "How to determine if private key belongs to public key (certificate)", was followed to determine if the public key (downloaded from third party) and private key (just retrieved from iManager) match - they did - that is, the private key converted from webmailcert.pfx matches the downloaded certificate.
  TID 7013103, "How to create a .pem File for SSL certificate Installations", was followed to manually create a server.pem file using openssl.
  TID 7010584, "How to setup SSL Certificate for Apache", part labeled "Additional Information" was followed to modify /etc/apache2/vhosts.d/vhost-ssl.conf file. Server.pem file created above copied to /etc/apache2/ssl.crt/ and /etc/ssl/servercerts/ directories as specified in vhost-ssl.conf.
  Restarted apache2.
  www.digicert.com has an SSL Certificate Checker that can be used to verify the installation is successful.

• Really Apple? OSX 10.8.5 disables built-in camera functionality with third party apps such as Skype and Gmail video chat. I do not have time machine on my 2013 MB Air. How can I get back to 10.8.4?

  Really Apple?
  With the release OSX 10.8.5 Apple has once again showed its true colors, and continued its efforts to create a closed Apple system, which eliminates third party vendors, unless, one can only assume... they pay.
  Included in this OSX update is the disabling of the built-in camera to work with third party applications such as Skype and Gmail video chat. No surprise the camera works just fine with Apple apps such as Facetime and Photobooth.
  The answer I got on my call to AppleCare to ask for assistance in reinstalling 10.8.4, so that I may Skype again, was we can not do that. You can not go back unless you have a time machine bkup.
  Can anyone help me get back to to 10.8.4 on my 2013 MB Air?
  I do not have a time machine bkup as this computer is not used to store important documents.
  Thank you.

  Read this post: 10.8.5 Broke Camera Usage For 3rd Party Apps Like Skype
  Another: isight not recognized in Skype after 10.8.5 upgrade
  Don't panic. Skype simply needs to update its app.

• Integration of ChaRM with third party tools

  Hi all,
  We are in the process of building the solution for Change Request Management implementation integrated with third party tool. 
  As the normal process for ChaRM is to work with the Service Desk functionality (to raise a ticket, then support message, change request, change document etc...), but what we need is create the change request, and change document directly with ChaRM without using the Service Desk functionality. 
  Did anybody come across this situation?
  Please share your experience. 
  Thanks in advance.
  Balaji

  Hi Balaji,
  there is no problem, as I understand, you want to use ChaRM without Service Desk. OK, than you create directly a Change Request in CRMD_ORDER, the transaction type you have to select is SDCR (standard transaction type), you have to approve it and then you can create a change document, it is not necessary that you start with a Service Desk ticket like SLFN.
  You need configured TMS a SolMan Project with a Maintenance Cycle, thats it (but this is enough , don't forget the customizing).
  I hope I understood you correct
  Udo

• Conflict with Third Party Apps?

  I am getting an occasional error saying there is a possible conflict with third party apps and that I need to check the drivers of my MIDI devices to see if they are up to date? Sorry but I did not record the exact wording. Does anyone know what this might mean, and how I need to go about checking drivers? I have a lot of interfaces and not sure how to see what's what. Thanks.

  Hi Midlake,
  Well, because they are known troublemakers. Search for 'takes' or 'take folder(s)' or 'comp' here on the forum and you'll find many a troubled soul crying out for help - including seasoned pro's, who thought they were beyond tears...
  O, they are fine for recording many takes - but thats' all. I'll select the best takes/phrases.
  regards, Erik.

• How to integrate iReceivables with third party payment system?

  Hi,
  My requirement is to integrate iReceivables with third party payment system.
  Can anyone guide me to achieve this.
  Thanks & Regards,
  Sunita

  Hello Prasad,
  <b>Connection with an External Payroll System</b>
  Payroll Outsourcing functionality allows you to compile master data or payroll data in the SAP system to submit to a third-party service provider in an electronic format. The Outsourcing solution available in the United States and Canada provides a generic interface which writes data into an IDoc (Intermediate Document) for transport to a third-party system. In order to transport data into and out of the SAP system, you must set up a logical system, partner definition, and outsourcing ports.
  If you have built your own payroll interface, using the Interface Toolbox, for example, you can use the Import section of this scenario. The Export section applies only to the transport of IDocs.
  For more information regarding outsourcing, refer to the SAP Library, Human Resources  -> PY Payroll  -> PY-US United States Payroll or PY-CA Canada Payroll  -> Outsourcing.
  http://help.sap.com/saphelp_erp2005vp/helpdata/en/af/f4ea3444e9c47fe10000009b38f83b/frameset.htm
  Import Payroll Results from a Third-Party System
  http://help.sap.com/saphelp_erp2005vp/helpdata/en/0a/e62481feaf11d1a5500060087832f8/frameset.htm
  regards
  Prasad
  Message was edited by:
          prasad chintala

• Can you connect the Lightning to 30-pin adapter and Lightning to 30-pin Adapter (0.2 m) to iPod nano (7th generation) with third-party accessories?

  Can you connect the Lightning to 30-pin adapter and Lightning to 30-pin Adapter (0.2 m) to iPod nano (7th generation) with third-party accessories?

  Lightning to 30-pin adapter and Lightning to 30-pin adapter (0.2m) do not work if connected together by other third-party accessories.