[SOLVED] Encryption hook doesn't prompt for key

Similar Messages

• [SOLVED] Encrypt-Hook with LVM-on-Crypt fails to encrypt root part...

  Hi,
  I think that since the mkinitcpio (0.14.0-1) update (and the regeneration of the initramfs for my kernel) the encrypt hook doesn't work anymore. (At least for me)
  I have my root filesystem in a LVM, which physical volume is encrypted with luks.
  Here are my hooks from /etc/mkinitcpio.conf:
  HOOKS="base udev autodetect modconf block keyboard keymap encrypt lvm2 resume filesystems fsck shutdown"
  Output when I let it generate the initramfs:
  % mkinitcpio -p linux
  ==> Building image from preset: /etc/mkinitcpio.d/linux.preset: 'default'
  -> -k /boot/vmlinuz-linux -c /etc/mkinitcpio.conf -g /boot/initramfs-linux.img
  ==> Starting build: 3.9.7-1-ARCH
  -> Running build hook: [base]
  -> Running build hook: [udev]
  -> Running build hook: [autodetect]
  -> Running build hook: [modconf]
  -> Running build hook: [block]
  -> Running build hook: [keyboard]
  -> Running build hook: [keymap]
  -> Running build hook: [encrypt]
  -> Running build hook: [lvm2]
  -> Running build hook: [resume]
  -> Running build hook: [filesystems]
  -> Running build hook: [fsck]
  -> Running build hook: [shutdown]
  ==> Generating module dependencies
  ==> Creating gzip initcpio image: /boot/initramfs-linux.img
  ==> Image generation successful
  ==> Building image from preset: /etc/mkinitcpio.d/linux.preset: 'fallback'
  -> -k /boot/vmlinuz-linux -c /etc/mkinitcpio.conf -g /boot/initramfs-linux-fallback.img -S autodetect
  ==> Starting build: 3.9.7-1-ARCH
  -> Running build hook: [base]
  -> Running build hook: [udev]
  -> Running build hook: [modconf]
  -> Running build hook: [block]
  ==> WARNING: Possibly missing firmware for module: bfa
  ==> WARNING: Possibly missing firmware for module: aic94xx
  -> Running build hook: [keyboard]
  -> Running build hook: [keymap]
  -> Running build hook: [encrypt]
  -> Running build hook: [lvm2]
  -> Running build hook: [resume]
  -> Running build hook: [filesystems]
  -> Running build hook: [fsck]
  -> Running build hook: [shutdown]
  ==> Generating module dependencies
  ==> Creating gzip initcpio image: /boot/initramfs-linux-fallback.img
  ==> Image generation successful
  But I am able to mount in manually within the emergency shell by executing:
  $ cryptsetup luksOpen /dev/sda3 system
  Enter passphrase for /dev/sda3:
  $ lvm vgscan
  Reading all physical volumes. This may take a while...
  Found volume group "vg_system" using metadata type lvm2
  $ lvm vgchange -ay
  3 logical volume(s) in volume group "vg_system" now active
  $ exit
  Last edited by PyroDevil (2013-06-29 11:14:35)

  Thanks for the link.
  mdias wrote:
  ok, I found a temporary workaround that seems to work for me,
  I edited the file /usr/lib/initcpio/hooks/lvm2 to add this:
  run_hook() {
  lvm pvscan --cache --activate ay
  Now, this will activate all lvm volumes regardless of lvm.conf, but it suits my needs for now.
  This solution didn't work for me.
  On boot time I was not asked to enter a password for the encrypted partition.
  That's the reason I thought it was the encryption hook.

• I want to use wifi for Apple TV, but it doesn't prompt for a password, so never connects.  What am I missing?  Can I only use it via a non-password-protected wifi connection?

  I want to use wifi for Apple TV, but it doesn't prompt for a password, so never connects.  What am I missing?  Can I only use it via a non-password-protected wifi connection?

  Hi - you might want to post this question on the Apple TV area - you would probably get a quicker response - if you have a specific question relating to Apple routers then post back here

• Crystal Report doesn't prompt for SAP credentials / errors out on refresh

  2 Environments tested with same results:
  <p>
  BOE XI 3.1 SP2 & BOE XI 3.1 SP2 FP2.5<br>
  SAP Intg Kit on mirrored SP/FP levels in each environment.
  <p>
  We've been successfully creating Crystal Reports against BEx queries in BW for months now as well as ECC master data.  We've also built universes and have WebI reports actively working against similar BEx queries in the same.  However, we're getting some curious behavior when we refresh the Crystal Reports against BEx queries in BW.  Verified all necessary transports and authorizations have been provided for both authoring, as well as refreshing/viewing on demand, etc.
  <p>
  We've setup all the Crystal Reports we're testing to:
  <p>
  a) Use custom database logon information specified here.<br>
  b) Specify a custom driver, leveraging the crdb_bwmdx driver<br>
  c) Prompt the user for database login
  <p>
  We have not enabled SNC as of yet.
  <p>
  1) When we refresh a WebI report hitting a BEx query with security applied, it doesn't prompt for the credentials, but we confirmed through tracing on the SAP side that if the user hits a paramater it has access to, the data comes through and when we hit a paramater they do not have access to, we can clearly see SAP reject it and it spits out a logical error on the BO side in InfoView and in the WebI logs on the BO server. 
  <p>
  2) When we refresh a Crystal Report hitting ECC data, we are prompted for the SAP credentials and everything works as expected
  <p>
  However:
  <p>
  3) When we refresh a Crystal Report hitting a BEx query in BW, we are not promtped for SAP credentials.  We immediately get the "LOV" prompts.  Now, if we use a test user in SAP that has NO SECURITY restrictions at all and open access to the query, the data comes through.  However, as soon as any security is applied to the query level, even if it is SAP ALL, we cannot retrieve the data.  Tracing is also strange, as we can see on the SAP side it buffer the selected paramaters, but unlike with the WebI reports, it never shows it reaching the point where it checks each paramater against what the role has access to.  An error is then spit back.  We run the same queries with the same users within SAP and get normal behavior.  It's as though as soon as we apply security to the query the mdx driver doesn't like it.  Dependant on the type of InfoView viewer we use, the errors we consistently get on the BO side are:
  <p>
  Interactive Viewer: "Error in File %reportname%: Encapsulating Page Failed"<br>
  Java Viewer:  "Error in File %reportname%: Database Connection Error"
  <p>
  Nothing glaring in the event logs on the BO servers or in the Crystal logs that I can see, however just because it isn't spitting a specific error in the crystal logs doesn't mean I'm not missing something because I don't know what to look for behavior wise. To reduce the liklihood that it has to do with the way the report was built, we've tried against the same query by building a report using standard methods, as well as the SAP Toolbar using a very plain jane report.  Same behavior.
  <p>
  Thoughts?
  Edited by: Jay Riddle on Mar 1, 2010 8:55 PM

  Hi,
  1) When we refresh a WebI report hitting a BEx query with security applied, it doesn't prompt for the credentials, but we confirmed through tracing on the SAP side that if the user hits a paramater it has access to, the data comes through and when we hit a paramater they do not have access to, we can clearly see SAP reject it and it spits out a logical error on the BO side in InfoView and in the WebI logs on the BO server.
  >> Which authentication are you using to logon to InfoView ? Whats the configuration in the Universe Connection for Authentication ?
  2) When we refresh a Crystal Report hitting ECC data, we are prompted for the SAP credentials and everything works as expected
  >> The user is using which authentication ? and against which system does he log on ?
  However:
  3) When we refresh a Crystal Report hitting a BEx query in BW, we are not promtped for SAP credentials. We immediately get the "LOV" prompts. Now, if we use a test user in SAP that has NO SECURITY restrictions at all and open access to the query, the data comes through. However, as soon as any security is applied to the query level, even if it is SAP ALL, we cannot retrieve the data. Tracing is also strange, as we can see on the SAP side it buffer the selected paramaters, but unlike with the WebI reports, it never shows it reaching the point where it checks each paramater against what the role has access to. An error is then spit back. We run the same queries with the same users within SAP and get normal behavior. It's as though as soon as we apply security to the query the mdx driver doesn't like it. Dependant on the type of InfoView viewer we use, the errors we consistently get on the BO side are:
  >> The user is using which authentication ? and against which system does he log on ?
  >> You mentioned security restrictions and I assume we talk about BI authorizations in form of data level security. If so - does the BW query include the authorization variables ?
  Ingo

• Acrobat 7 Creating PDF, doesn't prompt for filename

  Hi!
  I'm having a strange issue with Acrobat 7. I just installed it on a new computer, and when I print a file as PDF, it doesn't prompt me for a filename. I've check the option and it is set to ask for a filename.
  How can I solve it?
  Thanks
  Christ

  Well, I just found something very strange.
  When we use our application to send a files to print in Adobe PDF, it doesn't work (doesn't ask for filename, but it save the file).
  If I do it from notepad, it does work fine...
  If I do it from an old computer that has Acrobat 6, it does works... I'm the only one who has Acrobat 7 (Since there was no more license, and that we still had a license for version 7).
  I tried it on another computer (fresh install), it does the same thing..
  I have no idea right now :S

• NetworkManager applet doesn't prompt for VPN secret for non-root user

  I'm using NetworkManager in GNOME DE. When logged in as non-root user, I'm unable to connect to a vpnc profile.
  * As non-root, I am able to add/remove/alter/connect to WiFi network profiles with no trouble.
  * As non-root, I am also able to add/remove/alter vpnc profiles.
  * However, the VPN group key and VPN user password do not appear to store properly when adding/editing the profile as non-root. I can enter them, but when I bring the dialog back up, they are always blank. Even so, I can see an entry for vpnc in the Gnome keyring.
  * When I slide the on/off switch to try to connect with the vpn profile, there is no prompt for the VPN group key or password. The switch just slides back to Off immediately and I can see the text 'authentication required' flash briefly where it shows the connection status. After that flashes, the connection status is back to 'Not connected'. No error message displays.
  * If I sign in as root, there are no problems. The VPN 'secrets' will save properly in the dialog, and also if I leave them blank, I'm prompted for them when I activate the connection.
  * Creating the connection as 'root' is not an option, as this doesn't appear in profile list when signing on as non-root.
  Any ideas on where to look or what to check? As mentioned above, non-root can maintain WiFi connections through NetworkManager just fine, so the problem appears localized to VPN 'secrets'. Also other applications (i.e. Evolution) have no trouble in dealing with authentication.
  I do have polkit installed:
  extra/polkit 0.110-2 [installed]
  Application development toolkit for controlling system-wide privileges
  extra/polkit-kde 0.99.0-2
  Daemon providing a polkit authentication UI for KDE
  extra/polkit-qt 0.103.0-2
  A library that allows developers to access PolicyKit API with a nice Qt-style API
  community/polkit-gnome 0.105-1 [installed]
  PolicyKit integration for the GNOME desktop

  Update/more information on this...
  My typical/preferred setup for my VPNs is to save the VPN group key, but to be prompted for my VPN user password on each connect. So, this is how I was trying to setup in the applet. Interestingly, I have found that if I save BOTH of the 'secrets' to the keyring, then I can connect!
  The behavior is still as above in the dialog -- both secrets are blank if I edit the connection, although they are present in the Gnome keyring. As long as they are BOTH there, I can connect fine. But, if I have either of them set to 'Always Ask', then I am not prompted for them and the connection fails.
  Although I can work with this, I would certainly still like to figure out what is going on and fix it, as it does bother me that it works that way:
  * Why can't the dialog redisplay my secrets when I edit a connection as non-root?
  * Why doesn't Always Ask work to prompt me for secrets when running as non-root?
  Any ideas? I've used the Gnome/NetworkManager/vpnc combination on other desktops (this is my first Arch), and I have never seen anything like this.

• Thunderbird doesn't prompt for a password

  I have several email accounts in Thunderbird. Most are IMAP-types. I recently changed the password (using my webmail cPanel) for one of them. Since then, Thunderbird can't send or receive messages from this account. But it doesn't prompt me for a password.
  I deleted the password in "Options -> Security for this email account, but no change. I still can't receive or send emails via Thunderbird. When I try and send an email, Thunderbird eventually pops up an error message saying "server timed out".
  I can access the email account just fine via webmail.
  Any suggestions?

  Thank you very much for your time and trouble, Toad-Hall.
  Problem solved.
  For your information, I accessed Tools >options > Security > Passwords
  and deleted ALL the passwords (both ingoing and outgoing) associated with the mail accounts for which I had changed the password directly via cPanel. (Because the 3 accounts are on the same domain, Thunderbird was unable to download or write to all 3 of them, as I had changed the passwords.)
  I then closed Thunderbird and restarted my COMPUTER (merely closing and restarting Thunderbird was insufficient for Thunderbird to bring up the password prompt window).
  Doing both those things solved the problem. I opened Thunderbird, selected each account in turn and clicked "Get mail". Pop-up window asking for the password came up, I input and was able to write and download messages. I repeated for the other 2 accounts, and now all works fine.
  Thanks so much for your help.

• After jumpstart host doesn't prompt for root password

  Hiya gang,
  I am migrating my jumpstart functionality to a new server and while it would appear that 100% of things are identical on both (as far as my /jumpstart tree is concerned), when I jumpstart a host (V240, in this case, but I've seen it on a SunBlade 150 too) everything appears to go well, but after the host reboots at the very end and I attempt to log in on console as root I am not even prompted for a password.
  I've booted to single user over the net and on the disk that was just jumpstarted I see what would appear to be a normal Solaris system. There are no indications that I can find of why it wouldn't prompt for password at all, and I'm not well enough versed with the way the login functionality works to know why this is.
  My new jumpstart server is running Solaris 10 (08/07), and I'm trying to jump a host with the same version. The very same jumpstart using my old jumpstart server works just fine.
  Thanks in advance,
  pb

  Darren,
  Thanks for your reply. It got me in the right frame of mind for troubleshooting :)
  I set up pam debugging for pam_ldap and got the following messages in /var/adm/messages:
  Aug 29 10:13:46 testfoo login: [ID 293258 auth.warning] libsldap: Status: 2 Mesg: Unable to load configuration '/var/ldap/ldap_client_file' ('').
  Aug 29 10:13:46 testfoo login: [ID 562097 auth.alert] open_module: Owner of the module /usr/lib/security/pam_mkhomedir.so is not root
  Aug 29 10:13:46 testfoo login: [ID 487707 auth.error] load_modules: can not open module /usr/lib/security/pam_mkhomedir.so
  Aug 29 10:13:46 testfoo svc.startd[7]: [ID 694882 daemon.notice] instance svc:/system/console-login:default exited with status 1
  Aug 29 10:56:51 testfoo su[3209]: [ID 105162 auth.alert] open_pam_conf: Owner of /etc/pam.conf is not root
  Aug 29 10:57:49 testfoo login[1225]: [ID 105162 auth.alert] open_pam_conf: Owner of /etc/pam.conf is not root
  ...so, I checked them out and /etc/pam.conf and /usr/lib/security/pam_mkhomedir.so are both owned nobody:nobody, which smelled like an NFS issue since both of those files are copied over to the hosts as part of a JASS_FILES variable, but during the finish script execution (they're copied by install-templates.fin). So, I did some digging there and found another Sun forum thread that had info on it:
  http://forums.sun.com/thread.jspa?forumID=841&threadID=5100999
  ...so I made the requisite change to /etc/default/nfs (setting the max version to 3) and the next jumpstart I tested worked perfectly, password prompt and all. All files that were previously owned nobody:nobody had the correct ownership this time around.
  Crazy!
  Thanks again Darren for your input!

• System hangs mounting encrypted lvm, doesn't wait for password

  I have a system with two hard drives, each that has a separate encrypted lvm. The drive with my / parition mounts fine, using the grub command line cryptdevice paramater.
  But the second encrypted partition on the second hard drive, defined in crypttab, causes the system to hang during boot. I get a message: "a start job is running for cryptography setup" and a little moving asterick while the system waits. At the same time there is a second similar message with moving asterick: "a start job is running for" and the name of the lvm device to be started. And if I define all the volumes on the lvm to be mounted in fstab, I get yet more "a start job is running" messages and hangs for them, all simultaneously.
  It seems like the system is not stopping and waiting for the password, before trying to start the lvm and then hanging. I've found that I actually can type in the password while the system is stuck like this (though the screen doesn't really register that I'm typing a password) and then the system will continue and start the lvm and mount volumes properly as defined in fstab.
  I don't really know much about how all this stuff works, but gather from reading around that perhaps systemd is not waiting for the password, before tying to automatically start the lvm? And tha'ts causing the hang. (I have LMDE installed with a separate /boot parition on the same number 1 drive and it boots as expected, I'm assuming this is because it's not using systemd.)
  The only post that I could find that remotely seemed similar to my problem is this: https://bbs.archlinux.org/viewtopic.php?id=153811
  But I don't really follow what's being said in that thread or the solution, regard the .service file. Where is is? What would I edit in it? Is that what I want to do?
  Thanks to anyone for any help on this.

  Well I just figured out that I put the wrong UUID in /etc/fstab. /dev/sdb1 (the disk being unlocked) != /dev/mapper/crypt2 (the unlocked partition). Now everything works as it should.
  Last edited by houron102 (2012-09-14 01:19:47)

• SSL and X.509: browser doesn't prompt for a certificate

  Hello!
  I am trying to configure my NW ABAP to work with certificates. I have followed the instructions in SAP help for <a href="http://help.sap.com/saphelp_nw04/helpdata/en/65/6a563cef658a06e10000000a11405a/content.htm">Configuring the SAP Web AS for Supporting SSL</a> and <a href="http://help.sap.com/saphelp_nw70/helpdata/en/a8/d9d53a9aa9e933e10000000a114084/content.htm">Configuring the System for Using X.509 Client Certificates</a>. I configured the PSEs, set the profile parameters, imported certificates into my browser from service.sap.com, set values in USREXTID table.
  Now I can use the services from SICF via HTTPS with no problem by providing username and password when prompted by web browser. However, I can't make the browser prompt me for a certificate. I tried to play with service parameters in SICF. No matter what I do, my browser never asks me for a certificate. What am I missing?
  Thanks for your hints!
  Regards,
  Igor
  Here are my profile parameters:
  [code]ssf/name = SAPSECULIB
  ssf/ssfapi_lib = $(DIR_CT_RUN)\sapcrypto.dll
  sec/libsapsecu = $(DIR_CT_RUN)\sapcrypto.dll
  ssl/ssl_lib = $(DIR_CT_RUN)\sapcrypto.dll
  icm/server_port_0 = PROT=HTTPS, PORT=443, TIMEOUT=10
  icm/server_port_1 = PROT=HTTP, PORT=8000, TIMEOUT=10
  icm/HTTPS/verify_client = 1
  snc/extid_login_diag = 1
  snc/extid_login_rfc = 1
  login/create_sso2_ticket = 2
  login/accept_sso2_ticket = 1
  login/ticket_only_to_host = 1[/code]

  I am trying to implement SSO thru Web Based Gui and using Digital Certificate for the user authentication. I have done the followings
  1- I have configured my SAP ECC AS ABAP Server for SSO / HTTPS.
  2- My server is signed with SAP AG test root Server certificate.
  3- I am using x.509 free generator to generate Client certificate
  4- I have mapped this client certificate in table USREXTID
  5- I have also installed the above client certificate in my browser.
  Now, when I am accessing the Server thru HTTPS web link, I am getting this Windows:
  See the screenshot from the link.
  http://www.zshare.net/image/812282264b4e0cc2/
  Itu2019s accepted as SAP Service / TCS certificate is not a known CA for the world.
  On clicking Continue, the System asks for the User ID and Password:
  See the screenshot from the link.
  http://www.zshare.net/image/81228268eda10f1c/
  I believe it shouldnu2019t ask for the user ID and password I as have installed the digital certificate and have maintained it under VUSREXTID
  Some part of my SMICM is below:
  [Thr 5920] CONNECTION (id=2/11092):
      used: 1, type: 1, role: 1, stateful: 0
      NI_HDL: 52, protocol: HTTPS(2)
      local host:  172.16.0.56:1443 ()
      remote host: 172.19.65.2:52123 ()
      status: NOP
      connect time: 08.10.2010 08:52:32
      MPI request:        <0>      MPI response:        <0>
      request_buf_size:   0        response_buf_size:   0
      request_buf_used:   0        response_buf_used:   0
      request_buf_offset: 0        response_buf_offset: 0
  [Thr 5920] MPI:6 create pipe 0000000004A00AE0 1
  [Thr 5920] MPI<1749>6#1 Open( ANONYMOUS 6 1 ) -> 6
  [Thr 5920] MPI<1749>6#2 Open( ANONYMOUS 6 0 ) -> 6
  [Thr 5920] MPI:9 create pipe 0000000004A00F60 1
  [Thr 5920] MPI<174a>9#1 Open( ANONYMOUS 9 0 ) -> 9
  [Thr 5920] MPI<174a>9#2 Open( ANONYMOUS 9 1 ) -> 9
  [Thr 5920] <<- SapSSLSessionInit()==SAP_O_K
  [Thr 5920]      in: args = "role=2 (SERVER), auth_type=1 (ASK_CLIENT_CERT)"
  [Thr 5920]     out: sssl_hdl = 0000000009E15130
  [Thr 5920] NiIBlockMode: set blockmode for hdl 52 TRUE
  [Thr 5920]   SSL NI-sock: local=172.16.0.56:1443  peer=172.19.65.2:52123
  [Thr 5920] <<- SapSSLSetNiHdl(sssl_hdl=0000000009E15130, ni_hdl=52)==SAP_O_K
  [Thr 5920] <<- SapSSLSessionStart(sssl_hdl=0000000009E15130)==SAP_O_K
  [Thr 5920]          status = "new SSL session, NO client cert"
  [Thr 5920] IcmPlCheckRetVal: Next status: READ_REQUEST(1)
  [Thr 5920] IcmReadFromConn(id=2/11092): request new MPI (0/0)
  [Thr 5920] MPI<1749>6#3 GetOutbuf -1 1771d0 65536 (0) -> 0000000004B77240 0
  [Thr 5920] <<- SapSSLReadPending(sssl_hdl=0000000009E15130)==SAP_O_K
  [Thr 5920]     out: pendlen = 0
  [Thr 5920] <<- SapSSLRead(sssl_hdl=0000000009E15130)==SAP_O_K
  [Thr 5920]          result = "max=65463, received=430"
  [Thr 5920] IcmReadFromConn(id=2/11092): read 430 bytes(timeout 500)
  [Thr 5920] BINDUMP of content denied
  [Thr 5920] PlugInHandleNetData(rqid=2/11092/1): role: 1, status: 1
  #content-length: 0/0, buf_len: 430, buf_offset: 0, buf_status: 0

• [solved]vlc audio doesn't work for HD videos on spdif

  As said vlc doesn't work with HD videos, and now I tried to get it to work my normal videos have echo.
  I have spdif output and use alsa. Everything worked just few day back. It might be the update to KDE4.4.1, but I'm no sure.
  I'll give more ifo when I get it.
  Never mind I reset the vlc settings and everything works fine.
  Last edited by Primoz (2010-03-07 10:51:59)

  Wow...looks like I spent waaaaay too much time on this problem. The mute button on my IR remote wasn't working which is why I thought it couldn't be a mute problem, but it seems that is just an LIRC mapping problem. When I use the keyboard +, it un-muted. Now to fix LIRC...
  Thanks kid

• Encrypt - How to modify the encrypt hook ?

  Hi,
  I'm running Arch on a LVM on LUKS partition scheme.
  I use a key file to unlock the LUKS containers and I don't have any passphrases.
  So, I'd like to modify the encrypt hook to not ask for a passphrase if it doesn't find any key file.
  1) Do you have any ideas for a plausible error to return (text to write on screen) such as "Boot failure" or so ?
  2) How can I stop the boot in the encrypt hook ? Is there a way to return a fatal error or something like that ?
  Thanks.

  See  >  Change your iTunes Store country
  Here  >  http://support.apple.com/kb/HT1311

• Error while signing in. No prompt for Master Password.

  Firefox 3.6.15 (Mozilla/5.0 (Windows; U; Windows NT 5.1; sv-SE; rv:1.9.2.15) Gecko/20110303 )
  Firefox sync 1.7
  Sync NEVER works automatically. In a new FF session it always reports "Error While Signing In". If I try to connect manually I must go through the set-up dialogue and enter my Master Password etc and then it works (during that session).
  I have a Master Password defined.
  Sync doesn't prompt for that before trying to connect. So the connection fails and sync concludes that a set-up must be performed.
  Useless extension in current state.

  Hi,
  as per the error message is:
  "... The part /soap:Envelope/soap:Body was required to be signed by the policy with the transformations [], but the signature was not accepted. (Info: number of valid signatures: 1, number of accepted signer certificates: 0.) ..."
  I guess the cert. setup either on your side or the other system's side is not fully correct. Check whether all cert., priv keys and public keys are exchanged propperly and setup as trusted certs.
  Regards,
  Kai
  Edited by: Kai Lerch-Baier on Jul 9, 2009 1:24 PM

• Windows Update prompt for definition updates

  I have a FEP 2010 client that is prompting the end user with a Windows Update dialog when definition updates are available.  I checked his WU settings and he is currently set to download update, but let him choose when to install.  I thought this
  was the issue, but a Win 7 computer has the same settings and doesn't prompt for the definition updates.  I have approximately 500 FEP clients installed and this is the only case where the end user is being prompted for definition updates.
  Thanks for the help
  John

  This is old post and successor of FEP is System Center Endpoint Protection (SCEP), I suggest try reproduce this issue in SCEP and check if it exist or not and if it exist, then post it as a new question.
  You may also configure Endpoints to use directly update their Endpoint Protection and disable updating through Microsoft Update and see if that solve the problem.

• What triggers the prompt for memory test during boot up of WLC.

  I have a controller that sometimes does and sometimes doesn't prompt for memory test at boot up. What triggers the prompt for memory test at boot up?

  We have the same behaviour with a 4402 controller.
  After a software upgrade from 4.2.130.0 to 4.2.176.0 the controller didn't reboot automaticly during the first restart with the new software. I connected via console and saw this message:
  Airespace 4200 Wireless LAN Switch Board - Memory Test
  Invalid Option...Press any key to continue
  Airespace 4200 Wireless LAN Switch Board - Memory Test
  1. Restricted [4kB per MB]
  2. Entire Range [512M]
  3. EXIT
  Then I choosed option <3 Exit> and the controller started correct.
  Regards
  Hendrik