SSL - Secure and non secure objects

Similar Messages

• Example of Serialized objects and non-Serialized objects

  Hi,
  Can you please tell me some of eample of Serialized objects and nonserialized objects in java and j2ee.
  Thanks
  alex.

  sravan123 wrote:
  Serialised objects are File ,all Collection classes , subclasses of Throwable and subclasses of Number.
  Non-Serialised objects are Connection,DataSourrce,Resultset , Thread and MathYou forgot to log in as another user before answering your own question incorrectly for reasons I'm currently unable to fathom

• JConsole Heap and Non Heap Objects viewing

  Hi,
  I am looking for a good tutorial on how to view what are the objects (specially their toString() value) which exists in different heap (eden, survivor,tenure ) and non heap spaces (permgen (ro,rw), code cache) ).
  Are there any good tutorials out there to view these objects live..
  I am assuming there jconsole in support with other jdk tools these details could be seen.
  Regards,
  Raja Nagendra Kumar,
  C.T.O

  Hi,
  I am looking for a good tutorial on how to view what are the objects (specially their toString() value) which exists in different heap (eden, survivor,tenure ) and non heap spaces (permgen (ro,rw), code cache) ).
  Are there any good tutorials out there to view these objects live..
  I am assuming there jconsole in support with other jdk tools these details could be seen.
  Regards,
  Raja Nagendra Kumar,
  C.T.O

• SSL problems with "non-secure elements"

  hello all
  We have made a WEB application based on Tomcat and Apache Struts. We have setup with SSL.
  SSL goes to Apache HTTP server, which speaks with Tomcat via apj13.
  The problem is that IE sometimes shows error message "This page contains both secure and non-secure elements. Do you want to
  display non-sescure elements ?". I think it has to something with javascript, because after that error massage
  javascript doesnt work anymore. If I click javascript error icon, it says "access is denied".
  That erorr happens randomly, I cant repeat it at the same place.
  Can anyone help me somehow ?
  At what circumstances IE displays that error ? We use version 6.0
  Maris Orbidans

  It turned out to be a Micro$oft bug
  http://support.microsoft.com/default.aspx?scid=kb%3ben-us%3b269682
  It seems that IE 6.0 has the same bug as 5.5.
  SYMPTOMS
  When you are using Secure Sockets Layer (SSL) and you click a link, you may receive the following warning message:
  This page contains both secure and non secure items. Do you want to display the non secure items?

• Flash causes "page contains secure and non-secure..."

  Hi All,
  I have a flash menu on my web store .php pages and am getting
  a "this page contains secure and non-secure items..." in IE7 in
  Vista. I think this is because of the Flash menus, but thought I
  had taken care of this by making the codebase embedding to
  "https://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=7,0,19,0"
  Any suggestions on how to deal with this?
  Thanks, Scott

  Thanks so much ShadowKnyte for the reply. Turns out it wasn't
  the Flash menu, after all, as it did have the embedding links set
  to https. In fact, it was my Google analytics call at the end of
  the page. It needed to be changed to:
  <script src="https://ssl.google-analytics.com/urchin.js"
  type="text/javascript"></script>
  In case that helps anyone else out.
  Cheers, Scott

• HT5808 I have an original iPad and there have been no recent iOS updates for it. Am I vulnerable to the recent SSL security issues? Is my iPad safe to use?

  I have the original iPad. There have been no recent ios updates for it. Is the SSL security issue a problem? Is my iPad safe to use?

  You are OK. The fix is not necessary in iOS 5.1.1.

• Transport of Security objects in BPC 7.5NW

  As a part of NW BPC transports, changed the entries in table UJT_TRANS_CHG. For the 1st transport (from DEV to QA)wanted to transport ALL objects including Security and Teams. So, selected 'Development' for ALL objects under this table.
  After the transport collection via tcode UJBPCTR and importing into QA, found that 'Users', 'Teams'  and 'Task Profiles' did NOT transport. 'Member Access Profiles' did transport to QA.
  I expected 'Users', 'Teams'  and 'Task Profiles' also to be transported. We are on SAP BPC 7.5NW, SP4.
  Am I missing something here ?
  Thanks in Advance.

  Hi
  we had the same problem and didn't know if Security objects could be transported, but we found the BPC User Mass Management Tool.
  http://www.sdn.sap.com/irj/scn/index?rid=/library/uuid/d0cdbccf-0def-2d10-298d-f4223de9a6ed&overridelayout=true
  This could help you to export the security objects in DEV and import the objects in PRD.
  The transports you need for the ZUJE_MASS_USER_MGMT   Programm you found on page 46 in the document mentioned above.
  Please let me know if we could help you.

• Service Entry Sheet in ECC 6.0 shipment costing security object?

  Does anyone know what security object is being checked during service entry sheet creation?  When I run the shipment cost create process in foreground (RV56TRSL) VI04, the program creates and settles the shipment cost, but in background only the shipment cost doc creates the settlement remains open (status A) and I get a message:
  You have no authorization for this transaction with movement type 101
  My assumption is a different object is being called in background versus foreground but my traces are not showing me anything useful. 
  thank you

  Shipment settlement in ECC 6.0 requires the users to have some version of the MIGO object to prefrom the goods movement.  this is a change from 4.7 and prior.

• DMS security object c_drad_obj

  Hi DMS Gurus,
  I'm hoping someone can help me.  I've been testing different scenarios all day and just did a web search to see if anyone has posted anything about this in the past.  I came up with zero on both counts.
  We are new to DMS at my company.  Our objective is to give some users full access to DMS and others no access.  I have found that our existing user roles already pull in Document Management security object CV, I think because the user has access MM03.  For example our sales role has the c_drad_obj object assigned, but we don't want this role to have access to DMS.  No matter what I change the options to in the security object, it doesn't have any effect.
  I was under the impression that I can restrict the activity / document type / linked SAP object / document status in the c_drad_obj object.  But as I previously said, no matter what I set these to, even to disable the object itself, it doesn't seem to matter.
  Thanks for your consideration.
  Regards,
  Julie

  You do realize that C_DRAD_OBJ is relevant only for Object Links stored in table DRAD? Not all documents will have Object Links. See Authorization Objects for Documents - Document Management - SAP Library for details on DMS authorizations. The main table for documents is DRAW.

• Security object for check against Lab office in DIR

  Hi,
  We are running R/3 46C and use DMS to store our business documents via online vault. I have a requirement to set up access based on Lab office (department) that is used in the Document Information Record. Is there a standard security object that I can use in security roles to build this.
  Any info would be appreciated and rewarded.
  Regards
  Nirmal

  Your best option would be to use a user exit, for example badi "document_main01" "before_save" to populate the auth. group field, and then use normal roles/profiles to check on auth. group.
  Regards,
  Espen
  Please reward if useful.

• How to control partner function through security objects ??

  Hi, theres any way to control witch Partner function are avalilable to assign in support messages ??
  Theres any security object to control that ??
  I have configured rules for automatic determintation, but in certains cases i need to assign manually.
  I need to control this asignation Partner function
  Any ideas ?? CRM_ORD_OP ??
  Best Regards

  I got it fixed my self.
  here is the solution.
  in user exit :EXIT_SAPMM06E_012.
  call below FM: MM_CALL_UPDATE_PARTNERS
  Trick is pass the partner values the one you wanted to below table: x_mmpa and xuekpa.
  you can calculate partner records from wyt3 table depends on your logic/requirement.
  CALL FUNCTION 'MM_CALL_UPDATE_PARTNERS'
       EXPORTING
         ebeln       = wa_ebeln
         bstyp       = 'F'
  *     knuma       = wa_knuma
         application = 'P'
       TABLES
         x_mmpa      = it_mmpa1
         y_mmpa      = it_mmpa2
         xuekpa      = it_uekpa1
         yuekpa      = it_uekpa2
         i_mmpa      = it_mmpa3
         u_mmpa      = it_mmpa4
         d_mmpa      = it_mmpa5.
  Thanks,
  Mahesh

• HELP - SSL Secure Server Issue (SSL_ERROR_NO_CYPHER_OVERLAP)

  My attempts to enable SSL functionality on my app server has failed. When I hit the site from a browser using "https://servername", this error appears in the app server log:
  [28/May/2003:11:19:55] SEVERE (11476): HTTP3068: Error receiving request from 10.147.82.44 (SSL_ERROR_NO_CYPHER_OVERLAP: no common encryption algorithm(s) with client)
  I have already taken the following steps:
  -generate request from web server
  -obtain cert from CA
  -install cert on web server
  -create https listener on web server
  -enable ssl on web server
  -install CA cert on web browser
  -lowered encryption level on app server (SSL2, SSL3 in addition to SSL3/TLS)
  Anybody experience something similar? Any tips?

  You can check the <b>ssl</b> and <b>tls</b> prefs on the about:config page.
  If any ssl or tls pref is bold (user set) then right-click that pref and choose "Reset" to reset the pref to the default value.
  Paste this regular expression in the Search bar at the top of the about:config page:
  *<b>/security.*ssl|security.*tls/</b>
  You can open the <b>about:config</b> page via the location/address bar.
  You can accept the warning and click "I'll be careful" to continue.
  *http://kb.mozillazine.org/about:config
  You can also try to delete the cert8.db file in the Firefox profile folder to remove all intermediate certificates that Firefox automatically stores when you visit a web server.
  You can use this button to go to the currently used Firefox profile folder:
  *Help > Troubleshooting Information > Profile Directory: Open Containing Folder
  *http://kb.mozillazine.org/Profile_folder_-_Firefox

• SSL secured listener with Netweaver possible

  Is it possible to use a ssl-secured listener (protocol=tcps) together with sap netweaver (abap and/or java)?
  Is there significant loss of i/o throughput to be expected?
  A notes search for SSL or TCPS on BC-DB-ORA did not show results.

  I believe it should be possible to use ssl connection. Never tried it, but I think it should work since it is a matter between Oracle Client and listener and has nothing to do with SAP application server. 
  If you security requirements are such that you must encrypt traffic, and if you do not want to mess with tnsnames.ora, wallet and stuff then you might consider using some generic tunneling techniques.
  And it definitely will have some performance impact.
  ... just my two cents.

• TS3276 I can't send messages with mail 6.0 of mountain lion, because I can't desactivate the option SSL (Secure sockets Layers); it is locked

  I can't send messages with mail 6.0 of mountain lion, because I can't desactivate the option SSL (Secure sockets Layers); it is locked

  Hi, i am having the same problem. this is what i have noticed.
  I have 2 x imac's and 2 x macbook air's
  i upgraded the 2 macbook air's and 1 of the imac's to Mountain Lion, all these have problems acessing sites that require you to login .
  the one remaining imac is still running lion and works perfect.
  i am using a dlink router with DD-WRT firmware, i tested teathering from my iphone and i can log into websites fine using the newly upgraded mac's.
  It's not a wireless issue as my imac is using an ethernet connection.
  is there a compatibility issue with some routers.

• Can't access SSL-secured web content from Remote Desktop Server

  I am running RDS on Windows Server 2008R2. No Remote App or Gateway Services, just straight up Remote Desktop.
  After making a RDP connection to the server, when trying to access any SSL-secured website, Internet Explorer displays the error "Internet Explorer cannot display the webpage" with a button labeled "Diagnose Connection Problems." It's the same generic
  IE message that appears when DNS lookups fail. This failure to make SSL connections also manifests itself with Exchange autodiscover not working.
  Strangely enough, Administrator is able to make SSL connections just fine, just not any other users. The server is otherwise completely functional.

  Hi cyborganic,
  To narrow down this issue, Would you like to confirm the following questions:
  1.      
  Does this issue exist when accessing all secured web sites or just some of them? Please try to access
  https://www.microsoft.com.
  Does it work?
  2.      
  Does this issue exist when a user logs on to the console of the problematic server and then access a secure web site? In this way, we can isolate whether the problem is related
  to RDS.
  3.      
  You mentioned that administrator can access properly. As a test, can a problematic user be able to access the SSL site properly if you add him/her to the Administrators group
  temporarily?
  Meanwhile, Please help to make sure the “Cryptographic services” is set to Automatic Start.
  Here, There are some suggestions for
  General troubleshooting
  Suggestion #1:
  =====================================================================
  Run the Network Diagnostics tool in Internet Explorer
  To do this, follow these steps:
  1.    
  Start Internet Explorer, and then try to access the Web page that is displaying the error message.
  2.    
  On the page that displays an Internet Explorer error message, click the
  Diagnose Connection Problems link. The Network Diagnostics tool will run. When the tool has finished running, it will report one of the following results:
  o   
  It was unable to find a problem.
  o   
  It has detected a problem. Additionally, the tool will provide guidance about the next steps to take to troubleshoot the problem.
  Note
  Internet Explorer 6 users click Detect Network Settings
  3.    
  Click
  IP Address, and note the IP Address. You may need it for future troubleshooting.
  4.    
  Follow the steps in the Network Diagnostics tool to fix any connection problems.
  5.    
  Start Internet Explorer.
  If you receive the same error message, go to the next method.
  Suggestion #2:
  =====================================================================
  Use the Delete Browsing History feature
  If resetting the modem or the router did not resolve the problem, deleting your browsing history might help. Follow
  these steps to remove your temporary Internet files, history, and form data:
  Internet Explorer 8
  1.    
  Start Internet Explorer.
  2.    
  On the
  Tools menu, click Internet Options.
  3.    
  Under
  Browsing history, click Delete.
  4.    
  Select the check box next to
  Preserve Favorites website data.
  5.    
  Select the check box next to
  Temporary Internet Files.
  6.    
  Select the check box next to
  Cookies.
  7.    
  Select the check box next to
  History.
  8.    
  Select the check box next to
  Form data.
  9.    
  Select the check box next to
  InPrivate Filtering data.
  10. 
  At the bottom of window, click
  Delete.
  11. 
  Close Internet Explorer, start Internet Explorer again, and then try to access the Web page.
  Suggestion #3:
  =====================================================================
  Use the Internet Explorer (No Add-ons) mode
  To do this, click
  Start, point to All Programs, point to
  Accessories, point to System Tools, and then click
  Internet Explorer (No Add-ons).
  Note Internet Explorer (No Add-ons) mode is only available for Internet Explorer 7 and Internet Explorer 8.
  If this resolves the issue, follow these steps to isolate the browser add-on that is causing the issue:
  1.    
  Click
  Tools, and then click Internet Options.
  2.    
  Click the
  Programs tab, and then click Manage add-ons.
  3.    
  Click an add-on in the
  Name list, and then click Disable.
  4.    
  Repeat step 3 until you identify the add-on that is causing the issue.
  If this issue still persists, Pls refer to the following link for
  Advanced troubleshooting
  You receive an error message in Internet Explorer: "Internet Explorer cannot display the webpage”
  http://support.microsoft.com/kb/956196

• UME security vs ABAP security object level

  We installed Virsa Compliance Calibrator & Access Enforcer and trying to configure security in UME to control user access so that besides action level security, we need further restriction on for example, Functional Area, cost center & department access. Does UME have lower level authorization restriction capabilities similar to that of ABAP authorization object level security? If not, how can we utilize ABAP Virsa security objects to control JAVA front end access?
  Your advice is much appreciated.
  Thanks,

  I'm not aware of a way to limit requestor access (you can request anything visible); however, you can provide direction by populating an attribute field (i.e. company) with valid company values for each role.  When a requestor searches for a role, if they filter by the appropriate company, they will only see valid roles for the request.  I did, however, point the request authentification towards a 'fake LDAP'.  This prevents individuals without specific UME credentials from submitting a request.
  However, you can restrict approvers using a custom approver/determinator.  In my case, I wanted to use a combination of "role" and "usergroup" to determine approver, rather than use one approver set for all requests.  I have implemented and confirmed this works.  The unfortunate side affect, is that you have to maintain a seperate file for this custom A/D (which you have to refer to /append for any request for role approver information).