Stop generating Obssocookie for unauthenticated user

Hi All
Is there any way in OAM to stop generating obssocookie for the unauthenticated user ?
my case here is that , I am trying to access a protected resource under a protected authentication policy in OAM and then the obssocookie is generated before the authentication happen and when I click the "Self Registration Link" then I am getting "401 unauthorized" because I am accessing the self registration page as "OblixAnonymous" user and failed to authenticate (not sure it says i is anonymous scheme)
Thanks

We take a routine in output requirement! it's done!

Similar Messages

  • How can we stop generating spools for some batch jobs?

    HI guys,
    Is memory will be occupied in SAP  during spool generation from batch jobs ?
    If yes, to reduce occupied memory, we want to stop generating spools for few batch jobs. Please suggest me the way how we can acheive this.(Step details)
    Please help me.
    Thanks in Advance.
    Regards,
    Sahil

    Stopping the spool generation for background jobs will not help you to reduce the memory load.
    First check what is the total memory utilization and type of processes where the memory is being utilized more.
    EWA can give you better idea to get the above details.
    Spooling concept doesn't eat that much of memory what you are expecting.
    Regards,
    Nick Loy

  • Wiki Server - People - suppress for unauthenticated users

    With Wiki Server 4 (Server 10.8.1), unauthenticated users hitting the web server's default home page are presented with Wiki Server's default landing page listing:
    "My Documents"
    "All Activity"
    "Wikis"
    "People"
    If an unauthenticated user tries any of the first three items they get no content, which is great (althouh only the "My Documnets" page prompts for credentials — I think they all should).
    However, if they hit the "People" item, it lists (exposes) all of the people on your system.
    We don't want a list of our users exposed — we think if you are unauthenticated, you shouldn't see anything when clicking on "People".
    Suggestions?

    ******** PLEASE BEFORE DOING ANYTHING COPY THE CONTENT FOLDER OF THE SERVER.APP AND BACK IT UP SOMEWHERE SAFE**************
    I have been working on this for weeks.....  I understand some people want to be able to share there blogs and people pages but you have to understand some people don't
    "People pages" should be set up is the same way as wikis...  The owner(s) have the ability to give access to whom they choose.  If it is a public "people page" it shows up in search and activity, if it is private it doesn't show up (or only shows up in search results with people that have access).  I also feel you should have the ability to choose whether a person has a "people page" or not. 
    But it is what it is. So I'll step through what I did to make it work for me.  You do lose some services but this was my goal....
    1.  All activity does not work
    2.  Search does not work
    3.  tags do not work (I hope to fix this because I want tags....)
    4.  iPad now brings up the PC version of the wiki server, which eliminates the ability to upload files.  Some one with some java script experience maybe able to help us out but at this time I just chose to remove it....
    **The other thing to note is the iPad version is completely independent of the PC version (I address this also) so even if you make all these fixes someone with an iPad will still be able to search and gain access to people unauthenticated***
    Now all services (including the home page and people) need authentication to gain access.
    ************** Once complete you need to stop/restart wikis**************
    **************I recommend making a copy of the content file of your server app (just incase)**************
    Step 1.  Set up authentication: (SAVE A COPY ON THE DESKTOP BEFORE EDITING)
    1.Edit the controller for the wiki
    /Applications/Server.app/Contents/ServerRoot/usr/share/collabd/coreclient/app/co ntrollers/application_controller.rb
    2. find the block
       helper_method :service_client, :current_user, :current_version, :page_context, :use_inline_webauth, :javascript_includes_for_locale
       helper_method :webcal_enabled?, :webmail_enabled?, :entityURL, :iphone, :ipod, :ipad
       before_filter :master_before_filter, :block_older_internet_explorer
       after_filter :master_after_filter
    3. Change to
       helper_method :service_client, :current_user, :current_version, :page_context, :use_inline_webauth, :javascript_includes_for_locale
       helper_method :webcal_enabled?, :webmail_enabled?, :entityURL, :iphone, :ipod, :ipad
       before_filter :master_before_filter, :block_older_internet_explorer
       before_filter :ensure_user_is_authenticated
       after_filter :master_after_filter
    2.  Remove search/all activity/tag access (SAVE A COPY TO DESKTOP BEFORE EDITING)
    Go to:
    /Applications/Server.app/Contents/ServerRoot/usr/share/collabd/coreclient/config /routes.rb
    I removed the following lines of code:
        match "/updates" => redirect("/wiki/activity")
        match "/updates/:path", :to => redirect {|params| "/wiki/activity/#{params[:path]}"}
        match "/activity", :to => 'activity#index'
        match "/search", :to => 'find#index'
        match "/search/:id", :to => 'find#index'
        match "/find", :to => 'find#index'
        match "/find/:id", :to => 'find#index'
    3.  Remove activity from menu bars (SAVE A COPY TO DESKTOP BEFORE EDITING)
    Go to:
    /Applications/Server.app/Contents/ServerRoot/usr/share/collabd/coreclient/config /initializers/register_apple_plugins.rb
    I removed these lines of code:
        BannerLinks::Project::Activity,
        BannerLinks::Project::Documents,
        BannerLinks::Project::Tags,
        BannerLinks::Person::Activity,
        Sources::Activity,
       Sources::MyFavorites
    4. Redirect iPad to the PC version of the wiki server. (SAVE A COPY TO DESKTOP BEFORE EDITING)
    Go to:
    Applications/Server.app/Contents/ServerRoot/usr/share/collabd/coreclient/app/con trollers/application_controller.rb
    Change:
          if ipad and ios5plus
          redirect_url = "/wiki/ipad/#route=#{request.fullpath}"
          logger.info("Redirecting to #{redirect_url} because we detected an iPad running iOS5+")
          redirect_to redirect_url
          end
    To:(You could probably just remove these lines but I was still troubleshooting at the time)
          # if ipad and ios5plus
          # redirect_url = "/wiki/ipad/#route=#{request.fullpath}"
          # logger.info("Redirecting to #{redirect_url} because we detected an iPad running iOS5+")
          # redirect_to redirect_url
          # end

  • SQL*Developer 2.1 - Not Generating DDL for Different Users

    Using SQL*Developer Version 2.1.0.63 I get an error trying to generate DDL from another user, that has access to many other schemas. It looks to me like Sql Developer is calling the DBMS_METADATA package from within other PL/SQL.
    I am receiving the following error:
    ORA-31603: object "ACCOUNT_TYPE_LKP" of type TABLE not found in schema "POR_OWN"
    ORA-06512: at "SYS.DBMS_SYS_ERROR", line 105
    ORA-06512: at "SYS.DBMS_METADATA", line 3241
    ORA-06512: at "SYS.DBMS_METADATA", line 4812
    ORA-06512: at line 1
    I would receive these same errors in SQL Developer 1.5, but the DDL would still generated. It was picking something up, even though it had an error.
    Our DBA has not been able to provided a work around. He says you have to login directly as the owner of the objects to use dbms_metdata in this fashion.
    Is there any work around for this? I really need to be able to get DDL and I do not want to go back to 1.5 (I like the other new features of 2.1).
    Thanks,
    Tom

    We have several users currently using SQL Navigator and/or TOAD. We would like them to switch to SQL developer, but part of their job is to view the source of views in another schema. They have select privileges on the underlying tables and are able to see the source using other tools. Using SQL Developer, they receive on ORA-31603 because it's calling dbms_meta. Note ID 1185443.1 describes the issue and suggests granting the users the SELECT_CATALOG_ROLE.
    We are hesitant about granting this role to these users which allows access to ever 1,700 objects, plus execute privileges to 4 objects.
    Support indicated that Enhancement Request 8498115 addresses this issue.
    Is this something that may be addressed in the next release?
    Thanks,
    Paul

  • Unix command to stop Software updates for all users except admins?

    I want to stop App Store and other software updates for all user accounts. Administrator accounts should still be able to do Software Updates.
    Is there a terminal command that can do that i can push out through ARD?
    Thanks

    Managed preferences are the best bet. You could use Profile Manager or use the mcx command from the command line. I'd strongly suggest browsing over this before delving into MCX though...
    http://macadmins.psu.edu/2011presentations/PSUMAC301-MCX-John_DeTroye.pdf
    (the Workgroup Manager application shown is deprecated, but it's essentially the same with Profiles and running MCX from the command line)

  • Not Generating Spool for my user id

    Initially when i run the transaction CO02 and printing the production order, spool was generating properly. so in next day due to some issues i changed the print program or adobe form then spool was not generating to my user id only, if i print with any other user id i am able to see the spool , so what is the problem for my user id, could any one help in this scenario.

    Hi,
    Adding to Ashwin's point there can be another possibility, go to tcode SU3 and in Defeaults tab check and compare the Spool control Section between your login and the other user login.
    Check if the check box 'Output immediatly' is selected or not.

  • To stop email notification for a user regarding PR release in workflow

    Hi All,
    I am new to workflow.
    I need to stop an email notification for a user who receives it for PR release.
    I checked earlier posts which stated some send email steps in workflow and extended notifications.
    But I am not aware of any of this things.
    Can you all please help me in resolving this? As i hardly know anything about workflow.
    How can i check where this email notification gets triggered or from where it picks the user id?
    Your help would be appreciated.
    Thanks.

    Hi Dharmin
    Identify which workflow is for PR:
    Go to T Code SWI2_FREQ
    Select the appropriate date range
    Work item Type should be (Sub-)Workflow
    Execute
    You will get the list of ALL workflows triggered during the given time interval
    Hopefully, the developers in your system have maintained the correct Work item text and you can identify the PR workflow . Pick the WSxxxxxxxx number from the "task" Column for the PR Workflow
    Go to SWDD and analyze this workflow, check for steps which are sending the emails.
    (simplest possibility)
    Once you find the step, see if this can be blocked for a given user or not (or will it block for everyone).
    Reach there and give us the details of the email step and we shall work out a way.
    BTW - did you try to ask for the Functional and Technical Specs for this ?
    It should contain some details to help you.
    Regards,
    Modak

  • Auto-Generated Number For All Users

    We're on Lync Server 2013, running a front-end pool consisting of 3 front-end servers. Users are VoIP enabled. We're seeing some inconsistent behavior while right-clicking an user and selecting the "Call" option. Even though the respective target
    users don't have an "Other" phone number set in AD, the Lync client seems to be somehow auto-generating a normalized entry and presenting this as an "Other" entry in the contextual menu that allows calls. The entry always begins with +1
    (425). Strange enough, this is the prefix used in some sample normalization rules in a Microsoft article
    here.
    Even though Dial Plans - to my understanding - shouldn't alter this (they only apply normalization rules for manually dialed numbers only), I've searched through all the normalization rules but there's none that start with +1 (425). I've also tried running
    ABSConfig, yet this tool crashes systematically on multiple machines (the Lync servers have updates dating from less than 2 months ago).
    Also - there's no normalization .txt file created in the ABFiles in the Lync Share, as in
    this article. Taking a look in the local GalContacts.db file shows the regular phone numbers, but not this one - hinting that it's something the Lync client creates on the fly. Additionally, no Lync Address Book Web Query is visible in Fiddler when browsing
    through the users' phone numbers in the Lync client.
    Adding to the problem is that some users see the "Other" entries, while others don't - eg. user X right clicks user Z and sees a wrong "Other" entry, while user Y right clicks user Z and doesn't see any wrong entry containing "Other".
    First question is what could trigger this behavior in the client ? Secondly, has ABSConfig.exe become broken by a recent update ?

    According to the 2nd article - I've created an empty Company_Phone_Number_Normalization_Rules.txt file and placed it in the Lync file share, in order to avoid any suspicion that the built-in file might be used. I've updated the address book but unfortunately
    can't restart the FE services at this time. There's no still no change in the client.
    Yet - the problem here is the numbers shown aren't present in the files making up the Lync address book inside the local user's sip profile folder.

  • How to stop administrator rights for an user

    Hi,
    We had given the default user in all Mac systems administrator rights while installing the OS 10.3.X
    Now, as per our new policy, users should not have administrator rights. We have one administator login on the systems.
    Can someone help me on disbling the users Admin rights withour affect their data?
    Rgds
    Babu.S

    You should backup the NetInfo database before making any changes. Run the 500.daily script from the command line. You can copy the command from this post and paste it into the Terminal application:
    sudo sh /etc/daily
    Press the return key. Enter you admin password at the password prompt and press the return key.
    Open the NetInfo Manager and navigate to the group admin. You need to unlock the NetInfo Manager and enter your admin password. Remove the user from the field users. Click the lock to save the changes. If this doesn't work I'll hesitantly post the command line method.

  • Webcam stopped working for one user, still works for another user

    I'm using 2 userprofiles on my laptop.
    For 1 user, webcam software works as expected.
    For 2nd user webcam stopped working.
    For this user:
    - Autostart Webcamsoftware doesn't work (traybar).
    - Manual start doesn't work either.
    - I can see that for each attemt, conhost.exe is started but no traybar.
    - In systray i see the icon appearing but after some secs, it disappears.
    - In syslogs, following error is shown:
    Naam van toepassing met fout: traybar.exe, versie: 1.5.4002.79, tijdstempel: 0x46e9fe5c
    Naam van module met fout: traybar.exe, versie: 1.5.4002.79, tijdstempel: 0x46e9fe5c
    Uitzonderingscode: 0xc0000005
    Foutoffset: 0x00001410
    Id van proces met fout: 0x16f8
    Starttijd van toepassing met fout: 0x01ccecdf12fc5566
    Pad naar toepassing met fout: C:\Program Files (x86)\Camera Assistant Software for Toshiba(2.0M)\traybar.exe
    Pad naar module met fout: C:\Program Files (x86)\Camera Assistant Software for Toshiba(2.0M)\traybar.exe
    Rapport-id: 5a545dcd-58d2-11e1-9c2d-463500000031

    I use my laptop for both private and office. Therefore i created a userprofile for home and another for the office.
    Both userprofiles have different settings/desktops/etc.
    Meanwhile i did the following:
    - boot and logon with primary profile (working webcamsoft)
    - uninstalled the program
    - used CCClean to cleanup registry (and other stuff)
    - reboot and logon with secondary userprofile
    - used CCClean to cleanup registry (and other stuff)
    - reboot and logon again with primary userprofile
    - install the webcam software
    - reboot and logon with primary userprofile
    - test webcamsoft, it works
    - reboot and logon with secondary userprofile
    - webcam still doesn't work
    any suggestions???

  • Not generating IDOC for payment Advice to Vendors

    Hi,
    IDOC was getting generated before one month but now SAP system has stopped generating IDOC for vendor Payment advice. This problem is with all the vendors.
    After execution of t-c-ode F110, payment document is successfully created, but IDOC is not geenerated. There is no log about "IDOC not getting generated"
    Checked Table REGUH, IDOC number is displayed as 0000000000000.
    This was happening perfectly one month back.
    There is no change in Vendor master data, IDOC number range is available.
    There is no posting of IDOC in table DFKKTHP and checked Report REREMITADV for which there is no data.
    Waiting for your valuable responses.
    Regards
    veleyudham

    Hi,
    First check certain customization:-
    (1) FBZP setup for payment method at country level. Whether IDOC generation program is assigned or not.
    (2) Then check the variant of RFFOEDI1 in the printout tab of F110. Is the selection creteria OK?
    (3) Check the partner profile in WE20 for the bank.
    Then run the program RFFOEDI1 in SE38 for your payment run and check the output.
    You can also get this program debugged from you ABAPer to have root cause analysis.
    Regards,
    Gaurav

  • How can i delete keychain data for all users on my Mac Server?

    We have 2 Mac servers on our windows network and user passwords change every 30 days to keep up with security. How can i stop keychain asking for the users old passwords or get it to update with the change of password?

    Hello,
    First you have to create a new folder or 2/3, om My Mac... Mail>Mailbox>New Mailbox...> Loacation>On My Mac.
    Highlight the eMails  & drag to the new box(es), if IMAP Mail will try downlodaing them again.
    If POP & Remove fron Server when downloaded it won't.
    Quit Mail after the move, log into gMail Webmail via a browser & delete what you wish.
    PS. Even though you delete everything in gMail, google keeps copies for themselves & the NSA, just you cannot see them.

  • Generate Alert for service startup and stop

    Hi Team,
    Using SCOM 2012 I'm able to generate alert for service stop. Is it possible to generate alert for the same service if it started.
    Thnx

    You may create an event alert rule which check the system event with event id 7036, Source ,service control manager, and description, XXX service entered the running state.
    For how to create event alert rule with event description, pls. refer to
    http://blogs.technet.com/b/kevinholman/archive/2008/04/22/using-event-description-as-criteria-for-a-rule.aspx
    Roger

  • How to stop pwsswd  change option for Admin user id or SLD or monitor ID

    Hello frineds,
    As I know we do have one option to disable password change prompt using J2EE Admin tool ( Go to security provider->Usermanagement and search for the user
    Select the user and check "No password change required") but this option checked for all user users by default and it prompting password change after 90 days (default).
    Is there any other way to stop change password prompt for admin user ID's?
    Any help is a great help
    Thanks and regards,
    Venkat

    Hi,
    I think we  need to change the parameter value in the document type definition.
    Check this: http://www.atg.com/repositories/ContentCatalogRepository_en/manuals/ATG6.0.0/intframe/intframe0210.html
    Please check with your BASIS team regarding this.
    Thanks,

  • Stop Mounted Spareseimages from appearing for other users

    Hi
    I have several user accounts on my Mac. Each ones does automated backups to a dedicated sparseimage file.
    In other words, I have user accounts Tom, Mary, and Joe. I have a mounted network share for each user, Tom, Mary, and Joe. So when Joe logs in, Joe's network share is automatically mounted for him. That part works great.
    In each network share, there's a sparseimage that each person backs up to. So Mary's home folder is backed to a sparseimage file on Mary's Network share. The same goes for Tom and Joe.
    All of this is working great.
    The only problem is this: If Joe is logged in, and his account is backing up, then his sparseimage file would be mounted on his desktop. (That's how it should be.) However, if while Joe is logged in and backing up, he steps away from the computer, and Mary logs in, Joe's mounted sparseimage will appear on Mary's desktop and she has full access to his backed up data.
    If Joe has mounted a sparseimage, why does it appear on any other user's desktop who logs in? Why do they have access to it?
    Once Joe is finished with his backup and the sparseimage is closed, it (correctly) disappears from all desktops.
    Any help would be greatly appreciated.

    sparseimage volumes mount like external hard drives. All users can see their contents. To restrict access to only one user, use the same procedure for doing this for an external hard drive: right click the mounted volume, Get Info, and change the permissions so that only the users you want have access.

Maybe you are looking for