Strange log entries (authentication fail) wth Home...

I was idly checking the event log on my Homehub 3B and noticed something odd (to me) under the GUI category. An extract from the log reads...
12:51:50,26 July. HTTP User admin login from 192.168.1.64 successfully.
12:28:26,26 July. HTTP User Basic login from 192.168.1.64 successfully.
13:51:09,25 July. HTTP authentication Fail from 118.113.54.xx
14:36:57,23 July. HTTP authentication Fail from 121.229.212.xxx
14:40:16,22 July. HTTP authentication Fail from 118.114.109.xxx
The successful logins are from myself, on the local network, i.e. http://bthomehub.home/ but what are those Fail messages? A quick check using a port-probing tool http://.grc.com/ shows that all my ports are stealthed so how can anyone be accessing the router and getting as far a receiving an authentification failure response?
Im not alarmed, particulalry, but just intensely curious. Anyone any ideas?

Similar Messages

Strange log entry on WLC5508?

following log entry on a WLC5508 (7.4.100.0) is permanentely filling up the log buffer and the WLC operates in low performance.
*spamApTask7: Oct 29 10:08:13.114: #LWAPP-3-DUP_AP_IP: spam_lrad.c:33673 Duplicate IP address detected for AP APb0fa.eb3d.8b4f, IP address of AP 0.2.146.0, this is a duplicate of IP on another machine (MAC address 4:ba:53:e0: 0: 0)
*spamApTask0: Oct 29 10:08:04.478: #LWAPP-3-DUP_AP_IP: spam_lrad.c:33673 Duplicate IP address detected for AP APb0fa.ebb8.de74, IP address of AP 0.2.146.0, this is a duplicate of IP on another machine (MAC address 4:b9:c8: 0: 0: 0)
*spamApTask7: Oct 29 10:07:43.113: #LWAPP-3-DUP_AP_IP: spam_lrad.c:33673 Duplicate IP address detected for AP APb0fa.eb3d.8b4f, IP address of AP 0.2.146.0, this is a duplicate of IP on another machine (MAC address 4:ba:53:e0: 0: 0)
*spamApTask0: Oct 29 10:07:34.477: #LWAPP-3-DUP_AP_IP: spam_lrad.c:33673 Duplicate IP address detected for AP APb0fa.ebb8.de74, IP address of AP 0.2.146.0, this is a duplicate of IP on another machine (MAC address 4:b9:c8: 0: 0: 0)
Has somebody an idea what the issue is or can be? Or has it been monitored from someone else on other installations as well?
Both AP's does have different IP adresses from DHCP server x.y.z.248 and x.y.z.249. WLC is working as internal DHCP server. DHCP proxy is disabled. From what could this strange address 0.2.146.0 come from? I've never seen such an address like 0.2.146.0
I would like to appriciate any kind of help or suggestions
thanks a lot
Klaus

This is another common issue that is seen when the AP tries to join the WLC. You might see this error message when the AP tries to join the controller.
No more AP manager IP addresses remain
One of the reasons for this error message is when there is a duplicate IP address on the network that matches the AP manager IP address. In such a case, the LAP keeps power cycling and cannot join the controller.
The debugs will show that the WLC receives LWAPP discovery requests from the APs and transmits a LWAPP discovery response to the APs. However, WLCs do not receive LWAPP join requests from the APs.
In order to troubleshoot this issue, ping the AP manager from a wired host on the same IP subnet as the AP manager. Then, check the ARP cache. If a duplicate IP address is found, remove the device with the duplicate IP address or change the IP address on the device so that it has a unique IP address on the network.
The AP can then join the WLC.

Strange log entries Running hook /usr/lib/pm-utils/power.d/wireless?

On my desktop machine I get this in the logs;
Running hook /usr/lib/pm-utils/power.d/wireless false:
/usr/lib/pm-utils/power.d/wireless false: success.Running hook /usr/lib/pm-utils/power.d/pcie_aspm false:
/usr/lib/pm-utils/power.d/pcie_aspm: line 9: echo: write error: Operation not permitted
/usr/lib/pm-utils/power.d/pcie_aspm false: success.
Running hook /usr/lib/pm-utils/power.d/readahead false:
/usr/lib/pm-utils/power.d/readahead false: success.
Running hook /usr/lib/pm-utils/power.d/sata_alpm false:
/usr/lib/pm-utils/power.d/sata_alpm false: success.
A lot ...
I do not have pm-utils or laptop-mode or pm-powersave installed since it is a desktop machine. The logs doesn't tell where it's coming from and I'd like to stop it.
Last edited by swanson (2012-01-30 15:54:28)

I have the same error too: "/usr/lib/pm-utils/power.d/pcie_aspm: line 9: echo: write error: Operazione non permessa".
What is this?
Thank you.
Riccardo

Screen Sharing authentication fails or shows only a small black box

Hi everybody!
I've been working on a issue and as I found a solution only by collecting bits of help from all over the web, I thought I could help somebody else by posting it here, where I found lots of help on other issues myself.
Here's the topic: I couldn't connect to my 10.5.7 OS X Server via Screen Sharing anymore. Everything else worked fine, i.e. I could login to all other services (AFP, LoginWindow, VPN, etc.).
I saw some strange errors in my Kerberos-Server log. As I thought of an OD or Kerberos problem, I tried different things concerning these services. Running "kinit <yourusername>" got me to the point where the authentication didn't fail anymore, but all I could see was a little (i.e. ~ 100x200px) black box instead of my server's screen.
The problem finally turned out to be NOT connected to my strange log entries but with somehow having turned on "Remote Management" in Server Admin. Here's my solution to it:
1. Turn off "Remote Management".
Server Admin -> Settings -> General, tick off "Remote Management"
2. Turn on Screen Sharing.
2.1 ssh to your server.
2.2. cd /Library/Preferences
2.3. echo -n enabled > com.apple.ScreenSharing.launchd
That's it after that I was able to log in again. Thanks goes to a lot of folks out there in the web, not to me.

Hi everybody!
I've been working on a issue and as I found a solution only by collecting bits of help from all over the web, I thought I could help somebody else by posting it here, where I found lots of help on other issues myself.
Here's the topic: I couldn't connect to my 10.5.7 OS X Server via Screen Sharing anymore. Everything else worked fine, i.e. I could login to all other services (AFP, LoginWindow, VPN, etc.).
I saw some strange errors in my Kerberos-Server log. As I thought of an OD or Kerberos problem, I tried different things concerning these services. Running "kinit <yourusername>" got me to the point where the authentication didn't fail anymore, but all I could see was a little (i.e. ~ 100x200px) black box instead of my server's screen.
The problem finally turned out to be NOT connected to my strange log entries but with somehow having turned on "Remote Management" in Server Admin. Here's my solution to it:
1. Turn off "Remote Management".
Server Admin -> Settings -> General, tick off "Remote Management"
2. Turn on Screen Sharing.
2.1 ssh to your server.
2.2. cd /Library/Preferences
2.3. echo -n enabled > com.apple.ScreenSharing.launchd
That's it after that I was able to log in again. Thanks goes to a lot of folks out there in the web, not to me.

How to use Message FIlter to log postfix authenticated sender header

I'm trying to log the username from the postfix authenticated sender header information.
Here is an example of the header:
Received: from [123.123.123.123] (client.domain.edu [234.234.234.234])
(using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (No client
certificate requested) (Authenticated sender: [email protected]) by
postfix.domain.edu (Postfix) with ESMTPSA id DE8A3E9429 for
<[email protected]>; Thu, 12 Jun 2014 12:16:56 -0700 (PDT)
And here is the message filter I'm working on:
if (recv-int == "OutboundIP") {
if(header('Received') == '\$Authenticated sender: .+@ad\\.domain\\.edu\$') {
log-entry("Authenticated Sender: '$MatchedContent'");
Everything is working except for the $MatchedContent variable. It is creating the custom log entry but it is only showing as "Authenticated Sender: "
Does anyone have any ideas on how to get the $MatchedContent variable to work or another way to log that username?

Try taking out the ' from around your '$MatchedContent'...
My example:
dictionary_match:
if (dictionary-match('not_allowed_words')){
edit-header-text ("Subject", "^", "Notice Content Matched on: $MatchedContent");
log-entry("#---# This email had: $MatchedContent #---#");
notify('[email protected]');
Sent an email with a known "secret" in the email body... and "secret" is in my "not_allowed_words" dictionary... so it'll trip my "dictionary_match" message filter...
Mail logs --->
Thu Jun 12 23:10:46 2014 Info: New SMTP ICID 181 interface Management (172.16.6.165) address 172.16.6.1 reverse dns host unknown verified no
Thu Jun 12 23:10:46 2014 Info: ICID 181 ACCEPT SG UNKNOWNLIST match sbrs[none] SBRS rfc1918
Thu Jun 12 23:10:46 2014 Info: Start MID 105 ICID 181
Thu Jun 12 23:10:46 2014 Info: MID 105 ICID 181 From: <[email protected]>
Thu Jun 12 23:10:46 2014 Info: MID 105 ICID 181 RID 0 To: <[email protected]>
Thu Jun 12 23:10:46 2014 Info: MID 105 Message-ID '<[email protected]>'
Thu Jun 12 23:10:46 2014 Info: MID 105 Subject 'This email has an issue'
Thu Jun 12 23:10:46 2014 Info: MID 105 ready 561 bytes from <[email protected]>
Thu Jun 12 23:10:46 2014 Info: MID 105 Custom Log Entry: #---# This email had: secret #---#
Thu Jun 12 23:10:46 2014 Info: Start MID 106 ICID 0
Thu Jun 12 23:10:46 2014 Info: MID 106 was generated based on MID 105 by notify filter 'dictionary_match'
Thu Jun 12 23:10:46 2014 Info: MID 106 ICID 0 From: <[email protected]>
Thu Jun 12 23:10:46 2014 Info: MID 106 ICID 0 RID 0 To: <[email protected]>
Thu Jun 12 23:10:46 2014 Info: MID 106 DomainKeys: cannot sign - no profile matches [email protected]
Thu Jun 12 23:10:46 2014 Info: MID 106 DKIM: cannot sign - no profile matches [email protected]
Thu Jun 12 23:10:46 2014 Info: MID 106 ready 970 bytes from <[email protected]>
Thu Jun 12 23:10:46 2014 Info: MID 106 queued for delivery
Thu Jun 12 23:10:46 2014 Info: MID 105 matched all recipients for per-recipient policy mygmail_inbound in the inbound table
Thu Jun 12 23:10:46 2014 Info: MID 105 queued for delivery
Thu Jun 12 23:10:46 2014 Info: New SMTP DCID 53 interface 172.16.6.165 address 173.36.13.143 port 25
Thu Jun 12 23:10:46 2014 Info: New SMTP DCID 54 interface 172.16.6.165 address 173.36.13.143 port 25
Thu Jun 12 23:10:46 2014 Info: Delivery start DCID 54 MID 105 to RID [0]
Thu Jun 12 23:10:47 2014 Info: DCID 53 TLS success protocol TLSv1 cipher RC4-SHA
Thu Jun 12 23:10:47 2014 Info: Delivery start DCID 53 MID 106 to RID [0]
Thu Jun 12 23:10:47 2014 Info: Message done DCID 54 MID 105 to RID [0]
Thu Jun 12 23:10:47 2014 Info: MID 105 RID [0] Response '2.0.0 s5D3Aobe022251 Message accepted for delivery'
Thu Jun 12 23:10:47 2014 Info: Message finished MID 105 done
Thu Jun 12 23:10:47 2014 Info: Message done DCID 53 MID 106 to RID [0]
Thu Jun 12 23:10:47 2014 Info: MID 106 RID [0] Response '2.0.0 s5D3AoFH012632 Message accepted for delivery'
Thu Jun 12 23:10:47 2014 Info: Message finished MID 106 done
Thu Jun 12 23:10:52 2014 Info: DCID 54 close
Thu Jun 12 23:10:52 2014 Info: DCID 53 close
I hope this helps!
-Robert
(*If you have received the answer to your original question, and found this helpful/correct - please mark the question as answered, and be sure to leave a rating to reflect!)

Strange HH5 TR069 Log entries.

01:12:15, 07 Feb.
(133394.140000) CWMP: Set Parameter by TR069 Success
01:11:54, 07 Feb.
(133372.840000) CWMP: Set Parameter by TR069 Success
01:11:53, 07 Feb.
(133371.310000) CWMP: Set Parameter by TR069 Success
01:11:27, 07 Feb.
(133345.840000) CWMP: Set Parameter by TR069 Success
00:42:13, 07 Feb.
(131592.070000) CWMP: Set Parameter by TR069 Success
00:41:52, 07 Feb.
(131570.770000) CWMP: Set Parameter by TR069 Success
00:41:51, 07 Feb.
(131569.250000) CWMP: Set Parameter by TR069 Success
00:41:25, 07 Feb.
(131543.720000) CWMP: Set Parameter by TR069 Success
00:21:19, 07 Feb.
(130338.140000) CWMP: session closed due to error: HTTP authentication error
00:21:19, 07 Feb.
(130338.140000) CWMP: HTTP authentication fail from https://pbthdm.bt.mo
00:21:17, 07 Feb.
(130335.730000) CWMP: Server URL: https://pbthdm.bt.mo; Connecting as user: ACS username
00:21:17, 07 Feb.
(130335.720000) CWMP: Session start now. Event code(s): '1 BOOT,4 VALUE CHANGE,2 PERIODIC'
00:12:12, 07 Feb.
(129790.850000) CWMP: Set Parameter by TR069 Success
00:11:51, 07 Feb.
(129769.550000) CWMP: Set Parameter by TR069 Success
00:11:49, 07 Feb.
(129768.040000) CWMP: Set Parameter by TR069 Success
00:11:23, 07 Feb.
(129741.830000) CWMP: Set Parameter by TR069 Success
Iv'e previously posted on another thread regarding .203 HH5 firmware update, but this is a new problem, which is strange.
Hence a new topic.
Two or three times per day there's a log entry suggesting an imminent reboot and parameter change. The authentication always fails so the boot is not implemented. This has been going on for 2 days following some sort of wifi checking software imposed on the hub - another TR069 event.
Also I get the Set Parameter by TR069 Success every 30 mins - only when the laptop and every other device is off or not connected to wifi - e.g. overnight.
At this rate there will be a stack overflow in the logs, which could overwrite everything else. Hope that part the firmware can handle this situation!!
Any ideas - I performed a factory reset of the Hub on 05-02-2015.

Further progress.
Performed factory reset at 8-00am today.
This time the reset was done with a wooden cocktail stick pushed into the recess at the rear of the hub.
There was no backup or restore of settings, as this in done quickly here, just disable 5GHz sync, separate SSids, disable smat setup , disable smart wireless, change admin password.
A factory reset should in principle, just be changing the logic input into the hub CPU reset pin.
That's how it was always done in the past, from my own experience in industry with industrial CPUs.
Perhaps the HH series has its' own rules, as it does with remote management - keep the customer in the dark, etc, as you would with mushrooms.
Results after being out for 2 hours:-
09:12:46, 09 Feb.
( 3794.970000) CWMP: Set Parameter by TR069 Success
09:12:22, 09 Feb.
( 3770.890000) CWMP: Set Parameter by TR069 Success
08:43:08, 09 Feb.
( 2016.490000) CWMP: Set Parameter by TR069 Success
08:42:46, 09 Feb.
( 1995.190000) CWMP: Set Parameter by TR069 Success
08:42:45, 09 Feb.
( 1994.150000) CWMP: Set Parameter by TR069 Success
08:42:22, 09 Feb.
( 1970.530000) CWMP: Set Parameter by TR069 Success
08:13:36, 09 Feb.
( 245.150000) CWMP: session completed successfully
08:13:33, 09 Feb.
( 242.460000) CWMP: HTTP authentication success from https://pbthdm.bt.mo
08:13:32, 09 Feb.
( 240.940000) CWMP: Server URL: https://pbthdm.bt.mo; Connecting as user: ACS username
08:13:32, 09 Feb.
( 240.930000) CWMP: Session start now. Event code(s): '6 CONNECTION REQUEST'
08:13:32, 09 Feb.
( 240.660000) CWMP: Initializing transaction for event code 6 CONNECTION REQUEST
08:13:31, 09 Feb.
( 240.130000) CWMP: session completed successfully
08:13:31, 09 Feb.
( 239.940000) CWMP: HTTP authentication success from https://pbthdm.bt.mo
08:13:29, 09 Feb.
( 238.260000) CWMP: Server URL: https://pbthdm.bt.mo; Connecting as user: ACS username
08:13:29, 09 Feb.
( 238.260000) CWMP: Session start now. Event code(s): '6 CONNECTION REQUEST'
08:13:29, 09 Feb.
( 237.990000) CWMP: session completed successfully
08:13:16, 09 Feb.
( 225.020000) CWMP: Set Parameter by TR069 Success
08:13:13, 09 Feb.
( 221.890000) CWMP: Set Parameter by TR069 Success
08:13:09, 09 Feb.
( 217.660000) CWMP: Initializing transaction for event code 6 CONNECTION REQUEST
08:13:07, 09 Feb.
( 215.470000) CWMP: Set Parameter by TR069 Success
08:13:06, 09 Feb.
( 215.290000) CWMP: HTTP authentication success from https://pbthdm.bt.mo
08:13:04, 09 Feb.
( 213.190000) CWMP: Initializing transaction for event code 6 CONNECTION REQUEST
08:13:04, 09 Feb.
( 213.170000) CWMP: Server URL: https://pbthdm.bt.mo; Connecting as user: ACS username
08:13:04, 09 Feb.
( 213.170000) CWMP: Session start now. Event code(s): '6 CONNECTION REQUEST'
08:13:04, 09 Feb.
( 212.900000) CWMP: Initializing transaction for event code 6 CONNECTION REQUEST
08:12:59, 09 Feb.
( 208.320000) CWMP: session completed successfully
08:12:59, 09 Feb.
( 208.140000) CWMP: HTTP authentication success from https://pbthdm.bt.mo
08:12:57, 09 Feb.
( 205.760000) CWMP: Server URL: https://pbthdm.bt.mo; Connecting as user: ACS username
08:12:57, 09 Feb.
( 205.760000) CWMP: Session start now. Event code(s): '6 CONNECTION REQUEST,4 VALUE CHANGE'
08:12:57, 09 Feb.
( 205.490000) CWMP: session completed successfully
08:12:46, 09 Feb.
( 194.650000) CWMP: Set Parameter by TR069 Success
08:12:45, 09 Feb.
( 194.150000) CWMP: Set Parameter by TR069 Success
08:12:44, 09 Feb.
( 193.200000) CWMP: Set Parameter by TR069 Success
08:12:43, 09 Feb.
( 192.020000) CWMP: Set Parameter by TR069 Success
08:12:42, 09 Feb.
( 191.390000) CWMP: HTTP authentication success from https://pbthdm.bt.mo
Hub is now authenticating with pbthdm.bt.mo. The Set Parameter entry repeats itself every 1/2 hour.
It's just a case of waiting.

OBIA 7.9.5 EBS Integration Not Logged On nQSError 43001 Authentication Fail

Hi,
I'm attempting to get Oracle Business Intelligence Applications 7.9.5 / OBIEE 10.1.3.3.2 integrated into the eBusiness Suite 11.5.10.2 per Metalink Note 552735.1. At the moment not an action link, just menu option to SA Administrator.
I've run into and worked around a number of problems with the Initialization block variables setup in OracleBIAnalyticsApps.rpd and now no longer get errors in the NQServer.log after disabling Initialization Blocks for Siebel/Peoplesoft and disabling 2 EBS specific Init blocks that were erroring; 'Inventory Organizations' and 'Ledgers' I'll fix those later.
However, now I get an error in the sawlog0.log file as follows:
File: project/webodbcaccess/odbcconnectionimpl.cpp Line: 371
Properties: ConnId-6,6;ThreadID-1145072560
Location:
saw.odbc.connection.open
saw.connectionPool.getConnection
saw.threadPool
saw.threads
Odbc driver returned an error (SQLDriverConnectW).
State: 08004. Code: 10018. NQODBC [SQL_STATE: 08004|http://forums.oracle.com/forums/] [nQSError: 10018|http://forums.oracle.com/forums/] Access for the requested connection is refused.
[nQSError: 43001|http://forums.oracle.com/forums/] Authentication failed for in repository Star: invalid user/password. (08004)
Type: Error
Severity: 42
Time: Wed Dec 3 07:13:16 2008
File: project/webconnect/connection.cpp Line: 276
Properties: ThreadID-1145072560
Location:
saw.connectionPool.getConnection
saw.threadPool
saw.threads
Authentication Failure.
Odbc driver returned an error (SQLDriverConnectW).
Can anyone point me in the right direction here?
Thanks,
Gareth

The strange thing is both Gareth and I have configured OBIA/OBIEE on a Linux server and local authentication works fine. Once we enable external EBS authentication, we get the error listed above.
Does anyone who has done the OBIA EBS integration with OBIEE running on Linux have an example of the odbc.ini file. It appears that even though we have reconfigured OracleBIAnalyticsApps.rpd to use OCI everywhere, that there is still some hard coded ODBC references for external authentication.
We are configuring instanceconfig.xml as directed:
Integrating Oracle Business Intelligence Applications with Oracle E-Business Suite
https://metalink2.oracle.com/metalink/plsql/ml2_documents.showDocument?p_database_id=NOT&p_id=552735.1
Configuring InstanceConfig.xml for External Authentication
1. Modify the instanceconfig.xml file for the Oracle BI Presentation Services as shown below:
<?xml version="1.0"?>
<WebConfig>
<ServerInstance>
<CatalogPath>c:\temp\default</CatalogPath>
<DSN>AnalyticsWeb</DSN>
<Auth>
<ExternalLogon enabled="true">
<ParamList>
<Param name="NQ_SESSION.ICX_SESSION_COOKIE"
source="cookie"
nameInSource="EBSAppsDatabaseSID"/>
<Param name="NQ_SESSION.ACF"
source="url"
nameInSource="ACF"/>
</ParamList>
</ExternalLogon>
</Auth>

</ServerInstance>
</WebConfig>
2. The nameInSource for the cookie should be the same as the Oracle E-Business Suite application database SID name. To verify the name of the cookie, using Firefox, check the name of the cookie created under the us.oracle.com domain (or the domain where your Oracle E-Business Suite Application server is running). Please note that the cookie name is case sensitive.

Everytime i log in to my youtube app on my ipod touch it says authentication failed incorrect password or username

everytime i log in to the youtube app on my ipod touch it says authentication failed incorrect password or username i even restored my ipod but it still didnt work

- Reset the iPod. Nothing will be lost
Reset iPod touch: Hold down the On/Off button and the Home button at the same time for at
least ten seconds, until the Apple logo appears.
- Power off and then back on the router.
- Reset networks settings: Settings>General>Reset>Reset Network Settings

ACS Expert troubleshooter fails to display existing log entry

Hello everybody,
II ran into the following issue – let say RADIUS log (today) displays there are entries for user ABC (both successful and unsuccessful). BUT – when use the 'expert troubleshooter' to search for exactly the same user (both pass or fail authentication), the search results comes out empty.
This happens for all log entries (=users) and on different computers on different browsers. ACS version is 5.4 (upgraded to different patches to no avail).
Anybody experienced that? An existing bug notice will also be appreciated.

Yet, I have not seen any bug for this: You please have a look on the guide to understand the functionally of Expert Troubleshooter:
http://www.cisco.com/c/en/us/td/docs/net_mgmt/cisco_secure_access_control_system/5-4/user/guide/acsuserguide/viewer_troubleshooting.html#wp1057685

Server log having multiple Kerberos Authentication failed events

I my windows server log i can see so many Kerberos Authentication failure Events, Could you please explain why this is happening and how to resolve this?

Hello Friend,
here is the log
Time of Day
Name
Source Country
Destination IP
Destination Country
Destination Port
Event Count
2014-12-10 09
4624: An Account Was Successfully Logged On
N/A
0.0.0.0
N/A
Not Reported
2
2014-12-10 08
4624: An Account Was Successfully Logged On
N/A
0.0.0.0
N/A
Not Reported
6
2014-12-10 08
4768: A Kerberos Authentication Ticket (tgt) Was Requested
N/A
Not Reported
N/A
Not Reported
2
2014-12-10 08
4771: Kerberos Pre-authentication Failed
N/A
Not Reported
N/A
Not Reported
2
2014-12-10 07
4624: An Account Was Successfully Logged On
N/A
0.0.0.0
N/A
Not Reported
14
2014-12-10 07
4768: A Kerberos Authentication Ticket (tgt) Was Requested
N/A
Not Reported
N/A
Not Reported
1
2014-12-10 06
4624: An Account Was Successfully Logged On
N/A
0.0.0.0
N/A
Not Reported
12
2014-12-10 06
4768: A Kerberos Authentication Ticket (tgt) Was Requested
N/A
Not Reported
N/A
Not Reported
2
2014-12-10 05
4624: An Account Was Successfully Logged On
N/A
0.0.0.0
N/A
Not Reported
16
2014-12-10 05
4768: A Kerberos Authentication Ticket (tgt) Was Requested
N/A
Not Reported
N/A
Not Reported
1
2014-12-10 04
4624: An Account Was Successfully Logged On
N/A
0.0.0.0
N/A
Not Reported
22
2014-12-10 03
4624: An Account Was Successfully Logged On
N/A
0.0.0.0
N/A
Not Reported
8
2014-12-10 03
4768: A Kerberos Authentication Ticket (tgt) Was Requested
N/A
Not Reported
N/A
Not Reported
1
2014-12-10 02
4624: An Account Was Successfully Logged On
N/A
0.0.0.0
N/A
Not Reported
11
2014-12-10 02
4768: A Kerberos Authentication Ticket (tgt) Was Requested
N/A
Not Reported
N/A
Not Reported
4

Cannot access the Inbound Refinery Logs, authentication failed.

I installed the Inbound Refinery as a proxied server on the same computer of Content Server.
When I login Inbound Refinery using 'sysadmin' and try to access the "Logs-Refinery Logs", the authentication dialog appears.
I am sure that I input the right password for user sysadmin here, but the authentication dialog jumps out again and again until the authentication failed.
Who can tell me how to solve this problem? Your help will be very appreciated.

Hi
Well that is not possible since the logs are native to IBR and to access them you need to provide the refadmin access itself. But the other IBR access are with sysadmin since it is added as a proxy server to existing CS instance.
Srinath

Cannot log in to The Adobe Content Viewer on my iPad - Says Authentication Failed?

Cannot login to the Adobe Content Viewer on my ipad.
Says: Authentication Failed...

Check two things:
1) Make sure your device is connected to the Internet.
2) Make sure that the Adobe ID you're using is verified to work with DPS. On a computer, sign in to https://digitalpublishing.acrobat.com, and follow the prompts.
Let us know if you have a valid Adobe ID and you're still getting this error.

Help, Authentication failed

I am having a very difficult time making a simple login program work
I am using Java SDK 1.4.2_02 on a Windows 2000 host, the DS is on the same host
My Directory Server is Sun One Directory Server 5.2
I am using the JAAS package, with a JndiLoginModule
When I use a bogus uid I get a �user not found� message so I know I am contacting the DS correctly
The Access log looks like this
[09/Dec/2003:13:09:52 -0600] conn=1606 op=0 msgId=1 - BIND dn="" method=128 version=3
[09/Dec/2003:13:09:52 -0600] conn=1606 op=0 msgId=1 - RESULT err=0 tag=97 nentries=0 etime=0 dn=""
[09/Dec/2003:13:09:52 -0600] conn=1606 op=1 msgId=2 - SRCH base="ou=people,dc=auto-trol,dc=com" scope=0 filter="(objectClass=*)" attrs=ALL
[09/Dec/2003:13:09:52 -0600] conn=1606 op=1 msgId=2 - RESULT err=0 tag=101 nentries=1 etime=0
[09/Dec/2003:13:09:52 -0600] conn=1606 op=2 msgId=3 - SRCH base="ou=people,dc=auto-trol,dc=com" scope=1 filter="(uid=jpsb)" attrs=ALL
[09/Dec/2003:13:09:52 -0600] conn=1606 op=2 msgId=3 - RESULT err=0 tag=101 nentries=1 etime=0
[09/Dec/2003:13:09:52 -0600] conn=1606 op=3 msgId=4 - ABANDON targetop=NOTFOUND msgid=3
My config file looks like this
Sample
com.sun.security.auth.module.JndiLoginModule required debug=true
 user.provider.url="ldap://localhost:4661/ou=People,dc=auto-trol,dc=com"
 group.provider.url="ldap//localhost:4661/ou=Group,dc=auto-trol,dc=com";
The error I get is this:
[JndiLoginModule] user provider: ldap://localhost:4661/ou=People,dc=auto-trol,dc=com
[JndiLoginModule] group provider: ldap//localhost:4661/ou=Group,dc=auto-trol,dc=com
ldap username: jpsb
ldap password: jim
[JndiLoginModule] attemptAuthentication() failed
[JndiLoginModule] regular authentication failed
[JndiLoginModule]: aborted authentication failed
Authentication failed:
Login incorrect
A stack trace looks like this
javax.security.auth.login.FailedLoginException: Login incorrect
at com.sun.security.auth.module.JndiLoginModule.attemptAuthentication(JndiLoginModule.java:552)
at com.sun.security.auth.module.JndiLoginModule.login(JndiLoginModule.java:310)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:324)
at javax.security.auth.login.LoginContext.invoke(LoginContext.java:675)
at javax.security.auth.login.LoginContext.access$000(LoginContext.java:129)
at javax.security.auth.login.LoginContext$4.run(LoginContext.java:610)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.login.LoginContext.invokeModule(LoginContext.java:607)
at javax.security.auth.login.LoginContext.login(LoginContext.java:534)
at LoginJaas.main(LoginJaas.java:93)
It appears to me that there must be some kind password problem, I can login from the 5.2 console or switch user ids from the console so I know the user and Directory Server are OK.
Can anyone help? I�ve been pounding on this for a few days and it is getting frustrating.
Thanks in advance
Jim

Here it is along with some bat files to make and run. I can't understand why it does not work. It is mostly a slightly modified example from Sun. I'm using Sun code, a Sun Directory Server and a Sun's JndiLoginModule so why the damn thing does not work is a mystery. I have looked EVERYWHERE for a sample JAAS/LDAP Authenicate code and can't find a thing. Makes me think there isn't any and JAAS is not the way to go. I and going to try with a different DS maybe open LDP or active Directory and if that doesn't work I'll forget JAAS and use JNDI instead.
Any help would be greatly appreciated.
thanks in advance
jim
Start LoginJass.java
* @(#)LoginJaas.java
* Copyright 2001-2002 Sun Microsystems, Inc. All Rights Reserved.
* Redistribution and use in source and binary forms, with or
* without modification, are permitted provided that the following
* conditions are met:
* -Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
* -Redistribution in binary form must reproduct the above copyright
* notice, this list of conditions and the following disclaimer in
* the documentation and/or other materials provided with the
* distribution.
* Neither the name of Sun Microsystems, Inc. or the names of
* contributors may be used to endorse or promote products derived
* from this software without specific prior written permission.
* This software is provided "AS IS," without a warranty of any
* kind. ALL EXPRESS OR IMPLIED CONDITIONS, REPRESENTATIONS AND
* WARRANTIES, INCLUDING ANY IMPLIED WARRANTY OF MERCHANTABILITY,
* FITNESS FOR A PARTICULAR PURPOSE OR NON-INFRINGEMENT, ARE HEREBY
* EXCLUDED. SUN AND ITS LICENSORS SHALL NOT BE LIABLE FOR ANY
* DAMAGES OR LIABILITIES SUFFERED BY LICENSEE AS A RESULT OF OR
* RELATING TO USE, MODIFICATION OR DISTRIBUTION OF THE SOFTWARE OR
* ITS DERIVATIVES. IN NO EVENT WILL SUN OR ITS LICENSORS BE LIABLE
* FOR ANY LOST REVENUE, PROFIT OR DATA, OR FOR DIRECT, INDIRECT,
* SPECIAL, CONSEQUENTIAL, INCIDENTAL OR PUNITIVE DAMAGES, HOWEVER
* CAUSED AND REGARDLESS OF THE THEORY OF LIABILITY, ARISING OUT OF
* THE USE OF OR INABILITY TO USE SOFTWARE, EVEN IF SUN HAS BEEN
* ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
* You acknowledge that Software is not designed, licensed or
* intended for use in the design, construction, operation or
* maintenance of any nuclear facility.
import javax.security.auth.Subject;
import javax.security.auth.callback.*;
import javax.security.auth.login.*;
import com.sun.security.auth.callback.TextCallbackHandler;
import java.security.PrivilegedAction;
* This LoginJaas application attempts to authenticate a user
* and reports whether or not the authentication was successful.
* If successful, it then sets up subsequent execution of
* code in the run method of the SampleAction class such that
* access control checks for security-sensitive operations will be
* based on the user running the code.
public class LoginJaas
 private static Subject mySubject;
 public static void main(String[] args)
 // Obtain a LoginContext, needed for authentication. Tell it
 // to use the LoginModule implementation specified by the
 // entry named "JaasSample" in the JAAS login configuration
 // file and to also use the specified CallbackHandler.
 LoginContext lc = null;
 try
 lc = new LoginContext("Sample", new TextCallbackHandler());
 catch (LoginException le)
 System.err.println("le:Cannot create LoginContext. "
 + le.getMessage());
 le.printStackTrace();
 System.exit(-1);
 catch (SecurityException se)
 System.err.println("se:Cannot create LoginContext. "
 + se.getMessage());
 se.printStackTrace();
 System.exit(-1);
 try
 // attempt authentication
 lc.login();
 catch (LoginException le)
 System.err.println("Authentication failed:");
 System.err.println(" " + le.getMessage());
 le.printStackTrace();
 System.exit(-1);
 System.out.println("Authentication succeeded!");
 // now try to execute the SampleAction as the authenticated Subject
 Subject mySubject = lc.getSubject();
 PrivilegedAction action = new SampleAction();
 Subject.doAsPrivileged(mySubject, action, null);
End LoginJass.java
Start MyCallbackHandler.java
import java.io.*;
import javax.security.auth.*;
import javax.security.auth.callback.*;
public class MyCallbackHandler implements CallbackHandler
 public void handle(Callback callbacks[]) throws IOException, UnsupportedCallbackException
 for(int i=0;i<callbacks.length;i++)
 if(callbacks[i] instanceof NameCallback)
 NameCallback nc = (NameCallback) callbacks[0];
 System.err.print(nc.getPrompt());
 System.err.flush();
 String name = (new BufferedReader(new InputStreamReader(System.in))).readLine();
 nc.setName(name);
 else
 throw(new UnsupportedCallbackException(callbacks,
 "Callback handler not support"));
End MyCallbackHandler.java
Start Sample.java
* @(#)Sample.java 1.19 00/01/11
* Copyright 2000-01 Sun Microsystems, Inc. All rights reserved.
* Copyright 2000-01 Sun Microsystems, Inc. Tous droits reserves.
import java.io.*;
import java.util.*;
import java.security.Principal;
import javax.security.auth.*;
import javax.security.auth.callback.*;
import javax.security.auth.login.*;
import javax.security.auth.spi.*;
import com.sun.security.auth.*;
* This Sample application attempts to authenticate a user
* and executes a SampleAction as that user.
* If the user successfully authenticates itself,
* the username and number of Credentials is displayed.
* @version 1.19, 01/11/00
public class Sample {
* Attempt to authenticate the user.
* 
* @param args input arguments for this application. These are ignored.
public static void main(String[] args) {
 // use the configured LoginModules for the "Sample" entry
 LoginContext lc = null;
 try {
 lc = new LoginContext("Sample", new MyCallbackHandler());
 } catch (LoginException le) {
 le.printStackTrace();
 System.exit(-1);
 // the user has 3 attempts to authenticate successfully
 int i;
 for (i = 0; i < 3; i++) {
 try {
 // attempt authentication
 lc.login();
 // if we return with no exception, authentication succeeded
 break;
 } catch (AccountExpiredException aee) {
 System.out.println("Your account has expired. " +
 "Please notify your administrator.");
 System.exit(-1);
 } catch (CredentialExpiredException cee) {
 System.out.println("Your credentials have expired.");
 System.exit(-1);
 } catch (FailedLoginException fle) {
 System.out.println("Authentication Failed");
 try {
 Thread.currentThread().sleep(3000);
 } catch (Exception e) {
 // ignore
 } catch (Exception e) {
 System.out.println("Unexpected Exception - unable to continue");
 e.printStackTrace();
 System.exit(-1);
 // did they fail three times?
 if (i == 3) {
 System.out.println("Sorry");
 System.exit(-1);
 // let's see what Principals we have
 Iterator principalIterator = lc.getSubject().getPrincipals().iterator();
 System.out.println("Authenticated user has the following Principals:");
 while (principalIterator.hasNext()) {
 Principal p = (Principal)principalIterator.next();
 System.out.println("\t" + p.toString());
 System.out.println("User has " +
 lc.getSubject().getPublicCredentials().size() +
 " Public Credential(s)");
 // now try to execute the SampleAction as the authenticated Subject
 Subject.doAs(lc.getSubject(), new SampleAction());
 System.exit(0);
End Sample.java
Start SampleAction.java
* @(#)SampleAction.java 1.4 00/01/11
* Copyright 2000-01 Sun Microsystems, Inc. All rights reserved.
* Copyright 2000-01 Sun Microsystems, Inc. Tous droits reserves.
import java.io.File;
import java.security.PrivilegedAction;
* This is a Sample PrivilegedAction implementation, designed to be
* used with the Sample application.
* @version 1.4, 01/11/00
public class SampleAction implements PrivilegedAction {
* This Sample PrivilegedAction performs the following operations:
* <ul>
* <li> Access the System property, java.home
* <li> Access the System property, user.home
* <li> Access the file, foo.txt
* </ul>
* @return <code>null</code> in all cases.
* @exception SecurityException if the caller does not have permission
* to perform the operations listed above.
public Object run() {
 System.out.println("\nYour java.home property: "
 +System.getProperty("java.home"));
 System.out.println("\nYour user.home property: "
 +System.getProperty("user.home"));
 File f = new File("foo.txt");
 System.out.print("\nfoo.txt does ");
 if (!f.exists())
 System.out.print("not ");
 System.out.println("exist in the current working directory.");
 return null;
End SampleAction.java
Start princible/SamplePrincipal.java
package principal;
* @(#)SamplePrincipal.java 1.4 00/01/11
* Copyright 2000-01 Sun Microsystems, Inc. All rights reserved.
* Copyright 2000-01 Sun Microsystems, Inc. Tous droits reserves.
import java.security.Principal;
* This class implements the <code>Principal</code> interface
* and represents a Sample user.
* Principals such as this <code>SamplePrincipal</code>
* may be associated with a particular <code>Subject</code>
* to augment that <code>Subject</code> with an additional
* identity. Refer to the <code>Subject</code> class for more information
* on how to achieve this. Authorization decisions can then be based upon
* the Principals associated with a <code>Subject</code>.
* @version 1.4, 01/11/00
* @see java.security.Principal
* @see javax.security.auth.Subject
public class SamplePrincipal implements Principal, java.io.Serializable {
* @serial
private String name;
* Create a SamplePrincipal with a Sample username.
* 
* @param name the Sample username for this user.
* @exception NullPointerException if the <code>name</code>
* is <code>null</code>.
public SamplePrincipal(String name) {
 if (name == null)
 throw new NullPointerException("illegal null input");
 this.name = name;
* Return the Sample username for this <code>SamplePrincipal</code>.
* 
* @return the Sample username for this <code>SamplePrincipal</code>
public String getName() {
 return name;
* Return a string representation of this <code>SamplePrincipal</code>.
* 
* @return a string representation of this <code>SamplePrincipal</code>.
public String toString() {
 return("SamplePrincipal: " + name);
* Compares the specified Object with this <code>SamplePrincipal</code>
* for equality. Returns true if the given object is also a
* <code>SamplePrincipal</code> and the two SamplePrincipals
* have the same username.
* 
* @param o Object to be compared for equality with this
* <code>SamplePrincipal</code>.
* @return true if the specified Object is equal equal to this
* <code>SamplePrincipal</code>.
public boolean equals(Object o) {
 if (o == null)
 return false;
if (this == o)
return true;
if (!(o instanceof SamplePrincipal))
return false;
SamplePrincipal that = (SamplePrincipal)o;
 if (this.getName().equals(that.getName()))
 return true;
 return false;
* Return a hash code for this <code>SamplePrincipal</code>.
* 
* @return a hash code for this <code>SamplePrincipal</code>.
public int hashCode() {
 return name.hashCode();
End princible/SamplePrincipal.java
Start ample_jaas.config
/** Login Configuration for the JAAS Sample Application **/
Sample
 //SampleLoginModule required debug=true;
 com.sun.security.auth.module.JndiLoginModule required debug=true
 user.provider.url="ldap://localhost:4661/ou=People,dc=testing,dc=com"
 group.provider.url="ldap//localhost:4661/ou=Group,dc=testing,dc=com";
End Sample_jaas.config
Start sample.policy
/** Java 2 Access Control Policy for the JAAS Sample Application **/
/** Code-Based Access Control Policy for LoginJaas **/
grant codebase "file:./sample.jar
permission javax.security.auth.AuthPermission
"createLoginContext.JaasSample";
permission javax.security.auth.AuthPermission "doAsPrivileged";
permission java.security.AllPermission; //darf alles
/** User-Based Access Control Policy for the LoginAction class
** instantiated by LoginJaas
grant codebase "file:./SampleAction.jar", Principal principal.SamplePrincipal "jimshi"
permission java.util.PropertyPermission "java.home", "read";
permission java.util.PropertyPermission "user.home", "read";
permission java.io.FilePermission "foo.txt", "read";
End sample.policy
Start makelogin.bat
REM
javac LoginJaas.java principal/SamplePrincipal.java
jar -cvf LoginJaas.jar LoginJaas.class principal/SamplePrincipal.java
REM
javac SampleAction.java
jar -cvf SampleAction.jar SampleAction.class
REM
REM javac SampleLoginModule.java
REM jar -cvf sample_module.jar SampleLoginModule.class
REM
javac Sample.java
REM jar -cvf sample.jar MyCallbackHandler.class Sample.class
javac com/sun/security/auth/module/*.java
End makelogin.bat
Start run.bat
REM java -classpath ./;SampleAction.jar;LoginJaas.jar -Djava.security.manager -Djava.security.policy=sample.policy -Djava.security.auth.login.config=sample_jaas.conf LoginJaas
java -classpath ./;SampleAction.jar;LoginJaas.jar -Djava.security.auth.login.config==D:\STUFF\LDAP\loginJim\sample_jaas.config LoginJaas
End run.bat

PAM authentication failed on linux while installing MaxDB Database

Seeing following errors in sapinst.log
INFO 2007-03-29 16:25:23
Account sqdln1 already exists.
ERROR 2007-03-29 16:25:25
The dbmcli call for action DB_CREATE failed. Check the logfile XCMDOUT.LOG.
ERROR 2007-03-29 16:25:25
The dbmcli call for action DB_CREATE failed. Check the logfile XCMDOUT.LOG.
ERROR 2007-03-29 16:25:25
FCO-00011 The step sdb_create_db_instance with step key |NW_Doublestack_DB|ind|ind|ind|ind|0|0|NW_CreateDBandLoad|ind|ind|ind|ind|9|0|NW_CreateDB|ind|ind|ind|ind|0|0|NW_ADA_DB|ind|ind|ind|ind|6|0|SdbPreInstanceDialogs|ind|ind|ind|ind|3|0|SdbInstanceDialogs|ind|ind|ind|ind|1|0|SDB_INSTANCE_CREATE|ind|ind|ind|ind|0|0|sdb_create_db_instance was executed with status ERROR .
And the XCMDOUT.LOG has following error:
ERR
-24875,ERR_NEEDADMI: The operating system user is not a member of the database administrators group
-24994,ERR_RTE: Runtime environment error
5,PAM authentication failed: Authentication failure
Here's the snippet from /etc/group
sapinst:x:500:root,ln1adm
sapsys:x:501:
sdba:*:502:sqdln1,root,sdb,ln1adm
Here's the relevant part from the /etc/passwd file:
ln1adm:x:500:501:SAP System Administrator:/home/ln1adm:/bin/csh
sdb:x:501:502:Database Software Owner:/home/sdb:/bin/csh
sqdln1:x:502:501:Owner of Database Instance LN1:/home/sqdln1:/bin/csh
Any idea why PAM is not authenticating the root user correctly? Even manually firing the dbmcli
gives the same error:
/sapdb/programs/bin/dbmcli -n sapln1db -R /sapdb/LN1/db db_create LN1 CONTROL,vcs12345 sqdln1,vcs12345
ERR
-24875,ERR_NEEDADMI: The operating system user is not a member of the database administrators group
-24994,ERR_RTE: Runtime environment error
5,PAM authentication failed: Authentication failure
Please help.
Satish/

The group and user entries are fine. I have modified the user and groups but still getting the same authentication error. I have disabled MD5 password authentication and now its just shadow. But still the problem persists.
Please help.
<XCMDOUT.LOG>
ERR
-24875,ERR_NEEDADMI: The operating system user is not a member of the database administrators group
-24994,ERR_RTE: Runtime environment error
5,PAM authentication failed: Authentication failure
</XCMDOUT.LOG>
</etc/passwd>
ln1adm:x:500:501:SAP System Administrator:/home/ln1adm:/bin/csh
sdb:x:501:502:Database Software Owner:/home/sdb:/bin/csh
sqdln1:x:502:501:Owner of Database Instance LN1:/home/sqdln1:/bin/csh
</etc/passwd>
</etc/group>
sapinst:x:500:ln1adm,root,sdb
sapsys:x:501:root,sdb
sdba:x:502:sqdln1,root,sdb
</etc/group>

"Authentication failed" - exceeding Airport Extreme's max users with less than 10 devices connected?

I am running an Airport Extreme with two Airport Expresses on my network. There are two macbook pros, two iphones, two ipads, a PS3 and a chromecast in the household, a max of probably 5 or 6 of which are turned on at any given time. Normally everything works perfectly, but occasionally my wife or I will get an "authentication failed" message while trying to log onto our home network, and after wasting time resetting the router, checking settings, etc, the only sure fire way to reconnect seems to be to make sure the chromecast and a couple of the iphones are turned off.
If I remember correctly, the max number of connections to an airport extreme is 50? Obviously not ideal but it shouldn't be refusing connections when 6 or 7 devices are trying to hook up. We have had the same issue when firends come to visit. I can't find any obvious problems in the airport setup, and I have my DHCP range set from xx.xx.xx.2 to 200.
Any ideas?

is it the same device generating the error
i have had up to 40 devices on a single extreme maybe with 10 actively working others when needed with no issue

Strange log entries (authentication fail) wth Home...

Similar Messages

Maybe you are looking for