Trouble enabling security for SGD4.5 on RHEL5.3

Similar Messages

• Error while "Enabling Security for Oracle Management Service"

  Hi,
  I have installed OEM 10GR1 on Solaris 9. I am using 9.2.0 database for repository.
  My first installation of OEM and agent went smoothly, and everything was working fine.
  Then, I tried to follow configurating security for Grid Control Framework. I got following error:
  /oracle/app/oracle/product/10gEM>cd bin
  /oracle/app/oracle/product/10gEM/bin>./emctl secure oms
  Oracle Enterprise Manager 10g Release 10.1.0.3.0.
  Copyright (c) 1996, 2004 Oracle Corporation. All rights reserved.
  Enter Enterprise Manager Root Password :
  Enter Agent Registration password :
  Enter a Hostname for this OMS :
  Checking Repository... Done.
  Checking Repository for an existing Enterprise Manager Root Key... Done.
  Generating Enterprise Manager Root Key (this takes a minute)... Done.
  Fetching Root Certificate from the Repository... Done.
  Generating Registration Password Verifier in the Repository... Done.
  Generating Oracle Wallet Password for Enterprise Manager OMS... Done.
  Generating Oracle Wallet for Enterprise Manager OMS...Missing /oracle/app/oracle/product/10gEM/sysman/wallets/oms.uxtora1/ewallet.p12
  :/oracle/app/oracle/product/10gEM/bin>
  Please help.

  Thanks for response. I had temp space full issue with repository database. After bouncing database, the temp tablespace became empty, and the secure operation went smooth.

• Enable Security for a Service

  Hi,
  I have a SOA Service 11.1.1.5. I need to protect the service so that a specific user/password is accepted to invoke the service. I have also configured OID LDAP Provider. I tried both the below policies
  oracle/wss_username_token_service_policy
  oracle/wss_http_token_service_policy
  but looks like anyone who is invoking the service is able access it as they are part of OID provider that is configured. I created a custom user/password that should only have access to the service. How can I achieve this.
  Thanks

  All you are doing is securing against known credentials here, AuthN.  You need to apply AuthZ, you need to look at oracle/binding_permission_authorization_policy as well.
  A quick search I found this link securing an Basic HTTP, but this will work the same for username token as well.  This is a pretty basic example, there are many more adavanced I am sure.
  https://blogs.oracle.com/soaproactive/entry/how_to_configure_policy_authorization
  or a slightly more step by step detailed example is
  http://murtyatsoa.blogspot.com.au/2011/05/adding-security-policies-to-soa-suite.html
  (In this I suggest you change the following)
  oracle.wsm.security.WSFunctionPermission
  http://xmlns.oracle.com/OWSM_jws/SOAOWSM/BPELProcess1/bpelprocess1_client_ep#process
  to
  oracle.wsm.security.WSFunctionPermission
  http://xmlns.oracle.com/OWSM_jws/SOAOWSM/BPELProcess1/bpelprocess1_client_ep
  process
  As the first example didn't work for me but the second did.

• Enabling security for  OEM Grid Control 11g fails

  Hi Experts,
  One of my Customer is referring the below command to secure OMS and it fails.
  emctl secure oms [-sysman_pwd <sysman password>] [-reg_pwd <registration password>] [-host <hostname>] [-slb_port <slb port>] [-slb_console_port <slb console port>] [-reset] [-console] [-lock] [-lock_console] [-secure_port <secure_port>] [-upload_http_port <upload_http_port>] [-root_dc <root_dc>] [-root_country <root_country>] [-root_email <root_email>] [-root_state <root_state>] [-root_loc <root_loc>] [-root_org <root_org>] [-root_unit <root_unit>] [-wallet <wallet_loc> -trust_certs_loc <certs_loc>] [-wallet_pwd <pwd>] [-key_strength <strength>] [-cert_validity <validity>] [-protocol <protocol>]
  The error message as below.
  Securing OMS... Started.
  <May 31, 2011 4:40:31 PM CEST> <Warning> <Security> <BEA-090504> <Certificate chain received from <hostname of the actual node running OEM> - <IP of the hostname of the actual node running OEM> failed hostname verification check. Certificate contained <SLB hostname> but check expected <hostname of the actual node running OEM>
  Securing OMS... Failed
  The brief background of the wallet creation is as below.
  The actual certificate and CSR is created using openssl with a config file openssl-oemgc.cnf. This is according to customer organization's policy and how the production signed certificates have to be requested. The CN is indeed <SLB hostname>. The used syntax was:
  openssl req -new -keyout <SLB hostname>.key -out <SLB hostname>.csr -config openssl-oemgc.cnf
  The config file content can be referred in the service request.
  Following the guide on
  http://download.oracle.com/docs/cd/E21764_01/web.1111/e13749/utils.htm#ADMRF151
  the certificates were imported into a java keystore 'identity.jks'. And the certificate chain was imported in a java keystore 'trust.jks'.
  With these customer has followed note 1278609.1 to configure these keystores in WLS. The certificates show up fine without errors in the browser when opening the WLS console.
  Then according to notes 1116717.1 customer has created an Oracle wallet. Then he copied that wallet to an old 10g oracle application server and opened the wallet with 'owm' and saved it. Then he has copied the wallet to the new Oem Grid Control and opened it with'owm' (this now succeeds) and saved it with SSO. This is the wallet that customer is using while trying to secure the OMS.
  Service Request: 3-3731274961
  Any input is highly appreciated.
  Thanks
  Prakash
  Edited by: user13542511 on Jul 6, 2011 8:09 AM

  Hello Experts,
  Could you please help me on this issue.
  Thanks
  Prakash

• Work email field not filling in for mail enabled security groups in sharepoint

  I've recently been trying to setup alerts to send to mail enabled security groups on our sharepoint site.
  I've created universal mail enabled security groups for this purpose, and populated them with users, and then set those in the alert field, but no one is getting alerts.
  After a lot of investigation, I've found that this is likely because the security groups listed under sharepoint in the people and groups section don't have work email fields filled in. Theres a couple of groups that work which do have this field filled
  in, but everything created recently is missing this. I can't seem to set this field up to be editable instead of importing from AD either. I've confirmed the AD import is working fine, all user details and work email fields are filled out correctly, it is
  only the security groups that are having problems.
  Does anyone have any experience with this?

  As per your description I assume that individual user gets email alert, right ?
  If no then go to central administration > operation > timer job definitions > “web application” view > select your web application in the menu bar to check if Immediate alerts working fine
  If not, please run the following operations:
  stsadm -o setproperty -propertyname alerts-enabled -propertyvalue false -url http://...
   stsadm -o setproperty -propertyname alerts-enabled -propertyvalue true -url http://...
   stsadm -o setproperty -propertyname job-immediate-alerts -propertyvalue "every 5 minutes"  -url http://...
  And then try again.
   At last, if the issue is still there, please check your email server settings in terms of the following articles:
  http://www.sharepoint-tips.com/2007/10/email-alerts-not-getting-sent-while.html
  http://social.technet.microsoft.com/Forums/en-US/sharepointworkflow/thread/36c3b5b5-af03-4f8a-b202-b62db330c21c/
   And if individual user gets an alert then you can create cutomized alert for Sec group
   Please refer
   http://sptoolbox.codeplex.com/releases/view/8255
   hope this will help you
  Regards, Pratik Vyas | SharePoint Consultant | http://sharepointpratik.blogspot.com/

• How do I enable the security for my wireless connection?

  How do I enable the security for my wireless connection?

  Enter the setup page (192.168.1.1),  hit the Wireless Tab, then the Security tab.

• Enable PDF security for PDF output of reports from Answers

  In BI publisher, We have options to enable PDF output security like diable printing, Encryption etc, How do we set such options under Oracle Answers. I would like to enable security control for PDF output for all the reports from Oracle Asnwers.
  Hardeep

  Not supported.

• Enable Secure communication for RFC destinations by using sm59 transaction

  Dear friends,
  We would like to enable secure communications for RFC destinations by using the sm59 transaction in our systems.
  We need to do this manually, by changing  the internal communication settings in a way they can communicate securely.
  Any idea or advice on the way it can be done ?
  We need to take each RFC, manually check it and secure it.
  Thanks in advance,
  Jordan

  In SM59 open up a RFC destination and go to Logon & Security. There you can enable Trusted relashionship and activate status of secure protocol.
  And yes you have to do it manually for the desired RFC's

• Unable to enable security and create admin user after reset - px4-300d

  Our px4-300d became inaccessible a few days ago.  I couldn't get to any shares from any machine, and I couldn't get to the admin console.  When I checked the unit, there was no indication that anything was wrong (ie - the panel didn't show any failure, I didn't get any emails indicating a failure, and there were no lights offering a clue to what was wrong).  However the unit was completely frozen...the buttons on the front would not scroll through the different information on the panel.
  I attempted to reset the device using the pinhole on the back, but the device wouldn't respond, so I had to power it down using the button on the front.  When I tried to power it back up, it would come on for about one second, then immediately power off.  I pulled all 4 drives out and powered it on again without any drives.  This time it came up completely and I got a message on the panel that drives were missing.  I started putting the drives in one at a time and the device recognized them all and I was able to login to the admin console.  However, all the shares were missing and I received an email that the Storage Pool was degraded.  I rebooted the device from the admin console and when it came back up, it started reconstruction.  After a few hours, it completed, but I still had no shares and couldn't create any new shares.  I also did not see any of my users, including the admin account I was logged in with.  I tried to create a new user, and also tried creating a user I knew existed and neither one worked.  The screen would just flash but nothing would show up.  At this point, I decided to try to reset using the pinhole on the back of the device to reset the admin user so I could just create a new one.  So, now I'm stuck at the 'Enable Security' screen.  Every time I try to create an admin account, it just flashes and returns me to the same 'Enable Security' window.  
  Now what?
  Solved!
  Go to Solution.

  If you are unable to get into it you will not be able to do the factory reset. You can try booting in buy removing one disk at a time. If you are still unable to then tech support should be able to supply you with the imager and try flashing it. I would keep it at 4.0.8 also,

• Enabling SSL for Oracle Enterprise Manager 10.1.3.1 is Failing!!!

  Hi All,
  I have followed the steps described in
  http://download-uk.oracle.com/docs/cd/B31017_01//core.1013/b28940/em_app.htm#BABCEEAH.
  However when I am trying to start the application server using 'opmnctl startall' the server is not starting and some timeout is getting generated in the log file.
  Is it that enabling SSL will only make the EM console secured? Then how to enable SSL for other soa components like - BPEL,ESB,OWSM? Are there any documentations available?
  Also please let me know how can I enable SSL for Oracle Application server console?
  Please any advice will be appreciated. I am in the middle of a project delivery.
  Thanks

  Hi,
  Let me first highlight the installation that I have done. I have installed SOA components with 'basic installation' mode.
  The log file under <ORACLE_SOA_HOME>/opmn/config/ has generated the following stack:-
  08/07/25 11:03:34 Start process
  08/07/25 11:03:37 WARNING: XMLApplicationServerConfig.overwriteSiteConfigPort Port assignment is ignored: web-site not found in the server OC4JServiceInfo id: default-web-site protocol: http hostname: null port: 8890 description: null
  08/07/25 11:03:37 WARNING: XMLApplicationServerConfig.overwriteSiteConfigPort Port assignment is ignored: web-site not found in the server OC4JServiceInfo id: secure-web-site protocol: https hostname: null port: 1156 description: null
  08/07/25 11:03:47 log4j:WARN No appenders could be found for logger (wsif).
  08/07/25 11:03:47 log4j:WARN Please initialize the log4j system properly.
  08/07/25 11:03:53 WARNING: OC4J Service: ascontrol-web-site with protocol: https and port: 1156 was not declared in opmn.xml
  08/07/25 11:03:53 Oracle Containers for J2EE 10g (10.1.3.1.0) initialized
  08/07/25 11:03:53 WARNING: OC4J will not send ONS ProcReadyPort messages to opmn for service: OC4JServiceInfo id: default-web-site protocol: http hostname: null port: 8890 description: null
  08/07/25 11:03:53 default-web-site hostname was null
  08/07/25 11:03:53 WARNING: OC4J will not send ONS ProcReadyPort messages to opmn for service: OC4JServiceInfo id: secure-web-site protocol: https hostname: null port: 1156 description: null
  08/07/25 11:03:53 secure-web-site hostname was null
  On the command prompt I am getting the following error:-
  opmn id=CALTP8BB32:6203
  0 of 1 processes started.
  ias-instance id=home.CALTP8BB32.cts.com
  +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  ias-component/process-type/process-set:
  default_group/home/default_group/
  Error
  --> Process (index=1,uid=301928631,pid=2944)
  failed to start a managed process after the maximum retry limit
  Log:
  D:\product\SOASuite\opmn\logs\\default_group~home~default_group~1.log
  --------------------------------------------------------------+---------
  ias-component | process-type | pid | status
  --------------------------------------------------------------+---------
  OC4JGroup:default_group | OC4J:home | N/A | Down
  ASG | ASG | N/A | Down
  Please let me know where am I going wrong?
  Thanks,
  Mandrita.

• Security for creating web templates using web application designer

  I work for ChevronTexaco as a BW Security Analyst. I have a request to set up roles for web template creation using the Web Application Designer. Where can I get help in setting up the security for these types of roles? My experience is in setting up roles for running and creating queries in BEX. I need to know what additional authorizations will enable web template creation. Setting up a trace in ST01 has been less than helpful since it dumps out tons of RS_COMP tracing that doesn't help me much.
  The user wants to be able to create web templates for existing queries in BEX and restrict by rs_comp infocubes/areas/reportid, etc. and to be able to save to restricted role names. Are there new auth groups specific to this type of activity that I need to code for in addition to the basic end user or report builder authorizations?
  Any help would be greatly appreciated.
  Jeff Ehritt
  925 827-6012
  ChevronTexaco

  Thanks Marc, I'll check it out. My problem was that I was trying to create the role by granting a userid sap_all, sap_new and s.a_system as well as power user auths for a specific application. I set up a trace in ST01 for authorization cking on the ID while one of our BW Central Support people went into Web Designer to create a template and everything else they wanted to do.
  The resulting trace spewed out so much stuff from S_RS_comp and comp1 as to be virtually useless since it named scores of different cubes and infoareas that the analyst wasn't even interested in. The results puzzled me and made it extremely difficult to pin down the required authorizations. Usually ST01 can be used as a blueprint to create the role,ie; everything that the user touches is traced but no more than that. Have you seen this before? With just the new role I had set up the user could not save to a role unless I coded the fully qualified role name such as YRH_SENDAT_USER. YRH* would not work.
  Thanks,
  Jeff Ehritt
  ERP COE SAP BW Security

• Security For BW Web Application Designer

  I work for ChevronTexaco as a BW Security Analyst. I have a request to set up roles for web template creation using the Web Application Designer. Where can I get help in setting up the security for these types of roles? My experience is in setting up roles for running and creating queries in BEX. I need to know what additional authorizations will enable web template creation. Setting up a trace in ST01 has been less than helpful since it dumps out tons of RS_COMP tracing that doesn't help me much.
  The user wants to be able to create web templates for existing queries in BEX and restrict by rs_comp infocubes/areas/reportid, etc. and to be able to save to restricted role names. Are there new auth groups specific to this type of activity that I need to code for in adition to the basic end user or report builder authorizations?
  Any help would be greatly appreciated.
  Jeff Ehritt
  925 827-6012
  ChevronTexaco

  Hi Jeff,
  there are no special authorization objects for Web Templates. RS_COMP will still only work for queries, structures.... Saving to roles requires certain authorizations for the role (s_agr_*), here you can define the roles you can save templates to.
  Regards, Klaus

• Windows 8.1 Ent eval enabled Secure Boot I think

  I want to get my laptop back to its original format.
  Currently dual booting Windows7/8.1
  During the installation of Windows 8.1 Enterprise evaluation it paused to say it was going to enable secure boot.  I did'nt think much of it I thought I could change it back from the bios.  Did it flash my firmware?  I checked the system status
  with msinfo32.exe; was legacy mode and with powershell; secure boot not supported.  I don't have any options to disable secure boot in the bios nor from within Windows -"I know how to disable it in windows 8.1".  I can't boot a foreign
  operating system, but I can boot a Microsoft OS which sounds like secure boot to me.  I want to get it back to running Windows 7 dual booting with Linux.  I use both at work and need both.  I made the mistake by loading the Eval on my primary
  laptop.  I read I need to revert back to Windows 7 completely, formating and re-installing the OS.  Will this clear my secure boot simulation issue?  I have not changed the partitions or removed any O/S's.   What's the best way
  to proceed?

  Hi,
  I want to explain that, Secure Boot is indepent with system, you can disable it in UEFI interface.
  To disable Secure Boot, you can follow the steps below:
  1.Before disabling Secure Boot, consider whether it is necessary. From time to time, your manufacturer may update the list of trusted hardware, drivers, and operating systems for your PC. To check for updates, go to Windows Update, or check your manufacturer's
  website.
  2.Open the PC BIOS menu. You can often access this menu by pressing a key during the bootup sequence, such as F1, F2, F12, or Esc.
  Or, from Windows, hold the Shift key while selecting Restart. Go to Troubleshoot > Advanced Options: UEFI Firmware Settings.
  3.Find the Secure Boot setting, and if possible, set it to Disabled. This option is usually in either the Security tab, the Boot tab, or the Authentication tab.
  4.Save changes and exit. The PC reboots.
  I found an aticle that teach how to install dual-boot Windows 7 and Ubuntu 12.04 on a PC with UEFI hardware:
  http://www.linuxbsdos.com/2012/10/11/dual-boot-windows-7-and-ubuntu-12-04-on-a-pc-with-uefi-hardware/
  Hope this helps.
  Roger Lu
  TechNet Community Support

• [SOLVED] Enabling debug for ath9k in compat-drivers-patched from AUR

  Wireless card: TP-LINK TL-WN951N. lspci says that it is an Atheros AR5416 adapter [AR5008].
  Some background: I'm having the same issues as the OP in this thread, which references this bug report. The problem is that I get a 2000 ms ping every 30 seconds. So 2 seconds of inactivity every 30 seconds. I have the same wireless PCI card, as well. I need to fix this, because it's making online gaming impossible. I should also note that the card is working just fine in Windows 8, however. I am using net-auto-wireless. I have tried using wicd, enabling ath9k's nohwcrypt option, toggling the card's power save, installing the latest compat-drivers-patched from the AUR, toggling different settings in my motherboard's BIOS, and removing the antennae from the card. But nothing has made a significant difference.
  I think I'm really close now. I just have to disable ANI. But in order to do that, it seems that I need to enable debugging for ath9k. But this means that I need to either recompile a custom kernel, or somehow enable debug for ath9k in compat-drivers-patched from the AUR. I'd prefer the latter, as that means that I will have a more bleeding-edge driver. That, and I won't have to touch the kernel as much. What I want is described on this page. But it seems too complicated to me. Please let me explain.
  I've installed things from the AUR before, as mentioned above, and have properly configured my makepkg.conf for my system. So I'd like to use the CFLAGS and such that I've set. I don't understand how everything works in the PKGBUILD; I don't have much experience with sed and awk and regular expressions, and haven't done much shell scripting at all. It seems that at some point in the PKGBUILD, I need to enable debugging for ath9k before it is compiled. Apparently on the last page I linked to, I need to add:
  export CONFIG_ATH_DEBUG=y
  export CONFIG_ATH9K_DEBUG=y
  export CONFIG_ATH9K_DEBUGFS=y
  to some config.mk file. I can only get access to the config.mk file after I install the package with pacman. I've tried adding those lines to my /etc/profile file, and checked, after a reboot, with "set", that those variables are indeed set. But the thing is, with these variables set in /etc/profile, when I run makepkg, makepkg fails with an error 2. I tried again and got the same error. I removed those lines from my /etc/profile, rebooted, tried makepkg again, and everything worked. So putting those lines in my /etc/profile is not the solution, and I feel like I'm doing something very stupid. What am I doing wrong?
  I should also note that I've tried to read the wiki page on compiling a custom kernel using ABS, but it seems to just say "get your custom configuration files" and then just continue (so it assumes that I should already be familiar with the configuration part). The PKGBUILD and Creating Packages wiki pages also seem to be a little... too advanced for me at this point in time.
  So how do I enable debugging for ath9k in compat-drivers-patched from the AUR? I'd prefer to stick with only editing the PKGBUILD and using makepkg, if possible.
  I've really tried to search the web and the arch forums on how to fix this problem myself, but alas, it seems that I need help this time. I greatly appreciate your time for reading my long post.
  UPDATE:
  I've made a lot of progress. I ended up removing the AUR package with pacman by invoking "pacman -Rsn compat-drivers-patched".
  Instructions for [almost] success: First, download compat-drivers-patched from AUR. Then move it to the "builds" directory (or "local", if using ABS). Extract the tarball. After the new directory is created, cd into it. Now here's the important part: run
  $ makepkg -so
  Then cd into src, cd into the directory inside src, then edit the config.mk file. Make sure these lines are uncommented (or created, if not already there):
  export CONFIG_CFG80211_DEBUGFS=y
  export CONFIG_MAC80211_DEBUGFS=y
  export CONFIG_ATH_DEBUG=y
  export CONFIG_ATH9K_DEBUG=y
  export CONFIG_ATH9K_DEBUGFS=y
  (source)
  Now run "cd ../.." to go back up two directories. Now run:
  $ makepkg -e
  # pacman -U <file that was produced>
  And I ran "mkinitcpio -p linux" just in case, but I'm not sure if that is necessary at all. I'm... not touching the kernel, right?
  Now I ran:
  echo 1 > /sys/kernel/debug/ieee80211/phy0/ath9k/disable_ani
  But bash would say that the file or directory doesn't exist. Even if I prepend it with "sudo", I get the same results. I was only able to get the command to work if I logged in as root. I even put the line in my /etc/profile. The 2000 ms ping every 30 seconds is now GONE. HOWEVER! If I reboot and log in as a normal user, the problem is there again. If I reboot and log in as root, the problem is gone. If I then log out and then log back in as a normal user, the problem does not come back.
  So really, I can avoid the problem if I first log in as root, log out, and then log back in as a normal user. But this is a great inconvenience. I would much prefer if I could just log in as a normal user right after boot, and have everything working.
  Now, how do I get the command to automatically run at boot as root (without me having to log in as root), and work?
  UPDATE 2:
  I got it working. Putting the line in /etc/profile is not the solution. I created a custom systemd .service file.
  Put this into /etc/systemd/service (name it "disable_ani.service"):
  EDIT: Wow. I made a glaring typo here. It should be /etc/systemd/system/disable_ani.service
  [Unit]
  Description=disable_ani
  [Service]
  Type=oneshot
  ExecStart=/bin/sh -c "echo 1 > /sys/kernel/debug/ieee80211/phy0/ath9k/disable_ani"
  [Install]
  WantedBy=multi-user.target
  Then make sure to "sudo chmod 755 /etc/systemd/service/disable_ani.service", since root owns this file.
  Then run "sudo systemctl enable disable_ani.service".
  EDIT: It has been brought to my attention that there is a much simpler way than creating a custom service.
  Using a tmpfile:
  /etc/tmpfiles.d/disable_ani.conf
  w /sys/kernel/debug/ieee80211/phy0/ath9k/disable_ani - - - - 1
  Done.
  Now ANI is persistently disabled between boots, even if I log in as a normal user right after boot.
  Thanks for reading.
  Last edited by vyu223 (2013-03-12 10:20:19)

  So zsh is telling you that the command didn't work, since it claims that there is no such file or directory. I had a lot of trouble with getting the echo command to work, as well. I found that if out of these lines:
  export CONFIG_CFG80211_DEBUGFS=y
  export CONFIG_MAC80211_DEBUGFS=y
  export CONFIG_ATH_DEBUG=y
  export CONFIG_ATH9K_DEBUG=y
  export CONFIG_ATH9K_DEBUGFS=y
  If the first and second line above were not uncommented in the config.mk file, I couldn't leave the last line above uncommented as well, or else makepkg would fail and give me an error. So originally I had only the 3rd and 4th lines above uncommented/inserted in my config.mk. With that configuration, I could not get the echo command to work, no matter what. Have you uncommented or inserted all of the above 5 lines into your config.mk?
  After making sure all of the above 5 lines were in my config.mk, the echo command still didn't work, even if I preceded the command with sudo, or entered a su session. Bash would tell me that there was no such file or directory. I found that if I actually logged out of my normal user, and then logged back into the computer as root, the command would work. If your shell does not give you any feedback (particularly, "no such file or directory"), then the command worked. In order to get the command to run every time the computer boots, I used a systemd service, so that the command is issued as root. For some reason, it doesn't work if you put the command into /etc/profile.
  Oh, and it would probably be helpful to mention that for the compat-drivers-patched package from the AUR, the PKGBUILD checks to see what your _selected_drivers variable is before compilation. If you set _selected_drivers=ath9k, your compile times will be much shorter.

• "Enable Access for Assistive Devices" is missing from Yosemite and my QuicKeys program depends on this to work.  Help!

  This is my second day trying to get my QuicKeys application to work in Yosemite, but "Enable Access for Assistive Devices," which QuicKeys needs to work, is missing from Yosemite.  I have gone through the entire System Preferences panel (Security and Privacy, Accessibility, Keyboard, etc.) without success - it's just not there.  I have checked this app in the Privacy pane and dragged
  "QuicKeysUserEventHelper" out of the QuicKeys Resources folder into the Applications folder so it could "appear" in the Privacy pane, and then checked it there. Is there any way to enable access for assistive devices - a Terminal command, perhaps?
  QuicKeys is my most used program, which I have had since its inception at least 10 years ago!  Help!

  Thank you for your reply!  I did everything that Startly recommended (actually, gb2), and when I dragged the QuicKeys Helper into the Privacy box. I didn't see it, but after I quit and restarted QuicKeys, it worked!  However,I had  first  dragged the QuicKeys app to the trash, emptied it, then restarted.  Next, I redownloaded QuicKeys from Startly and THEN I went to gb2's directions.  All together, my QuicKeys now works on my MacBook Air.  BUT NOW, I keep getting the warning that says that this version and activation code are already in use by another user!  I am also getting those warnings on my Mac Pro -  which had the same problem yesterday (QuicKeys not working), until I heard back from a Technical Advisor from Startly, who told me about trashing the app and redownloading from their site.  Last night, that version of QuicKeys worked WITHOUT my having to drag the QuicKeys Helper app into the Privacy pane.  Perhaps it is there, but invisible - the helper app is not visible on either of my computers' Privacy panes.
  OK, NOW WHAT DO I DO?  Every 20 seconds or so, I'm getting those annoying warning signs (on BOTH computers) and requests to put in my activation key, and then told that it is being used by another user!!!
  AM I EVER GOING TO BE ABLE TO USE MY 2 LICENSES FOR MY 2 QUICKEYS PROGRAMS???