Unable to check status of Warranty Return
) Hi, I recently organised a return for my Zen x-fi 32gb (around 3 weeks ago) Since then I haven't heard anything, so I've tried on numerous occasions to input my RMA number in the 'check status' page but it always tells me it isn't an RMA number, even though I know it is. I was wondering if any of the mods here could help me out with this? I tried again today and the page doesn't even seem to be working at all at the moment - very annoying!
Please check your PM.
Similar Messages
-
Warranty return order type availabilty check issue
Hi,
I am using a special order type (ZZZ) in SD for the warranty returns. When I create the order type ZZZ I assign an order number and the items to be return.
Issue:
For the items that in the original order where confirmed by a RBA Check logic, I am having problems with the ZZZ order type. For example:
Original order
Product A 10 PC order - I got 5 of B and 5 of C confirmed (product substituions)
Order ZZZ
When I select the order and item above I got 10 PC of product A confirmed; and B and C nothing confirmed.
Note: Order ZZZ should work as the original one. What can be wrong?
Thanks a lot.Hello,
Usually ATP check is disabled for returns order and hence whatever quantity is enterd in order will usually get confirmed since ATP check cannot happen at customer level. You can verify this with item categories and scheduline categories for ZZZ order type.
If ATP check is enabled then it there may be some change in scope of check for these orders.(user exits).
Regards
AP -
Order Status for partial return sales order
Dear All,
I am facing an issue at my client for which I am unable to find an appropriate reason.
We have done a complete Sales order cycle: S.Ord - Delivery and Invoice (100qty). Now the customer returns a certain part of materials delivered (say 30qty). We are creating a sales order for this 30qty and creating a delivery (for 30qty) and credit memo.
The problem here is that the status of returns delivery and credit memo is closed but the status of this returns order is shown as being processed and also is reflected in open orders report.
Can anyone please suggest why this is shown as being processed and not as closed despite the returns order being fully delivered and invoiced?
Note: the Completion rule for Item category of my returns order is set to B-Item is completed after full quantity has been referenced. Is it because of this? What would be the implications if I make this blank? Any other suggestions too would be highly appreciated
Thanks and Regards,
Rohan GudavalliThis is b'coz, you create Credit memo with reference to Return Order (sales order), not from return delivery.
Further, if you check the standard copying control for VTFL ( Source: LR & Target: G2), you will not find config for this.
In standard, we have standard Billing doc type for this, that is RE - Credit for Returns (VOFA order-related billing VTFA).
So your standard process flow can be.
RE (Return Order)
-> LR (Return Delivery)
-> RE (Credit for Returns)
FYI, you can refer routine 2 - Ord-rel.credit memo from VOFM - Data transfer - Billing Document.
And that is the reason, why it is recommended to take Sales order as reference, instead of invoice.
Also, refer/check copying control config for VTFA for Return Order - RE to Credit for Returns - RE for Item category REN
Regards
JP -
"Unable to check revocation" error while checking CDP from non-domain user account
Hi!
I use 3-tier PKI infrastructure:
Stand-alone offline Root CA: RootCA;
Stand-alone offline Intermediate subordinate CA: SubCA;
Enterprise CA: EntSubCA.
In certificate we have three CDP point for CRL check:
ldap:///, http:// and file://
I have Windows 2008 R2 server joined to domain.
I use command certutil –verify –urlfetch <filename.cer> >check.txt for revocation checking of certificate.
When I use domain user account for revocation checking, all OK.
I have access to any CDP and all fine.
But when i use local server user account, I haven't access to ldap:/// and process failed although all other links is OK.
My question is "why check fail with non-domain user accout while other CDP point succesfully verifed"?
Here is the logfile from local user:
Issuer:
CN=EntSubCA
DC=DED
DC=ROOT
Subject:
CN=servername.domain_name
Cert Serial Number: 5a896145000300006ee2
dwFlags = CA_VERIFY_FLAGS_ALLOW_UNTRUSTED_ROOT (0x1)
dwFlags = CA_VERIFY_FLAGS_IGNORE_OFFLINE (0x2)
dwFlags = CA_VERIFY_FLAGS_FULL_CHAIN_REVOCATION (0x8)
dwFlags = CA_VERIFY_FLAGS_CONSOLE_TRACE (0x20000000)
dwFlags = CA_VERIFY_FLAGS_DUMP_CHAIN (0x40000000)
ChainFlags = CERT_CHAIN_REVOCATION_CHECK_CHAIN (0x20000000)
HCCE_LOCAL_MACHINE
CERT_CHAIN_POLICY_BASE
-------- CERT_CHAIN_CONTEXT --------
ChainContext.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
ChainContext.dwErrorStatus = CERT_TRUST_REVOCATION_STATUS_UNKNOWN (0x40)
ChainContext.dwErrorStatus = CERT_TRUST_IS_OFFLINE_REVOCATION (0x1000000)
ChainContext.dwRevocationFreshnessTime: 5 Days, 23 Hours, 15 Minutes, 48 Seconds
SimpleChain.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
SimpleChain.dwErrorStatus = CERT_TRUST_REVOCATION_STATUS_UNKNOWN (0x40)
SimpleChain.dwErrorStatus = CERT_TRUST_IS_OFFLINE_REVOCATION (0x1000000)
SimpleChain.dwRevocationFreshnessTime: 5 Days, 23 Hours, 15 Minutes, 48 Seconds
CertContext[0][0]: dwInfoStatus=102 dwErrorStatus=1000040
Issuer: CN=EntSubCA, DC=DED, DC=ROOT
NotBefore: 05.02.2015 20:03
NotAfter: 05.02.2016 20:03
Subject: CN=servername.domain_name
Serial: 5a896145000300006ee2
SubjectAltName: DNS Name=servername.domain_name
Template: Machine
70 e4 6b 16 05 a1 62 e3 6d 24 96 ff 44 74 ee a2 3e ce df 18
Element.dwInfoStatus = CERT_TRUST_HAS_KEY_MATCH_ISSUER (0x2)
Element.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
Element.dwErrorStatus = CERT_TRUST_REVOCATION_STATUS_UNKNOWN (0x40)
Element.dwErrorStatus = CERT_TRUST_IS_OFFLINE_REVOCATION (0x1000000)
---------------- Certificate AIA ----------------
Failed "AIA" Time: 0
Error retrieving URL: Logon failure: unknown user name or bad password. 0x8007052e (WIN32: 1326)
ldap:///CN=EntSubCA,CN=AIA,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=DED,DC=ROOT?cACertificate?base?objectClass=certificationAuthority
Verified "Certificate (0)" Time: 0
[1.0] file://\\ca\crl\EntSubCA.crt
Verified "Certificate (0)" Time: 4
[2.0] http://webserver/crl/EntSubCA.crt
---------------- Certificate CDP ----------------
Failed "CDP" Time: 0
Error retrieving URL: Logon failure: unknown user name or bad password. 0x8007052e (WIN32: 1326)
ldap:///CN=EntSubCA,CN=ca,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=DED,DC=ROOT?certificateRevocationList?base?objectClass=cRLDistributionPoint
Verified "Base CRL (018d)" Time: 0
[1.0] file://\\ca\crl\EntSubCA.crl
Failed "CDP" Time: 0
Error retrieving URL: Logon failure: unknown user name or bad password. 0x8007052e (WIN32: 1326)
[1.0.0] ldap:///CN=EntSubCA,CN=ca,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=DED,DC=ROOT?deltaRevocationList?base?objectClass=cRLDistributionPoint
Old Base CRL "Delta CRL (018d)" Time: 0
[1.0.1] file://\\ca\crl\EntSubCA.crl
Old Base CRL "Delta CRL (018d)" Time: 4
[1.0.2] http://webserver/crl/EntSubCA.crl
Verified "Base CRL (018d)" Time: 4
[2.0] http://webserver/crl/EntSubCA.crl
Failed "CDP" Time: 0
Error retrieving URL: Logon failure: unknown user name or bad password. 0x8007052e (WIN32: 1326)
[2.0.0] ldap:///CN=EntSubCA,CN=ca,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=DED,DC=ROOT?deltaRevocationList?base?objectClass=cRLDistributionPoint
Old Base CRL "Delta CRL (018d)" Time: 0
[2.0.1] file://\\ca\crl\EntSubCA.crl
Old Base CRL "Delta CRL (018d)" Time: 4
[2.0.2] http://webserver/crl/EntSubCA.crl
---------------- Base CRL CDP ----------------
Failed "CDP" Time: 0
Error retrieving URL: Logon failure: unknown user name or bad password. 0x8007052e (WIN32: 1326)
ldap:///CN=EntSubCA,CN=ca,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=DED,DC=ROOT?deltaRevocationList?base?objectClass=cRLDistributionPoint
OK "Base CRL (018d)" Time: 0
[1.0] file://\\ca\crl\EntSubCA.crl
Failed "CDP" Time: 0
Error retrieving URL: Logon failure: unknown user name or bad password. 0x8007052e (WIN32: 1326)
[1.0.0] ldap:///CN=EntSubCA,CN=ca,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=DED,DC=ROOT?deltaRevocationList?base?objectClass=cRLDistributionPoint
Old Base CRL "Delta CRL (018d)" Time: 0
[1.0.1] file://\\ca\crl\EntSubCA.crl
Old Base CRL "Delta CRL (018d)" Time: 4
[1.0.2] http://webserver/crl/EntSubCA.crl
OK "Base CRL (018d)" Time: 4
[2.0] http://webserver/crl/EntSubCA.crl
Failed "CDP" Time: 0
Error retrieving URL: Logon failure: unknown user name or bad password. 0x8007052e (WIN32: 1326)
[2.0.0] ldap:///CN=EntSubCA,CN=ca,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=DED,DC=ROOT?deltaRevocationList?base?objectClass=cRLDistributionPoint
Old Base CRL "Delta CRL (018d)" Time: 0
[2.0.1] file://\\ca\crl\EntSubCA.crl
Old Base CRL "Delta CRL (018d)" Time: 4
[2.0.2] http://webserver/crl/EntSubCA.crl
---------------- Certificate OCSP ----------------
No URLs "None" Time: 0
CRL 018d:
Issuer: CN=EntSubCA, DC=DED, DC=ROOT
33 af 4d be 0e 35 45 94 bc 8b 3f d9 c1 60 e7 0c c4 83 17 b6
Application[0] = 1.3.6.1.5.5.7.3.2 Client Authentication
Application[1] = 1.3.6.1.5.5.7.3.1 Server Authentication
CertContext[0][1]: dwInfoStatus=102 dwErrorStatus=0
Issuer: CN=SubCA
NotBefore: 13.11.2014 19:12
NotAfter: 13.11.2017 19:22
Subject: CN=EntSubCA, DC=DED, DC=ROOT
Serial: 6109015b000100000008
Template: SubCA
9b 04 17 9f c5 fe 52 ca a5 58 49 6c c6 18 fa db 13 b3 92 9e
Element.dwInfoStatus = CERT_TRUST_HAS_KEY_MATCH_ISSUER (0x2)
Element.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
---------------- Certificate AIA ----------------
Failed "AIA" Time: 0
Error retrieving URL: The network path was not found. 0x80070035 (WIN32: 53)
file://\\sub_ca\CertEnroll\sub_ca_SubCA(1).crt
Verified "Certificate (0)" Time: 0
[1.0] file://\\ca\crl\SubCA.crt
Verified "Certificate (0)" Time: 4
[2.0] http://webserver/crl/SubCA.crt
---------------- Certificate CDP ----------------
Verified "Base CRL (32)" Time: 0
[0.0] file://\\ca\crl\SubCA.crl
Verified "Base CRL (32)" Time: 4
[1.0] http://webserver/crl/SubCA.crl
---------------- Base CRL CDP ----------------
No URLs "None" Time: 0
---------------- Certificate OCSP ----------------
No URLs "None" Time: 0
CRL 32:
Issuer: CN=SubCA
8d a9 9d 51 65 a3 8e 77 02 22 40 57 62 70 e8 f6 c5 2e 60 1e
CertContext[0][2]: dwInfoStatus=102 dwErrorStatus=0
Issuer: CN=RootCA
NotBefore: 28.05.2008 12:09
NotAfter: 28.05.2058 12:19
Subject: CN=SubCA
Serial: 616bd19f000100000004
Template: SubCA
06 d2 47 e7 dc 8f a7 97 a2 b8 c3 92 03 19 24 0c 47 45 22 14
Element.dwInfoStatus = CERT_TRUST_HAS_KEY_MATCH_ISSUER (0x2)
Element.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
---------------- Certificate AIA ----------------
Verified "Certificate (0)" Time: 0
[0.0] file://\\ca\crl\RootCA.crt
Verified "Certificate (0)" Time: 4
[1.0] http://webserver/crl/RootCA.crt
---------------- Certificate CDP ----------------
Verified "Base CRL (1c)" Time: 4
[0.0] http://webserver/crl/RootCA.crl
Verified "Base CRL (1c)" Time: 0
[1.0] file://\\ca\crl\RootCA.crl
---------------- Base CRL CDP ----------------
No URLs "None" Time: 0
---------------- Certificate OCSP ----------------
No URLs "None" Time: 0
CRL 1c:
Issuer: CN=RootCA
dc 98 2f 8d 16 9c 64 6e b2 74 89 95 9a 6c 1b 77 fd 58 63 fb
CertContext[0][3]: dwInfoStatus=10c dwErrorStatus=0
Issuer: CN=RootCA
NotBefore: 27.05.2008 16:10
NotAfter: 27.05.2110 16:20
Subject: CN=RootCA
Serial: 258de6fbd3bbab92460530e9e9f10536
5d e4 56 38 13 0a 52 aa 66 51 25 61 19 33 c9 d7 a2 c7 dd 38
Element.dwInfoStatus = CERT_TRUST_HAS_NAME_MATCH_ISSUER (0x4)
Element.dwInfoStatus = CERT_TRUST_IS_SELF_SIGNED (0x8)
Element.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
---------------- Certificate AIA ----------------
Verified "Certificate (0)" Time: 0
[0.0] file://\\ca\crl\RootCA.crt
Verified "Certificate (0)" Time: 4
[1.0] http://webserver/crl/RootCA.crt
---------------- Certificate CDP ----------------
Verified "Base CRL (1c)" Time: 0
[0.0] file://\\ca\crl\RootCA.crl
Verified "Base CRL (1c)" Time: 4
[1.0] http://webserver/crl/RootCA.crl
---------------- Base CRL CDP ----------------
No URLs "None" Time: 0
---------------- Certificate OCSP ----------------
No URLs "None" Time: 0
CRL 1c:
Issuer: CN=RootCA
dc 98 2f 8d 16 9c 64 6e b2 74 89 95 9a 6c 1b 77 fd 58 63 fb
Issuance[0] = 1.2.700.113556.1.4.7000.233.28688.7.167403.1102261.1593578.2302197.1
Exclude leaf cert:
5b 8d 96 39 f8 a3 6f af f3 89 bc 8d 78 e2 da 53 21 b8 ff aa
Full chain:
ca 99 30 47 9b ad ab ce 97 cc 70 80 a5 4e 11 b3 1a 83 98 78
Verified Issuance Policies: None
Verified Application Policies:
1.3.6.1.5.5.7.3.2 Client Authentication
1.3.6.1.5.5.7.3.1 Server Authentication
ERROR: Verifying leaf certificate revocation status returned The revocation function was unable to check revocation because the revocation server was offline. 0x80092013 (-2146885613)
CertUtil: The revocation function was unable to check revocation because the revocation server was offline.
CertUtil: -verify command completed successfully.What you have discovered is the reason to *not* use LDAP URLs for CDP and AIA extensions in your PKI. To access those URLs, the account must access to the URLs. In your output, it is quite clear that the local account does not have necessary permissions
(you also use FILE URLs for publication, which again is not recommended).
The best practice is to use a single URL for the CDP extension. It should be an HTTP URL that is hosted on a highly available (internally and externally accessible) Web cluster.
For the AIA extension, it should contain two URLs: one for the CA certificate - again to an internally and externally accessible, highly available Web cluster and one for the OCSP service - also
an internally and externally accessible, highly available Web cluster.
the other issue is that the root CA is *not* trusted when run by a non-domain account. How are you adding the trusted root CA. It is recommended to do this by running
certutil -dspublish -f RootCA.crt.
This will ensure that the computer account trusts the root CA. In your output, the root CA certificate is not trusted.
Brian -
Unable to get status from admin server
Hi.
I have a customer with the following issue :
While in Admin Server on clustered environment they see their 2 nodes configured. They are unable to restart/stop/start and when they click on the node for more information it says Current Status 'Unknown Status'. An error has occurred. The stack trace below shows more information.
!$vwa10-140-ppde3Admin IdcAdmin: !csUserEventMessage,01103010011318365301,ppde3.wcm.ess.usda.gov!$!csAdminUnableToAlterProcess!csAdminUnableToExecAction,start,stelppde3-oirecmsrvwa10
intradoc.common.ServiceException: !csAdminUnableToAlterProcess!csAdminUnableToExecAction,start,stelppde3-oirecmsrvwa10
they also get an error :
(internal) 08.14 12:03:49.772 IdcServerThread-11 $BinDir missing
(internal) 08.14 12:03:49.772 IdcServerThread-11 BinDir mismatch: \\10.100.98.11\kcecmsnas\stelppde1\bin/ ==>
We tried a few things :
1. Checked the attributes of the exes in the bin directory
2. Tried to reinstall the NT services
Any ideas ?
Thanks.
FrankLenovo is aware that some models are unable to verify their correct warranty information through the Lenovo Solutions Center. There should be an update coming out within the next month or two that will correct this error.
If you would like, you can send me a private Message with your serial numbers and I will verify your warranty information in the Lenovo System.
Hoping to provide peace of mind
Thank you for being a part of the Lenovo Family,
Catie
Did someone help you today? Press the star on the left to thank them with a Kudo!
If you find a post helpful and it answers your question, please mark it as an "Accepted Solution"! This will help the rest of the Community with similar issues identify the verified solution and benefit from it.
Donate KUDOS and Click "Accepted Solution" -
Failed to create Subordinate CA because of unable to check revocation
Hi all,
I am building a subordinate CA on my domain controller with Windows Server 2012 R2 installed.
I submitted the CSR to my root CA (running EJBCA), then I accept the CA request and generated a certificate file. I already configured my root CA to append OCSP and CRL in this generated certification.
However, I keep receiving "revocation server was offline" error, although I passed the OCSP check with OpenSSL.
Here's the detailed error from certutil.exe
Any help?
PS C:\Users\Administrator> certutil -urlfetch -verify -seconds \\tsclient\Downloads\winPDCCA.cer
Issuer:
C=CA
O=ROOT
CN=ROOT Server CA
Name Hash(sha1): xxx
Name Hash(md5): xxx
Subject:
CN=win-PDC-CA
Name Hash(sha1): xxx
Name Hash(md5): xxx
Cert Serial Number: 58b8a199528589b8
dwFlags = CA_VERIFY_FLAGS_CONSOLE_TRACE (0x20000000)
dwFlags = CA_VERIFY_FLAGS_DUMP_CHAIN (0x40000000)
ChainFlags = CERT_CHAIN_REVOCATION_CHECK_CHAIN_EXCLUDE_ROOT (0x40000000)
HCCE_LOCAL_MACHINE
CERT_CHAIN_POLICY_BASE
-------- CERT_CHAIN_CONTEXT --------
ChainContext.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
ChainContext.dwErrorStatus = CERT_TRUST_REVOCATION_STATUS_UNKNOWN (0x40)
ChainContext.dwErrorStatus = CERT_TRUST_IS_OFFLINE_REVOCATION (0x1000000)
SimpleChain.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
SimpleChain.dwErrorStatus = CERT_TRUST_REVOCATION_STATUS_UNKNOWN (0x40)
SimpleChain.dwErrorStatus = CERT_TRUST_IS_OFFLINE_REVOCATION (0x1000000)
CertContext[0][0]: dwInfoStatus=102 dwErrorStatus=0
Issuer: C=CA, O=ROOT, CN=ROOT Server CA
NotBefore: 3/5/2015 3:20 AM
NotAfter: 3/4/2040 8:18 AM
Subject: CN=win-PDC-CA
Serial: 58b8a199528589b8
Template: DomainController
12b9512bc6cc456929f73ea1ab0b597812164e46
Element.dwInfoStatus = CERT_TRUST_HAS_KEY_MATCH_ISSUER (0x2)
Element.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
---------------- Certificate AIA ----------------
No URLs "None" Time: 0
---------------- Certificate CDP ----------------
Verified "Base CRL (17)" Time: 0
[0.0] http://ca.xxxxxxxxxx.com:8080/ejbca/publicweb/webdist/certdist?cmd=crl&issuer=CN=ROOT%20Server%
20CA,O=ROOT,C=CA
Verified "Delta CRL (17)" Time: 0
[0.0.0] http://ca.xxxxxxxxxx.com:8080/ejbca/publicweb/webdist/certdist?cmd=deltacrl&issuer=CN=ROOT%20
Server%20CA,O=ROOT,C=CA
---------------- Base CRL CDP ----------------
No URLs "None" Time: 0
---------------- Certificate OCSP ----------------
Expired "OCSP" Time: 0
[0.0] http://ca.xxxxxxxxxx.com:8080/ejbca/publicweb/status/ocsp
CRL (null):
Issuer: C=CA, O=ROOT, CN=ROOT Server CA
ThisUpdate: 3/5/2015 3:30 AM
NextUpdate: 3/5/2015 3:30 PM
xxxx
CertContext[0][1]: dwInfoStatus=102 dwErrorStatus=1000040
Issuer: C=CA, O=ROOT, CN=ROOT CA
NotBefore: 3/4/2015 8:18 AM
NotAfter: 3/4/2040 8:18 AM
Subject: C=CA, O=ROOT, CN=ROOT Server CA
Serial: 198c1ca481078881
xxxx
Element.dwInfoStatus = CERT_TRUST_HAS_KEY_MATCH_ISSUER (0x2)
Element.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
Element.dwErrorStatus = CERT_TRUST_REVOCATION_STATUS_UNKNOWN (0x40)
Element.dwErrorStatus = CERT_TRUST_IS_OFFLINE_REVOCATION (0x1000000)
---------------- Certificate AIA ----------------
No URLs "None" Time: 0
---------------- Certificate CDP ----------------
Verified "Base CRL (13)" Time: 0
[0.0] http://ca.xxxxxxxxxx.com:8080/ejbca/publicweb/webdist/certdist?cmd=crl&issuer=CN=ROOT%20CA,O=ROOT,C=CA
Verified "Delta CRL (13)" Time: 0
[0.0.0] http://ca.xxxxxxxxxx.com:8080/ejbca/publicweb/webdist/certdist?cmd=deltacrl&issuer=CN=ROOT%20
CA,O=ROOT,C=CA
---------------- Certificate OCSP ----------------
Expired "OCSP" Time: 0
[0.0] http://ca.xxxxxxxxxx.com:8080/ejbca/publicweb/status/ocsp
CertContext[0][2]: dwInfoStatus=10a dwErrorStatus=0
Issuer: C=CA, O=ROOT, CN=ROOT CA
NotBefore: 3/4/2015 8:18 AM
NotAfter: 3/4/2040 8:18 AM
Subject: C=CA, O=ROOT, CN=ROOT CA
Serial: 1def9f3b25d8ec1e
7487db4f9ea8055ca3d095b994fafdd7bbfd0283
Element.dwInfoStatus = CERT_TRUST_HAS_KEY_MATCH_ISSUER (0x2)
Element.dwInfoStatus = CERT_TRUST_IS_SELF_SIGNED (0x8)
Element.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
---------------- Certificate AIA ----------------
No URLs "None" Time: 0
---------------- Certificate CDP ----------------
No URLs "None" Time: 0
---------------- Certificate OCSP ----------------
No URLs "None" Time: 0
Exclude leaf cert:
xxxx
Full chain:
xxxx
Issuer: C=CA, O=ROOT, CN=ROOT Server CA
NotBefore: 3/5/2015 3:20 AM
NotAfter: 3/4/2040 8:18 AM
Subject: CN=win-PDC-CA
Serial: 58b8a199528589b8
Template: DomainController
xxxx
The revocation function was unable to check revocation because the revocation server was offline. 0x80092013 (-214688561
3 CRYPT_E_REVOCATION_OFFLINE)
Revocation check skipped -- server offline
Cert is a CA certificate
Leaf certificate revocation check passed
CertUtil: -verify command completed successfully.
PS C:\Users\Administrator>The OCSP server is providing expired responses, there is something definitely wrong with the OCSP configuration. Because you are using the EJBCA OCSP server by PrimeKey, you are going to have to contact them regarding the issues with your
configuration.
Brian
Hi Brian,
I am very confused about the "expired" response... Did it means the certificate is expired or the OCSP response is expired, or something else?
Anyway, I sniff the traffic between this Windows subordinate CA and the OCSP server when I run "certutil -url -v winPDCCA.cer" and choose it to verify OCSP.
tshark: -R without -2 is deprecated. For single-pass filtering use -Y.
Capturing on 'Ethernet 1'
-- omitted --
Online Certificate Status Protocol
responseStatus: successful (0)
responseBytes
ResponseType Id: 1.3.6.1.5.5.7.48.1.1 (id-pkix-ocsp-basic)
BasicOCSPResponse
tbsResponseData
responderID: byKey (2)
byKey: xx
producedAt: 2015-03-06 03:14:21 (UTC)
responses: 1 item
SingleResponse
certID
hashAlgorithm (SHA-1)
Algorithm Id: 1.3.14.3.2.26 (SHA-1)
issuerNameHash: xx
issuerKeyHash: xx
serialNumber: 1384483256
certStatus: good (0)
good
thisUpdate: 2015-03-06 03:14:21 (UTC)
signatureAlgorithm (shaWithRSAEncryption)
Algorithm Id: 1.2.840.113549.1.1.5 (shaWithRSAEncryption)
Padding: 0
signature: xx...
certs: 1 item
Certificate (id-at-countryName=CA,id-at-organizationName=ROOT,id-at-commonName=ROOT Server CA)
signedCertificate
version: v3 (2)
serialNumber: -2130212735
signature (shaWithRSAEncryption)
Algorithm Id: 1.2.840.113549.1.1.5 (shaWithRSAEncryption)
issuer: rdnSequence (0)
rdnSequence: 3 items (id-at-countryName=CA,id-at-organizationName=ROOT,id-at-commonName=ROOT CA)
RDNSequence item: 1 item (id-at-commonName=ROOT CA)
RelativeDistinguishedName item (id-at-commonName=ROOT CA)
Id: 2.5.4.3 (id-at-commonName)
DirectoryString: printableString (1)
printableString: ROOT CA
RDNSequence item: 1 item (id-at-organizationName=ROOT)
RelativeDistinguishedName item (id-at-organizationName=ROOT)
Id: 2.5.4.10 (id-at-organizationName)
DirectoryString: printableString (1)
printableString: ROOT
RDNSequence item: 1 item (id-at-countryName=CA)
RelativeDistinguishedName item (id-at-countryName=CA)
Id: 2.5.4.6 (id-at-countryName)
CountryName: CA
validity
notBefore: utcTime (0)
utcTime: 15-03-04 11:48:18 (UTC)
notAfter: utcTime (0)
utcTime: 40-03-04 11:48:10 (UTC)
subject: rdnSequence (0)
rdnSequence: 3 items (id-at-countryName=CA,id-at-organizationName=ROOT,id-at-commonName=ROOT Server CA)
RDNSequence item: 1 item (id-at-commonName=ROOT Server CA)
RelativeDistinguishedName item (id-at-commonName=ROOT Server CA)
Id: 2.5.4.3 (id-at-commonName)
DirectoryString: printableString (1)
printableString: ROOT Server CA
RDNSequence item: 1 item (id-at-organizationName=ROOT)
RelativeDistinguishedName item (id-at-organizationName=ROOT)
Id: 2.5.4.10 (id-at-organizationName)
DirectoryString: printableString (1)
printableString: ROOT
RDNSequence item: 1 item (id-at-countryName=CA)
RelativeDistinguishedName item (id-at-countryName=CA)
Id: 2.5.4.6 (id-at-countryName)
CountryName: CA
subjectPublicKeyInfo
algorithm (rsaEncryption)
Algorithm Id: 1.2.840.113549.1.1.1 (rsaEncryption)
Padding: 0
subjectPublicKey: xx...
extensions: 7 items
Extension (id-pe-authorityInfoAccessSyntax)
Extension Id: 1.3.6.1.5.5.7.1.1 (id-pe-authorityInfoAccessSyntax)
AuthorityInfoAccessSyntax: 1 item
AccessDescription
accessMethod: 1.3.6.1.5.5.7.48.1 (id-pkix.48.1)
accessLocation: 6
uniformResourceIdentifier: http://ca.xx.com:8080/ejbca/publicweb/status/ocsp
Extension (id-ce-subjectKeyIdentifier)
Extension Id: 2.5.29.14 (id-ce-subjectKeyIdentifier)
SubjectKeyIdentifier: xx
Extension (id-ce-basicConstraints)
Extension Id: 2.5.29.19 (id-ce-basicConstraints)
critical: True
BasicConstraintsSyntax
cA: True
Extension (id-ce-authorityKeyIdentifier)
Extension Id: 2.5.29.35 (id-ce-authorityKeyIdentifier)
AuthorityKeyIdentifier
keyIdentifier: xx
Extension (id-ce-freshestCRL)
Extension Id: 2.5.29.46 (id-ce-freshestCRL)
CRLDistPointsSyntax: 1 item
DistributionPoint
distributionPoint: fullName (0)
fullName: 1 item
GeneralName: uniformResourceIdentifier (6)
uniformResourceIdentifier: http://ca.xx.com:8080/ejbca/publicweb/webdist/certdist?cmd=deltacrl&issuer=CN=ROOT%20CA,O=ROOT,C=CA
Extension (id-ce-cRLDistributionPoints)
Extension Id: 2.5.29.31 (id-ce-cRLDistributionPoints)
CRLDistPointsSyntax: 1 item
DistributionPoint
distributionPoint: fullName (0)
fullName: 1 item
GeneralName: uniformResourceIdentifier (6)
uniformResourceIdentifier: http://ca.xx.com:8080/ejbca/publicweb/webdist/certdist?cmd=crl&issuer=CN=Whitebear%20Home%20CA,O=Whitebear%20Home,C=CA
cRLIssuer: 1 item
GeneralName: directoryName (4)
directoryName: rdnSequence (0)
rdnSequence: 3 items (id-at-countryName=CA,id-at-organizationName=ROOT,id-at-commonName=ROOT CA)
RDNSequence item: 1 item (id-at-commonName=ROOT CA)
RelativeDistinguishedName item (id-at-commonName=ROOT CA)
Id: 2.5.4.3 (id-at-commonName)
DirectoryString: uTF8String (4)
uTF8String: ROOT CA
RDNSequence item: 1 item (id-at-organizationName=ROOT)
RelativeDistinguishedName item (id-at-organizationName=ROOT)
Id: 2.5.4.10 (id-at-organizationName)
DirectoryString: uTF8String (4)
uTF8String: ROOT
RDNSequence item: 1 item (id-at-countryName=CA)
RelativeDistinguishedName item (id-at-countryName=CA)
Id: 2.5.4.6 (id-at-countryName)
CountryName: CA
Extension (id-ce-keyUsage)
Extension Id: 2.5.29.15 (id-ce-keyUsage)
critical: True
Padding: 1
KeyUsage: 86 (digitalSignature, keyCertSign, cRLSign)
1... .... = digitalSignature: True
.0.. .... = contentCommitment: False
..0. .... = keyEncipherment: False
...0 .... = dataEncipherment: False
.... 0... = keyAgreement: False
.... .1.. = keyCertSign: True
.... ..1. = cRLSign: True
.... ...0 = encipherOnly: False
0... .... = decipherOnly: False
algorithmIdentifier (shaWithRSAEncryption)
Algorithm Id: 1.2.840.113549.1.1.5 (shaWithRSAEncryption)
Padding: 0
encrypted: 3f209f1ce8bfc017b1b4c889370b0a49e284dd9895672f4b...
1 ^C
Based on the response, it seems that the OCSP server did return "good", "successful" in response. This is also verified with OpenSSL ocsp verification command:
openssl ocsp -url http://ca.xxx.com:8080/ejbca/publicweb/status/ocsp -issuer ROOTServerCA.pem -cert winPDCCA.cer -CAfile ROOTCA.pem
Response verify OK
winPDCCA.cer: good
This Update: Mar 6 03:21:44 2015 GMTopenssl ocsp -url http://ca.xxx.com:8080/ejbca/publicweb/status/ocsp -issuer ROOTCA.pem -cert ROOTServerCA.pem -CAfile ROOTCA.pem
Response verify OK
ROOTServerCA.pem: good
This Update: Mar 6 03:23:29 2015 GMT -
Unable to Check for Update on OS 5.1
My iPad 2 will not update its software over the air and comes up with the message Unable to Check for Update. I have tried updating via iTunes 10.6 and it just sits there trying to contact the update server. I have also reset the iPad and restored from backup. Exactly the same problem!
Its nothing to do with the network as i get exactly the same problem at work as i do at home. My iPhone 4S updated to 5.1 without any problem. However my iPad just does not want to know.
Please help!Correction. I started the update on my iPhone and my wife's iPad. However, they never finished. Each one returned an error message stating that the "Software Update Failed. An error occurred downloading iOS 5.1." I can't even get my ipad2 to get that far. It returns an error when trying to contact the server.
-
Hi all!
My client is unable to check-in:
- the About dialog box of the ZENworks Security Client says that "check-in status: check-in incomplete"
- the log file says that
<Entry Stamp='2008-04-10 15:21:48:0843' Level='Warning' Category='Check In' Event='Failed to download credential'><![CDATA[
MS URL: https://myserver/authenticationserver/userservice.asmx
Error: 0x00000005: Access denied.]]>
</Entry>
I suspect I have a certification problem though
- before the client installation, I copied the certification file ESM-MS.cer into the same folder containing SETUP.EXE (as recommended by the installation guide at page 58)
- I imported ESM-MS.cer (and ESM-DS.cer, too) into Internet Explorer and therefore it can display the page https://fules/authenticationserver/userservice.asmx without any certificate warnings
Any ideas?
Cheers,
RobertOriginally Posted by zesm
We request that you open a support ticket with us. This will allow us to get more diagnostics from your machine setup.
Hi,
I have the same problem with the only difference I can't get over the "0x00000005: access denied" error
Thanks,
Jan -
Assign Z transaction on SRM portal under check status
Hi ,
I need to create the custom transaction(ZSC04) which is copy of BBPSC04 .
And also assign it under check status with New text .
How I can assign this ZSC04 under check status and will be called from
SRM portal ?
Thanks,
SSHi,
I have assigned Z transaction in PFCG ,it's visible on SRM portal but unable to call the required trnsaction .
Is it require to create ITS service and assign parameters for calling the z transaction on SRM portal ?
Thanks In advance .
Regards,
SS -
XI-DemoExample: Unable to check flight availability
Hello,
I'm trying the demo example.
After configuration of the proxy to proxy example (Clnt105 - Clnt106)
- I got this error text on the bsp-page:
Unable to check flight availability.
Error Type: XI system error
Error Details: In der HTTP-Antwort liegt der Status-Code 401 mit der Beschreibung Unauthorized vor
(Translation: http-response with status code 401 description Unauthorized )
ThanxHi,
can you take a look at my previous response:
Re: Http 401 error
(it refers to a few steps from Configuration guide:
https://www.sdn.sap.com/irj/servlet/prt/portal/prtroot/com.sap.km.cm.docs/library/uuid/ac6de690-0201-0010-54ac-8923089dcc97
Regards,
michal -
Demo Flight Availablity Check - status code 500
Hi Friends,
When I executing Demo Filight Availablity check, I am getting following error.
Error Type: XI system error
Error Details: HTTP response contains status code 500 with the description Internal Server Error
Please give me the solution.
Advanced Thanks,
ChandrasekharHi,
Take a look at this thread:
Re: XI 3.0 Demo: Unable to check flight availability: XI System Error
which deals with "Unable to check flight availability" error -
you can find a solution over there - using a correct RFC destination in SXMB_ADM --> Integration engine config
(for all clients except 100)
also this one:
SAP XI 3.0 demo examples errors
Regards,
michal
Message was edited by: Michal Krawczyk -
Hi
I have 1 rootCA and 1 subordinate CA. I removed one of the locations to publish CRL and after that the ADCS service can't start. I get the warning first:
Revocation status for a certificate in the chain for CA certificate 2 for siu-SRVDC01-CA could not be verified because a server is currently unavailable. The revocation function was unable to check revocation because the revocation server was offline.
0x80092013 (-2146885613 CRYPT_E_REVOCATION_OFFLINE).
And then the error:
Active Directory Certificate Services did not start: Could not load or verify the current CA certificate. siu-SRVDC01-CA The revocation function was unable to check revocation because the revocation server was offline. 0x80092013 (-2146885613 CRYPT_E_REVOCATION_OFFLINE).
I've read many threads with similar problems but I can't find the solution. The CDP is online. I've run "certutil -url cert.cer" to verify the CDP and AIA and everything is fine. But the service is still not starting.
See this command too:
C:\>certutil -verify -urlfetch subCADC01.cer
Issuer:
CN=siu-SRVDC02-CA
DC=siu
DC=domain
Name Hash(sha1): 152a7c43f186d9179c1c3256d3a1a0af4a9df892
Name Hash(md5): b409e417a38bbe04b5800512bd94efac
Subject:
CN=siu-SRVDC01-CA
DC=siu
DC=domain
Name Hash(sha1): 5ee421b84c3b18ff134cf2e42226853d78d3409b
Name Hash(md5): e1a454692361733e45dad374dc14cae3
Cert Serial Number: 1e0000022c707c76c0a27b315700000000022c
dwFlags = CA_VERIFY_FLAGS_CONSOLE_TRACE (0x20000000)
dwFlags = CA_VERIFY_FLAGS_DUMP_CHAIN (0x40000000)
ChainFlags = CERT_CHAIN_REVOCATION_CHECK_CHAIN_EXCLUDE_ROOT (0x40000000)
HCCE_LOCAL_MACHINE
CERT_CHAIN_POLICY_BASE
-------- CERT_CHAIN_CONTEXT --------
ChainContext.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
ChainContext.dwRevocationFreshnessTime: 1 Hours, 2 Minutes, 16 Seconds
SimpleChain.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
SimpleChain.dwRevocationFreshnessTime: 1 Hours, 2 Minutes, 16 Seconds
CertContext[0][0]: dwInfoStatus=102 dwErrorStatus=0
Issuer: CN=siu-SRVDC02-CA, DC=siu, DC=domain
NotBefore: 19.03.2015 11:18
NotAfter: 19.03.2017 11:28
Subject: CN=siu-SRVDC01-CA, DC=siu, DC=domain
Serial: 1e0000022c707c76c0a27b315700000000022c
Template: SubCA
a1a8a95464c5b586da6e9b304142d59fc5a22ae0
Element.dwInfoStatus = CERT_TRUST_HAS_KEY_MATCH_ISSUER (0x2)
Element.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
---------------- Certificate AIA ----------------
Verified "Certificate (0)" Time: 0
[0.0] http://wwwca/CertEnroll/srvdc02.siu.domain_siu-SRVDC02-CA.crt
---------------- Certificate CDP ----------------
Verified "Base CRL (26)" Time: 0
[0.0] http://sharepoint.siu.no:8088/siu-SRVDC02-CA.crl
---------------- Base CRL CDP ----------------
No URLs "None" Time: 0
---------------- Certificate OCSP ----------------
No URLs "None" Time: 0
CRL 26:
Issuer: CN=siu-SRVDC02-CA, DC=siu, DC=domain
ThisUpdate: 19.03.2015 11:10
NextUpdate: 15.09.2015 23:30
e2ee543a68214f9b99dda2e9f58b1ddfc34429d1
CertContext[0][1]: dwInfoStatus=10c dwErrorStatus=0
Issuer: CN=siu-SRVDC02-CA, DC=siu, DC=domain
NotBefore: 23.09.2011 13:00
NotAfter: 23.09.2021 13:10
Subject: CN=siu-SRVDC02-CA, DC=siu, DC=domain
Serial: 60fc459ebdefa5b646a081b0c21c259d
4ea8bb95b0038c69a83c939e8a54f892cd0b5056
Element.dwInfoStatus = CERT_TRUST_HAS_NAME_MATCH_ISSUER (0x4)
Element.dwInfoStatus = CERT_TRUST_IS_SELF_SIGNED (0x8)
Element.dwInfoStatus = CERT_TRUST_HAS_PREFERRED_ISSUER (0x100)
---------------- Certificate AIA ----------------
No URLs "None" Time: 0
---------------- Certificate CDP ----------------
No URLs "None" Time: 0
---------------- Certificate OCSP ----------------
No URLs "None" Time: 0
Exclude leaf cert:
691f7e42f5c4a86d03b7225bf7303369ef6dcc7e
Full chain:
17e5b9477a1736c33dc0ff245e7b06de5b958c4c
Verified Issuance Policies: None
Verified Application Policies: All
Cert is a CA certificate
Leaf certificate revocation check passed
CertUtil: -verify command completed successfully.
Any clue?It looks like it is trying to get the CRL using LDAP. It is quite strange since no ldap entry is on the subordinate CA,
only an HTTP address:
<CertificateRevocationList location="TvoCache" url="ldap:///CN=siu-SRVDC02-CA,CN=srvdc02,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=siu,DC=domain?certificateRevocationList?base?objectClass=cRLDistributionPoint"
fileRef="DEEB557897A9FEA217DF83D95BF24CA54051B1CF.crl" issuerName="siu-SRVDC02-CA" />
<CertificateRevocationList deltaCRL="true" location="TvoCache" url="ldap:///CN=siu-SRVDC02-CA,CN=srvdc02,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=siu,DC=domain?deltaRevocationList?base?objectClass=cRLDistributionPoint"
I have checked that object using adsi Edit and the permissions seem ok. Also there is a value on both attributes: certificateRevocationList and deltaRevocationList.
This problem happened after I removed the LDAP entry for the "CRL Distribution point" from the sub CA properties. Should I add back the LDAP entry?
Log Name: Microsoft-Windows-CAPI2/Operational
Source: Microsoft-Windows-CAPI2
Date: 19.03.2015 14:42:07
Event ID: 11
Task Category: Build Chain
Level: Error
Keywords: Path Discovery,Path Validation
User: SYSTEM
Computer: srvdc01.siu.domain
Description:
For more details for this event, please refer to the "Details" section
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-CAPI2" Guid="{5bbca4a8-b209-48dc-a8c7-b23d3e5216fb}" />
<EventID>11</EventID>
<Version>0</Version>
<Level>2</Level>
<Task>11</Task>
<Opcode>2</Opcode>
<Keywords>0x4000000000000003</Keywords>
<TimeCreated SystemTime="2015-03-19T13:42:07.481533500Z" />
<EventRecordID>131</EventRecordID>
<Correlation />
<Execution ProcessID="6288" ThreadID="5472" />
<Channel>Microsoft-Windows-CAPI2/Operational</Channel>
<Computer>srvdc01.siu.domain</Computer>
<Security UserID="S-1-5-18" />
</System>
<UserData>
<CertGetCertificateChain>
<Certificate fileRef="E02AA2C59FD54241309B6EDA86B5C56454A9A8A1.cer" subjectName="siu-SRVDC01-CA" />
<ExtendedKeyUsage />
<Flags value="40000000" CERT_CHAIN_REVOCATION_CHECK_CHAIN_EXCLUDE_ROOT="true" />
<ChainEngineInfo context="machine" />
<CertificateChain chainRef="{60B61582-1C3C-4B58-AE8C-70278ADEE402}" revocationFreshnessTime="P2DT21H13M20S">
<TrustStatus>
<ErrorStatus value="1000040" CERT_TRUST_REVOCATION_STATUS_UNKNOWN="true" CERT_TRUST_IS_OFFLINE_REVOCATION="true" />
<InfoStatus value="100" CERT_TRUST_HAS_PREFERRED_ISSUER="true" />
</TrustStatus>
<ChainElement>
<Certificate fileRef="E02AA2C59FD54241309B6EDA86B5C56454A9A8A1.cer" subjectName="siu-SRVDC01-CA" />
<SignatureAlgorithm oid="1.2.840.113549.1.1.5" hashName="SHA1" publicKeyName="RSA" />
<PublicKeyAlgorithm oid="1.2.840.113549.1.1.1" publicKeyName="RSA" publicKeyLength="2048" />
<TrustStatus>
<ErrorStatus value="1000040" CERT_TRUST_REVOCATION_STATUS_UNKNOWN="true" CERT_TRUST_IS_OFFLINE_REVOCATION="true" />
<InfoStatus value="102" CERT_TRUST_HAS_KEY_MATCH_ISSUER="true" CERT_TRUST_HAS_PREFERRED_ISSUER="true" />
</TrustStatus>
<ApplicationUsage any="true" />
<IssuanceUsage />
<RevocationInfo freshnessTime="P2DT21H13M20S">
<RevocationResult value="80092013">The revocation function was unable to check revocation because the revocation server was offline.</RevocationResult>
<StrongSignProperties signHash="RSA/SHA1" issuerPublicKeyLength="2048" />
<DeltaStrongSignProperties signHash="RSA/SHA1" issuerPublicKeyLength="2048" />
<CertificateRevocationList location="TvoCache" url="ldap:///CN=siu-SRVDC02-CA,CN=srvdc02,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=siu,DC=domain?certificateRevocationList?base?objectClass=cRLDistributionPoint"
fileRef="DEEB557897A9FEA217DF83D95BF24CA54051B1CF.crl" issuerName="siu-SRVDC02-CA" />
<CertificateRevocationList deltaCRL="true" location="TvoCache" url="ldap:///CN=siu-SRVDC02-CA,CN=srvdc02,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=siu,DC=domain?deltaRevocationList?base?objectClass=cRLDistributionPoint"
fileRef="58A2CDBC7A238DDD76EEFEDE354A04596F5AED71.crl" issuerName="siu-SRVDC02-CA" />
</RevocationInfo>
</ChainElement>
<ChainElement>
<Certificate fileRef="56500BCD92F8548A9E933CA8698C03B095BBA84E.cer" subjectName="siu-SRVDC02-CA" />
<SignatureAlgorithm oid="1.2.840.113549.1.1.5" hashName="SHA1" publicKeyName="RSA" />
<PublicKeyAlgorithm oid="1.2.840.113549.1.1.1" publicKeyName="RSA" publicKeyLength="2048" />
<TrustStatus>
<ErrorStatus value="0" />
<InfoStatus value="10C" CERT_TRUST_HAS_NAME_MATCH_ISSUER="true" CERT_TRUST_IS_SELF_SIGNED="true" CERT_TRUST_HAS_PREFERRED_ISSUER="true" />
</TrustStatus>
<ApplicationUsage any="true" />
<IssuanceUsage any="true" />
</ChainElement>
</CertificateChain>
<EventAuxInfo ProcessName="certsrv.exe" />
<CorrelationAuxInfo TaskId="{54E4FCD3-E70A-4024-BB81-6A053EAACE21}" SeqNumber="9" />
<Result value="80092013">The revocation function was unable to check revocation because the revocation server was offline.</Result>
</CertGetCertificateChain>
</UserData>
</Event> -
PPPI Process messages and check status
Hello.
Does anyone know of any method from xMII to get and check status of process messages sent to PP-PI?
E.g. check for status (has it been sent) and for any errors?
BR
Poul.Hi Poul,
I found a few RFCs which might do the job and will list them here so you can test them:
PROCESS_MESS_DOWNLOAD
PROCESS_MESS_EXCHANGE
PROCESS_MESS_GET_RETURN_CODE
PROCESS_MESS_UPLOAD
My search method is kind of funny. I put PROCMESS* into the search pattern of a SAP_JCo_Interface action block to return a list of related action blocks. But since I can't use BAPI in SAP and must rely on SE37, I can't readily see the documentation to determine relevance. But I suspect you can take if from here. I would be interested in knowing what you come up with for these.
I also tried PROCMSG* and get these:
BAPI_HU_PROCESS_MSG
BAPI_HU_PROCESS_MSG_DIRECT
BAPI_LIKP_PROCESS_MSG
BAPI_LIKP_PROCESS_MSG_DIRECT
Where HU stands for Handling Unit, but I can't seem to find out what LIKP refers to.
Hope this helps and maybe together we can get the information.
Thanks,
Mike
Found a couple more
RSAP_GET_MSG_TEXT
RSSM_GET_MSG_TEXT
You may also be able to use RFC_READ_TABLE, but I do not know the table structures which would be of interest.
Edited by: Michael Appleby on Jul 16, 2008 3:07 PM -
Run adadmin option Check fo missing files returns errors
Hi
Run adadmin option 2. Maintain Applications Files menu
and 5. Check for missing files
Returns error
Unable to verify files for iSupplier Portal.
AD Administration error:
The following file is missing:
/m01/TEST/apps/apps_st/appl/pos/12.0.0/admin/driver/posfile.drv
EBS Version:R12.1.3
As the files are intact and existed in old server where as in production i didnot find andy files except only three files exited in POS_TOP i.e log mesg out
as compare to old server: i.e. admin help html java log mds media mesg out patch sql xml
Please suggest should i copy the files form old server/backup to POS_TOP
Thanks
AligDuplicate post -- adadmin error when run check for missing files
The other post was created on "May 11, 2011 1:10 AM" and this one on "May 11, 2011 2:08 AM" so this is the one which should be locked.
Thanks,
Hussein -
Unable to check for Amber update
I am unable to check for Amber update on my Nokia Lumia 520 device. Whenever I click on option 'Check for updates' under 'Phone update' I am getting a message "We are currently unable to check for updates. (80072ee2).
I am using Idea 2G network & also tried on checking the status via Wi-fi connection but didn't work.I had the same issue and this got fixed after i did a HARD RESET to my windows phone and setting the screen go off time to "NEVER" so this does not locks the screen and the update screen does nt go off.
IF YOU DON'T WW+ANNA RESET YOUR PHONE, just try to set the lock screen time to "NEVER" and try to update. If this works, then well and good ! but if it does'nt, then it SURE will do after a hard reset!
Maybe you are looking for
-
No picture when connecting Mac Mini GMA 950 to Panasonic TX-PF42G10 via HDM
Hi ! I have a Mac Mini Core Duo 1,66 GHz with GMA950 chipset (MacMini1,1 sold from february 2006 to september 2006) which I was using as a Plex mediacenter connected to an old CRT display via an s-video adapter. I purchased a brand new Panasonic TX-P
-
White Squares instead of Application Icons in Switch Applications
My "Switch Applications" (Command-Tab) has started sporadically showing a white square instead of one of the icons for the applications I have open. I can still click through to them, but it is a little disconcerting. No particular application seems
-
Hi guys, Our client is generating payment runs via transaction F110 using classic payment mediums. When a payment run is executed via transaction F110, I presume it creates a physical payment file as well as the payment report that is sent to spool.
-
Lightroom and GIMP color issue using jpg
Here is what I do: Using an iMac (Tiger) and have my monitor calibrated using the built in MacOS tool. The profile is stored in the Library/ColorSync/Profiles folder. In the GIMP settings about color management, I have chosen the monitor profile from
-
Best Method for Destroying Data on the Drive Before it Goes Back to Apple
As the subject suggests....any ideas....i'd like to 'shred' the whole drive and clean install without any personal info on it.