URGENT OT - Very Puzzled IIS Authentication

Similar Messages

• IIS authentication with weblogic

  I am trying to use IIS authentication with my ADF application deployed on weblogic. Is there any documentation for this?
  I want to use windows authentication with IIS. So users should not get any prompt for username / password to the application after they loggen in their windows machine.
  It should be like intranet ADF application.
  Thanks

  I am trying to use IIS authentication with my ADF application deployed on weblogic. Is there any documentation for this?
  I want to use windows authentication with IIS. So users should not get any prompt for username / password to the application after they loggen in their windows machine.
  It should be like intranet ADF application.
  Thanks

• Help solve OIM puzzle - OIM Authenticator == "weblogic user soft locked"

  Hi,
  I just completed an installation of IDAM 11g including OIM. I've done several, with different configurations, but this one is on Centos 64-bit.
  Everything seems to be working, but whenever I start the soa_server1 and oim_server1 managed server, I start seeing messages in the Adminserver stdout from <OIMAuthenticator>, saying that the weblogic user is "soft locked". If I go into OIM Admin, the 'WEBLOGIC' user is locked, and if I unlock that user in OIM Admin, the msgs from Adminserver change to "failed authentication" a few times, then I get the "soft locked" messages again.
  I've been trying to track this problem down for almost a week now. I'm "close" to understanding what might be going on, but I'm kind of at an impasse right now, so I figured I'd post what I've found thus far, and see if anyone here has any ideas.
  1) With this installation, I first installed a basic WebLogic domain, with a password (e.g., "password1").
  2) When I got to the IDAM installation, because there was a password policy, I had to use a password with upper-case in it (e.g., "Password1"), for all responses, except when it asked for the info for accessing the WebLogic Adminserver, in which case I responded with the original weblogic password (e.g., "password1").
  3) I have both the DefaultAuthenticator and the OIMAuthenticator in the security realm, with the DefaultAuthenticator at the top, above the OIMAuthenticator. Both authenticators are set to "SUFFICIENT".
  4) I think that SOMETHING is intermittently (~ every minute) trying to authenticate using the "weblogic" user, but whatever that is, it has the "wrong" password.
  5) My understanding is that normally, when OIM is installed, the 'WEBLOGIC' user is added to OIM, with an "empty" password, and I confirmed via sqlplus, that the USR_PASSWORD in the OIM USR table is indeed empty.
  6) I think that with the order that the authenticators are in, DefaultAuthenticator would attempt to authenticate, and then OIMAuthenticator would attempt to authenticate. Since both are set to SUFFICIENT, if an authentication against DefaultAuthenticator succeeds, the authentication would be considered "successful".
  Based on all of the above, it seems like whatever the process that is trying to do those authentications is, it has a password that is not "password1" (since if it was using "password1", then the DefaultAuthenticator" would successfully authenticate, and it shouldn't try the OIMAuthenticator), and then OIMAuthenticator is trying to authenticate. Since the USR_PASSWORD is empty, OIMAuthenticator would always fail authentication, and thus the "failed authentication" errors followed by the "soft locked" msgs.
  7) I've tried to track down "what" process is doing the authentications, and I believe that it is EMAGENT. The reason that I say this is that if I stop EMAGENT using opmnctl, the "soft locked" messages stop.
  8) I've tried to set the "monitoring credentials" for the "weblogic" user in EM, to match the "password1", but even after I do that, I still see the "soft locked" msgs, and if I unlock the 'WEBLOGIC' use in OIM, then I get several "failed authentication" followed by the "soft locked" msgs again.
  9) I did an experiment (I'm running this under VMware, so I was able to do a snapshot and then revert after the experiment), where I set the password for the 'WEBLOGIC' user in OIM Admin to the "Password1", and after I did that, the "soft locked" errors stopped, so I believe that whatever process is attempting to authenticate is using the "Password1" password, rather than the "password1" password.
  I also have another earlier installation, that I installed using the "normal" way, i.e., letting the config.sh create a new WL domain, and that works and I don't get these "soft locked" msgs at all. That configuration also has USR_PASSWORD empty in the OIM database USR table.
  So, the question that I have is how do I get the EMAGENT to use the "password1" password instead of the "Password1" password?
  As I mentioned above, I tried changing that in the EM monitoring credentials, but that didn't seem to fix the problem (still got "soft locked" msgs).
  Maybe I've been staring at this problem too long, and am missing something, so I hope that someone can post some suggestions.
  Thanks,
  Jim

  Hi,
  I'm afraid that I'm not doing a very good job explaining what worries me.
  Specifically, I don't understand WHY the authentication of the 'weblogic' user against the DefaultAuthenticator is failing. I know that the reason that OIM is locking the 'WEBLOGIC' user is that the DefaultAuthenticator authentication is failing, causing the attempt to authenticate against the OIMAuthenticator (which also fails because USR_PASSWORD is empty), but why is that authentication against DefaultAuthenticator failing?
  More particularly, I'd really like to find out how to change the password that whatever is trying to do that authentication is using.
  As I said, I tried changing the monitoring credentials in EM already. I think that that actually changed SOMETHING, but not everything. Before that I was seeing 3 soft locked msgs every minute. After I changed the monitoring credentials to a completely different user that I created in the WL Console (emagent_monitor, member of the Monitors group in WL Console), instead of getting 3 msgs per minute, I'm now getting 1 msg per minute.
  So, it appears that it's something else, other than the monitoring credentials, i.e., something else (I don't know what) is trying to authenticate with the 'weblogic' user, but with bad password.
  Jim

• Strange Issue with IIS authentication in Clustered BAM environment

  Here's my configuration:
  Cluster #1 - prbam01
  Node 1 pbm101
  Node 2 pbm102
  This cluster is running ADC, event service, enterprise link, and IIS (IIS up on both nodes)
  Cluster #2 - prbam02
  Node 1 pbm103
  This cluster is running report cache and IIS. End users will hit this IIS for reports, admin, etc.
  Problem:
  The IIS on cluster 1, node 1 (pbm101) will never authenticate when trying to access the BAM web pages with any URL (http://prbam01/oraclebam or http://pbm101/oraclebam). It exhibits this behaviour whether it is the active cluster node or not. Cluster 1, node 2 exhibits correct behaviour in that it works at URL http://pbm102/oraclebam at all times and at http://prbam01/oraclebam when it is the active node.
  I have check IIS security settings and they appear exactly the same on both boxes. ADC and everything else seems to be running ok when node 1 is the active node, just the BAM web pages do not authenticate.

  This seems to be an IIS specific problem on pbm101 alone.
  Did you check the directory security settings for the OracleBAM application on pbmbam101 ? Any of the authenticated access methods should be enabled, or users cannot access certain pages from the local network, since IIS would be using anonymous authenication. That would normally not be a problem, but for IE sending in credentials that will be different from the account on the IIS server used for anonymous access. I suggest copying the directory security settings from the other node in the cluster (for all directories!!).
  Another additional point is that IIS ultimately uses file and directory permissions to resolve access rights. So you can check the permissions on the public folders used by IIS and ASP.Net.

• Very puzzled - Thunderbird works, Mail does nnot

  Hi,
  I have been using Thunderbird as my email client for the past one year, and want to give the Mail client a shot to see if its better. I am using the same settings that I've used in my Thunderbird install that is working fine, but it refuses to go anywhere in Mail.
  I keep getting "Check your connection to the POP server". There is no SSL authentication, no weird port settings for POP. I'm genuinely puzzled. Why wouldn't the same settings work in another program?
  Any ideas?
  Thanks,
  Sagar

  Who is your isp?
  If it is Cox they say on their site that you have to use only their smtp server.
  Other than the mailer server (of which I have no info), I question the ssl setting.
  Cox specifically say to not use ssl when setting up the outgoing server.
  Bellsouth do not appear to require authentication and do not use ssl either.
  AT&T Help Center Online: How To: Set Up Your AT&T Email Account Using Apple Mail 2.1 on a Mac OS 10
  http://help.bellsouth.net/bellsouth/asp/contentview.asp?isbrowse=true&sprt_cid=d 5442d40-acde-4d94-9192-0ae128b2ca78
  "each is setup with password SSL authentication. Each works just fine on any other computer"
  Are any of the other computers mac's?
  You say that "it works fine with other software on this computer" - what is this other software that is using ssl and port 25 to connect to the smtp servers?
  Port 25 is not used for ssl, use either 587 (standard) or in some cases 465 (non-standard).

• URGENT - sun-passthrough to IIS randomly fails

  Hello all,
  I have installed the proxy plugin for IIS. For the most part, it works. My users however report that sometimes the receive a 404 message, other times the download of the page is incomplete (missing images, css/js files) etc. Users even saw a 500 error. There was no message in the IIS or SOA server logs.
  Any suggestions?

  This is an urgent issue since it's a real web server.These forums are not Technical Support.
  There are no urgent issues in the forums.
  If you have a business need for a speedy response/guidance/repair then use your service contract and contact Oracle directly. Open a Service Request ("SR"). Alternatively you can wait for someone from the end-user community to get around to responding as they may choose to.
  In the mean time, go get your V880's system administrator to clean up your Veritas file systems. (Veritas is a product from Symantec, not Oracle.)

• I HAVE PURCHASED DDL PACK BUT CANNOT DOWLOAD IT???? URGENT AND VERY AN

  Are you guys trying to cheat my money?
  I have painstakingly decided to?Purchase YOUR Dolby Digital Li've pack for my X-Fi card.
  After making a COMPLETE Transatction and receiving the activation key, I click download but NO I END UP WITH A DEAD LINK.
  I have also tried the other link on this site http://buy.soundblaster.com/_creativ...DDN6Z2H2ADDEZD
  But no they ARE ALL DEAD LINKS.
  WHAT IS THE MEANING OF THIS. I HAVE ALREADY MADE THE TRANSACTION. THERE IS A RECEIPT. IT IS CONFIRMED AND NOW THAT I HAVE PAID AND CAN'T WAIT TO TRY OUT DOLBY DIGITAL LIVE YOU GIVE ME A DEAD LINK AND I CANNOT DOWNLOAD THE PACK?
  I WANT A REFUND IF I DON'T GET TO DOWNLOAD THE DDL PACK I HAVE PAID FOR SOON!
  THIS IS CHEATING. IT IS CAUSE FOR A CLASS ACTION LAWSUIT.

  Art385 wrote:
  This is 4um not creative support why everybody come here and b*tch about it. Read the red text on main page of forum.
  And yet this forum is categorized as Support, the irony. Also it's?labeled "Discussion Forums," not "User-to-User Forums."
  "Home > Support > Forums "
  I'm very sure for people who are looking for answers to their problems, clicking on a "Discussion Forums" link in the support section of a companies website will assume that this is one of the company's support section. Right now, this forum serves almost no purpose because there is zero support here.
  I like Creative products, but hate their business practices. Their support has been useless to me. I end up solving?Creative sound?issues by myself. Their product works, just not always out of the box nor advertise, which I think is a problem.
  Message Edited by bLuDrGn84 on 08-26-2008 2:00 PM

• Urgent Help Please : Peer not authenticated

  Hello Everyone,
  I am using JBoss with Tomcat. I have imported my CER file into the JRE/lib/cacerts file as a trusted certificate. I have a simple client and a simple servlet.
  Here is the code.
  Client
  import java.io.*;
  import java.io.FileInputStream;
  import java.security.KeyStore;
  import java.security.KeyStoreException;
  import java.security.NoSuchAlgorithmException;
  import javax.net.ssl.*;
  public class TestSecureClient
  private SSLContext ctx;
  private TrustManagerFactory tmf;
  private KeyStore ks;
  private char[] passphrase = "localhost".toCharArray();
  public TestSecureClient()
  // System.setProperty("javax.net.ssl.trustStore","C:\\j2sdk1.4.0_01\\jre\\lib\\security\\cacerts");
  System.setProperty("javax.net.debug", "ssl");
  try
  loadKeystore();
  catch (Exception e)
  e.printStackTrace();
  private void loadKeystore()
  throws Exception
  System.out.println("set up context, keystore and trustManagerFactory");
  ctx = SSLContext.getInstance("SSL");
  tmf = TrustManagerFactory.getInstance("SunX509");
  ks = KeyStore.getInstance("JKS");
  System.out.println(
  "set context to ssl, tmf to X509 and keystore to JKS");
  ks.load(new FileInputStream("C:\\keys\\.keystore"), passphrase);
  System.out.println("loading testkeys using passphrase");
  tmf.init(ks);
  System.out.println("initialise keystore using passphrase");
  ctx.init(null, tmf.getTrustManagers(), null);
  System.out.println("initialise the key manager");
  connect();
  private void connect()
  throws Exception
  SSLSocketFactory factory = ctx.getSocketFactory();
  System.out.println("got socket factory, now trying to create socket");
  SSLSocket socket = (SSLSocket)factory.createSocket("localhost", 8443);
  System.out.println("starting handshake");
  socket.addHandshakeCompletedListener(new HandshakeCompletedListener() {
  public void handshakeCompleted(HandshakeCompletedEvent event)
  System.out.println("Handshake finished!");
  System.out.println("\t CipherSuite:" + event.getCipherSuite());
  System.out.println("\t SessionId " + event.getSession());
  System.out.println(
  "\t PeerHost " + event.getSession().getPeerHost());
  socket.startHandshake();
  System.out.println("SSL Socket Connected");
  postToServlet(socket);
  private void postToServlet(SSLSocket pSocket)
  try
  PrintWriter out = new PrintWriter(new BufferedWriter(new OutputStreamWriter(pSocket.getOutputStream())));
  out.println(
  "GET https://localhost/httpstest/SimpleServlet HTTP/1.1");
  out.println();
  out.flush();
  * Make sure there were no surprises
  if (out.checkError())
  System.out.println(
  "SSLSocketClient: java.io.PrintWriter error");
  /* read response */
  BufferedReader in = new BufferedReader(new InputStreamReader(pSocket.getInputStream()));
  String inputLine;
  while ((inputLine = in.readLine()) != null)
  System.out.println(inputLine);
  in.close();
  out.close();
  pSocket.close();
  catch (Exception e)
  System.out.println(e);
  public static void main(String[] args)
  new TestSecureClient();
  Here is my SimpleServlet
  import java.io.*;
  import java.io.IOException;
  import java.io.ObjectInputStream;
  import java.io.ObjectOutputStream;
  import java.io.PrintWriter;
  import java.io.Serializable;
  import java.security.*;
  import javax.net.ssl.*;
  import javax.servlet.ServletException;
  import javax.servlet.http.HttpServlet;
  import javax.servlet.http.HttpServletRequest;
  import javax.servlet.http.HttpServletResponse;
  import javax.servlet.http.HttpSession;
  public class SimpleServlet
            extends HttpServlet
       * Handle the HTTP GET method by building a simple web page.
       *@param request
       *@param response
       *@exception ServletException
       *@exception IOException
       public void doGet( HttpServletRequest request, HttpServletResponse response )
            throws ServletException, IOException
            System.setProperty( "javax.net.ssl.trustStore", "C:\\j2sdk1.4.2_03\\jre\\lib\\security\\cacerts" );
            PrintWriter out;
            String title = "Simple Servlet Output";
            System.setProperty( "javax.net.debug", "ssl" );
            // set content type and other response header fields first
            response.setContentType( "text/html" );
            // then write the data of the response
            out = response.getWriter();
            out.println( "<HTML><HEAD><TITLE>" );
            out.println( title );
            out.println( "</TITLE></HEAD><BODY>" );
            out.println( "<H1>" + title + "</H1>" );
            out.println( "<P>This is output from SimpleServlet." );
            out.println( "</BODY></HTML>" );
            out.close();
  When I run my client I get the following output
  Working directory is C:\httpstest
  java -classpath C:\httpstest TestSecureClientset up context, keystore and trustManagerFactory
  set context to ssl, tmf to X509 and keystore to JKS
  loading testkeys using passphrase
  adding as trusted cert:
  Subject: CN=Joyce Stack, OU=Digisoft, O=Digisoft, L=Cork, ST=Cork, C=IE
  Issuer: CN=Joyce Stack, OU=Digisoft, O=Digisoft, L=Cork, ST=Cork, C=IE
  Algorithm: DSA; Serial number: 0x4020d3da
  Valid from Wed Feb 04 11:13:30 GMT 2004 until Tue May 04 11:13:30 GMT 2004
  initialise keystore using passphrase
  trigger seeding of SecureRandom
  done seeding SecureRandom
  initialise the key manager
  got socket factory, now trying to create socket
  starting handshake
  %% No cached client session
  *** ClientHello, TLSv1
  RandomCookie: GMT: 1078739209 bytes = { 61, 63, 239, 146, 243, 227, 70, 130, 242, 150, 202, 206, 5, 23, 7, 105, 12, 35, 16, 133, 45, 22, 144, 68, 228, 239, 35, 15 }
  Session ID: {}
  Cipher Suites: [SSL_RSA_WITH_RC4_128_MD5, SSL_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA, SSL_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA, SSL_RSA_WITH_DES_CBC_SHA, SSL_DHE_RSA_WITH_DES_CBC_SHA, SSL_DHE_DSS_WITH_DES_CBC_SHA, SSL_RSA_EXPORT_WITH_RC4_40_MD5, SSL_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA]
  Compression Methods: { 0 }
  main, WRITE: TLSv1 Handshake, length = 73
  main, WRITE: SSLv2 client hello message, length = 98
  main, READ: TLSv1 Handshake, length = 1180
  *** ServerHello, TLSv1
  RandomCookie: GMT: 1078739209 bytes = { 145, 80, 195, 109, 127, 182, 76, 181, 210, 119, 119, 44, 187, 165, 173, 75, 3, 93, 72, 45, 14, 90, 168, 94, 147, 39, 208, 212 }
  Session ID: {64, 76, 65, 9, 142, 208, 247, 95, 51, 150, 99, 147, 143, 113, 220, 153, 78, 69, 189, 136, 130, 100, 6, 252, 61, 169, 146, 195, 155, 252, 19, 57}
  Cipher Suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA
  Compression Method: 0
  %% Created: [Session-1, TLS_DHE_DSS_WITH_AES_128_CBC_SHA]
  ** TLS_DHE_DSS_WITH_AES_128_CBC_SHA
  *** Certificate chain
  chain [0] = [
  Version: V1
  Subject: CN=Joyce Stack, OU=Digisoft, O=Digisoft, L=Cork, ST=Cork, C=IE
  Signature Algorithm: SHA1withDSA, OID = 1.2.840.10040.4.3
  Key: Sun DSA Public Key
  Parameters:DSA
       p: fd7f5381 1d751229 52df4a9c 2eece4e7 f611b752 3cef4400 c31e3f80 b6512669
  455d4022 51fb593d 8d58fabf c5f5ba30 f6cb9b55 6cd7813b 801d346f f26660b7
  6b9950a5 a49f9fe8 047b1022 c24fbba9 d7feb7c6 1bf83b57 e7c6a8a6 150f04fb
  83f6d3c5 1ec30235 54135a16 9132f675 f3ae2b61 d72aeff2 2203199d d14801c7
       q: 9760508f 15230bcc b292b982 a2eb840b f0581cf5
       g: f7e1a085 d69b3dde cbbcab5c 36b857b9 7994afbb fa3aea82 f9574c0b 3d078267
  5159578e bad4594f e6710710 8180b449 167123e8 4c281613 b7cf0932 8cc8a6e1
  3c167a8b 547c8d28 e0a3ae1e 2bb3a675 916ea37f 0bfa2135 62f1fb62 7a01243b
  cca4f1be a8519089 a883dfe1 5ae59f06 928b665e 807b5525 64014c3b fecf492a
  y:
  8195bc0c 910d19d2 56cfa64c 1f3fbcd0 9d4298fd 2edf919f 230e035e 4a11b3f1
  6a0a5ca2 ca14752f dec12729 39657256 b074eff3 87e97309 e3cb5ab5 3e975434
  113119cd 1c0314d5 a33b893f 80dce9c6 a81dab21 9b3fd4e2 066e3834 f302c091
  a04d0701 66e8201c f3d013cf 6011bd54 85c4104c ba3a9514 ccb6d662 f774ca02
  Validity: [From: Wed Feb 04 11:13:30 GMT 2004,
                 To: Tue May 04 11:13:30 GMT 2004]
  Issuer: CN=Joyce Stack, OU=Digisoft, O=Digisoft, L=Cork, ST=Cork, C=IE
  SerialNumber: [    4020d3da]
  Algorithm: [SHA1withDSA]
  Signature:
  0000: 30 2E 02 15 00 92 12 A2 F2 12 5A A2 EE 3A 11 8D 0.........Z..:..
  0010: 09 7A 68 1A 04 49 AE 73 DE 02 15 00 8A D4 5E 9A .zh..I.s......^.
  0020: C6 25 B5 23 BB A4 CB 46 78 8B F3 D8 9C 11 0B D0 .%.#...Fx.......
  Found trusted certificate:
  Version: V1
  Subject: CN=Joyce Stack, OU=Digisoft, O=Digisoft, L=Cork, ST=Cork, C=IE
  Signature Algorithm: SHA1withDSA, OID = 1.2.840.10040.4.3
  Key: Sun DSA Public Key
  Parameters:DSA
       p: fd7f5381 1d751229 52df4a9c 2eece4e7 f611b752 3cef4400 c31e3f80 b6512669
  455d4022 51fb593d 8d58fabf c5f5ba30 f6cb9b55 6cd7813b 801d346f f26660b7
  6b9950a5 a49f9fe8 047b1022 c24fbba9 d7feb7c6 1bf83b57 e7c6a8a6 150f04fb
  83f6d3c5 1ec30235 54135a16 9132f675 f3ae2b61 d72aeff2 2203199d d14801c7
       q: 9760508f 15230bcc b292b982 a2eb840b f0581cf5
       g: f7e1a085 d69b3dde cbbcab5c 36b857b9 7994afbb fa3aea82 f9574c0b 3d078267
  5159578e bad4594f e6710710 8180b449 167123e8 4c281613 b7cf0932 8cc8a6e1
  3c167a8b 547c8d28 e0a3ae1e 2bb3a675 916ea37f 0bfa2135 62f1fb62 7a01243b
  cca4f1be a8519089 a883dfe1 5ae59f06 928b665e 807b5525 64014c3b fecf492a
  y:
  8195bc0c 910d19d2 56cfa64c 1f3fbcd0 9d4298fd 2edf919f 230e035e 4a11b3f1
  6a0a5ca2 ca14752f dec12729 39657256 b074eff3 87e97309 e3cb5ab5 3e975434
  113119cd 1c0314d5 a33b893f 80dce9c6 a81dab21 9b3fd4e2 066e3834 f302c091
  a04d0701 66e8201c f3d013cf 6011bd54 85c4104c ba3a9514 ccb6d662 f774ca02
  Validity: [From: Wed Feb 04 11:13:30 GMT 2004,
                 To: Tue May 04 11:13:30 GMT 2004]
  Issuer: CN=Joyce Stack, OU=Digisoft, O=Digisoft, L=Cork, ST=Cork, C=IE
  SerialNumber: [    4020d3da]
  Algorithm: [SHA1withDSA]
  Signature:
  0000: 30 2E 02 15 00 92 12 A2 F2 12 5A A2 EE 3A 11 8D 0.........Z..:..
  0010: 09 7A 68 1A 04 49 AE 73 DE 02 15 00 8A D4 5E 9A .zh..I.s......^.
  0020: C6 25 B5 23 BB A4 CB 46 78 8B F3 D8 9C 11 0B D0 .%.#...Fx.......
  *** Diffie-Hellman ServerKeyExchange
  DH Modulus: { 244, 136, 253, 88, 78, 73, 219, 205, 32, 180, 157, 228, 145, 7, 54, 107, 51, 108, 56, 13, 69, 29, 15, 124, 136, 179, 28, 124, 91, 45, 142, 246, 243, 201, 35, 192, 67, 240, 165, 91, 24, 141, 142, 187, 85, 140, 184, 93, 56, 211, 52, 253, 124, 23, 87, 67, 163, 29, 24, 108, 222, 51, 33, 44, 181, 42, 255, 60, 225, 177, 41, 64, 24, 17, 141, 124, 132, 167, 10, 114, 214, 134, 196, 3, 25, 200, 7, 41, 122, 202, 149, 12, 217, 150, 159, 171, 208, 10, 80, 155, 2, 70, 211, 8, 61, 102, 164, 93, 65, 159, 156, 124, 189, 137, 75, 34, 25, 38, 186, 171, 162, 94, 195, 85, 233, 47, 120, 199 }
  DH Base: { 2 }
  Server DH Public Key: { 141, 230, 60, 171, 152, 244, 227, 94, 165, 6, 166, 49, 28, 143, 106, 97, 130, 220, 0, 77, 153, 189, 151, 141, 253, 7, 162, 141, 32, 251, 80, 129, 8, 193, 79, 130, 240, 22, 21, 68, 185, 27, 253, 69, 190, 136, 9, 117, 147, 143, 193, 134, 226, 95, 62, 17, 17, 80, 34, 227, 229, 218, 173, 34, 3, 75, 29, 202, 89, 88, 220, 221, 96, 226, 160, 29, 79, 139, 242, 204, 223, 25, 255, 47, 196, 173, 40, 133, 234, 49, 161, 68, 208, 29, 67, 143, 7, 138, 124, 43, 60, 52, 12, 207, 247, 218, 36, 195, 237, 10, 251, 39, 87, 205, 42, 60, 175, 202, 168, 127, 142, 8, 218, 30, 241, 190, 62, 126 }
  Anonymous
  *** ServerHelloDone
  *** ClientDiffieHellmanPublic
  DH Public key: { 243, 101, 241, 11, 194, 68, 62, 212, 66, 86, 168, 117, 239, 154, 190, 75, 93, 94, 222, 53, 150, 202, 232, 200, 64, 174, 162, 89, 24, 144, 88, 235, 151, 92, 255, 22, 110, 49, 124, 214, 130, 196, 165, 129, 245, 100, 235, 61, 227, 50, 154, 78, 159, 83, 53, 227, 111, 228, 146, 72, 82, 180, 222, 181, 142, 156, 4, 90, 117, 193, 107, 144, 28, 201, 138, 10, 253, 232, 93, 197, 58, 181, 242, 65, 214, 131, 167, 143, 87, 162, 194, 26, 169, 116, 228, 142, 19, 217, 58, 38, 24, 225, 78, 139, 32, 6, 218, 128, 182, 242, 162, 237, 241, 231, 198, 87, 204, 253, 190, 153, 63, 198, 102, 18, 62, 190, 60, 133 }
  main, WRITE: TLSv1 Handshake, length = 134
  SESSION KEYGEN:
  PreMaster Secret:
  0000: 1B 0D FB 74 3D E0 23 74 BB 83 02 BD BF 14 E4 43 ...t=.#t.......C
  0010: 8D F7 1D 44 10 46 31 C4 BD BB 46 65 FD 97 BD 71 ...D.F1...Fe...q
  0020: 64 79 05 0D 44 B3 37 91 A6 11 77 B5 5E 02 79 A9 dy..D.7...w.^.y.
  0030: 7A 35 1D 4A E6 BF 9F 99 BD D9 2F B1 B0 B8 CB FC z5.J....../.....
  0040: 26 82 AA 93 EC 9A F7 B7 9A 67 A6 8F C7 60 68 96 &........g...`h.
  0050: 0B 5A C9 A4 B0 6B 95 50 56 82 54 CC C9 04 C4 03 .Z...k.PV.T.....
  0060: B3 E0 93 BB 60 B6 84 36 0F 3A 5E 27 23 B3 53 63 ....`..6.:^'#.Sc
  0070: E8 EC 41 5F 18 83 FD E6 BD 73 51 22 16 D5 93 6B ..A_.....sQ"...k
  CONNECTION KEYGEN:
  Client Nonce:
  0000: 40 4C 41 09 3D 3F EF 92 F3 E3 46 82 F2 96 CA CE @LA.=?....F.....
  0010: 05 17 07 69 0C 23 10 85 2D 16 90 44 E4 EF 23 0F ...i.#..-..D..#.
  Server Nonce:
  0000: 40 4C 41 09 91 50 C3 6D 7F B6 4C B5 D2 77 77 2C @LA..P.m..L..ww,
  0010: BB A5 AD 4B 03 5D 48 2D 0E 5A A8 5E 93 27 D0 D4 ...K.]H-.Z.^.'..
  Master Secret:
  0000: 7D A1 14 9A 48 7C ED 98 CF 3F D8 92 3C EE E5 05 ....H....?..<...
  0010: 05 BF 1A 8D 10 68 DC E2 A4 88 CF A4 AC FF 1D E2 .....h..........
  0020: E0 D4 FC F8 CB BA B8 7C B0 38 B2 BE 31 82 24 BC .........8..1.$.
  Client MAC write Secret:
  0000: CB 03 D5 D7 1C C2 85 4C 5A 26 0D 24 82 B9 4D 81 .......LZ&.$..M.
  0010: D9 3B E6 86 .;..
  Server MAC write Secret:
  0000: 42 9B 99 CB 1E B9 6C 1C 24 EC C1 15 9B 9A 44 5B B.....l.$.....D[
  0010: DD 69 D9 7D .i..
  Client write key:
  0000: 98 43 93 ED 3D 19 30 BA CF 49 07 60 44 6C EA 53 .C..=.0..I.`Dl.S
  Server write key:
  0000: C3 29 D5 46 BF 83 D9 C6 DD 87 8F A1 CB 0C 63 EA .).F..........c.
  Client write IV:
  0000: B5 8F 11 7C 52 44 A1 BD 6C 52 30 6F B2 E4 44 98 ....RD..lR0o..D.
  Server write IV:
  0000: A8 9D A4 EB 18 F1 72 3A A0 F7 ED DB 0B 24 1A 3D ......r:.....$.=
  main, WRITE: TLSv1 Change Cipher Spec, length = 1
  JsseJce: Using cipher AES/CBC/NoPadding from provider SunJCE
  *** Finished
  verify_data: { 214, 56, 105, 255, 211, 177, 74, 194, 123, 99, 106, 59 }
  main, WRITE: TLSv1 Handshake, length = 48
  main, READ: TLSv1 Change Cipher Spec, length = 1
  JsseJce: Using cipher AES/CBC/NoPadding from provider SunJCE
  main, READ: TLSv1 Handshake, length = 48
  *** Finished
  verify_data: { 118, 147, 184, 159, 16, 28, 169, 25, 218, 82, 145, 10 }
  %% Cached client session: [Session-1, TLS_DHE_DSS_WITH_AES_128_CBC_SHA]
  SSL Socket Connected
  main, WRITE: TLSv1 Application Data, length = 80
  Handshake finished!
       CipherSuite:TLS_DHE_DSS_WITH_AES_128_CBC_SHA
       SessionId [Session-1, TLS_DHE_DSS_WITH_AES_128_CBC_SHA]
       PeerHost localhost
  main, READ: TLSv1 Application Data, length = 160
  HTTP/1.1 200 OK
  Content-Type: text/html
  Content-Length: 154
  Date: Mon, 08 Mar 2004 09:46:51 GMT
  Server: Apache Coyote/1.0
  main, READ: TLSv1 Application Data, length = 176
  <HTML><HEAD><TITLE>
  Simple Servlet Output
  </TITLE></HEAD><BODY>
  <H1>Simple Servlet Output</H1>
  <P>This is output from SimpleServlet.
  </BODY></HTML>
  main, READ: TLSv1 Alert, length = 32
  main, RECV TLSv1 ALERT: warning, close_notify
  main, called closeInternal(false)
  main, SEND TLSv1 ALERT: warning, description = close_notify
  main, WRITE: TLSv1 Alert, length = 32
  main, called close()
  main, called closeInternal(true)
  main, called close()
  main, called closeInternal(true)
  main, called close()
  main, called closeInternal(true)
  Process java exited with code 0
  Working directory is C:\httpstest
  My JBoss has the following error
  09:46:51,171 DEBUG [JSSE14Support] Error getting client certs
  javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated
  at com.sun.net.ssl.internal.ssl.SSLSessionImpl.getPeerCertificates(DashoA6275)
  at org.apache.tomcat.util.net.jsse.JSSE14Support.getX509Certificates(JSSE14Support.java:151)
  at org.apache.tomcat.util.net.jsse.JSSESupport.getPeerCertificateChain(JSSESupport.java:161)
  at org.apache.coyote.http11.Http11Processor.action(Http11Processor.java:748)
  at org.apache.coyote.Response.action(Response.java:222)
  at org.apache.coyote.tomcat4.CoyoteAdapter.postParseRequest(CoyoteAdapter.java:321)
  at org.apache.coyote.tomcat4.CoyoteAdapter.service(CoyoteAdapter.java:221)
  at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:601)
  at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnection(Http11Protocol.java:392)
  at org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:565)
  at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:619)
  at java.lang.Thread.run(Thread.java:534)
  Can someone please help me. What do I do now ? What am I suppose to be doing...???
  Cheers,
  Joyce

  Just in case someone else needs this. I was using JBoss 3.2.2 and I upgraded to JBoss 3.2.3. I think this was a bug in the Tomcat bundle.

• Urgent 802.1x and MAC-Authentication Problem

  Hi all
  I want to deploy the mac- authentication in my network. and I have 3000 users. In the lab the authenticatoion for the machine takes:
  Vista : 15 - 20 seconds
  XP : 30 - 35 seconds
  Is there any way to reduce this time less than 10 seconds. My users count are 3000 will the time go bigger because of this.
  Please help me.
  Thanks and Best Regards
  amady

  With ACS, you can setup NARs (or Network Access Restrictions) to permit/deny access based on IP/non-IP based filters (like MAC Addresses).
  Specific info is here:
  <http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_user_guide_chapter09186a008018494f.html#313>
  Hope this helps,

• URGENT PROBLEM: Very slow printing multiple copies

  I am needing to print 1,400 copies of an SRA3 (big) double-sided colour/B&W document. It is just two pages (front and back) and I need 1,400 copies.
  It is very very strange but it seems that all Adobe programs actually send 1,400 pages to the printer where it should be 1 page with 1,400 copies so it's only one page sent to the printer.
  It seems, further, that Preview is the only program that does it right in that it sends one file/page to the printer with the instruction to print 1,400 times.
  This has the effect of printing very quickly because the printer only has one page spooled. All the other programs print very very slowly because the printer thinks it's printing 1,400 unique pages.
  The problem now is that Preview prints the page far too lightly compared to Acrobat Reader or InDesign.
  I need help. Any ideas why Acrobat and InDesign send multiple pages or even better, how can I get Preview to print more accurately?
  I have spent the whole day trying to figure this out with no luck!
  I am printing to a Xerox Document Centre C240 with no RIP or server which is half the problem but this should work!!
  Many thanks,
  Galen

  Hi,
  Go to Preview, Preferences, Color and select Automatic. It will change slightly the colour you get from your prints, it won't overwrite any printing feature you have selected on your PPD.
  The only thing that comes to my mind in relation with the Acrobat Issue is the collated option, it has to be selected if you don't want the printer increase its time of process.
  Hope it helps a bit

• My photos have stopped showing up on my pc from my iPhone.  They do still show up on my iPad.  I have signed out of iCloud on my pc and then signed in, but that didn't help.  Very puzzling.  Any help?

  My iphone photos have stopped showing up in my photo stream folder on my pc.  They do show up on my iPad.  I tried signing out and back into to iCloud on my pc, but no help.  Any ideas?

  The iCloud backup only backs up your camera roll photos, not photo stream photos.  Also, photos only remain in photo stream for 30 days.  After that they are removed from your photo stream, but will remain on your devices that already have them.  If all your photo stream photos are older than 30 days, that would explain why they don't stream to your iPhone 5 even though they are on your iPad.
  To get them on your phone, you can use an app like PhotoSync, which will wirelessly transfer photos from any album (including photo stream) between your devices.  Alternatively, you can save the photo stream photos to the camera roll on your iPad (by opening the My Photo Stream album, tap Edit, tap all the photos to select them, tap Share, tap Save to Camera Roll), then import them to your computer (see http://support.apple.com/kb/HT4083), put them in a folder, then select the folder on the Photos tab of your iTunes sync settings and sync them to your phone.

• Windows event coming through via db- put() call (very puzzling)

  We have this problem (https://bugzilla.osafoundation.org/show_bug.cgi?id=11202) where if we run a DEBUG build of chandler after running a RELEASE build on Windows (XP or 2000), running db 4.5.20 or 4.6.21, we're getting a windows event call while inside a db->put() call. This so happens in a somewhat critical section of code where windows events are definitely not expected.
  In no place that we can find are there any calls that we expect to tickle the Windows event loop (no yielding or somesuch). An MSVC stacktrace that doesn't even show any 'db' API to be on the stack at all. Yet, stepping through the python code in the python debugger clearly gets us to this error when stepping over the self._db.put() call which is more or less just a db->put() call in C.
  We think that we've ruled out threading weirdness, only one thread is involved here.
  Our wx engineer seems to remember having seen something about this strange interaction between Berkeley DB and wxWidgets before. Does this ring a bell ? Do you have any clues about what could be going on here ?
  Thanks
  Andi..

  Berkeley DB windows port utilizes Windows' CreateEvent function to implement the lock functionality, which is a fundamental functionality for databases.
  You do not have to protect berkeley db access methods for synchronization explicitly, rather, you should set DB_THREAD flag in the DB_ENV->open and DB->open funciton if the env and db handles are to be accessed by multiple thread of the same process, this way, Berkeley db will handle the synchronization internally

• Safari 8.0 not allowing Sharepoint Login / IIS Authentication

  I recently upgrade to Yosemite with Safari 8.0, but now I'm unable to authenticate and connect to our sharepoint server.  I seem to be able to login to my iMac using my Active Directory credentials and normally that would prevent me from meeting to login to Sharepoint.
  Instead, now I'm shown the Sharepoint login box, but no matter how I enter my credentials (with or without our domain name) it just displays the login screen again and again and I can't navigate away from that tab unless I force shut down Safari.
  I tried  Preferences > Security > [Uncheck]  Warn me when visiting a fraudulent site    based on comments on a different tread topic and that seemed to work for one browsing session, but now I'm back to where I began.
  PLEASE HELP!  I really need into sharepoint via Safari.
  We are running Sharepoint 2010

  This isn't a Mac / Apple problem. It's a .NET problem (which uses User Agent sniffing to customize certain controls as they are output, including navigation menus on SharePoint)
  I wrote a blog post which includes the fix you need your SharePoint administrators to use: Did Safari or IOS 8 break your SharePoint 2010 site?

• A very puzzling situation...

  Last night, While my iTouch was charging I went to my iTunes account and was looking at lastest music available. Then I noticed on the left-hand side where it shows your iTouch/iPod as charging/syncing, right below it there was a new device "online". curious, I clicked on it, and there was a single song in the playlist. So I closed it, and went up to my "music library" and it was EMPTY. All 3000+ songs GONE! I looked in my videos and movies library, everything was GONE. WTH???? I also noticed that all my playlists were gone. I searched my iTunes file that is saved to my computer (back-up) everything was gone. When I looked up my account history, everything I have purchased over the last year is there, but for some reason it won't go back onto my iTunes. Any ideas?
  Should I remove iTunes completely from the computer and re-install?
  Another thing...I decided to try sync-ing the iTouch a little while ago, a message popped up stating that "iTouch is only allowed 1 account. Do you wish to remove un-registered music from your device and sync this account only?"
  To me, I read that as "you have more than one account for your device" now how is that possible? Is my account hi-jacked? Did it relocate into a parallel universe?
  After all the problems I have been having with my iTouch (i.e., mail not working, wifi not working unless it is next to my wireless router, screen freezing up while using an application, etc) I am seriously considering a Zune.
  Any help or ideas offered is appreciated!

  Thanks all for the responses.
  I decided to shrink connection_snaphosts (i will refer to it as cs) by saving off the records to connection_snapshots2(I will refer to it as cs2). then truncating cs and dropping the storage and reinserting records to cs from cs2 using the same SQL script stated above. After these activities, cs and cs2 both show 0.13 MB used.
  This morning, cs has increased to 2MB.
  Answers to your questions:
  question:
  select table_name,owner,PCT_FREE,PCT_USED,INITIAL_EXTENT,NEXT_EXTENT,PCT_INCREASE,NUM_ROWS,BLOCKS,EMPTY_BLOCKS from dba_tables where table_name=' ' and owner=' ';
  answer:
  CONNECTION_SNAPSHOTS     DBA_OWNER     10          65536               3355     210     46
  CONNECTION_SNAPSHOTS2     DBA_OWNER     10          65536               3355     15     1
  question:
  how often do I delete?
  answer: I rarely delete. I use truncate mostly as described above.

• Urgent question very Strange problem with an external HD on mac PRO

  Hi,
  I have a problem with a external HD on my mac pro.
  After many month of regular use with out any problem today when I turned on the HD I could not see it in the finder anymore.
  I use this HD for backup of an other external HD and to do the back up I use an application called SYN SYNC
  The strange things are:
  1) If I start Sync Sync everything works properly as if the sofware recognize with out problem that the HD is effectively there.
  2) If I open DISK UTILITY I can see the HD and if I try to repair it the utility after 2 minutes says that everything is ok.
  3) If I look for the mac pro (to which the external HD incriminated is connected) on a different mac in my studio over the net I can see the external HD and I can browse the folder, copy items from the esternal HD to the MAC and even copy thing on the external HD.
  I tried to connect directly via Fire wire 800 the HD on a different MAC and I could not see it like on the mac pro.
  Does enyone have an idea of what's going on?
  best regards
  Lorenzo

  I can still see all the others external Hd with out any problem and I already try this but no results I can't see that HD on the desktop and neither in the sidebar.
  As I said the strange thing is that the external HD shows the same behaviour when is connected to a different MAC.
  Seams the problem is with the HD not with the MAC.
  I even try to use a different case for the HD using also USB connection instead of FW, but nothing change!