Use another security realm

Similar Messages

• Using RDBMS Security Realm in production?

  Hi,
  In the BEA documentation it is stated that 'The RDBMS Security Realm is an
  example and is not ment to be used in a production environment.'
  However, of the Realms that are available this one seems to be best suited
  for our needs, so I'm wondering if there is any specific reason why this
  Realm should not be used in production. Has anyone had any experience using
  it in a live environment?
  I would be thankful for any information on this.
  /Mattias Arthursson

  Hi.
  Try posting this on the security newsgroup.
  Regards,
  Michael
  Mattias Arthursson wrote:
  Hi,
  In the BEA documentation it is stated that 'The RDBMS Security Realm is an
  example and is not ment to be used in a production environment.'
  However, of the Realms that are available this one seems to be best suited
  for our needs, so I'm wondering if there is any specific reason why this
  Realm should not be used in production. Has anyone had any experience using
  it in a live environment?
  I would be thankful for any information on this.
  /Mattias Arthursson--
  Michael Young
  Developer Relations Engineer
  BEA Support

• Is this possible to use no default security realm?

  Hi,
  I created new security ReadOnlySQLAuthentication provider in the default realm and it works. Now I have all the users from all applications in one realm. If they use the same enterprise roles, user can log to one application with login and password from another application. To prevent it I created another security realm. I've added ReadOnlySQLAuthentication provider, set in my application new realm name - in jazn-data.xml and web.xml. But it doesn't work. My questions are:
  It is possible to use few realms? So one application will use default realm, another no default realm.
  If so, how to bind an application to no default realm?
  Bart

  Hi,
  A WLS instance only supports a single realm. So the answer unfortunately is no (was different with OC4J)
  Frank

• Errors encountered while using a Custom Security Realm on a Platform Domain

  Hi,
  We have created a WebLogic Platform Domain. A WebLogic Portal application(Portal
  7.0) and some Web Service apps are running on this domain.
  We have created a Custom Security Realm b'cos of our application requirements
  and now when I startup the Platform Domain, I see lot of errors.
  Some of the errors typically are
  "<Jan 16, 2003 4:07:02 PM EST> <Error> <HTTP> <101256> <The run-as user: wlisystem,
  for the servlet: ApplicationView for the webapp: /WLI_AI_Workshop_Control_Web,
  could not be resolved to a valid user in the system. Please check if the user
  exists.
  javax.security.auth.login.LoginException: Authentication Failed: User wlisystem
  denied in Realm Adapter realm weblogic"
  or
  Unable to deploy EJB: wlai-eventprocessor-ejb.jar from wlai-eventprocessor-ejb.jar:weblogic.ejb20.WLDeploymentException:
  weblogic.ejb20.interfaces.PrincipalNotFoundException: Authentication Failed: User
  wlisystem denied in Realm Adapter realm weblogic
  Do we have to create any predefined user accounts in the Security Store to get
  rid of these errors. I would appreciate if anyone can suggest some tips or workarounds
  for configuring or creating a Custom Security Realm for Web Logic Platform Domain.
  Thanks
  Vikram

  Hello Vikram,
  Are you using the new WLS 7.0 security framework? It is not supported for
  Portal 7.0. For Portal 7.0 apps you have to use compatibility mode (6.x
  style) security.
  Ture Hoefner
  BEA Systems, Inc.
  www.bea.com
  "Vikram Datla" <[email protected]> wrote in message
  news:3e273015$[email protected]..
  >
  Hi,
  We have created a WebLogic Platform Domain. A WebLogic Portalapplication(Portal
  7.0) and some Web Service apps are running on this domain.
  We have created a Custom Security Realm b'cos of our applicationrequirements
  and now when I startup the Platform Domain, I see lot of errors.
  Some of the errors typically are
  "<Jan 16, 2003 4:07:02 PM EST> <Error> <HTTP> <101256> <The run-as user:wlisystem,
  for the servlet: ApplicationView for the webapp:/WLI_AI_Workshop_Control_Web,
  could not be resolved to a valid user in the system. Please check if theuser
  exists.
  javax.security.auth.login.LoginException: Authentication Failed: Userwlisystem
  denied in Realm Adapter realm weblogic"
  or
  Unable to deploy EJB: wlai-eventprocessor-ejb.jar fromwlai-eventprocessor-ejb.jar:weblogic.ejb20.WLDeploymentException:
  weblogic.ejb20.interfaces.PrincipalNotFoundException: AuthenticationFailed: User
  wlisystem denied in Realm Adapter realm weblogic
  Do we have to create any predefined user accounts in the Security Store toget
  rid of these errors. I would appreciate if anyone can suggest some tips orworkarounds
  for configuring or creating a Custom Security Realm for Web Logic PlatformDomain.
  >
  Thanks
  Vikram

• Using LDAP as security realm

  Hi,
  Our goal is to use LDAP(Iplanet Directory Server 5.0) as a security Realm
  for Weblogic Personalization and Commerce 3.5.
  Using the WLCS console, I've modified the config.xml file and following
  elements are added:
  <LDAPRealm AuthProtocol='simple' Credential='admin'
  GroupDN='ou=groups,dc=netnumina,dc=com' GroupIsContext='false'
  GroupUsernameAttribute='uniquemember'
  LDAPURL='ldap://sanand.netnumina.com:389' Name='wlcsLDAPRealm'
  Principal='uid=admin,ou=administrators,ou=topologymanagement,o=netscaperoot'
  UserAuthentication='local' UserDN='ou=people,dc=netnumina,dc=com'
  UserNameAttribute='uid'/>
  <CachingRealm BasicRealm='wlcsLDAPRealm' CacheCaseSensitive='true'
  Name='wlcsCachingRealm'/>
  But when we try to restart the WLCS, it throws java exceptions that context
  is not initialized and I get the following error
  <Jun 15, 2001 3:41:28 PM EDT> <Emergency> <Server> <Unable to initialize the
  ser
  ver: 'Fatal initialization exception
  Throwable: weblogic.security.ldaprealm.LDAPException: could not get
  context - wi
  th nested exception:
  [java.lang.reflect.InvocationTargetException - with target exception:
  [javax.naming.AuthenticationException: [LDAP: error code 49 - Invalid
  Credential
  s]]]
  weblogic.security.ldaprealm.LDAPException: could not get context - with
  nested e
  xception:
  I tried using Windows NT as a security realm but that gave me errors too.
  Does anyone has any experience using anything other than the default Realm?
  Any help would be appreciated. Thanks!
  Asim Raja
  [email protected]

  I'm not sure, but I suspect you can't
  since this would create a circular dependency -
  your realm would rely on the upper level security
  checking calls but those calls would rely on your
  realm.
  My suggestion is to give it a try and see what
  happens.
  -Tom
  Ozcan ADIYAMAN <[email protected]> wrote:
  Hi ,
  I am implementing a simple custom security realm using LDAP as the
  security store and I can see the users, groups and acls from the admin
  console.
  My question is (a custom realm newbie question) ;
  Is it possible to use weblogic.security.acl.Security with my custom
  realm to check permissions, get the current user,etc.,
  OR
  is this class ONLY used with default realms (when ACL is stored in a
  file) ?
  Thanks
  Ozcan

• Unable to use a custom security realm with Netscape Directory Server in WebLogic 7

  I have all users and groups stored in a Netscape LDAP server (version 4.1.6 on
  Solaris 8), so I want to create a custom security realm in WebLogic 7 (also run
  on Solaris 8) which uses my LDAP server as the Authenticator. I tried this by
  using the Admin Console and followed exactly the steps in Chapter 3 of the "Managing
  WebLogic Security" doc. However, when I rebooted WebLogic and logged into the
  Admin Console again and clicked the Users node under my custom realm, I saw this
  message in the right-hand pane: "There are no Authentication providers available
  that support the creation of Users". Also, I don't see my custom realm in the
  dropdown list under mydomain -> Security tab -> General tab -> Default Realm.
  What did I do wrong? Also, where does WebLogic store the custom security realm
  info? It is definitely not in config.xml.
  Thanks,
  Eric Ma

  Thanks for the info.
  I wonder when they will fix it.
  Jakub
  U¿ytkownik "Eric Ma" <[email protected]> napisa³ w wiadomo¶ci
  news:[email protected]..
  >
  According to BEA Tech Support, a known bug prevents the WLS 7 AdminConsole from
  displying users and groups defined in Netscape Directory Server.
  Eric Ma
  "Jakub Wroniszewski" <[email protected]> wrote:
  I have the same problem.
  Any new ideas?
  Rgds,
  Jakub
  U¿ytkownik "Eric Ma" <[email protected]> napisa³ w wiadomo¶ci
  news:[email protected]..
  Now I doubt my custom security realm is actually using the NetscapeDirectory Server
  as the authenticator. Unlike in WebLogic 6.1 Admin Console, whereclicking on
  the Users node displays all users in the LDAP server, in WebLogic 7I keep
  getting
  the message "There are no Authentication providers available that
  support
  the
  creation of Users." Any suggestions?
  "Eric Ma" <[email protected]> wrote:
  Never mind. I tried again by following the steps outlined at
  http://newsgroups.bea.com/cgi-bin/dnewsweb?cmd=article&group=weblogic.deve
  l
  oper.interest.security&item=8463&utag=
  and it seemed to have worked for me.
  "Eric Ma" <[email protected]> wrote:
  I have all users and groups stored in a Netscape LDAP server (version
  4.1.6 on
  Solaris 8), so I want to create a custom security realm in WebLogic7
  (also run
  on Solaris 8) which uses my LDAP server as the Authenticator. I
  tried
  this by
  using the Admin Console and followed exactly the steps in Chapter3
  of
  the "Managing
  WebLogic Security" doc. However, when I rebooted WebLogic and logged
  into the
  Admin Console again and clicked the Users node under my custom realm,
  I saw this
  message in the right-hand pane: "There are no Authentication
  providers
  available
  that support the creation of Users". Also, I don't see my customrealm
  in the
  dropdown list under mydomain -> Security tab -> General tab ->
  Default
  Realm.
  What did I do wrong? Also, where does WebLogic store the customsecurity
  realm
  info? It is definitely not in config.xml.
  Thanks,
  Eric Ma

• Using an alternate security realm

  Hi,
  I'm trying to configure the Weblogic Personalization & Personalization
  Server v3.5 to use NT or LDAP as a security realm.
  With LDAP, the server reboots properly but when I try to goto
  http://localhost:7501/tools, it prompts me for password/userid and none of
  the user accounts(including for weblogic and those in the LDAP) work.
  When I try to configure for NT security realm and then I try to reboot the
  server, I get the error message below.
  Any help would be greatly appreciate. Thanks!
  Asim
  [email protected]
  NT error message:
  U n a b l e t o a d j u s t t o k e n p r i v i l e g e s
  U n a b l e t o a d j u s t t o k e n p r i v i l e
  g e
  s
  java.lang.SecurityException: Unable to assert all required
  priviledges
  at weblogic.security.ntrealm.NTDelegate.initFields(Native Method)
  at weblogic.security.ntrealm.NTDelegate.loadlib(NTDelegate.java:218)
  at weblogic.security.ntrealm.NTDelegate.<init>(NTDelegate.java:84)
  at weblogic.security.ntrealm.NTRealm.<init>(NTRealm.java:42)
  at java.lang.Class.newInstance0(Native Method)
  at java.lang.Class.newInstance(Class.java:237)
  at weblogic.security.acl.Realm.getRealm(Realm.java:84)
  at weblogic.security.acl.Realm.getRealm(Realm.java:62)
  at
  weblogic.security.SecurityService.initializeRealm(SecurityService.jav
  a:265)
  at
  weblogic.security.SecurityService.initialize(SecurityService.java:123
  at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:343)
  at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:169)
  at weblogic.Server.main(Server.java:35)
  <Jun 19, 2001 1:58:10 PM EDT> <Emergency> <Server> <Unable to initialize the
  ser
  ver: 'Fatal initialization exception
  Throwable: java.lang.IllegalAccessError: java.lang.SecurityException: Unable
  to
  assert all required priviledges -- bad domain name
  java.lang.IllegalAccessError: java.lang.SecurityException: Unable to assert
  all
  required priviledges -- bad domain name

  Hi,
  I'm trying to configure the Weblogic Personalization & Personalization
  Server v3.5 to use NT or LDAP as a security realm.
  With LDAP, the server reboots properly but when I try to goto
  http://localhost:7501/tools, it prompts me for password/userid and none of
  the user accounts(including for weblogic and those in the LDAP) work.
  When I try to configure for NT security realm and then I try to reboot the
  server, I get the error message below.
  Any help would be greatly appreciate. Thanks!
  Asim
  [email protected]
  NT error message:
  U n a b l e t o a d j u s t t o k e n p r i v i l e g e s
  U n a b l e t o a d j u s t t o k e n p r i v i l e
  g e
  s
  java.lang.SecurityException: Unable to assert all required
  priviledges
  at weblogic.security.ntrealm.NTDelegate.initFields(Native Method)
  at weblogic.security.ntrealm.NTDelegate.loadlib(NTDelegate.java:218)
  at weblogic.security.ntrealm.NTDelegate.<init>(NTDelegate.java:84)
  at weblogic.security.ntrealm.NTRealm.<init>(NTRealm.java:42)
  at java.lang.Class.newInstance0(Native Method)
  at java.lang.Class.newInstance(Class.java:237)
  at weblogic.security.acl.Realm.getRealm(Realm.java:84)
  at weblogic.security.acl.Realm.getRealm(Realm.java:62)
  at
  weblogic.security.SecurityService.initializeRealm(SecurityService.jav
  a:265)
  at
  weblogic.security.SecurityService.initialize(SecurityService.java:123
  at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:343)
  at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:169)
  at weblogic.Server.main(Server.java:35)
  <Jun 19, 2001 1:58:10 PM EDT> <Emergency> <Server> <Unable to initialize the
  ser
  ver: 'Fatal initialization exception
  Throwable: java.lang.IllegalAccessError: java.lang.SecurityException: Unable
  to
  assert all required priviledges -- bad domain name
  java.lang.IllegalAccessError: java.lang.SecurityException: Unable to assert
  all
  required priviledges -- bad domain name

• How can one use one specific security realm per application ? The realm-name attribute of the login-config tag of web.xml does not make any difference

  Hi,
  I have different sets of users coming from different databases and using different
  roles mapping for each of my web applications. I would like to configure a specific
  security realm per application in my weblogic server 7.0 . Is it possible ?
  I try to specify the realm-name of the login-config tag from the web-xml deployement
  descriptor but it doesn't make any difference. The default realm is always used.
  I also would like to tell the Weblogic server to use the default realm in case
  the realm isn't specified or isn't found. For example, the default would contains
  my admin users.
  Thanks a lot for your answer.
  Iz

  I thik this is a common mistake the ralm-name tag in the deployment descriptor is used
  just by the browser for display purposes (when it opens the basic auth dialog box) so as
  of now there is only 1 active realm which can have multiple providers as Kevin pointed
  out
  Kevin Lewis wrote:
  WebLogic 7 now ignores the realm-name tag (I found that out yesterday).
  My understanding is that there is only one realm active at a time for a domain
  (I would be interested in being contradicted in this).
  However, you can have multiple providers in each category of a realm: authentication,
  authorization, etc. Therefore, what you can do is key authentication, et al,
  off of some other information. We have our users enter their company, for example,
  and use the TextInputCallback to get it. You could also encode something in the
  initial page, based on the URL they hit, or whatever, and get that back in your
  callback.
  You can store that information in your own Principal implementation, and key off
  of that in your authorization provider, going to a different database as appropriate,
  or abstaining when a specific provider doesn’t have anything to say about a subject.
  Anyway, there should be a way to do it, even if it's more complex than you would
  have hoped.
  --Kevin

• HT5622 Tried to put bank details in settings x it wont accept my security code. Telling me to use another account. I havnt got another account. Now i cant download anything in the app store.

  Try to change bank details in settings x it wont accept them. Tells me to use another account but i havnt got 1. Now i cant use the app store. Has any1 got any ideas,please. My grandson is not a happy little boy!!!

  Mikeandnicki wrote:
  I have looked through everything but cannot find a way to delete or spend the 69 cents credit. Can anyone help me?
  Contact iTunes Customer Service and request assistance
  Use this Link  >  Apple  Support  iTunes Store  Contact

• Adding a user to the File Security Realm

  Hello,
  When I attempt to add a new user to the file realm with Application Server->Security-Realms->file-> Manage Users, I get the error:
  A "com.sun.enterprise.tools.guiframework.exception.FrameworkError" was caught. The message from the exception: "Unable to get View for ViewDescriptor 'fileUsers'"
  The root cause is "java.lang.ArrayIndexOutOfBoundsException: 0"
  See the HTML source for more detailed (stack trace) information.
  When I look at the file C:\Sun\AppServer\domains\samples/config/keyfile I see the new user added, but the Admin Console is not happy...
  Please advise.
  -- POC

  There are some issues in admin gui for managing security service in beta.
  I have verified that this has been fixed in FCS branch.
  Since the user and password has been written to keyfile in your scenario, it may be OK.
  You can try to use the user. If this is not working, then restarting the server should work.
  Another way is to create user by using asadmin command. This is working fine in beta.

• Conf. a Win2K Security Realm on WebLogic

       Hi! I'm having some problems configuring a security realm in WebLogic
  server 6.0sp1.
       I'd like that WebLogic use the Windows2000 security realm as the
  default security (it can be used as the secondary security realm
  if it's the only way).     
  We've been trying to make it work for the last two (business) days
  with no hope of being successfull at all.
       We are using the BEA documentation 'Managing Security' as reference,
  and we have some doubts about what's in there.
  First doubt:     The documentation says that we need to create new
  security realm of the type Windows NT. OK, we did it. But we are
  not sure about how to fill the filed Primary Domain. The documentation
  says to put the host and port of the computer where User and Groups
  are defined for the NT domain. I'm using the same computer for
  both (NT domain and Web Logic), so I put the host name (babalu).
  Wich port should I put?
  Second doubt:     The documentation says to create a systerm user on
  the NT domain using NT administrative tools, names it 'system'
  and set some stuff for it. But windows 2000 already has a user
  with that name (SYSTE, but capitalized) and the property that I
  should set on it doesn't exist! By the way, on the system user
  user that windows2000 has I wasn't able to set any property.
  Last doubt (maybe should be the first one) : Does WebLogic 6.0sp1
  support Security Realms from Windows 2000? Or I need to download
  another plugin or somethign like that?
       Thanks for Reading and (hope) Answering my qusetions!
  Roberto Giordano Barra

  Hi! Thanks for the answer. I'll try to run WebLogic as a service.
  In fact, I tried it before but I wasn't able to. I started the
  service by hand, but I wasn't able to access the server. So, I
  click on the 'remove web logic as service'(something like that)
  in the WebLogic program group. Ok, it was removed. But when I tried
  to put it back I didn't find no funny button to help me! Could
  you help me with that?
  Another thing. If I use NT Realm as a Caching Realm I'll be
  able to see the NT user and users groups with the Web Logic management
  GUI ?
  Thanks once again,
  Roberto Giordano Barra
  "arthur" <[email protected]> wrote:
  >
  Hi,
  By saying win2k I am assuming you mean creating an NT
  realm.
  Do not bother specifying a port, just put the server name.
  You have to ensure that you are running the weblogic server
  as
  a NT service if you want to use the NTrealm.
  Make sure under Caching Realm you specify the NTrealm.
  That should be it.
  Hope this helps.
  Regards,
  -Arthur
  "Roberto Giordano Barra" <[email protected]> wrote:
       Hi! I'm having some problems configuring a security
  realm in WebLogic
  server 6.0sp1.
       I'd like that WebLogic use the Windows2000 securityrealm
  as the
  default security (it can be used as the secondary security
  realm
  if it's the only way).     
  We've been trying to make it work for the last two (business)
  days
  with no hope of being successfull at all.
       We are using the BEA documentation 'Managing Security'
  as reference,
  and we have some doubts about what's in there.
  First doubt:     The documentation says that we need to create
  new
  security realm of the type Windows NT. OK, we did it.
  But we are
  not sure about how to fill the filed Primary Domain.The
  documentation
  says to put the host and port of the computer where User
  and Groups
  are defined for the NT domain. I'm using the same computer
  for
  both (NT domain and Web Logic), so I put the host name
  (babalu).
  Wich port should I put?
  Second doubt:     The documentation says to create a systerm
  user on
  the NT domain using NT administrative tools, names it
  'system'
  and set some stuff for it. But windows 2000 already has
  a user
  with that name (SYSTE, but capitalized) and the property
  that I
  should set on it doesn't exist! By the way, on the system
  user
  user that windows2000 has I wasn't able to set any property.
  Last doubt (maybe should be the first one) : Does WebLogic
  6.0sp1
  support Security Realms from Windows 2000? Or I needto
  download
  another plugin or somethign like that?
       Thanks for Reading and (hope) Answering my qusetions!
  Roberto Giordano Barra

• BEA public API (WLS6.1)for programatically updating default security realm?

  Hi,
  Does anyone know how to use BEA's public API to programmatically add/update WLS
  6.1 user credentials in the default security realm? The API would of course
  automatically persist the updates to $WLS/config/mydomain/fileRealm.properties.
  Is there a way to do such updates by programmatically engaging the WLS security
  realm related Mbeans? I basically need to do (from a deployed application component)
  what is easily done from the WLS Console's [security->User->Add User/Change
  Password] screen. Ideally, I could use the same API that the weblogic.security.acl.internal.FileRealm
  command line utility (or wlshell also) uses to make updates. But I doubt that
  the classes used by these tools are in BEA's public API for WLS 6.1. Especially
  important to me would be the BEA API mechanism that takes a clear-text password
  and hashes it to the encrypted format written in fileRealm.properties (and synchronized
  w/ SerializedSystemIni.dat). Ultimately, I am trying to replicate a large
  Oracle table of (*user, clear-text -password, group) records into the default
  WLS security realm. Thanks for any insights.
  Ben

  Thanks to another's post, I have found the answer to my problem in the Girdley/Woollen/Emerson
  book "J2EE Applications and BEA WebLogic Server" pp. 496-498:
  Note: this code segment is for WLS 6.1 and this API is said to be deprecated
  in WLS 7+
  //Roughly outlined, assuming session w/ userName, groupName, password Strings
  in HTTP Post request
  weblogic.security.acl.CachingRealm realm = (weblogic.security.acl.CachingRealm)
  weblogic.security.acl.Security.getRealm();
  weblogic.security.acl.User u;
  weblogic.security.acl.Group g;
  u = realm.newUser(userName, password, null);
  g = realm.getGroup(groupName); // use g = realm.newGroup(groupName) if groupName
  does not exist in realm
  g.addMember(u);
  //log in the new user
  int rc = weblogic..servlet.security.ServletAuthentication.weak(userName, password,
  httpSession);
  // use realm.deleteUser(u), realm.deleteGroup(g) as appropriate, etc.
  "Ben Cotton" <[email protected]> wrote:
  >
  >
  Hi,
  Does anyone know how to use BEA's public API to programmatically add/update
  WLS
  6.1 user credentials in the default security realm? The API would of
  course
  automatically persist the updates to $WLS/config/mydomain/fileRealm.properties.
  Is there a way to do such updates by programmatically engaging the
  WLS security
  realm related Mbeans? I basically need to do (from a deployed application
  component)
  what is easily done from the WLS Console's [security->User->Add User/Change
  Password] screen. Ideally, I could use the same API that the weblogic.security.acl.internal.FileRealm
  command line utility (or wlshell also) uses to make updates. But I
  doubt that
  the classes used by these tools are in BEA's public API for WLS 6.1.
  Especially
  important to me would be the BEA API mechanism that takes a clear-text
  password
  and hashes it to the encrypted format written in fileRealm.properties
  (and synchronized
  w/ SerializedSystemIni.dat). Ultimately, I am trying to replicate
  a large
  Oracle table of (*user, clear-text -password, group) records into the
  default
  WLS security realm. Thanks for any insights.
  Ben

• Black Screen - Get Chime - Can Boot off HDD using another Mac - iMac 24in.

  Hope someone can help me here, as I'm at my wits end.
  I've got two issues, one with my MacBook Pro 17in, 4GB RAM, 160GB 7200rpm (2008) and another with my iMac 24in. 4GB RAM, 500GB 7200rpm (2009).
  Firstly the MBP, left work on Thursday last week, got home, powered up the MBP and got a black screen!!! Tried resetting PRAM, SMC, booting in safe mode, removing and re-installing RAM, removing battery and mains power and leaving off overnight etc etc, yet nothing happens. Benn all over the forums and have not found any solution to get my beloved MBP working on it's own. I can boot off the HDD using another MBP 15in, re-install Snow Leopard and as far as I can tell the HDD is fine, as I have run disk utility and it tells me the HDD is OK.
  I can't figure this out and it's doing my head in, as I use this laptop for business use and just can't afford to go out and buy another Mac. I should point out that this MBP never had any issues when running on Leopard, but ever since I upgraded to Snow Leopard, I have had nothing, but trouble. I did a clean install, in fact I have done it at least twice, even erasing the HDD securely, both at 7pass and 35pass, yet I have had permissions issues regularly and on the odd occasion, I have also had the problem of the HDD not being recognised.
  The iMac is nearly the same, but the screen is working, although the iMac doesn't see the HDD no matter what way I do, again, reset PRAM, SMC, safe boot etc etc. In truth the iMac has been a lot more unreliable, but with the screen working, if I can get any solutions here, then I'll be working to work on that without the need or hassle of working via another.
  I think that the MBP is only just still under warranty, but the iMac definitely is, but I need at least one working for business use, so really only want to let Apple have one at a time to look at/repair etc.
  Ideally, as the HDD is working in the MBP, if I could get a solution to the black screen issue, then I could do without the iMac for whatever time it takes, so if there is anyone out there that can help, I'd be so grateful.
  One last thing, when I bought the iMac 24in., I also bought an iMac 20in., but I never upgraded the 20in. to Snow Leopard and to this day, it has worked flawlessly, without a single issue ever.
  Perhaps, I'm getting paranoid here, but there seems to me to be a link between the ongoing and regularly occurring problems with both Macs ant the upgrade to Snow Leopard. Why also, or is it just pure unadulterated coincidence that both the MBP and the iMac 24in have failed at pretty much the same time??!!!!
  I'm going mental here, so I hope someone out there has a better fix, then me overdosing on Prozac!!
  PS
  I'm not a mac expert, not good with a soldering iron either, but I'm capable of following good instructions.

  Using Snow Leopard forum is probably your best bet.
  I don't care if someone has 20+ yrs, I still like having a good troubleshooting book/manual handy.
  Mac: can't get by without bootable backups, even if you use TimeMachine, clone your system. Save you all this fuss and work.
  Then invest in high quality disk repair and maintenance program.
  Disk Warrior / TechTool Pro 5 / Drive Genius 3 - top 3 probably
  There are always going to be normal items you just ignore with Repair Permissions. Useful to do once in a while but not magic. Same with SMC and the rest. Running disk repair is one of those things that it seems should be done before there is trouble, not after, and a weakness in HFS file system and disk directory.
  Apple Support is a good place to start looking and then hardware category.
  http://www.apple.com/support
  http://www.apple.com/support/imac /macbookpro etc
  Make sure all your software is current, don't install anything you are unsure of or can do without.
  Run Apple Hardware Test off your OEM DVD specific to the Mac.
  Now, have you Googled for this?
  have you looked at reports about 500GB drives used in some Macs that had issues and were offered firmware update for the drive?
  Considered just using another drive connected to iMac?
  You can overheat a hard drive with needlessly running 7 and 35-write pass, besides which the best way to map out bad blocks is not Disk Utility.
  http://www.bing.com/search?q=imacblackscreen
  http://www.bing.com/search?q=AppleiMac+firmwareupdate
  I'd direct your replies to iMac and MacBook Pro as well as to Using OS X Snow Leopard areas.

• How to implement a tree like security realm?

  hi all:
  i am working on a project . it's a very complex one and most importantly there's
  so many
  functions( 1000 or more) and every fuction should be protected resources. so i have
  to define many roles and map the roles to the many functions. it's a very tiring
  job and
  i am not sure the role to function mapping is stable one. because the mapping is
  saved in
  a xml file and this file is depolyed with the application, so if there s any changes
  we have to redeploy all the application and restart the server.
  there s still another problem. we want security realm to be a tree instead of
  a flat one( weblogic's group is a flat one ) . if we assign a node to a role all
  its children
  belong to the same role.
  so is there way to do this. any solution?
  regards
  daniel wang

  maybe you could exploit the way ACLs have dotted names to reflect your tree
  structure, so the acl root applies to all functions, root.branch1 only
  applies to functions on branch branch1, and root.branch1.branch2 applies to
  functions on branch2 of branch1. there´s an api that gets the most specific
  acl given a path to a node.
  i'm not it´s acls that you want to correspond to nodes, but maybe you can
  work out some kind of scheme that gives you what you want.
  andrew
  "daniel" <[email protected]> escribió en el mensaje
  news:3d16efc7$[email protected]..
  >
  hi all:
  i am working on a project . it's a very complex one and mostimportantly there's
  so many
  functions( 1000 or more) and every fuction should be protected resources.so i have
  to define many roles and map the roles to the many functions. it's a verytiring
  job and
  i am not sure the role to function mapping is stable one. because themapping is
  saved in
  a xml file and this file is depolyed with the application, so if there sany changes
  we have to redeploy all the application and restart the server.
  there s still another problem. we want security realm to be a treeinstead of
  a flat one( weblogic's group is a flat one ) . if we assign a node to arole all
  its children
  belong to the same role.
  so is there way to do this. any solution?
  regards
  daniel wang

• Hello i forgot my i cloud password..anyone can help me to find my password.i already make a new apple id..but my icloud use another account..so how to reset my iCloud account plz hel me

  hello i forgot my i cloud password..anyone can help me to find my password.i already make a new apple id..but my icloud use another account..so how to reset my iCloud account plz hel me

  Making a new Apple ID is not a good idea, since you have to reset the password for that Apple ID anyway. All of your purchases are tied to the Apple ID that the iCloud account was created under. So, you have to retrieve the password for that Apple ID in order to sign into iCloud anyway.
  Go to Manage your Apple ID, and click on the Reset Password option (Apple - My Apple ID). Sign on with the Apple ID that the iCloud account was created under, and answer the security questions. If you do not remember the answers to the Security Questions, contact Apple Support to have them reset:
  ACCOUNT SECURITY CONTACT NUMBERS
  Cheers,
  GB