Using SASL to bind to OID

Similar Messages

• HOWTO Bind using SASL DIGEST-MD5?

  I haven't been able to bind to an LDAP server using SASL DIGEST-MD5
  using the Novell CSharp library. Can anyone explain how this is done,
  or point me to a code example?
  I can connect, bind, and search this LDAP server using Apache Directory
  Studio, so I know that my credentials are correct.
  Also, I have already used the Novell CSharp library for searching other
  LDAP servers using simple authentication, and SSL, but never SASL
  DIGEST-MD5.
  Thanks in advance for any help.
  danielnapierski
  danielnapierski's Profile: http://forums.novell.com/member.php?userid=63370
  View this thread: http://forums.novell.com/showthread.php?t=414964

  More than fifty people have read this post, but there are no replies as
  of yet. I'm going to interpret that as "SASL DIGEST-MD5 is not
  supported by the Novell CSharp library."
  danielnapierski;1995522 Wrote:
  > I haven't been able to bind to an LDAP server using SASL DIGEST-MD5
  > using the Novell CSharp library. Can anyone explain how this is done,
  > or point me to a code example?
  >
  > I can connect, bind, and search this LDAP server using Apache Directory
  > Studio, so I know that my credentials are correct.
  >
  > Also, I have already used the Novell CSharp library for searching other
  > LDAP servers using simple authentication, and SSL, but never SASL
  > DIGEST-MD5.
  >
  > Thanks in advance for any help.
  danielnapierski
  danielnapierski's Profile: http://forums.novell.com/member.php?userid=63370
  View this thread: http://forums.novell.com/showthread.php?t=414964

• Reuse the LDAP connection when Using SASL DIGEST-MD5

  I have problem to use the same ldap connection for multiple SASL authenticaiton.
  step1, LDAPConection conn=new LDAPCo...
  conn.conect()..
  step2, do a SASL DIGEST-MD5, successfully get a challenge from server and server confirmation after the response is correct.
  step3, I want to use the same connection for another authetincation of different user, some how the server did not give back the challenge and reject the authenticaiton request again.
  So my question is how can we reuse the same connection for SASL authentication?
  Any switch or reset on the LDAP connection or the LDAP server has to be configured in some way to take multiple authentication using the same connection?

  More than fifty people have read this post, but there are no replies as
  of yet. I'm going to interpret that as "SASL DIGEST-MD5 is not
  supported by the Novell CSharp library."
  danielnapierski;1995522 Wrote:
  > I haven't been able to bind to an LDAP server using SASL DIGEST-MD5
  > using the Novell CSharp library. Can anyone explain how this is done,
  > or point me to a code example?
  >
  > I can connect, bind, and search this LDAP server using Apache Directory
  > Studio, so I know that my credentials are correct.
  >
  > Also, I have already used the Novell CSharp library for searching other
  > LDAP servers using simple authentication, and SSL, but never SASL
  > DIGEST-MD5.
  >
  > Thanks in advance for any help.
  danielnapierski
  danielnapierski's Profile: http://forums.novell.com/member.php?userid=63370
  View this thread: http://forums.novell.com/showthread.php?t=414964

• Why CBO don't use function-base index when I use like and bind variable

  Hello
  I have litle problem with function-base index and like with bind variable.
  When I use like with bind variable, the CBO don't use my function-base index.
  For example when I create table and index:
  ALTER SESSION SET NLS_SORT='BINARY_CI';
  ALTER SESSION SET NLS_COMP='LINGUISTIC';
  alter session set nls_language='ENGLISH';
  -- DROP TABLE TEST1;
  CREATE TABLE TEST1 (K1 VARCHAR2(32));
  create index test1_idx on test1(nlssort(K1,'nls_sort=BINARY_CI'));
  INSERT INTO TEST1
  SELECT OBJECT_NAME FROM ALL_OBJECTS;
  COMMIT;
  When I run:
  ALTER SESSION SET NLS_SORT='BINARY_CI';
  ALTER SESSION SET NLS_COMP='LINGUISTIC';
  SELECT * FROM TEST1 WHERE K1 = 'abcd';
  or
  SELECT * FROM TEST1 WHERE K1 LIKE 'abcd%';
  CBO use index.
  PLAN_TABLE_OUTPUT
  SQL_ID 4vrmp7cshbvqy, child number 1
  SELECT * FROM TEST1 WHERE K1 LIKE 'abcd%'
  Plan hash value: 1885706448
  | Id | Operation | Name | Rows | Bytes | Cost (%CPU)| Time |
  | 0 | SELECT STATEMENT | | | | 1 (100)| |
  | 1 | TABLE ACCESS BY INDEX ROWID| TEST1 | 2 | 98 | 1 (0)| 00:00:01 |
  |* 2 | INDEX RANGE SCAN | TEST1_IDX | 2 | | 1 (0)| 00:00:01 |
  Predicate Information (identified by operation id):
  2 - access("TEST1"."SYS_NC00002$">=HEXTORAW('6162636400') AND
  "TEST1"."SYS_NC00002$"<HEXTORAW('6162636500') )
  but when I run
  SELECT * FROM TEST1 WHERE K1 LIKE :1;
  CBO don't use index
  PLAN_TABLE_OUTPUT
  SQL_ID 9t461s1669gru, child number 0
  SELECT * FROM TEST1 WHERE K1 LIKE :1
  Plan hash value: 4122059633
  | Id | Operation | Name | Rows | Bytes | Cost (%CPU)| Time |
  | 0 | SELECT STATEMENT | | | | 89 (100)| |
  |* 1 | TABLE ACCESS FULL| TEST1 | 2 | 48 | 89 (3)| 00:00:02 |
  Predicate Information (identified by operation id):
  1 - filter("K1" LIKE :1)
  What should I change to force CBO to use index.
  I don't wont use index hint in query.
  My oracle version:
  Oracle Database 11g Enterprise Edition Release 11.2.0.1.0 - 64bit Production
  PL/SQL Release 11.2.0.1.0 - Production
  CORE     11.2.0.1.0     Production
  TNS for 64-bit Windows: Version 11.2.0.1.0 - Production
  NLSRTL Version 11.2.0.1.0 - Production

  OK. But why if I create normal index (create index test1_idx on test1(K1)) and return to default nls settings this same query use index.
  PLAN_TABLE_OUTPUT
  SQL_ID 9t461s1669gru, child number 0
  SELECT * FROM TEST1 WHERE K1 LIKE :1
  Plan hash value: 598212486
  | Id | Operation | Name | Rows | Bytes | Cost (%CPU)| Time |
  | 0 | SELECT STATEMENT | | | | 1 (100)| |
  |* 1 | INDEX RANGE SCAN| TEST1_IDX | 1 | 18 | 1 (0)| 00:00:01 |
  Predicate Information (identified by operation id):
  1 - access("K1" LIKE :1)
  filter("K1" LIKE :1)
  Note
  - dynamic sampling used for this statement (level=2)
  when index is function-base (create index test1_idx on test1(nlssort(K1,'nls_sort=BINARY_CI')))
  PLAN_TABLE_OUTPUT
  SQL_ID 9t461s1669gru, child number 1
  SELECT * FROM TEST1 WHERE K1 LIKE :1
  Plan hash value: 4122059633
  | Id | Operation | Name | Rows | Bytes | Cost (%CPU)| Time |
  | 0 | SELECT STATEMENT | | | | 89 (100)| |
  |* 1 | TABLE ACCESS FULL| TEST1 | 3 | 54 | 89 (3)| 00:00:02 |
  Predicate Information (identified by operation id):
  1 - filter("K1" LIKE :1)
  Note
  - dynamic sampling used for this statement (level=2)
  when I create index with upper function "index test1_idx on test1(upper(K1))" the query use index
  SELECT * FROM TEST1 WHERE upper(K1) LIKE :1
  Plan hash value: 1885706448
  | Id | Operation | Name | Rows | Bytes | Cost (%CPU)| Time |
  | 0 | SELECT STATEMENT | | | | 1 (100)| |
  | 1 | TABLE ACCESS BY INDEX ROWID| TEST1 | 4481 | 157K| 1 (0)| 00:00:01 |
  |* 2 | INDEX RANGE SCAN | TEST1_IDX | 806 | | 1 (0)| 00:00:01 |
  Predicate Information (identified by operation id):
  2 - access("TEST1"."SYS_NC00002$" LIKE :1)
  filter("TEST1"."SYS_NC00002$" LIKE :1)
  Note
  - dynamic sampling used for this statement (level=2)

• Oracle 9i/10G DB authentication using Active Directory (with out OID)

  Hello All,
  We want to use a Single-Password authentication scheme using the Active
  Directory as the primary source for userId/Password.
  We don't want to use the Active Directory and OID bridge.
  As we have many databases and would like to configure all Databases to use Active
  Directory for Authentication. Our goal is to have single id/password across all
  the databases and any user should be able to login from any computer using their
  windows id/password, note that we don't want to use the OSAuthentication.
  We have read the documents provided by oracle for authentication using Active
  Directory, we were able to create Oracle Schema in Active Directory and were
  also able to register a DB with Active Directory and then created user as global
  user in Oracle Database and provided the DN of the user. When we tried
  authenticate with all this setup it comes back and says invalid ID/Password !!!
  And with 10G database we get the Oracle Error ORA-03113: end-of-file on communication channel !!
  Has any one tried or have information on Integrating Oracle to Auth against Active Directory?
  Envoirnment:
  Oracle DB Version: 9.2.0 and also tried on 10.0.1 with same results
  Operating System: Windows 2000/ Windows 2000 Server
  Constraint: We don't want to user OID ( as we don't have license for this
  product ! )

  I have a thread started similar to your request.
  OS Authenication on Windows
  Somewhere I read this. It works on Oracle 9i on Linux, but I have not tried it with Oracle 9i on Windows.
  SHOW PARAMETER OS_AUTHENT_PREFIX;
  SHOW PARAMETER REMOTE_OS_AUTHENT;
  CREATE USER OPS$SOMEUSER IDENTIFIED EXTERNALLY;
  GRANT CREATE SESSION TO OPS$SOMEUSER;
  For the username, I wonder if we are supposed to put the Windows Domain name as part of the username? Such as, for a Windows domain user MyDomain\SomeUser
  CREATE USER OPS$MYDOMAIN\SOMEUSER IDENTIFIED EXTERNALLY;
  I really wish Oracle or somebody created a guide or book on how to do this.

• How to use JDBC Positional Binding Style & ExecuteWithParams?

  Can anyone provide any help here including any documentation on how to configure this (I've checked online help and the developer guide.)
  When defining multiple Bind Position variables on a View Object (using sql statement binding style: JDBC Positional), should I defined multiple bind variable names? Otherwise, if I don't, when I use ExecuteWithParams operation to create the data control, only one input variable field is displayed. I can get a single bind position variable to work, but am struggling on how to configure / get multiple bind position variables to work with ExecuteWithParams.
  Here's my current configuration:
  1. Define View Object with two JDBC Positional Binding Parameters
  -- Bind Variables: name=parm1 (???should I define a second bind variable name???)
  -- Bind Positions = 0,1
  -- SQL Statement add another position var in where clause: "match (zip) against (CONCAT(?,'*') IN BOOLEAN MODE) and "match (name) against (CONCAT(?,'*') IN BOOLEAN MODE)
  2. On a JSF page, drag ExecuteWithParams operation from data control onto the JSF page. If I have defined only one bind variable name, only one input field is displayed (and one field label that I defined for that bind variable), but I need two input fields - one for each bind position variable. How do I set this up?
  Back-end Database is MySQL 5.0.1 which is why I am using binding stye JDBC positional.
  Thanks, Tom
  Message was edited by:
  javaX

  I did some more testing and the problem is that the queries work with one bind position variable but not with two. I created two simple view objects off of the same entity object to test:
  #1 - ViewObject with one bind position variable - where clause: where id > ?
  #2 - ViewObject with two bind position variables - where clause: where id > ? and id < ?
  I created two separate .jspx pages, view1.jspx (one input field) and view2.jspx (two input fields), for each view object by dragging ExecuteWithParams operation onto the JSF page.
  The .jspx page with one input field works (returns result sets.) The view2.jspx page with two input fields does not work - the query does not return any result sets (no errors produced, it just does not return any rows) - I've tested my query outside of jdeveloper and it works fine. I also tried switching my inputs to make sure I did not have an illogical query (i.e., id >100 and id< 1).
  Is there anything different / extra I need to do to use two bind position variables?
  I'm STUCK HERE.
  Everything in this simple test was identical except for using 2 input variables versus 1.
  Technology stack is: jdeveloper 10.1.3, jsf/ADF BC, mySQL 5.01
  Since I now understand what the problem is better, I'm going to re-post this as a new topic that more appropriately describes the problem, "Queries not working with multiple bind position variables?"
  Message was edited by:
  javaX

• How to use cached DISPID Binding in excel vba ?

  Hi All,
  I trying to call soap service in excel using vba so please provide some syntax or code to consume soap service using Cached DISPID Binding.
  Also how/where to find the DISPID of soap service or any other component.
  Your help will be highly appreciated.

  Hi Balaramji,
  As this question is actually all about VBA programming, you can check these two links that may be helpful:
  Web Service calls from VBA excel
  Consuming Web Services in Excel 2007
  We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
  Click
  HERE to participate the survey.

• Using SOAP-JMS binding for business process

  Hi all,
  We are currently designing one business process which consume MQ messages. The MQ message body is SOAP XML. SOAP Headers carry business specific important data section, so we don't want to loose these headers at any cost. The message consumer is the Websphere process choreographer business process, reading message as a JMS message. When we develop the business process, we are planning to use SOAP-JMS binding. But problem with SOAP-JMS binding is: when the MDB reads the message off the message queue, it strips off all the SOAP headers and delivers only the SOAP body. Is there a way to make this behaviour change to keep the SOAP headers? You may suggest to use JMS bindings, but JMS binding will send the message body as WSIF message (as a serialized java object). I'm not sure of how easy it is to marshalling/unmarshalling of this serialised object. My main concern is around, how to identify the "type" of the message while marshalling. Would writing our own MDB solve the problem? Again MDB's sends messages as WSIF messages to the business process EJB's, which I guess I get stumble across the same marshal/unmarshall problem. Hope I made myself clear of what i'm going trying to do. Any advice is highly appreciated.
  Regards,
  Prasad

  Hello Markus,
  I just paste my answer form the other forum entry Re: Business process management strategy in SAP?
  in a nutshell BPM Netweaver is focussing on so called edge-processes (usually
  SOA-based and often workflow related). These edge-processes a thought to enhance exisitng core business processes and should provide the fast competitive edge versus competitors. Examples would be also xApps. For this Netweaver provides process modelling tools, where you can get exectuable code through the integration between CE and PI. The monitoring part for these processes is mainly targeting business end-users and business manager.
  Business Process Monitoring with Solution Manager focusses on core business processes which are realized with the "conventional", "old" SAP Architecture, e.g. Order-to-Cash or Procure-to-Pay. You get a combination of technical monitors (average response times of transactions, background job runtimes, monitors for IDOC or qRFC processing) and application related monitors (you get more than 200 pre-configured application monitors out-of-the-box like number of overdue customer orders or outbound deliveries or number of deliveries with goods issue posted but no invoice). The target group here is the support organization of the customer, from Basis-Support over application support on IT side to process owner on business department side.
  Overview presentations can be found under
  https://service.sap.com/bpm --> Media Library --> Customer Information -->
  "Business Process Monitoring - Part 1 & 2".
  Or look under https://www.sdn.sap.com/irj/sdn/nw-processmonitoring
  In the end BPM Netweaver and BPMon SolMan are complementary for different purposes and different target groups.
  Best Regards
  Volker

• Use of  wsdl:binding

  Hi to All,
  Iam new to web services. Plz can any body explain the use of *<wsdl:binding>* element in wsdl file.

  Venkateswarlu.G wrote:
  Hi to All,
  Iam new to web services. Plz can any body explain the use of *<wsdl:binding>* element in wsdl file.Hi,
  I am not an expert with these WSDL, but I have been working with these for the past 2-3months. With this exposure I can tell you the following.
  In wsdl:binding element , wsdl is nothing but namespace its importance is same as in other xml files.
  binding, Its inside this binding tag usually we specify wat are the operations supported by this wsdl.
  I hope my explanation is clear, if not pls revert back. I would be pleased to help you.

• Options apart from using the http binding adapter

  In calling secured restful web services, what are the options apart from using the http binding adapter from BPEL/SOA 11.1.1.4.
  Pointers to examples highly appreciated.

  Hi,
  Have a look at this...
  http://technology.amis.nl/2009/12/15/the-oracle-soa-suite-11g-httpbinding-or-another-way-to-call-restful-services-from-soa-composite-applications/
  Cheers,
  Vlad

• I want to publish my data using datasocket connection on the net and I want to use Front panel binding. Can I?

  I want to publish my data on the net.
  I want to use front panel binding and I do not want
  to write the code. Can I do that. What should I modify
  in my datasocket server manager. The other question is, When I open my VI, I want to open automatically my DataSocket Server. My english is bad. When I open the LabView I also want to open my DataSocket server. How can I do this?

  To use datasockets to publish data to be accessed via the web, see the following document.
  http://digital.ni.com/public.nsf/websearch/F58A6C2DAAADECB68625672400636145?OpenDocument
  This document explains how you can create an interactive Web page with which users can view data from a remote acquisition application without the common problems of a client-server application. You use the Measurement Studio DataSocket control and Microsoft Visual Basic to create a software component that you can insert in a Web page. You then use that Web page to read, write, or share data with other applications across the Internet.
  If you want to publish data but do not want to write any code, you should consider the web publishing tool available in Labview 6.1. This tool allows
  you to create a webpage to be published from the the LabVIEW webserver on your machine. See the following link for more information on ways to easily publish to the web from LabVIEW.
  http://zone.ni.com/devzone/conceptd.nsf/webmain/E4E311FA046EE24586256B1F0074F39D?opendocument
  As for starting the datasocket server when you run your VI, you can use the 'System Exec' VI to run the application. The exe to start the server is located in the following directory:
  C:\Program Files\National Instruments\DataSocket\cwdss.exe
  I hope this is helpful.

• Using JNDI to bind any object

  Hi,
  I intend to bind a few objects in JNDI context so that they can later be just looked up and then used.
  I can use code like this:
  =========
  Hashtable env = new Hashtable();
  env.put(Context.PROVIDER_URL, SOME_PROVIDER_URL);
  env.put(Context.SECURITY_PRINCIPAL, "user");
  env.put(Context.SECURITY_CREDENTIAL, "passwd");
  Context ctx = new InitialContext(env);
  context.bind("name", object);
  =========
  This object can later be looked up. So far so good. However, this will bind the object in the same VM "only".
  Is there any way of calling something like:
  ====
  someOC4JClass.getNamingService().bind("name", object);
  ===
  so that the underlying naming service takes care of making this object available across JVMs?
  Any help/pointers will be highly appreciated.
  Thanks,
  Ravi

  Ravi -- Currently OC4J's internal JNDI is not a global JNDI shared by all OC4Js. One way to approach this problem would be to bind the objects in some global / common JNDI like OID.
  Thanks -- Jeff

• Error when using Variable Transport Binding in Sender Mail Adapter

  Hi,
  I am using the Sender Mail Adapter to receive an email, convert the attached tab delimited text file into xml and map it to an IDOC.
  I am using PayloadSwapBean and MessageTransformBean in order to do this, and this all works perfectly.
  I am now trying to access the Adapter Specific Message Attributes to retrieve the SHeaderFROM attribute from the message and map it to a field in the idoc.
  However when I check the "Variable Transport Binding" option in the Advanced tab of the mail adapter, the message no longer goes through to SXMB_MONI and I get the following error in the Java logs.
  Transmitting the message to endpoint http://sapserver:53500/sap/xi/engine?type=entry using connection AFW failed, due to: com.sap.engine.interfaces.messaging.api.exception.MessagingException: Received HTTP response code 500 : Error during parsing of SOAP header.
  Any ideas why this is happening?
  Thanks,
  Brad

  Hi Luciana,
  Honestly, I cant really remember how or if it was resolved and I was just helping out on the issue, but another consultant continued with it, so unfortunately I cant be any help on this.
  Good luck!
  Cheers,
  Brad

• Slow performance when using cursor with bind variable

  i'm facing the problem mentioned in the subject.
  whenever i use the bind variable it would take more than 5mins to fetch 157 records, but if i hardcode the value ( not using variable ) it would take only 10sec to fetch 157 records.
  can anyone give me some guide to solve this problem? thank you..
  Code :
  DECLARE
  cursor cur1(l_startdate IN varchar2,l_enddate IN varchar2) IS
  select * from shipment ship where ship.insertion_date >= to_date(l_startdate,'DD-MM-YYYY HH24:MI:SS') and ship.insertion_date < to_date(l_enddate ,'DD-MM-YYYY HH24:MI:SS')
  TYPE shipment_aat IS TABLE OF cur1%ROWTYPE INDEX BY PLS_INTEGER;
  l_shpt shipment_aat;
  limit_in INTEGER := 100;
  BEGIN
  v_startdate := '10-06-2008 14:00:00';
  v_enddate := '10-06-2008 17:00:00';
  OPEN C_shpt(v_startdate,v_enddate);
  LOOP --start shipment loop   
  FETCH C_shpt BULK COLLECT INTO l_shpt LIMIT limit_in;
       FOR indx IN 1 .. l_shpt.COUNT
  LOOP
  DBMS_OUTPUT.PUT_LINE('l_shpt value ' || l_shpt(indx).ship_number || '/' || l_shpt(indx).insertion_date);
  END LOOP;
  EXIT WHEN l_shpt.COUNT < limit_in;
  END LOOP; -- end of shipment loop
  CLOSE cur1;
  END;

  When your query takes too long ...

• Cannot use SASL Authentication Through GSSAPI on DS 6.3

  I try to kerberized DS 6.3. I do step by step instruction from "Sun Java System Directory Server Enterprise Edition 6.3" and it doesn't work.
  When I try to configure the Directory Server to Enable GSSAPI I get an error:
  modifying entry cn=SASL,cn=security,cn=config
  ldap_modify: DSA is unwilling to perform
  ldap_modify: additional info: Modification not allowed on attribute dsSaslPluginsPath
  After all when I try to authenticate to the Directory Server i get response:
  ldap_sasl_interactive_bind_s: Authentication method not supported
  ldap_sasl_interactive_bind_s: additional info: sasl mechanism not supported
  Logs file:
  +[22/Sep/2008:10:28:11 +0200] conn=2 op=-1 msgId=-1 - fd=22 slot=22 LDAP connection from 10.3.233.4:33054 to 10.3.233.4+
  +[22/Sep/2008:10:28:11 +0200] conn=2 op=0 msgId=1 - BIND dn="" method=sasl version=3 mech=GSSAPI+
  +[22/Sep/2008:10:28:11 +0200] conn=2 op=0 msgId=1 - RESULT err=7 tag=97 nentries=0 etime=0, sasl mechanism not supported+
  +[22/Sep/2008:10:28:11 +0200] conn=2 op=1 msgId=2 - UNBIND+
  +[22/Sep/2008:10:28:11 +0200] conn=2 op=1 msgId=-1 - closing from 10.3.233.4:33054 - U1 - Connection closed by unbind client -+
  +[22/Sep/2008:10:28:12 +0200] conn=2 op=-1 msgId=-1 - closed.+
  system specyfication:
  Solaris 10 x86 64-bit
  DS 6.3 B2008.0311.0212 NAT

  See http://forums.sun.com/thread.jspa?forumID=761&threadID=5202246 for a description of the problem and a workaround.
  If you have a Sun support contract, you can request an escalation of CR 6637404.
  Also, note that it looks like part of the documentation went missing. In DS5.2 the docs included an additional step
  Chapter 11 Implementing Security
  Configuring Client Authentication
  SASL Authentication Through GSSAPI (Solaris Only)
  http://docs.sun.com/source/816-6698-10/ssl.html#18500
  ldapmodify -D 'cn=directory manager'
  dn: cn=SASL,cn=security,cn=config
  changetype: modify
  add: dsSaslPluginsEnable
  dsSaslPluginsEnable: GSSAPI
  replace: dsSaslPluginsPath
  dsSaslPluginsPath: /usr/lib/mps/sasl2/libsasl.so
  modifying entry cn=SASL,cn=security,cn=config
  ldap_modify: DSA is unwilling to perform
  ldap_modify: additional info: Adding attributes is not allowed
  -------------------------------------------------------------