Validate if user is logged in

Hi,
I need to develope an application (java) that checks if a user session is valid (user is logged in) given an SSO_ID? I would like to use the SSO_ID string and know if the user has a valid session and eventually get access to some of the information related to this user from the OID.
ex: is_valid(<SSO_ID string>) => returns true or false.
Is there a way to do this in Java? I've read a lot on Oracle SSO but I get a little bit confuse.
Thks in advance,
Martin

Actually, is there a way to specifically use the SSO_ID string found in the browser or any other string that I could use to query the SSO server about the validity of the session. The mod_osso almost does it but I would like to be able to validate the session from anywhere. I would just need to use the string, query the SSO Server and get a positive or a negative answer..
I need to convert an application that does exactly that but with Sun ONE Identity Server using the iPlanetdirectorypro string found in the the session once the user is logged in.
anyway.. if someone knows.. please let me know..
thks in advance,
Martin

Similar Messages

Help - auto check user is logged in?

Hello,
I have a servlet that validates a users id and password and creates a session userid variable.
I want to add logic to other servlets to verify the user is logged in, if not kick them to a login page.
What is the best way to check in a servlet?
Can I use a bean to return true or false?
How do the more experienced java web programmers do it?
Thanks for the help.
Frank

No code required. There is a whole section in the Servlet spec about this.
You specify that certain urls (or patterns) are only for certain roles. You specifiy the login mechanism (BASIC, FORM, DIGEST).
Then you assign the role to users and groups and off you go.
All safely within web.xml - no code required.

IPod not recognized by iTunes-message about other users being logged in

Recently, whenever I connect my Ipod to the USB device to update my library, I often get an error message stating there are other users using itunes on my computer already, so itunes cannot recognize the ipod. Then it says to ask other users to log out, and then try again.
No other people but me ever use itunes on my computer and no one else is logged in but me (and I'm the only person who has an iPod account in my family). I try all different things, like logging everyone else's accounst on the computer off, restarting itunes, reconnecting the USB, etc- but nothing works. The message won't appear after this again (unless I've restarted itunes), but a window pops up about my ipod with all different files, like "calendar."
Can anyone tell me why this happens, and how to connect my ipod when it does?
Video Windows XP

Try this.
Fast user switching in Windows XP is not supported.
Incidentally, this a forum for connecting to a Mac.

User SAP* is active. No other users can log on. Now What?

After the last time I restarted the portal, I get the following message when I try to logon:
User SAP* is active. No other users can log on
Before the reboot, I was trying to configure LDAP. I changed the Data source from "Database Only" to "Read-Only Microsoft ADS (Deep Hierarchy) + Database". I also, tried to create a Superuser/Password. You can logon using SAP* and see the users from LDAP.
Any thoughts? Also, can anyone clarify the configuration option:
SAP* User Configuration
Enable SAP* user (If you disable the SAP* user, enter a superuser ID and password below)
Superuser Name
Superuser Password
EP6.0

Bill,
You have to assign a user the super admin role. Once the user has this role, go to the UM Configuration (System Admin--> System Config --> UM Configuration) and uncheck the Enable SAP* User option and enter in the superuser name and superuser password. Restart the portal and users should be able to login.
FYI. No users can login to the portal if sap* is active.
Regards,
Marty

SAPJSF user cannot log-on to the User Management Engine.

We have a newly installed PI 7.0 system.
SLDCHECK is succussful but if we go to the http://hostname:50100/sld - we are redirected to http://hostname:50100/logon/logonServlet?redirectURL=%2Fwebdynpro%2Fdispatcher%2Fsap.com%2Ftc%7Esld%7Ewd%7Emain%2FMain
When we check the default.trc file, we see the error: User "SAPJSF" is the communication user for the connection between User Management Engine and the ABAP backend system SIDCLNTxyz. This user cannot log-on to the User Management Engine.
The SAPJSF user is not locked in SU01. This user is used by the JCO providers to connect to the gateway service.
We opened Visual Administrator and navigated to Server0 -> Services -> UM Provider
We changed the password property at ume.r3.connection.master.passwd
We then restarted the ABAP and J2EE engine. But we still see this error.
Any help to solve this issue is appreciate.
Jay Malla

Hi,
Please, refer the link below. It says you cannot logon with SAPJSF user to J2EE engine for security reasons.
http://help.sap.com/saphelp_nw2004s/helpdata/en/4e/225b42eeb66255e10000000a155106/frameset.htm
Thanks
R.Murali

ICal Server - User can log in from iPhone but not from Desktop Mac

I've got quite the peculiar problem with iCal Server on OS X 10.6.6 - my users can log in and access the shared calendars using their iPhones. When I set up an the same account on their desktop Macs in iCal, I get an error message "The server did not recognize your user name or password for account <username@servername>".
I'm positive that username and password are correct. The only thing I found about that in the log files was that the CalDAV server returns a 201 HTTP status code when accessing the account from the iPhone vs. a 407 status code when using iCal on their desktop Mac. The same accounts are used for Email, File Sharing and Address book, all of which run fine.
Has anyone experienced a similar problem? Maybe even solved it?

Solved it myself - there was a non-ASCII character in the account password. Strange that the iPhone didn't have a problem with that while iCal did. Now that I've changed the password to contain only ASCII characters, the problem is gone.

CryptAcquireContext failing with ERROR_FILE_NOT_FOUND (2L) when user not logged on Windows 8.1

I am having a hard time migrating a C++ CryptoAPI-based application that currently runs on Windows Server 2008 to Windows 8.1. The scenario is:
This application is eventually triggered by WatchDog.exe, which in its turn is triggered when the computer is started by Windows' Task Scheduler.
Task Scheduler uses the following rules to start the WatchDog.exe:
A Administrator User Account;
Run Whether user is logged on or not;
UNCHECKED: Do not store password. The task will only have access to local resources;
Run with Highest Privileges;
Configure for Win 8.1;
Triggered at system startup.
The server sits there, nobody logged, until in a given scenario WatchDog.exe starts the application. Application log confirms that the owner of the process (GetUserName)
is the very same user Task Scheduler used to trigger WatchDog.exe.
It turns out that this application works fine in Windows Server 2008, but in windows 8.1 a call to CryptAcquireContext fails
with return code ERROR_FILE_NOT_FOUND (2L). The odd thing is that the application will NOT fail if, when started, the user is physically logged
on the machine, although it was not the user who started the application manually.
I took a look at the documentation and
found:
"The profile of the user is not loaded and cannot be found. This happens when the application impersonates a user, for example, the IUSR_ComputerName account."
I had never heard of impersonification, so I made a research and found the APIs LogonUser,ImpersonateLoggedOnUser and RevertToSelf.
I then updated the application in this way:
HANDLE hToken;
if (! LogonUser(L"admin", L".", L"XXXXXXXX", LOGON32_LOGON_BATCH, LOGON32_PROVIDER_DEFAULT, &hToken))
logger->log (_T("Error logging on."));
else
logger->log (PMLOG_LEVEL_TRACE, _T("Logged on."));
if (! ImpersonateLoggedOnUser(hToken))
logger->log (_T("Error impersonating."));
else
logger->log (_T("Impersonated."));
err = XXXXXXXXX(); // calls function which will execute CryptAcquireContext
if (! RevertToSelf())
logger->log (_T("Error reverting."));
else
logger->log (_T("Reverted."));
Excerpt with the call to CryptAcquireContext:
// Get the handle to the default provider.
if(! CryptAcquireContext(&hCryptProv, cryptContainerName, MS_ENHANCED_PROV, PROV_RSA_FULL, 0))
DWORD e = GetLastError();
_stprintf_s (logMsg, 1000, _T("Error %ld acquiring cryptographic provider."), e);
cRSALogger->log (logMsg);
return ERR_CCRYPT_NO_KEY_CONTAINER;
cRSALogger->log (_T("Cryptographic provider acquired."));
As the result, I got the log:
[2015/01/08 20:53:25-TRACE] Logged on.
[2015/01/08 20:53:25-TRACE] Impersonated.
[2015/01/08 20:53:26-ERROR] Error 2 acquiring cryptographic provider.
[2015/01/08 20:53:26-TRACE] Reverted.
That seems to show that impersonation is working properly, but still I get Error 2 (ERROR_FILE_NOT_FOUND) on CryptAcquireContext.
Summary:
On Windows Server 2008, the very same application runs properly even without the calls to LogonUser/Impersonate/Revert.
On Windows 8.1, the application, with or without the calls to LogonUser/Impersonate/Revert, will only work properly if the user is logged on (which
is not acceptable).
Any thoughts where I can run to in order to get this working on windows 8.1?
Thank in advance,
Dan

There are a couple of issues.
Based on the parameters being used in CryptAcquireContext(). A profile needs to be loaded and your app has to be running as the same user who created the keyset. (which is why it works when a user is logged on Windows 8.1) Also, impersonation
does not load your user profile, you need to call LoadUserProfile(). It seems like you should be using a machine keyset for your scenario if you want to do this when nobody is logged on.
Take a look at the following KB article for more information.
https://support.microsoft.com/kb/238187?wa=wsignin1.0
thanks
Frank K [MSFT]

What's the best way to check whether a user is logged in or not?

I have a question about basic session handling.
I'm running Tomcat 5.0.30 and have a web application where users can register with a username and password, and then log into a "member site".
What is the best way of making sure that a user actually has logged in or not?
What I've done in previous applications I've made is that I've just put a simple variable into the users session after he has successfully entered his password (i.e. Boolean loggedIn=true). Then I just test if this flag is true to grant him access to the member site. Is that a smart way of doing it?
Are there any libraries I can use which handles sessions for me in a secure way?
All comments and suggestions are appreciated!

Maintain a flag using session attributes it to one when the user is logs in set it to value.... and change set it zero or invalidate that session... when the user is logged out...
use something like this while user had logged in
session.setAttribute("flag",<unique_number>);
for checking whether the user had logged in or not...
if(Integer.parseInt(session.getAttribute("flag").toString())=!<unique_number>){
out.println("The session had expired");
out.close();
}

Only One Mobile User can Log In to Laptop

I have a network account on my Mac Book Pro. I can log in no problem, access everything on the network, etc. but no one else can log in to this particular laptop. All of the other users can log into each other's identical Mac Book Pros, my account included. I have checked in my MBP's System Preferences > Accounts and the "Allow network users to login to this computer" checkbox is checked. The PDC is Leopard 10.5.6 running Open Directory.
When one of the other network accounts tries to log in to my computer we get the following error:
You are unable to login to the user account (username) at this time. Logging in to the account failed because of an error.
I have googled that error but nothing seems to apply to this situation. Most of the postings found here and on the web are authenticating against Active Directory, and the assumption seems to be no one can log in, not just select accounts.
I've done plenty of searching here and on Google but the description of the problem is hard to summarize so I'm posting my own question. Thank you in advance for any information you can provide.

Is this a second hand phone? It sounds like the it is and the previous owner did not disable Activation Lock, the antitheft feature of iOS. If this is the case then the only solution is to get the previous owner to unlock it.

How do I make it so users can log in and sign up on my adobe muse website

How do I make it so users can log in and sign up on my adobe muse website?

If you would read through the Muse forum, this subject has come up multiple times.
Muse does not currently support CMS, passwords, logins or bespoke client areas.

How can I find the IP address of guest users who log on to my Adobe Connect Meeting?

We had an Adobe Connect meeting that was open for guest users to log in under generic user names. Does the Adobe Connect meeting log keep the IP address or other identifiable information for these guest users?

Footprints will track and report the User IP's.
http://www.refineddata.com/index.php?option=com_content&view=article&id=62:footprints&cati d=43:custom-pods&Itemid=62

OD users cannot log on without server home directory

I am new to OD and am trying to configure a working setup for a few Macs on the network. The server is set up as an OD master, and while we are running Active Directory, the Mac server is not integrated into the AD network. DHCP and DNS are handled by the server that provides AD.
I have set up a few test users and bound a Mac to the OD server for testing. I've found that if I don't specify a home directory for a particular user in workgroup manager (i.e. I just leave it at (none)), the user cannot log on to the bound Mac. The log in window begins to slide as if it is accepting the password, then stops and shakes and brings me back to the login window without any error message. If I specify a home directory on the server, it will then accept the username and password, show that I am logging in as said user, then display the message, "You are unable to log in to the user account [user] at this time. Logging into the account failed because an error occurred."
I'm guessing the error message relates to a permissions issue with the way the home directories are set up. But honestly, I'd rather the users just have their home directories stored locally rather than on the server. How do I configure it so that the users are able to log on and their home directories are stored locally?
Thanks in advance for any assistance that can be provided!

After playing around with the system some more, I found that I had to explicitly specify the local home directory. I set it to /Users/ and everything seems to be working now.

DC on VM Restored after crash - Does Not allow PCs to Join Domain, or Domain Users to Log in

We currently had a RAID array crash and rebuilt our main server which housed VMs for our Web and DC.
The main server was restored from a bare-metal backup from 6 months prior to the latest backup of the VMs (not sure if pertinent)
Since the Restore, Domain computers cannot access file shares on the main server or VMs - "unspecified network error
0x80004005
Removed the main server from the Domain to re-join it due to some issues with logging in (even with a Domain Admin account) - Found that any PC removed from the domain was no longer able
to rejoin - Receive (Network path was not found error)
Domain Users cannot log in to their computers - Error reads "The trust relationship between this computer and the domain has been lost" - Domain Admin accounts can log in without
problem.
Have been working on it for two weeks and tried most of the things that I have found in others questions for related
DCDIAG results (run on DC VM) - More errors appear if run on the Server (Locator DcGetDcName(GC_Server_Required) call failed, error 1722 (same for PDC, TIME, GOOD_TIME, and KDC)
Directory Server Diagnosis
Performing initial setup:
Trying to find home server...
Home Server = DC1
* Identified AD Forest.
Done gathering initial info.
Doing initial required tests
Testing server: Default-First-Site-Name\DC1
Starting test: Connectivity
......................... DC1 passed test Connectivity
Doing primary tests
Testing server: Default-First-Site-Name\DC1
Starting test: Advertising
......................... DC1 passed test Advertising
Starting test: FrsEvent
There are warning or error events within the last 24 hours after the
SYSVOL has been shared. Failing SYSVOL replication problems may cause
Group Policy problems.
......................... DC1 failed test FrsEvent
Starting test: DFSREvent
......................... DC1 passed test DFSREvent
Starting test: SysVolCheck
......................... DC1 passed test SysVolCheck
Starting test: KccEvent
......................... DC1 passed test KccEvent
Starting test: KnowsOfRoleHolders
......................... DC1 passed test KnowsOfRoleHolders
Starting test: MachineAccount
......................... DC1 passed test MachineAccount
Starting test: NCSecDesc
......................... DC1 passed test NCSecDesc
Starting test: NetLogons
......................... DC1 passed test NetLogons
Starting test: ObjectsReplicated
......................... DC1 passed test ObjectsReplicated
Starting test: Replications
......................... DC1 passed test Replications
Starting test: RidManager
......................... DC1 passed test RidManager
Starting test: Services
......................... DC1 passed test Services
Starting test: SystemLog
A warning event occurred. EventID: 0x80040022
Time Generated: 01/15/2015 19:32:28
Event String:
The driver disabled the write cache on device \Device\Harddisk0\DR0.
A warning event occurred. EventID: 0x80040022
Time Generated: 01/15/2015 19:32:28
Event String:
The driver disabled the write cache on device \Device\Harddisk0\DR0.
A warning event occurred. EventID: 0x80040022
Time Generated: 01/15/2015 19:32:28
Event String:
The driver disabled the write cache on device \Device\Harddisk0\DR0.
A warning event occurred. EventID: 0x000003F6
Time Generated: 01/15/2015 19:32:52
Event String:
Name resolution for the name DC1.Home.xxx.com timed out after none of the configured DNS servers responded.
An error event occurred. EventID: 0xC00038D6
Time Generated: 01/15/2015 19:33:25
Event String:
The DFS Namespace service could not initialize cross forest trust information on this domain controller, but it will periodically retry the operation. The return code is in the record data.
A warning event occurred. EventID: 0x00000420
Time Generated: 01/15/2015 19:33:29
Event String:
The DHCP service has detected that it is running on a DC and has no credentials configured for use with Dynamic DNS registrations initiated by the DHCP service. This is not a recommended security configuration.
Credentials for Dynamic DNS registrations may be configured using the command line "netsh dhcp server set dnscredentials" or via the DHCP Administrative tool.
A warning event occurred. EventID: 0x00002724
Time Generated: 01/15/2015 19:33:33
Event String:
This computer has at least one dynamically assigned IPv6 address.For reliable DHCPv6 server operation, you should use only static IPv6 addresses.
A warning event occurred. EventID: 0x000727AA
Time Generated: 01/15/2015 19:36:34
Event String:
The WinRM service failed to create the following SPNs: WSMAN/DC1.Home.xxx.com; WSMAN/DC1.
A warning event occurred. EventID: 0x00001695
Time Generated: 01/15/2015 19:59:52
Event String:
Dynamic registration or deletion of one or more DNS records associated with DNS domain 'Home.xxx.com.' failed. These records are used by other computers to locate this server as a domain controller (if the specified
domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition).
A warning event occurred. EventID: 0x00001695
Time Generated: 01/15/2015 19:59:52
Event String:
Dynamic registration or deletion of one or more DNS records associated with DNS domain 'DomainDnsZones.Home.xxx.com.' failed. These records are used by other computers to locate this server as a domain controller
(if the specified domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition).
A warning event occurred. EventID: 0x00001695
Time Generated: 01/15/2015 19:59:52
Event String:
Dynamic registration or deletion of one or more DNS records associated with DNS domain 'ForestDnsZones.Home.xxx.com.' failed. These records are used by other computers to locate this server as a domain controller
(if the specified domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition).
A warning event occurred. EventID: 0x00000420
Time Generated: 01/15/2015 20:20:21
Event String:
The DHCP service has detected that it is running on a DC and has no credentials configured for use with Dynamic DNS registrations initiated by the DHCP service. This is not a recommended security configuration.
Credentials for Dynamic DNS registrations may be configured using the command line "netsh dhcp server set dnscredentials" or via the DHCP Administrative tool.
A warning event occurred. EventID: 0x00002724
Time Generated: 01/15/2015 20:20:25
Event String:
This computer has at least one dynamically assigned IPv6 address.For reliable DHCPv6 server operation, you should use only static IPv6 addresses.
......................... DC1 failed test SystemLog
Starting test: VerifyReferences
......................... DC1 passed test VerifyReferences
Running partition tests on : ForestDnsZones
Starting test: CheckSDRefDom
......................... ForestDnsZones passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... ForestDnsZones passed test
CrossRefValidation
Running partition tests on : DomainDnsZones
Starting test: CheckSDRefDom
......................... DomainDnsZones passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... DomainDnsZones passed test
CrossRefValidation
Running partition tests on : Schema
Starting test: CheckSDRefDom
......................... Schema passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Schema passed test CrossRefValidation
Running partition tests on : Configuration
Starting test: CheckSDRefDom
......................... Configuration passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Configuration passed test CrossRefValidation
Running partition tests on : Home
Starting test: CheckSDRefDom
......................... Home passed test CheckSDRefDom
Starting test: CrossRefValidation
......................... Home passed test CrossRefValidation
Running enterprise tests on : Home.xxx.com
Starting test: LocatorCheck
......................... Home.xxx.com passed test LocatorCheck
Starting test: Intersite
......................... Home.xxx.com passed test Intersite
All PCs can ping the DC, and get name resolution. Checked IPs, DNS on both WS and DC (DC points to its own IP address with no other DNS), Forwarders for DNS appear to be working,
as normal DNS name resolution and internet access works on all PCs. Have tried disabling NIC card and installing another NIC. All searches keep pointing back at the same things that I have tried. I feel like I am missing something stupid.
Please help

The backup you used is too old. That is why your clients are experiencing trust relationship failures: the computer passwords are no longer matching so they are failing to connect to AD. You need to disjoin and join them again.
I understand that this is the only DC you have so please make sure that the DC is not multihomed, that it points to its private IP address as primary DNS server and 127.0.0.1 as secondary one. Also, you might need to rebuild your SYSVOL folder if you keep
getting the SYSVOL errors: https://support.microsoft.com/kb/315457?wa=wsignin1.0
This posting is provided AS IS with no warranties or guarantees , and confers no rights.
Ahmed MALEK
My Website Link
My Linkedin Profile
My MVP Profile

How many users have logged in the Enterprise portal

Hello Expert,
Please suggest..
Feature required to monitor as how many users have logged in the Enterprise portal 7.0(Portal is Implemented with MDM), so that utilization can be known.
Regards,
Vidhanshi

Hi,
You can wirte the following code to get the logged in user's ID
try {
      IWDClientUser wdClientUser = WDClientUser.getCurrentUser();
      IUser sapUser = wdClientUser.getSAPUser();
      IUserAccount[] acct = sapUser.getUserAccounts();
      String str = acct[0].getDisplayName();
      wdComponentAPI.getMessageManager().reportSuccess("user "+ str);
     } catch (WDUMException e) {
     // TODO Auto-generated catch block
     e.printStackTrace();
     } catch (UMException e) {
     // TODO Auto-generated catch block
     e.printStackTrace();
You need security api for using it make sure that is present.
[Find out who is login into the Portal|http://forums.sdn.sap.com/thread.jspa?threadID=1723807]
Hope This is Help full for you!!!
Best Regards
Vijay K

Simple trigger to allow users to log on at certain times

I am trying to create a trigger that will allow certain users to only log into the database between 12am - 4 am.
Can I assign a trigger to a user or to a role or how do I parse it out. I dont think I have this trigger just right yet...
Or can this be set in the database it self? I looked at the user accounts, profiles, roles and dont see anything about connection times.
Oracle 10.2.0.4
I want to create a trigger that will only allow the user to log into the database between 12 and 4 am.
My next question is can I assign this trigger to the role that the user has been assigned to?
I have pulled some similar code that I would like to use but do not know how to modify it to be either assigned to a user: npq or to the role ntq_ro.
create or replace trigger logon_time after logon on database
begin
if to_char(sysdate,'HH24') between 4 and 24
then
raise_application_error(-20001,'Not allowed to logon database during this time');
end if;
end
/

yes, I would love to all by command line...
Bere in mind I change to to test...
SQL> CREATE OR REPLACE TRIGGER "SYS".LOGON_TIME_RESTRICTION_NPQ AFTER
2 LOGON ON DATABASE
3 BEGIN
4 if to_char(sysdate,'HH24') between '14' and '16' AND USER='NPQ' THEN
5 raise_application_error(-20001,'Not allowed to logon database during this time');
6 end if;
7 end;
8 /
Trigger created.
SQL> exit
Disconnected from Oracle Database 10g Enterprise Edition Release 10.2.0.4.0 - 64bit Production
With the Partitioning, OLAP, Data Mining and Real Application Testing options
[oracle@kali ~]$ sqlplus
SQL*Plus: Release 10.2.0.4.0 - Production on Mon Jan 10 14:41:02 2011
Copyright (c) 1982, 2007, Oracle. All Rights Reserved.
Enter user-name: npq
Enter password:
Connected to:
Oracle Database 10g Enterprise Edition Release 10.2.0.4.0 - 64bit Production
With the Partitioning, OLAP, Data Mining and Real Application Testing options
Alert log triggered errors:
Mon Jan 10 14:41:10 2011
Errors in file /u01/app/oracle/admin/NASARPT/udump/nasarpt_ora_17508.trc:
ORA-00604: error occurred at recursive SQL level 1
ORA-20001: Not allowed to logon database during this time
ORA-06512: at line 3
/u01/app/oracle/admin/NASARPT/udump/nasarpt_ora_17508.trc
Oracle Database 10g Enterprise Edition Release 10.2.0.4.0 - 64bit Production
With the Partitioning, OLAP, Data Mining and Real Application Testing options
ORACLE_HOME = /u01/app/oracle/product/10.2.0/db_1
System name: Linux
Node name: kali.mtsallstream.com
Release: 2.6.18-164.6.1.el5
Version: #1 SMP Tue Oct 27 11:28:30 EDT 2009
Machine: x86_64
Instance name: NASARPT
Redo thread mounted by this instance: 1
Oracle process number: 31
Unix process pid: 17508, image: [email protected] (TNS V1-V3)
*** ACTION NAME:() 2011-01-10 14:41:10.293
*** MODULE NAME:([email protected] (TNS V1-V3)) 2011-01-10 14:41:10.293
*** SERVICE NAME:(SYS$USERS) 2011-01-10 14:41:10.293
*** SESSION ID:(54.49496) 2011-01-10 14:41:10.293
Skipped error 604 during the execution of SYS.LOGON_TIME_RESTRICTION_NPQ
*** 2011-01-10 14:41:10.293
ksedmp: internal or fatal error
ORA-00604: error occurred at recursive SQL level 1
ORA-20001: Not allowed to logon database during this time
ORA-06512: at line 3
I also tried the setting for the to_num but it would not even compile:
SQL> CREATE OR REPLACE TRIGGER "SYS".LOGON_TIME_RESTRICTION_NPQ AFTER LOGON ON DATABASE
2 BEGIN
3 if to_num(to_char(sysdate,'hh24miss')) between '000001' and '040000' AND USER='NPQ' then
4 raise_application_error(-20001,'Not allowed to logon database during this time');
5 end if;
6 end;
7 /
Warning: Trigger created with compilation errors.
SQL>

Validate if user is logged in

Similar Messages

Maybe you are looking for