WCF WSDL has no security info, but service uses SSL

Similar Messages

• Trying to purchase an app on the ipod after the upgrade.  Asking for security info, but after we answer the questions, we get "an error occured. We couldn't save your changes" on security info screen.  HELP!

  Trying to purchase an app on the ipod after the upgrade to 5.1.1.  Asking for security info, but after we answer the questions, we get "An error occured. We couldn't save your changes" on security info screen.  HELP!

  Us too! We've answered the questions and then get "An error occurred. We couldn't save your changes". Now what? We have a balance in the itunes account that it seems cannot be transferred. What next?

• What if I don't have billing info, but I used to, and I want to update free

  What if I don't have billing info, but I used to, and I want to update free

  http://support.apple.com/kb/HT5552

• My children both have a ipod touch,  we just recently added a itunes card, and now when we go to purchase a app a screen pops up and says "security info"  but only has the option to click "submit" or recovery email address, which i do but no luck??

  everything was working fine until we added a new itunes card,  also, we are able to watch youtube, internet,  but just not able to download anything from the app store due to this "security info" page..  someone please help my children want to use their new itunes cards.. thank's

  Honesty just send it to Apple or take it into a Apple store, it may seem like a pain but its worth it plus you wouldnt want to damage it farther.

• HT1918 I'm unable to update or put in my security code on the update billing info page. It will not take my security code, but it used to. The card is active there is also money in the account. Not sure what the problem is. Also, it is not processing the

  In Itunes i'm unable to update my credit card info. It won't take the security code, but it did before. It also isn't accepting cards at this time.

  the security code error is actually generic and just means the card is being rejected, double check your billing info to make sure it matches the card exactly or contact the card issuer to make sure they arent blocking it because of a fraud filter or something similar

• Unable to call WSS (WS-Security) enabled Web Service using UTL_DBWS

  We are attempting to call a WSS (WS-Security) enabled Web Service from PL/SQL using the UTL_DBWS package (see [http://download.oracle.com/docs/cd/B19306_01/appdev.102/b14258/u_dbws.htm#CHDIDGJH] ). We are doing this in similar fashion to [http://www.oracle-base.com/articles/10g/utl_dbws10g.php] with calls to utl_dbws.create_service, utl_dbws.create_call and utl_dbws.invoke.
  Using this method we can successfully call an unsecured Web Service, but calls to WSS-enabled Web Services fail. We are currently using Oracle Database 10.2.0.3.
  The failure we are getting is:
  ORA-29532: Java call terminated by uncaught Java exception: javax.xml.rpc.soap.SOAPFaultException:
  com.sun.xml.wss.XWSSecurityException: Message does not conform to configured
  policy ( AuthenticationTokenPolicy(S) ): No Security Header found;nested
  exception is com.sun.xml.wss.XWSSecurityException:
  com.sun.xml.wss.XWSSecurityException: Message does not conform to configured
  policy ( AuthenticationTokenPlicy(S) ): No Security Header found
  Apparently UTL_DBWS does not support calling WSS enabled services, although this doesn't appear to be an officially recognised position. Does anyone know if Oracle are planning to support this soon (if ever)? Looking at Re: Calling WS from PL/SQL using WS-security suggests that support has been considered before, but not yet realised.
  Thanks,
  Tom

  Having raised a Service Request with Oracle support on this, I got the following response from Oracle Development (On unpublished bug [8542959|https://metalink2.oracle.com/metalink/plsql/ml2_documents.showDocument?p_database_id=BUG&p_id=8542959]):
  Development has confirmed that WS-Security is not supported through UTL_DBWS. They have also acknowledged that this is not documented and they will change the official Oracle documentation will reflect this fact. From what is being stated, it would appear that there is no plan to support the use of WS-Security through UTL_DBWS in any release in the near future.
  So, in short, without developing your own home-grown SOAP request, there is no way to call a WSS enabled web service from within PL/SQL.
  -Tom

• How to call a secure external Web Service using Oracle BPEL and OWSM

  Hi,
  i have to invoke an external secure Web Service using SOA Suite 10.1.3.1, but i don´t know how to do this. Do i use OWSM gateway or Agent? how to configure the gateway or agent to pass the required security to the external secure web service.
  thanks in advance
  Dong

  Are you getting any errors? What type of XAI Class are you using?
  One thing I've noticed is that if you are making changes to the XAI Sender you will have to restart the environment before the changes can take effect.
  Also, if you are using RTHTTPSNDR as XAI Class you may have to include the HTTP Method - Post in the context.
  Hope this helps.
  Regards,
  Philip

• Web Service using SSL

  Using Coldfusion 8, I am trying to connect to a .NET web
  service that is secure with SSL v3.
  I have added their cert to my CF keystore but still getting
  the same error.
  I am able to connect to the webservice, but not execute any
  methods.
  I can access the webservice and run the method when not using
  SSL.
  But with SSL I am getting this error:
  The fault returned when invoking the web service operation
  is:
  AxisFault
  faultCode: {
  http://schemas.xmlsoap.org/soap/envelope/}Server.userException
  faultSubcode:
  faultString: java.net.ConnectException: Connection timed
  out: connect
  Any help greatly appreciated!!

  I made some progress, perhaps! When the browse the webservice
  from our server using IE, I see this error come up...
  Revocation Information for the security certificate is not
  available. Do you want to proceed.
  This appears on the server and not my PC because the security
  settings of the browser on the server are less forgiving. But it
  leads me to suspect that my timeout error being caused by my
  webservice not being able to respond to this question with a Yes or
  No answer.
  Do you know a way to tell Coldfusion to ignore certificate
  errors?
  Thanks!!

• Sample with Securing Identity Web Services using jee sdk update 3 fails!!

  Hi,
  following the sample from identy enabled webServices as described in :
  ../blueprints/ws-security/identityWebServices-jaxws/index.html
  results in an error message:
  [#|2007-11-14T10:06:57.252+0100|INFO|sun-appserver9.1|javax.enterprise.system.stream.out|_ThreadID=14;_ThreadName=httpSSLWorkerThread-8080-0;|11/14/2007 10:06:57:252 AM CET: Thread[httpSSLWorkerThread-8080-0,10,Grizzly]
  ERROR: AdminTokenAction: FATAL ERROR: Cannot obtain Application SSO token.
  Check AMConfig.properties for the following properties
       com.sun.identity.agents.app.username
       com.iplanet.am.service.password
  I tried both building/deployiny using ant and netbeans (after importing to NB).
  Using Java EE 5 SDK Update 3 with Tools on windows.
  Has someone successfully used deployed/run this sample?
  cheers
  Additional error messages:
  [#|2007-11-14T10:06:56.481+0100|INFO|sun-appserver9.1|javax.enterprise.system.stream.out|_ThreadID=14;_ThreadName=httpSSLWorkerThread-8080-0;|11/14/2007 10:06:56:481 AM CET: Thread[httpSSLWorkerThread-8080-0,10,Grizzly]
  could not create SSOToken from HttpRequest
  com.iplanet.dpro.session.SessionException: Invalid session ID.
       at com.iplanet.dpro.session.Session.getSession(Session.java:785)
       at com.iplanet.sso.providers.dpro.SSOProviderImpl.createSSOToken(SSOProviderImpl.java:100)
       at com.iplanet.sso.SSOTokenManager.createSSOToken(SSOTokenManager.java:242)
       at com.sun.identity.wss.security.handler.HTTPRequestHandler.setTokenInSubject(HTTPRequestHandler.java:169)
       at com.sun.identity.wss.security.handler.HTTPRequestHandler.shouldAuthenticate(HTTPRequestHandler.java:116)
       at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
       at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
       at java.lang.reflect.Method.invoke(Method.java:597)
       at com.sun.identity.agents.jsr196.as9soap.AMHttpAuthModule.validateRequest(AMHttpAuthModule.java:195)
       at com.sun.enterprise.security.jmac.config.GFServerConfigProvider$GFServerAuthContext.validateRequest(GFServerConfigProvider.java:1179)
       at com.sun.web.security.RealmAdapter.validate(RealmAdapter.java:1261)
       at com.sun.web.security.RealmAdapter.invokeAuthenticateDelegate(RealmAdapter.java:1143)
       at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:627)
       at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:609)
       at org.apache.catalina.core.StandardPipeline.doChainInvoke(StandardPipeline.java:583)
       at com.sun.enterprise.web.WebPipeline.invoke(WebPipeline.java:92)
       at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:206)
       at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:632)
       at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:577)
       at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:571)
       at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:1080)
       at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:150)
       at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:632)
       at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:577)
       at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:571)
       at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:1080)
       at org.apache.coyote.tomcat5.CoyoteAdapter.service(CoyoteAdapter.java:270)
       at com.sun.enterprise.web.connector.grizzly.DefaultProcessorTask.invokeAdapter(DefaultProcessorTask.java:637)
       at com.sun.enterprise.web.connector.grizzly.DefaultProcessorTask.doProcess(DefaultProcessorTask.java:568)
       at com.sun.enterprise.web.connector.grizzly.DefaultProcessorTask.process(DefaultProcessorTask.java:813)
       at com.sun.enterprise.web.connector.grizzly.DefaultReadTask.executeProcessorTask(DefaultReadTask.java:339)
       at com.sun.enterprise.web.connector.grizzly.DefaultReadTask.doTask(DefaultReadTask.java:261)
       at com.sun.enterprise.web.connector.grizzly.DefaultReadTask.doTask(DefaultReadTask.java:212)
       at com.sun.enterprise.web.portunif.PortUnificationPipeline$PUTask.doTask(PortUnificationPipeline.java:361)
       at com.sun.enterprise.web.connector.grizzly.TaskBase.run(TaskBase.java:265)
       at com.sun.enterprise.web.connector.grizzly.ssl.SSLWorkerThread.run(SSLWorkerThread.java:106)
  |#]
  [#|2007-11-14T10:06:56.481+0100|INFO|sun-appserver9.1|javax.enterprise.system.stream.out|_ThreadID=14;_ThreadName=httpSSLWorkerThread-8080-0;|11/14/2007 10:06:56:481 AM CET: Thread[httpSSLWorkerThread-8080-0,10,Grizzly]
  HTTPRequestHandler.setTokenInSubject: Invalid SSOToken
  |#]
  [#|2007-11-14T10:06:56.491+0100|INFO|sun-appserver9.1|javax.enterprise.system.stream.out|_ThreadID=22;_ThreadName=Thread-85;|11/14/2007 10:06:56:481 AM CET: Thread[Thread-85,10,Grizzly]
  Session Cache Cleaner started
  |#]
  [#|2007-11-14T10:06:56.541+0100|INFO|sun-appserver9.1|javax.enterprise.system.stream.out|_ThreadID=14;_ThreadName=httpSSLWorkerThread-8080-0;|11/14/2007 10:06:56:541 AM CET: Thread[httpSSLWorkerThread-8080-0,10,Grizzly]
  DataLayer: number of retry = 3
  |#]
  [#|2007-11-14T10:06:56.541+0100|INFO|sun-appserver9.1|javax.enterprise.system.stream.out|_ThreadID=14;_ThreadName=httpSSLWorkerThread-8080-0;|11/14/2007 10:06:56:541 AM CET: Thread[httpSSLWorkerThread-8080-0,10,Grizzly]
  DataLayer: retry interval = 1000
  |#]
  [#|2007-11-14T10:06:56.541+0100|INFO|sun-appserver9.1|javax.enterprise.system.stream.out|_ThreadID=14;_ThreadName=httpSSLWorkerThread-8080-0;|11/14/2007 10:06:56:541 AM CET: Thread[httpSSLWorkerThread-8080-0,10,Grizzly]
  DataLayer: retry error codes = []
  |#]
  [#|2007-11-14T10:06:56.551+0100|INFO|sun-appserver9.1|javax.enterprise.system.stream.out|_ThreadID=14;_ThreadName=httpSSLWorkerThread-8080-0;|11/14/2007 10:06:56:551 AM CET: Thread[httpSSLWorkerThread-8080-0,10,Grizzly]
  WARNING: DSConfigMgr.getDSConfigMgr: serverconfig.xml probably missing. May be running in client mode
  java.io.FileNotFoundException: null\serverconfig.xml (Das System kann den angegebenen Pfad nicht finden)
       at java.io.FileInputStream.open(Native Method)
       at java.io.FileInputStream.<init>(FileInputStream.java:106)
       at java.io.FileInputStream.<init>(FileInputStream.java:66)
       at com.iplanet.services.ldap.DSConfigMgr.getDSConfigMgr(DSConfigMgr.java:173)
       at com.iplanet.am.util.AdminUtils.<clinit>(AdminUtils.java:76)
       at com.sun.identity.security.AdminTokenAction.getSSOToken(AdminTokenAction.java:263)
       at com.sun.identity.security.AdminTokenAction.run(AdminTokenAction.java:174)
       at java.security.AccessController.doPrivileged(Native Method)
       at com.sun.identity.wss.provider.ProviderConfig.getAdminToken(ProviderConfig.java:617)
       at com.sun.identity.wss.provider.ProviderConfig.getProvider(ProviderConfig.java:505)
       at com.sun.identity.wss.security.handler.HTTPRequestHandler.shouldAuthenticate(HTTPRequestHandler.java:132)
       at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
       at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
       at java.lang.reflect.Method.invoke(Method.java:597)
       at com.sun.identity.agents.jsr196.as9soap.AMHttpAuthModule.validateRequest(AMHttpAuthModule.java:195)
       at com.sun.enterprise.security.jmac.config.GFServerConfigProvider$GFServerAuthContext.validateRequest(GFServerConfigProvider.java:1179)
       at com.sun.web.security.RealmAdapter.validate(RealmAdapter.java:1261)
       at com.sun.web.security.RealmAdapter.invokeAuthenticateDelegate(RealmAdapter.java:1143)
       at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:627)
       at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:609)
       at org.apache.catalina.core.StandardPipeline.doChainInvoke(StandardPipeline.java:583)
       at com.sun.enterprise.web.WebPipeline.invoke(WebPipeline.java:92)
       at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:206)
       at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:632)
       at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:577)
       at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:571)
       at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:1080)
       at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:150)
       at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:632)
       at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:577)
       at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:571)
       at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:1080)
       at org.apache.coyote.tomcat5.CoyoteAdapter.service(CoyoteAdapter.java:270)
       at com.sun.enterprise.web.connector.grizzly.DefaultProcessorTask.invokeAdapter(DefaultProcessorTask.java:637)
       at com.sun.enterprise.web.connector.grizzly.DefaultProcessorTask.doProcess(DefaultProcessorTask.java:568)
       at com.sun.enterprise.web.connector.grizzly.DefaultProcessorTask.process(DefaultProcessorTask.java:813)
       at com.sun.enterprise.web.connector.grizzly.DefaultReadTask.executeProcessorTask(DefaultReadTask.java:339)
       at com.sun.enterprise.web.connector.grizzly.DefaultReadTask.doTask(DefaultReadTask.java:261)
       at com.sun.enterprise.web.connector.grizzly.DefaultReadTask.doTask(DefaultReadTask.java:212)
       at com.sun.enterprise.web.portunif.PortUnificationPipeline$PUTask.doTask(PortUnificationPipeline.java:361)
       at com.sun.enterprise.web.connector.grizzly.TaskBase.run(TaskBase.java:265)
       at com.sun.enterprise.web.connector.grizzly.ssl.SSLWorkerThread.run(SSLWorkerThread.java:106)
  |#]
  [#|2007-11-14T10:06:56.551+0100|INFO|sun-appserver9.1|javax.enterprise.system.stream.out|_ThreadID=14;_ThreadName=httpSSLWorkerThread-8080-0;|11/14/2007 10:06:56:551 AM CET: Thread[httpSSLWorkerThread-8080-0,10,Grizzly]
  AdminUtils: Could not initialize admin info message: Got LDAPServiceException code=19
  |#]
  [#|2007-11-14T10:06:56.551+0100|INFO|sun-appserver9.1|javax.enterprise.system.stream.out|_ThreadID=14;_ThreadName=httpSSLWorkerThread-8080-0;|11/14/2007 10:06:56:551 AM CET: Thread[httpSSLWorkerThread-8080-0,10,Grizzly]
  Crypt.static{}: Encryptor class= com.iplanet.services.util.JSSEncryption
  |#]
  [#|2007-11-14T10:06:57.252+0100|INFO|sun-appserver9.1|javax.enterprise.system.stream.out|_ThreadID=14;_ThreadName=httpSSLWorkerThread-8080-0;|11/14/2007 10:06:57:252 AM CET: Thread[httpSSLWorkerThread-8080-0,10,Grizzly]
  AdminTokenAction::getSSOToken Not found AdminDN and AdminPassword.
  java.lang.NoClassDefFoundError: org/mozilla/jss/crypto/KeyGenAlgorithm
       at java.lang.Class.forName0(Native Method)
       at java.lang.Class.forName(Class.java:169)
       at com.iplanet.services.util.Crypt.createInstance(Crypt.java:133)
       at com.iplanet.services.util.Crypt.<clinit>(Crypt.java:103)
       at com.iplanet.am.util.AdminUtils.getAdminPassword(AdminUtils.java:132)
       at com.sun.identity.security.AdminTokenAction.getSSOToken(AdminTokenAction.java:263)
       at com.sun.identity.security.AdminTokenAction.run(AdminTokenAction.java:174)
       at java.security.AccessController.doPrivileged(Native Method)
       at com.sun.identity.wss.provider.ProviderConfig.getAdminToken(ProviderConfig.java:617)
       at com.sun.identity.wss.provider.ProviderConfig.getProvider(ProviderConfig.java:505)
       at com.sun.identity.wss.security.handler.HTTPRequestHandler.shouldAuthenticate(HTTPRequestHandler.java:132)
       at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
       at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
       at java.lang.reflect.Method.invoke(Method.java:597)
       at com.sun.identity.agents.jsr196.as9soap.AMHttpAuthModule.validateRequest(AMHttpAuthModule.java:195)
       at com.sun.enterprise.security.jmac.config.GFServerConfigProvider$GFServerAuthContext.validateRequest(GFServerConfigProvider.java:1179)
       at com.sun.web.security.RealmAdapter.validate(RealmAdapter.java:1261)
       at com.sun.web.security.RealmAdapter.invokeAuthenticateDelegate(RealmAdapter.java:1143)
       at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:627)
       at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:609)
       at org.apache.catalina.core.StandardPipeline.doChainInvoke(StandardPipeline.java:583)
       at com.sun.enterprise.web.WebPipeline.invoke(WebPipeline.java:92)
       at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:206)
       at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:632)
       at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:577)
       at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:571)
       at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:1080)
       at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:150)
       at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:632)
       at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:577)
       at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:571)
       at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:1080)
       at org.apache.coyote.tomcat5.CoyoteAdapter.service(CoyoteAdapter.java:270)
       at com.sun.enterprise.web.connector.grizzly.DefaultProcessorTask.invokeAdapter(DefaultProcessorTask.java:637)
       at com.sun.enterprise.web.connector.grizzly.DefaultProcessorTask.doProcess(DefaultProcessorTask.java:568)
       at com.sun.enterprise.web.connector.grizzly.DefaultProcessorTask.process(DefaultProcessorTask.java:813)
       at com.sun.enterprise.web.connector.grizzly.DefaultReadTask.executeProcessorTask(DefaultReadTask.java:339)
       at com.sun.enterprise.web.connector.grizzly.DefaultReadTask.doTask(DefaultReadTask.java:261)
       at com.sun.enterprise.web.connector.grizzly.DefaultReadTask.doTask(DefaultReadTask.java:212)
       at com.sun.enterprise.web.portunif.PortUnificationPipeline$PUTask.doTask(PortUnificationPipeline.java:361)
       at com.sun.enterprise.web.connector.grizzly.TaskBase.run(TaskBase.java:265)
       at com.sun.enterprise.web.connector.grizzly.ssl.SSLWorkerThread.run(SSLWorkerThread.java:106)
  |#]
  [#|2007-11-14T10:06:57.252+0100|INFO|sun-appserver9.1|javax.enterprise.system.stream.out|_ThreadID=14;_ThreadName=httpSSLWorkerThread-8080-0;|11/14/2007 10:06:57:252 AM CET: Thread[httpSSLWorkerThread-8080-0,10,Grizzly]
  AdminTokenAction::run Unable to get SSOToken from serverconfig.xml
  |#]
  [#|2007-11-14T10:06:57.252+0100|INFO|sun-appserver9.1|javax.enterprise.system.stream.out|_ThreadID=14;_ThreadName=httpSSLWorkerThread-8080-0;|11/14/2007 10:06:57:252 AM CET: Thread[httpSSLWorkerThread-8080-0,10,Grizzly]
  AdminTokenAction: App user name or password is empty
  |#]
  [#|2007-11-14T10:06:57.252+0100|INFO|sun-appserver9.1|javax.enterprise.system.stream.out|_ThreadID=14;_ThreadName=httpSSLWorkerThread-8080-0;|11/14/2007 10:06:57:252 AM CET: Thread[httpSSLWorkerThread-8080-0,10,Grizzly]
  ERROR: AdminTokenAction: FATAL ERROR: Cannot obtain Application SSO token.
  Check AMConfig.properties for the following properties
       com.sun.identity.agents.app.username
       com.iplanet.am.service.password
  |#]

  The problem is that the AMclient does not find its AMConfig.properties. In my install this file is at
  /Applications/SUNWappserver/domains/domain1/config. Simply add this path to the server classpath and it will work.
  S.

• Adding security info in DD using EJBGen

  Hi,
  I need to insert security information like security-role, method permission, etc.
  in ejb-jar.xml and weblogic-ejb-jar.xml for the EJBs created using EJBGen. I tried
  searching on bea newsgroups and googling but couldn't find anything on that. Does
  EJBGen supports this or any new release of EJBGen is expected to do this ?
  As a work around, I keep the copy of the DDs which have this info and after EJBGen
  is finished, these DDs are copied over and the rest of the build process continues.
  This is very restrictive approach as any change in EJB apart from bug fixing requires
  some manual effort on these DDs.
  Is there any other solution possible?
  thx
  -deepak

  Oops.. I lied Deepak. I thought there wasn't
  a way to do this but I was wrong. I should've
  double checked before I replied
  @ejbgen:method-permission-pattern
  Where:Class
  Applicable on:All
  have a look at the docs for this tag. This will allow
  you to do what you're looking to do.
  -Michael
  Michael Kovacs wrote:
  deepak,
  There's no way to do wildcard method permission mapping with ejbgen
  currently. You have to explicitly map each method to a role.
  Michael Kovacs
  Senior Software Engineer
  BEA Systems
  "deepak" <[email protected]> wrote in message
  news:3f93b041$[email protected]..
  Falk <[email protected]> wrote:
  EJBGen supports this.
  Look into the tag reference.
  FalkI have already searched that but couldn't find anything useful.
  To be more precise I want to insert something like following inweblogic-ejb-jar.xml
  <security-role-assignment>
  <role-name>testRole</role-name>
  <principal-name>testUser</principal-name>
  </security-role-assignment>
  and following things in ejb-jar.xml
  <security-role>
  <role-name>testRole</role-name>
  </security-role>
  <method-permission>
  <role-name>testRole</role-name>
  <method>
  <ejb-name>myEJB</ejb-name>
  <method-name>*</method-name>
  </method>
  </method-permission>
  thx
  -deepak

• Securing UDDI registered services using OWSM-Failing

  Hi all,
  I am running into issues in integrating UDDI registered services with OWSM 10.1.3.1.Are there really any integration issues of UDDI 10.1.3.1 with OWSM 10.1.3.1 or am I going wrong?
  Thanks.

  Have you resolved your issue. I am in the same situation. Can you please let me know how you have resolved your issue.

• Web Service Using SSL issue

  I have a web service that has been working fine using http. Just switched over to SSL using the <WLHttpsTransport> tag on the jwsc ant command. Now I get the following error at runtime: Any ideas/suggestions? Thanks in advance - Craig
  16:22:27,953 INFO [STDOUT] Caused by: java.lang.NoClassDefFoundError: org/apache/tools/ant/BuildException
  16:22:27,953 INFO [STDOUT] at weblogic.wsee.bind.buildtime.internal.TylarJ2SBindingsBuilderImpl.<init>(TylarJ2SBindingsBuilderImpl.java:87)
  16:22:27,953 INFO [STDOUT] at weblogic.wsee.bind.buildtime.J2SBindingsBuilder$Factory.newInstance(J2SBindingsBuilder.java:30)
  16:22:27,953 INFO [STDOUT] at weblogic.wsee.util.ExceptionUtil.<clinit>(ExceptionUtil.java:48)
  16:22:27,953 INFO [STDOUT] at weblogic.wsee.util.FaultUtil.exception2Fault(FaultUtil.java:230)
  16:22:27,953 INFO [STDOUT] at weblogic.wsee.message.soap.SoapMessageContext.setFault(SoapMessageContext.java:102)

  I thought I would post an update since I found a solution. The problem was a ClassCast exception in a part of the SSL stack, that wanted to use the ant BuildException class. This has the effect of hiding the real issue which was that the SSL connection was not successfully occuring. The real problem was that the SSL connection started with a WSDL retrieved via SSL, but the connection for the port was through a username/password. When a username/password is used to create a port, the WL stack falls back to http and causes a ClassCast exception on weblogic.wsee.connection.transport.http.HttpTransportInfo. The solution is to create an https transport object when the service impl is created:
  HttpsTransportInfo transport = new HttpsTransportInfo ();
  transport.setUsername (user.getBytes ());
  transport.setPassword (pass.getBytes ());
  gServiceImpl = new PersistenceManagerService_Impl (url, transport);
  and to create the port without parameters:
  port = getServiceImpl ().getPersistenceManagerServicePort ();
  This allows one-way SSL with username/password for the connection.

• Web Service using SSL certificates

  Hi All,
  I built an Adaptive Web service model using a WSDL file. The web service is from a third party provider and it requests exchange certificates.
  When I tried to consume any of the methods of the web service I get an error: sometime is an invalid response code (500) and sometimes is Peer certificate rejected by ChainVerifier.
  We created a logical destination and in this is where I'm sepecifying what certificate to use also I tried creating a service group but in this case the error says Configuration not found for application, but I created in NWA maybe something is missing.
  Any idea what the issue is? also it is posible to indicate in java what certificate to use?
  Regards,
  Eduardo Campos

  HI Eduardo,
  Please refer SAP Note 838111 for Consuming SSL webervices.
  Please refer the below link for the process flow of consuming SSL webservices..
  https://cw.sdn.sap.com/cw/docs/DOC-32734?decorator=print
  Hope this helps you..
  Regards,
  Saleem Mohammad.

• What Services use SSL? -What have I missed?

  All,
  We have implemented QualysGuard Enterprise Suite here and two of my servers keep popping up with an SSL vulnerability.
  The "Solution" section of the report says "Disable support for anonymous authentication."
  The only service running on either machine is AFP. In the "Access" tab of the "Settings" for AFP on both servers, I have unchecked "Enable Guest access" and "Enable administrator to masquerade as any registered user" though I doubt either of those selections have anything to do with SSL...
  Since SSL is often used in remote control schemas, I've also set "Remote Login" and "Remote Management" to allow access for only Administrators but again I see no settings specifically for SSL.
  Finally, I have set the root certificates for these servers to "Always Trust." (Previously the certificates reported "This root certificate is not trusted")
  Can you think of anything I've missed with regards to SSL authentication?
  Thanks!
  -Brian

  Short answer: Contact the vendor.  Ask them what this means, and what the risk is.
  There's one previous similar report.  
  As the most likely path to resolution, contact the vendor for this QualysGuard product and ask for assistance in determining the trigger for and their opinion of the risk and suggestion(s) for resolving this.  (The diagnostic is similar to a common phrase over in Windows Server configurations, so I'm wondering if the system might have misidentified the OS X Server systems.)  QualysGuard support likely knows the tool the best, after all. 
  Failing resolution of that support request to QualysGuard, I'd suppress this diagnostic, ignore it, or potentially remove the tool.
  Background: SSL is a fundamental security protocol, and very commonly used on the Internet.  SSL is a very common approach used to secure TCP connections against monitoring, spoofing and various other attacks.  While there are various attacks against SSL and fundamental questions around the security of the certificate chain of trust, SSL is still the best available choice.
  I am generally somewhat skeptical around products with "enterprise" or "suite" in the name, and of tools that "monitor", "tune", "optimize" or "secure" systems.   Some of these tools can be good and useful.  Many of these tools can generate spurious messages or odd misbehaviors or bugs; errors on one system or one configuration that might not be applicable to the current case being detected and reported; a "false positive".  Other tools spend substantial time and effort tossing blizzards of inconsequential messages into logs and dialog boxes, seemingly in an effort to prove their worth, sometimes causing stability problems, or just getting in the way. 
  Put another way, I prefer to be skeptical around all of these sorts of tools.

• Getting info from cert using SSL

  Hello,
  is there any way to get some info about cert. at the WS side?
  Thanks

  You can overwrite the forms login with your own to determine whith what privileges to login.
  You can pass parameters to form when you invoke it on the command line.
  So you can basically get the infoemation from the webseal and pass it to forms on the command line that invokes it.
  To generate a dynamic command line in your html form that invoke forms you can use a servlet that will generate the html to invoke the forms.