Which LDAP attribute is connected with isUserAccountLocked() method?
Hello,
In IUserAccount object there is an API method isUserAccountLocked()
Can anyone tell against which LDAP attribute is the check being made on or is it an internal UME DB attribute?
Hi Roy,
isUserAccountLocked() will check in the UME DB attribute. I thing isUserAccountLocked fetching the data belogs to the ume.ldap.blocked_accounts.
refer to http://help.sap.com/saphelp_nw2004s/helpdata/en/af/0cfc3f09c2c442e10000000a1550b0/content.htm
Regards
AJ
Similar Messages
-
Which LDAP attribute is utilized by CertStore to retrive certifications?
Hi
thank you for reading my post
I find that CertStore and LDAPCertStoreParameters and X509CertSelector and X509CRLSelector can be used to extract certifications from LDAP.
What i can not figure out is,
which LDAP attribute uses by these class to extract certifications?
for example we have person class in LDAP which one of its attribute can be userCertificate, how does these class figure out what is name of these attribute?
maybe they uses some other mechanism, and my assumption are not correct?
ThanksHi
Thank you for your reply.
Imagine that i have the following requirement, what could be possible steps to implement it?
I need to check and see whether a digital certification belongs to a user or not.
user will gives it uid and digital certification.
here is one way that i have in my mind:
-Search the LDAP for that user.
-Extract the userCertificate attribute as binary
-Create a X509 certificate from it
-Compare it with what user provides.
Is it a good way?
Does all of the above steps are do-able?
Do you have suggestion to improve the procedure or make it more standard ?
Thanks -
Which is better to connect with MIDlet? jsp or servlets
Hello to all,
I am Vishnu from India. I have tried connecting MIDlet with jsp but not using servlet. Few asked me to use servlet to connect to MIDlet.
I want to connect to database (sql server) from MIDlet.
I do not know which should I go for ,
what should i choose whether jsp or servlet?
If I choose servlet, can i create new servlets on the run, is it possible?
Thank you in advance,hey vishnu,
can u please tell me how to Connect a servlet/jsp using a midlet.. i also want to connect SQL Server .
i have one application on JSP and i want tht application to run on j2me platform.
i hope u ll help me.
thnx
Ahmed -
How to learn which iTunes Library is connected with my devices?
I do not love it when my Mac deletes files.
KarlYou'd have to check the LibraryPersistent IDs of each library against the one on the device. There is a webpage here that claims to be able to extract your ID by processing one of the device backup files, info.plist. It's probably safe, but a quick look at the file we're going to upload shows that it includes the device IMEI & phone numbers, a list of Wi-Fi syncing profiles, info on iBooks, Media and Apps synced to the device along with the presumably obscured ID we want and who knows what else? There is, I suppose, a risk that the data could include AppleID info so I'm somewhat reluctant to test the site.
According to one posting the data should also exist in /private/var/mobile/Media/iTunes_Control/iTunes/iTunesPrefs.plist on the device but I'm having a hard time finding an app to explore the my iPhone's file system and there is no certainty the value is human readable there either.
It's not too hard to read the LibraryPersistentID of an iTunes library from the accompanying XML file (line 12 in plain text for me), but reading every one you have on every machine might take some time.
OK, in the interests of confirming whether the site does what it claims to I'm going to test my iPad backup's Info.plist file. If my AppleID gets hijacked at least it was in a good cause.
Bingo! The website brought back:
<key>Library Persistent ID</key><string>CCF046191585EA85</string> which matches
<key>Library Persistent ID</key><string>CCF046191585EA85</string> from my xml.
tt2 -
I'm giving away my old iPod touch so I want to restore everything, deleting all content but I also have an iPhone connected to the same iTunes account on my laptop. If I restore all music, setting, apps, etc. will it also erase all those things from my iTunes on my laptop?
No. Erasing your iPod wiol not effect iTunes on the computer.
-
How to associate LDAP attributes with the subject?
I am writing a custom role mapper and want to determine the roles of the subject
depending on values of LDAP attributes. Is it posssible to associate LDAP attributes
with the Subject?
We use iPlanet and hence I have configured iPlanetAuthenticator as the Authentication
Provider. Is it possible to configure iPlanetAuthenticator so that the LDAP attribute
values are associated with the subject? Or is it possible to extend iPlanetAuthenticator
for this purpose?
Is there a way to do this other than writing my own AuthenticationProvider?
Thanks in advance.
Jay"Jay" <[email protected]> wrote in message
news:3f1d77f7$[email protected]..
>
I am writing a custom role mapper and want to determine the roles of thesubject
depending on values of LDAP attributes. Is it posssible to associate LDAPattributes
with the Subject?
Which LDAP attributes are you interested in? We can look at adding this
functionality
if we have more info.
We use iPlanet and hence I have configured iPlanetAuthenticator as theAuthentication
Provider. Is it possible to configure iPlanetAuthenticator so that theLDAP attribute
values are associated with the subject? Or is it possible to extendiPlanetAuthenticator
for this purpose?
There is no way to extend the provider.
Is there a way to do this other than writing my ownAuthenticationProvider?
>
You may be able to write a separate provider that works in conjunction with
the
authentication provider. It would add the principals with the ldap
attributes.
Thanks in advance.
Jay -
ISE 1.1.1. and additional LDAP attribute retrieval
Hello All,
I'm authenticating users against Active Directory and want to also check additionals attributes from LDAP. In ACS 5.3. it was possible to set this up via External Identity Sequence, but in ISE I don't see this possibility. I can set sequence only for authentication, but not for additional attribute retrieval.
When I set a condition in a policy that an LDAP attribute must match with some value, the attribute is not retrieved and autorization ends on default Deny Access.
Can anyone help me how this can be set on ISE?
Thanks!
Regards
Karel NavratilYes that's what I've tried as I wrote in my first post, but the ISE does not retrieve the attribute from LDAP
Here are some screenshots:
authorization rule:
ldap attribute in external identity source:
and the logs:
11001 Received RADIUS Access-Request
11017 RADIUS created a new session
11105 Request received from a device that is configured with KeyWrap in ISE.
Evaluating Service Selection Policy
15048 Queried PIP
15048 Queried PIP
15004 Matched rule
11507 Extracted EAP-Response/Identity
12100 Prepared EAP-Request proposing EAP-FAST with challenge
11006 Returned RADIUS Access-Challenge
11001 Received RADIUS Access-Request
11018 RADIUS is re-using an existing session
11105 Request received from a device that is configured with KeyWrap in ISE.
12102 Extracted EAP-Response containing EAP-FAST challenge-response and accepting EAP-FAST as negotiated
12800 Extracted first TLS record; TLS handshake started
12805 Extracted TLS ClientHello message
12806 Prepared TLS ServerHello message
12807 Prepared TLS Certificate message
12810 Prepared TLS ServerDone message
12105 Prepared EAP-Request with another EAP-FAST challenge
11006 Returned RADIUS Access-Challenge
11001 Received RADIUS Access-Request
11018 RADIUS is re-using an existing session
11105 Request received from a device that is configured with KeyWrap in ISE.
12104 Extracted EAP-Response containing EAP-FAST challenge-response
12105 Prepared EAP-Request with another EAP-FAST challenge
11006 Returned RADIUS Access-Challenge
11001 Received RADIUS Access-Request
11018 RADIUS is re-using an existing session
11105 Request received from a device that is configured with KeyWrap in ISE.
12104 Extracted EAP-Response containing EAP-FAST challenge-response
12812 Extracted TLS ClientKeyExchange message
12804 Extracted TLS Finished message
12801 Prepared TLS ChangeCipherSpec message
12802 Prepared TLS Finished message
12816 TLS handshake succeeded
12149 EAP-FAST built authenticated tunnel for purpose of PAC provisioning
12105 Prepared EAP-Request with another EAP-FAST challenge
11006 Returned RADIUS Access-Challenge
11001 Received RADIUS Access-Request
11018 RADIUS is re-using an existing session
11105 Request received from a device that is configured with KeyWrap in ISE.
12104 Extracted EAP-Response containing EAP-FAST challenge-response
12209 Starting EAP chaining
12218 Selected identity type 'User'
12125 EAP-FAST inner method started
11521 Prepared EAP-Request/Identity for inner EAP method
12105 Prepared EAP-Request with another EAP-FAST challenge
11006 Returned RADIUS Access-Challenge
11001 Received RADIUS Access-Request
11018 RADIUS is re-using an existing session
11105 Request received from a device that is configured with KeyWrap in ISE.
12104 Extracted EAP-Response containing EAP-FAST challenge-response
12212 Identity type provided by client is equal to requested
11522 Extracted EAP-Response/Identity for inner EAP method
11806 Prepared EAP-Request for inner method proposing EAP-MSCHAP with challenge
12105 Prepared EAP-Request with another EAP-FAST challenge
11006 Returned RADIUS Access-Challenge
11001 Received RADIUS Access-Request
11018 RADIUS is re-using an existing session
11105 Request received from a device that is configured with KeyWrap in ISE.
12104 Extracted EAP-Response containing EAP-FAST challenge-response
11808 Extracted EAP-Response containing EAP-MSCHAP challenge-response for inner method and accepting EAP-MSCHAP as negotiated
Evaluating Identity Policy
15006 Matched Default Rule
15013 Selected Identity Store - Internal Endpoints
22043 Current Identity Store does not support the authentication method; Skipping it
24210 Looking up User in Internal Users IDStore - test,host/test-pc
24216 The user is not found in the internal users identity store
24430 Authenticating user against Active Directory
24402 User authentication against Active Directory succeeded
22037 Authentication Passed
11824 EAP-MSCHAP authentication attempt passed
12105 Prepared EAP-Request with another EAP-FAST challenge
11006 Returned RADIUS Access-Challenge
11001 Received RADIUS Access-Request
11018 RADIUS is re-using an existing session
11105 Request received from a device that is configured with KeyWrap in ISE.
12104 Extracted EAP-Response containing EAP-FAST challenge-response
11810 Extracted EAP-Response for inner method containing MSCHAP challenge-response
11814 Inner EAP-MSCHAP authentication succeeded
11519 Prepared EAP-Success for inner EAP method
12128 EAP-FAST inner method finished successfully
12105 Prepared EAP-Request with another EAP-FAST challenge
11006 Returned RADIUS Access-Challenge
11001 Received RADIUS Access-Request
11018 RADIUS is re-using an existing session
11105 Request received from a device that is configured with KeyWrap in ISE.
12104 Extracted EAP-Response containing EAP-FAST challenge-response
12126 EAP-FAST cryptobinding verification passed
12200 Approved EAP-FAST client Tunnel PAC request
12219 Selected identity type 'Machine'
12125 EAP-FAST inner method started
11521 Prepared EAP-Request/Identity for inner EAP method
12105 Prepared EAP-Request with another EAP-FAST challenge
11006 Returned RADIUS Access-Challenge
11001 Received RADIUS Access-Request
11018 RADIUS is re-using an existing session
11105 Request received from a device that is configured with KeyWrap in ISE.
12104 Extracted EAP-Response containing EAP-FAST challenge-response
12212 Identity type provided by client is equal to requested
11522 Extracted EAP-Response/Identity for inner EAP method
11806 Prepared EAP-Request for inner method proposing EAP-MSCHAP with challenge
12105 Prepared EAP-Request with another EAP-FAST challenge
11006 Returned RADIUS Access-Challenge
11001 Received RADIUS Access-Request
11018 RADIUS is re-using an existing session
11105 Request received from a device that is configured with KeyWrap in ISE.
12104 Extracted EAP-Response containing EAP-FAST challenge-response
11808 Extracted EAP-Response containing EAP-MSCHAP challenge-response for inner method and accepting EAP-MSCHAP as negotiated
Evaluating Identity Policy
11055 User name change detected for the session. Attributes for the session will be removed from the cache
15006 Matched Default Rule
15013 Selected Identity Store - Internal Endpoints
22043 Current Identity Store does not support the authentication method; Skipping it
24210 Looking up User in Internal Users IDStore - test,host/test-pc
24216 The user is not found in the internal users identity store
24431 Authenticating machine against Active Directory
24470 Machine authentication against Active Directory is successful
22037 Authentication Passed
11824 EAP-MSCHAP authentication attempt passed
12105 Prepared EAP-Request with another EAP-FAST challenge
11006 Returned RADIUS Access-Challenge
11001 Received RADIUS Access-Request
11018 RADIUS is re-using an existing session
11105 Request received from a device that is configured with KeyWrap in ISE.
12104 Extracted EAP-Response containing EAP-FAST challenge-response
11810 Extracted EAP-Response for inner method containing MSCHAP challenge-response
11814 Inner EAP-MSCHAP authentication succeeded
11519 Prepared EAP-Success for inner EAP method
12128 EAP-FAST inner method finished successfully
12105 Prepared EAP-Request with another EAP-FAST challenge
11006 Returned RADIUS Access-Challenge
11001 Received RADIUS Access-Request
11018 RADIUS is re-using an existing session
11105 Request received from a device that is configured with KeyWrap in ISE.
12104 Extracted EAP-Response containing EAP-FAST challenge-response
12126 EAP-FAST cryptobinding verification passed
12201 Approved EAP-FAST client Machine PAC request
Evaluating Authorization Policy
15004 Matched rule
15016 Selected Authorization Profile - DenyAccess
15039 Rejected per authorization profile
12855 PAC was not sent due to authorization failure
12105 Prepared EAP-Request with another EAP-FAST challenge
11006 Returned RADIUS Access-Challenge
11001 Received RADIUS Access-Request
11018 RADIUS is re-using an existing session
11105 Request received from a device that is configured with KeyWrap in ISE.
12104 Extracted EAP-Response containing EAP-FAST challenge-response
11514 Unexpectedly received empty TLS message; treating as a rejection by the client
12512 Treat the unexpected TLS acknowledge message as a rejection from the client
11504 Prepared EAP-Failure
11003 Returned RADIUS Access-Reject
So no any information that ISE tries to retrieve something from LDAP.
Regards
Karel -
How to find out phone connected with a PC
Is there a way to programatically find out which IP phone is connected with a given PC? We have a need where an application will be installed on each PC, but instead of having the user manually enter the information about the PC, we want auto detect the phone connected with that PC.
Old topic, but if anyone is interested I played around and got something working in VS 2005/C# using SharpPcap and the PacketCDP class from an app on codeproject called Pacanal. I had to make some changes to the PacketCDP.cs code to get it to work, but if you can get that far I believe it was relatively minor. The app I made sniffed the CDP packet for the phone devicename and then used that to call a CUAE app to log a phone into extension mobility. Here's some partial code:
PcapDeviceList devices = SharpPcap.GetAllDevices();
PcapDevice device = devices[i];
device.PcapOnPacketArrival += new SharpPcap.PacketArrivalEvent( device_PcapOnPacketArrival );
device.PcapOpen(true, 1000);
string filter = "ether host 01:00:0c:cc:cc:cc";
device.PcapSetFilter( filter );
device.PcapStartCapture();
private static void device_PcapOnPacketArrival(object sender, Packet packet)
EthernetPacket eth = (EthernetPacket)packet;
returnbool = PacketCDP.Parser(myTreeNode.Nodes, eth.Data, index, LItem, ref deviceName);
HttpWebRequest request = (HttpWebRequest)
WebRequest.Create("http://10.10.50.75:8000/emLogin?phone=" + deviceName + "&user=testuser"); -
Problem with getting LDAP attributes on ISE when EAPChaining is enabled
Hi All,
has anybody and idea how to set LDAP attributes retrieval with EAPChaining enabled?
My scenarios is:
- user with AnyConnect (EAP-FAST) connects to WLAN and sends it's credentials
- ISE authenticates username and password against Active Directory
- ISE should check if the same userid contains in LDAP Directory (not AD, different store) special attribute which controls access to our WLAN
- If the attribute is found, then authorization profile is matched.
This works when I disable EAP-Chaining Policy -> Policy Elements -> Results -> Authentication -> Allowed Protocols ...
In logs I've found that the user was not found in LDAP, but the user exists.
Maybe the workaround can be if just user from EAPChaining is used and not also the hostname, then it could match. But I cannot find any similar parameter which returns only user.
Does anybody have an idea how to solve this?
Thanks!
K.Hi,
This seems like a corner issue, because eap-fast with ldap is not supported. LDAP as the protocol doest support hash based authentication hence the reason ISE is failing to hit the ldap database.
Referencing acs material since ise docs are not complete:
http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.2/user/guide/eap_pap_phase.html
Sent from Cisco Technical Support Android App -
LDAP connection with windows catalogue server
Hi Gurus,
I want your help for below issue
Requirement is there is one customized table which will be accessed by SM30, user will enter user id and its email address should come automatically from windows global catalogue server(Non-SAP system), For this i referred one doc attached below
http://santy.wdfiles.com/local--files/sap-pages/SAP_User_Mgmt_Via_LDAP.pdf
According to this seems RFC creation, LDAP connector configuration, and LDAP server configuration required in SAP, i have asked basis team to do the same.
Now my question is is this the responsibility of Basis team to configure LDAP connector and LDAP server also how i can access LDAP directory through ABAP program?
please help me step by step if possible.Reinfire,
I tried your terminal window patch but it failed to solve my issue. Most people seem to be trying to connect to NAS devices from their Macs. In my case, all my data is on a Drobo hanging off my Mac Pro. I've been using SMB to share video from my Mac to both a Boxee Box and a Raspberry Pi running Openelec (XBMC). While both these devices can handle afp, the old Boxee Box is less than astute with afp so SMB was the method of choice for stability.
Anyway, both devices can no longer see the SMB shares off the Mac Pro, even after your patch. After runnig you patch, I restarted and the nsmb.conf file is created. But, no luck on connecting with these apparently non SMB2 devices.
I can change all my shares over the afp but this will take a lot of button pushing that I'd rather not do. Any suggestions for this scenario? -
Ad hoc analysis not available in Smart View Panel after connect with LDAP
Hi everyone,
Ad hoc analysis is not available when connecting to Smart View in excel with LDAP users . However with native users it works properly.
Product:
Hyperion 11.1.2.2 (Essbase, Shared Services)
log: appserver.log:
[2013-10-07T20:26:01.280+01:00] [AnalyticProviderServices0] [ERROR] [] [oracle.EPMOHPS] [tid: 44] [ecid: disabled,0] [APP: APS] [SID: 78068AE3305D7D9141156C174F65E4] [[
java.lang.reflect.InvocationTargetException
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37)
at java.lang.reflect.Method.invoke(Method.java:611)
at org.apache.commons.beanutils.MethodUtils.invokeMethod(MethodUtils.java:282)
at org.apache.commons.digester.CallMethodRule.end(CallMethodRule.java:626)
at org.apache.commons.digester.Rule.end(Rule.java:253)
at org.apache.commons.digester.Digester.endElement(Digester.java:1222)
at org.apache.xerces.parsers.AbstractSAXParser.endElement(Unknown Source)
at org.apache.xerces.impl.XMLDocumentFragmentScannerImpl.scanEndElement(Unknown Source)
at org.apache.xerces.impl.XMLDocumentFragmentScannerImpl$FragmentContentDispatcher.dispatch(Unknown Source)
at org.apache.xerces.impl.XMLDocumentFragmentScannerImpl.scanDocument(Unknown Source)
at org.apache.xerces.parsers.XML11Configuration.parse(Unknown Source)
at org.apache.xerces.parsers.XML11Configuration.parse(Unknown Source)
at org.apache.xerces.parsers.XMLParser.parse(Unknown Source)
at org.apache.xerces.parsers.AbstractSAXParser.parse(Unknown Source)
at org.apache.xerces.jaxp.SAXParserImpl$JAXPSAXParser.parse(Unknown Source)
at org.apache.commons.digester.Digester.parse(Digester.java:1785)
at com.essbase.smartview.xml.XmlHandler.invoke(Unknown Source)
at com.essbase.smartview.xml.XmlHandler.invoke(Unknown Source)
at com.essbase.smartview.xml.XmlHandler.invoke(Unknown Source)
at com.essbase.smartview.xml.EssbaseSmartView.doPost(Unknown Source)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:738)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:831)
at com.ibm.ws.webcontainer.servlet.ServletWrapper.service(ServletWrapper.java:1657)
at com.ibm.ws.webcontainer.servlet.ServletWrapper.service(ServletWrapper.java:1597)
at com.ibm.ws.webcontainer.filter.WebAppFilterChain.doFilter(WebAppFilterChain.java:131)
at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:119)
at java.security.AccessController.doPrivileged(AccessController.java:310)
at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:315)
at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUtil.java:442)
at oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.java:103)
at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:171)
at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:71)
at com.ibm.ws.webcontainer.filter.FilterInstanceWrapper.doFilter(FilterInstanceWrapper.java:188)
at com.ibm.ws.webcontainer.filter.WebAppFilterChain.doFilter(WebAppFilterChain.java:116)
at com.ibm.ws.webcontainer.filter.WebAppFilterChain._doFilter(WebAppFilterChain.java:77)
at com.ibm.ws.webcontainer.filter.WebAppFilterManager.doFilter(WebAppFilterManager.java:908)
at com.ibm.ws.webcontainer.servlet.ServletWrapper.handleRequest(ServletWrapper.java:934)
at com.ibm.ws.webcontainer.servlet.ServletWrapper.handleRequest(ServletWrapper.java:502)
at com.ibm.ws.webcontainer.servlet.ServletWrapperImpl.handleRequest(ServletWrapperImpl.java:181)
at com.ibm.ws.webcontainer.servlet.CacheServletWrapper.handleRequest(CacheServletWrapper.java:91)
at com.ibm.ws.webcontainer.WebContainer.handleRequest(WebContainer.java:864)
at com.ibm.ws.webcontainer.WSWebContainer.handleRequest(WSWebContainer.java:1592)
at com.ibm.ws.webcontainer.channel.WCChannelLink.ready(WCChannelLink.java:186)
at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleDiscrimination(HttpInboundLink.java:452)
at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleNewRequest(HttpInboundLink.java:511)
at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.processRequest(HttpInboundLink.java:305)
at com.ibm.ws.http.channel.inbound.impl.HttpICLReadCallback.complete(HttpICLReadCallback.java:83)
at com.ibm.ws.tcp.channel.impl.AioReadCompletionListener.futureCompleted(AioReadCompletionListener.java:165)
at com.ibm.io.async.AbstractAsyncFuture.invokeCallback(AbstractAsyncFuture.java:217)
at com.ibm.io.async.AsyncChannelFuture.fireCompletionActions(AsyncChannelFuture.java:161)
at com.ibm.io.async.AsyncFuture.completed(AsyncFuture.java:138)
at com.ibm.io.async.ResultHandler.complete(ResultHandler.java:204)
at com.ibm.io.async.ResultHandler.runEventProcessingLoop(ResultHandler.java:775)
at com.ibm.io.async.ResultHandler$2.run(ResultHandler.java:905)
at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:1646)
Caused by: java.lang.NoClassDefFoundError: org.apache.commons.pool.KeyedPoolableObjectFactory
at java.lang.J9VMInternals.verifyImpl(Native Method)
at java.lang.J9VMInternals.verify(J9VMInternals.java:72)
at java.lang.J9VMInternals.initialize(J9VMInternals.java:134)
at com.hyperion.css.spi.impl.ldap.JNDIHelper.getURLContext(JNDIHelper.java:355)
at com.hyperion.css.spi.impl.ldap.JNDIHelper.getURLContext(JNDIHelper.java:342)
at com.hyperion.css.spi.impl.ldap.LDAPProvider.authenticate(LDAPProvider.java:356)
at com.hyperion.css.facade.impl.CSSAbstractAuthenticator.authenticateUser(CSSAbstractAuthenticator.java:613)
at com.hyperion.css.facade.impl.CSSAPIAuthenticationImpl.authenticate(CSSAPIAuthenticationImpl.java:69)
at com.hyperion.css.facade.impl.CSSAPIImpl.authenticate(CSSAPIImpl.java:102)
at com.hyperion.css.facade.CSSAPIFacade.authenticate(CSSAPIFacade.java:119)
at com.hyperion.dsf.server.framework.HyperionCss.authenticate(Unknown Source)
at com.hyperion.dsf.server.framework.HyperionCss.authenticateUser(Unknown Source)
at com.essbase.smartview.provider.EdsProviderImpl.getCssToken(Unknown Source)
at com.essbase.smartview.admin.CSSProvider.initializeAndRetrieveCssToken(Unknown Source)
at com.essbase.smartview.admin.EssbaseProvider.openApplication(Unknown Source)
at com.essbase.smartview.admin.ApsHandler.openApplication(Unknown Source)
... 57 more
Caused by: java.lang.ClassNotFoundException: org.apache.commons.pool.KeyedPoolableObjectFactory
at java.net.URLClassLoader.findClass(URLClassLoader.java:434)
at com.ibm.ws.bootstrap.ExtClassLoader.findClass(ExtClassLoader.java:191)
at java.lang.ClassLoader.loadClass(ClassLoader.java:660)
at com.ibm.ws.bootstrap.ExtClassLoader.loadClass(ExtClassLoader.java:111)
at java.lang.ClassLoader.loadClass(ClassLoader.java:626)
at com.ibm.ws.classloader.ProtectionClassLoader.loadClass(ProtectionClassLoader.java:62)
at com.ibm.ws.classloader.ProtectionClassLoader.loadClass(ProtectionClassLoader.java:58)
at com.ibm.ws.classloader.CompoundClassLoader.loadClass(CompoundClassLoader.java:511)
at java.lang.ClassLoader.loadClass(ClassLoader.java:626)
... 73 more
Thanks in advanceHi everyone,
Ad hoc analysis is not available when connecting to Smart View in excel with LDAP users . However with native users it works properly.
Product:
Hyperion 11.1.2.2 (Essbase, Shared Services)
log: appserver.log:
[2013-10-07T20:26:01.280+01:00] [AnalyticProviderServices0] [ERROR] [] [oracle.EPMOHPS] [tid: 44] [ecid: disabled,0] [APP: APS] [SID: 78068AE3305D7D9141156C174F65E4] [[
java.lang.reflect.InvocationTargetException
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:60)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37)
at java.lang.reflect.Method.invoke(Method.java:611)
at org.apache.commons.beanutils.MethodUtils.invokeMethod(MethodUtils.java:282)
at org.apache.commons.digester.CallMethodRule.end(CallMethodRule.java:626)
at org.apache.commons.digester.Rule.end(Rule.java:253)
at org.apache.commons.digester.Digester.endElement(Digester.java:1222)
at org.apache.xerces.parsers.AbstractSAXParser.endElement(Unknown Source)
at org.apache.xerces.impl.XMLDocumentFragmentScannerImpl.scanEndElement(Unknown Source)
at org.apache.xerces.impl.XMLDocumentFragmentScannerImpl$FragmentContentDispatcher.dispatch(Unknown Source)
at org.apache.xerces.impl.XMLDocumentFragmentScannerImpl.scanDocument(Unknown Source)
at org.apache.xerces.parsers.XML11Configuration.parse(Unknown Source)
at org.apache.xerces.parsers.XML11Configuration.parse(Unknown Source)
at org.apache.xerces.parsers.XMLParser.parse(Unknown Source)
at org.apache.xerces.parsers.AbstractSAXParser.parse(Unknown Source)
at org.apache.xerces.jaxp.SAXParserImpl$JAXPSAXParser.parse(Unknown Source)
at org.apache.commons.digester.Digester.parse(Digester.java:1785)
at com.essbase.smartview.xml.XmlHandler.invoke(Unknown Source)
at com.essbase.smartview.xml.XmlHandler.invoke(Unknown Source)
at com.essbase.smartview.xml.XmlHandler.invoke(Unknown Source)
at com.essbase.smartview.xml.EssbaseSmartView.doPost(Unknown Source)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:738)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:831)
at com.ibm.ws.webcontainer.servlet.ServletWrapper.service(ServletWrapper.java:1657)
at com.ibm.ws.webcontainer.servlet.ServletWrapper.service(ServletWrapper.java:1597)
at com.ibm.ws.webcontainer.filter.WebAppFilterChain.doFilter(WebAppFilterChain.java:131)
at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:119)
at java.security.AccessController.doPrivileged(AccessController.java:310)
at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:315)
at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUtil.java:442)
at oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.java:103)
at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:171)
at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:71)
at com.ibm.ws.webcontainer.filter.FilterInstanceWrapper.doFilter(FilterInstanceWrapper.java:188)
at com.ibm.ws.webcontainer.filter.WebAppFilterChain.doFilter(WebAppFilterChain.java:116)
at com.ibm.ws.webcontainer.filter.WebAppFilterChain._doFilter(WebAppFilterChain.java:77)
at com.ibm.ws.webcontainer.filter.WebAppFilterManager.doFilter(WebAppFilterManager.java:908)
at com.ibm.ws.webcontainer.servlet.ServletWrapper.handleRequest(ServletWrapper.java:934)
at com.ibm.ws.webcontainer.servlet.ServletWrapper.handleRequest(ServletWrapper.java:502)
at com.ibm.ws.webcontainer.servlet.ServletWrapperImpl.handleRequest(ServletWrapperImpl.java:181)
at com.ibm.ws.webcontainer.servlet.CacheServletWrapper.handleRequest(CacheServletWrapper.java:91)
at com.ibm.ws.webcontainer.WebContainer.handleRequest(WebContainer.java:864)
at com.ibm.ws.webcontainer.WSWebContainer.handleRequest(WSWebContainer.java:1592)
at com.ibm.ws.webcontainer.channel.WCChannelLink.ready(WCChannelLink.java:186)
at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleDiscrimination(HttpInboundLink.java:452)
at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleNewRequest(HttpInboundLink.java:511)
at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.processRequest(HttpInboundLink.java:305)
at com.ibm.ws.http.channel.inbound.impl.HttpICLReadCallback.complete(HttpICLReadCallback.java:83)
at com.ibm.ws.tcp.channel.impl.AioReadCompletionListener.futureCompleted(AioReadCompletionListener.java:165)
at com.ibm.io.async.AbstractAsyncFuture.invokeCallback(AbstractAsyncFuture.java:217)
at com.ibm.io.async.AsyncChannelFuture.fireCompletionActions(AsyncChannelFuture.java:161)
at com.ibm.io.async.AsyncFuture.completed(AsyncFuture.java:138)
at com.ibm.io.async.ResultHandler.complete(ResultHandler.java:204)
at com.ibm.io.async.ResultHandler.runEventProcessingLoop(ResultHandler.java:775)
at com.ibm.io.async.ResultHandler$2.run(ResultHandler.java:905)
at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:1646)
Caused by: java.lang.NoClassDefFoundError: org.apache.commons.pool.KeyedPoolableObjectFactory
at java.lang.J9VMInternals.verifyImpl(Native Method)
at java.lang.J9VMInternals.verify(J9VMInternals.java:72)
at java.lang.J9VMInternals.initialize(J9VMInternals.java:134)
at com.hyperion.css.spi.impl.ldap.JNDIHelper.getURLContext(JNDIHelper.java:355)
at com.hyperion.css.spi.impl.ldap.JNDIHelper.getURLContext(JNDIHelper.java:342)
at com.hyperion.css.spi.impl.ldap.LDAPProvider.authenticate(LDAPProvider.java:356)
at com.hyperion.css.facade.impl.CSSAbstractAuthenticator.authenticateUser(CSSAbstractAuthenticator.java:613)
at com.hyperion.css.facade.impl.CSSAPIAuthenticationImpl.authenticate(CSSAPIAuthenticationImpl.java:69)
at com.hyperion.css.facade.impl.CSSAPIImpl.authenticate(CSSAPIImpl.java:102)
at com.hyperion.css.facade.CSSAPIFacade.authenticate(CSSAPIFacade.java:119)
at com.hyperion.dsf.server.framework.HyperionCss.authenticate(Unknown Source)
at com.hyperion.dsf.server.framework.HyperionCss.authenticateUser(Unknown Source)
at com.essbase.smartview.provider.EdsProviderImpl.getCssToken(Unknown Source)
at com.essbase.smartview.admin.CSSProvider.initializeAndRetrieveCssToken(Unknown Source)
at com.essbase.smartview.admin.EssbaseProvider.openApplication(Unknown Source)
at com.essbase.smartview.admin.ApsHandler.openApplication(Unknown Source)
... 57 more
Caused by: java.lang.ClassNotFoundException: org.apache.commons.pool.KeyedPoolableObjectFactory
at java.net.URLClassLoader.findClass(URLClassLoader.java:434)
at com.ibm.ws.bootstrap.ExtClassLoader.findClass(ExtClassLoader.java:191)
at java.lang.ClassLoader.loadClass(ClassLoader.java:660)
at com.ibm.ws.bootstrap.ExtClassLoader.loadClass(ExtClassLoader.java:111)
at java.lang.ClassLoader.loadClass(ClassLoader.java:626)
at com.ibm.ws.classloader.ProtectionClassLoader.loadClass(ProtectionClassLoader.java:62)
at com.ibm.ws.classloader.ProtectionClassLoader.loadClass(ProtectionClassLoader.java:58)
at com.ibm.ws.classloader.CompoundClassLoader.loadClass(CompoundClassLoader.java:511)
at java.lang.ClassLoader.loadClass(ClassLoader.java:626)
... 73 more
Thanks in advance -
Proces chain decision with formula method: which proces chain is performing
I want to know which chain is processing while i am in a decision. I made a decision in a proces chain. From that decision i call a formula. In that formula i call a method which i defined myself (client specific fomula/method). Now i want to know from which proces chain this method has been called. I tried the following ABAP statements in this method:
IMPORT instance TO l_instance
log_id TO l_logid
chain_id TO l_chainid
FROM DATABASE rspc_buffer(ab)
ID i_chain.
I found this statements in another SDN thread and from experience i know it works fine when you process normal ABAP in your proces chain.
Unfortunately this does not work in a method from a decision. Maybe i need to access another table?
Any suggestions?Ok, if you worry about that, let's do it in series...
you create a local chain per IP/DTP (with link "if succesfull")...so you will have 10 local chains
then create a big chain with these 10 local chain (with link "always")
so, if a IP (eg of loacl chain 1) fails the DTP will not be triggered, the local chain 1 will go to status red, but as you put between the local chain option "always", the local chain 2 will start...and so on
For inforamtion, I would put the attribute change run for the specific attribute in the local chain...this way you will only activate data of succesfull IP/DTP's...
this way you should achieve what you aim for...
M. -
OMBPlus 10.1: retrieve to which attribute an attribute is connected
Hi,
With which command can I retrieve the attribute (and group and operator) that a given attribute is connected to? For the life of me, I cannot find it in the Scripting Reference, this model of accessability.
Regards,
Jaap.OMBRETRIEVE MAPPING 'mapping' OPERATOR 'operator' GROUP 'group' GET ATTRIBUTES CONNECTED TO/FROM ATTRIBUTE 'attribute' OF GROUP 'group' OF OPERATOR 'operator'
First you need to retrieve:
-'mapping'
-'operator' -- source
-'group' --source
-'operator' --target
-group --target
-'attribute' --source/target -
Untrusted server cert chain - while connecting with ldap
Hi All,
I am getting the following error while running a standalone java program in windows 2000+jdk1.3 environment to connect with LDAP.
javax.naming.CommunicationException: hostname:636 [Root exception is ja
vax.net.ssl.SSLException: untrusted server cert chain]
javax.naming.CommunicationException: hostname:636. Root exception is j
avax.net.ssl.SSLException: untrusted server cert chain
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA12275)
at com.sun.net.ssl.internal.ssl.ClientHandshaker.a(DashoA12275)
at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(DashoA12
275)
at com.sun.net.ssl.internal.ssl.Handshaker.process_record(DashoA12275)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA12275)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA12275)
at com.sun.net.ssl.internal.ssl.AppOutputStream.write(DashoA12275)
at java.io.OutputStream.write(Unknown Source)
at com.sun.jndi.ldap.Connection.<init>(Unknown Source)
at com.sun.jndi.ldap.LdapClient.<init>(Unknown Source)
at com.sun.jndi.ldap.LdapCtx.connect(Unknown Source)
at com.sun.jndi.ldap.LdapCtx.<init>(Unknown Source)
at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(Unknown Source)
at javax.naming.spi.NamingManager.getInitialContext(Unknown Source)
at javax.naming.InitialContext.getDefaultInitCtx(Unknown Source)
at javax.naming.InitialContext.init(Unknown Source)
at javax.naming.InitialContext.<init>(Unknown Source)
at javax.naming.directory.InitialDirContext.<init>(Unknown Source)
at Test2.getProxyDirContext(Test2.java:66)
at Test2.main(Test2.java:40)
Any help would be appreciated
Thanks in Advance
SomuThis got resolved when in the code the following
System.setProperty("javax.net.ssl.tmrustStore", CertFileName);
where cert file name is the filename with complete path.the file is a CA certificate of the LDAP server
in X509 format -
I have a problem to connect with FaceTime. I am using OS X 10.9.1 on a Mac PowerBook which is 4 weeks old. I can connect on iPhone but not from my computer. Does anyone have a similar problem???
The warranty entitles you to complimentary phone support for the first 90 days of ownership.
Maybe you are looking for
-
Error while saving communication channel
Hi, build up the sample Adapter out of the book "Mastering XI Programming". After deploying it on server, I try to create a communication channel with this adapter. All other PCK objects are saveable, but when I try to save or delete the channel with
-
How to redirect user on or before page load
Hi, what is best practice for redirecting a user when he opens a specific page. I have a solution with a custom master page and several webparts. When a user opens my solution (every page based on the same master). What i need to do now is, when the
-
Error Report/Crash Ind CS3/Pagermaker 7.0/can't PDF/or use distiller
In both Adobe Indesign and Adobe Pagemaker I get an error saying....Indesign.exe has encountered a problem and needs to close. We are sorry for the inconvenience. "If you were in the middle of something, the information you were working on might be l
-
No metadata found for metadata object "/oracle/apps/hcm/common/core/publicM
Hi Folks - I am getting the below error when I try to run the HcmCompWorkbenchWorkarea.jspx in the Fusion COmpensation Module, locally from the JDeveloper Customization Role. I simply created a FUsion Customization APplication with a Customization,Mo
-
10-bit color works in LR4 devel module but not in PS CS6
Dear all, my setup is a ATI FirePro v4900 connected to two monitors: an Eizo CG276 and an old second monitor. I would like to get the Eizo to display 10-bit colors in PS CS6 under a 64-bit Windows 7. After setting everything up, I am at a point where