Windows Authentication open scrpit - functional testing

Similar Messages

• Oracle ADF - Open Script functional testing - Error Identification scenarios

  Hi All,
  We have been exploring OATS - Open script functional testing tool for ADF application regression testing.
  We were able to record the transactions and play back those recordings, but we were not able to understand the scenarios where tool will detect as error/ issue.
  Based on our understanding, Open script remembers as objects/Xpaths from screens and use them while playing back.
  Could you please provide scenarios how tool identifies as errors..ex.component is removed or modified?
  Simple example:
  1) Open page A
  2) Click on image 1 on page A
  3) Click on image 2 on page A
  4) Click button to navigate to Page B.
  In this scenario, when we play back without changing it works fine
  but if we remove or comment  "image 2 on Page A " it's not throwing as error. it's continuing to next step.
  commenting or removing actions/components is not considered as issue.
  Thanks for your suggestions

  Hello Bala
  What is your Java version? JInitiator or Sun?
  When exactly does this error occur?
  What is your OATS version?
  Have you ran a Diagnose Tool (Help Menu in OpenScript)?
  Thx
  JB

• After update to Firefox 15 it crashes after javascript call window.close();opener.alert('test');. Is this working as intended or is it a bug?

  After update to Firefox 15 it crashes after javascript call from a popup window.close();opener.alert('test');. Is this working as intended or is it a bug?

  According to the pages linked to the crash ID, there is a bug report on this.
  Does the crash occur as soon as you run those two lines of code, or after dismissing the alert()?
  If this is your application, why are you running script commands after calling window.close()? Could you avoid the problem by using an approach like this:
  <br>window.setTimeout(function(){opener.alert('test'},250);
  window.close();

• AD FS Token issuance endpoints for Windows authentication fail to open

  Hi,
  I have had issue with AD FS and after turning tracing on, I realized that the AD FS endpoints to issue token based on windows authentication were all failing with an error like:
  A WS-Trust endpoint that was configured could not be opened. 
  Additional Data 
  Address: https://adfsvm.dub01.local/adfs/services/trust/13/windowstransport 
  Mode:    WindowsTransport 
  Error: 
  MSIS0006: A Service Principal Name is not registered for the AD FS service account. 
  I have tried to register an SPN for the AD FS service using the following command (I have found the AD FS Service Name in the Federation Service Properties as in the screenshot hereunder) but it fails with the following error.
  setspn -a host/ADFSVM.dub01.local DUB01\ADFSService
  Checking domain DC=dub01,DC=local
  CN=ADFSVM,CN=Computers,DC=dub01,DC=local
          WSMAN/ADFSVM
          WSMAN/ADFSVM.dub01.local
          TERMSRV/ADFSVM
          TERMSRV/ADFSVM.dub01.local
          RestrictedKrbHost/ADFSVM
          HOST/ADFSVM
          RestrictedKrbHost/ADFSVM.dub01.local
          HOST/ADFSVM.dub01.local
  Duplicate SPN found, aborting operation!
  Now I have come to realise that the Federation Service name is the same as the computer name but:
  I dont know if that is an issue
  I don't recall having been offered to give a particular name when installing AD FS
  This is the first time I install AD FS. Is there anyone who could give me a pointer?
  Thanks.
  Francois

  the ADFS federation service FQDN should NOT be the same as the hostname. You will run into Kerberos issues because of duplicate SPNs as you have found
  https://jorgequestforknowledge.wordpress.com/2013/09/06/duplicate-spn-breaks-trust-between-clientserver-and-active-directory/
  When installing ADFS you should specify a federation service FQDN and a service account. When using the GUI to install ADFS, (if I'm not mistaken) the federation service FQDN is derived from the selected cert in the GUI. If that cert had a subject name being
  the hostname, you get this scenario. Instead, install an SSL cert, a token signing cert and a token encryption cert BEFORE the installation and use powershell to install/configure ADFS as it gives you more control.
  As an example see (ADFS v2):
  https://jorgequestforknowledge.wordpress.com/2012/05/08/installing-and-configuring-adfs-v2-as-an-sts-server-part-1/
  https://jorgequestforknowledge.wordpress.com/2012/05/09/installing-and-configuring-adfs-v2-as-an-sts-server-part-2/
  https://jorgequestforknowledge.wordpress.com/2012/05/10/installing-and-configuring-adfs-v2-as-an-sts-server-part-3/
  Install-ADFSFarm
  https://technet.microsoft.com/en-us/library/dn479416.aspx
  Cheers,
  Jorge de Almeida Pinto
  Principal Consultant | MVP Directory Services | IAM Technologies
  COMMUNITY...:
  DISCLAIMER: This post is provided "AS IS" with no warranties of any kind, either expressed or implied, and confers no rights! Always evaluate/test yourself before using/implementing this!

• When I have multiple browser windows open - but in the "minimized" mode - and I want to open up one of them for viewing, ALL of the windows automatically open as well. How do I prevent this annoying function. I cannot find it anywhere in the options.

  This does not appear to be a system issue, but rather a functional aspect of the browser windows. E.g., if I have 7 browser windows open to different sites... and all are Minimized, and I decide to open one to study, THEY ALL POP OPEN automatically. I am using Firefox v3.6.8 on Windows 7. This is an annoying behavior of the browser, and I am sure it can be somehow "turned off" but cannot determine how to do that. I have looked through all options. I am not a techie, but have reasonable proficiency with software apps.

  This can happen if you drag a tab slightly down in the browser window while clicking.
  Firefox has a feature called tear-off tabs
  You can detach a tab from the current window and open it in a new window by dragging a tab in the browser window.
  You can also do this via the right-click context menu of a tab: Move to New Window
  You can drag that tab back to the tab bar in the original window to undo that detaching.
  * https://addons.mozilla.org/firefox/addon/bug489729-disable-detach-and-t

• What is the difference between Open-Script and Oracle functional testing

  Hi All,
  Please help me in spotting out the difference between the Openscript and Oracle Functional Testing for Web Application.
  Does Oracle Functional Testing for Web Application have any special features when compared with Open-Script.
  Please help me out.
  Thanks in Advance,
  Nishanth Soundararajan.

  Nishanth
  OFT is the old version of OpenScript, which will no longer be part of ATS as per the next major realize 9.20.
  I would recommend to to spend any time looking at it.
  Regards
  Alex

• HTML-DB OAE Javascript to close current window and open a new window

  Hi everybody,
  We work with 1.6.
  What we want is to close the current window and open a new window with the URL mentionned in the window.open('http://www.cf.qc/pls/portal/PORTAL.....,'newwindow').
  The new window opening fires only once although we call it many times.
  Our javascript is:
  function closeTest()
  { alert('closeTest');
  if('&REQUEST.'=='QUITTER2'){     
  w = window.self;
  w.opener = w;
  w.close();
  window.open('http://www.cf.qc/pls/portal/PORTAL.home','newwindow','toolbar=yes,location=yes,directories=yes,status=yes,menubar=yes,scrollbars=yes,resizable=yes');
  We call it on our application attributes :
  OnLoad="closeTest()"
  Thanks. Bye.

  Try this on for size:
  I have included two functions.
  windowRebuild() - opens a new window, maximizes it based on the screen size, removes all toolbars, and then closes the old window.
  myLocation(appName, pageName) - builds a url referencing an HTMLDB application, specfic to what server you are currently on. Very useful when you have an application on 3 different servers(dev, test, prod servers), you wouldn't want the server name hardcoded if you plan to export the app to another server.
  Also, you need to be careful when using &APP_ID. I am not completely certain how that is resolved at runtime, but I've found it only works when the javascript is in the HTML Header of a page and not stored in the template of the page.
  <script language="JavaScript1.1" type="text/javascript">
    This functions is for internal application use.
    Examples of myLocation:
    url = myLocation('&APP_ID.', 'APP_PUBLIC_PAGE');
    url = myLocation('MY_APP_ALIAS', 'MY_PAGE_ALIAS');
    url = myLocation('184', '10');
  function myLocation(myApp, myPage){
    var myHost = location.host;
    var newURL;
    newURL = 'http://'+myHost+'/pls/htmldb/f?p='+myApp.toString()+':'+myPage.toString();
    return newURL;
  /*  Function windowRebuild()
  *   This function will open a new window and close the old window.
  *   This function will also maximize the new window and remove all toolbars.
  function windowRebuild(){
     if(window.name != 'myAppWin'){
      var url = myLocation('&APP_ID.', 'PAGE_ALIAS');
      var myWin = window.open(url,'myAppWin','toolbar=0,scrollbars=1,menubar=0,status=1,resizable=1,location=0');
      window.opener = 'x';
      window.close();
     if(window.name == 'myAppWin'){
      window.moveTo(0,0);
      window.resizeTo(screen.availWidth,screen.availHeight);
  </script>Let me know if that works or you need some more explanation.
  Chris

• Windows authentication on every ajax call MVC

  I've created an MVC project with windows authentication.
  From my views, I use Jquery to retrieve data from the controller asynchronously in order to provide a better user experience and reduce loading times.
  These functions look like
  public JsonResult someFunction(string parameter)
  return Json(result, JsonRequestBehavior.AllowGet);
  Everythings works as I want in Chrome, where it prompts me for login when I open the page and no more for the duration of that session. However, in IE, it prompts me for login when I open the page, and on every single ajax call...
  Why is this happening and how can I avoid it?
  I need to use windows authentication and IE, I can't change that...

  Hello,
  In order to get your issue solved more efficiently and since this is a MVC issue, I would recommend you post this issue in
  http://forums.asp.net/1146.aspx/1?MVC forum to get supports.
  Thanks for your understanding.
  Regards,
  Carl
  We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
  Click
  HERE to participate the survey.

• Windows authentication failure on SharePoint 2013 zone

  I am attempting to set up a Windows authentication zone in a SharePoint 2013 installation for use by the search crawler.  The zone has been configured to use NTLM in order to eliminate Kerberos from the equation.  The result of my
  attempts to access the Windows authentication zone is a 403 error.  Central Administration is working on the same server, and of course is using Windows authentication.
  I know about the issue of using Windows authentication to localhost, and have configured the backconnectionhostnames entry in the registry.  To prove that I can use Windows authentication using the intended host name for the SharePoint zone, I have
  set up a test IIS site that binds to the host name used by the zone, and successfully authenticated using Windows authentication.
  From monitoring the ULS logs it's obvious that I'm actually successfully completing Windows authentication, and getting a SharePoint claim, but from that point I'm being denied by SharePoint.  I do know that my Windows credentials has site collection
  administrator privileges.  The most interesting failure in the ULS log appears to be:
  SPApplicationAuthenticationModule: Authorization header doesn't contain Bearer, can't try to perform application authentication.
  Another odd thing is that after the ULS indicates I have failed authentication, I'm redirected to /_layouts/AccessDenied.aspx instead of the login page defined in web.config.  I have tried many things, including enabling Kernel-mode authentication. 
  Below is an excerpt from my ULS logs:
  SPApplicationAuthenticationModule: There is no Authorization header, can't try to perform application authentication.
  Non-OAuth request. IsAuthenticated=False, UserIdentityName=, ClaimsCount=0
  [Forced due to logging gap, cached @ 12/01/2014 15:48:32.53, Original Level: Verbose] Value for isAnonymousAllowed is : {0}
  [Forced due to logging gap, Original Level: Verbose] Value for checkAuthenticationCookie is : {0}
  Claims Windows Sign-In: Sending 401 for request 'https://crawler.my.host/' because the user is not authenticated and resource requires authentication.
  [Forced due to logging gap, cached @ 12/01/2014 15:48:32.56, Original Level: VerboseEx] Sending HTTP response {0} - {1}:{2}.
  [Forced due to logging gap, Original Level: Verbose] SPRequestModule.PreSendRequestHeaders
  Leaving Monitored Scope (Request (GET:https://crawler.my.host:443/)). Execution Time=5320.19544383434
  Name=Timer Job SchedulingApproval
  Leaving Monitored Scope (Timer Job SchedulingApproval). Execution Time=16.4101862108173
  Name=Timer Job SchedulingApproval
  Leaving Monitored Scope (Timer Job SchedulingApproval). Execution Time=14.9021733209109
  Name=Timer Job SchedulingApproval
  [Forced due to logging gap, cached @ 12/01/2014 15:48:32.95, Original Level: Verbose] Completed deserializing the type named {0} and with id {1}.
  [Forced due to logging gap, Original Level: VerboseEx] SPFederationAuthenticationModule.OnEndRequest: Start
  SPFederationAuthenticationModule.OnEndRequest: User was being redirected to authenticate.
  Leaving Monitored Scope (Timer Job SchedulingApproval). Execution Time=17.2175513927049
  Claims Windows Sign-In: Sending 401 for request 'https://crawler.my.host/' because the user is not authenticated and resource requires authentication.
  Name=Request (GET:https://crawler.my.host:443/)
  Micro Trace Tags: 0 nasq
  Leaving Monitored Scope (Request (GET:https://crawler.my.host:443/)). Execution Time=9.54646470431298
  Name=Request (GET:https://crawler.my.host:443/)
  SPTokenCache.ReadTokenXml: Successfully read token XML 'mydomain\myuser'.
  Token Cache: Failed to get token from distributed cache for '0).w|s-0-0-0-0-0-0-1234'.(This is expected during the process warm up or if data cache Initialization is getting done by some other thread).
  Token Cache: Reverting to local cache to get the token for '0).w|s-0-0-0-0-0-0-1234'.
  Token Cache: Entry missing for user 'mydomain\myuser'.
  Token Cache: Failed to get token from distributed cache for '0).w|s-0-0-0-0-0-0-1234'.(This is expected during the process warm up or if data cache Initialization is getting done by some other thread).
  Token Cache: Reverting to local cache to get the token for '0).w|s-0-0-0-0-0-0-1234'.
  Claims Windows Sign-In: User 'mydomain\myuser' for request url 'https://crawler.my.host/' does not have a cached SessionSecurityToken.
  [Forced due to logging gap, cached @ 12/01/2014 15:48:33.24, Original Level: VerboseEx] We are in claims windows only mode for for request url '{0}'.
  [Forced due to logging gap, Original Level: VerboseEx] Reverting to process identity
  [Forced due to logging gap, cached @ 12/01/2014 15:48:33.71, Original Level: Verbose] Completed deserializing the type named {0} and with id {1}.
  SPSecurityContext: Added JsonWebSecurityTokenHandler to trust channel factory
  SPSecurityContext: Replaced WSTrustRequestSerializer with SPTrust13RequestSerializer
  SPSecurityContext: The SecurityTokenServiceBehavior is attached to the TrustChannel.
  SecurityTokenServiceSendRequest: RemoteAddress: 'http://localhost:32843/SecurityTokenServiceApplication/securitytoken.svc' Channel: 'Microsoft.IdentityModel.Protocols.WSTrust.IWSTrustChannelContract' Action: 'http://docs.oasis-open.org/ws-sx/ws-trust/200512/RST/Issue'
  MessageId: 'urn:uuid:f175f6ef-a93d-4efe-9173-1fba74b1eed2'
  SecurityTokenServiceReceiveRequest: LocalAddress: 'http://servername:32843/SecurityTokenServiceApplication/securitytoken.svc' Channel: 'System.ServiceModel.Channels.ServiceChannel' Action: 'http://docs.oasis-open.org/ws-sx/ws-trust/200512/RST/Issue' MessageId:
  'urn:uuid:f175f6ef-a93d-4efe-9173-1fba74b1eed2'
  Entering monitored scope (ExecuteSecurityTokenServiceOperationServer). Parent No
  STS Call: Issuing new security token.
  SPSecurityTokenServiceManager!EnsureSharePointLogonRequestClaims: Found primary sid claim. Value: 's-0-0-0-0-0-0-1234'.
  Using claim provider 'System' for operation because it is default and it is visible.
  Excluding claim provider 'AD' for operation because it is not default and .
  Using claim provider 'AllUsers' for operation because it is default and it is visible.
  Excluding claim provider 'Forms' for operation because it is not default and .
  Using claim provider 'User Profile Claim Provider' for operation because it is default and it is visible.
  STS Call Claims Windows: Setting cookie lifetime to: Microsoft.IdentityModel.Protocols.WSTrust.Lifetime
  STS Call Claims Windows: Successfully requested sign-in claim identity for user 'mydomain\myuser'.
  STS Call: Successfully issued new security token.
  Leaving Monitored Scope (ExecuteSecurityTokenServiceOperationServer). Execution Time=13.187150880908
  [Forced due to logging gap, cached @ 12/01/2014 15:48:34.87, Original Level: Verbose] The SecurityTokenServiceHeaderInfo including the correlation ID was added.
  Leaving Monitored Scope (ExecuteSecurityTokenServiceOperationCaller:http://docs.oasis-open.org/ws-sx/ws-trust/200512/RST/Issue). Execution Time=719.713539011243
  [Forced due to logging gap, cached @ 12/01/2014 15:48:35.60, Original Level: Verbose] ____{0}={1}
  Claims Windows Sign-In: Siginging in the the user 'mydomain\myuser' for request url 'https://crawler.my.host/'.
  Updating X.509 certificate validation policy
  [Forced due to logging gap, cached @ 12/01/2014 15:48:36.26, Original Level: Verbose] Completed deserializing the type named {0} and with id {1}.
  Adding X.509 certificate thumbprint '493E6806F4178EDD685BE5EA0AAF79ED30FB4A90' to root authority trust
  SPLocalLoginProvider: Initializing and creating S2S Claim Mappings
  SPLocalLoginProvider: Initialized S2S Claim Mappings.
  [Forced due to logging gap, cached @ 12/01/2014 15:48:36.37, Original Level: Verbose] Completed deserializing the type named {0} and with id {1}.
  [Forced due to logging gap, Original Level: Verbose] Deserializing the type named {0} and with id {1}.
  [Forced due to logging gap, cached @ 12/01/2014 15:48:37.17, Original Level: Verbose] Completed deserializing the type named {0} and with id {1}.
  [Forced due to logging gap, Original Level: Verbose] Deserializing the type named {0} and with id {1}.
  [Forced due to logging gap, cached @ 12/01/2014 15:48:37.96, Original Level: Verbose] Completed deserializing the type named {0} and with id {1}.
  [Forced due to logging gap, Original Level: VerboseEx] SPFederationAuthenticationModule.OnSessionSecurityTokenCreated: Start
  [Forced due to logging gap, cached @ 12/01/2014 15:48:38.10, Original Level: VerboseEx] SPSam.SetPrincipalFromSessionToken: End
  [Forced due to logging gap, Original Level: Verbose] Looking up {0} site {1} in the farm {2}
  Token Cache: Failed to add token from distributed cache for '0).w|s-0-0-0-0-0-0-1234'.(This is expected during the process warm up or if data cache Initialization is getting done by some other thread).
  Token Cache: Reverting to local cache to Add the token for '0).w|s-0-0-0-0-0-0-1234'.
  Token Cache: Successfully added token to cache for '0).w|s-0-0-0-0-0-0-1234'.
  SPTokenCache.ReadTokenXml: Successfully read token XML '0).w|s-0-0-0-0-0-0-1234,0#.w|mydomain\myuser,123456789012345,True,dpoRtB/hPcjVrEaJtqVWxhY8Pbfm++oHwWQ5TCB9jBlLx5n2Ky5OqGXM7ntfLB0kqIJNDUkeQrl4wL7xW2m4r0rV1TiOUf+e2mpHq8WOgN67puRViZbCxCkwmmxUpE/1OVNcDFXRCh26tvVFieK99LKZn8BJUtmP8RqxtwtwqBolNjCyZ3rfSSmtFyM3pdWjphdj312R9Lcp9/EhTpvvV1J2lFCig901ZGaPo7zOw3pFyXl1eDs+gF2Bcbc7/mMZw67/gEccsFaekBVH1TK0d9qqr6P/ISeEgzhlK4DChV94ntsw8m8Pb255yTL8WrbTykMFV3jC7R2MvqCmiKGK+g==,https://crawler.my.host/'.
  Claims Windows Sign-In: Not writing a cookie for request 'https://crawler.my.host/'.
  Claims Windows Sign-In: Successfully signed-in the the user 'mydomain\myuser' for request url 'https://crawler.my.host/'.
  Updating header 'LOGON_USER' with value '0#.w|mydomain\myuser' for the request url 'https://crawler.my.host/'.
  Leaving Monitored Scope (SPClaimsCounterScope). Execution Time=4957.74267399907
  SPApplicationAuthenticationModule: Authorization header doesn't contain Bearer, can't try to perform application authentication.
  Non-OAuth request. IsAuthenticated=True, UserIdentityName=0#.w|mydomain\myuser, ClaimsCount=27
  Leaving Monitored Scope (PostAuthenticateRequestHandler). Execution Time=31.2877754016223
  Micro Trace Tags: 0 nasq,69 air4a,1 air4b,22 air4a,0 air4b,1641 aeayb,732 b4ly,654 erv2,58 erv3,1814 air36,0 air37,42 b4ly,5 agb9s,39 b4ly
  Leaving Monitored Scope (Request (GET:https://crawler.my.host:443/)). Execution Time=5101.04328902137
  SPFederationAuthenticationModule.OnEndRequest: User was being redirected to authenticate.
  [Forced due to logging gap, cached @ 12/01/2014 15:48:38.24, Original Level: Verbose] {0}
  [Forced due to logging gap, Original Level: VerboseEx] SPRequestParameters: AppPrincipal={0}, UserName={1}, UserKye={2}, RoleCount={3}, Roles={4}
  Site=/
  [Forced due to logging gap, cached @ 12/01/2014 15:48:38.37, Original Level: Verbose] {0}
  [Forced due to logging gap, Original Level: VerboseEx] Reverting to process identity
  [Forced due to logging gap, cached @ 12/01/2014 15:48:38.40, Original Level: VerboseEx] No SPAggregateResourceTally associated with thread.
  [Forced due to logging gap, Original Level: VerboseEx] Reverting to process identity
  [Forced due to logging gap, cached @ 12/01/2014 15:48:38.48, Original Level: VerboseEx] No SPAggregateResourceTally associated with thread.
  [Forced due to logging gap, Original Level: VerboseEx] Reverting to process identity
  Access Denied for /. StackTrace:    at Microsoft.SharePoint.Utilities.SPUtility.HandleAccessDenied(HttpContext context)     at Microsoft.SharePoint.IdentityModel.SPFederationAuthenticationModule.OnEndRequest(Object sender,
  EventArgs eventArgs)     at System.Web.HttpApplication.SyncEventExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()     at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)    
  at System.Web.HttpApplication.PipelineStepManager.ResumeSteps(Exception error)     at System.Web.HttpApplication.BeginProcessRequestNotification(HttpContext context, AsyncCallback cb)     at System.Web.HttpRuntime.ProcessRequestNotificationPrivate(IIS7WorkerRequest
  wr, HttpContext context)     at System.Web.Hosting.PipelineRuntime.ProcessRequestNotificationHelper(IntPtr rootedObjectsPointer, IntPtr nativeRequestContext, IntPtr moduleData, Int32 flags)     at System.Web.Hosting.PipelineRuntime.ProcessRequestNotification(IntPtr
  rootedObjectsPointer, IntPtr nativeRequestContext, IntPtr moduleData, Int32 flags)     at System.Web.Hosting.UnsafeIISMethods.MgdIndicateCompletion(IntPtr pHandler, RequestNotificationStatus& notificationStatus)    
  at System.Web.Hosting.UnsafeIISMethods.MgdIndicateCompletion(IntPtr pHandler, RequestNotificationStatus& notificationStatus)     at System.Web.Hosting.PipelineRuntime.ProcessRequestNotificationHelper(IntPtr rootedObjectsPointer, IntPtr
  nativeRequestContext, IntPtr moduleData, Int32 flags)     at System.Web.Hosting.PipelineRuntime.ProcessRequestNotification(IntPtr rootedObjectsPointer, IntPtr nativeRequestContext, IntPtr moduleData, Int32 flags)
  Leaving Monitored Scope (SPFederationAuthenticationModule.OnEndRequest). Execution Time=351.625416079418
  Entering monitored scope (Request (GET:https://crawler.my.host:443/_layouts/AccessDenied.aspx?Source=https%3A%2F%2Fcrawler%2Emy%2Ehost)). Parent No
   

  I'm extending an existing claims based web application.  The way I'm testing authentication is by attempting to log in to the Windows authentication zone using the browser and an account with site collection administrator privileges.  I've also
  tried using the intended crawler service account, but that also fails authentication.
  With regard to the default zone issue, I've already experimented with using both the default zone and another zone, but neither works.
  BTW, I already have this working in a SharePoint 2013 development environment, and a similar configuration has been in a SharePoint 2010 production environment for over a year, which makes this a particularly maddening problem.
  I have enabled Failed Request Tracing, and get a 401.1, 401.2, then a 403 (which says it was caused by the 401.2).  I'm not sure of the significance, but the 403 trace shows the module for the 401.2 to be UrlAuthorizationModule, while the module for
  the 403 error is FederatedAuthentication.
  Per my ULS trace included in my original post, it appears that I'm actually getting a SharePoint claim.

• OATS  -  ADF functional testing

  Hi,
  While recording adf application with OATS ( with adf functional accelator module )  some of the actions are not recording like search icon , the actions which are recorded in the opened search popup and also calendar actions.
  Is there any solution to fix this issue in OATS.
  I am using OATS 12.1.0.2
  Browser: IE 7
  Operation System: windows 7
  Regards,
  Mohan.

  Hi This is Atish
  Yaa even I have found the same problem when I started recording the ADF functional Testing.
  Solution for this is you can add up the following line, at the correct line
  clickButton ADFCommandToolbarButton("@text='Search'")
  Java Code for the same would be:
  adf
    .commandToolbarButton(
  205,
  "/web:window[@index='0' or @title='Business Process Workspace']/web:document[@index='0' or @name='nviwaj5w3_11']/web:ADFCommandToolbarButton[@text='Search' and @absoluteLocator='wlctdc:j_id__ctru12:r1:tldc:searchButton']")
  this will click the button, provided you should put the absolute location of the button, which you could get it using the "viewsource" of the html page
  Yes even its not recording the input text fields , so i had to enter the field ID fo that field in the line inorder to help the oats to play it back.
  Regards
  Atish

• SSIS Package Execution, Windows Authentication, Error: Failed to acquire connection

  Hello,
  I have developed one SSIS Package in SSDT 2012 to create Reporting Database from SQL Datasource and 1 SharePoint List.
  On Development Environment : (Windows Authentication)
  Here everything is running fine.
  On Test Environment Client Side : (Windows Authentication)
  Deployed successfully.
  Validating successfully.
  While executing the package: getting below error.
  SSISPackage:Error: SSIS Error Code DTS_E_OLEDBERROR. An OLE DB error has occurred. Error Code : 0x80040E21.
  An OLE DB record is abailable. Source: "Microsoft OLE DB Service Componenets" Hresult: 0x80040E21 Description: "Multipe-step OLD DB operation generated errors. Check each OLD DB status value, if available. No work was done.".
  Execute SQL Task: Error: Failed to acquire connection "ReportingDB". Connection may not be configured correctly or you may not have the right permissions on this connection.
  I have done below things:
  On SSIS Package side,
  1. DelayValidation is Set to True for all the connections and each tasks in package
  2. RetainSameConnection : True
  3. ProtectionLevel : DoNotSaveSensitiveData
  On SSMS,
  1. Created one Credential
  2. Create Proxy under SSIS SQL Service Agent to run package as Windows User
  3. Checked all the permissions and roles.
  Below is the connection string which I am using.
  Data Source=DBTEST;Initial Catalog=ReportingDB;Integrated Security=SSPI; persist security info=False;
  Trusted_Connection=Yes;
  Can anyone please help me? As I am trying to resolve this error for the last 4 days and could not find any solution yet.
  Thank you,
  Mittal.

  Can you try changing protection  to - EncryptSensitiveWithUserkey
  can you also enable DTC
  To enable MSDTC on each Web server on Windows Server 2008
  Click Start, click Run, type dcomcnfg and then click OK to open Component Services.
  In the console tree, expand Component Services, expand Computers, expand My Computer, and then expand Distributed Transaction Coordinator.
  Right click Local DTC, and click Properties to display the Local DTC Properties dialog box.
  Click the Security tab.
  In the Security Settings section, click Network DTC Access.
  In the Client and Administration section, select Allow Remote Clients and Allow Remote Administration.
  In the Transaction Manager Communication section, select Allow Inbound and Allow Outbound.
  In the Transaction Manager Communication section, select Mutual Authentication Required (if all remote machines are running Windows Server 2003 SP1), select Incoming Caller Authentication Required (if running MSDTC in a cluster), or select No Authentication
  Required if some of the remote machines are pre-Windows Server 2003 SP1. No Authentication Required is the recommended selection.
  Select Enable XA Transactions, and then click OK.
  Repeat steps 1 through 9 on the other Web servers.
  Please mark
  this reply as the answer or vote as helpful, as appropriate, to make it useful for other readers

• OpenScript records functional tests, but not load tests on firefox

  Hi everyone
  I am recording some test with OpenScript 9.3.1.0, I have no problem recording functional tests with IE or FF, but when i try to record a load test just IE works, firefox opens the window and let me do everything normal, but it don't record anything; i'd try with FF 3.6 and 3.5, i'd run the diagnostig tool but it don't show me anything wrong. I hope someone can help me.
  Thanks
  Edited by: user8874599 on 08-jun-2012 13:45

  Hi
  When doing load testing OpenScript will change your browsers proxy to point to localhost 7777 as its the port that openscript internal proxy uses to record the navigations, can you check if when recording with FF the proxy settings is FF have changed?
  If not can you try to change them manually to point to localhost 7777 you will find the settings in Options -> Advanced -> Network -> Settings.
  If the proxy is already set, please check that there is nothing on the No proxy for: box
  Hope this helps
  Alex

• Can I use Windows authentication with Firefox?

  My company has a website that I need to login to on a daily basis. With IE I can set up Windows Authentication to have a "single sign-on" for this website and it automatically logs me in when I open the site. I do not see any options for authentication under the Tools menu. Using Firefox's password memory does not give the same functionality.

  You can do it by adding the server host name to a list of trusted host names. Obviously you need to be very careful about not adding untrustworthy servers to the list. See this article for how: [http://support.mozilla.com/en-US/kb/Firefox%20asks%20for%20user%20name%20and%20password%20on%20internal%20sites Firefox asks for user name and password on internal sites | Troubleshooting | Firefox Help].

• Claims Authentication Error connecting to BCS - but we're using Windows Authentication

  We currently have an External List with a SQL Server SProc as a source in a SharePoint 2010 site. It has been working great for months now. I need to make a change to the External Content Type - and I have made changes in the past - but now strange things
  are happening.
  I can't view the external content type (or any) in SPD.  I can create a new Secure Store Service Target Application in SPCentralAdmin and everything seems fine, but I can't consume the application in SPD.  I get an error that BCS has rejected the
  request.  This is new and curious; I'm a Farm Administrator.
  Looking at the logs, I find I get a Claims Authentication error that my ID can't be found (the error is below).  This is also new and is very, very curious as we're not using Claims authentication for any of our sites.  They all use Windows authentication. 
  I am also getting recent reports from users who are repeatedly challenged for credentials and wonder if this is related.
  In my research, I've found suggestions from starting the CWTS Service (I was dubious, I can start the service, and it doesn't resolve the problem) to setting Metadata Store Permissions in SPCentralAdmin (I was again dubious as I'm a farm administrator -
  and I get the same error when I try to make this assignment!)  So I'm at a loss.
  Here is the error (the X'd out information was correct in the trace):
  SPSecurityContext.WindowsIdentity: Could not retrieve a valid windows identity for NTName='XXXXX\XXXXXX', UPN='[email protected]'. UPN is required when Kerberos constrained delegation is used. Exception: System.ServiceModel.EndpointNotFoundException:
  There was no endpoint listening at net.pipe://localhost/s4u/022694f3-9fbd-422b-b4b2-312e25dae2a2 that could accept the message. This is often caused by an incorrect address or SOAP action. See InnerException, if present, for more details. ---> System.IO.PipeException:
  The pipe endpoint 'net.pipe://localhost/s4u/022694f3-9fbd-422b-b4b2-312e25dae2a2' could not be found on your local machine.      --- End of inner exception stack trace ---    Server stack trace:     
  at System.ServiceModel.Channels.PipeConnectionInitiator.GetPipeNam...
  We're not using Kerberos at all. We're using good, old-fashioned Windows Authentication.  The only changes made to the platform recently have been updates.  The error could, of course, be erroneous and I may be charging down the wrong path. 
  But although I find many links when I Bing the error, all the links pertain to sites using Claims authentication - even the Error Category in my log is "Claims Authentication" - but we're not using Claims Authentication...
  Again, any help at all will be appreciated.  Thanks!

  Hi Kevin,
  From the error message, we might be missing user permissions to the BCS Metadata Store. Please perform the steps below and test the issue again:
  1. Open the SharePoint Central Administration website with either a Farm administrator account or an account that has been delegated permissions to administer the Business Data Connectivity Service Applications.
  2. On the Quick Launch, click Application Management.
  3. On the Application Management page, under Service Applications, click Manage service applications.
  4. In the list of services, select the row of the Business Data Connectivity Service Application that you created in Create the Business Data Connectivity service application and then click Manage and then Set Metadata Store Permissions.
  5. Enter the Farm Administrator account and any other delegate administrators if you have them and then click Add.
  6. For each account or group that you added that is an administrator of the Business Data Connectivity Service Application, select the Edit, Execute, Selectable In Clients, and Set Permissions checkboxes.
  7. Select the Propagate permissions to all BDC Models, External Systems and External Content Types in the BDC Metadata Store. Doing so will overwrite existing permissions checkbox.
  8. Click OK.
  Also, make sure your account is added as local administrator.
  Regards,
  Rebecca Tu
  TechNet Community Support
  Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact
  [email protected]

• Windows Authentication in SQL 2012 suddenly stopped working

  Hello,
  I use SQL Server 2012 for a database class in college. I have been having zero problems until today, when I started up the Management Studio to work on a Project due in a week. We use Windows Authentication to just log in through our computers. Now it is
  giving me an error saying the following when I try to log in with my usual credentials through Windows Authentication. 
  TITLE: Connect to Server
  Cannot connect to ALEC-PC.
  ADDITIONAL INFORMATION:
  A network-related or instance-specific error occurred while establishing a connection to SQL Server. The server was not found or was not accessible. Verify that the instance name is correct and that SQL Server is configured to allow remote connections. (provider:
  Named Pipes Provider, error: 40 - Could not open a connection to SQL Server) (Microsoft SQL Server, Error: 2)
  For help, click: http://go.microsoft.com/fwlink?ProdName=Microsoft%20SQL%20Server&EvtSrc=MSSQLServer&EvtID=2&LinkId=20476
  The system cannot find the file specified
  BUTTONS:
  OK
  I am not trying to connect to a server, just my computer through Windows Authentication. This was not a problem until today, as I have used SQL Server on this computer before to complete previous projects. I have made no changes to my computer recently,
  other than detach a database from SQL in order to send it to my professor. Then suddenly it will not connect to Database Engine, but it will connect to some of the other options under "Server Type".
  Any help on this would be highly appreciated. I do apologize for not being very technical.

  1. Make sure SQL Server Service is running
  2. If a named instance, make sure SQL Server browser service is running
  3. Make sure SQL Server is configured to allow remote connections
  4. Examine the SQL Server error log for messages confirming that SQL is listening on the expected network interfaces and ports
  5. Test server connectivity with PING from the client machine
  6. Test port connectivity using TELNET or PowerShell to the server and port (from step 4) from the client machine.  For example
  a. TELNET <server-name> 1433
  b. PowerShell: 1433 | % { echo ((new-object Net.Sockets.TcpClient).Connect("YourServerName",$_)) "server listening on TCP port $_" }
  7. Check firewall settings if step 5 or 6 connectivity test fails
  Best Regards,Uri Dimant SQL Server MVP,
  http://sqlblog.com/blogs/uri_dimant/
  MS SQL optimization: MS SQL Development and Optimization
  MS SQL Consulting:
  Large scale of database and data cleansing
  Remote DBA Services:
  Improves MS SQL Database Performance
  SQL Server Integration Services:
  Business Intelligence