Windows Native Authentication from Windows 7
Has anyone successfully tested SSO with Windows Native authentication from a windows 7 client ?
I have a working setup with SSO on OID 10.1.4.3 but with windows 7 client I get the fallback login prompt instead of automatic login.
I have got a workaround from support but it still does not work:
- on the client Windows7 PC to to PC security policies (Policies -> Network Security -> Configure encryption types allowed for Kerberos) and select all of them EXCEPT the “Allow future types” option;
- change the value of HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\SuppressExtendedProtection = REG_DWORD with a value of 3 (please take a backup of the registry settings before any change).
Thanks // Kerstin
Apply patch 6915917 solves the problem
Similar Messages
-
Windows Native Authentication with 2 (multiple) AD domains
I have managed to get Windows Native Authentication for Oracle Application Server 10g (9.0.4) on Windows working. The following has been done and works in a test environment:
Phase 1) Active Directory (AD) to Oracle Internet Directory (OID) Synchronization
Phase 2) Configure a Kerberos Service Account for the Single Sign-on
Currently all the above setup points to a single windows active directory server, i.e. active1.uk.oacle.com. This is acceptable for a test environment, but before the changes can be deployed to production I need to incorporate some disaster recovery.
The active directory is replicated across multiple servers – i.e. active1.uk.oacle.com, active2.uk.oacle.com. In the event that the primary active directory server is unavailable Oracle users should still be able to access applications. I need to incorporate active2.uk.oacle.com into the above setup.
Questions:
1)Can I get away with not incorporating active2.uk.oacle.com into phase 1. If the users have been pulled into OID then we are not particular concerned with pulling in new users in a disaster situation.
2)Can I configure the Oracle side of the Kerberos setup to use multiple realms with an order or precedence – i.e. try active1.uk.oacle.com, then try active2.uk.oacle.com. I would generate a keytab file from each server.
Ideally I would like to just modify the Kerberos setup to check active1.uk.oacle.com then active2.uk.oacle.com. Is this a workable approach? If yes how do I proceed? I believe the krb5.ini and opmn.xml need to be amended.
ThanksDoes anyone have any ideas on how to do this????
-
Hi guys,
I was able to setup the wna infact
no errors appears in OC4J~OC4J_SECURITY~default_island~1 log file when OC4J_SECURITY instance starts up
but if I try to connect to
http://sso.<domain>/pls/orasso using a client of
Windows Domain the sso login page appears
and the following message in ssoServer.log
[DEBUG] AJPRequestHandler-ApplicationServerThread-6 Calling Authentication method
[INFO] AJPRequestHandler-ApplicationServerThread-6 Entered SSOKerbeAuth.authenticate method ...
[DEBUG] AJPRequestHandler-ApplicationServerThread-6 Remote user name: {{UNAUTH_USER}}
[DEBUG] AJPRequestHandler-ApplicationServerThread-6 Windows Native Authentication was not possible.
[DEBUG] AJPRequestHandler-ApplicationServerThread-6 Falling back to SSO authentication
[INFO] AJPRequestHandler-ApplicationServerThread-6 Entered SSOServerAuth:authenticate method
[DEBUG] AJPRequestHandler-ApplicationServerThread-6 user name NULL
[DEBUG] AJPRequestHandler-ApplicationServerThread-6 Password Null
[DEBUG] AJPRequestHandler-ApplicationServerThread-6 Subscriber Null
[DEBUG] AJPRequestHandler-ApplicationServerThread-6 Voice header: null
[DEBUG] AJPRequestHandler-ApplicationServerThread-6 x-oracle-mobile-authtype: null
[DEBUG] AJPRequestHandler-ApplicationServerThread-6 auth mode is user/pass
[DEBUG] AJPRequestHandler-ApplicationServerThread-6 Perhaps this is a Basic Auth u/pwd
[DEBUG] AJPRequestHandler-ApplicationServerThread-6 No username supplied. Sending IPASInsufficientCredException
[DEBUG] AJPRequestHandler-ApplicationServerThread-6 Requesting Login Page to collect credentials
[INFO] AJPRequestHandler-ApplicationServerThread-6 Entered SSOKerbeAuth.getUserCredentialPage method ...
[DEBUG] AJPRequestHandler-ApplicationServerThread-6 Sending login page to the user with an error message: null
[INFO] AJPRequestHandler-ApplicationServerThread-6 Exiting from SSOKerbeAuth.getUserCredentialPage method
Any ideas bout this issue ?
Regards
LuigiLuigi,
did you follow up
http://www.oracle.com/technology/obe/obe_as_10g/im/wna/wna.htm
regards,
--olaf -
How to do HTTP getRequest() with windows NTLM authentication from OBPM..??
Hello All,
Please share your expert ideas how me can do HTTP getRequest() with windows NTLM authentication from OBPM..??
I am not sure even whether its possible or not, if not what could be the alternative way to do integration with MS SharePoint ??
Version : Oracle BPM v 10.3.1
Cheers
Parveen JaswalYou are only as secure as web browsing to the LogMeIn website is (which appears to use HTTPS). If your login on that site is compromised, they will have a list of your computers that they can attempt to connect to. As long as you don't save the login credentials, they would then also need to know what username and password to use to connect to the computer. Granted, a little social engineering, and they could probably get some good ideas what to try for those, but if you chose to make your computers secure with complex and hard to guess passwords then it should be fine.
I've been using LogMeIn from my Mac to my mom's Windows XP system from July 2009, and to my wife's Thinkpad running Win 7 since Oct 2009. None of the computers involved have had any security issues at all, let alone any caused by LogMeIn. For my wife's PC, it sits behind our NAT Firewall in our LinkSys Router (although I did have it behind a CheckPoint VPN Edge router for a while). My Mom's PC sits behind a Netgear Router providing its NAT Firewall. When my Mac isn't at home, it's generally behind that CheckPoint VPN router at my office now. It all works nicely from behind one router to behind another. The Piece that you install on the PC will log it into the LogMeIN website and that is how it gets through the router to the PC. You login to the website, select the PC to control, then login to that PC. -
Problem with connecting to free wifi after upgrading to Windows 8.1 from Windows 8
Hi
I had problems with connecting to free Wifi after upgrading my PC(Notebook) to Windows 8.1 from Windows 8. As I travel a lot within europe, I am used to being able to connect to Free Wifi(those that dont need a key or password to enter) but soon after downloading
Windows 8.1 I almost never was able to do this. I'd always get «LIMITED» even though the signal was strong.This was so fustrating,so much so that I reset my PC to clear it of Windows 8.1 and am now back to Windows 8.This is a shame because I was really liking
using Windows 8.1 and if not for this problem(which is a big one) I'd still be using it. If I download Windows 8.1 again from the Windows store what is the probability that I'll have the same problems?
Thanks PortozzygirlMore often than not when a device isn't working it is because the driver has become corrupted. Re-installing a fresh copy should help
http://windows.microsoft.com/en-us/windows7/Update-a-driver-for-hardware-that-isnt-working-properly?SignedIn=1
http://captaindbg.com/how-to-update-drivers-on-windows-7/ (works on win 8 too)
Wanikiya and Dyami--Team Zigzag -
X220: Cant Upgrade to Windows 8.1 from Windows 8
Hi all,
I cant seem to upgrade to Windows 8.1 from Windows 8 on my X220.
Originally during the install it states "This application wasn't installed - view details".
Then it states "Something happened and Windows 8.1 couldn't be installed. Please try again. Error code 0xc0000005"
Then it states "Something happened and Windows 8.1 couldn't be installed. Please try again. Error code 0x80246007"'
Anyone have any suggestions?
Thanks
RamblerHi,
According to your description, Windows 8 Operating System installed on your computer, right?
Did you update to Windows 8.1 via Windows Store?
If yes, follow Cyber_Defend_Team's suggestion, check if your computer meet the prerequisite.
After that, try to install Windows 8.1 for test.
If the issue persists, according to this blog to troubleshoot:
Something happened and the install of Windows 8.1 can't be completed. (And now you're annoyed)
http://blogs.technet.com/b/ouc1too/archive/2013/10/23/something-happened-in-the-install-of-windows-8-1-can-t-be-completed-and-now-you-re-annoyed.aspx
Karen Hu
TechNet Community Support -
Contacts Sync with Windows Live Mail from Windows 7
I have BB Desktop Manager 5.0.1 and I am un able to syncronize my Contacts with Windows Live Mail from Windows 7. The only options the Desktop Manager offers are: Outlook Express, Importad./Exportad. ASCII adn Yahoo.
What can I do?Thanks I thought I was the only who is trying to solve the same problem.
-
I recently brought a mac and downloaded windows with the help of boot camp and by mistake i installed windows 7 ultimate version whereas i had the cd and serial key of windows home premium i started installing windows home premium from windows 7 ULTIMATE then after the exctraction of files and everything the windows setup came and my mouse and keyboard stopped working and i dont know how to open mac os x there is no option anywhere?? what shall i do pls help!!!!if there are any keyboard shortcut key to open mac os x or boot camp pls mention.
For Boot Camp issues please repost in the Boot Camp forum located by clicking Boot Camp
-
Domain user not authenticated from Windows 7 PC
Hi,
This is the background of the problem.
Windows 2003 Servers running AD. 2 Servers, Primary and Backup.
2008 R2 servers are joined as members of 2003 AD. Mail server and File server
Clients - Win XP, Win 7.
Share folders on Fileservers were accessible from both type of clients.
Since windows update happend last week (12/03/2015),Win 7 users are being rejected by the 2008 servers
Win XP users do not face this issue
Please help, it's driving me nuts :)
Thanks
ThepulLook at some of the issues that have been arising from KB3002657; uninstalling it seems to solve the problems for most people. Authentication errors from Windows 7 and 8.1, but XP works normally.
The update has been re-released as of 03/16 for Server 2003 only. Some information:
http://www.infoworld.com/article/2897814/operating-systems/server-2003-admins-beware-microsoft-re-issues-botched-netlogon-patch-kb-3002657.html
https://social.technet.microsoft.com/Forums/en-US/0a520543-29d4-4466-9967-e39d819d11f1/users-cannot-log-into-remote-desktop-after-3112015-update
https://www.pickysysadmin.ca/2015/03/11/kb3002657-breaks-everything/
http://www.infoworld.com/article/2895900/microsoft-netlogon-patch-kb-3002657-woes-continue-kb-3032359-cisco-anyconnect-fix-confirmed.html -
Help Needed :- Upgrading to Windows 8.1 from Windows 8 on W540
I have tried repeatidly to upgrade to Windows 81 from windows 8 and it fails I get the driver power state failure error and error codes 0xc1900101 0x40017 .
After 4 failures , i deleted drivers for Prinfing (pdf / printer drivers etc ) and some others i didn't note tried to do the install and it worked, except the first time i rebooted after logging in , it would not boot into windows 8,1 driver it came up with the driver error messages again and i was given the option to reset to factory defaults and i did.
After restoring to factory defaults i tried the upgrade and it failed again.
So can you help me , in how do i upgrade to 8.1"I bought a ThinkCentre M83 which had a downgraded windows licence (windows 8.1 pro downgraded to windows 7 professional)." -
"... Now you want to upgrade to Windows 8.1 that was originally offered when you purchased the computer. The only way that I am aware of that would be possible is to purchase a retail version of the newer operating system. "
I would say either you did not understand it well / or you gave the wrong info. If Lenovo Think(Pad/Centre) has Windows 7 Pro downgrade preload (but Win 8 / 8.1 Pro licence):
- user gets media for Windows 8/8.1 Pro included with your Think(Pad/Centre) (I think until December)
- or now you must order it here (free if entitled)
Disclaimer: While I do work for Lenovo Partner, all my contributions are my personal, non-official and not that of Lenovo or my employer. -
Cannot install windows 7 (downgrade from Windows 8.1 on Lenovo U330 Touch)
Hello.
I wanted to downgrade my new Lenovo U330 Touch from Windows 8.1 to Windows 7 (x64 Home Premium). I followed the instructions from this previous forum post...
https://forums.lenovo.com/t5/IdeaPad-Y-U-V-Z-and-P-series/U330-Touch-Downgrading-to-Windows-7/m-p/15...
I accidentally deleted the partition with Windows 8.1 on it by mistake. Good riddance to it.
Now, when I try to install Windows 7 from the boot sequence, I get the message saying that "Windows cannot be installed to this disk. The selected disk is of the GPT partition style".
How do I install Windows 7 please?
Solved!
Go to Solution.benpatient wrote:
Hello.
I wanted to downgrade my new Lenovo U330 Touch from Windows 8.1 to Windows 7 (x64 Home Premium). I followed the instructions from this previous forum post...
https://forums.lenovo.com/t5/IdeaPad-Y-U-V-Z-and-P-series/U330-Touch-Downgrading-to-Windows-7/m-p/15...
I accidentally deleted the partition with Windows 8.1 on it by mistake. Good riddance to it.
Now, when I try to install Windows 7 from the boot sequence, I get the message saying that "Windows cannot be installed to this disk. The selected disk is of the GPT partition style".
How do I install Windows 7 please?
I have tried this a few months ago. You can study the steps and try it on your unit. -
Restore Exchange 2007 SP3 to Windows 2008 R2 from Windows 2003
Perhaps I'm being dense, but I had Exchange 2007 SP3 installed on a Windows 2003 Server, and I've used "setup /mode:recoverserver" to restore it to a Windows 2008 R2 server... how do I restore the databases which I backed up with the Windows backup tool
on 2003?
I installed KB974674, the restore tool onto the 2008 R2 server but when I try and restore the backup it comes up with "this feature is no longer supported". Something I'm missing here?These things marked as answers are not answers.
I have now thoroughly tested using setup /mode:recoverserver and it works fine going from Windows 2003 to Windows 2008 R2 with Exchange 2007 SP3, done several installations now without a problem.
"Setup /m:RecoverServer cannot be used across operating systems. A server that was originally running Windows Server 2003 can be recovered only on Windows Server 2003, and a server that was originally running Windows Server 2008 can
be recovered only on Windows Server 2008."
This appears to be wrong, unless someone can tell me why it's right (I haven't tried moving Unified Messaging yet). I've done it to 2008 R2 several times now and also in the other direction, from 2008 R2 to 2003, I can't find anything that didn't work
afterward, although I haven't really thoroughly tested OWA yet, I admit (but it does appear to be working).
I think that documentation is out-of-date as it doesn't mention R2 plus I think it was written before SP3 came out and that paragraph is just wrong.
Basically how I do it is like this:
Dismount databases from the 2003 server and copy the storage group folders to a network location or removable media.
Install the Windows 2008 R2 server using the same machine account that was being used by the 2003 server. Install the prerequisites needed for Exchange 2007 SP3 installation on 2008 R2 (note in addition to the IIS components and RPC over HTTP this
also requires the AD tools in RSAT, which I haven't found mentioned in technical documentation). Install the relevant windows updates.
Install Exchange 2007 SP3 using setup /mode:recoverserver Install the update rollup.
Copy the storage groups into the relevant folders on the new server and mount them. Migrate any relevant certificates (e.g. for ActiveSync).
Obviously then check it all over with the diagnostic tools and check it with EXBPA. The backups are obviously totally different, but really I think you should be using DPM anyway.
To me that was pretty easy to do, to be honest. About 1.5 on a scale of one to ten. Basically install it, recover it, copy over some files and mount them.
Seriously on a halfway decent server I've done it in under an hour. -
Windows 2012 Activation from Windows 2008 R2 KMS server
Hello,
We have 2 KMS servers in our Domain. One has server has KMS key for Windows 2012 KMS installed and other not.
I have joined first windows 2012 server to domain and its been 3 hours the server is still not activated from KMS server.
When client contacts KMS server for Windows 2012 licnese, if key is not installed on first KMS server, will it automatically contact second one? Do I need to change sonmething?
One more question:
Is it possible to have Windows 2012 key installed on the same KMS server, which is already acting as KMS sertver for Windows 2008R2? and Windows 2003 R2? or wil this cause any issues?
MahiHello,
Once a KMS host is activated, it will publish it's record to DNS. KMS clients attempting to activate will query DNS to get a KMS host, if there is more than one, they will use the first one they get. The DNS server should be rotating which records
it hands out.
If they activate, they will cache that record and attempt to use it when they renew, if they fail to renew or activate, they will query DNS for the KMS host again.
Since this is a new KMS host it will need at least 5 KMS clients to contact it meet the count needs for Server.
What version of Windows is the other KMS host machine is it Windows Server 2008, Windows Server 2008 R2 or is it Windows Server 2003 R2?
Thanks, Darrell Gorter [MSFT] This posting is provided "AS IS" with no warranties, and confers no rights. -
HP Pavilion dv6 Windows 10 upgrade from Windows 7 Home Prem; Error code 0xC1900101
Have been trying to upgrade to Windows 10 (from Windows 7 Home Prem 64 bit). However, the upgrade fails showing an error code 0xC1900101. Tried uninstalling MCafee Antivirus and upgrading, but that fails too. Also, checked and installed all 'other' available system updates and tried. But no luck.During the installation process, the failure occurs when the system has finished copying and is in the process of installing drivers (that is, after the second restart). I have noticed that the 'installing drivers' process was also almost 90% complete. Once the second restart process begins, the system hangs and processor keeps running (and so does the cooling fan, at its highest speed). Earlier, had heating problems which used to hibernate my system during this process, but have fixed that now. And I get this new error message (in the subject above).Guess, the issue occurs when the system is trying to install drivers or when it is trying to upgrade its configuration. Need help!
I dunno if this is related but I had an error as well during the upgrade on an HP DV5. You can find more information on the error if you analyze the dump file (.dmp) found in the Windows.BT folder right after the upgrade fails. You can use a utility like BlueScreenView. In my case, the upgrade crashed at around 75% of the total process (when configuring settings). Analyzing the dump file showed that the error was caused by a driver named 000.fcl, related to Cyberlink and their DVD player. Turns out this is used in the HP QuickPlay feature. After removing HP Quick Play, the upgrade proceeded as normal. Hope it helps anyone with a similar problem !
-
I cant instal windows 8.1 from windows 8?
so I went to a local pawn shop where I bought my new laptop.... it has windows 8 already on it but to use any of the apps and stuff it wants me to download windows 8.1 from the store... so I went to the store clicked on it and it says "before you can
get on windows 8.1 from the store you need to install the latest updates from the windows update"
so I went to the pc settings and went to updates checked for updates and it says I have 118 updates so I started them and went to work and came home to configuration failed reverting back or something like that and it was there for 3 hours!!! I just want
to be able to use windows 8 to its full potential I really like the way it is and would be disappointed if I couldn't over something like this ::::ccccccTry running the Windows 8.1 Update troubleshooter.
Ref:
http://windows.microsoft.com/en-in/windows-8/why-can-t-find-update-store
S.Sengupta, Windows Entertainment and Connected Home MVP
Maybe you are looking for
-
Flash Player And adobe reader not working and downloads don't work
I have IE 8 and windows vista and everything has worked great for 2 years until 2 or 3 weeks ago. At that time my flash player stopped working so I could no longer get videos , streaming stock quotes, weather map loops, etc and when I go to websites
-
Does elements 13 support win8 touch screen?
Is touch screen fully supported in 13? Currently using 11.
-
In my iphone, photo stream also counts in storage space but as per Apple Photo Stream does not occupy storage space. Any info on this pls.
-
I have the ipad 2. I have a message on screen from icloud backup which states " This ipad has not been backed up in 4 weeks. Backups happen when this ipad is plugged in,locked and connected to WI-FI. I presssed the ok space on the screen and nothing
-
We have a PDF export account but I cannot access it in order to convert a PDF to Word.