WLC user authentication and SSID broadcast

Similar Messages

• Please guide me for user authentication and authorization in WebDynPro App

  Hi,
      I just study the WebDynPro to develop the SAP Portal. I've ever developed the Web-based App using J2EE. So when i developed the Web-based App i have to develop the control of the user authentication and authorization on each page for example ,checking the session of the user whether they can access this page or whether session is expired or not,. So i have no idea with the WebDynPro and the SAP Portal because i never had experience for both WebDynPro and Portal.
  I need to ask you some question to clarify my doubt :
  1. SAP Portal  is web page that include every enterprise application with in one page and user log-in to them just on time, isn't it?
  2. If i integrate WebDynPro with SAP Portal, which one will do the authentication and authorization?. I mean that, Do i have to develop the code to check authentication and authorization in the WebDynPro App or Let the SAP Portal manage them?
  3.Could you please suggest the best practice for authentication and authorization in webDynPro.
  Many Thanks
  Noppong J

  in most case you don't have to write code to deal with session, authentication and authorization.
  1. yes,
  2. no, no code needed. you just set an attribute to your application, which make the the authentication required. when user access this page, portal will display the logon page
  3 you can put some authorization related code in web dynpro for specific requirement, search this doc "Protecting Access to the Web Dynpro Car Rental Application Using UME Permissions"

• Open Directory: user authentication and logining takes a lot of time

  We have Mac OS X Server Snow Leopard 10.6.8 with OpenDirectory and some iMacs with Mac OS X Snow Leopard 10.6.8. After adding Network Account Server in iMacs (System Preferences->Accounts->Login Options->Network Account Server Edit) OD works normally and users authenticate and login their accounts rather fast (5-10 seconds). But some days or weeks later the time for authentication and logining takes for about 5 minutes. If I re-add Network Account Server, then all works greatly again. What's the matter? How to avoid this re-adding?

  Hello,
  can you tell us what is the size of this Universe in terms of:
  number of tables, number of objects, size of the .unv file?
  Also, is this behaviour specific to this universe or you have other universes having the same problem?
  Last, are you 'opening it' as in File/Open or importing it as in 'File/Import...' ?
  Thanks
  PPaolo

• MacBook Pro and SSID Broadcast

  Hi All,
  New MacBook Pro and I am having some strange issues. By default I disable SSID Broadcast on my Netgear, and all of the other wireless devices work fine. Including my 15inch Powerbook. They only way I can connect with the MacBook Pro is to enable SSID Broadcast. Both of the laptops are setup with the same Airport configs.
  Software update is up to date, so I'm kind of stumped. Anyone have any thoughts?
  Thanks,
  Dan R

  Try changing the Airport network selection from Automatic to Preferred networks in the Networks System Preference and additionally make sure the network you're trying to join is at the top of the list. If it isn'tdrag it there. Failing that, try deleting the network profile, apply the change and then readd the network manually and see if that helps.

• WRT54G V7 and SSID broadcast disable

  have problems connect to the router when ssid broadcast is diablet. I can see the "network", enter the SSID and wep-key, but it will not connect.. If I select to broadcast my SSID I can easily connect to the router.. Strange, anyone who have the same problem ? I also have a wrt54g v1, and this router do not have these problems..With this you can easily connect to the router when ssid broacast is disablet..

  I've used Intel PRO 2200GB ver 9.x and earlier version of 10 (driver + management software) to connect to a hidden SSID wireless network without any problem. I manually created a profile for the hidden network and connect to that profile.
  On an unrelated note, I've enable SSID broadcast after reading a few articles about it being nothing but trouble. Here's one.
  Message Edited by neo27 on 01-23-200709:24 AM

• User Authentication and User Authorization

  We have a scenario where the B2B customers are being provided EP user ids so that they can access certain data and create certain transactions. there are two issues out here:
  (1) For multiple EP users, there will be one single SAP Backend user mapped (which is allowed by EP). However these multiple EP users would have different authorization based on which sales area/product they access/buy and this needs to be controlled via one SAP Backend user?
  (2) Under the above user mapping model, is it possible to have authentication at EP level and  authorization at SAP Backend?
  (3) Once the customer accesses the EP system, then the SAP Backend system is exposed to him? Are there possibilities of having any further layer of security between EP and SAP Backend?
  Looking for response to this or any documentation which addresses the above. My mail id is [email protected]

  This is a broad topic, let me try to point out some key issues: (I asume, B2B means actual SRM these days.)
  (1) The user that is mapped is the generic EBP/SRM user.
  Therefore, the SRM does only know this specific user. There is no way to pass additional data to the SRM. Once the authentication is done, the role assignement is done by SRM (i.e. derived from the generic SRM user, not the EP User) Whenever you want to pass extra context values from the EP to SRM, you can only do this with tricks.
  My experience is, that SAP wants to have a 1:1 relationship between portal users and EBP, even if the bundled mapping is "allowed". (Rather grey'ish area).
  The trick copuld be to set a cookie in the portal and use a BADI together with a Javascript, to  make addiional mappings. But this would count as modification, at the end.
  (2) The authentication is mappped from EP to SRM via SSO2-Ticket, which is accepted by the SRM as authentication. The authorization (role assignement etc) is done solely by the SRM.
  (3) The Backend is exposed to the usual content - the EP via https is considered secure, so is the connection via https to the SRM - you can harden the rfc connection between the srm and the backend as well.

• User authentication and Searching in ADAM

  Hi,
  I am facing a problem in ADAM Search. I am able to authenticate with an user but failing in ADAM Search. I didnt understand what could be the problem. I am giving my code here.
  String adminName = "CN=kalyan,OU=ADAM users,O=Microsoft,C=US";
  String adminPassword = "chinnu";
  String errorMessage = null;
  Hashtable env = new Hashtable();
  env.put(Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory");
  env.put(Context.PROVIDER_URL, "ldap://kalyanrao.agi.com:50002");
  env.put(Context.SECURITY_AUTHENTICATION, "simple");
  env.put(Context.SECURITY_PRINCIPAL, adminName);
  env.put(Context.SECURITY_CREDENTIALS, adminPassword);
  try{
  DirContext ctx = new InitialDirContext(env);
  System.out.println("INITIAL Context Created Successfully!!");
  SearchControls ctrl = new SearchControls();
  ctrl.setSearchScope(SearchControls.SUBTREE_SCOPE);
  String searchFilter = "(&(objectClass=user)(SAMAccountName="+adminName));
  //String searchFilter = "SAMAccountName=" + adminName;
  NamingEnumeration searchResults = ctx.search( "O=Microsoft,C=US", searchFilter,ctrl);
  System.out.println("Retrieved attributes successfully!!");
  while (searchResults.hasMore()) {
  SearchResult nextEntry = (SearchResult)searchResults.next();
  System.out.println("\ndn: " + nextEntry.getName());
  Attributes attributeSet = nextEntry.getAttributes();
  NamingEnumeration allAttrs = attributeSet.getAll();
  while (allAttrs.hasMoreElements()) {
  Attribute attribute = (Attribute) allAttrs.next();
  String attributeId = attribute.getID();
  Enumeration values = attribute.getAll();
  while (values.hasMoreElements()) {
  System.out.println(attributeId + ": " + values.nextElement());
  } catch (CommunicationException e) {
  errorMessage = e.getMessage();
  System.out.println("Server Not Available");
  } catch (Exception e) {
  errorMessage = e.getMessage();
  if (errorMessage.indexOf("2030") != -1)
  System.out.println("User not found");
  if (errorMessage.indexOf("533") != -1)
  System.out.println("User Disabled");
  if (errorMessage.indexOf("52b") != -1)
  System.out.println("Invalid Password");
  if (errorMessage.indexOf("52b") != -1)
  System.out.println("User Locked");
  e.printStackTrace();
  after executing this application i got the output as
  INITIAL Context Created Successfully!!
  Retrieved attributes successfully!!
  But i am not able to iterate through the loop to get all the required Entries and attributes. Could any one suggest me what could be the problem.
  Thanks,
  Kalyan.

  Hi,
  My New code as per the suggestion you given,
  String adminName = "CN=kalyan,OU=ADAM users,O=Microsoft,C=US";
  String adminPassword = "chinnu";
  String errorMessage = null;
  Hashtable env = new Hashtable();
  env.put(Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory");
  env.put(Context.PROVIDER_URL, "ldap://kalyanrao.agi.com:50002");
  env.put(Context.SECURITY_AUTHENTICATION, "simple");
  env.put(Context.SECURITY_PRINCIPAL, adminName);
  env.put(Context.SECURITY_CREDENTIALS, adminPassword);
  env.put(Context.REFERRAL, "follow");
  try{
  DirContext ctx = new InitialDirContext(env);
  System.out.println("INITIAL Context Created Successfully!!");
  SearchControls ctrl = new SearchControls();
  ctrl.setSearchScope(SearchControls.SUBTREE_SCOPE);
  String searchFilter = "(&(objectclass=user)(SAMAccountName=*))";
  NamingEnumeration searchResults = ctx.search( "OU=ADAM users,O=Microsoft,C=US", searchFilter,ctrl);
  System.out.println("Retrieved attributes successfully!!");
  while (searchResults.hasMoreElements()) {
  SearchResult nextEntry = (SearchResult)searchResults.next();
  System.out.println("\ndn: " + nextEntry.getName());
  Attributes attributeSet = nextEntry.getAttributes();
  NamingEnumeration allAttrs = attributeSet.getAll();
  while (allAttrs.hasMoreElements()) {
  Attribute attribute = (Attribute) allAttrs.next();
  String attributeId = attribute.getID();
  Enumeration values = attribute.getAll();
  while (values.hasMoreElements()) {
  System.out.println(attributeId + ": " + values.nextElement());
  } catch (CommunicationException e) {
  errorMessage = e.getMessage();
  System.out.println("Server Not Available");
  What exactly happening is searchResults.hasMoreElements() is becoming false and it is not able to iterate. It is not giving any Exception, it is not able to enter into the loop as searchResults.hasMoreElements() is becoming false. When it will become true.
  Please provide me a solution.
  Thanks,
  Kalyan.

• Web Application Security - User authentication and registration

  I am trying to develop a very simple web app with following feature
  1. Users should be able to register (sign-up) with the application, i.e backed code will create new user account when new users sign up.
  2. Once the user account is created, they should be able to log in.
  I was reading Java Security section in Java EE tutorial. To use any of Java EE security, the recommended way is to have security-constraint in web.xml specifying roles that have access to application. The roles are then mapped to the users that are created in the application server. The problem here is that the users cannot be created at deployment time. Users are created at run-time as new people sign up using the registration form. So, how can user be created with the application server before deploying the application?
  It seems very odd to be that application users are defined at the app-server level. Eg, Ebay/Amazon has millions of users. Are all those users defined at the application server where their app is deployed?
  If JavaEE security cannot support this simple usecase, what is the point of having security-constraint and all the other security features?

  As per your comment you want to use J2EE/JAAS security for existing user and want sign in feature. You can do it by providing link on log in screen. Please create sign up page and unprotected resource in web.xml. Once user fill sign in details you can store his detail in your authorization repository ( LDAP / Database ) and then either redirect request to login page or submit to your authorization scheme directly.

• User Authentication for subfolder not working in Web Browser

  We are using Oracle Application Server 10.1.2.3 and Database Server 10.2.0.5 for our application.
  One of the functionalities of the Application is to send emails with attachments.
  The logic is that the Application would generate the attachment file on the Application Server.
  Then a database package uses Oracle's utl_http package/procedures(more specifically utl_http.request_pieces where the single argument is a URL) to pick up the file from the Application Server via URL, attach the file and send the email.
  Exchange and Relay Server is also set in the Application.
  The problem is that the folder containing the folder which stores the attachments is having user authentication set.
  Example : The main folder is /apps/interface, this folder requires a valid user when it is accessed via URL on a web browser.
  Alias created in httpd.conf
  Alias /int-dir/ "/apps/interface/"
  The folder /apps/interface/email/ is the folder where the attachment files are generated and stored.
  Application Server : 10.12.213.21
  Database Server : 10.12.213.22
  Email Server : 10.12.213.44
  Configuration as per httpd.conf
  Alias /int-dir/ "/apps/interface/"
  <Location /int-dir/>
  AuthName "Interface folder"
  AuthType Basic
  AuthUserFile "/u01/app/oracle/as10g/oasmid/Apache/Apache/conf/.htpasswd"
  require user scott
  </Location>
  <Location /int-dir/email>
  Options Indexes Multiviews IncludesNoExec
       Order deny,allow
       Deny from all
       Allow from 10.12.213.21
       Allow from 10.12.213.22
       Allow from 10.12.213.44
  </Location>
  Using the above configuration the Application is able to attach the files and send the email, however, when we access the following URL :
  http://10.12.213.21:7778/int-dir/ - it prompts for user authentication
  However if we use the following URL :
  http://10.12.213.21:7778/int-dir/email/ - it does not prompt for user authentication, and all the files in the folder are displayed in the browser.
  I have tried so many things including AllowOverride, .htaccess, but i am not able to get user authentication for the email folder.
  Please help me if you can.
  Thanking you in advance,
  GLad to give any more information that i can.
  dxbrocky

  Thanks for your response.  I fixed the problem by selecting "full site" or "full website" at bottom of the web page.  After making this selection the zoom function returned.  Thanks again for your interest.

• How to provide user authentication to a PDF form

  Guys I have develop a webservice on XI , and I am calling that webservice using PDF forms developed in WebDynpro . The problem is the webservice needs user authentication and I don't know how to pass user id and password from pdf form to web service . Can anybody help me out
  Thanks
  Manish

  I don't know what you mean by "printed entries"; you mean filled-in form fields?

• SSID Broadcasting even when disabled

                     I have two 5508 wireless controllers with two WLANS.  One is public and SSID broadcasting is enabled.  The other is our secured network and was configured with broadcasting disable.  When looking at the controlling both through prime and on the controller itself, broadcasting is still not enabled, however the SSID is showing up in the available networks list on our computers.  We haven't changed anything on the wireless network for quite a long time and this is a recent discovery.  Anyone know how to remedy this situation? 

  Id like to add.
  Your PCs that show the SSID mean they are configured for that WLAN. This is why you see it someone configure these clients for this WLAN.
  If you have devices not seeing this its becuase they havent been configure for it.
  As for the 'hidden' you need to mark this if your wlan is not broadcasting the SSID. No checky checky no worky worky ..
  "Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
  ‎"I'm in a serious relationship with my Wi-Fi. You could say we have a connection."

• Performing User authentication with php server

  How to perform user authentication and keep track of logged
  in users ? I have the login form saved in one AIR page. I could do
  an ajax request to authenticate the user. However, how to keep
  track of the user after being logged in, so that when moving to
  other pages, he doesn't need to login again ?

  Hi,
  Cookies work in an Adobe AIR HTML application. You can use
  cookies to track your session.

• OFT- Recording Application which require User Authentication

  hi,
  I have recorded the application which requires user authentication and once the recording has been done i have logout from the application. and now if i playback the script ,then again it will playback from the login page.
  So according to my opinion,it should skip the login page at the time of playback the script. But it is not. So what would be the reason for that?

  Actually i have a confusion regarding this note given in the "OFTFunctionalTestingUserGuide pdf"
  "If you record a Visual Script with a login Web page (not a popup dialog box), which may not reappear when you revisit the site due a session cookie, Oracle Functional Testing for Web Applications recognizes the cookie and skips the login page during playback. Oracle Functional Testing for Web Applications logs a message indicating the
  login page was skipped and playback continues with the next page."
  If i m not wrong, when we record the process of visiting the pages on the site from login to log out from the site.
  and when we run the playback scirpt it should be not start from the login page as per the above mentioned note.
  Could u please help me to understand the fact given on the note.
  Thanks
  Mamta

• User Authentication o router

  Dear All
  Is the Cisco 3745 router having NM-8A/S module supports dialup user authentication and if yes what is the configuration requires.
  With Regards
  Anand

  Hi,
  It does but you need to be more specific in your backend technology.
  The reason i say this is because you can use AAA on the router to provide user authentication via TACACS+ or RADUIS, both which require a device with TACACS+ or RADUIS applications.
  The other option is to use local authentication which is not very scalable in a dialup environment.
  Rgds
  PD

• WLC 4400/Web Authentication and proxy autodiscovery

  We have a guest-SSID where people authenticate via the build in web authentication and RADIUS.
  We use proxy autodiscovery (WPAD, DHCP option 252) in our network and this works on the guest-SSID, but only after the authenticated user closes and opens Internet Explorer. It seems that restarting Internet Explorer triggers the WPAD discovery process.
  My question is if there is a smarter way to push proxy settings to guest users without user invention? How did you solve this?
  Regards,
  Rutger

  The reason you need to restart IE is because the WLC will be blocking the initial discovery messages from IE to Proxy because the user won't have authenticated yet. When the user authenticates, closing / opening IE triggers the discovery messages thruogh, which are now allowed to pass to the proxy.
  The most fool-proof way I've come across is to use Transparent URL Redicection. This is something you can setup on a PIX / ASA, but requires a compatible WebProxy / WebFilter - I've used WebSense, but I believe other products should work too.
  Lots of documentation about how to achieve this via CCO.
  Regards,
  Richard