WS-6509 refusing SSH connections via TACACS+ 5.5
Hello everyone, we have our Core 6509's using AAA with TACACS+ version 5.5 appliance.
We have 4 appliances 2 each in 2 locations.
We have an issue where 6509's refuse to authorize/authenticate valid users for ssh connections.
When you ssh to the device you can enter your password but ssh tectia just closes or you see the login banner and "Authorization denied" and ssh closes.
The switches have there tacacs-server settings pointing to all four TACACS+ devices.
Occasionally one or both will attempt to use one of the 2 non local TACACS+ servers to authenticate/athorize connections.
You can login from the console if you interrupt it's connection to TACACS by disconnecting the fiber connections momentarily.
Has anyone seen something like this before?
This happens once or twice a year.
ej
That's the funny part, TACACS shows green stating that I'm passing all the checks.
When I select the magnifying glass I see "passed" in green at the top.
when I check "Evaluating Identity Policy" it says.
Matched Default Rule
Selected Identity Store - Internal Users
Authenticating user against Active Directory
Could not establish connection with ACS Active Directory agent
Looking up User in Internal Users IDStore - "My username"
Found User in Internal Users IDStore
Wrong password or invalid shared secret
The advanced option that is configured for a failed authentication request is used.
The 'Continue' advanced option is configured in case of a failed authentication request.
But I'm able to access all other switches so my AD username/password are correct.
At first I was unable to access it's pair. After we did a hard reset on one of the ACS's that was resolved.
But I still can't get into the other pair.
ej
Similar Messages
-
Users refused SSH connection of home directory server.
I have an odd situation when using SSH connections for secure FTP file
access on my NW6.5 servers.
I've got two main data servers. Both are identical in setup: NW6.5SP8/eDir
8.8SP5 VM's running on identical Dell PE1950's attached to a Hitachi SAN
array.
One server hosts the users' home folders, the other holds data shared across
the enterprise.
I have a third data server at a remote campus.
With the server that hosts the user's home folders, I've several accounts
that are not able to connect. The server logs indicate a failed password.
That same user, however, can log in successfully to either the server that
holds shared data or the server at the remote site.
Due to the nature of how Novell implements SSH, once they've logged in,
they're attached to their home folder on the server that will not allow them
direct connection.
Since this issue does not affect all users, I don't understand where the
issue lies.
The sshd_config file on both servers are identical.
Not sure if it's applicable to this issue, but SDIDIAG reports no problems
on either server.
The entries from the respective log files:
Home directory server:
30 Mar - 19:02:36[0080892840] (4983b0e0)SSHD Session 1 <118429> : Failed
password for xxxxx from xxx.xxx.xxx.xxx port 1525 ssh2
30 Mar - 19:02:36[0080892840] (4983b0e0)SSHD Session 1 <118429> fatal: Read
from socket failed: Error 0
Shared data server:
30 Mar - 19:03:19[0080892523] (40e601c0)SSHD Shell 109 <109376> :
[email protected]:1526 - SFTP connection(109376) accepted.
30 Mar - 19:03:19[0080892522] (40d074e0)SSHD Session 1 <109376> : subsystem
request for sftp
30 Mar - 19:03:18[0080892522] (40d074e0)SSHD Session 1 <109376> : Accepted
password for xxxxx from xxx.xxx.xxx.xxx port 1526 ssh2
In the past I've collected iMonitor traces, but could find anything concrete
that points to a system issue.
That said, I can't remember what all I set up in the trace configuration
beyond NMAS and LDAP, so I may have been looking for the wrong thing.
Any ideas of where to look for problems are welcome.Grant,
It appears that in the past few days you have not received a response to your
posting. That concerns us, and has triggered this automated reply.
Has your problem been resolved? If not, you might try one of the following options:
- Visit http://support.novell.com and search the knowledgebase and/or check all
the other self support options and support programs available.
- You could also try posting your message again. Make sure it is posted in the
correct newsgroup. (http://forums.novell.com)
Be sure to read the forum FAQ about what to expect in the way of responses:
http://forums.novell.com/faq.php
If this is a reply to a duplicate posting, please ignore and accept our apologies
and rest assured we will issue a stern reprimand to our posting bot.
Good luck!
Your Novell Product Support Forums Team
http://forums.novell.com/ -
Standby GSSM refuse ssh connection
I have 2 GSS-4492R just setup one as primary gssm and the other as standby-gssm. Both are setup with the setup script. The standby refuse both ssh and telnet connections. What have I forgotten?
GSS#show run
interface ethernet 0
ip address #.#.#.# 255.255.255.0
gss-communications
hostname GSS
ip default-gateway #.#.#.#
ip name-server 10.16.0.10
ip name-server 10.16.0.20
ssh enable
no ssh keys
no ssh protocol version 1
telnet enable
ftp enable
snmp-server trap-source ethernet 0
no cnr enable
drp
no enable
terminal-length 23
exec-timeout 150
logging disk enable
logging disk priority Notifications
no logging host enable
logging host priority Warnings
logging facility local5
tacacs-server timeout 5
tacacs-server callerId-info-type hostname
tacacs-server keepalive-enable
GSS #
GSS#
GSS#show ssh
ssh is enabled
no ssh keys
no ssh protocol version 1
GSS#show ssh
ssh is enabled
no ssh keys
no ssh protocol version 1
GSS#show ssh
ssh is enabled
no ssh keys
no ssh protocol version 1
GSS#show enable-passwd-status
GSS enable password is set.
admin password is the same on both boxes.Issue resolved. Somone had used the ip adress allocated for the standby GSS for something else.
-
Problems with SSH: Connection Refused
Greetings fellow Arch users,
I have hit a bit of a snag that I could really use some extra help getting around. I've tried everything I can think of (and everything that Google thought might work) and I have my back rather against a wall, so I thought I'd come here to see if anyone can offer some advice.
To make a long story short, I am a college student and am attempting to set up an ssh server on a desktop at my house so I can access it remotely from the college. I have the computer set up and the server running, however I am having difficulty making connections to it from my laptop. I know that the server is running, because I can log into it both from the server itself (sshing into local host) and from my laptop when I use the internal IP address.
The server is on a static IP address within the network(192.168.0.75), and my router is configured to forward TCP port 1500 to it (I'm using 1500 as the port for my ssh server). However, when I attempt to log into the ssh server using my network's external IP address, the connection is refused. I used nmap to scan my network and found that, even though the proper ports are forwarded to the proper place as far as my Router's configuration interface is concerned, port 1500 is not listed as one of the open TCP ports. I also, to test it, temporarily disabled the firewalls on both the server and the client. That didn't help. The command that I am running is:
ssh -p 1500 douglas@[external ip address
As I am really not sure what is causing this problem, I don't know what information to provide. So here is everything that my inexperienced mind sees as likely being important. If you need anything more, let me know and I will do my best to provide it.
Here is the sshd_config file from my server.
# This is the sshd server system-wide configuration file. See
# sshd_config(5) for more information.
# This sshd was compiled with PATH=/usr/bin:/bin:/usr/sbin:/sbin
# The strategy used for options in the default sshd_config shipped with
# OpenSSH is to specify options with their default value where
# possible, but leave them commented. Uncommented options override the
# default value.
Port 1500
#AddressFamily any
#ListenAddress 0.0.0.0
#ListenAddress ::
# The default requires explicit activation of protocol 1
#Protocol 2
# HostKey for protocol version 1
#HostKey /etc/ssh/ssh_host_key
# HostKeys for protocol version 2
#HostKey /etc/ssh/ssh_host_rsa_key
#HostKey /etc/ssh/ssh_host_dsa_key
#HostKey /etc/ssh/ssh_host_ecdsa_key
# Lifetime and size of ephemeral version 1 server key
#KeyRegenerationInterval 1h
#ServerKeyBits 1024
# Ciphers and keying
#RekeyLimit default none
# Logging
# obsoletes QuietMode and FascistLogging
#SyslogFacility AUTH
#LogLevel INFO
# Authentication:
#LoginGraceTime 2m
PermitRootLogin no
#StrictModes yes
#MaxAuthTries 6
#MaxSessions 10
#RSAAuthentication yes
#PubkeyAuthentication yes
# The default is to check both .ssh/authorized_keys and .ssh/authorized_keys2
# but this is overridden so installations will only check .ssh/authorized_keys
AuthorizedKeysFile .ssh/authorized_keys
#AuthorizedPrincipalsFile none
#AuthorizedKeysCommand none
#AuthorizedKeysCommandUser nobody
# For this to work you will also need host keys in /etc/ssh/ssh_known_hosts
#RhostsRSAAuthentication no
# similar for protocol version 2
#HostbasedAuthentication no
# Change to yes if you don't trust ~/.ssh/known_hosts for
# RhostsRSAAuthentication and HostbasedAuthentication
#IgnoreUserKnownHosts no
# Don't read the user's ~/.rhosts and ~/.shosts files
#IgnoreRhosts yes
# To disable tunneled clear text passwords, change to no here!
#PasswordAuthentication yes
#PermitEmptyPasswords no
# Change to no to disable s/key passwords
ChallengeResponseAuthentication no
# Kerberos options
#KerberosAuthentication no
#KerberosOrLocalPasswd yes
#KerberosTicketCleanup yes
#KerberosGetAFSToken no
# GSSAPI options
#GSSAPIAuthentication no
#GSSAPICleanupCredentials yes
# Set this to 'yes' to enable PAM authentication, account processing,
# and session processing. If this is enabled, PAM authentication will
# be allowed through the ChallengeResponseAuthentication and
# PasswordAuthentication. Depending on your PAM configuration,
# PAM authentication via ChallengeResponseAuthentication may bypass
# the setting of "PermitRootLogin without-password".
# If you just want the PAM account and session checks to run without
# PAM authentication, then enable this but set PasswordAuthentication
# and ChallengeResponseAuthentication to 'no'.
UsePAM yes
#AllowAgentForwarding yes
#AllowTcpForwarding yes
#GatewayPorts no
#X11Forwarding no
#X11DisplayOffset 10
#X11UseLocalhost yes
PrintMotd no # pam does that
#PrintLastLog yes
#TCPKeepAlive yes
#UseLogin no
UsePrivilegeSeparation sandbox # Default for new installations.
#PermitUserEnvironment no
#Compression delayed
#ClientAliveInterval 0
#ClientAliveCountMax 3
#UseDNS yes
#PidFile /run/sshd.pid
#MaxStartups 10:30:100
#PermitTunnel no
#ChrootDirectory none
#VersionAddendum none
# no default banner path
#Banner none
# override default of no subsystems
Subsystem sftp /usr/lib/ssh/sftp-server
# Example of overriding settings on a per-user basis
#Match User anoncvs
# X11Forwarding no
# AllowTcpForwarding no
# ForceCommand cvs server
The ouptut of ip addr when run on the server:
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: enp8s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP qlen 1000
link/ether 00:21:9b:3a:be:94 brd ff:ff:ff:ff:ff:ff
inet 192.168.0.75/24 brd 192.168.255.0 scope global enp8s0
valid_lft forever preferred_lft forever
inet6 fe80::221:9bff:fe3a:be94/64 scope link
valid_lft forever preferred_lft forever
Here is the output from running nmap on the network:
Starting Nmap 6.40 ( http://nmap.org ) at 2013-09-28 21:05 EDT
Initiating Ping Scan at 21:05
Scanning address [2 ports]
Completed Ping Scan at 21:05, 0.01s elapsed (1 total hosts)
Initiating Parallel DNS resolution of 1 host. at 21:05
Completed Parallel DNS resolution of 1 host. at 21:05, 0.05s elapsed
Initiating Connect Scan at 21:05
Scanning pa-addresss.dhcp.embarqhsd.net (address) [1000 ports]
Discovered open port 80/tcp on address
Discovered open port 443/tcp on address
Discovered open port 23/tcp on address
Discovered open port 21/tcp on address
Completed Connect Scan at 21:05, 4.08s elapsed (1000 total ports)
Nmap scan report for pa-address.dhcp.embarqhsd.net (address)
Host is up (0.036s latency).
Not shown: 995 closed ports
PORT STATE SERVICE
21/tcp open ftp
23/tcp open telnet
80/tcp open http
443/tcp open https
8080/tcp filtered http-proxy
Read data files from: /usr/bin/../share/nmap
Nmap done: 1 IP address (1 host up) scanned in 4.19 seconds
Here is the ssh_config client-side:
# $OpenBSD: ssh_config,v 1.27 2013/05/16 02:00:34 dtucker Exp $
# This is the ssh client system-wide configuration file. See
# ssh_config(5) for more information. This file provides defaults for
# users, and the values can be changed in per-user configuration files
# or on the command line.
# Configuration data is parsed as follows:
# 1. command line options
# 2. user-specific file
# 3. system-wide file
# Any configuration value is only changed the first time it is set.
# Thus, host-specific definitions should be at the beginning of the
# configuration file, and defaults at the end.
# Site-wide defaults for some commonly used options. For a comprehensive
# list of available options, their meanings and defaults, please see the
# ssh_config(5) man page.
# Host *
# ForwardAgent no
# ForwardX11 no
# RhostsRSAAuthentication no
# RSAAuthentication yes
# PasswordAuthentication yes
# HostbasedAuthentication no
# GSSAPIAuthentication no
# GSSAPIDelegateCredentials no
# BatchMode no
# CheckHostIP yes
# AddressFamily any
# ConnectTimeout 0
# StrictHostKeyChecking ask
# IdentityFile ~/.ssh/identity
# IdentityFile ~/.ssh/id_rsa
# IdentityFile ~/.ssh/id_dsa
# Port 22
Protocol 2
# Cipher 3des
# Ciphers aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc
# MACs hmac-md5,hmac-sha1,[email protected],hmac-ripemd160
# EscapeChar ~
# Tunnel no
# TunnelDevice any:any
# PermitLocalCommand no
# VisualHostKey no
# ProxyCommand ssh -q -W %h:%p gateway.example.com
# RekeyLimit 1G 1h
Output of ssh -v during connection attempt:
OpenSSH_6.3, OpenSSL 1.0.1e 11 Feb 2013
debug1: Reading configuration data /home/douglas/.ssh/config
debug1: Reading configuration data /etc/ssh/ssh_config
debug2: ssh_connect: needpriv 0
debug1: Connecting to address [address] port 1500.
debug1: connect to address address port 1500: Connection refused
ssh: connect to host address port 1500: Connection refused
Thank you guys ahead of time. Getting this server operational is hardly critical, it is just a side project of mine, but I would really like to see it working.
Douglas Bahr Rumbaugh
Last edited by douglasr (2013-09-29 02:58:56)Okay, so I finally have the opportunity to try and log in from a remote network. And. . . it doesn't work. Which is just my luck because I now need to wait an entire week, at least, before I can touch the server again. Anyway, running ssh with the maximum verbosity I get this output:
douglas ~ $ ssh -vvv -p 2000 address
OpenSSH_6.3, OpenSSL 1.0.1e 11 Feb 2013
debug1: Reading configuration data /home/douglas/.ssh/config
debug1: Reading configuration data /etc/ssh/ssh_config
debug2: ssh_connect: needpriv 0
debug1: Connecting to address [address] port 2000.
debug1: connect to address address port 2000: Connection timed out
ssh: connect to host address port 2000: Connection timed out
It takes a minute or two for the command to finish with the connection timeout, as one would expect. And yes, I am reasonably sure that the address that I am using is my home network's external IP. It is dynamic, but I checked it before I left which was just over an hour ago. I guess that it may have changed. I'll know that for sure in the morning, when my server sends me an automatic email with the network's current address. In the meantime I am operating under the assumption that the address I am using is correct. What else could be the problem? -
ORA Connect via SSH Tunnel on Windows failed! LINUX works ...
Hello again,
i tried to establish a Oracle Client Connection via SSH Tunnel on WinXP Pro.
1. Opened SSH-Tunnel Connection with plink (putty)
TUNNEL: 10.5.1.111:1521 => localhost:1521
(plink works fine with telnet, MySQL Client and other stuff)
2. Connected with Oracle Client on Tunnel END => Localhost, Port 1521
3. WIth ORA8i i got: Paket Error, With ORA10g i get: TNS: no listener
plink works fine, so i dont think the problem is located there.
i tried, tnsnames.ora, easyconnect and TNS-Less. So i guess, its not related to the connection method.
i tried the same on LINUX ... ssh tunnel and sqlplus connect ... IT WORKS !
Does Oracle need an aditional Port?
Does it have Problems with WIN2UNIX Connections? (ORA DB is on UNIX)
tnxHi,
Hum..., I guess this not work!
Looking for this schema below, you need put the 1521 port
If you desire, access the www.ssh.com site and download other ssh program
Secure Connection
+---->-------[SSH]-------->-----+
| |
| |
^ |
| Insecure Connection v
CLIENTE--->--------------------> ORACLE
ssh2 -l oracle -L 1521:192.148.1.251:1521 200.10.11.12
| | |
| | |
A LOCAL | |
B INTERNAL IP ORACLE |
C EXTERNAL IP (GATEWAY)
C B
| Firewall| . . . . .|INTERNET| . . . . . . |Firewall| . . . . . . . . . . |ORACLE|
| Gateway | |Gateway | 192.148.1.251:1521
. 200.10.11.12
A .
|Oracle Client|
(TNSNAMES.ORA)
<SERVICO> =
(DESCRIPTION =
(ADDRESS_LIST =
(ADDRESS = (PROTOCOL = TCP)(HOST = 127.0.0.1)(PORT = 1521))
(CONNECT_DATA =
(SID = <ORCL>)
)Cheers -
Server refuses all connections randomly one day.
I got home from school, did my homework, and tried to print it through my mac mini server running CUPS. It says the printer is offline. I tried SSHing to the mac mini, but I get this: [code]ssh: connect to host 10.0.1.31 port 22: Connection refused[/code] I also run a minecraft server from it, and I can't connect to that either. The server also won't show up under the "shared" section of the finder. (AFP)
I tried turning off the firewall, but that didn't help. I also rebooted the computer. Does anyone know of something I can try? The server can connect to the internet fine.
It's being assigned a static internal ip via my airport extreme.Forget me. My iMac somehow connected to the public network, not the one the mini was on.
-
Can no longer connect via serial port
Hi all,
I am an administrator for forty-eight Solaris servers scattered around the world, I have remote console connectivty via Cisco 2821 terminal servers. Recently all the devices were moved to new terminal servers but I can no longer get remote console connectivity to fourteen of them. Most of the servers just give a blank line. I have had the port and cable changed on two of them with no joy. One of the servers was local so I risked a reboot (didn't fancy rebooting one of the distant ones as hands-and-eyes support staff are difficult to get hold of and these are production boxes.). While connected via IP I attempted a reboot, after 20minutes of waiting I decided I'd have to connect directly with my laptop, when I connected the machine was waiting for an ilom login. After logging in and completing the boot the server was working fine and I could connect via the terminal server.
The boxes are Sun 5220's and I am running Solaris 10.
Any help would be greatfully received as I really don't fancy trying to reboot the other thirteen boxes with nobody onsite...
Cheers,
Mark T.Answered my own question:
opened another terminal window and used the command killall ssh to abort the previous session.
Still don't know why it won't login to my server. -
I have an iMac G5 iSight and have been using Airport successfully to connect to the Internet via a DW6000 satellite modem. Since I have now retired and will no longer be using a Powerbook, I decided to stop using Airport and attempted to connect via a hardwired cable from the iMac to the Modem. It refuses to work. The settings show that it has acquired the correct address from my provider and is properly connected to Direcway via DHCP. I have rebooted the modem and the computer, renewed the DHCP licence all to no avail. The information says that although the Ethernet port is active, it has an internal address and cannot be connected to the Internet.
By the way, I was able to connect to the Internet via Airport or Ethernet with my G4 Powerbook. But I can't do it via Ethernet with the iMac.
What can I do to get this working?
GriffProblem resolved!
I don't know what the problem was. I just tried again. This time I did not reboot the computer. I shut down the modem, attached the Ethernet cable and fired it up again and this time I was connected!
So I really don't have an answer except that it just decided to start working.
Griff -
VPN clients can connect via SSTP but not IKEv2 due to error 808
I have a Windows Server 2012 R2 with RRAS configured to allow SSTP / IKEv2 VPN connections. I'm using an external certificate for server authentication and the client authentication is done via domain username/password (Protected EAP). The clients can
connect successfully when using SSTP, but if IKEv2 is selected, then the following error is displayed:
Error 808:
The network connection between your computer and the VPN server could not be established because the remote server refused the connection. This is typically caused by a mismatch between the server's configuration and your connection settings. Please
contact the remote server's Administrator to verify the server configuration and your connection settings.
My external certificate has the Server Authentication EKU but not the IP security IKE intermediate, however it's the only
certificate installed, so I believe the certificate is OK.
Any ideas on what is causing the error?
Thank you.
Ricardo CostaHi,
What NAT device you are using? You must configure the IKEv2 related protocol on your NAT device too. For example if you are using the Cisco® NAT device you must
enable the IKEv2 support on the outside interface:
Enabling IKE on the Outside Interface
You must enable IKE on the interface that terminates the VPN tunnel. Typically this is the outside, or public interface. To enable IKEv1 or
IKEv2, use the crypto ikev1 | ikev2 enable command from global configuration mode:
=================================================
crypto ikev1 | ikev2 enable interface-name
For example:
hostname(config)# crypto ikev1 enable outside
=================================================
The related third party information:
Configuring IPSec and ISAKMP
http://www.cisco.com/c/en/us/td/docs/security/asa/asa84/configuration/guide/asa_84_cli_config/vpn_ike.html#wp1042302
You can refer the following KB to enable the RRAS logging.
RRAS: Logging should be enabled on the RRAS server
http://technet.microsoft.com/zh-cn/library/ee922651(v=ws.10).aspx
Hope this helps.
*** This response contains a reference to a third party World Wide Web site. Microsoft is providing this information as a convenience to you. Microsoft does
not control these sites and has not tested any software or information found on these sites; therefore, Microsoft cannot make any representations regarding the quality, safety, or suitability of any software or information found there. There are inherent dangers
in the use of any software found on the Internet, and Microsoft cautions you to make sure that you completely understand the risk before retrieving any software from the Internet. ***
We
are trying to better understand customer views on social support experience, so your participation in this
interview project would be greatly appreciated if you have time.
Thanks for helping make community forums a great place. -
Cronjob: ssh connection fails
Hi Forums,
I have a bash script which does some tasks on a remote server via ssh. The connection uses a private/public key without a passphrase as this seems to be the only way to connect via ssh in a cronjob. If I execute the script manually, then it works and connects to the remote server. If the script is run as cronjob, then it doesn't work and this error message appears in the crond log:
CMDOUT (ssh: Could not resolve hostname ###HOSTSNAME###: Name or service not known)
The network connection is set up manually (not by DHCP) in the rc.conf and a nameserver entry in the resolv.conf. Could this be the reason or why else could the connection fail when executed as a cronjob?
Last edited by clownfish (2012-06-27 16:42:12)Cron doesn't use your existing shell environment unless you tell it to.
You should use something like keychain, ssh-agent, or gpg-agent. This allows you to maintain the security of having a passphrase while allowing you to source those keys for use in scripts and cronjobs. That way you just type in the passphrase once (at boot time, or another time of your choosing).
I use this snippet in .bashrc to ask to for passphrases if they aren't already cached:
### SSH and GPG KEY HANDLING ###
keys="logo_rsa web_rsa github_rsa"
if [ "$(hostname)" != 'homeserver' ];then
keys="$keys id_rsa"
fi
type -P keychain &>/dev/null || { echo "I require keychain but it's not installed. Aborting." >&2; }
eval $(keychain -q --eval $(echo "$keys"))
Then to use in a cronjob or script, source the keys much the same way:
# Source SSH keys
type -P keychain &>/dev/null || { echo "I require keychain but it's not installed. Aborting." >&2; exit 1; }
eval `keychain --noask --eval --agents ssh id_rsa` || exit 1
You can do this same thing with just ssh-agent or gpg-agent --- just takes a few more lines of code. Some googling and man page reading will lead you in the right direction
Scott
Last edited by firecat53 (2012-06-27 15:36:04) -
I have an ipad and it's been refusing to connect to the wifi lately no matter where I go,
it used to work and then all of a sudden it wont.
i type in the password and it comes up with 'unable to connect to wifi'
anyone know how I can fix it?First, try a system reset. It cures many ills and it's quick, easy and harmless...
Hold down the on/off switch and the Home button simultaneously until you see the Apple logo. Ignore the "Slide to power off" text if it appears. You will not lose any apps, data, music, movies, settings, etc.
If the Reset doesn't work, try a Restore. Note that it's nowhere near as quick as a Reset. It could take well over an hour! Connect via cable to the computer that you use for sync. From iTunes, select the iPad/iPod and then select the Summary tab. Follow directions for Restore and be sure to say "yes" to the backup. You will be warned that all data (apps, music, movies, etc.) will be erased but, as the Restore finishes, you will be asked if you wish the contents of the backup to be copied to the iPad/iPod. Again, say "yes."
At the end of the basic Restore, you will be asked if you wish to sync the iPad/iPod. As before, say "yes." Note that that sync selection will disappear and the Restore will end if you do not respond within a reasonable time. If that happens, only the apps that are part of the IOS will appear on your device. Corrective action is simple - choose manual "Sync" from the bottom right of iTunes.
If you're unable to do the Restore, go into Recovery Mode per the instructions here. -
Good Day,
I'm encountering this problem
java.sql.SQLException: Listener refused the connection with the following error:
ORA-12514, TNS:listener does not currently know of service requested in connect descriptor
here's the java code
Class.forName("oracle.jdbc.driver.OracleDriver").newInstance();
String url = "jdbc:oracle:thin:@//10.143.85.21/UCSL";
String userName = "mssoriano";
String passWord = "mssoriano_4319";
conn = DriverManager.getConnection(url, userName, passWord);
and here's my tnsnames.ora
UCSL =
(DESCRIPTION =
(ADDRESS_LIST =
(ADDRESS = (PROTOCOL = TCP)(HOST = 10.143.85.21)(PORT = 1521))
(CONNECT_DATA =
(SID = psusldb11)
Please do let me know if what may the cause of the problem and how to solve this. Thank you and God bless.Hi,
see this example
Connect to Oracle DB via JDBC driver
Frank -
I have my Mac (OSX 10.5.1) connected to a router (not wireless) via an ethernet cable.
I was wondering if it is possible to connect to the internet on my laptop (Windows XP) via Airport on the Mac. I would prefer to do this than buying a wireless router. It currently isn't working for me however, Windows refuses to connect. Is there anything I must do to make it work, or is it possible at all?Hello name88. Welcome to the Apple Discussions!
Yes, this should be possible. Try the following ...
To setup for Internet Sharing (Wired to Wireless):
Setup the Network
Cable Modem > (Ethernet cable) > \[Ethernet port] Mac > (wireless) > PC
Enable Software Firewall
System Preferences > Security > Firewall
o Block all incoming connections (enabled)
Enable Internet Sharing
System Preferences > Sharing
o Select "Internet Sharing" from the options in the left column
o Share your connection from: Built-in Ethernet
o To computers using: AirPort (checked) (Note: Uncheck all other entries in the list.)
AirPort Options...
o Network Name: <anything you want>
o Channel: Automatic
o Enable encryption (using WEP) (optional)
o Password: (optional)
o Confirm Password: (optional)
o WEP Key Length: (optional)
o Click OK
o Select "Internet Sharing" again
o Click "Start" to start Internet Sharing
o Click Start -
Connect via P2 Interface to WSA S160 for initial set-up
Currently have deployed WSA with the following interfaces:
1/ Management : 1.1.2.2/24
2/ P1 : 10.10.20.14/24 (inside DMZ interface for secure network)
3/ P2: 8.8.8.136/28 (Public DMZ interface)
Issue:
I can not reach Management interface on segment at this time to run set-up wizard for configuring the WSA.
I can reach and talk to P2 interface via ASA 5540 which controls all inbound traffic to WSA.
How can I remotely reach WSA via P2 to run setup wizard via GUI for WsA set-up?
I know I must use http://IP_ADS:8080/8443 but how can I get there via public IP Address or proxy.
Note: I have a proxy 5.5.5.5 which I have built acl on 5540 to allow tcp 8080/8443 to 8.8.8.136.Setup wizard can only be access through the management interface(M1). At this moment the only choice will be to connect via console.
You may also connect directly to the unit's COM port using a null modem cable (9-pin serial) in order to establish a command line interface (CLI) session. This is particularly useful during the initial configuration process of the device. In order to proceed, you will need the following:
9-pin female-to-female serial cable (null modem)
Serial console client (such as HyperTerminal or PuTTY)
Please use the following procedure as a guide:
Connect your laptop (or other client device) to the serial port on the back of the unit using a standard 9-pin null modem cable.
Launch your preferred serial console client. Specify the appropriate COM port to use on your local machine, and use the following settings for the connection:
Bits per second: 9600
Data bits: 8
Parity: None
Stop bits: 1
Flow control: Hardware (RTS/CTS, DSR/DTR)
Once the session has been opened, you may need to press Enter to trigger output. At this time, you should see a login prompt akin to what would be seen in a Telnet- or SSH-based CLI session.
Log in using your appropriate credentials.
Thanks,
Tery Le Febvere -
I am attempting use BC4J via an applet deployed as a simple JAR archive.
When trying to connect via the standard LoginDialog class I get the folowing exceptions:
Failed to query environment: 'access denied (java.util.PropertyPermission jbo.debugoutput read)'
Diagnostics: Silencing all diagnostic output (use -Djbo.debugoutput=console to see it)
Failed to query environment: 'access denied (java.util.PropertyPermission jbo.logging.show.timing read)'
Failed to query environment: 'access denied (java.util.PropertyPermission jbo.logging.show.function read)'
Failed to query environment: 'access denied (java.util.PropertyPermission jbo.logging.show.level read)'
Failed to query environment: 'access denied (java.util.PropertyPermission jbo.logging.show.linecount read)'
Failed to query environment: 'access denied (java.util.PropertyPermission jbo.logging.trace.threshold read)'
Failed to query environment: 'access denied (java.util.PropertyPermission jbo.jdbc.driver.verbose read)'
Exception occurred during event dispatching:
java.lang.ExceptionInInitializerError: java.security.AccessControlException: access denied (java.sql.SQLPermission setLog)
at java.security.AccessControlContext.checkPermission(AccessControlContext.java:272)
at java.security.AccessController.checkPermission(AccessController.java:399)
at java.lang.SecurityManager.checkPermission(SecurityManager.java:545)
at java.sql.DriverManager.setLogStream(DriverManager.java:397)
at oracle.jbo.common.Diagnostic.init(Diagnostic.java:119)
at oracle.jbo.common.Diagnostic.<clinit>(Diagnostic.java:62)
at oracle.jbo.common.JboInitialContextFactory.getInitialContext(JboInitialContextFactory.java:49)
at javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:668)
at javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:246)
at javax.naming.InitialContext.init(InitialContext.java:222)
at javax.naming.InitialContext.<init>(InitialContext.java:198)
at oracle.dacf.dataset.SessionInfo._createAppModule(SessionInfo.java:2279)
at oracle.dacf.dataset.SessionInfo.connect(SessionInfo.java:1787)
at oracle.dacf.dataset.DbAccessImpl.connect(DbAccessImpl.java:458)
at oracle.dacf.control.swing.LoginDlg._connectToDB(LoginDlg.java:1803)
at oracle.dacf.control.swing.LoginDlg._okButtonClicked(LoginDlg.java:1740)
at oracle.dacf.control.swing.LoginDlg.actionPerformed(LoginDlg.java:1794)
at javax.swing.AbstractButton.fireActionPerformed(AbstractButton.java:1450)
at javax.swing.AbstractButton$ForwardActionEvents.actionPerformed(AbstractButton.java:1504)
Has anyone experienced this? If so I would be very grateful for any advice.
Thanks
MartinHello,
It seems I have quite the same pb :
I developped an applet connecting Oracle 7.3.4 via JDBC oracle Thin
when I run the applet with JDevelopper 3.1
everything is OK, but when I use it from
a browser , the Logon window refuses to log
and have no other possibility but to cancel
and in the java console I have :
Java(TM) Plug-in: Version 1.3.0_01
Utilisation de la version JRE 1.3.0_01 Java HotSpot(TM) Client VM
c: clear console window
f: finalize objects on finalization queue
g: garbage collect
h: display this help message
l: dump classloader list
m: print memory usage
q: hide console
s: dump system properties
t: dump thread list
x: clear classloader cache
0-5: set trace level to <n>
Failed to query environment: 'access denied (java.util.PropertyPermission jbo.debugoutput read)'
Diagnostics: Silencing all diagnostic output (use -Djbo.debugoutput=console to see it)
Failed to query environment: 'access denied (java.util.PropertyPermission jbo.logging.show.timing read)'
Failed to query environment: 'access denied (java.util.PropertyPermission jbo.logging.show.function read)'
Failed to query environment: 'access denied (java.util.PropertyPermission jbo.logging.show.level read)'
Failed to query environment: 'access denied (java.util.PropertyPermission jbo.logging.show.linecount read)'
Failed to query environment: 'access denied (java.util.PropertyPermission jbo.logging.trace.threshold read)'
Failed to query environment: 'access denied (java.util.PropertyPermission jbo.jdbc.driver.verbose read)'
Exception occurred during event dispatching:
java.lang.ExceptionInInitializerError: java.security.AccessControlException: access denied (java.sql.SQLPermission setLog)
at java.security.AccessControlContext.checkPermission(Unknown Source)
at java.security.AccessController.checkPermission(Unknown Source)
at java.lang.SecurityManager.checkPermission(Unknown Source)
at java.sql.DriverManager.setLogStream(Unknown Source)
at oracle.jbo.common.Diagnostic.init(Diagnostic.java:119)
at oracle.jbo.common.Diagnostic.<clinit>(Diagnostic.java:62)
at oracle.jbo.common.JboInitialContextFactory.getInitialContext(JboInitialContextFactory.java:49)
at javax.naming.spi.NamingManager.getInitialContext(Unknown Source)
at javax.naming.InitialContext.getDefaultInitCtx(Unknown Source)
at javax.naming.InitialContext.init(Unknown Source)
at javax.naming.InitialContext.<init>(Unknown Source)
at oracle.dacf.dataset.SessionInfo._createAppModule(SessionInfo.java:2279)
at oracle.dacf.dataset.SessionInfo.connect(SessionInfo.java:1787)
at oracle.dacf.dataset.DbAccessImpl.connect(DbAccessImpl.java:458)
at oracle.dacf.control.swing.LoginDlg._connectToDB(LoginDlg.java:1803)
at oracle.dacf.control.swing.LoginDlg._okButtonClicked(LoginDlg.java:1740)
at oracle.dacf.control.swing.LoginDlg.actionPerformed(LoginDlg.java:1794)
at javax.swing.AbstractButton.fireActionPerformed(Unknown Source)
at javax.swing.AbstractButton$ForwardActionEvents.actionPerformed(Unknown Source)
at javax.swing.DefaultButtonModel.fireActionPerformed(Unknown Source)
at javax.swing.DefaultButtonModel.setPressed(Unknown Source)
at javax.swing.plaf.basic.BasicButtonListener.mouseReleased(Unknown Source)
at java.awt.Component.processMouseEvent(Unknown Source)
at java.awt.Component.processEvent(Unknown Source)
at java.awt.Container.processEvent(Unknown Source)
at java.awt.Component.dispatchEventImpl(Unknown Source)
at java.awt.Container.dispatchEventImpl(Unknown Source)
at java.awt.Component.dispatchEvent(Unknown Source)
at java.awt.LightweightDispatcher.retargetMouseEvent(Unknown Source)
at java.awt.LightweightDispatcher.processMouseEvent(Unknown Source)
at java.awt.LightweightDispatcher.dispatchEvent(Unknown Source)
at java.awt.Container.dispatchEventImpl(Unknown Source)
at java.awt.Window.dispatchEventImpl(Unkno wn Source)
at java.awt.Component.dispatchEvent(Unknown Source)
at java.awt.EventQueue.dispatchEvent(Unknown Source)
at java.awt.EventDispatchThread.pumpOneEvent(Unknown Source)
at java.awt.EventDispatchThread.pumpEvents(Unknown Source)
at java.awt.EventDispatchThread.run(Unknown Source)
oracle.dacf.control.LoginFailureException: The login did not succeed - aborting.
at operateur.ViewOperateur.init(ViewOperateur.java:180)
at sun.applet.AppletPanel.run(Unknown Source)
at java.lang.Thread.run(Unknown Source)
I think everything is OK with my Applet
deployment, maybe a security pb ???
Thanks for any help...
Bruno
Maybe you are looking for
-
Open a file within a class and be able to access it?
hi, would like to reduce the code sitting in my main within a class. My problem is not full understanding how i can do this! I've been thinking along the lines of declaring the fileinputstream & Bufferstream variables as Private class variables and h
-
SQL Dataset errors in BIP 11G Trial Edition
Hi I'm trialling 11G and trying to get a SQL dataset to work which is used in our 10.1.3.4.2 installation. The SQL queries a package which calls an inline function to return results based on Parameter values. This works without error both in the 10G
-
Ipod/itunes problems...help please
I have some 7000 songs on itunes. Yesterday I went to burn 2 new CDS to itunes and whilst they burnt they took an age to do so and the resulting files were 'warped'...and cannot be listened to on either the ipods we have or the itunes lbrary direct.
-
What is wrong - my miniatyres from the last year do not show?
When I start Elements Organizer 8 the latest images do not show - just grey pictures with an hourglass.When I enlarge the miniatyres so that only 2 of the show at a time they suddenly appear. This is very troublesome because I can not organize my pi
-
ITunes not opening after update
when i click on the iTunes app it do not open