Re: ARERR 329 Message
** I thought Remedy is aware of this and addressed this in a patch, as it is against security best practices and it is considered a security leak.But I don't know what version # or patch on the top of my head (i'm still running ARS 5.1.2...)Regards,MichielOn 4/25/06, strauss [EMAIL PROTECTED] wrote: That requires localizing the server, which I have never had any cause to do, or even test. What are the implications of doing that in an environment that has never required localization?? Christopher Strauss, MSLSRemedy Database AdministratorUniversity of North Texas Computing Centerhttp://remedy.unt.edu/-Original Message-From: Action Request System discussion list(ARSList) [mailto: arslist@ARSLIST.ORG] On Behalf Of Jarl GrønengSent: Monday, April 24, 2006 10:54 PMTo: arslist@ARSLIST.ORGSubject: Re: ARERR 329 Message You can add an entry in the form AR System Message Catalog, and then change the message to whatever you like. We use Login failed, check you loginname and/or passwordBut you still get the 329 error message number. --JarlOn 4/25/06, strauss [EMAIL PROTECTED] wrote: Some of our security people have objected to the logon error one gets when you use a valid Login Name but a bad password: ARERR [329] nvalid password for an existing user Has anyone had to deal with that before?If it is possible to change an error message at the client level like that, I have never had the occasion to do so before. Any ideas? Christopher Strauss, MSLS Remedy Database Administrator University of North Texas Computing Center http://remedy.unt.edu/ __ _ UNSUBSCRIBE or access ARSlist Archives at http://www.wwrug.org ___UNSUBSCRIBE or access ARSlist Archives at http://www.wwrug.org___ UNSUBSCRIBE or access ARSlist Archives at http://www.wwrug.org __20060125___This posting was submitted with HTML in it___
Re: ARERR 329 Message
I just checked out client (6.3) and it reports failed authentication. However, from the mid-tier (6.3) we receive the invalid password for an existing user error. ___ UNSUBSCRIBE or access ARSlist Archives at http://www.wwrug.org
Re: ARERR 329 Message
** Hi Strauss, This has been fixed in 6.3 Patch 16. Fix requires both the Server and Mid Tier be at patch level 16. Thanks, Dipti From: Action Request System discussion list(ARSList) [mailto:[EMAIL PROTECTED] On Behalf Of Michiel Beijen Sent: Tuesday, April 25, 2006 12:52 AM To: arslist@ARSLIST.ORG Subject: Re: ARERR 329 Message ** I thought Remedy is aware of this and addressed this in a patch, as it is against security best practices and it is considered a security leak. But I don't know what version # or patch on the top of my head (i'm still running ARS 5.1.2...) Regards, Michiel On 4/25/06, strauss [EMAIL PROTECTED] wrote: That requires localizing the server, which I have never had any cause to do, or even test. What are the implications of doing that in an environment that has never required localization?? Christopher Strauss, MSLS Remedy Database Administrator University of North Texas Computing Center http://remedy.unt.edu/ -Original Message- From: Action Request System discussion list(ARSList) [mailto: arslist@ARSLIST.ORG] On Behalf Of Jarl Grøneng Sent: Monday, April 24, 2006 10:54 PM To: arslist@ARSLIST.ORG Subject: Re: ARERR 329 Message You can add an entry in the form AR System Message Catalog, and then change the message to whatever you like. We use Login failed, check you loginname and/or password But you still get the 329 error message number. -- Jarl On 4/25/06, strauss [EMAIL PROTECTED] wrote: Some of our security people have objected to the logon error one gets when you use a valid Login Name but a bad password: ARERR [329] nvalid password for an existing user Has anyone had to deal with that before?If it is possible to change an error message at the client level like that, I have never had the occasion to do so before. Any ideas? Christopher Strauss, MSLS Remedy Database Administrator University of North Texas Computing Center http://remedy.unt.edu/ __ _ UNSUBSCRIBE or access ARSlist Archives at http://www.wwrug.org ___ UNSUBSCRIBE or access ARSlist Archives at http://www.wwrug.org ___ UNSUBSCRIBE or access ARSlist Archives at http://www.wwrug.org __20060125___This posting was submitted with HTML in it___ __20060125___This posting was submitted with HTML in it___
Re: ARERR 329 Message
** We are on ARS 5.1.2 for the foreseeable future, so that won't help here.Thanks anyway. Christopher Strauss, MSLSRemedy Database AdministratorUniversity of North Texas Computing Centerhttp://remedy.unt.edu/helpdesk/ From: Action Request System discussion list(ARSList) [mailto:[EMAIL PROTECTED] On Behalf Of Srivastava, DiptiSent: Tuesday, April 25, 2006 8:42 AMTo: arslist@ARSLIST.ORGSubject: Re: ARERR 329 Message ** Hi Strauss, This has been fixed in 6.3 Patch 16. Fix requires both the Server and Mid Tier be at patch level 16. Thanks, Dipti From: Action Request System discussion list(ARSList) [mailto:[EMAIL PROTECTED] On Behalf Of Michiel BeijenSent: Tuesday, April 25, 2006 12:52 AMTo: arslist@ARSLIST.ORGSubject: Re: ARERR 329 Message ** I thought Remedy is aware of this and addressed this in a patch, as it is against security best practices and it is considered a security leak.But I don't know what version # or patch on the top of my head (i'm still running ARS 5.1.2...)Regards,Michiel On 4/25/06, strauss [EMAIL PROTECTED] wrote: That requires localizing the server, which I have never had any cause to do, or even test. What are the implications of doing that in an environment that has never required localization?? Christopher Strauss, MSLSRemedy Database AdministratorUniversity of North Texas Computing Centerhttp://remedy.unt.edu/-Original Message-From: Action Request System discussion list(ARSList) [mailto: arslist@ARSLIST.ORG] On Behalf Of Jarl GrønengSent: Monday, April 24, 2006 10:54 PMTo: arslist@ARSLIST.ORGSubject: Re: ARERR 329 Message You can add an entry in the form "AR System Message Catalog", and then change the message to whatever you like. We use "Login failed, check you loginname and/or password"But you still get the 329 error message number. --JarlOn 4/25/06, strauss [EMAIL PROTECTED] wrote: Some of our security people have objected to the logon error one gets when you use a valid Login Name but a bad password: ARERR [329] nvalid password for an existing user Has anyone had to deal with that before?If it is possible to change an error message at the client level like that, I have never had the occasion to do so before. Any ideas? Christopher Strauss, MSLS Remedy Database Administrator University of North Texas Computing Center http://remedy.unt.edu/ __ _ UNSUBSCRIBE or access ARSlist Archives at http://www.wwrug.org ___UNSUBSCRIBE or access ARSlist Archives at http://www.wwrug.org___ UNSUBSCRIBE or access ARSlist Archives at http://www.wwrug.org __20060125___This posting was submitted with HTML in it___ __20060125___This posting was submitted with HTML in it___ __20060125___This posting was submitted with HTML in it___
Re: ARERR 329 Message
I added an entry in the AR System Message Catalog on my development 5.1.2 server for ARERR 329, and changed the server to activate Localized Error Messages. The User Tool immediately started reflecting the changed error message. I also made sure that everything that is required on mid-tier 5.1.2 was done - it already had the catalog server set properly. The mid-tier continues to use the old error message, even after a) cycling the AR Server service and b) restarting the mid-tier server completely. The cache had already been flushed, and the catalog server removed and added back in the Configuration Tool page. On the 5.1.2 mid-tier do I need to add the AR System Message Catalog to one of the deployed applications, or something??? It is not currently in any of them, but that is NOT one of the requirements for localized error messages listed on pp. 134-5 of the Dev_AR_Apps_Adv guide. Christopher Strauss, MSLS Remedy Database Administrator University of North Texas Computing Center http://remedy.unt.edu/ ITSM 5.5 p1243 (Help Desk 5.5.1 p1255, SLA 5.5 p1239, Approval 5.1 p1293) ARS 5.01.02 p1375, ARS Mail 5.1.2 p1303 Mid-Tier 5.1.2 p1337 and 6.3.0 p001 Rem-Mail 5.1.4.9 on BackOffice 2000: Win2K Sp4/SQLSrvr2K Sp3/Exchg2K Sp3;IIS 5.0 -Original Message- From: Action Request System discussion list(ARSList) [mailto:[EMAIL PROTECTED] On Behalf Of Jarl Grøneng Sent: Monday, April 24, 2006 10:54 PM To: arslist@ARSLIST.ORG Subject: Re: ARERR 329 Message You can add an entry in the form AR System Message Catalog, and then change the message to whatever you like. We use Login failed, check you loginname and/or password But you still get the 329 error message number. -- Jarl ___ UNSUBSCRIBE or access ARSlist Archives at http://www.wwrug.org
Re: ARERR 329 Message
You can add an entry in the form AR System Message Catalog, and then change the message to whatever you like. We use Login failed, check you loginname and/or password But you still get the 329 error message number. -- Jarl On 4/25/06, strauss [EMAIL PROTECTED] wrote: Some of our security people have objected to the logon error one gets when you use a valid Login Name but a bad password: ARERR [329] nvalid password for an existing user Has anyone had to deal with that before? If it is possible to change an error message at the client level like that, I have never had the occasion to do so before. Any ideas? Christopher Strauss, MSLS Remedy Database Administrator University of North Texas Computing Center http://remedy.unt.edu/ ___ UNSUBSCRIBE or access ARSlist Archives at http://www.wwrug.org ___ UNSUBSCRIBE or access ARSlist Archives at http://www.wwrug.org
Re: ARERR 329 Message
That requires localizing the server, which I have never had any cause to do, or even test. What are the implications of doing that in an environment that has never required localization?? Christopher Strauss, MSLS Remedy Database Administrator University of North Texas Computing Center http://remedy.unt.edu/ -Original Message- From: Action Request System discussion list(ARSList) [mailto:[EMAIL PROTECTED] On Behalf Of Jarl Grøneng Sent: Monday, April 24, 2006 10:54 PM To: arslist@ARSLIST.ORG Subject: Re: ARERR 329 Message You can add an entry in the form AR System Message Catalog, and then change the message to whatever you like. We use Login failed, check you loginname and/or password But you still get the 329 error message number. -- Jarl On 4/25/06, strauss [EMAIL PROTECTED] wrote: Some of our security people have objected to the logon error one gets when you use a valid Login Name but a bad password: ARERR [329] nvalid password for an existing user Has anyone had to deal with that before? If it is possible to change an error message at the client level like that, I have never had the occasion to do so before. Any ideas? Christopher Strauss, MSLS Remedy Database Administrator University of North Texas Computing Center http://remedy.unt.edu/ __ _ UNSUBSCRIBE or access ARSlist Archives at http://www.wwrug.org ___ UNSUBSCRIBE or access ARSlist Archives at http://www.wwrug.org ___ UNSUBSCRIBE or access ARSlist Archives at http://www.wwrug.org
