tag:blogger.com,1999:blog-18934942263195254662024-03-13T06:58:47.141+08:00Darenjidarenji.blogspot.comDarenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.comBlogger31125tag:blogger.com,1999:blog-1893494226319525466.post-75111942371169311472020-11-09T07:32:00.013+08:002020-11-16T07:38:23.854+08:00Announment : Beta Release of Deploying Access Manager in Docker Container<h2 style="text-align: left;">Deploying Access Manager in Docker Containers</h2><br /><p style="text-align: left;">Micro Focus is happy to announce the Beta release of deploying Access Manager as Containers. Access Manager supports Docker for deploying the containers. Access Manager components are delivered as Docker images and are self-sufficient to run on their own.</p><p style="text-align: left;">Access Manager Docker images are optimized to run on Kubernetes, a popular container orchestration engine for Docker. Kubernetes simplifies deploying, running, scaling, and upgrading Access Manager Docker images. The Access Manager Docker images are cloud-native applications and can run in Kubernetes environments deployed on Linux servers and cloud.</p><span><a name='more'></a></span><p style="text-align: left;">The following are some of the noteworthy advantages while deploying the Docker images in Kubernetes:</p><ul style="text-align: left;"><li>Significantly reduced installation and upgrade time, thereby reducing the maintenance cost.</li><li>Decreased downtime and reduced manual intervention for upkeep. Kubernetes constantly checks the health of the Access Manager pods. If a pod stops working, Kubernetes automatically starts a new one.</li><li>Kubernetes offers a built-in fault-tolerant environment and therefore has no service interruption.</li><li>Kubernetes has built-in isolation mechanisms such as namespaces. It allows you to group container resources using access permissions, thereby enhancing security.</li><li>Orchestrate and manage all container resources from a single control plane. This helps optimize the networking, load-balancing, security, and scaling across all Kubernetes nodes.</li><li>Access Manager components can be easily scaled up to meet high demands.</li><li>Support for deploying in cloud environments; Amazon EKS and Microsoft Azure AKS.</li></ul><div><blockquote>This release supports only a fresh installation of Access Manager v5.0. Upgrade from older versions is not supported.</blockquote></div><div><blockquote>Access Manager Docker images are supported only on a Kubernetes environment.</blockquote><p style="text-align: left;"><br /></p>The Beta Release will be available from <b>October 9 to December 11, 2020</b>. As part of this program, you will get the following resources:<br /><ul style="text-align: left;"><li>Beta build of Access Manager for your testing and feedback.</li><li>Early access to Documentation.</li><li>Dedicated forum for discussing topics related to this release.</li><li>Regular calls with Access Manager engineering and support teams where you can participate and share your feedback, issues, and well, kudos if you deserve it.</li></ul><br />Download link:</div><div><br /></div><a href="https://dl.netiq.com/Download?buildid=43HQQphN3jU~">https://dl.netiq.com/Download?buildid=43HQQphN3jU~</a>Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.com0tag:blogger.com,1999:blog-1893494226319525466.post-47783988827260975442020-10-11T09:00:00.002+08:002020-10-12T08:05:36.550+08:00Learning GoJS for Interative Javascript Diagrams<h2 style="text-align: left;">GoJS : Interactive JavaScript Diagrams for the Web</h2><p style="text-align: left;"><br /></p><h3 style="text-align: left;">Background</h3><p>In the recent project, customers commented that there is no updated network diagram for the frequent changes especially involving many network configuration changes. Even with the configuration changes reflected in the project documentations, such documentations are normally not read by the people as relevant information is just a tiny part of documentations.</p><p>Therefore a need to reflect such network diagram in a easier manner so people can easily see the latest network layout and configurations. That is when GoJS is discovered.</p><span><a name='more'></a></span><p style="text-align: left;"><br /></p><h3 style="text-align: left;">Introducing GoJS 2.1 (latest)</h3><p></p><p><b><a href="https://gojs.net/latest/index.html" rel="nofollow" target="_blank">GoJS </a></b>is a JavaScript and TypeScript library for building interactive diagrams and graphs</p><p>From simple flowcharts and org charts to highly-specific industrial diagrams, SCADA and BPMN diagrams, medical diagrams such as genograms and outbreak modeling diagrams, and more. GoJS makes constructing graphs of complex nodes, links, and groups easy with customizable templates and layouts.</p><p>GoJS offers advanced features for user interactivity such as drag-and-drop, copy-and-paste, in-place text editing, tooltips, context menus, automatic layouts, templates, data binding and models, transactional state and undo management, palettes, overviews, event handlers, commands, extensible tools for custom operations, and customizable animations.</p><p><br /></p><h3 style="text-align: left;">Removing GoJS Evalution Watermark</h3><p>You could use GoJS with Unlimited Evaluation, however you will see the Evaluation Watermark at the top left corner of your diagram as displayed in the diagram below:</p><p><br /></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjZG0Pl0gDRLqMH6N9yxEPcP6qSaeK5FdqhdlhnhS1Jcp1oGzRhK7V2JLs-IZfKPRGHvDHD6fdvdcJhbHqtEyyc0_zuxqxy5DS3AO21ZLTBh8T4pf5qWIYf0Rk7WTanNHkE000XieLZG-k/s1642/GoJS-with-eval-watermark.png" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="1238" data-original-width="1642" height="482" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjZG0Pl0gDRLqMH6N9yxEPcP6qSaeK5FdqhdlhnhS1Jcp1oGzRhK7V2JLs-IZfKPRGHvDHD6fdvdcJhbHqtEyyc0_zuxqxy5DS3AO21ZLTBh8T4pf5qWIYf0Rk7WTanNHkE000XieLZG-k/w640-h482/GoJS-with-eval-watermark.png" width="640" /></a></div><br /><p><br /></p><h3 style="text-align: left;">To remove the watermark</h3><p><br /></p><p><b>STEP 1:</b> Open the extracted GoJS folder where you extracted the <a href="https://gojs.net/latest/site.zip">site.zip</a> where you downloaded the latest GoJS binary.</p><p><br /></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhU20tb9bOMtcWZ3w4MTm9KzdgnyyH0lOsxiinze30Of3t7bohXaHWpEJty8SVRrvHFVO3UyKSmn4xJBWzgJqEketvtNT00p5rQjJXzlg9aqd8HQj-a4s5nlTJYtIwFswGjhNClL3K6lVI/s1320/GoJS-site-content.png" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="688" data-original-width="1320" height="334" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhU20tb9bOMtcWZ3w4MTm9KzdgnyyH0lOsxiinze30Of3t7bohXaHWpEJty8SVRrvHFVO3UyKSmn4xJBWzgJqEketvtNT00p5rQjJXzlg9aqd8HQj-a4s5nlTJYtIwFswGjhNClL3K6lVI/w640-h334/GoJS-site-content.png" width="640" /></a></div><br /><p><br /></p><p><b>STEP 2:</b> Go to <b><span style="color: #2b00fe;">release</span></b> folder.</p><p><br /></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg6gnTOAs2RIDXFNIwYnPP10brV2irJp1ii3twYUJ_7ZP54d-nANqj89tjLYyjvVqr-foR_1cBUmNVZXiz3mluSBQpI1FwpV3FyzghyphenhyphenPttjztwnlMJBT5uQGNm7lPNkxEfRuUxGdLr9ABM/s1348/GoJS-js-file.png" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="468" data-original-width="1348" height="222" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg6gnTOAs2RIDXFNIwYnPP10brV2irJp1ii3twYUJ_7ZP54d-nANqj89tjLYyjvVqr-foR_1cBUmNVZXiz3mluSBQpI1FwpV3FyzghyphenhyphenPttjztwnlMJBT5uQGNm7lPNkxEfRuUxGdLr9ABM/w640-h222/GoJS-js-file.png" width="640" /></a></div><br /><p><br /></p><p><b>STEP 3</b>: Locate <b>go.js</b> file. Open up with your favorite Text Editor.</p><p><b>STEP 4:</b> Perform search for the following string "<b><span style="color: red;">7eba17a4ca3b1a8346</span></b>".</p><p><br /></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgICjGjfRbQ9ZfmUUseHFdLulRyVGX4LqDZbIQTJJxXbHnX8CAaL70JQUzu1SzpdccZy8rg6xapIBh-fbBpyFaLF90Ui6TVebeqzRWAy9djCfh2UPy1eOSOgwc70Pu27NFTyAByja-4Jq8/s1622/GoJS-before-modify.png" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="780" data-original-width="1622" height="308" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgICjGjfRbQ9ZfmUUseHFdLulRyVGX4LqDZbIQTJJxXbHnX8CAaL70JQUzu1SzpdccZy8rg6xapIBh-fbBpyFaLF90Ui6TVebeqzRWAy9djCfh2UPy1eOSOgwc70Pu27NFTyAByja-4Jq8/w640-h308/GoJS-before-modify.png" width="640" /></a></div><br /><p><br /></p><p><b>STEP 5:</b> Replace the string highlighted with red box with the following "<span style="color: red;"><b>a.Ir = function(){return true}</b></span>"</p><p><br /></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgLrW9T7co1zjXOoVcDU-Za4P2WTUh5Derp42xmj0NpGvIkct0S1tACeh-0rKvatsAJicC-kj2vGc1we-cYQmfgO-Ex_KkI6CmlMZuoVO56a262bExnPhOXi5fTPtNGNPGJbCrPbTo7Od0/s1622/GoJS-before-modify-1.png" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="780" data-original-width="1622" height="308" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgLrW9T7co1zjXOoVcDU-Za4P2WTUh5Derp42xmj0NpGvIkct0S1tACeh-0rKvatsAJicC-kj2vGc1we-cYQmfgO-Ex_KkI6CmlMZuoVO56a262bExnPhOXi5fTPtNGNPGJbCrPbTo7Od0/w640-h308/GoJS-before-modify-1.png" width="640" /></a></div><p><br /></p><p><b>STEP 6:</b> Save the go.js file. Now the line should look like the following:</p><p><br /></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg84cjGuJeJjgysz6RH1flUXfI_TFN41ziGWrRE8oXwKBzR9Vplx96jQFAA6F1_WH8fKz9vMdzdQPLNzmKTSTSF9PmrF3oFjsCcD8yC219AhwrbZBsmYUJIG29Bsja4sNukxhxdNtoFz1k/s1626/GoJS-after-modify.png" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="738" data-original-width="1626" height="290" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg84cjGuJeJjgysz6RH1flUXfI_TFN41ziGWrRE8oXwKBzR9Vplx96jQFAA6F1_WH8fKz9vMdzdQPLNzmKTSTSF9PmrF3oFjsCcD8yC219AhwrbZBsmYUJIG29Bsja4sNukxhxdNtoFz1k/w640-h290/GoJS-after-modify.png" width="640" /></a></div><p><br /></p><p><b>STEP 7:</b> Reload your diagram, and you should see the Evaluation Watermark is gone.</p><p><br /></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgRip_MMEKHWMGpq7Gml0RmxZqbCtVdrrS1ru4efEPFPYrj8rptz-PjexZbrN7p_U2V_jcaC-FcgQdmy1_y-7F7H98RIC_5nNMbPqAd2KfpGB4cKKxgxzW7jxDwa9qB98T9nmSm3fuEJ7w/s1636/GoJS-with-no-eval-watermark.png" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="1238" data-original-width="1636" height="484" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgRip_MMEKHWMGpq7Gml0RmxZqbCtVdrrS1ru4efEPFPYrj8rptz-PjexZbrN7p_U2V_jcaC-FcgQdmy1_y-7F7H98RIC_5nNMbPqAd2KfpGB4cKKxgxzW7jxDwa9qB98T9nmSm3fuEJ7w/w640-h484/GoJS-with-no-eval-watermark.png" width="640" /></a></div><p><br /></p><p>Happy creating your interative diagrams.</p><p><br /></p><p><br /></p><p><br /></p><p><br /></p><p style="text-align: left;"><br /></p>Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.com0tag:blogger.com,1999:blog-1893494226319525466.post-70046521902501604302020-10-07T07:40:00.010+08:002020-10-07T07:43:24.342+08:00Introducing NetIQ Risk Service v2.0<h2 style="text-align: left;">Product Release Announcement: NetIQ Risk Service v2.0</h2><p><br /></p><p>Micro Focus is pleased to announce the availability of <b>NetIQ Risk Service v2.0</b>. This release brings advanced levels of <b>Adaptive Access Management (AAM)</b> to organizations that didn’t have the specialized knowledge or resources to implement it. Through its turnkey <b>integration with ArcSight Interset</b>, NetIQ Risk Service significantly simplifies the adoption of <b>User and Entity Behavioral Analytics (UEBA)</b>, enabling organizations to do more than simple step-up authentication. Used together, this solution from Micro Focus raises access management to a higher level of access control intelligence.</p><span><a name='more'></a></span><p><br /></p><h3 style="text-align: left;">New with this release</h3><p><br /></p><p>Included in this latest release of <b>NetIQ Risk Service</b> is out-of-the-box integration with <b>ArcSight Interset</b>. This combined solution is easy to set up and is virtually maintenance free, which distinguishes it from other <b>User and Entity Behavioral Analytics (UEBA)</b> offerings. <b>UEBA</b> solutions often require a substantial investment to initially customize and configure for a specific environment, as well as continued refinement of monitored metrics as users’ habits shift. </p><p> </p><p>Notable enhancements and capabilities in this release include: </p><p></p><blockquote><p>Out-of-the box integration with <b>ArcSight Interset’s cloud-based machine learning technology</b>. </p><p>Leverages more than <b>450</b> built-in unsupervised machine learning models to automatically profile matrices to measure risk. </p><p>Full feature parity with <b>NetIQ Access Manager’s Risk Engine</b>. </p><p>Now published as a <b>Docker container</b>, available through both the <b>Docker Hub</b> and <b>Micro Focus Customer Center</b>. </p><p>All interactions occur through standard API’s that are published. </p><p>Updated User Interface. </p></blockquote><p></p><p> </p><h3 style="text-align: left;">Learn more </h3><p><br /></p><p><strong style="background-color: white; box-sizing: border-box; color: #656668; font-family: AktivGrotesk, Arial, sans-serif; font-size: 16px; font-variant-ligatures: normal; orphans: 2; widows: 2;"></strong></p><p>Please refer to the Risk Service documentation for more information about this release as well as how it to configure it with Interset. NetIQ Access Manager customers can get v2.0 of the Risk Service by applying <b>SP3</b> to their <b>v4.5 </b>environment. NetIQ Advanced Authentication customers can upgrade to this latest release by applying <b>SP3</b> to their <b>v6.3</b> environment. </p>Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.com1tag:blogger.com,1999:blog-1893494226319525466.post-10170766822324731142020-09-25T18:11:00.002+08:002020-09-25T18:12:57.771+08:00 General Understanding of Docker & Kubernetes <h2 style="text-align: left;"> General Understanding of Docker and Kubernetes </h2><p><br /></p><h3 style="text-align: left;"><b><span style="font-size: x-large;"><span style="color: #6fa8dc;">Q.</span> </span></b>What is Docker? </h3><p><span style="color: #6aa84f; font-size: x-large;"><b>A.</b></span> Docker is a containerization platform that packages the application and all its dependencies together in the form of a docker container to ensure that the application works seamlessly in any environment.</p><span><a name='more'></a></span><p><br /></p><h3><b><span style="font-size: x-large;"><span style="color: #6fa8dc;">Q. </span></span></b>What is Docker Daemon?</h3><p><span style="color: #6aa84f; font-size: x-large;"><b>A.</b></span> Docker comes with Docker Daemon, which is the main program managing containers. Docker Daemon allows access to its features through Docker Engine API, used by Docker Command-Line Interface (CLI).</p><p><br /></p><h3><b><span style="font-size: x-large;"><span style="color: #6fa8dc;">Q. </span></span></b>What's a Docker image?</h3><p><span style="caret-color: rgb(106, 168, 79); color: #6aa84f;"><span style="font-size: x-large;"><b>A. </b></span></span>An image is a dormant, immutable, file that's a snapshot of a container. Images are created with the build command, and they'll produce a container when started with run.</p><p>Images are stored in a Docker registry such as registry.hub.docker.com. As images can become quite large, they are designed to be composed of layers of other images, allowing a minimal amount of data to be sent when transferring images over the network.</p><p><br /></p><h3><b><span style="font-size: x-large;"><span style="color: #6fa8dc;">Q. </span></span></b>What's a docker container?</h3><p><b style="caret-color: rgb(106, 168, 79); color: #6aa84f;"><span style="font-size: x-large;">A.</span> </b>In a programming metaphor, if a docker image is a class, then a docker container is an instance of a class—a runtime object. Container refers to operating system-level virtualization.</p><p><br /></p><h3><b><span style="font-size: x-large;"><span style="color: #6fa8dc;">Q. </span></span></b>What's Kubernetes?</h3><p><b style="caret-color: rgb(106, 168, 79); color: #6aa84f;"><span style="font-size: x-large;">A.</span> </b>Kubernetes is a popular container orchestration program. It’s a portable abstraction that’s compatible with the main cloud providers i.e. Google Cloud, Amazon Web Services, and Microsoft Azure.</p><p><br /></p><h3><b><span style="font-size: x-large;"><span style="color: #6fa8dc;">Q. </span></span></b>What's a Pod in Kubernetes?</h3><p><b style="caret-color: rgb(106, 168, 79); color: #6aa84f;"><span style="font-size: x-large;">A.</span> </b>A Pod encapsulates</p><p></p><ul style="text-align: left;"><li>one or more closely related containers</li><li>storage resources</li><li>a unique network IP</li><li>and configurations on how the container(s) should run.</li></ul><p></p><p>A pod is a basic unit that Kubernetes deals with and thereby represents a single instance of an application. Kubernetes Pods are mortal, when they die, they are not resurrected.</p><p><br /></p><h3><b><span style="font-size: x-large;"><span style="color: #6fa8dc;">Q. </span></span></b>What's a Node in the Kubernetes?</h3><p><b style="caret-color: rgb(106, 168, 79); color: #6aa84f;"><span style="font-size: x-large;">A. </span></b>A Node is a worker machine in Kubernetes and may be either a virtual or a physical machine, depending on the cluster. Each Node is managed by the Master. A Node can have multiple pods.</p><p><br /></p><h3><b><span style="font-size: x-large;"><span style="color: #6fa8dc;">Q. </span></span></b>What's a Service in Kubernetes?</h3><p><b style="caret-color: rgb(106, 168, 79); color: #6aa84f;"><span style="font-size: x-large;">A.</span> </b>Service is an abstraction that defines a logical set of Pods and a policy by which to access them, sometimes this pattern is called a micro-service. In other terms, Services are an interface to a group of containers so that consumers do not have to worry about anything beyond a single access location.</p><p><br /></p><h3><b><span style="font-size: x-large;"><span style="color: #6fa8dc;">Q. </span></span></b>What're Persistent Volumes in Kubernetes?</h3><p><b style="caret-color: rgb(106, 168, 79); color: #6aa84f;"><span style="font-size: x-large;">A. </span></b>To store data permanently, Kubernetes uses Persistent Volumes. Persistent Volumes provide a file system that can be mounted to the cluster, without being associated with any particular node.</p><p><br /></p><h3><b><span style="font-size: x-large;"><span style="color: #6fa8dc;">Q. </span></span></b>What is helm in Kubernetes?</h3><p><b style="caret-color: rgb(106, 168, 79); color: #6aa84f;"><span style="font-size: x-large;">A.</span> </b>Helm is a package manager for Kubernetes applications. In other terms, a helm is a tool for managing Kubernetes charts.</p><p><br /></p><h3><b><span style="font-size: x-large;"><span style="color: #6fa8dc;">Q. </span></span></b>What are the helm charts in Kubernetes?</h3><p><b style="caret-color: rgb(106, 168, 79); color: #6aa84f;"><span style="font-size: x-large;">A.</span> </b>A Helm chart is simply a collection of YAML template files organized into a specific directory structure. In other term, charts are packages of pre-configured Kubernetes resources.</p><p><br /></p><p></p><blockquote><p><b>Helm</b> helps you manage Kubernetes applications whereas Helm Charts help you define, install, and upgrade even the most complex Kubernetes application.</p><p><b>Kubernetes</b> is quickly becoming the new standard for deploying and managing software in the cloud.</p></blockquote><p></p>Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.com0tag:blogger.com,1999:blog-1893494226319525466.post-81966196548660910742020-09-23T09:26:00.002+08:002020-09-23T09:47:34.889+08:00Configure Local Firewall on SLES for NAM<h2 style="text-align: left;">Configuring SuSEfirewall2 on SLES 12 for Access Manager</h2>
<p>
<br />
</p>
<p>First, create a Firewall Service file that contains the necessary ports to open (the example below assumes the Administration Console and Identity Server run on the same machine - refer to the documentation to adjust as necessary)</p>
<p><b></b>
</p>
<blockquote><b>> vi /etc/sysconfig/SuSEfirewall2.d/services/netiq-access-manager</b>
</blockquote>
<p></p>
<p><span></span></p><a name='more'></a>Add this content to the file:<p></p>
<div class="codeview">
<br />## Name: NetIQ Access Manager Services<br /><br />## Description: Firewall Configuration file for Access Manager <br /><br /># space separated list of allowed TCP ports <br /><br /><b>TCP="80 389 443 524 636 1289 1443 2443 8080 8443:8446" </b><br /><br /># space separated list of allowed UDP ports <br /><br /><b>UDP="524" </b><br /><br /># space separated list of allowed RPC services <br /><br />RPC="" <br /><br /># space separated list of allowed IP protocols <br /><br />IP="" <br /><br /># space separated list of allowed UDP broadcast ports <br /><br />BROADCAST=""
</div>
<p>Next, alter the Firewall configuration to perform the port forwarding.</p>
<p></p><blockquote><b>> vi /etc/sysconfig/SuSEfirewall2</b></blockquote><p></p>
<p>Find the line:</p>
<p></p><blockquote>FW_REDIRECT=""</blockquote><p></p>
<p>And change to:</p>
<p></p><blockquote><b>FW_REDIRECT="0/0,0/0,tcp,80,8080 0/0,0/0,tcp,443,8443"</b></blockquote><p></p>
<p>Launch YaST Firewall, and enable. Add <b>Secure Shell Server</b> and <b>NetIQ Access Manager Services</b> to the <b>Allowed Services</b> for the zone you assigned to the interface. Apply changes and test.</p>Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.com0tag:blogger.com,1999:blog-1893494226319525466.post-34215896005777963072020-09-20T18:36:00.002+08:002020-09-20T18:36:49.445+08:00ASW2020, ASM & AS1M Dividend 1997 - 2020<h2 style="text-align: left;">Amanah Saham Wawasan 2020, Amanah Saham Malaysia and Amanah Saham 1Malaysia Dividend Rate</h2>
<p style="text-align: left;">
<br />
</p>
<p style="text-align: left;">Amanah Saham Malaysia (ASM) fund was launched on the 20th of April 2000. ASM is an equity income fund with fixed-price at RM1.00 per unit. The fund is open to all Malaysian including Bumi and non-Bumi. The fund objective is to provide unitholders with a long-term investment opportunity that generates regular and competitive returns through a diversified portfolio of investments</p>
<p style="text-align: left;">
<br />
</p>
<p>The table below is the historical Amanah Saham Wawasan 2020 (<b>ASW2020</b>), Amanah Saham Malaysia (<b>ASM</b>) and Amanah Saham 1Malaysia (<b>AS1M</b>) Dividend Rate from 1996 to 2020.
<br />
</p>
<p>
<br />
</p><span><a name='more'></a></span>
<table border="0" cellpadding="2" cellspacing="2">
<thead>
<tr>
<th style="font-weight: bold; text-align: center;">Year</th>
<th style="font-weight: bold; text-align: center;">ASW 2020</th>
<th style="font-weight: bold; text-align: center;">ASM</th>
<th style="font-weight: bold; text-align: center;">AS1M</th>
</tr>
</thead>
<tbody>
<tr>
<th style="text-align: center;">1997</th>
<td style="text-align: center;">10.10</td>
<td style="text-align: center;">-</td>
<td style="text-align: center;">-</td>
</tr>
<tr>
<th style="text-align: center;">1998</th>
<td style="text-align: center;">9.80</td>
<td style="text-align: center;">-</td>
<td style="text-align: center;">-</td>
</tr>
<tr>
<th style="text-align: center;">1999</th>
<td style="text-align: center;">8.20</td>
<td style="text-align: center;">-</td>
<td style="text-align: center;">-</td>
</tr>
<tr>
<th style="text-align: center;">2000</th>
<td style="text-align: center;">8.80</td>
<td style="text-align: center;">-</td>
<td style="text-align: center;">-</td>
</tr>
<tr>
<th style="text-align: center;">2001</th>
<td style="text-align: center;">7.25</td>
<td style="text-align: center;">7.80</td>
<td style="text-align: center;">-</td>
</tr>
<tr>
<th style="text-align: center;">2002</th>
<td style="text-align: center;">7.25</td>
<td style="text-align: center;">7.00</td>
<td style="text-align: center;">-</td>
</tr>
<tr>
<th style="text-align: center;">2003</th>
<td style="text-align: center;">6.60</td>
<td style="text-align: center;">6.60</td>
<td style="text-align: center;">-</td>
</tr>
<tr>
<th style="text-align: center;">2004</th>
<td style="text-align: center;">7.00</td>
<td style="text-align: center;">7.00</td>
<td style="text-align: center;">-</td>
</tr>
<tr>
<th style="text-align: center;">2005</th>
<td style="text-align: center;">7.10</td>
<td style="text-align: center;">7.20</td>
<td style="text-align: center;">-</td>
</tr>
<tr>
<th style="text-align: center;">2006</th>
<td style="text-align: center;">6.80</td>
<td style="text-align: center;">6.75</td>
<td style="text-align: center;">-</td>
</tr>
<tr>
<th style="text-align: center;">2007</th>
<td style="text-align: center;">8.00</td>
<td style="text-align: center;">6.80</td>
<td style="text-align: center;">-</td>
</tr>
<tr>
<th style="text-align: center;">2008</th>
<td style="text-align: center;">7.00</td>
<td style="text-align: center;">7.80</td>
<td style="text-align: center;">-</td>
</tr>
<tr>
<th style="text-align: center;">2009</th>
<td style="text-align: center;">6.30</td>
<td style="text-align: center;">6.25</td>
<td style="text-align: center;">-</td>
</tr>
<tr>
<th style="text-align: center;">2010</th>
<td style="text-align: center;">6.35</td>
<td style="text-align: center;">6.30</td>
<td style="text-align: center;">6.38</td>
</tr>
<tr>
<th style="text-align: center;">2011</th>
<td style="text-align: center;">6.50</td>
<td style="text-align: center;">6.38</td>
<td style="text-align: center;">6.50</td>
</tr>
<tr>
<th style="text-align: center;">2012</th>
<td style="text-align: center;">6.60</td>
<td style="text-align: center;">6.50</td>
<td style="text-align: center;">6.60</td>
</tr>
<tr>
<th style="text-align: center;">2013</th>
<td style="text-align: center;">6.70</td>
<td style="text-align: center;">6.50</td>
<td style="text-align: center;">6.70</td>
</tr>
<tr>
<th style="text-align: center;">2014</th>
<td style="text-align: center;">6.60</td>
<td style="text-align: center;">6.60</td>
<td style="text-align: center;">6.60</td>
</tr>
<tr>
<th style="text-align: center;">2015</th>
<td style="text-align: center;">6.40</td>
<td style="text-align: center;">6.60</td>
<td style="text-align: center;">6.40</td>
</tr>
<tr>
<th style="text-align: center;">2016</th>
<td style="text-align: center;">6.30</td>
<td style="text-align: center;">6.30</td>
<td style="text-align: center;">6.10</td>
</tr>
<tr>
<th style="text-align: center;">2017</th>
<td style="text-align: center;">6.00</td>
<td style="text-align: center;">6.00</td>
<td style="text-align: center;">6.00</td>
</tr>
<tr>
<th style="text-align: center;">2018</th>
<td style="text-align: center;">6.00</td>
<td style="text-align: center;">6.25</td>
<td style="text-align: center;">6.00</td>
</tr>
<tr>
<th style="text-align: center;">2019</th>
<td style="text-align: center;">5.00</td>
<td style="text-align: center;">5.50</td>
<td style="text-align: center;">5.00</td>
</tr>
<tr>
<th style="text-align: center;">2020</th>
<td style="text-align: center;">4.00</td>
<td style="text-align: center;">4.25</td>
<td style="text-align: center;">SEP 30</td>
</tr>
</tbody>
</table>
<div>
<br />
</div>
<p>From 15 October 2018, Amanah Saham Wawasan 2020 is known as <b>Amanah Saham Malaysia 2 Wawasan (ASM2 Wawasan)</b>, whereas Amanah Saham 1 Malaysia is known as <b>Amanah Saham Malaysia (ASM 3)</b>.</p>
<p>
<br />
</p>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjLqP-MBRHZbHQoLpEVOeWKD_O-XLH7xpMuz9uDtoXGI6IfC4Cwo8DMgIC3sj2IgUVy9ryn6dyPYiVWp_hRfl7kAMa5jaxhNtyiLhVWX5EUKIzu6o0uHLAVbEtGuRzzCQH13Ia8EPAqjSE/s830/Penamaan_Semula_Amanah_Saham.jpg" style="margin-left: 1em; margin-right: 1em;">
<img border="0" data-original-height="530" data-original-width="830" height="399" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjLqP-MBRHZbHQoLpEVOeWKD_O-XLH7xpMuz9uDtoXGI6IfC4Cwo8DMgIC3sj2IgUVy9ryn6dyPYiVWp_hRfl7kAMa5jaxhNtyiLhVWX5EUKIzu6o0uHLAVbEtGuRzzCQH13Ia8EPAqjSE/w625-h399/Penamaan_Semula_Amanah_Saham.jpg" width="625" />
</a>
</div>
<br />
<p>
<br />
</p>
Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.com1tag:blogger.com,1999:blog-1893494226319525466.post-46292022302643008512020-09-19T08:22:00.013+08:002020-09-21T08:04:12.436+08:00Access Manager and Google Chrome v80<div style="height: auto;">
<h2 style="text-align: left;">Configuring Support for Access Manager on Google Chrome Browser</h2><p style="text-align: left;"><br /></p><p>Google Chrome version <b>80</b> onwards introduces a change of how cookies are handled in web browser with the enforcement of <b>SameSite</b> and <b>Secure Cookie</b> configuration. To support this Chrome version with Access Manager, you will need to configure the following options.</p><span><a name='more'></a></span><p><br /></p>
<h3 style="text-align: left;">For Identity Server</h3><p style="text-align: left;"><br /></p>
<div>
<ol style="text-align: left;">
<li>
<p>Uncomment the <span class="filename"><b>ResponseCookieProcessor</b></span> filter configuration to set the <span class="literal"><param-name> in the <b>web.xml</b> file.</span></p>
<p>The <span class="filename">web.xml</span> file is located in the following path:</p>
<blockquote><p><b>Linux:</b> /opt/novell/nam/idp/webapps/nidp/WEB-INF</p>
<p><b>Windows:</b> /opt/novell/nam/idp/webapps/nidp/WEB-INF</p>
</blockquote>
</li>
<li>
<p>Change the value from Active to <b>True</b> in the web.xml file.</p>
<div class="codeview"><filter><br /> <filter-name>ResponseCookieProcessor</filter-name><br /> <filter-class>com.novell.nidp.servlets.filters.cookie.ResponseCookieProcessor</filter-class><br /> <description>This filter is used to edit Response cookies before delivering to the client.</description><br /> <init-param><br /> <param-name>Active</param-name><br /> <param-value><b>True</b></param-value><br /> </init-param><br /> <init-param><br /> <param-name>SameSiteLevel</param-name><br /> <param-value>None</param-value><br /> </init-param> <br /> </filter><br /> <filter-mapping><br /> <filter-name>ResponseCookieProcessor</filter-name><br /> <url-pattern>/*</url-pattern><br /> </filter-mapping></div>
</li>
<li>
<p>Restart the servers.</p>
<blockquote><b>NOTE:</b> Perform the above steps on each node of Identity Server.</blockquote>
</li>
</ol></div>
<p style="text-align: left;"><br /></p>
<h3 style="text-align: left;">For Access Gateway</h3>
<p style="text-align: left;"><br /></p>
<div>
<ol>
<li>
<p>Click <b>Devices > Access Gateways > Edit > Advanced Options</b>.</p>
</li>
<li>
<p>Add the following Global Advanced Options:</p>
<div>
<ul>
<li>
<p><b><i>NAGGlobalOptions SameSiteCookie=on</i></b>. This option sets SameSite=None to all Set-Cookie headers coming from Access Gateway.</p></li>
<li>
<p><b><i>NAGGlobalOptions SameSiteOption </i></b><b><i><input-string></i></b>. Instead of using the default value None for the SameSite value, you can set it to <b>Lax</b> or <b>Strict</b>. For example, <b><i>NAGGlobalOptions SameSiteOption=Strict</i></b> or <b><i>NAGGlobalOptions SameSiteOption=Lax</i></b>.</p></li></ul></div>
</li>
<li>
<p><b>(Optional)</b> Click <b>Devices > Access Gateways > Edit > [Name of Reverse Proxy] > [Name of Proxy Service] > Advanced Options</b>.</p></li>
<li>
<p>Add the following options at proxy service level:</p>
<div>
<ul>
<li>
<p><b><i>NAGHostOptions SameSiteCookie=on</i></b></p></li>
<li>
<p><b><i>NAGHostOptions SameSiteOption=<input-string></i></b>. <input-string> can be <b>Strict</b> or <b>Lax</b>.</p>
<p>For more information about these options, see <a href="../../admin/data/b3kjnio.html#b3kjnio" target="_blank">Access Gateway Advanced Options</a> in the <a href="../../admin/data/bookinfo.html#bookinfo" target="_blank">Access Manager 4.5 Administration Guide</a>.</p></li></ul></div>
</li>
</ol></div>
</div>Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.com0tag:blogger.com,1999:blog-1893494226319525466.post-75979536246710819692020-09-15T05:41:00.003+08:002020-09-21T08:04:44.506+08:00Removing Jump Break in Blogger<h2 style="text-align: left;"> How to remove Jump Break in Blogger</h2>
<p>
<br />
</p>
<p>After clicking “<b>Read more >></b>” in a Blogger post, the page reloads and jumps to the line after the jump break. If you want to remove this so that it loads the post normally like before.</p>
<p>
<br />
</p><span><a name='more'></a></span>
<p><b>STEP 1:</b> Go to <b>Template > Edit HTML > Search</b> for jump-link and find the following code</p>
<p>
<br />
</p>
<div class="codeview">
<p><b:if cond='data:post.hasJumpLink'></p>
<p><div class='jump-link'></p>
<p><a expr:href='data:post.url + &quot;#more&quot;' expr:title='data:post.title'></p>
<p><data:post.jumpText/></p>
<p></a></p>
<p></div></p>
<p></b:if></p>
</div>
<p>
<br />
</p>
<p><b>STEP 2:</b> Remove <b>+ &quot;#more&quot;</b> so you are left with the following code…</p>
<p>
<br />
</p>
<div class="codeview">
<p><b:if cond='data:post.hasJumpLink'></p>
<p><div class='jump-link'></p>
<p><a expr:href='data:post.url' expr:title='data:post.title'></p>
<p><data:post.jumpText/></p>
<p></a></p>
<p></div></p>
<p></b:if></p>
</div>
<p>
<br />
</p>
<p><b>STEP 3:</b> Save your template.</p>
<div>
<br />
</div>Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.com0tag:blogger.com,1999:blog-1893494226319525466.post-58622369490238343942020-09-14T07:17:00.002+08:002020-09-14T07:43:20.239+08:00Adding Jump Break in Blogger<h2 style="text-align: left;">How to Add Jump Break in Blogger</h2><p>Jump Break is the out of box feature provided by Blogger to implement the "Read more" links on the blog's index page. Bloggers have been implementing "<b>Read more</b>" link(jump break) manually by editing their HTML which is complicated and error prone process.</p><p><br />With Jump Breaks, we could show just a snippet of our post on our blog's index page(home page) rather than showing the whole post content. Now a days, this is becoming a latest trend.</p><p><br /></p><h3 style="text-align: left;">Why one should use Jump Breaks?</h3><p style="text-align: left;"><br /></p><ul style="text-align: left;"><li>Speed up our page load time</li><li>Visitors see a selection of our posts without the need to scroll</li><li>Helps us to reduce the bounce rate of our blog - Visitors now have to click on the read more link to view the whole content.</li><li>Increase our page views</li></ul><p></p><span><a name='more'></a></span><p><br /></p><h3 style="text-align: left;">How to insert Jump Breaks in Blogger?</h3><div><br /></div>Adding jump breaks in our post is very simple and it could be achieved in two ways:<br /><ol style="text-align: left;"><li>Using Inset Jump Breaks Icon present in editor's toolbar</li><li>By adding <!-- more --> in HTML mode</li></ol> <br /><h3 style="text-align: left;"> Using Inset Jump Breaks Icon present in editor's toolbar</h3><p style="text-align: left;"><br /></p><ul style="text-align: left;"><li>Sign in in our blogger account</li><li>Go to Post Editor (<b>Blogger >> Edit Post </b>)</li><li>Place the cursor in the content area where one would like to add the Jump Breaks</li><li>Locate and click the "<b>Insert jump break</b>" icon present in the editor's toolbar</li></ul><p></p><p><br />The "jump break" will be inserted into our blog post at our cursor's position.</p><p><br /></p><div style="text-align: center;"><img border="0" data-original-height="256" data-original-width="930" height="110" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgAivA3ggIwj-E-hXBmTmxkRwcokjAed04faE-wycPMR8WAM_YHeis1-1F5LYNHIM4xBzjVAQO-HeL_oNLiS8GhSRf1ictHpunKLv_E1WenP28k_1fPOIsbhklwWwXQFKRaUFkKewUZuV4/w400-h110/jump-break.png" width="400" /></div><p style="text-align: left;"><br /></p> <p></p><h3 style="text-align: left;">By adding <!-- more --> in HTML mode</h3> <br />If we don't want to use the new post editor, we can still insert a jump break in HTML mode by adding <b><!-- more --></b> where we want to position the jump break.<p></p><br />Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.com0tag:blogger.com,1999:blog-1893494226319525466.post-87316863793348428902020-09-11T23:17:00.011+08:002020-09-19T13:29:23.603+08:00Google Android 11 Go Edition is Available<h2>Android 11 - Launch Apps 20 Percent Faster</h2>
<p>
<br />
</p>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjWCT0TsTdrVIJA7dWyAriW2N-95dunF9vqzQaw-Kpwmh5BIbLixPq8gtDCnuWcJz4CwgRPgJAfpqLgby6JLEKR2bHOCFOVauH3dzHT3yZDewSK-cdSj9lTkC7we_bMX-hRJ3HX1VyUNSQ/s1000/android_11_go_edition_v2.max-1000x1000.png" style="margin-left: 1em; margin-right: 1em;">
<img border="0" data-original-height="416" data-original-width="1000" height="260" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjWCT0TsTdrVIJA7dWyAriW2N-95dunF9vqzQaw-Kpwmh5BIbLixPq8gtDCnuWcJz4CwgRPgJAfpqLgby6JLEKR2bHOCFOVauH3dzHT3yZDewSK-cdSj9lTkC7we_bMX-hRJ3HX1VyUNSQ/w625-h260/android_11_go_edition_v2.max-1000x1000.png" width="625" />
</a>
</div>
<br />
<div class="separator" style="clear: both; text-align: center;">
<br />
</div>
<br />
<br />
<div style="text-align: justify;">Android 11 just launched this week for Pixel devices and phones from <b>OnePlus, Xiaomi, Oppo, and Realme</b>, and now Google has detailed its counterpart designed for low-powered devices: Android 11 (Go edition).</div>
<div style="text-align: justify;">
<br />
</div>
<div style="text-align: justify;">One of the biggest new features is that Android 11 (Go edition) is supposed to work on devices with <b>2GB of RAM</b> or less — a bump up from Android 10 (Go edition), which was made for devices with less than 1.5GB of RAM. But don’t necessarily expect to upgrade your existing 2GB phone: Android 11 Go is only going to come out with new phones with that much memory, not earlier ones, Google tells The Verge.</div>
<div style="text-align: justify;">
<br />
</div>
<div style="text-align: justify;">Also, Google says it’s up to OEMs whether they want to put Android 11 Go on a device instead of Android 10 Go, contradicting what was suggested in a document obtained by XDA Developers back in July. Google wouldn’t provide any examples of devices that can get the update.</div>
<div style="text-align: justify;">
<br />
</div><span><a name='more'></a></span>
<div style="text-align: justify;">But if you do happen to have a phone that can upgrade to Android 11 (Go edition) right now, you can try out new features like grouped notifications from chat apps in your notifications, like Android 11, and granting apps one-time permissions for things such as your microphone or camera. Apps will also launch 20 percent faster than they did on Android 10 (Go edition), according to Google. And Android 11 (Go edition) adds a gesture-based navigation system you can use to swipe around the phone’s UI.</div>
<div style="text-align: justify;">
<br />
</div>
<div style="text-align: justify;">On Android 11 (Go edition) apps launch <b>20 percent</b> faster than they did on Android 10 (Go edition), making it easier for you to switch between apps without your phone getting bogged down. Around the world people use different messaging apps to stay in touch, so they often find themselves toggling between them to chat with family and friends. Now Android 11 (Go edition) shows all of your conversations in a dedicated space in the notification section. This means you can see, respond to, and manage your conversations with family and friends all in one place, no matter what apps they use. </div>
<p style="text-align: left;">
<br />
</p>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEs_FiLENTQA-zv2ZoJ1QOzhVqc85kYzaaNYfQoEmZxseSRYglNSC6Ix0RId6R-282yxfTqMx2VmhUw6pxeHcbeo55LC9FdFUatg10udCP_u4CeUmgUVv9HTy1VmiOYN1m3kU6mwHFjyA/s350/giphy.gif" style="margin-left: 1em; margin-right: 1em;">
<img border="0" data-original-height="350" data-original-width="163" height="320" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEs_FiLENTQA-zv2ZoJ1QOzhVqc85kYzaaNYfQoEmZxseSRYglNSC6Ix0RId6R-282yxfTqMx2VmhUw6pxeHcbeo55LC9FdFUatg10udCP_u4CeUmgUVv9HTy1VmiOYN1m3kU6mwHFjyA/s320/giphy.gif" />
</a>
</div>
<p style="text-align: left;">
<br />
</p>
<div style="text-align: justify;">Affordability shouldn’t mean compromising privacy and security, which is why we’ve ensured that Go edition smartphones have access to the same industry-leading privacy protections as any Android device. Android 11 (Go edition) comes with new <b>privacy enhancements</b> that make it easier to control how and when data on your device is shared. With one-time permissions, you can grant an app access to specific sensors like your microphone, camera or location, just in that instance. And if you haven’t used an app for an extended period of time, app permissions will “auto-reset” and you will immediately receive a notification of the change. You can always choose to re-grant the app permissions the next time you open the app.</div>
<p style="text-align: left;">
<br />
</p>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEje6su4tIllrqDFKn9cm5Bl6ZqskC0M1O74wHEP3EMiObuaX8XS6kvtcuKK2QQ6ZRyC4ufDWhhVi1JxqQq1X1AIOon9dIu2tnSPyCHT00ZfLP-kEjxXYLzs8Hr0Fe2eHZTUWQ-Mh2vmFoU/s350/giphy-2.gif" style="margin-left: 1em; margin-right: 1em;">
<img border="0" data-original-height="350" data-original-width="163" height="320" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEje6su4tIllrqDFKn9cm5Bl6ZqskC0M1O74wHEP3EMiObuaX8XS6kvtcuKK2QQ6ZRyC4ufDWhhVi1JxqQq1X1AIOon9dIu2tnSPyCHT00ZfLP-kEjxXYLzs8Hr0Fe2eHZTUWQ-Mh2vmFoU/s320/giphy-2.gif" />
</a>
</div>
<p style="text-align: left;">
<br />
</p>
<p style="text-align: left;">
<br />
</p>Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.com0tag:blogger.com,1999:blog-1893494226319525466.post-28544705569495205312020-09-07T19:55:00.006+08:002020-09-13T10:01:15.502+08:00Malaysia Fixed Deposit (FD) Rates – SEP 2020<h2 style="text-align: left;">Fixed Deposit (FD) Rates as of September 2020</h2>
<div>
<br />
<table border="0" cellpadding="2" cellspacing="2">
<thead>
<tr>
<th style="text-align: center;"><strong>Bank</strong>
</th>
<th style="text-align: center;"><strong>Effective Rate (% p.a.)</strong>
</th>
<th style="text-align: center;"><strong>Minimum Deposit</strong>
</th>
<th style="text-align: center;"><strong>Maximum Deposit</strong>
</th>
<th style="text-align: center;"><strong>Tenure</strong>
</th>
<th style="text-align: center;"><strong>Promotion Period</strong>
</th>
</tr>
</thead>
<tbody style="text-align: center;">
<tr>
<th><strong>Affin Bank </strong>
<br />(eFD Online Promotion)</th>
<td>2.40 (3 months)
<p></p>
<p>2.50 (5 months)</p>
<p>2.48 (6 months)</p>
</td>
<td>RM10,000</td>
<td>RM200,000</td>
<td>3 months
<p></p>
<p>5 months</p>
<p>6 months</p>
</td>
<td>28 Aug to 10 Sept 2020</td>
</tr>
<tr>
<th><strong>Hong Leong Bank<br />
</strong>(eFixed Deposit / Deposit-i</th>
<td>2.30</td>
<td>RM5,000</td>
<td>RM2 million</td>
<td>3 months</td>
<td>1 Sept to 31 Oct 2020</td>
</tr>
<tr>
<th><strong>OCBC Bank</strong>
<br />(Premier Deal)</th>
<td>2.90</td>
<td>RM10,000</td>
<td>RM3 million</td>
<td>3 months</td>
<td>1 Apr to 31 Dec 2020</td>
</tr>
<tr>
<th><strong>Public Bank<br />
</strong>(Fixed Deposit / Term Deposit-i)</th>
<td>2.08 (3 months)
<p></p>
<p>2.28 (8 months)</p>
</td>
<td>RM10,000</td>
<td>RM10 million</td>
<td>3 months
<p></p>
<p>8 months</p>
</td>
<td>12 Aug to 31 Oct 2020</td>
</tr>
<tr>
<th><strong>Public Bank<br />
</strong>(eFD via FPX Campaign)</th>
<td>2.00 (1 month)
<p></p>
<p>2.10 (2 months)</p>
<p>2.20 (3 months)</p>
</td>
<td>RM5,000</td>
<td>RM2 million</td>
<td>1 month
<p></p>
<p>2 months</p>
<p>3 months</p>
</td>
<td>20 July to 30 Sept 2020</td>
</tr>
<tr>
<th><strong>RHB Bank</strong>
<br />(Term Deposit - Counter /
<br />eTerm Deposit via FPX)</th>
<td>2.45</td>
<td>RM10,000</td>
<td>Maximum FPX Transfers
<p></p>
</td>
<td>6 months</td>
<td>5 Aug to 30 Sept 2020</td>
</tr>
</tbody>
</table>
</div>Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.com0tag:blogger.com,1999:blog-1893494226319525466.post-75672860084832107732020-09-07T18:10:00.022+08:002020-09-21T21:47:43.731+08:00Caught Exception at Azure AD Driver Initialization<h2 style="text-align: left;">Identity Manager Azure Active Directory Driver - Caught Exception during Initialization</h2><p style="text-align: left;"><br /></p><h2 style="text-align: left;">Situation</h2>
<p>
<br />
</p>
<p>The following error is received when attempting to start the Azure AD driver.</p>
<div class="codeview">DirXML: [11/30/18 11:46:33.46]: TRACE: Azure AD_Azure: RESTSubscriptionShim.init()
<br />DirXML: [11/30/18 11:46:33.46]: TRACE: Azure AD: Caught exception during REST Channels initialization.
<br />DirXML: [11/30/18 11:46:33.46]: TRACE: Remote Loader: PublicationShim.init() returned:
<br />DirXML: [11/30/18 11:46:33.46]: TRACE: <nds dtdversion="4.x" ndsversion="8.x">
<br /> <source>
<br /> <product build="20171120_1044" instance="Azure AD" version="5.0.1.2">Identity Manager Driver for Azure AD and Office 365</product>
<br /> <contact>NetIQ Corporation</contact>
<br /> </source>
<br /> <output>
<br /> <status level="fatal" type="com.novell.nds.dirxml.driver.azure.StatusException"/>
<br /> </output>
<br /></nds>
<br />DirXML: [11/30/18 11:46:33.46]:
<br />DirXML Log Event -------------------
<br /> Driver = \VAULT\novell\services\DriverSet\Azure AD
<br /> Thread = Publisher
<br /> Level = fatal
<br />DirXML: [11/30/18 11:46:33.46]:
<br />DirXML Log Event -------------------
<br /> Driver = \VAULT\novell\services\DriverSet\Azure AD
<br /> Thread = Subscriber
<br /> Level = error
<br /> Message = Fatal error returned from shim</div>
<br />
<h2 style="text-align: left;">Environment</h2>
<p style="text-align: left;"><br /></p><ul style="text-align: left;"><li><b>Identity Manager Driver - Azure Active Directory version 5.0.1.2</b></li><li><b>Identity Manager 4.8.0</b></li></ul><p></p>
<div>
<p style="text-align: left;">
<br />
</p>
<h2 style="text-align: left;">Resolution</h2>
<p style="text-align: left;">
<br />
</p><p style="text-align: left;">The Application User password being used by the Identity Manager Azure Active Directory driver to authenticate into Azure Active Directory contained a special character in the password. In this case a <b><</b> character.
</p>
<p style="text-align: left;">
<br />
</p>
</div>
<p style="text-align: left;">After removing the special character from the password, and saving the new application password for the application user on the driver properties, the driver was able to start successfully.</p>Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.com0tag:blogger.com,1999:blog-1893494226319525466.post-51384035309125974132020-09-07T07:34:00.008+08:002020-09-13T09:56:38.359+08:00Active Directory to Identity Vault Group Synchronization is Limited to 5000 Members<h2 style="text-align: left;">Situation</h2>
<p style="text-align: justify;">Active Directory Groups that contain more than 5000 members cannot be published / synchronized to Identity Vault via Identity Manager's Active Directory Driver. They are truncated to 5000 members during the Publisher Channel polling cycle.</p>
<p style="text-align: justify;">However, migrating the Group into the Identity Vault will temporarily sync up the member lists but any subsequent modification of the group in Active Directory will cause the group to again be truncated to 5000 members in the Identity Vault.</p>
<p><b>Search:</b> Users members being lost from large groups </p>
<p>
<br />
</p>
<h2 style="text-align: left;">Environment</h2>
<p></p>
<ul style="text-align: left;">
<li><b>Novell Identity Manager 4.8</b>
</li>
<li><b>Novell Identity Manager Driver- Active Directory Driver</b>
</li>
</ul>
<p></p>
<p>
<br />
</p>
<h2 style="text-align: left;">Resolution</h2>
<p style="text-align: justify;">Under the Driver Parameters > Advanced Options, set <b>Enable DirSync Incremental Values</b> to <b>Yes</b>. This allows the driver to query and synchronize only modified users in the group (users being added or removed from the group) instead of the whole group. </p>
<p style="text-align: justify;">
<br />
</p>
<h2 style="text-align: left;">Additional Information</h2>
<p style="text-align: justify;">This issue occurs due to a limitation in <u><b>Microsoft's DirSync API</b></u>. Microsoft Active Directory limits the number of values returned in response to DirSync LDAP queries to 5000 values. This is an Active Directory hard limit and is not dependent on the MaxValRange parameter of the Domain Controller's LDAP Policy (see ntdsutil.exe)</p>
<p style="text-align: justify;">
<br />
</p>
<p style="text-align: justify;">For Active Directory whose Forest and domain are operating at or after "Windows Server 2003" domain functional levels, implementation of the DIRSYNC_LDAP_INCREMENTAL_VALUES control resolves this issue. This control was implemented since Identity Manager 3.5 Active Directory Driver Patch 1 - 20070601, now replaced by the Identity Manager 3.5.1 or later downloads.</p>
<p style="text-align: justify;">
<br />
</p>
<p style="text-align: justify;">The Incremental Values server control allows the Active Directory driver to ask for (and receive) only changed values of an attribute such as the member attribute on a group object preventing the need to continually sync the entire member list and hit the 5000 value DirSync limitation.</p>
<p>
<br />
</p>
<p style="text-align: justify;">This parameter is already included in current versions of the Active Directory driver configuration (3.6 and higher)</p>
<p style="text-align: justify;">
<br />
</p>
<div class="codeview">
<p><definition display-name="<b>Enable DirSync Incremental Values</b>" hide="false" id="115" name="enable-incremental-values" type="enum"></p>
<p><description>Ordinarily the publisher will receive all member values of a group when one or more has changed. This option reports only the added or deleted member values during the poll interval. Requires 2003 Forest functional mode.</description></p>
<p><enum-choice display-name="Yes">yes</enum-choice></p>
<p><enum-choice display-name="No">no</enum-choice></p>
<p><value>yes</value></p>
<p></definition></p>
</div>Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.comtag:blogger.com,1999:blog-1893494226319525466.post-4560286073663113452020-09-06T12:38:00.014+08:002020-09-20T18:53:03.843+08:00Authentication Denied due to Low Memory<h2 style="text-align: left;">New Authentications Denied due to Low System Memory</h2><p style="text-align: left;"><br /></p><h2 style="text-align: left;">Situation</h2>
<p>
<br />
</p>
<p>Periodically, new connections to Identity Server or Access Gateway (proxy) services were failing with the error.</p>
<p>
</p><blockquote>New authentications are being denied due to low system memory. Threshold <b>10</b> Current: <b>6.109713</b></blockquote>
<p>Restarting the Identity Server or Access Gateway would temporarily resolve the problem</p>
<p style="text-align: justify;">The Access Manager 4.4.4 Appliance each had 8 GB of memory. As the error was regarding authentications rather than proxy connections, it was suspected that this was java memory issue used by the embedded service provider.</p>
<p>Default Java memory is 1GB and had already been increased to 2 GB but the problem persisted.</p>
<p> </p>
<h3 style="text-align: left;">Environment</h3>
<p>
<br />
</p>
<p></p><ul style="text-align: left;"><li><b>Micro Focus Access Manager 4.4.4 Appliance(s)</b></li></ul><p></p>
<p><br /></p>
<h3 style="text-align: left;">Resolution</h3>
<p style="text-align: left;"><br /></p>
<p>Enabling Statistics Logging on the IDP Cluster will also enable statistics in the catalina log for the ESP on the Access Gateway. A recommended logging interval value for a production system would be 600 (seconds).</p>
<p>These statistics are then printed to the log every ten minutes and looks like</p>
<div class="codeview">
<p>NIDPMonitor: Tick: 598</p>
<p> System Status</p>
<p> Initialization State: Started</p>
<p> Total Sessions: 26497</p>
<p> Total Subjects: 1766</p>
<p> Total Principals: 3532</p>
<p> System Memory</p>
<p> Free Memory: 3.2926752E8 </p>
<p> Total Memory: 2.11759923E9 </p>
<p> <b>Percent Free: 15.549095</b></p></div>
<p>We can see that this is a busy Access Manager system.</p>
<p>Total memory is 2.11 exp 9 which equates to the -Xmx2048m (max Heap Memory) value configured in server.xml.</p>
<p>In the above statistic we only have <b>15%</b> of memory available.</p>
<p>
<br />
</p>
<p>The error mentioned above states "Threshold 10 Current: 6.109713"</p>
<p>The Threshold of 10 is defined in server.xml</p>
<p>
</p><div class="codeview"><b>JAVA_OPTS="${JAVA_OPTS} -Dnids.freemem.threshold=10" </b></div>
<p>and the ESP will limit further authentication when free memory goes below 10 % and throttling will begin as we see in this example.</p>
<div class="codeview">
<p> Free Memory: 1.36996032E8 </p>
<p> Total Memory: 2.11759923E9</p>
<p> Percent Free: 6.4694033</p>
<p> System Throttle:</p>
<p> Due to Low Memory: (Request Blocked)</p></div>
<p style="text-align: justify;">The solution here is to allocate more than 2 GB memory to the java heap. As the server has 8 GB RAM and is a dedicated Access Manager Appliance, 4 GB is sufficient for the operating system and we can allocate 4 GB to the java heap for the Identity Server.</p>
<p style="text-align: justify;">As we know from our baseline that we will use at least 2 GB for java, we should allocate at least this value at startup (-Xms) to improve performance.</p>
<p>
<br />
</p>
<p>The following line was added to <b>/opt/novell/nam/idp/conf/tomcat.conf</b> to resolve the problem.</p>
<div class="codeview"><b>JAVA_OPTS="-server -Xmx4096m -Xms2048m -Xss128k"</b></div>Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.com0tag:blogger.com,1999:blog-1893494226319525466.post-66262261405084917472020-09-06T08:15:00.018+08:002020-09-25T17:47:41.310+08:00Micro Focus GroupWise Web 18.2 - Part 2<h2 style="text-align: left;">Getting Started with GroupWise Web</h2>
<p>
<br />
</p>
<p></p>
<ul style="text-align: left;">
<li>Prerequisites</li>
<li>Installing Docker on SLES</li>
<li>Downloading and running the webacc-ng-config utility</li>
<li>Downloading and running the image</li>
<li>Updating the image</li>
<li>Updating the GroupWise Post Office Agent</li>
</ul>
<p></p>
<p><br /></p>
<h3 style="text-align: left;">Prerequisites</h3>
<p>
<br />
</p>
<p></p>
<ul style="text-align: left;">
<li>GroupWise 18.2 or later.</li>
<li>GroupWise POA with SOAP enabled. SOAP must have SSL enabled.</li>
<li>(Optional) TLS certificates for GroupWise Web.</li>
<li>Fill out the GroupWise Web Worksheet with the information for your GroupWise system.</li>
<li>Docker 17.0.9 or higher</li>
</ul>
<p></p>
<span><a name='more'></a></span><p><br /></p>
<h3 style="text-align: left;">Installing Docker on SLES</h3>
<p>
<br />
</p>
<p>If you haven't installed Docker before, you can install Docker on SLES 12 or SLES 15 following the steps below:</p>
<p>
<br />
</p>
<p>1. Add the Containers Module to your server using <b>YaST > Software > Add System Extensions</b> or <b>Modules</b>.</p>
<p>You can also add the Containers Module during the SLES install.</p>
<p>
<br />
</p>
<p>2. In a terminal, run the following commands:</p>
<div class="codeview">
<p><span><b>></b></span> <b><i>sudo zypper install docker</i></b>
</p>
<p><span><b>></b></span> <b><i>sudo systemctl enable docker</i></b>
</p>
<p><span><b>></b></span> <b><i>sudo systemctl start docker</i></b>
</p>
<p><span><b>></b></span> <b><i>sudo usermod -G docker [username]</i></b>
</p>
<p>This command lets the specified username run docker commands</p>
</div>
<p>
<br />
</p>
<p>3. In a terminal, run the following command to test the docker install</p>
<p>
<br />
</p>
<div class="codeview">
<p><span><b>></b></span> <b><i>docker run hello-world</i></b>
</p>
</div>
<p>
<br />
</p>
<p>For more information on Docker, see the SLES documentation below:</p>
<div class="codeview">
<p><b>SLES 12:</b> https://www.suse.com/documentation/sles-12/singlehtml/book_sles_docker/book_sles_docker.html</p>
<p>
<br />
</p>
<p><b>SLES 15:</b> https://www.suse.com/documentation/sles-15/singlehtml/book_sles_docker/book_sles_docker.html</p>
</div>
<p>
<br />
</p>
<p>
<br />
</p>
<h3 style="text-align: left;">Downloading and running the web-config utility</h3>
<p>
<br />
</p>
<p style="text-align: justify;">Before you can run the GroupWise Web image, you must run the webacc-ng-config utility to create a web.conf file that has the POA and DVA configuration of your GroupWise system. Go to https://hub.docker.com/r/mfgroupwise/webacc-ng-config for instructions to run the utility.</p>
<p>
<br />
</p>
<p><b>Note</b>: If you are using builds 18.1.1-133203 or 18.1.1-133447 of GroupWise Web, then you must use the poalist utility (https://hub.docker.com/r/mfgroupwise/poalist).</p>
<p>
<br />
</p>
<p>
<br />
</p>
<h3 style="text-align: left;">Downloading and running the image</h3>
<p>
<br />
</p>
<p style="text-align: justify;">The first time you run the GroupWise Web image, you need to specify the folder that has the web.conf file and (optionally) your TLS certificates. For convenience, the Web Client can create certificates for your system. For information about certificate best practices in GroupWise, see https://www.novell.com/documentation/groupwise18/gw18_guide_admin/data/adm_secadm_cert_server.html.</p>
<p>
<br />
</p>
<p>1. Run the following command to pull down the webacc-ng image:</p>
<p>
<br />
</p>
<div class="codeview">
<p><span><b>></b></span> <b><i>docker pull mfgroupwise/webacc-ng</i></b>
</p>
</div>
<p>
<br />
</p>
<p><span> </span><i>To download the multi-language build, run </i>
</p>
<p><i><br /></i>
</p>
<div class="codeview">
<p><i><b>> docker pull mfgroupwise/webacc-ng-multi</b></i>
</p>
</div>
<p>
<br />
</p>
<p>2. Run the following command to run the webacc-ng image using the information from the GroupWise Web Worksheet:</p>
<p>
<br />
</p>
<div class="codeview">
<p><span><b>></b></span><b> <i>docker run -d -v Web-config Location:/etc/nginx/gw --name webacc-ng --rm -e FQDN=Docker Server Name -e DNS_SERVER=DNS Server -p 80:80 -p 443:443 -v (Optional) Server Certificate:/certs mfgroupwise/webacc-ng:latest</i></b>
</p>
</div>
<p>
<br />
</p>
<p><span> </span>To run the multi-language build, change <b>mfgroupwise/webacc-ng</b> to <b>mfgroupwise/webacc-ng-multi</b>.</p>
<p>
<br />
</p>
<p><span> </span>To run with GroupWise self-signed certificates:</p>
<p>
<br />
</p>
<div class="codeview">
<p><span><b>></b></span> <b><i>docker run -d --rm -v /opt/novell/gw:/etc/nginx/gw --name webacc-ng -e FQDN=webacc.acme.com -e DNS_SERVER=192.168.1.5 -p 80:80 -p 443:443 mfgroupwise/webacc-ng:latest</i></b>
</p>
</div>
<p>
<br />
</p>
<p><span> </span>To run with commercially signed certificates:</p>
<p>
<br />
</p>
<div class="codeview">
<p><span><b>></b></span> <b><i>docker run -d --rm -v /opt/novell/gw:/etc/nginx/gw --name webacc-ng -e FQDN=webacc.acme.com -e DNS_SERVER=192.168.1.5 -p 80:80 -p 443:443 -v /opt/novell/gw/certs:/certs mfgroupwise/webacc-ng:latest</i></b>
</p>
</div>
<p>
<br />
</p>
<p><span> </span>Please note that <b>/opt/novell/gw/certs</b> should contain the server.key and server.crt files.</p>
<p>
<br />
</p>
<p>3. You can now access GroupWise Web by going to <b>https://<Docker_Server_Name></b>.</p>
<p>
<br />
</p>
<p>
<br />
</p>
<h3 style="text-align: left;">Updating the image</h3>
<p>
<br />
</p>
<p>To update the image to the latest version, you simply need to stop the image and start up a new instance with the latest code:</p>
<p>
<br />
</p>
<p>1. To stop and remove the old image, run the following commands:</p>
<p>
<br />
</p>
<div class="codeview">
<p><span><b>></b></span> <b><i>docker stop webacc-ng</i></b>
</p>
<p><span><b>></b></span> <b><i>docker rm webacc-ng</i></b>
</p>
</div>
<p>
<br />
</p>
<p>2. Run the following command to pull down the latest webacc-ng image:</p>
<p>
<br />
</p>
<div class="codeview">
<p><span><b>></b></span> <i><b>docker pull mfgroupwise/webacc-ng</b></i>
</p>
</div>
<p>
<br />
</p>
<p style="text-align: justify;">3. Rerun the docker run command you used in _Downloading and running the image_ to use the same webacc-ng-config file and certificates.</p>
<p>
<br />
</p>
<p>
<br />
</p>
<h3 style="text-align: left;">Updating the GroupWise Post Office Agent</h3>
<p>
<br />
</p>
<p style="text-align: justify;">In order to support new functionality in GroupWise Web, changes sometimes need to be made to the GroupWise Post Office Agent to which GroupWise web connects. When you need to update the GroupWise POA, a note will be added to the <b>Available Features</b> list. <b>Please note that the GroupWise download (and GroupWise Web) should only be used in a test environment</b>.</p>
<p style="text-align: justify;">
<br />
</p>
<p style="text-align: justify;">To download the GroupWise build that has the latest GroupWise Web support, go to the <b><a href="https://vibe.novell.com/novl/workspace/groupwise_web" target="_blank">Tech Preview Workspace</a></b> and follow the links to the latest GroupWise download.</p>
<p style="text-align: justify;">
<br />
</p>
<p style="text-align: justify;"><b>Note</b>: <b>To access the Tech Preview workspace and the GroupWise download, you must be registered to the tech preview forum.</b></p>Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.com0tag:blogger.com,1999:blog-1893494226319525466.post-50735396878444854592020-09-06T07:45:00.029+08:002020-09-23T08:08:52.627+08:00Micro Focus GroupWise Web 18.2 - Part 1<h2 style="text-align: left;">What is GroupWise Web</h2>
<p style="text-align: left;"><br /></p>
<div><p style="text-align: left;">In <a href="https://www.microfocus.com/en-us/products/groupwise/overview" target="_blank">GroupWise</a> 18.2, Micro Focus is pleased to introduce GroupWise Web. GroupWise Web has an updated UI to access your GroupWise mailbox on mobile devices, tablets, and desktops through your web browser.<br />
<br />While the feature sets are not identical, in the next release of GroupWise, GroupWise Web will replace GroupWise WebAccess. In GroupWise 18.2, you can continue to use WebAccess and introduce GroupWise Web dependent on your organization’s needs. We highly encourage you to transition your users from WebAccess to GroupWise Web.<br />
<br />As GroupWise Web will be replacing WebAccess, all new features and enhancements will only be added to GroupWise Web and not WebAccess. WebAccess will continue to be supported until the next release of GroupWise.
</p>
<p style="text-align: left;"><br /></p>
<div class='toc-pro'></div>
<h2 style="text-align: left;">Available Features</h2>
</div>
<p style="text-align: left;"><br /></p><p style="text-align: left;">As this is a tech preview, all features are not currently available in the software.
</p><p style="text-align: left;"><br /><br /></p><span><a name='more'></a></span>
<h3 style="text-align: left;">August 26, 2020</h3>
<div style="text-align: justify;">
<p></p><ul><li>General and mobile bug fixes</li></ul><div><br /></div><ul><li>Proxy is avaible for Chrome, Firefox, Safari, and mobile devices (iOS and Android). Two parts of proxy are still being developed and tested: proxy on tablets and folder management. Both of these will be available in a later tech preview release.</li></ul><p></p></div><p style="text-align: left;"><b><span> <span> </span></span>NOTE:</b> Make sure popups are allowed as proxy opens a new window/tab to access the proxied account.</p><p style="text-align: left;"><span> <span> </span></span></p><p style="text-align: left;"><b><span> </span>Known Issues for Proxy:</b></p><ul style="text-align: left;"><ul><li style="text-align: justify;">There is a delay on a proxied user's logout when closing the tab/window instead of using logout.</li></ul></ul><ul style="text-align: left;"><ul><li style="text-align: justify;">The "keep me logged in" option is not honored if you close the tab or window of your main mailbox while proxied in another window/tab. You will be prompted to log back in when you access your mailbox again.</li></ul></ul><ul style="text-align: left;"><ul><li style="text-align: justify;">Some soap sessions are not being logged out in the backend when a proxy session is closed in the browser.</li></ul></ul><ul style="text-align: left;"><ul><li style="text-align: justify;">A user cannot turn on an Out of Office rule unless they have both rules rights and appointment write rights. Attempting to do so without these rights clears the Out of Office rule.</li></ul></ul><ul style="text-align: left;"><ul><li style="text-align: justify;">When a user who is proxied into another user turns off an Out of Office rule before it has expired, the appointment created by the rule does not get removed</li></ul></ul><p></p><div>
<p style="text-align: left;"><br /></p>
<p style="text-align: left;"><b>Known Issue:</b></p>
</div>
<div>
<p style="text-align: left;">Items are not being marked ready when loaded in the preview pane until the mailbox/folder is updated. We are currently investigating this and it will be fixed in a later tech preview release.<br /><b><br /></b></p><p style="text-align: left;"><b>NOTE</b>: You need to update the GroupWise Post Office Agent for this update.</p>
</div>
<p style="text-align: left;"><br /></p>
<div>
<h3 style="text-align: left;">July 21, 2020</h3>
<div>
<p style="text-align: left;"></p><ul style="text-align: left;"><li>Resolved issues with URLs not loading correctly.</li></ul><ul style="text-align: left;"><li>Added the ability to load URLs that are embedded in text.</li></ul><ul style="text-align: left;"><li>Renamed Vacation Rule to Out of Office Rule.</li></ul><ul style="text-align: left;"><li>Improvements in item selection in the item list using the arrow keys.</li></ul><ul style="text-align: left;"><li>Usability improvements in the global search.</li></ul><ul style="text-align: left;"><li>Resolved incorrect sizing of messages with long single-line text and/or large images.</li></ul><ul style="text-align: left;"><li>General and mobile bug fixes.</li></ul><p></p>
</div>
</div>
<p style="text-align: left;"><br /></p>
<div>
<h3 style="text-align: left;">May 6, 2020</h3>
<div>
<p style="text-align: left;"></p><p></p><ul style="text-align: left;"><li style="text-align: justify;">Enhanced TLS configuration: The TLS setting now defaults to Intermediate configuration. Please visit https://wiki.mozilla.org/Security/Server_Side_TLS for additional details. If you provide the TLS certificates, they should be compatible with this configuration.</li></ul><p></p><ul style="text-align: left;"><li style="text-align: justify;">General and mobile bug fixes</li></ul><ul style="text-align: left;"><li>Bug fixes:</li></ul><ul style="text-align: left;"><ul><li>URLs in the message body of a plain text item are now clickable.</li></ul></ul><ul style="text-align: left;"><ul><li>Improved category naming functionality.</li></ul></ul><ul style="text-align: left;"><ul><li>Improved Address Book filter to include Organization type items in the results.</li></ul></ul><ul style="text-align: left;"><ul><li>Improved Address Book filter to look up a Contact by email address.</li></ul></ul><ul style="text-align: left;"><ul><li>Resolved filter inconsistencies in both Mailbox and Contact views.</li></ul></ul><ul style="text-align: left;"><ul><li>Resolved partial display of drop-down menus.</li></ul></ul><p></p>
</div>
<p style="text-align: left;"><br /></p>
<h3 style="text-align: left;">March 5, 2020</h3>
<div style="text-align: left;">
<p></p><ul style="text-align: left;"><li>Enhanced quick reply to show a status message when reply is sending and sent.</li></ul><ul style="text-align: left;"><li>Localization enhancements.</li></ul><p></p>
</div>
<p style="text-align: left;"><br /></p>
<h3 style="text-align: left;">January 24, 2020</h3>
<div>
<p style="text-align: left;"></p><ul style="text-align: left;"><li>Users can now select "Keep Me Logged In" if they want GW Web to automatically login. <b>Note</b>: When using a shortcut app in iOS 12 to access GW Web, users are still auto logged in even if "Keep Me Logged In" is unchecked.</li></ul><ul style="text-align: left;"><li>When a user clicks on an email address in GW Web, it opens a compose window instead of the OS launching the native mail handler.</li></ul><ul style="text-align: left;"><li>Users can invite other users to scheduled meetings.</li></ul><p></p>
</div>
<p style="text-align: left;"><br /></p>
<h3 style="text-align: left;">October 31, 2019 - 18.2 release</h3>
<p style="text-align: left;">GroupWise Web official release date. A new Docker repository has been created for the release <b>https://hub.docker.com/r/mfgroupwise/web</b>. <br /><br /></p><p style="text-align: left;">This site will serve as a continuous tech preview site for the GroupWise Web. The web-config utility has also been moved for the tech preview and is now at https://hub.docker.com/r/mfgroupwise/webacc-ng-config. </p>
</div>
<p style="text-align: left;"><br /></p>
<div style="text-align: justify;">
<h2>Tested Platforms</h2>
<div><p></p><ul><li>Chrome, Firefox, Safari.</li></ul><ul><li>iPhone and iPad: iOS 11 and above.</li></ul><ul><li>Samsung phone and tablets: Android 8 (Oreo) or later.</li></ul><ul><li>Docker 17.0.9 on SLES 12 and SLES 15.</li></ul><p></p>
</div>
</div>
<div style="text-align: justify;">
<br />
</div>
Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.com0tag:blogger.com,1999:blog-1893494226319525466.post-83229885095563961792020-09-05T19:07:00.024+08:002020-09-21T22:00:47.781+08:00Preview Customized NAM Error Messages<h2 style="text-align: left;"> Access Manager : Preview Customized Error Messages</h2>
<p style="text-align: left;">You can do the following to preview the customized error messages located here: </p>
<p style="margin: 0px 0px 0px 40px; text-align: left;"><b style="text-align: center;">/opt/novell/apache2/share/apache2/error</b>
</p>
<p style="text-align: left;"><br /></p><h3 style="text-align: left;">How to customize Access Manager Error Messages</h3><span><a name='more'></a></span><div><br /></div><b>STEP 1:</b> Select the <b><u>Proxy Service</u></b> you want to use for preview
<div>
<br />
</div><b>STEP 2:</b> Configure the Proxy level <u><b>Advanced Options</b></u>
<div>
<br />
</div><b>STEP 3:</b> Add the following rules to view the status code
<p style="text-align: left;"><br /></p>
<div class="codeview"><Location /status_HTTP_BAD_REQUEST>
<br />Redirect 400 /status_HTTP_BAD_REQUEST
<br /></Location>
<br /><Location /status_HTTP_UNAUTHORIZED>
<br />Redirect 401 /status_HTTP_UNAUTHORIZED
<br /></Location>
<br /><Location /status_HTTP_PAYMENT_REQUIRED>
<br />Redirect 402 /status_HTTP_PAYMENT_REQUIRED
<br /></Location>
<br /><Location /status_HTTP_FORBIDDEN>
<br />Redirect 403 /status_HTTP_FORBIDDEN
<br /></Location>
<br /><Location /status_HTTP_NOT_FOUND>
<br />Redirect 404 /status_HTTP_NOT_FOUND
<br /></Location>
<br /><Location /status_HTTP_METHOD_NOT_ALLOWED>
<br />Redirect 405 /status_HTTP_METHOD_NOT_ALLOWED
<br /></Location>
<br /><Location /status_HTTP_NOT_ACCEPTABLE>
<br />Redirect 406 /status_HTTP_NOT_ACCEPTABLE
<br /></Location>
<br /><Location /status_HTTP_PROXY_AUTHENTICATION_REQUIRED>
<br />Redirect 407 /status_HTTP_PROXY_AUTHENTICATION_REQUIRED
<br /></Location>
<br /><Location /status_HTTP_REQUEST_TIME_OUT>
<br />Redirect 408 /status_HTTP_REQUEST_TIME_OUT
<br /></Location>
<br /><Location /status_HTTP_CONFLICT>
<br />Redirect 409 /status_HTTP_CONFLICT
<br /></Location>
<br /><Location /status_HTTP_GONE>
<br />Redirect 410 /status_HTTP_GONE
<br /></Location>
<br /><Location /status_HTTP_LENGTH_REQUIRED>
<br />Redirect 411 /status_HTTP_LENGTH_REQUIRED
<br /></Location>
<br /><Location /status_HTTP_PRECONDITION_FAILED>
<br />Redirect 412 /status_HTTP_PRECONDITION_FAILED
<br /></Location>
<br /><Location /status_HTTP_REQUEST_ENTITY_TOO_LARGE>
<br />Redirect 413 /status_HTTP_REQUEST_ENTITY_TOO_LARGE
<br /></Location>
<br /><Location /status_HTTP_REQUEST_URI_TOO_LARGE>
<br />Redirect 414 /status_HTTP_REQUEST_URI_TOO_LARGE
<br /></Location>
<br /><Location /status_HTTP_UNSUPPORTED_MEDIA_TYPE>
<br />Redirect 415 /status_HTTP_UNSUPPORTED_MEDIA_TYPE
<br /></Location>
<br /><Location /status_HTTP_RANGE_NOT_SATISFIABLE>
<br />Redirect 416 /status_HTTP_RANGE_NOT_SATISFIABLE
<br /></Location>
<br /><Location /status_HTTP_EXPECTATION_FAILED>
<br />Redirect 417 /status_HTTP_EXPECTATION_FAILED
<br /></Location>
<br /><Location /status_HTTP_UNPROCESSABLE_ENTITY>
<br />Redirect 422 /status_HTTP_UNPROCESSABLE_ENTITY
<br /></Location>
<br /><Location /status_HTTP_LOCKED>
<br />Redirect 423 /status_HTTP_LOCKED
<br /></Location>
<br /><Location /status_HTTP_FAILED_DEPENDENCY>
<br />Redirect 424 /status_HTTP_FAILED_DEPENDENCY
<br /></Location>
<br /><Location /status_HTTP_UPGRADE_REQUIRED>
<br />Redirect 421 /status_HTTP_UPGRADE_REQUIRED
<br /></Location>
<br /><Location /status_HTTP_INTERNAL_SERVER_ERROR>
<br />Redirect 500 /status_HTTP_INTERNAL_SERVER_ERROR
<br /></Location>
<br /><Location /status_HTTP_NOT_IMPLEMENTED>
<br />Redirect 501 /status_HTTP_NOT_IMPLEMENTED
<br /></Location>
<br /><Location /status_HTTP_BAD_GATEWAY>
<br />Redirect 502 /status_HTTP_BAD_GATEWAY
<br /></Location>
<br /><Location /status_HTTP_SERVICE_UNAVAILABLE>
<br />Redirect 503 /status_HTTP_SERVICE_UNAVAILABLE
<br /></Location>
<br /><Location /status_HTTP_GATEWAY_TIME_OUT>
<br />Redirect 504 /status_HTTP_GATEWAY_TIME_OUT
<br /></Location>
<br /><Location /status_HTTP_VERSION_NOT_SUPPORTED>
<br />Redirect 505 /status_HTTP_VERSION_NOT_SUPPORTED
<br /></Location>
<br /><Location /status_HTTP_VARIANT_ALSO_VARIES>
<br />Redirect 506 /status_HTTP_VARIANT_ALSO_VARIES
<br /></Location>
<br /><Location /status_HTTP_INSUFFICIENT_STORAGE>
<br />Redirect 507 /status_HTTP_INSUFFICIENT_STORAGE
<br /></Location>
<br /><Location /status_HTTP_NOT_EXTENDED>
<br />Redirect 510 /status_HTTP_NOT_EXTENDED
<br /></Location>
<div>
<br />
</div>
</div>
<div>
<br />
</div>
<div><b>STEP 4:</b> Update the Access Gateway.</div>
<div>
<br />
</div>
<div><b>STEP 5:</b> Access the URL https://publisheddnsname/status_HTTPCODE to see the customized message on browser.e.g. to see the custom message for HTTP_GONE( response code 410) access <b>https://publisheddnsname/HTTP_GONE</b>
</div>
<div>
<br />
</div><b>STEP 6:</b> You can also restrict the access only to Admin by restricting the access using below directive:
<br />
<br />
<div class="codeview"><Location /status_HTTP_VERSION_NOT_SUPPORTED>
<br />Order allow,deny
<br />Allow from IP_address_of_admin_system
<br />Redirect 505 /status_HTTP_VERSION_NOT_SUPPORTED
<br /></Location></div><span><!--more--></span>Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.com0tag:blogger.com,1999:blog-1893494226319525466.post-48868273299368008742020-09-05T13:15:00.009+08:002020-09-21T22:01:56.049+08:00Early Access of NAM Analytics Dashboard v5.0<h2 style="text-align: left;">Early Access of Access Manager Analytics Dashboard v5.0</h2>
<p>
<br />
</p><span style="text-align: justify;">Micro Focus is happy to announce the early access release of the re-architected and cloud-ready Access Manager Analytics Dashboard. Analytics Dashboard offers deeper visualization of your Access Manager environment, system statistics, access pattern, and more. Analytics Dashboard will replace the current Access Manager Analytics Dashboard in v5.0.</span>
<br />
<div style="text-align: justify;">
<br />
</div>
<div style="text-align: justify;">Analytics Server is built as a cloud-native application and it will support diverse deployment options including containers, cloud (in FCS), and of course virtual servers. Analytics Dashboard is built on top of the latest ELK stack and offers significant improvements over the incumbent Analytics Server.</div>
<div style="text-align: justify;">
<br />
</div>
<div style="text-align: justify;">The following are some of the noteworthy updates:</div>
<ul style="text-align: left;">
<li>Significantly reduced hardware requirements:</li>
</ul>
<div>
<br />
<div>
<table style="border-collapse: collapse; border-spacing: 0px; box-sizing: border-box;">
<tbody style="box-sizing: border-box;">
<tr style="box-sizing: border-box;">
<td style="border: 1px solid rgb(153, 153, 153); box-sizing: border-box; min-width: 40px; padding: 1px 5px; word-break: normal;" width="264">For the demonstration purpose</td>
<td style="border: 1px solid rgb(153, 153, 153); box-sizing: border-box; min-width: 40px; padding: 1px 5px; word-break: normal;" width="216">For a production environment</td>
</tr>
<tr style="box-sizing: border-box;">
<td style="border: 1px solid rgb(153, 153, 153); box-sizing: border-box; min-width: 40px; padding: 1px 5px; word-break: normal;" width="264">CPU: 2 Cores
<br />Memory: 4 GB
<br />Hard disk: 50 GB</td>
<td style="border: 1px solid rgb(153, 153, 153); box-sizing: border-box; min-width: 40px; padding: 1px 5px; word-break: normal;" width="216">
<br />CPU: 4 Cores
<br />Memory: 16 GB
<br />
<p style="box-sizing: border-box; margin: 0px 0px 15px;"> </p>
</td>
</tr>
</tbody>
</table>
<br />
</div>
</div>
<div>
<span><a name='more'></a></span><p style="text-align: left;"><br /></p>
<ul style="text-align: left;">
<li>Built on top of the latest ELK stack and uses most of the Kibana functions including search, visualizations, custom graphs, and more.</li>
<li>No Sentinel dependency. </li>
</ul>
</div>
<div style="margin: 0px 0px 0px 40px; text-align: left;"><b>NOTE:</b> Access Manager will continue to support Sentinel as a SIEM tool.</div>
<div>
<ul style="text-align: left;">
<li>Built-in geo-location identification.</li>
<li>An option to create a custom dashboard using the existing data.</li>
<li>Customized view of the graphs.</li>
<li>Significant performance improvement. Supports 600 logins/sec.</li>
<li>Enhanced security with updated libraries.</li>
<li>Extendible to other products in future.</li>
<li>Flexibility to install on SLES and RHEL. </li>
</ul>
</div>
<div style="margin: 0px 0px 0px 40px; text-align: left;"><b>NOTE:</b> The appliance mode is not available from this release onward.</div>
<div>
<ul style="text-align: left;">
<li>Support for deploying in cloud environments including Amazon AWS and Microsoft Azure.</li>
<li>Docker and Kubernetes support (will be available in the FCS version).</li>
<li>Built-in update channel for updates. That’s right; you do not have to download another build (will be available in the FCS version).</li>
<li>Clustering for high availability (will be available in the FCS version).</li>
</ul>
<br />
<div style="text-align: justify;">The following are a few important changes that you should be aware of:</div>
<ul style="text-align: left;">
<li style="text-align: justify;">The new Analytics Dashboard will not have an offline mode. Matter of fact, you don’t need one. Analytics Dashboard can store events up to 180 days without any performance degradation. We are working on to see if this can be increased further.</li>
<li style="text-align: justify;">As Analytics Dashboard uses native ELK stack, there is no easy migration of your existing data in Analytics Server. Please see the documentation for more details about how you could consolidate the data.</li>
</ul>
<br />
<div style="text-align: justify;"><b>NOTE</b>: The feature to enable users to generate or view reports on Analytics Dashboard is not supported.</div>
<div style="text-align: justify;">
<br />
</div>
<div style="text-align: justify;">The Early Access Release will be available on August 10th and will be available until the end of October 2020. As part of this program, you will get the following resources:</div>
<ul style="text-align: left;">
<li style="text-align: justify;">Early Access build of Analytics Dashboard for your testing and feedback.</li>
<li style="text-align: justify;">Early Access to Documentation.</li>
<li style="text-align: justify;">Dedicated forum for discussing topics related to this release.</li>
<li style="text-align: justify;">Regular calls with Access Manager engineering and support teams where you can participate and share your feedback, issues, and well, kudos if we deserve it.</li>
</ul>
<p style="box-sizing: border-box; caret-color: rgb(101, 102, 104); color: #656668; font-family: aktivgrotesk, arial, sans-serif; font-size: 16px; margin: 0px 0px 15px;">
<br />
</p>DOWNLOAD LINK:
<br />
<br /><a href="http://dl.netiq.com/Download?buildid=43HQQphN3jU~">https://dl.netiq.com/Download?buildid=43HQQphN3jU~</a>
</div>Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.com0tag:blogger.com,1999:blog-1893494226319525466.post-23079718917518318072020-09-04T11:18:00.008+08:002020-09-21T22:05:22.983+08:00G-Suite IDM Driver v4.2 - Google API Quotas<h2 style="text-align: left;"> Google API Quotas</h2>
<div>
<br />
</div>
<div style="text-align: justify;">With the transition from the old Provisioning API to the Directory API via the Admin SDK, Google has introduced and exposed quotas on the various interfaces used by the G-Suite IDM Driver. Some people are seeing quota issues with their driver. This document details how to view your quotas, current usage levels, and how to request more quota from Google, should you need it.</div>
<div style="text-align: justify;">
<br />
</div>
<div style="text-align: justify;">Should you exceed your quota, your G-Suite driver will report this case to the trace log file and shutdown.</div>
<div>
<br />
</div>
<div>
<br />
</div>
<div>
<h3 style="text-align: left;">Managing Quotas</h3>
<br />
<div style="text-align: justify;">Your API quotas and current usage can be viewed at any time from your developer’s console: <a href="https://console.developers.google.com/">https://console.developers.google.com</a>
</div>
<div style="text-align: justify;">
<br />
</div>
<div style="text-align: justify;">Please note that Google can and does change their policies and web interfaces at any time without warning. The information provided here may no longer be correct or current, though we will attempt to keep it up to date.</div>
<div style="text-align: justify;">
<br />
</div><b><div style="text-align: justify;"><b>TIP</b>: Log in with the account used to create the project in the first place.</div>
</b>
<div style="text-align: justify;">
<br />
</div>
<div style="text-align: justify;">Select the project which created the credential used by the Google Driver. The overview will give you a snapshot of your usage overall.</div>
<p style="caret-color: rgb(51, 51, 51); color: #333333; font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, Oxygen, Ubuntu, "Fira Sans", "Droid Sans", "Helvetica Neue", sans-serif; font-size: 14px; margin: 12px 0px 0px; padding: 0px;">
<br />
</p>
<p style="caret-color: rgb(51, 51, 51); color: #333333; font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, Oxygen, Ubuntu, "Fira Sans", "Droid Sans", "Helvetica Neue", sans-serif; font-size: 14px; margin: 12px 0px 0px; padding: 0px;"><span class="confluence-embedded-file-wrapper" resolved="" style="display: inline-block; max-width: 100%; position: relative;"><img class="confluence-embedded-image" data-base-url="https://concensus.jira.com/wiki" data-fallback-img-loaded-listener="true" data-image-src="https://concensus.jira.com/wiki/download/attachments/596279297/image2020-4-19_22-28-24.png?version=1&modificationDate=1587349705989&cacheVersion=1&api=v2" data-linked-resource-container-id="596279297" data-linked-resource-container-version="123" data-linked-resource-content-type="image/png" data-linked-resource-default-alias="image2020-4-19_22-28-24.png" data-linked-resource-id="836567765" data-linked-resource-type="attachment" data-linked-resource-version="1" data-media-id="d5eb20c4-3574-4917-96e1-dd9a5e3a48cf" data-media-type="file" data-unresolved-comment-count="0" src="https://concensus.jira.com/wiki/download/attachments/596279297/image2020-4-19_22-28-24.png?version=1&modificationDate=1587349705989&cacheVersion=1&api=v2" style="border: 0px; cursor: pointer; display: block; margin: 0px 2px; max-width: calc(100% - 4px); padding: 0px;" /></span>
</p>
<p style="caret-color: rgb(51, 51, 51); color: #333333; font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, Oxygen, Ubuntu, "Fira Sans", "Droid Sans", "Helvetica Neue", sans-serif; font-size: 14px; margin: 12px 0px 0px; padding: 0px;">
<br />
</p>From the APIs & Auth section, select APIs, then select Enabled APIs.
<p style="caret-color: rgb(51, 51, 51); color: #333333; font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, Oxygen, Ubuntu, "Fira Sans", "Droid Sans", "Helvetica Neue", sans-serif; font-size: 14px; margin: 12px 0px 0px; padding: 0px;"><span class="confluence-embedded-file-wrapper" resolved="" style="display: inline-block; max-width: 100%; position: relative;"><img class="confluence-embedded-image" data-base-url="https://concensus.jira.com/wiki" data-fallback-img-loaded-listener="true" data-image-src="https://concensus.jira.com/wiki/download/attachments/596279297/image2020-4-19_22-28-53.png?version=1&modificationDate=1587349734265&cacheVersion=1&api=v2" data-linked-resource-container-id="596279297" data-linked-resource-container-version="123" data-linked-resource-content-type="image/png" data-linked-resource-default-alias="image2020-4-19_22-28-53.png" data-linked-resource-id="836567770" data-linked-resource-type="attachment" data-linked-resource-version="1" data-media-id="8d6dda3f-ea9f-4cd3-be06-56e8472f360a" data-media-type="file" data-unresolved-comment-count="0" src="https://concensus.jira.com/wiki/download/attachments/596279297/image2020-4-19_22-28-53.png?version=1&modificationDate=1587349734265&cacheVersion=1&api=v2" style="border: 0px; cursor: pointer; display: block; margin: 0px 2px; max-width: calc(100% - 4px); padding: 0px;" /></span>
</p>
<p style="caret-color: rgb(51, 51, 51); color: #333333; font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, Oxygen, Ubuntu, "Fira Sans", "Droid Sans", "Helvetica Neue", sans-serif; font-size: 14px; margin: 12px 0px 0px; padding: 0px;">
<br />
</p>
<div style="text-align: justify;">Select the Admin SDK. This API provides all services for the driver with the exception of Group Settings and Domain Shared Contacts. Selecting Usage will allow you to see a usage summary over time.</div>
<p style="caret-color: rgb(51, 51, 51); color: #333333; font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, Oxygen, Ubuntu, "Fira Sans", "Droid Sans", "Helvetica Neue", sans-serif; font-size: 14px; margin: 12px 0px 0px; padding: 0px;"><span class="confluence-embedded-file-wrapper confluence-embedded-manual-size" resolved="" style="display: inline-block; max-width: 100%; position: relative;"><img class="confluence-embedded-image" data-base-url="https://concensus.jira.com/wiki" data-fallback-img-loaded-listener="true" data-image-src="https://concensus.jira.com/wiki/download/attachments/596279297/image2020-4-19_22-29-17.png?version=1&modificationDate=1587349759117&cacheVersion=1&api=v2" data-linked-resource-container-id="596279297" data-linked-resource-container-version="123" data-linked-resource-content-type="image/png" data-linked-resource-default-alias="image2020-4-19_22-29-17.png" data-linked-resource-id="836076097" data-linked-resource-type="attachment" data-linked-resource-version="1" data-media-id="0f6034f2-04ab-4435-b86e-11a61797ac71" data-media-type="file" data-unresolved-comment-count="0" height="250" src="https://concensus.jira.com/wiki/download/thumbnails/596279297/image2020-4-19_22-29-17.png?version=1&modificationDate=1587349759117&cacheVersion=1&api=v2&width=428&height=250" srcset="https://concensus.jira.com/wiki/download/thumbnails/596279297/image2020-4-19_22-29-17.png?version=1&modificationDate=1587349759117&cacheVersion=1&api=v2&width=432&height=252 2x, https://concensus.jira.com/wiki/download/thumbnails/596279297/image2020-4-19_22-29-17.png?version=1&modificationDate=1587349759117&cacheVersion=1&api=v2&width=428&height=250 1x" style="border: 0px; cursor: pointer; display: block; margin: 0px 2px; max-width: calc(100% - 4px); padding: 0px;" /></span>
</p>
<p style="caret-color: rgb(51, 51, 51); color: #333333; font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, Oxygen, Ubuntu, "Fira Sans", "Droid Sans", "Helvetica Neue", sans-serif; font-size: 14px; margin: 12px 0px 0px; padding: 0px;">
<br />
</p>Select "Quotas" to see your current quotas and current remaining quota.
<p style="caret-color: rgb(51, 51, 51); color: #333333; font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, Oxygen, Ubuntu, "Fira Sans", "Droid Sans", "Helvetica Neue", sans-serif; font-size: 14px; margin: 12px 0px 0px; padding: 0px;"><span class="confluence-embedded-file-wrapper confluence-embedded-manual-size" resolved="" style="display: inline-block; max-width: 100%; position: relative;"><img class="confluence-embedded-image" data-base-url="https://concensus.jira.com/wiki" data-fallback-img-loaded-listener="true" data-image-src="https://concensus.jira.com/wiki/download/attachments/596279297/image2020-4-19_22-30-0.png?version=1&modificationDate=1587349802327&cacheVersion=1&api=v2" data-linked-resource-container-id="596279297" data-linked-resource-container-version="123" data-linked-resource-content-type="image/png" data-linked-resource-default-alias="image2020-4-19_22-30-0.png" data-linked-resource-id="836109098" data-linked-resource-type="attachment" data-linked-resource-version="1" data-media-id="cc552777-be4e-4fe4-a600-891f96fcff71" data-media-type="file" data-unresolved-comment-count="0" height="250" src="https://concensus.jira.com/wiki/download/thumbnails/596279297/image2020-4-19_22-30-0.png?version=1&modificationDate=1587349802327&cacheVersion=1&api=v2&width=432&height=250" srcset="https://concensus.jira.com/wiki/download/thumbnails/596279297/image2020-4-19_22-30-0.png?version=1&modificationDate=1587349802327&cacheVersion=1&api=v2&width=436&height=252 2x, https://concensus.jira.com/wiki/download/thumbnails/596279297/image2020-4-19_22-30-0.png?version=1&modificationDate=1587349802327&cacheVersion=1&api=v2&width=432&height=250 1x" style="border: 0px; cursor: pointer; display: block; margin: 0px 2px; max-width: calc(100% - 4px); padding: 0px;" /></span>
</p>
<p style="caret-color: rgb(51, 51, 51); color: #333333; font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, Oxygen, Ubuntu, "Fira Sans", "Droid Sans", "Helvetica Neue", sans-serif; font-size: 14px; margin: 12px 0px 0px; padding: 0px;">
<br />
</p>
<br />
<br />If you have exceeded your quota for requests per day, click the highlighted link to create a request to Google for more daily quota.
<br />
<br />You can also go to this URL to directly access the Quota request form for the Admin SDK: <a href="https://support.google.com/code/contact/admin_sdk_quota">https://support.google.com/code/contact/admin_sdk_quota</a>
<br />
<br />Clicking the "Change" button allows you to change your per-user limit of 15 requests per user per second, though it is unlikely that the driver will ever exceed this threshold.
<br />
<br />For more information on the Admin SDK and quota limits, please see this Google documentation: <a href="https://developers.google.com/admin-sdk/directory/v1/limits">https://developers.google.com/admin-sdk/directory/v1/limits</a>
</div>Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.com0tag:blogger.com,1999:blog-1893494226319525466.post-28635122950519039122020-09-04T11:12:00.028+08:002020-09-21T22:06:34.196+08:00G-Suite IDM Driver v4.2 - Common Driver issues<h2 style="text-align: left;"> Common G-Suite Driver Issues</h2>
<div><br /></div>
<div>
<br />
</div>
<div>
<table>
<thead>
<tr>
<th>Issue</th>
<th>Example and Notes</th>
</tr>
</thead>
<tbody>
<tr>
<th>User Placement. Do not use a leading "\" to place users or Organization Units.</th>
<td>
<p>To place a user in the root container, the dest-dn should only contain the Username. If you are placing a user in the G-Suite Sales\Marketing container your dest-dn should look like:</p><p><br /><b><add class-name="User" dest-dn="Sales\Marketing\ ddare"/></b><br /><br /></p><p>Organization Units use the same format for dest-dn.</p><p><br /></p>
</td>
</tr>
<tr>
<th>
<div><strong>Group Placement: Do not use a placement rule on groups as Google does not support placing groups in organizations.</strong>
</div>
</th>
<td>
<p>Groups are not kept in a hierarchical structure. Placement is not relevant to group objects.</p>
</td>
</tr>
<tr>
<th>
<div><strong>Unique naming: It is important that Nicknames, Group names and usernames be unique in the G Suite domain.</strong>
</div>
</th>
<td>
<p><br /></p><p>When developing a matching rule be sure to check for nicknames and usernames to ensure proper matching. <br />
Further, naming must be unique across all Google Organization units. <br />
It is not legal to have Sales\Marketing\myname and Engineering\myname since myname needs to be unique across the domain.</p><p><br /></p>
</td>
</tr>
<tr>
<th>
<div><strong>Driver Unable to Start</strong>
</div>
</th>
<td>
<p></p><ol><li>Are the driver jar files installed and eDirectory restarted?</li></ol><ol><li>Have you created the admin account in Google and logged into the web interface at least once?</li></ol><ol><li>Examine a level 3 or higher trace log of the driver start up for errors.</li></ol><p></p>
</td>
</tr>
<tr>
<th>
<div><strong>Driver Exceeds Quota on requests to specific services.</strong>
</div>
</th>
<td>
<p>Google has specific default quotas defined for the various services the driver uses. The quotas limit the total number of requests allowed in a given 24 hour period. </p>
<div>
<br />Once these quotas are exceeded the driver will receive an <b>HTTP 403: Forbidden error. </b>
</div>
</td>
</tr>
<tr>
<th>
<div><strong>Token Response Exception when using Gmail Settings Attributes</strong>
</div>
</th>
<td>
<p><br /></p><div>The trace will show something like this: </div>
<p><br /></p>
<div class="codeview" style="background-color: transparent; background-position: initial initial; background-repeat: initial initial;"><span>DirXML Log Event -------------------<br />Driver: \GLOBAL-DOMINATION\system\driverset1\Google Apps<br />Status: Fatal<br />Message: <description>com.google.api.client.auth.oauth2.TokenResponseException: 401 Unauthorized</description><br /><exception class-name="com.google.api.client.auth.oauth2.TokenResponseException"><br /><message>401 Unauthorized</message><br /></exception></span></div>
<p><br /></p>
<p>This error is due to not authorizing the new Gmail scopes within the Security section of your G Suite domain. Please refer to the following guide to reset the authorized scopes for the service account.<br /><b><a href="https://darenji.blogspot.com/2020/09/g-suite-identity-manager-driver-42.html" target="_blank">Micro Focus Identity Manager Driver 4.8 : G-Suite Driver v4.2 - OAuth Update</a></b></p><div><br /></div>
</td>
</tr>
<tr>
<th>
<div><strong>GoogleJsonResponseException error 403 forbidden when accessing Gmail Settings attributes</strong>
</div>
</th>
<td>
<p>The trace will show something like this: </p>
<p><br /></p>
<div class="codeview" style="background-color: transparent; background-position: initial initial; background-repeat: initial initial;">
<span><status level="retry" type="app-connection"><br /><description>IOException: com.google.api.client.googleapis.json.GoogleJsonResponseException: 403 Forbidden<br />{<br />"code" : 403,<br />"errors" : [ {<br />"domain" : "usageLimits",<br />"message" : "Access Not Configured. Gmail API has not been used in project 1233 before or it is disabled. Enable it by visiting https://console.developers.google.com/apis/api/gmail.googleapis.com/overview?project=1233 then retry. If you enabled this API recently, wait a few minutes for the action to propagate to our systems and retry.", </span>
<br />"reason" : "accessNotConfigured".
</div>
<div>
<br />
</div>
<p>The Gmail API has not been enabled for your G Suite domain. Enable it in your service account's developers console project. </p><p><br /></p>
</td>
</tr>
</tbody>
</table>
</div>Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.com0tag:blogger.com,1999:blog-1893494226319525466.post-66286323592391915862020-09-04T10:19:00.007+08:002020-09-21T22:06:58.200+08:00G-Suite IDM Driver v4.2 - OAuth Update<h2 style="text-align: left;">Updating OAuth Authorizations for the 4.1.3.x release and later</h2>
<br />The G Suite IDM connector (Google Driver) release version <b><span style="color: #2b00fe;">4.2</span></b> requires updates to the authorized OAuth Scopes and enabled APIs for your service account to work properly.
<br />
<br />
<div>
<h3 style="text-align: left;">Authorized Scope List</h3>
<br />This is the complete authorized scope list as of this release:-
<p style="caret-color: rgb(9, 30, 66); color: #091e42; font-size: 14px; margin: 12px 0px 0px; padding: 0px;">
<br />
</p>
<div class="codeview">https://www.googleapis.com/auth/admin.directory.group
<br />https://www.googleapis.com/auth/admin.directory.group.member
<br />https://www.googleapis.com/auth/admin.directory.orgunit
<br />https://www.googleapis.com/auth/admin.directory.user
<br />https://www.googleapis.com/auth/admin.directory.user.alias
<br />https://www.googleapis.com/auth/admin.directory.user.security
<br />https://www.googleapis.com/auth/admin.directory.userschema
<br />https://www.googleapis.com/auth/userinfo.profile
<br />https://www.googleapis.com/auth/userinfo.email
<br />http://www.google.com/m8/feeds
<br />https://www.googleapis.com/auth/contacts.readonly
<br />https://www.googleapis.com/auth/apps.groups.settings
<br />https://www.googleapis.com/auth/admin.directory.rolemanagement
<br />https://www.googleapis.com/auth/gmail.settings.basic
<br />https://www.googleapis.com/auth/gmail.settings.sharing
<br />https://www.googleapis.com/auth/gmail.labels</div>
</div>Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.com0tag:blogger.com,1999:blog-1893494226319525466.post-644059408695906032020-08-28T09:00:00.114+08:002020-09-28T08:55:14.750+08:00Access Gateway and SNI support <h2 style="text-align: left;"> Access Gateway and SNI support </h2>
<p><span alt="Message contains a hyperlink" aria-label="Contains a hyperlink" class="lia-img-message-has-url lia-fa-message lia-fa-has lia-fa-url lia-fa" id="display_2" role="img" style="-webkit-font-smoothing: antialiased; box-sizing: border-box; display: inline-block; font-family: FontAwesome; font-size: inherit; font-stretch: normal; font-variant-east-asian: normal; font-variant-ligatures: normal; font-variant-position: normal; line-height: 1; orphans: 2; text-rendering: auto; transform: translate(0px, 0px); widows: 2;" title="Contains a hyperlink"></span>
</p>
<div class="lia-message-body-wrapper lia-component-message-view-widget-body" style="box-sizing: border-box; font-variant-ligatures: normal; margin-bottom: 10px; margin-top: 10px; orphans: 2; widows: 2;">
<div class="lia-message-body" id="bodyDisplay" itemprop="text" style="box-sizing: border-box; line-height: 22px; margin-bottom: 10px; overflow-wrap: break-word; overflow: auto; word-break: break-word;">
<div class="lia-message-body-content" style="box-sizing: border-box; line-height: 22px; margin-bottom: 10px; overflow-wrap: break-word; padding-top: 2px; word-break: break-word;">
<div class="lia-message-template-content-zone" style="box-sizing: border-box;">
<h3 style="text-align: left;">Introduction</h3>
<p style="text-align: left;">
<br />
</p>
<p style="text-align: left;"><b>Server Name Indication (SNI)</b> is an extension to the Transport Layer Security (TLS) protocol by which a client can mention which hostname it is attempting to connect to at the start of the TLS handshaking process. This enables the server to select the correct virtual domain and corresponding TLS certificate at the very beginning of the process of establishing secure communication with the client.
<br />
<br />
</p>
<p style="text-align: left;">The purpose of this document is to help users enabling SNI and getting benefits of it in secure TLS communication of Access Gateway (AG) (<b>pre NAM 5.0</b>). There are two such channels available at AG.
<br />
</p>
<ol style="text-align: left;">
<li>Between browser and AG.</li>
<li>Between AG and backend webserver.</li>
</ol>
<p></p>
<p style="text-align: left;">
<br />
</p><span><a name='more'></a></span>
<h3 style="text-align: left;">SCENARIO 1: SNI between Browser and AG</h3>The scenario comes under this is where multiple domain-based proxy services are configured and SSL is enabled on corresponding Reverse proxy. Current out-of-box support is to use a single TLS certificate having CN with suitable wildcards. With single certificated, there is no scope for SNI. Also, no UI to add a separate certificate for each proxy service even though under the hood Apache 2.4 supports SNI.</div>
<p style="text-align: left;">
<br />
</p>To use a separate SSL certificate for each domain-based proxy service (not virtual proxy),
<br />
<ol style="text-align: left;">
<li>Go to Advanced Options for a Domain-Based proxy service</li>
<li>Add the following two options –</li>
<ul style="text-align: left;">
<li>SSLCertificateFile <PEM-encoded X.509 certificate full file-path></li>
<blockquote>At a minimum, the file must include an end-entity certificate of proxy service and may contain complete chain of certificates up to root issuer certificate.</blockquote>
<li>SSLCertificateChainFile <PEM-encoded Server CA Certificates full file-path></li>
<p style="text-align: left;"></p>
<blockquote>This is optional. The file concatenate the certificates of Certification Authorities (CA), which form the certificate chain of the proxy service’s certificate. This starts with the issuing CA certificate of the server certificate and can range up to the root CA certificate.(More details available at <a href="https://httpd.apache.org/docs/current/mod/mod_ssl.html">https://httpd.apache.org/docs/current/mod/mod_ssl.html</a>)</blockquote>
</ul>
<li>Update AG server</li>
</ol>
<p style="text-align: left;"><b>NOTE:</b> In case, NAM’s certificate management is used to create a certificate for proxy service, make sure to add the same certificate to "Proxy key store". The default location of AG key store is /opt/novell/apache2/certs/. E.g. if certificate name is “proxy_cert”, then corresponding entries in advance options are –</p>
<blockquote>SSLCertificateFile /opt/novell/apache2/certs/proxy_cert.pem
<br />SSLCertificateChainFile /opt/novell/apache2/certs/proxy_cert.pem</blockquote>
</div>
<p style="text-align: left;">
<br />
</p>
<h3 style="text-align: left;">SCENARIO 2: SNI between AG and backend webserver</h3>
<p style="text-align: left;">
<br />
</p>
<p style="text-align: left;">Considering SSL is on between proxy service and backend server, for SNI to work, the following configurations are required -</p>
<ol style="text-align: left;">
<li>Click <b>Access Gateways > Edit > [Name of Reverse Proxy] > [Name of Proxy Service] > Web Servers</b>.</li>
<li>Set <b><i>Web Server Host Name</i></b> to DNS name of the backend web server. This should match the server name of the backend name virtual host whose TLS certificate is used for secure communication.</li>
<li>Set <b><i>Web Server Trusted Root</i></b> to <b>Any in Reverse Proxy Trust Store</b>. User must add the public certificate of the certificate authority backend webserver’s TLS certificate to the proxy trust store.</li>
<li>Optionally, <b><i>Set Web Server List</i></b> to DNS name of the backend web server.</li>
<li>Optionally, Advanced Option SSLProxyVerifyDepth may need to set if the default value is not good enough. Check user doc <a href="https://www.netiq.com/documentation/access-manager-45/admin/data/b12fi9go.html">Configuring Global Advanced Options</a> for more info</li>
<li>Update AG server</li>
</ol>
</div>
</div>
Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.com0tag:blogger.com,1999:blog-1893494226319525466.post-35168389225121031202020-08-15T10:30:00.094+08:002020-09-28T08:55:31.169+08:00Deprecation for IDM Driver for Office365<h2 style="text-align: left;"><strong>Deprecation and migration plan for NetIQ Identity Manager Driver for Office 365</strong></h2><p style="text-align: left;"><br /></p><p style="text-align: left;">Micro Focus is deprecating the Office 365 driver for NetIQ Identity Manager. This driver has been superseded by the Azure AD driver, which is available at no extra cost to all Office 365 driver customers.</p><p style="text-align: left;">The Office 365 driver was developed at a time when Microsoft did not offer a comprehensive set of APIs to access Office 365. As the Azure platform evolved, Microsoft updated its API set to provide efficient and secure access to the platform. In response, Micro Focus developed the <a href="https://www.netiq.com/documentation/identity-manager-48-drivers/AzureADDriver5120/data/AzureADDriver5120.html" target="_blank">Azure Active Directory Driver</a>: a faster, more scalable, and more secure driver that supports both Azure AD and Office 365.</p><p style="text-align: left;">Micro Focus have continued to support the older Office 365 driver to allow customers sufficient time for migration to the new Azure AD driver. However, Microsoft <a href="https://docs.microsoft.com/en-us/lifecycle/announcements/exchange-online-basic-auth-deprecated">has announced</a> that they are deprecating some of the underlying technology, which will make the driver non-functional in some scenarios.</p><p style="text-align: left;">As a result, Micro Focus are urging all Office 365 driver customers to migrate to the new Azure AD driver as soon as possible.</p><div><span><a name='more'></a></span><p style="text-align: left;"><br /></p><h3 style="text-align: left;"><strong style="box-sizing: border-box;">What are the key benefits of the Azure AD driver?</strong></h3><p style="text-align: left;"><strong style="box-sizing: border-box;"><br /></strong></p><p style="text-align: left;">The Azure AD driver provides all the capabilities of the Office 365 driver, with the following additional benefits:<br /></p><ul style="text-align: left;"><li>Delivers better performance, scalability, and security compared to the Office 365 driver</li><li>Simplifies management by supporting both Azure AD and Office 365 in one driver</li><li>Supports a hybrid deployment model with co-existence of Azure Active Directory Connect</li><li>Leverages continued improvements available on the Microsoft Azure platform</li></ul></div><p style="text-align: left;"><br /></p><p style="text-align: left;"></p><blockquote><p style="text-align: left;">Latest Driver Version : <a href="https://download.microfocus.com/Download?buildid=3sY2NCqNmeU~"><b>5.1.2.0</b></a></p><p style="text-align: left;">Implementation Guide : <a href="https://www.netiq.com/documentation/identity-manager-48-drivers/msazure_ad/data/netiq-idm-driver-for-office365-and-msazure.html" target="_blank"><b>HTML</b></a> <a href="https://www.netiq.com/documentation/identity-manager-48-drivers/pdfdoc/msazure_ad/msazure_ad.pdf" target="_blank"><b>PDF</b></a></p><p style="text-align: left;">Readme : <a href="https://www.netiq.com/documentation/identity-manager-48-drivers/AzureADDriver5120/data/AzureADDriver5120.html"><b>5.1.2</b></a></p></blockquote><p style="text-align: left;"><a href="https://www.netiq.com/documentation/identity-manager-48-drivers/AzureADDriver5120/data/AzureADDriver5120.html"><b></b></a></p><p style="text-align: left;"><br /></p><h3 style="text-align: left;"><strong>How do customers migrate to the Azure AD driver?</strong></h3><p><br />The Azure AD driver is part of the NetIQ Identity Manager Integration Module for Microsoft Enterprise (formerly known as the NetIQ Identity Manager Integration Module for SharePoint and Office 365). Office 365 driver customers are entitled to this Integration Module and the Azure AD driver at no extra cost. To obtain your copy, please visit the Customer Portal or contact Micro Focus Support.<br /> <br />The NetIQ Identity Manager documentation provides detailed migration directions under the section, <a href="https://www.netiq.com/documentation/identity-manager-48-drivers/msazure_ad/data/transitioning-from-o365-driver-to-azure-ad-driver.html#transitioning-from-o365-driver-to-azure-ad-driver">Transitioning from Existing Office 365 Driver to New Azure AD Driver</a>. Additional details are available in the Micro Focus Community article, <a href="https://community.microfocus.com/t5/Identity-Manager-Tips/Simplified-guide-to-understand-new-features-implemented-in/ta-p/1776764">Simplified guide to understand new features implemented in Office 365 and Azure AD 5.0 Driver</a>.</p><p><br />If you have any questions about this announcement or need assistance with the migration, please contact Customer Support or your Micro Focus account representative. </p>Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.com1tag:blogger.com,1999:blog-1893494226319525466.post-71022405817905295992020-05-25T11:00:00.081+08:002020-09-28T08:55:45.449+08:00Micro Focus Named an Overall Leader in 2020 KuppingerCole Leadership Compass for IGA<h2 style="text-align: left;"><b>Micro Focus Named an Overall Leader in 2020 KuppingerCole Leadership Compass for Identity Governance & Administration</b></h2><p><br /></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEghMqmHVRd59GE15rESox-8TV13WieQWZveUnr8NaM-iDukyFRcYYpFhdsPgyWzMjKdYXqBWHcHM1vj7IIq73eNJMQRkK_MBm0_HxDXHvJE7JpZpj3Nl6eTpcBeGb_gNc54uoX3uOYyQcU/s2048/KuppingerCole_Leadership_Compass_for_IdentityGovernance_and_Administration%2528IGA%2529.png" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="1028" data-original-width="2048" height="322" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEghMqmHVRd59GE15rESox-8TV13WieQWZveUnr8NaM-iDukyFRcYYpFhdsPgyWzMjKdYXqBWHcHM1vj7IIq73eNJMQRkK_MBm0_HxDXHvJE7JpZpj3Nl6eTpcBeGb_gNc54uoX3uOYyQcU/w640-h322/KuppingerCole_Leadership_Compass_for_IdentityGovernance_and_Administration%2528IGA%2529.png" width="640" /></a></div><br /><p style="text-align: left;"><br /></p><p style="text-align: left;">Micro Focus has been named once again as an Overall Leader in the <a href="https://www.microfocus.com/en-us/assets/security/kuppingercole-leadership-compass-for-identity-governance-and-administration?utm_source=blog&utm_medium=referral&utm_campaign=00164298">KuppingerCole Leadership Compass for Identity Governance and Administration</a>. KuppingerCole has named Micro Focus a Leader in the categories of Product, Innovation, and Market, as well as an Overall Leader for its NetIQ Identity Governance and Administration offering.</p><span><a name='more'></a></span><p style="text-align: left;"><br /></p><h3 style="text-align: left;">The 2020 KuppingerCole Leadership Compass for IGA</h3><p style="text-align: left;">The KuppingerCole Leadership Compass for <a href="https://www.microfocus.com/en-us/products/identity-governance-and-administration/overview?utm_source=blog&utm_medium=referral&utm_campaign=00164298">Identity Governance and Administration</a> (IGA) is an analyst report that provides an overview of the major IGA vendors and their product and services offerings. The report provides in-depth analysis of key capabilities required for identity provisioning and access governance.</p><p style="text-align: left;"></p><blockquote><p style="text-align: left;">KuppingerCole provides a comparison of products based on standardized criteria, leading to rankings in three areas:</p><p style="text-align: left;"></p><ul style="text-align: left;"><li>Product Leadership</li><li>Innovation Leadership</li><li>Market Leadership</li></ul><p></p></blockquote><p style="text-align: left;"><br /></p><p style="text-align: left;">In addition, the Overall Leadership rating provides a combined view of these three leadership areas.</p><p><br /></p><h3 style="text-align: left;">Results for NetIQ Identity Governance and Administration</h3><a href="https://www.microfocus.com/en-us/products/identity-governance-and-administration/overview?utm_source=blog&utm_medium=referral&utm_campaign=00164298">Micro Focus NetIQ Identity Governance and Administration</a> (IGA) was rated an Overall Leader for Identity Governance and Administration, as well as a Leader in the three areas of assessment: Product, Innovation, and Market.<br /><br /><div>KuppingerCole also rates vendors at a more granular level in nine different areas, ranking Micro Focus as positive or strongly positive in all areas. Micro Focus received a <span style="color: #04ff00;">Positive</span> rating on <b>Deployment</b> and <b>Innovation</b>, and a <b><span style="color: #2b00fe;">Strongly Positive</span></b> rating on <b>Security</b>, <b>Functionality</b>, <b>Interoperability</b>, <b>Usability</b>, <b>Financial Strength</b> and <b>Market Position</b>.<br /><br /><p></p><p></p><h3 style="text-align: left;">Key Micro Focus Strengths</h3>Key Micro Focus strengths as noted by KuppingerCole include:<br /><ol style="text-align: left;"><li>Strong, mature functionality covering all major aspects of Identity Provisioning and Access Governance</li><li>Aggressively moving to a more modernized and flexible architecture</li><li>Strong support for a variety of target systems</li><li>Strong support for IGA analytics and access intelligence capabilities</li><li>Very large customer base and strong partner ecosystem</li></ol><br /><p></p><p></p><h4 style="text-align: left;">Strong, Mature Functionality</h4>KuppingerCole noted that, “Identity Manager and Governance products from Micro Focus (MF) remain leading-edge products in the IGA market space with broad, mature and evolving functionality.”<br /><br /></div><div>As a pioneer in the identity management space with over 20 years of experience, Micro Focus's focus is on helping the customers simplify identity governance and administration in their organizations, while providing support for complex requirements and environments.<br /><br /></div><div>MF does this by translating even the most complex identity processes into automated workflows. As noted by KuppingerCole, MF's “flexible and approach for workflow and policy management based on the designer tool is still widely unmatched in the industry.”<br /><br /></div><div>Micro Focus was also recognized for, “its distinct and improved governance features”, including “role mining, adaptive access certification, and risk-based analytics.” These capabilities are part of a unified governance framework that provides control over business-critical resources and empowers business users and automated systems to make better access decisions.<br /><br /><p></p><p></p><h4 style="text-align: left;">Modernized and Flexible Architecture</h4>Micro Focus were particularly happy to see recognition of their accelerated move to a modernized and flexible IGA architecture. Its latest IGA releases include <a href="https://community.microfocus.com/t5/Identity-Manager-Tips/How-to-automate-the-deployment-of-Identity-Manager-Containers-on/ta-p/2765236?utm_source=blog&utm_medium=referral&utm_campaign=00164298">support for containerization</a>, providing elasticity and simplified deployments and upgrades. Containerization is particularly important for true public/private cloud and managed service options where elasticity is needed.<br /><blockquote>As we modernize our architecture, we are also moving toward our first SaaS offering, planned for later this year. Our goal is to provide our customers with a smooth and easy transition from running IGA on premises to a hybrid solution. This includes the implementation of an on-premises bridge to provide a secure conduit between IGA data on-premises and IGA as a service. As we make these changes, customers will be able to manage IGA the same as they’ve always been able to, regardless of where applications and identities happen to reside.</blockquote><br />To hear more about MF future plans for IGA, including the new SaaS capabilities, register for the <a href="https://universe.microfocus.com/website/820/?utm_source=blog&utm_medium=referral&utm_campaign=00164298">Micro Focus Universe North America virtual conference</a> to view the recorded session delivered by Rick Wagner, Director of IGA Product Management.<p></p><p><br /></p><h4 style="text-align: left;">Broad System Support</h4>Micro Focus IGA supports a wide variety of connected systems through <a href="https://www.netiq.com/documentation/identity-manager-48/driver_admin/data/chapter.html?utm_source=blog&utm_medium=referral&utm_campaign=00164298">IGA drivers</a> that connect information between popular business applications, directories and databases. The <a href="https://techbeacon.com/security/why-your-approach-security-architecture-needs-change?utm_source=blog&utm_medium=referral&utm_campaign=00164298">real-time, event-driven security architecture</a> enables automatic, two-way changes to be made throughout the system, eliminating the need for periodic reconciliation and closing the gaps and potential points of abuse.<br /><br /></div><div>Micro Focus continues to invest in new IGA drivers. For example, a new Workday driver will be released in June / July that can detect changes in real time and trigger remediation processes to address governance access risks.</div><div><br />The broad system support also includes the capabilities across the entire <a href="https://www.microfocus.com/en-us/solutions/identity-access-management?utm_source=blog&utm_medium=referral&utm_campaign=00164298">identity and access management (IAM)</a> spectrum. Customers don’t need to piece together solutions from multiple vendors; with solutions spanning <a href="https://www.microfocus.com/en-us/products/netiq-advanced-authentication/overview?utm_source=blog&utm_medium=referral&utm_campaign=00164298">access management</a>, <a href="https://www.microfocus.com/en-us/products/netiq-privileged-account-manager/overview?utm_source=blog&utm_medium=referral&utm_campaign=00164298">privileged account management</a>, <a href="https://www.microfocus.com/en-us/solutions/data-access-governance?utm_source=blog&utm_medium=referral&utm_campaign=00164298">data access governance</a>, and <a href="https://www.microfocus.com/en-us/products/identity-governance-and-administration/overview?utm_source=blog&utm_medium=referral&utm_campaign=00164298">identity governance</a>, Micro Focus can handle all use cases related to identity.<p></p><p><br /></p><h4 style="text-align: left;">IGA Analytics and Access Intelligence</h4>The KuppingerCole report noted Micro Focus’ strong support for IGA analytics. Last year, Micro Focus released <a href="https://www.netiq.com/documentation/identity-intelligence-1.1/?utm_source=blog&utm_medium=referral&utm_campaign=00164298">NetIQ Identity Intelligence</a>, providing risk-aware IGA analytics to all IGA customers. </div><div></div><blockquote><div><b>Identity Intelligence</b> takes in multiple types of data, including current and historical state data, compliance data, and activity data. Leveraging this data, Identity Intelligence provides the following types of analytics:</div><div><ul style="text-align: left;"><li><b>Risk-based Analytics</b> – Peer group analysis and risk scoring to identify, assess, and remediate access risk.</li><li><b>Governance Metrics</b> – Governance trends and insights to identify process bottlenecks and adapt to changing business needs.</li><li><b>Forensic Analysis</b> – Analysis of current and historical access rights and events to quickly determine who had access to specific resources and how that access changed over time.</li></ul></div></blockquote><div> <br />Identity Intelligence embeds the <a href="https://www.vertica.com/?utm_source=blog&utm_medium=referral&utm_campaign=00164298">powerful Vertica analytics platform</a>, a proven, highly scalable solution that is also part of the Micro Focus family. Micro Focus also plan to integrate predictive IGA capabilities from Interset, a <a href="https://www.microfocus.com/en-us/products/interset-ueba/overview?utm_source=blog&utm_medium=referral&utm_campaign=00164298">behavioral analytics</a> and unsupervised machine learning company that Micro Focus acquired last year.<p></p><p><br /></p><h4 style="text-align: left;">Strong Market Presence</h4>Micro Focus continues to have a strong market presence in the identity governance and administration space. </div><div><blockquote>As noted by KuppingerCole, we have a very large customer base and strong partner ecosystem. We are very thankful for the loyalty of our customers and partners, and continue to rely on their <a href="https://community.microfocus.com/t5/IGA-Idea-Exchange/idb-p/IDGIdeas?utm_source=blog&utm_medium=referral&utm_campaign=00164298">IGA feedback and insights</a> to drive product innovation and customer success.</blockquote><p></p><p><br /></p><h3 style="text-align: left;">An IGA Solution for Today and the Future</h3>The Micro Focus team’s goal is to provide a flexible, scalable, and powerful IGA solution that meets the evolving needs of our customers. Micro Focus have modernized the architecture, added great new capabilities like analytics and data access governance, and laid the foundation for a SaaS offering in 2020m and are pleased that these developments have led KuppingerCole to describe its products as “leading-edge” and to see as an <b>Overall Leader for IGA</b>.<p></p><p><br /></p><blockquote>Download your complimentary copy of the <a href="https://www.microfocus.com/en-us/assets/security/kuppingercole-leadership-compass-for-identity-governance-and-administration?utm_source=blog&utm_medium=referral&utm_campaign=00164298">KuppingerCole 2020 Leadership Compass for Identity Governance and Administration</a>.</blockquote><p></p></div>Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.com0tag:blogger.com,1999:blog-1893494226319525466.post-61567261810438068892009-05-30T09:51:00.017+08:002009-06-11T20:00:47.037+08:00Adding Google Adsense Ads Code Directly to Blogger XML Template<p>Advanced users of Blogger.com service may have tried to insert and put Google AdSense ad code which is actually a Java script directly into the blog pages by manually editing the XML-based template HTML coding interface. Actually, it’s possible add any ad code by using HTML/JavaScript page element within the Blogger new XML template system, but the place where you can place the new block is rather limited, i.e. above or below the post body, header, footer, within sidebar or <a href="http://darenji.blogspot.com/2009/05/show-adsense-ads-below-post-title.html" title="Show Adsense Ads Below Post Title and Post Body">between blog posts</a>. In case you want to put the ads inside the post, or align the ads to float and wrap around the text, or just within the single individual article content view, you will have to edit directly the HTML coding of Blogger template.<br /></p><span id="fullpost"><p>If you try to insert any Google AdSense, AdBrite, AdEngage and any other JavaScript based ad code, or client-side components such as counter, tracker, form, snippet, effect, date and time, etc which is JavaScript based, the following error message may be returned when saving ore previewing:</p><br /><blockquote>Your template could not be parsed as it is not well-formed. Please make sure all XML elements are closed properly. XML error message: The processing instruction target matching “[xX][mM][lL]” is not allowed. </blockquote><br />or<br /><br /><blockquote>Your template could not be parsed as it is not well-formed. Please make sure all XML elements are closed properly.<br />XML error message: The reference to entity “zs” must end with the ‘;’ delimiter.</blockquote><br />and many other different XML error message.<br /><p>The problem is caused by incorrect dynamic interpretation of Blogger XML template when it generates the HTML webpage for the blog page that is requested, probably due to the fact that the AdSense ad code or other code is not a valid XML, coupled with the fact that some ASCII characters have special meaning and reserved functions, confusing Blogger blogging engine.<br /></p><p>The resolution to the JavaScript based coding does not work in Blogger HTML template error can be solved by replacing special characters or symbols in the script to HTML code. Check out the list below for which ASCII characters that need to be replaced with their corresponding HTML code. Using HTML code will ensure that Blogger render the character correctly when serving the page to the viewer.<br /></p><p>< = &lt;<br />> = &gt;<br /></p><p>Above two is enough to make Google AdSense works in Blogger template. For other scripts, such as AdBrite ad code, you will need to replace more characters such as those listed below.</p>& = &amp;<br />” = &quot;<br /><br />For example, a Google AdSense code should become looks similar to code below:<br /><br /><div class="codeview">&lt;script type="text/javascript"&gt;&lt;!--<br />google_ad_client = "pub-XXXXXXXXXXXXXXX";<br />google_ad_width = 336;<br />google_ad_height = 280;<br />google_ad_format = "336x280_as";<br />google_ad_type = "text_image";<br />google_ad_channel = "";<br />google_color_border = "FFFFFF";<br />google_color_bg = "FFFFFF";<br />google_color_link = "000000";<br />google_color_text = "000000";<br />google_color_url = "000000";<br /><br />//--&gt;&lt;/script&gt;<br />&lt;script type="text/javascript"<br />src="http://pagead2.googlesyndication.com/pagead/show_ads.js"&gt;<br />&lt;/script&gt; </div><br />While an AdBrite ad code will became the similar code to the below:<br /><br /><div class="codeview">&lt;script type="text/javascript"&gt;<br />var AdBrite_Title_Color = '0000FF';<br />var AdBrite_Text_Color = '000000';<br />var AdBrite_Background_Color = 'FFFFFF';<br />var AdBrite_Border_Color = 'FFFFFF';<br />&lt;/script&gt;<br />&lt;script src="http://ads.adbrite.com/mb/text_group.php?sid=303771&amp;zs=3330305f323530" type="text/javascript"&gt;&lt;/script&gt;<br /><div><a target="_top" href="http://www.adbrite.com/mb/commerce/purchase_form.php?opid=303771&amp;afsid=1" style="font-weight:bold;font-family:Arial;font-size:13px;">Your Ad Here</a></div></div><br />Simply use the text editor to parse the code and then replace the characters. Don’t worry about violating AdSense TOS or other terms and conditions, as once the blog’s web pages are rendered and presented to the viewers and visitors, the code will be exactly same as the original code before any replacement! </span>Darenjihttp://www.blogger.com/profile/10213416391647580979noreply@blogger.com4