Quantcast
Channel: Symantec Connect - Products - Discussions
Viewing all 147 articles
Browse latest View live

VIP Access Setup Wizard does not start

November 23, 2015, 11:15 am
$
0
0
I need a solution

Hi and thanks in advance for guidance.

I am trying to install VIP Access for Desktop, as it is required by corporate partner for VPN access.

- I am able to download the install file (VIPAccessSetup.exe). I was able to download in Firefox and Chrome, file size is 23.5 MB. 

- Download link i'm using is here (https://idprotect.vip.symantec.com/desktop/install.v)

- Desktop OS is Windows 8.1, I am downloading VIP Access Desktop version for Windows.

- I have double clicked on the setup file, I have right clicked and selected "run as administrator"

- In all scenarios, I can see Symantec branded "setup Application" and "VIPAccessSetup" processes running in Task Managher.

- Despite the processes being visable in task manager, the Installation Wizard does not come up on my screen and the installation never progresses any furthur. 

- This application was previously installaed successfully on the same laptop over 1 year ago. It was uninstalled when clicking on the VIP Access icon stopped working (by this I mean, clicking on the icon would not open the token generator at all)

- Desktop support suggested I uninstall and reinstall, and now - installation is not working either.

- I have killed all symantec processes running on my PC, I have rebooted prior to downloading and installing, I have turned off Noront Internet Security before attempting to install. Nothing has worked.

Any help is appreciated.

0
Search

VIP Access | Network Connection Required?

November 24, 2015, 11:50 am
$
0
0
I need a solution

First post.

The plethora of knowledge in the Symantec site has made it difficult to find this simple answer to this question....

Does the VIP Access Application require an internet connection after succesful VIP Credential Registration? Furthermore, will the VIP access application ever require an additional "check in " with Symantec to ensure proper clock sync? ( or is this local to the host machine tablet, phone etc).

Thanks.

0

Activation could not be completed. Sign in again later to activate VIP Access. Error Code : 0x10

December 10, 2015, 7:31 am
$
0
0
I need a solution
I've installed VIP Access on my Windows 8 laptop. Every thing was working fine for 5 days and all of a sudden it stopped working.
Then I uninstalled, re installed with out any success. I have upgraded the OS to Windows 10 expecting it will work there.
 
However when I try to launch the following error is displayed : 
"Activation could not be completed. Sign in again later to activate VIP Access.Error Code : 0x10''
 
Any suggestions would be appreciated.
0

authentication using SSL handshake

December 21, 2015, 10:32 pm
$
0
0
I need a solution

Hello,

        Based on "https://www.symantec.com/content/en/us/enterprise/white_papers/b-wp_ecc.pdf" or the attached file,  I have certain queries and would like answers for the same.

1. Please specify  the process of EC domain parameter generation.

2.The process of Ephemeral key pair generation

3.Method of performing an ECDH operation to generate the premaster secret.

4.The operation to genarate master key based on the defined statement"The premaster secret, client and server generated random bytes, and an identifier label will be used by both the client and the server to generate the same master secret independently".

5. The process to generate bulk data encryption keys and MAC keys

        The paper refers  Mozilla NSS library for Elliptic curve cryptography. Are the above methods 1-4 done using NSS library or not? If yes , please suggest some solutions. Kindly revert back.

        Thanks and regards,

         RD Intern

0

VIP and Citrix Netscaler Integration Documentation

January 7, 2016, 7:08 pm
$
0
0
I need a solution

Hello,

Is there any documentation for VIP and Citrix Netscaler integration?

Cheers

Cameron

0
1453355322

How do i get this PAM package?

January 13, 2016, 2:30 am
$
0
0
I need a solution

Hi,

I was configuring the symantec 2 factor Authentication follow the Integration Guide for Pluggable Authentication Modules (PAM).

On Linux:
Complete the following steps to configure the VIP integration module for PAM to support Telnet log-in service
on Linux platforms:
1Log in as root to the server on the PAM client host machine.
2Copy the VIP integration module for PAM to /lib/security (on 64-bit Linux, copy to /lib64/security):
# cp PAM/linux/pam_vrsn_otp.so /lib/security/
You must ensure that the module has executable permission.
3Copy the files libvsradiusclientimpl.so and libvsauthotpclient.so (which are included in the PAM package) to a directory in the system path, such as /lib or /usr/lib. On 64-bit Linux, copy to a directory in the system path such as /lib64 or /usr/lib64).
# cp PAM/linux/libvsradiusclientimpl.so /usr/lib/
# cp PAM/linux/libvsauthotpclient.so /usr/lib/

i was wordering where can i get this PAM package?

0

Communicating with VIP using Glassfish.

January 13, 2016, 6:55 pm
$
0
0
I need a solution

Hello all,

I am trying to get Symantec VIP solution working for our web application.

I have read documentation and used the wsdl's to generate a required "vipuserservices-test-client.jar".

We have the certificate created from VIP Manager and I have used this cert in the sample "VipUserServicesQueryClient.java".

I have got it working perfectly with no problems.

Now when I try and run the same code through Glassfish I am getting problems.

I took the VIP certificate and imported it into the Glassfish keystore.jks....also I exported the public key from the VIP Cert and imported it to my cacerts.jks.

I have checked the keystore.jks and cacerts.jks and I see the VIP cert key entry inside.

But when I actually try to make the call to VIP (using AuthenticationServiceStub and URL "https://userservices-auth.vip.symantec.com/"
vipuserservices/AuthenticationService_1_3"), I get an

"javax.net.ssl.SSLException: Connection has been shutdown: javax.net.ssl.SSLHandshakeException: Received fatal alert: unknown_ca"

I am kinda new to dealing with security certificates.

Would appreciate If any of you good people could point me to what I might be doing wrong/missing.

PS: this is not a part of the Enterprise Gateway installation using LDAP

0

Error occur in Symantec VIP Access Client

April 24, 2016, 10:34 pm
$
0
0
I need a solution

I has bee occuring the error  ' Activation could not been completed in Symantec VIP Access" and now I am using Window 7.

Knowing that this kind of error are mostly occured in Window 7,but some of Window 7 can be used Symantec VIP Access yet.

I tried it more than 10 time for logging in and it still appear error again.

I do not want to upgrade another Window cause I was updating Window 7 recently.So,what should I do and please kindly advice me asap and can I use Andriod application for that instead of using in Desktop ?

0

Search

Symantec VIP - Security Issue!

March 30, 2016, 6:33 am
$
0
0
I do not need a solution (just sharing information)

Hi,

I am using Symantec VIP as validation and protection service. I have "VIP Access" on my mobile phone. This is what I noticed -

1. Change the clock to a future time (say 9:15 AM EST) and note down the "random" number (say 388511)

2. Change the clock back to correct time (say 9:10 AM EST) and wait for the previously set "future time"

3. The randomly generated number is no longer random - I get the same number which I noted (388511)

So if I move the clock forward and note down a set of numbers I can log into the system without the need for the token. Isn't this a security hole?

Thanks, Ayan

0

Managed PKI Deployement

May 24, 2016, 9:06 am
$
0
0
I need a solution

Hello,

Can you tell me please how many days needs a junior engineer to deploy the mpki solution + HSM appliance and 120 user seat ?

thanks in advance for the help.

0

VIP Access Desktop not retaining Credential ID

June 7, 2016, 6:03 am
$
0
0
I need a solution

I would like to use VIP Access Desktop on a Windows 7 thin client. Users profiles are roaming and are restored to a new VM at each login. Each time  VIP Access is launched, a new Credential ID is generated making it impossible for a user to successfully connect to any machine requiring a security code because that credential ID is not registered. Any help or insight is greatly appreciated.

Regards, Susie

0

VIP Gateway group mapping

June 10, 2016, 8:11 am
$
0
0
I need a solution

Hi,

I'm setting up a new installation and have installed and started configuring a Gateway.

Authentication is working from a command line test and LDAP Directory synchronisation is working as the user gets updated in the cloud store, so there is some connectivity between the gateway and the cloud.

When I try to map a user group in the Gateway console, no groups are listed in the VIP User Group drop down and there's an error message 'Unable to list the VIP User Groups.  Ensure that the VIP Enterprise Gateway server is connected to VIP Service.'

I get a similar error when tring to map an admin group.

Has anyone seen this before and do you know what the cause of this is?

Thanks

0

Automated Alerting

June 21, 2016, 12:53 pm
$
0
0
I need a solution

We are looking for a way to automate alerting based on events that occur in the VIP manager site, https://manager.vip.symantec.com/vipmgr/.  Currently, this is a manual process that involves people logging into the site and downloading csv formatted logs from a specified time line.  There doesn't seem to be scheduled reporting capability or a method for accessing this information in the API services documentation.  Has anyone solved this problem?

Some example use cases:

- Check for any administrative activities initiated by users who are not authorized to perform the corresponding tasks.

- Check for issuance of fixed PIN/token. 

- Check for requests for a temporary password/token.

0

VIP Load Balancing (F5 BIG-IP)

June 29, 2016, 8:40 am
$
0
0
I need a solution

I am at a customer that would like to make their VIP installation as redundant as possible, utilizing their F5 BIG-IP load balancers. From the documentation, what I can tell is there is two components that can be load balanced,

1. Self Service Portal

2. Enterprise Gateway

The Self Service Portal makes enough sense, as it is exposed to the Internet, basically we will make a virtual IP for the multiple Self Service Portals and expose that virtual IP address  to the Internet via NAT.

What I dont understand is how to Load Balance the Enterprise Gateway. This is not exposed to the Internet and seems to make outbound connections to Symantec (more like say Logmein on a PC). Putting a load balancer in front of two enterprise gateways seems like it would not help in any way, as there is nothing making a connection the Enterprise Gateway. Am I correct in this, or is there something I am overlooking. The guide on page 82 describes load balancing but jsut talks about offsetting LDAP synchronization schedules, which I understand that portion but nothing about how to load balance. Any comments or suggestions would be greatly appreciated.

0

Web Services Java Utility for MPKI 7.3

July 8, 2016, 10:18 am
$
0
0
I need a solution

I am trying to use the Java utiltiy packaged with MPKI 7.3 to perform a key recovery.  I do have a KMS running Web Services for CertificateManagement. 

So far, I execute the following 

java -jar .\tools\clientapp\pkiwebserviceclient.jar -config myconfigfile.txt -operation certmgmt -kms true

The result is below.  What I am missing is how to pass information about my KMS to the utility.  Documentation says the RecoverKey operation requires use of the input file but the only example provided for the format of the input file is for an enrollment. I looked at the code for the sample client (SampleParameters.java) and saw that a parameter provision is made for using the KMS URL but I have no guidance (key for key-value pair) for specifying this for Java command line utility.

I have verified that webpin is in the Escrow database. I think that I just need the proper key recovery setup for the config file and input file.

Any help would be appreciated.

<?xml version='1.0' encoding='utf-8'?>
<S:Envelope xmlns:S="http://schemas.xmlsoap.org/soap/envelope/">
<S:Body>
<S:Fault xmlns:ns4="http://www.w3.org/2003/05/soap-envelope">
<faultcode xmlns:wst="http://docs.oasis-open.org/ws-sx/ws-trust/200512">
wst:CertMgmtOperationFailed
</faultcode>
<faultstring>
Certificate Management Service failed.
</faultstring>
<detail>
<vsmgmt:message xmlns:vsmgmt="http://schemas.verisign.com/pkiservices/2009/07/management">
The Key Management Server could not find the key escrow record for this certificate serial number. Correct the request and try again.
</vsmgmt:message>
<vsmgmt:errorcode xmlns:vsmgmt="http://schemas.verisign.com/pkiservices/2009/07/management">
A707
</vsmgmt:errorcode>
<vsmgmt:serverTransactionID xmlns:vsmgmt="http://schemas.verisign.com/pkiservices/2009/07/management">
4a2fd2304dd918c8
</vsmgmt:serverTransactionID>
</detail>
</S:Fault>
</S:Body>
</S:Envelope>

Regards,

Tim Taylor

0
Search

Configure Symantec VIP for OWA that is being published on TMG

July 11, 2016, 10:14 am
$
0
0
I need a solution

Has anyone been able to sucessfully configure the Symantec VIP for OWA (Outlook Web Access 2010) running on Microsoft's TMG (Microsoft Forefront Threat Management Gateway)?

 Most of the various "Partnership" downloads/material do not cover this.

I'm finding configurations cover IIS,  plugins for OWA or TMG access but nothing on setting up/modifying OWA that is configured on the TMG already.

I would expect something related to editing the front end web page on the TMG that will provide the 2FA needed but also prevent access unless all three fields are valid.

thanks,

0

PKI Enterprise Gateway and Autoenrollment Server

July 14, 2016, 8:01 pm
$
0
0
I need a solution

Like to test MPKI SMIME in preparation for our client business requirement in email digital signing & encryption.

Been following the guide for PKI Enterprise Gateway and Autoenrollment Server Deployment but having difficulties in understanding/following it as it is my first time in testing this product.

If anyone can share a step by step procedure with screenshots will be greatly appreciated.

Thank you in advance!

0

Symantec VIP Enterprise Gateway

August 10, 2016, 2:48 pm
$
0
0
I need a solution

Good Afternoon,

I would like to know if instead of using VIP Access Push , is there any way to setup Symantec VIP Gateway to use Fingerprint as the second factor authentication?

Is my understanding that VIP Access push will push a notification to the user’s mobile to approve/deny by pushing the button, but we would like to use the fingerprint functionality if it’s possible.

Regards,

Basilio Alcantara

0

Enter the Enter your passcode

August 31, 2016, 5:24 pm
$
0
0
I need a solution

Symantec VIP is integrated with VMware vIDM ( vmware identity manager) and we are using VIP as 2 factor authentication.

When the users reaches the e login page, the prompt advises the user "Enter the Enter your passcode" and once enter the VIP passcode it ask for VMware vIDM credential and user is able to login.

However, during the first login prompt ( to enter VIP passcode), it use the word "Enter the Enter your passcode". 

May I know how to remove this extra word from "Enter" . Expected prompt "Enter your passcode" NOT "Enter the Enter your passcode"

0

VIP 9.8 push authentication does not work with ADFS 3 for Office 365 integration

September 13, 2016, 5:24 am
$
0
0
I need a solution

I have followed the Partner Integration for ADFS 3 guide to setup Office 365. I created the code on my VIP Manager to input into IAScript.js. Because I am not using out of band, the guide says I do not need to use the SSP information in this code. When I have completed the plugin install and configuration of the ADFS server I am able to login to the office 365 site and input my code that I have on my credential. Once I enable JS on the ADFS plugin configuration I receive an error that shows on the attached screenshot. I have made sure that IA is enabled on my VIP manager. Any ideas?

Thanks

0

Viewing all 147 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>