You’re offline. This is a read only version of the page.
i all,
I have Nav2015 with webclient. My webclient works with https. The certificate is issued by our certification authority and webclient on windows works perfectly, so it supposed that self-signed certificate isnt necessary.
On Windows (in or out domain) in IE or Chrome with http or https web client works.
On Macbook works webclient in CHrome OK, but on safari server verifies the user and show main role center. When I click on any button on rolecenter, webclient does nothing or show error:"Communication with the server failed, and the content cannot be displayed. Refresh the page or open a new browser window"
Ipad (safari or chrome) works same like safari on Macbook (http,https)
DynamicsNav tablet app( android or iOS) shows error after entering server address (Failed to connect to the server)(My main problem for my client)
I just missing something somewhere, maybe some fresh eyes will spot it :-)
here is my web.cfg file from C:\inetpub\wwwroot\NAVFRE
<?xml version="1.0" encoding="utf-8"?>
<configuration>
<configSections>
<section name="DynamicsNAVSettings" type="System.Configuration.AppSettingsSection, System.Configuration, Version=2.0.0.0,Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" />
</configSections>
<system.webServer>
<rewrite>
<rules>
<rule name="RedirectToWebClientSubFolder" stopProcessing="true">
<match url=".*" />
<action type="Redirect" url="WebClient/Pattern/{C:1}" appendQueryString="true" redirectType="Found" />
<conditions trackAllCaptures="true">
<add input="{URL}" pattern=".*/WebClient$|.*/WebClient/.*" negate="true" />
<add input="{URL}" pattern=".*/*./([^/]*)$" />
</conditions>
</rule>
</rules>
<outboundRules>
<rule name="Relative location header" preCondition="IsRedirection">
<match serverVariable="RESPONSE_Location" pattern=".*/WebClient/Pattern/(.*)" />
<action type="Rewrite" value="WebClient/{R:1}" />
</rule>
<preConditions>
<preCondition name="IsRedirection">
<add input="{RESPONSE_STATUS}" pattern="30\d" />
</preCondition>
</preConditions>
</outboundRules>
</rewrite>
</system.webServer>
<DynamicsNAVSettings>
<!-- Specifies whether NTLM fallback is permitted when authenticating. To require Kerberos authentication, set this value to false -->
<add key="AllowNtlm" value="true" />
<!--
Sets the maximum size, in kilobytes, of a data chunk that is transmitted between Microsoft Dynamics NAV Web client
and Microsoft Dynamics NAV Server. The value should be between 4 and 80.
-->
<add key="ClientServicesChunkSize" value="28" />
<!--
Sets the company in Microsoft Dynamics NAV to connect to.
-->
<add key="Company" value="" />
<!--
Sets the threshold in memory consumption at which Microsoft Dynamics NAV Web client starts compressing data sets.
This limits amount of consumed memory. The value is in kilobytes.
-->
<add key="ClientServicesCompressionThreshold" value="64" />
<!--
Sets the time zone for Microsoft Dynamics NAV Web client. The time zone is applied to date and time data.
The value must match a time zone that is in the registry of the computer running Microsoft Dynamics NAV Web client
under HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Time Zones.
-->
<add key="TimeZone" value="UTC" />
<!--
Sets the language version of the Microsoft Dynamics NAV Web client. The value must be valid culture name
for a language in Microsoft Dynamics NAV, such as en-US or da-DK.
-->
<add key="Language" value="cs-CZ" />
<!--
Specifies the culture name that is used to format dates, times, numbers, and currency. The value must be a
language culture name that has the format nn-NN, such as en-US.
-->
<add key="RegionFormat" value="cs-CZ" />
<!--
Specifies the security services to protect the data stream between the Microsoft Dynamics NAV Web client and
Microsoft Dynamics NAV Server. This value must match the value that is specified in the Microsoft Dynamics NAV Server
configuration file. Valid options include: EncryptAndSign, Sign, None
-->
<add key="ClientServicesProtectionLevel" value="EncryptAndSign" />
<!--
The name of the computer running the Microsoft Dynamics NAV Server to connect to.
-->
<add key="Server" value="xxxxxxxxx" />
<!--
Name of the Microsoft Dynamics NAV Server instance to connect to (for client) or listen on (for server).
-->
<add key="ServerInstance" value="NAVFRE" />
<!--
The type of client credential used for authentication.
Possible values:
Windows - Windows authentication is used, and client will connect with "current user"
this user is expected to be the same and known to both server and client
This is the default mode and is typically used on a LAN with Active Directory
In this mode X.509 certificates are not used and options set below are ignored
UserName - Windows authentication on the server. Client is expected to present username/password
indentifying a windows user known (created) on the server.
Typically the client will ask for these credentials and pass them to the server
Certificates are used to protect the passing of credentials.
This is typically used when only the server is part of an Active Directory, or
when the client is not trusted, e.g. connection over a WAN/Internet
NavUserPassword - Authentication is managed by the server but not based on windows users.
Client is expected to present username/password matching a user known to the server.
Typically the client will ask for these credentials and pass them to the server
Certificates are used to protect the passing of credentials.
This mode is used in hosted environments e.g. Azure where the list of allowed users
are maintained by NAV and not based on windows users.
AccessControlService - Authentication for the Web Client is handled by Windows Azure Access Control Service.
An ACS namespace needs to be set up before. Also the Identity Providers need to be set up
as well as the Relying Party representing the NAV Web Client.
To support ACS, you need to specify the ACS WS Federated authentication endpoint in the ACSUri.
-->
<add key="ClientServicesCredentialType" value="Windows" />
<!--
The listening TCP port for the Microsoft Dynamics NAV Server. This is part of the server's URL. Valid range: 1-65535
-->
<add key="ClientServicesPort" value="8046" />
<!--
Specifies whether the connection to the Dynamics NAV Server instance requires an SPN.
If true, the connection will only be made to a service with an SPN <ServerInstance>/<Server>:<ClientServicesPort>
If false, the connection will be attempted to a service with or without an SPN.-->
<add key="ServicePrincipalNameRequired" value="false" />
<!--
Specifies the amount of time that a connection between the Dynamics NAV Web client and the Dynamics NAV Server can remain idle before the session is stopped.
Time span format: [dd.]hh:mm:ss[.ff]
dd: days
hh: hours
mm: minutes
ss: seconds
ff: fractions of a second
-->
<add key="SessionTimeout" value="00:20:00" />
<!--
Specifies whether the Report Viewer options for saving a report as an Excel, Word, or PDF are visible.
Enabling this parameter might require changing security settings on the server.
For more information, see the documentation for configuring the Report Viewer.
-->
<add key="ShowReportViewerExportOptions" value="false" />
<!--
Specifies whether to show the search action for finding a page or report.
The action appears in the ribbon and navigation pane of the web client.
-->
<add key="ShowPageSearch" value="true" />
<!--
Specifies the connection to the server.
-->
<add key="UnknownSpnHint" value="(net.tcp://xxxxxxxxxxxxx/Service)=NoSpn" />
<!--
The DNS or subject name from the server certificate.
-->
<add key="DnsIdentity" value="" />
<!--
Specifies the sign-in page that Microsoft Dynamics NAV redirects to when configured for Single Sign-On.
For Azure AD (Office 365) authentication, the ACSUri setting has the following format:
https://login.windows.net/<AAD TENANT ID>/wsfed?wa=wsignin1.0%26wtrealm=<APP ID URI>
Where
"<AAD TENANT ID>" is the ID of the Azure AD tenant, for example "CRONUSInternationLtd.onmicrosoft.com". Use "common" if the application is configured as a multitenant Azure AD application.
"<APP ID URI>" is the ID that was assigned to the Microsoft Dynamics NAV application when it was registered in Azure AD, for example "https://localhost/".
For ACS authentication, the ACSUri setting is a top level partition of ACS that is used to create the ACS tokens, for example "cronusinternationalltd.accesscontrol.windows.net/.../wsfederation"
Remarks:
- Notice the difference between ACS "wsfederation" and Azure AD "wsfed" resource
- The query string parameter needs to be URI-encoded (use "%26" instead of "&").
-->
<add key="ACSUri" value="" />
<!--
Name of the Microsoft Dynamics NAV Help Server to connect
to. The value of the "Server" setting is used as the default.
-->
<add key="HelpServer" value="DOMAINDIRSYNC" />
<!--
The listening TCP port for the Microsoft Dynamics NAV Help Server.
Valid range: 1-65535
-->
<add key="HelpServerPort" value="49000" />
</DynamicsNAVSettings>
</configuration>
and web.cfg from C:\inetpub\wwwroot\XXXXX\WebClient
<?xml version="1.0" encoding="UTF-8"?>
<configuration>
<configSections>
<section name="businessClient" type="Microsoft.Dynamics.Framework.UI.BusinessClientConfigSection, Microsoft.Dynamics.Framework.UI, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" />
</configSections>
<system.web>
<globalization culture="auto" uiCulture="auto" />
<compilation debug="false" defaultLanguage="c#" targetFramework="4.0" />
<httpRuntime requestValidationMode="2.0" />
<sessionState mode="InProc" />
<trust legacyCasModel="true" level="Full" />
<!-- Uncomment to only allow https connection authentication mode
<authentication mode="Forms">
<forms loginUrl="~/SignIn.aspx" timeout="2880" requireSSL="true"/>
</authentication>
-->
<authentication mode="Windows">
<forms loginUrl="~/SignIn.aspx" timeout="2880" />
</authentication>
<identity impersonate="true" />
<authorization>
<deny users="?" />
</authorization>
<pages enableViewState="true" validateRequest="true" clientIDMode="AutoID" />
<httpHandlers>
<add verb="GET" path="RibbonCommandHandler.axd" type="Microsoft.Dynamics.Framework.UI.Web.WebClient.RibbonCommandHandler, Microsoft.Dynamics.Framework.UI.Web.WebClient, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" />
<add verb="POST" path="logerror" type="Microsoft.Dynamics.Framework.UI.Web.WebClient.LogErrorHandler, Microsoft.Dynamics.Framework.UI.Web.WebClient, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" />
<add verb="POST" path="auth" type="Microsoft.Dynamics.Framework.UI.Web.WebClient.AuthenticateHandler, Microsoft.Dynamics.Framework.UI.Web.WebClient, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" />
<add verb="GET" path="img" type="Microsoft.Dynamics.Framework.UI.Web.DynamicImageHandler, Microsoft.Dynamics.Framework.UI.Web, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" />
<add verb="GET" path="DynamicFileHandler.axd" type="Microsoft.Dynamics.Framework.UI.Web.DynamicFileHandler, Microsoft.Dynamics.Framework.UI.Web, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" />
<add verb="POST" path="DynamicFileUploadHandler.axd" type="Microsoft.Dynamics.Framework.UI.Web.DynamicFileUploadHandler, Microsoft.Dynamics.Framework.UI.Web, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" />
<add verb="*" path="Reserved.ReportViewerWebControl.axd" type="Microsoft.Reporting.WebForms.HttpHandler, Microsoft.ReportViewer.WebForms, Version=12.0.0.0, Culture=neutral, PublicKeyToken=89845dcd8080cc91" />
<add verb="GET" path="cs.img" type="Microsoft.Dynamics.Framework.UI.ClientService.ClientServiceHttpHandler`1[[Microsoft.Dynamics.Framework.UI.Web.DynamicImageHandler, Microsoft.Dynamics.Framework.UI.Web, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35]], Microsoft.Dynamics.Framework.UI.ClientService" />
<add verb="GET" path="cs.DynamicFileHandler.axd" type="Microsoft.Dynamics.Framework.UI.ClientService.ClientServiceHttpHandler`1[[Microsoft.Dynamics.Framework.UI.Web.DynamicFileHandler, Microsoft.Dynamics.Framework.UI.Web, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35]], Microsoft.Dynamics.Framework.UI.ClientService" />
</httpHandlers>
<httpModules>
<add name="ClientServiceModule" type="Microsoft.Dynamics.Nav.Client.ClientService.ClientServiceModule, Microsoft.Dynamics.Nav.Client.ClientService, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" />
<!--<add name="FederatedAuthenticationModule" type="Microsoft.Dynamics.Framework.UI.Web.FederatedAuthenticationModule, Microsoft.Dynamics.Framework.UI.Web, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35"/>-->
<add name="NotSupportedBrowserFeaturesCheckerModule" type="Microsoft.Dynamics.Framework.UI.Web.NotSupportedBrowserFeaturesCheckerModule, Microsoft.Dynamics.Framework.UI.Web, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" />
</httpModules>
</system.web>
<location path="Resources">
<!--This is needed in order to load and register the CSS files, which are also used before the user has a session (i.e. in login page).-->
<system.web>
<authorization>
<allow users="*" />
</authorization>
</system.web>
</location>
<location path="auth">
<system.web>
<authorization>
<allow users="*" />
</authorization>
</system.web>
</location>
<location path="SignOut.aspx">
<system.web>
<authorization>
<allow users="*" />
</authorization>
</system.web>
</location>
<location path="Empty.aspx">
<system.web>
<authorization>
<allow users="*" />
</authorization>
</system.web>
</location>
<location path="Message.aspx">
<system.web>
<authorization>
<allow users="*" />
</authorization>
</system.web>
</location>
<location path="BrowserIsNotSupported.aspx">
<system.web>
<authorization>
<allow users="*" />
</authorization>
</system.web>
</location>
<location path="BrowserDoesNotAcceptCookies.aspx">
<system.web>
<authorization>
<allow users="*" />
</authorization>
</system.web>
</location>
<location path="Services/ClientServiceDiscovery.svc">
<system.web>
<authorization>
<allow users="*" />
</authorization>
</system.web>
</location>
<location path="Services/ClientService.svc">
<system.web>
<authorization>
<allow users="*" />
</authorization>
</system.web>
</location>
<location path="cs.DynamicFileHandler.axd">
<system.web>
<authorization>
<allow users="*" />
</authorization>
</system.web>
</location>
<location path="cs.img">
<system.web>
<authorization>
<allow users="*" />
</authorization>
</system.web>
</location>
<system.webServer>
<rewrite>
<rules>
<rule name="Don't rewrite system files" stopProcessing="true">
<match url=".*" />
<conditions>
<add input="{REQUEST_FILENAME}" matchType="IsFile" />
<add input="{REQUEST_FILENAME}" matchType="IsDirectory" />
<!--The following condition prevents rule from rewriting requests to .axd and .svc files-->
<add input="{URL}" pattern="\.axd$" />
<add input="{URL}" pattern="\.svc$" />
</conditions>
<action type="None" />
</rule>
<rule name="Already have tenant specified" stopProcessing="true">
<match url=".*" />
<conditions>
<add input="{QUERY_STRING}" pattern="(^|&|;)tenant=[^&;]*" />
</conditions>
<action type="None" />
</rule>
<rule name="Hostname (without port) to tenant" enabled="false" stopProcessing="true">
<!-- This rule should only be enabled when running multi tenancy with host name support. Not compatible with single tenancy. -->
<match url=".*" />
<conditions>
<add input="{HTTP_HOST}" pattern="^([^:]*)(:[0-9]+)?$" />
</conditions>
<action type="Rewrite" url="{R:0}?tenant={C:1}" />
</rule>
</rules>
</rewrite>
<validation validateIntegratedModeConfiguration="false" />
<modules>
<remove name="ClientServiceModule" />
<remove name="NotSupportedBrowserFeaturesCheckerModule" />
<remove name="ETagRemoveModule" />
<remove name="NoSniffAddModule" />
<add name="ClientServiceModule" preCondition="managedHandler" type="Microsoft.Dynamics.Nav.Client.ClientService.ClientServiceModule, Microsoft.Dynamics.Nav.Client.ClientService, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" />
<remove name="FederatedAuthenticationModule" />
<!--<add name="FederatedAuthenticationModule" preCondition="managedHandler" type="Microsoft.Dynamics.Framework.UI.Web.FederatedAuthenticationModule, Microsoft.Dynamics.Framework.UI.Web, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35"/>-->
<add name="NotSupportedBrowserFeaturesCheckerModule" preCondition="managedHandler" type="Microsoft.Dynamics.Framework.UI.Web.NotSupportedBrowserFeaturesCheckerModule, Microsoft.Dynamics.Framework.UI.Web, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" />
<add name="ETagRemoveModule" type="Microsoft.Dynamics.Framework.UI.Web.ETagRemoveModule, Microsoft.Dynamics.Framework.UI.Web, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" />
<add name="NoSniffAddModule" type="Microsoft.Dynamics.Framework.UI.Web.NoSniffAddModule, Microsoft.Dynamics.Framework.UI.Web, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" />
</modules>
<handlers>
<add name="RibbonCommandHandler" verb="GET" path="RibbonCommandHandler.axd" type="Microsoft.Dynamics.Framework.UI.Web.WebClient.RibbonCommandHandler, Microsoft.Dynamics.Framework.UI.Web.WebClient, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" resourceType="Unspecified" />
<add name="LogErrorHandler" verb="POST" path="logerror" type="Microsoft.Dynamics.Framework.UI.Web.WebClient.LogErrorHandler, Microsoft.Dynamics.Framework.UI.Web.WebClient, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" resourceType="Unspecified" />
<add name="AuthenticateHandler" verb="POST" path="auth" type="Microsoft.Dynamics.Framework.UI.Web.WebClient.AuthenticateHandler, Microsoft.Dynamics.Framework.UI.Web.WebClient, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" resourceType="Unspecified" />
<add name="DynamicImageHandler" verb="GET" path="img" type="Microsoft.Dynamics.Framework.UI.Web.DynamicImageHandler, Microsoft.Dynamics.Framework.UI.Web, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" resourceType="Unspecified" />
<add name="DynamicFileHandler" verb="GET" path="DynamicFileHandler.axd" type="Microsoft.Dynamics.Framework.UI.Web.DynamicFileHandler, Microsoft.Dynamics.Framework.UI.Web, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" resourceType="Unspecified" />
<add name="DynamicFileUploadHandler" verb="POST" path="DynamicFileUploadHandler.axd" type="Microsoft.Dynamics.Framework.UI.Web.DynamicFileUploadHandler, Microsoft.Dynamics.Framework.UI.Web, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" resourceType="Unspecified" />
<add name="ReportViewerWebControl" verb="*" path="Reserved.ReportViewerWebControl.axd" type="Microsoft.Reporting.WebForms.HttpHandler, Microsoft.ReportViewer.WebForms, Version=12.0.0.0, Culture=neutral, PublicKeyToken=89845dcd8080cc91" resourceType="Unspecified" />
<add name="StringResource" verb="GET" path="StringResource.axd" type="Microsoft.Dynamics.Framework.UI.Web.StringResourceHandler, Microsoft.Dynamics.Framework.UI.Web, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35" resourceType="Unspecified" />
<add name="ClientService.DynamicImageHandler" verb="GET" path="cs.img" type="Microsoft.Dynamics.Framework.UI.ClientService.ClientServiceHttpHandler`1[[Microsoft.Dynamics.Framework.UI.Web.DynamicImageHandler, Microsoft.Dynamics.Framework.UI.Web, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35]], Microsoft.Dynamics.Framework.UI.ClientService" resourceType="Unspecified" />
<add name="ClientService.DynamicFileHandler" verb="GET" path="cs.DynamicFileHandler.axd" type="Microsoft.Dynamics.Framework.UI.ClientService.ClientServiceHttpHandler`1[[Microsoft.Dynamics.Framework.UI.Web.DynamicFileHandler, Microsoft.Dynamics.Framework.UI.Web, Version=8.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35]], Microsoft.Dynamics.Framework.UI.ClientService" resourceType="Unspecified" />
</handlers>
<urlCompression doStaticCompression="true" doDynamicCompression="true" dynamicCompressionBeforeCache="true" />
<staticContent>
<remove fileExtension=".woff" />
<mimeMap fileExtension=".woff" mimeType="application/font-woff" />
<clientCache cacheControlMode="UseMaxAge" cacheControlMaxAge="365.00:00:00" />
</staticContent>
<httpProtocol>
<customHeaders>
<!-- SAMEORIGIN: allows framing of the Microsoft Dynamics NAV Web client in another website only if the other website is on the same host. Remove this to enable cross-site framing of the Microsoft Dynamics NAV Web client, but be aware of the increased risk of clickjacking, which could deceive a legitimate user into taking unintended actions on behalf of the attacker. -->
<add name="X-FRAME-OPTIONS" value="SAMEORIGIN" />
<!--
The Platform for Privacy Preference (P3P) header setting specifies the compact privacy policies that the website declares. For more information about the P3P standard, see the official page: www.w3.org/.../P3P11.
Web browsers that support P3P, such as Internet Explorer, send cookies to third party sites or not based on the value in the P3P header setting. If the Microsoft Dynamics NAV web client is embedded in a iFrame on another website, and the P3P header is set to NON, Internet Explorer forwards cookies to Microsoft Dynamics NAV. The collected information is not made available to users.
-->
<add name="P3P" value="CP="NON"" />
<!-- Disable IE8+ Cross site scripting filter -->
<add name="X-XSS-Protection" value="0" />
</customHeaders>
</httpProtocol>
</system.webServer>
<system.serviceModel>
<behaviors>
<serviceBehaviors>
<behavior>
<serviceMetadata httpGetEnabled="false" httpsGetEnabled="false" />
<!-- To receive exception details in faults for debugging purposes, set the value below to true. Set to false before deployment to avoid disclosing exception information -->
<serviceDebug includeExceptionDetailInFaults="false" />
</behavior>
</serviceBehaviors>
</behaviors>
<serviceHostingEnvironment aspNetCompatibilityEnabled="true" />
</system.serviceModel>
<appSettings>
<add key="ReportViewerMessages" value="Microsoft.Dynamics.Framework.UI.Web.ReportViewerMessages, Microsoft.Dynamics.Framework.UI.Web" />
<add key="AllowExceptionDetail" value="true" />
</appSettings>
<businessClient clientSessionStarter="Microsoft.Dynamics.Nav.Client.ClientService.NavClientServiceSessionManagerFactory`1[[Microsoft.Dynamics.Nav.WebClient.NavWebClientSessionManager, Microsoft.Dynamics.Nav.Client.WebClient]], Microsoft.Dynamics.Nav.Client.ClientService" />
</configuration>
*This post is locked for comments
Hi George,
According to THIS MSDN blog there are certain limitations with SAFARI but you should be able to log in at least.
Can you confirm that you have the latest version of Safari.
Also Try these links if it helps...
http://forum.mibuso.com/discussion/62496/nav-2015-app-connection-problem
-------------------
Hello,
Iam ussing authority certificate, not self-signed certificate, becouse of my client security policy. I have certificate just for https. But everything works on all browsers instead of safari and DynamicsNav app.
.
I turned it on True but
Even Viewer show just connection from web browser (with https) . From adroid or ios ip i got just connection timeout error, nothing else :/. I will maybe test connectivity on some site monitoring application like Fiddler4.
this is from event viewer when i log in from safary browser from tablet with https:
Audit Success:
Special privileges assigned to new logon.
Subject:
Security ID: xxxxx\jaroslav.sternwald
Account Name: jaroslav.sternwald
Account Domain: xxxxx
Logon ID: 0x3BDDAE9
Privileges: SeSecurityPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeTakeOwnershipPrivilege
SeDebugPrivilege
SeSystemEnvironmentPrivilege
SeLoadDriverPrivilege
SeImpersonatePrivilege
Audit Sucess:
An account was successfully logged on.
Subject:
Security ID: NULL SID
Account Name: -
Account Domain: -
Logon ID: 0x0
Logon Type: 3
Impersonation Level: Impersonation
New Logon:
Security ID: xxxxx\jaroslav.sternwald
Account Name: jaroslav.sternwald
Account Domain: xxxxxx
Logon ID: 0x3BDDAE9
Logon GUID: {00000000-0000-0000-0000-000000000000}
Process Information:
Process ID: 0x0
Process Name: -
Network Information:
Workstation Name: FK-iPad-DMPQM33CG5YQ
Source Network Address: -
Source Port: -
Detailed Authentication Information:
Logon Process: NtLmSsp
Authentication Package: NTLM
Transited Services: -
Package Name (NTLM only): NTLM V2
Key Length: 0
This event is generated when a logon session is created. It is generated on the computer that was accessed.
The subject fields indicate the account on the local system which requested the logon. This is most commonly a service such as the Server service, or a local process such as Winlogon.exe or Services.exe.
The logon type field indicates the kind of logon that occurred. The most common types are 2 (interactive) and 3 (network).
The New Logon fields indicate the account for whom the new logon was created, i.e. the account that was logged on.
The network fields indicate where a remote logon request originated. Workstation name is not always available and may be left blank in some cases.
The impersonation level field indicates the extent to which a process in the logon session can impersonate.
The authentication information fields provide detailed information about this specific logon request.
- Logon GUID is a unique identifier that can be used to correlate this event with a KDC event.
- Transited services indicate which intermediate services have participated in this logon request.
- Package name indicates which sub-protocol was used among the NTLM protocols.
Check of Even Viewer is logging any errors at the time you are connecting. Any?
Also, try changing <serviceDebug includeExceptionDetailInFaults="false"/> to True, perhaps would see more details.
#1
Sohail Ahmed
2
#1
mmv
2
#1
Amol Salvi
2
Share
Report
All responses (
Answers (
