since ‎13-03-2018
‎28-10-2020
ramgopalm545617
Level 2
Re: unable to block http options with AEM felix configura...
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
thanks for the reply, even after adding the method to apache sling referrer filter, we are still facing the issue. it's strange that the local host is giving 401 for me as well in publish even without adding any configurations, really confused what should be next steps here. @Arun_Patidar

Views

34

Likes

0

Replies

0
Re: unable to block http options with AEM felix configura...
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
Hi @Jörg_Hoh, we also know that this has to be blocked at apache level, but there is a security vulnerability that AEM HTTP OPTIONS opened, so we have to fix the issue

Views

37

Likes

0

Replies

0
unable to block http options with AEM felix configuration
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
Even after adding OPTIONS method to filter methods in both Adobe Granite CSRF filter and Apache sling referrer filter, the CURL requests are still responding with 200 response. curl -i -X OPTIONS http://:/content/*****/en/****/home.htmlHTTP/1.1 200 OKDate: Thu, 22 Oct 2020 17:42:30 GMTX-Content-Type-Options: nosniffX-Frame-Options: SAMEORIGINAllow: OPTIONS, TRACE, GET, HEADContent-Length: 0 is there is any other config which needs to be done to to stop HTTP OPTIONS on the direct server host:port...

Views

103

Likes

0

Replies

5
Re: server copy, not able to start the clone server
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
Hi @Vijayalakshmi S, I tried to get the bundle status using the same user name and password and i'm able to get the json response

Views

31

Likes

0

Replies

0
Re: server copy, not able to start the clone server
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
Hi @Vijayalakshmi_S, If we are trying to access the publish instance felix console, it redirects to login page and it is not allowing to login into AEM

Views

54

Likes

0

Replies

0
Re: server copy, not able to start the clone server
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
Hi @Vijayalakshmi_S, we generally don't follow the document process, we genrally stop the server.copy crx-quickstart from one path to another path and datastore from one path to another path, update the blob datastore config (org.apache.jackrabbit.oak.plugins.blob.datastore.FileDataStore.config) to the new datastore path, update the host name and port and remove the sling id and then start the new server on the same host. the same worked for author, but publish instance alone is having these iss...

Views

110

Likes

0

Replies

0
server copy, not able to start the clone server
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
we run aem 6.3.2.1 server on segmentstore, we copied the complete segement store, datastore into different paths updated the configurations and deleted the sling id and changed the port number and started the server on the same host. once the server is started, not able to login even with root admin user and the pages are not opening giving script errors. PFB detailed errors Login error:08.10.2020 13:24:49.835 *WARN* [qtp2125863239-42029] org.apache.sling.auth.core.impl.SlingAuthenticator handle...

Views

145

Likes

0

Replies

5
Re: Run AEM instance on HTTPS mode with out dispatcher
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
even with dispatcher infront of the AEM instance, they want to make sure AEM is running on https section

Views

84

Likes

0

Replies

0
Re: Run AEM instance on HTTPS mode with out dispatcher
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
thanks for the quick response, can we run AEM only on https port and not accessible on http? Will ther be any impact in using the https port in the dispatcher configuration?

Views

108

Likes

0

Replies

0
Re: Run AEM instance on HTTPS mode with out dispatcher
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
Hi @Nupur_Jain, thanks for the quick response, can we run AEM only on https port and not accessible on http? Will ther be any impact in using the https port in the dispatcher configuration?

Views

115

Likes

0

Replies

0
Run AEM instance on HTTPS mode with out dispatcher
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
We have a request from internal IT, if we can run AEM with https with out using dispatcher. currently we are accessing the aem instance using http://host:port, but they intend us to use https://host:port, what should we do to let AEM run on https on the same port?

Views

192

Likes

0

Replies

7
Getting 403 response from AEM for requests with no html extension
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
Hi,we have already a predefined set of etc/mappings done so that both the domain can map to the content path and the path can reverse map to the domain name (which would enable shortened URL's in the live websites)PFB set configurations from crx as the screenshot and the resource resolver configs. Mapping Map EntriesLists the entries used by the ResourceResolver.map methods to map Resource Paths to URLsPattern Replacement Redirect^/content/***/en/***/ https://test.example.com/ external: 302^/ ht...

Views

(val/1000)?string[".0"]}K

Likes

0

Replies

1
Re: Update to Apache sling simple webdav servlet, will th...
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
if it is at dispatcher level, we have to apply it at multiple apache instances in our design, to make this a platform level fix, we want to implement it at AEM level.

Views

(val/1000)?string[".0"]}K

Likes

0

Replies

0
Re: Update to Apache sling simple webdav servlet, will th...
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
We wanted to apply HTTP OPTIONS method to be blocked in AEM, so we are using Apache sling referrer filter to add OPTIONS method, so we had to update the dav root inorder for that configuration to work.

Views

(val/1000)?string[".0"]}K

Likes

0

Replies

0
Update to Apache sling simple webdav servlet, will there be any security issue?
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
the default configuration for the dav.root is /dav, so for a requirement we have recently changes it to /crx/repository, will there be any security issues because of this change in Apache sling simple webdav servlet? dav.create-absolute-uri=B"true"type.content="nt:resource"type.noncollections="nt:file"filter.prefixes=["rep","jcr"]dav.realm="Sling\ WebDAV"dav.root="/crx/repository"filter.types=""filter.uris=""type.collections="sling:Folder"collection.types=["nt:file","nt:resource"]

Views

(val/1000)?string[".0"]}K

Likes

0

Replies

4
Re: How to block HTTP OPTIONS request in AEM
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
Thanks .. It worked!!

Views

(val/1000)?string[".0"]}K

Likes

0

Replies

0
Re: How to block HTTP OPTIONS request in AEM
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
Hi Hamid, thanks for the reply, i was not able find the exact configurations which would resolve my issue. could you please help me with something specific to my issue.

Views

(val/1000)?string[".0"]}K

Likes

0

Replies

0
Re: How to block HTTP OPTIONS request in AEM
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
so if we do the configuration in AEM to stop the OPTIONS methods, how do we test it?

Views

(val/1000)?string[".0"]}K

Likes

0

Replies

0
How to block HTTP OPTIONS request in AEM
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
We recently got a security vulnerability as below. "OPTIONS method returned values including itself" we wanted to block at AEM level using Apache Sling referrer filter by adding OPTIONS in 'filter.methods', and post updating the configurations, i was still able to get response for the below CURL request. curl -i -X POST https://test.*****.com/ HTTP/1.1 200 OKDate: Tue, 26 May 2020 18:28:02 GMTServer: ApacheX-Frame-Options: SAMEORIGINX-Content-Type-Options: nosniffX-Frame-Options: SAMEORIGINAllow...

Views

(val/1000)?string[".0"]}K

Likes

0

Replies

7
Re: can AEM has any OOTB component which can render a wor...
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
thanks for the reply, I hope this will work in AEM 6.5.2 as well.

Views

(val/1000)?string[".0"]}K

Likes

0

Replies

0
can AEM has any OOTB component which can render a word document?
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
we have a customer requirement to upload workd documents in AEM, they want to directly view the document in the page, do we have any OOTB component in AEM which can add the word document and users can see the contents of the document.

Views

(val/1000)?string[".0"]}K

Likes

0

Replies

2
Re: does a single screens player support multiple displays ?
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
@sunjot16 thanks for the quick response. In our case the constraint is that we have only one screens player, but multiple TV's and only one single screens player. I hope you understand our scenario.

Views

(val/1000)?string[".0"]}K

Likes

0

Replies

0
Re: does a single screens player support multiple displays ?
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
I want to know if screens can display 3 different channels in 3 different displays

Views

(val/1000)?string[".0"]}K

Likes

0

Replies

0
does a single screens player support multiple displays ?
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
We already have as setup in the office to connect 3 different topics on 3 different TV's from a single PC, we are trying to understand if we install screens player in the PC, can we manage 3 different topics/different content on 3 different TV's using the same screens place.

Views

(val/1000)?string[".0"]}K

Likes

0

Replies

4
Re: Permission change for everyone group after restart
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
Is these a way we can stop this from happening?

Views

(val/1000)?string[".0"]}K

Likes

0

Replies

0
Re: Permission change for everyone group after restart
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
if we are not removing this permission, the pages are getting distroted.

Views

(val/1000)?string[".0"]}K

Likes

0

Replies

0
ACM upgrade
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Campaign Classic
We want to upgrade ACM on premise install, request us to help with Do you recommend in-place upgrade vs new install? Have you had a high success rate with in-place upgrades? What about installing the latest build on a fresh server then coping the database objects from the previous version to the new? Current version:Release 7.0.18.4Future revision :Release 19.1.4 - Build 9032

Views

930

Likes

0

Replies

1
Permission change for everyone group after restart
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
The default permissions for everyone on /etc node is denied as shown in the below screenshot, but as per project needs we have removed this ACL, but after every restart this ACL is being added automatically to /etc node and it is creating distorted content in publish instances, is this expected? I have seen that Adobe has fixed this issue as per the release notes, we are in AEM 6.4.5 but still see that the permissions are being reverted after restart, can anyone help us with this issue.https://e...

Views

(val/1000)?string[".0"]}K

Likes

0

Replies

4
Download assets or folders directly from DAM
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager
Hi,we have a requirement to download the full folder of the images to my local system, we can't achieve it by using package manager, as the package will contain all the context xml files and the images and pdf's are stored as renditions, which will not give the exact folder structure as well.as shown in the below screenshots, if we select the folder using touch UI and click on download, it will download the images in a zip file with the folder hierarchy as in like a windows explorer, can we use ...

Views

(val/1000)?string[".0"]}K

Likes

0

Replies

4
Re: Sorting folders and tags in AEM DAM
Avatar

ramgopalm545617

ramgopalm545617
- Adobe Experience Manager

Views

(val/1000)?string[".0"]}K

Likes

0

Replies

0