Add roles in the DMZ

If I want to install an MP/DP/SUP in the DMZ, can I do so on workgroup machines or do they need to be a member of a domain? If I can install on a workgroup machines, what settings when adding the site do I need to set? It is going to want an account
to install the site...

All CM roles have to be installed on machines that are domain joined.
Torsten Meringer | http://www.mssccmfaq.de

Similar Messages

Create User Activity: How to add Roles to the new user

Hi all,
My Problem is Using LC Workbench I have created one process it is having Create User Activity. I am able to creating the new user with this process.
But I dont have idea how to add roles to that new user? Please anybody can help me out
Thanks in advance.

Hi,
I used Built-in Componets till now, Please help me out What are the steps needed to implement a custom componet.
Thanks in advance

Requesting to remove roles for the direct report's in OIM 11g R2

Is it possible to have the manager log into OIM and request to remove roles for one of his/her direct reports? You can only add roles from the catalog interface.
Thanks

Search the user
Go to the Roles Tab
Select the Role
"Remove Role" link will get enabled
Click that link
Submit
Request ID will be generated
For SELF REQUEST:
Go to My Access Form
And do the same thing

Can I add VOIP Gateway SPA2100-SU to the DMZ of Router BEFSR41 Ver 4 ?

I am having multiple problems with dropped calls; need to reboot my LinkSys VOIP Gateway and so on, and my VOIP provider has suggested the following: "Add your Gateway (the physical device I guess) to the DMZ of your router." We are trying to tell the Router to give this VOIP Gateway, which gets its IP address via DHCP from the router, to essentially give this Gateway carte blanche to any port or destination it wants. I have NO idea how to do this on the BEFSR41, which is a CA model with Version 4 appended to its model number ? Can anyone send me how to advice ? - Mike BRYAN Ottawa Canada PM me for my email.
(Edited post for guideline compliance. Thanks!)
Message Edited by JOHNDOE_06 on 01-22-2008 02:54 PM

First thing is to assign a static IP on the WAN / Internet side of your SPA-2100 so that you can set that IP to the DMZ of the BEFSR41. If you are not sure how to assign a static IP address on the spa2100 or how to open the web interface of the spa2100 and befsr41, then you better refer to the KB articles from www.linksys.com/kb. Just type in something like spa2100 or befsr41.
By the way, you may also enable NAT mapping and NAT Keep alive in your spa2100 aside from opening / forwarding ports in the befsr41 (check out Answer ID 5242). Lastly, enabling Send Resp To Src Port in the spa2100 is another option to try (this is under Voice > SIP > NAT Support Parameters).
It really requires much reading for us beginners to fully understand these devices. I am happy that I learned how to use the KBase site of Linksys since it gives me useful info about their products.

How to add a role to the Portal Favorites

Hello gurus,
I have a role to add to the Portal Favorites to avoid drilling down to many levels, does anyone know how to add a role to the Portal Favorites?
Thanks in advance for your response.
Regards,
Niki Nguyen
Message was edited by:
        Niki Nguyen
Message was edited by:
        Niki Nguyen

Niki,
The documentation says that
The Portal Favorites iView contains a freely definable list of links for direct access to items that you use regularly. This can include the following:
●     Portal pages and iViews that run as full-page applications
●     Documents, folders, and other items in KM repositories
●     External items, such as Internet pages
So we can't do it for Roles.
For detailed information see <a href="http://help.sap.com/saphelp_nw04/helpdata/en/3a/d609e5803111d5992f00508b6b8b11/frameset.htm">Portal Favorites</a>
Mr.Chowdary

I want to write a java program that can add a user to a role or sub role to the Profile Database in iPlanet Portal Server 3.0. Does anyone has any idea or a sample program do such thing. Thanks, Tommy

I want to write a java program that can add a user to a role or sub role to the Profile Database in iPlanet Portal Server 3.0. Does anyone has any idea or a sample program do such thing? Thanks, Tommy

// create the user profile, get the handle back,
// and set the membership profile attributes.
ProfileAdmin newProfile = null;
try {
// the users profile name is the domain
// he belongs to plus their userName
// you will request.domain if your doing this from a servlet, domain_name is the domain_name the user belongs too
String profileName = domain_name + "/" + user;
     if (debug.messageEnabled()) {
debug.message("creating profile for " + profileName);
// create the user profile object
newProfile = ProfileManager.createProfile(
getSession(), profileName ,Profile.USER);
UserProfile userProfile = (UserProfile)newProfile;
     // set the role the user is a member of. Default is to set
     // the users to the default role of the domain they surfed to
     StringBuffer roleName = new StringBuffer(64);
// request.domain instead of domain_name if your doing this from a servlet ..
Profile dp = getDomainProfile(domain_name);
roleName.append(dp.getAttributeString("iwtAuth-defaultRole"));
     if (debug.messageEnabled()) {
debug.message("setting role for " + user + " = " + roleName);
userProfile.setRole(roleName.toString());
newProfile.store(false);
} catch (ProfileException pe) {
     debug.error("profile exception occured: ",pe);
return;
} catch (ProfileException pe) {
     debug.error("login exception occured: ",le);
return;
HTH ..

Need a FM to add report to a role in the transaction PFCG

Hi ,
I need to find a FM which would add a BW REPORT to a role in the transaction PFCG.
Regards ,
Harshit Rungta

There is no such FM exists in BI...only can be done manually

Adding users to roles in the new preview portal (new RBAC feature) does not work

When I click the Invite Users/Add button for any of the 3 roles in the new preview portal, the page doesn't load and instead, it instantly redirects to an HTTP 520 error page. Can anyone please look into this and fix it? It's been this way since last week,
which is when I checked it out but it is quite possible it has been this way for longer.

Hi,
It seems there are some issues in azure preview portal, please note this portal is in preview version, if you find some issues, please try to contact with azure experts, here is azure support channel:
http://www.windowsazure.com/en-us/support/contact/, it is a good choice for you.
Sorry for any inconvenience.
Best Regards,
Jambor
We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
Click
HERE to participate the survey.

Error creating a role from the process task adapter - OIM 11g R2 PS1

I have a requirement to create an OIM role dynamically when a resource account is created. Also once the role is created, I need to assign that role to the user dynamically. Following code works perfectly fine if I replace the Platform with OIMClient and run it remotely. It fails when I run it from OIM:
Exception:
An exception occurred while performing the operation.
java.lang.NullPointerException
at oracle.iam.request.impl.RequestEngine.startOrchestrationFromPreProcess(RequestEngine.java:5516)
at oracle.iam.request.impl.RequestEngine.triggerOperation(RequestEngine.java:5439)
at oracle.iam.request.impl.RequestEngine.doOperation(RequestEngine.java:5154)
at oracle.iam.impl.OIMServiceImpl.doOperation(OIMServiceImpl.java:43)
at sun.reflect.GeneratedMethodAccessor6238.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:601)
at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:307)
at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182)
at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149)
at oracle.iam.platform.utils.DMSMethodInterceptor.invoke(DMSMethodInterceptor.java:25)
at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
at com.sun.proxy.$Proxy943.doOperation(Unknown Source)
public static User searchUserByLogin(String login) {
        List<User> users = null;
        Set<String> retAttrs = new HashSet<String>();
        retAttrs.add(UserManagerConstants.AttributeName.USER_KEY.getId());
        SearchCriteria criteria;
        criteria = new SearchCriteria(UserManagerConstants.AttributeName.USER_LOGIN.getId(), login, SearchCriteria.Operator.EQUAL);
        try {
            UserManager userManager = Platform.getService(UserManager.class);
          users = userManager.search(criteria, retAttrs, null);
        } catch (AccessDeniedException ade) {
            // handle exception
        } catch (UserSearchException use) {
            // handle exception
        if (users.size() > 0) {
            return users.get(0);
        } else {
            return null;
    public static boolean grantRole(String usrLogin, String roleKey) throws oracle.iam.platform.authz.exception.AccessDeniedException, UserMembershipException, ValidationFailedException, RoleGrantException {
        RoleManager roleMgr = (RoleManager) Platform.getService(RoleManager.class);
        adpLogger.debug("Entering grantRole(1): User - " + usrLogin + " Role - " + roleKey);
        Set userKeys = new HashSet();
        User user = searchUserByLogin(usrLogin);
        userKeys.add(user.getEntityId());
        if (!roleMgr.isRoleGranted(roleKey, user.getEntityId(), false)) {
            RoleManagerResult result = roleMgr.grantRole(roleKey, userKeys);
            adpLogger.debug("Role granted " + result.getStatus());
        } else {
            adpLogger.debug("Role is already granted");
        return true;
    public static String createOrUpdateRole(String usrLogin, String roleName) throws oracle.iam.platform.authz.exception.AccessDeniedException, RoleSearchException, ValidationFailedException, RoleAlreadyExistsException, RoleCreateException, RoleGrantException, UserMembershipException {
        adpLogger.debug("Entering createOrUpdateRole(1) Role " + roleName);
        RoleManager roleMgr = (RoleManager) Platform.getService(RoleManager.class);
        SearchCriteria criteria;
        criteria = new SearchCriteria(RoleManagerConstants.ROLE_NAME, roleName, SearchCriteria.Operator.EQUAL);
        Set<String> ret = new HashSet<String>();
        User user = searchUserByLogin(usrLogin);
        List<Role> roles = new ArrayList<Role>();
        roles = roleMgr.search(criteria, ret, null);
        String grpKey = "";
        if (roles.size() > 0) {
            adpLogger.debug("Role already exists. Role ID " + roles.get(0).getEntityId());
            grpKey = roles.get(0).getEntityId();
        } else {
            Role role = new Role(new HashMap());
            role.setName(roleName);
            RoleManagerResult result = roleMgr.create(role);
            adpLogger.debug("Role created with ID " + result.getEntityId());
            grpKey = result.getEntityId();
        return grpKey;
It fails at             RoleManagerResult result = roleMgr.create(role); line in createOrUpdateRole() method.
Has anyone ever run into this kind of issue?
Thanks

Can you please try after making organization for a particular role and user are same ?
For new role creation publish the particular group to organization.
Regards
Shashank k

ABAP prog with Call Transaction to SU01 will not add roles in a CUA client

I am modifying a current ABAP program that works in a non-CUA client to hopefully execute in a CUA client. This program performs a Call Transaction to tcode SU01 and adds roles to an existing user. I used tcode SHDB to identify the new BDC commands needed for CUA when using tcode SU01. When executing the program in the CUA client it does not save the roles to the user. There is no error message or abnormal termination.
When I assign the role to the same user that's referenced in my program directly with tcode SU01 it works fine. Its just when I run the ABAP program the role assigment is not retained. I opened a Customer Message with SAP and they referenced OSS Note 93802 and said this was a consulting question. My program is not abending as referenced in Note 93802, it just does not add the role.
Has anyone been able to get this to work in a CUA client?

Hi,
it should be fairly simple to create a new ABAP using the BAPI's related to business object USER. Call BAPI_USER_CREATE1 to create the users, and BAPI_USER_LOCACTGROUPS_ASSIGN to assign roles in a CUA environment. It should go something like this:
[read file with user data into internal table wt_users]
[read file with role assignments into internal table wt_roles]
Loop at wt_users into wa_user.
[create LOGINDATA, ADDRESS and other structures for user in BAPI below, based on the data in wa_user]
call 'BAPI_USER_CREATE1'
exporting
    username                      = [the user name from input file]
NAME_IN                       =
    logondata                     = [structure for logondata]
    password                      = [initial password value]
DEFAULTS                      =
    address                       = [address structure created above]
    [etc.]
if sy-subrc eq 0.
Assign roles for the user
clear wt_activitygroups. refresh wt_activitygroups.
loop at wt_roles into wa_roles where username = wa_user-username.
    [build an internal table, wt_activitygroups, for system/role assignments for the user]
endloop.
    call BAPI_USER_LOCACTGROUPS_ASSIGN
      exporting
        username                      = [the users name]
      tables
        activitygroups           = wt_activitygroups
        return                       = wt_return.
Endloop.
Ideally, you would have two input files: one with the user data (one record per user), and another one containing the data for the BAPI_USER_LOCACTGROUPS_ASSIGN (on the format USERNAME, SYSTEM, ROLENAME); one entry per line. You'd loop at the first table, containing the user data, then create the user, then loop at all entries in the system/role assignment file for the same username, building an internal table of role assignemnts; then call the second BAPI (provided there were any role assignments to assign for that user!)
Hope this makes sense. It's not rocket science really; you can omit most of the parameters of BAPI_USER_CREATE1, and the second BAPI is even simpler. You could consider validating the input data by checking entries in table USRSYSACT, which contains all valid system/role assignments as seen from the CUA system (this table gets updated every time you do a "text compare" from within SU01.
Regards,
Trond

BAPI to add role to a user.

Hi,
Is there any BAPI available to assign role to a user?.
I got one bapi BAPI_USER_ACTGROUPS_ASSIGN, this bapi does work.
But the problem is it deletes the previous roles assigned to the user and then assign new one.
I would like to know if there is any BAPI to just add a new role to the user without deleting the previous roles assigned to it.
Thanks & Regards,
Subin.

Hi John,
Bapi BAPI_USER_ACTGROUPS_ASSIGN does delete all the existing roles and appends new ones.
If you wish to keep the existing roles then use BAPI_USER_GET_DETAIL along with BAPI_USER_ACTGROUPS_ASSIGN .
example : assuming it_new_activity is table of new activities you wish to assign.
CALL FUNCTION 'BAPI_USER_GET_DETAIL'
EXPORTING
    username       = 'TESTUSER'
TABLES
    activitygroups = it_old_activity
    return         = return.
APPEND LINES OF it_old_activity TO it_new_activity
call function 'BAPI_USER_ACTGROUPS_ASSIGN'
exporting
    username       = 'TESTUSER'
tables
    activitygroups = it_new_activity
    return         = return.
Hope this helps.
Regards,
Jovito.

Add role to user when added to room

Hi,
We currently have all the users from our LDAP server available in the portal. When our content manager creates a new room and adds members we also have to give the members a default role in order to logon. These seperate steps are necessary, because we don't want give access to all the LDAP users.
Does anyone know if there is a feature, by which we can give users a default role automatically, when adding them as room members?
Looking forward to your reply.
Kind regards,
Joost Christenhusz

Hi Joost,
This feature is not available out of the box. To achieve this functionality you can write your own room extension and make sure that this extension is used in the room template. In the extension you can assign the required portal role to the room members. The extension gets executed when the room is created and your room members will be assigned the appropriate portal role. Use this guide as a starting point for room extensions
https://media.sdn.sap.com/html/submitted_docs/nw_kmc/howto/coll/Room%20Extension%20Developer%20Guide.html
Hope this helps.
Akhilesh

Add Role To Business Partner

Hi,
I am using BAPI "BAPI_BUPA_ROLE_ADD_2" to add a Role to Business Partner.
When i try to do that manually using transaction BP, in change mode i select the role to be added and SAVE. The role gets added to the BP.
But when i try the same using BAPI, it does not work. The code is written as below.
-- code ---
DATA IT_BAPIRET2 TYPE TABLE OF BAPIRET2.
CALL FUNCTION 'BAPI_BUPA_ROLE_ADD_2'
EXPORTING
    BUSINESSPARTNER     = '900001'
    BUSINESSPARTNERROLE = 'TR0809'
TABLES
    RETURN              = IT_BAPIRET2.
COMMIT WORK.
After which i go to the Table BUT100, give the Business partner number, No records are found.
Please give me a solution or an alternative to add role to BP.
Regards,
Santosh

Hi,
IT_BAPIRET2 is Initial. No Error Messages.
I don't get any error messages. i.e. IT_BAPIRET2 is not filled with any messages.
Additional Info:
Only when i run the BAPI directly from SE37 Tcode, first time IT_BAPIRET2 is initial. Second Time if i just come back ( without doing /NSE37 ), if i just execute , Then it says the Role 'T...' already exists.
But if i execuet the same BAPI again /NSE37 , IT_BAPIRET2 is initial.
Thought the reason would be because of Memory / Buffer.
After which i go to Tcode BP see if the role is added to the Partner number. It does not happen. Also tries looking into the Table BUT100, it does not appear there.
Then tried executing the BAPI from SE38 giving a commit work. Thinking Commit work is not happening when its being executed from SE37.
But the same result, is there anything which i have to look into.
Or an alternative function module which i can try.
please suggest.
regards,
Santosh

Can Teredo for Microsoft DirectAccess work in the DMZ of an ASA 5510?

I'd like to find some way to get Teredo to work with our DirectAccess implementation. To do that, the external facing NIC on the DirectAccess server needs to be configured with a routable public IP address.
We have an ASA 5510 (running 8.3 (2)) that has switches on the Internal and DMZ interfaces, but connects directly to our Internet router through the External interface.
So, I do not have a switch that will allow me to connect our DA server directly to the edge. Short of buying a new switch and putting it outside of the firewall, I wanted to see if there was a way to configure the ASA so that Teredo would work in the DMZ.
Our current DMZ has 2 barracuda devices (spam and web filters) using static NAT objects. The IPs are all 192.168.x.
Is there some way of getting the DirectAccess external interface to work in the DMZ with a public IP address (and our ISP's gateway) without mucking everything else up? I've read about transparency mode, but I cannot figure out if that would affect our other devices.
Thanks in advance!
-Brad

Hi. I'm not 100% sure.......... But I think With UAG service pack 1 or 2 you no longer require a publicly routatable address for the external interface of the UAG server. You can now add the UAG server to your existing DMZ without affecting the addressing. Then you allow the Teredo tunneling traffic to the server.
HTH

DBUM 9.1.0.4.0 add role task rejected

Hi all, I'm facing some problems with dbum connector. When i'm provisioning a user, the account is being created in target system but roles are not being granted. When I see "Resource History" i notice that the "Add Role or Grant" task is rejected. The user has all the permissions.
does somebody face something like this?. Every response will be appreciated,
thanks in advance,
Guido

thanks for your quick response. I made the same test (grant role) in db (oracle db) with the same user that is configured in the IT resource and it worked fine, so i think that user's privilegies are not the trouble here.
here is the log:
[2012-10-31T19:22:58.665-03:00] [oim_server1] [TRACE] [] [OIMCP.DBUM] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b66,0] [SRC_CLASS: com.thortech.util.logging.Logger] [APP: oim#11.1.1.3.0] [SRC_METHOD: debug] oracle.iam.connectors.dbum.common.db.util.DBConnection : getNonPooledConnection:: FINISHED
[2012-10-31T19:22:58.669-03:00] [oim_server1] [ERROR] [] [OIMCP.DBUM] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b66,0] [APP: oim#11.1.1.3.0] ================= Start Stack Trace =======================
[2012-10-31T19:22:58.670-03:00] [oim_server1] [ERROR] [] [OIMCP.DBUM] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b66,0] [APP: oim#11.1.1.3.0] oracle.iam.connectors.dbum.common.db.util.DBUtil : executeQuery
[2012-10-31T19:22:58.671-03:00] [oim_server1] [ERROR] [] [OIMCP.DBUM] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b66,0] [APP: oim#11.1.1.3.0] Error occurred while trying to execute query.
[2012-10-31T19:22:58.672-03:00] [oim_server1] [ERROR] [] [OIMCP.DBUM] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b66,0] [APP: oim#11.1.1.3.0] Description : ORA-01741: identificador de longitud cero no válido[[
[2012-10-31T19:22:58.673-03:00] [oim_server1] [ERROR] [] [OIMCP.DBUM] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b66,0] [APP: oim#11.1.1.3.0] java.sql.SQLSyntaxErrorException: ORA-01741: identificador de longitud cero no válido[[
     at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:457)
     at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:405)
     at oracle.jdbc.driver.T4C8Oall.processError(T4C8Oall.java:889)
     at oracle.jdbc.driver.T4CTTIfun.receive(T4CTTIfun.java:476)
     at oracle.jdbc.driver.T4CTTIfun.doRPC(T4CTTIfun.java:204)
     at oracle.jdbc.driver.T4C8Oall.doOALL(T4C8Oall.java:540)
     at oracle.jdbc.driver.T4CStatement.doOall8(T4CStatement.java:202)
     at oracle.jdbc.driver.T4CStatement.executeForRows(T4CStatement.java:1074)
     at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:1466)
     at oracle.jdbc.driver.OracleStatement.executeInternal(OracleStatement.java:2224)
     at oracle.jdbc.driver.OracleStatement.execute(OracleStatement.java:2168)
     at oracle.jdbc.driver.OracleStatementWrapper.execute(OracleStatementWrapper.java:333)
     at oracle.iam.connectors.dbum.common.db.util.DBUtil.executeQuery(Unknown Source)
     at oracle.iam.connectors.dbum.common.db.util.DBUtil.executeQuery(Unknown Source)
     at oracle.iam.connectors.dbum.operation.DBUMDatabaseOperation.executeQuery(Unknown Source)
     at oracle.iam.connectors.dbum.integration.DBUMProvisionProxyManager.executeQuery(Unknown Source)
     at oracle.iam.connectors.dbum.integration.DBUMProvisionManager.executeQuery(Unknown Source)
     at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
     at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
     at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
     at java.lang.reflect.Method.invoke(Method.java:597)
     at com.thortech.xl.adapterGlue.ScheduleItemEvents.adpDBUMEXECUTEQUERY.EXECUTEQUERY(adpDBUMEXECUTEQUERY.java:178)
     at com.thortech.xl.adapterGlue.ScheduleItemEvents.adpDBUMEXECUTEQUERY.implementation(adpDBUMEXECUTEQUERY.java:87)
     at com.thortech.xl.client.events.tcBaseEvent.run(tcBaseEvent.java:196)
     at com.thortech.xl.dataobj.tcDataObj.runEvent(tcDataObj.java:2492)
     at com.thortech.xl.dataobj.tcScheduleItem.runMilestoneEvent(tcScheduleItem.java:2917)
     at com.thortech.xl.dataobj.tcScheduleItem.eventPostInsert(tcScheduleItem.java:547)
     at com.thortech.xl.dataobj.tcDataObj.insert(tcDataObj.java:602)
     at com.thortech.xl.dataobj.tcDataObj.save(tcDataObj.java:474)
     at com.thortech.xl.dataobj.tcOrderItemInfo.processChildTableChange(tcOrderItemInfo.java:655)
     at com.thortech.xl.dataobj.tcOrderItemInfo.eventPostInsert(tcOrderItemInfo.java:184)
     at com.thortech.xl.dataobj.tcUDProcess.eventPostInsert(tcUDProcess.java:234)
     at com.thortech.xl.dataobj.tcDataObj.insert(tcDataObj.java:602)
     at com.thortech.xl.dataobj.tcDataObj.save(tcDataObj.java:474)
     at com.thortech.xl.dataobj.tcTableDataObj.save(tcTableDataObj.java:2906)
     at com.thortech.xl.ejb.beansimpl.tcFormInstanceOperationsBean.addProcessFormChildData(tcFormInstanceOperationsBean.java:1929)
     at com.thortech.xl.ejb.beansimpl.tcFormInstanceOperationsBean.addProcessFormChildData(tcFormInstanceOperationsBean.java:1593)
     at Thor.API.Operations.tcFormInstanceOperationsIntfEJB.addProcessFormChildDatax(Unknown Source)
     at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
     at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
     at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
     at java.lang.reflect.Method.invoke(Method.java:597)
     at com.bea.core.repackaged.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:310)
     at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:182)
     at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:149)
     at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
     at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
     at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
     at com.bea.core.repackaged.springframework.jee.spi.MethodInvocationVisitorImpl.visit(MethodInvocationVisitorImpl.java:37)
     at weblogic.ejb.container.injection.EnvironmentInterceptorCallbackImpl.callback(EnvironmentInterceptorCallbackImpl.java:54)
     at com.bea.core.repackaged.springframework.jee.spi.EnvironmentInterceptor.invoke(EnvironmentInterceptor.java:50)
     at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
     at com.bea.core.repackaged.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:89)
     at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
     at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.doProceed(DelegatingIntroductionInterceptor.java:131)
     at com.bea.core.repackaged.springframework.aop.support.DelegatingIntroductionInterceptor.invoke(DelegatingIntroductionInterceptor.java:119)
     at com.bea.core.repackaged.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
     at com.bea.core.repackaged.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
     at $Proxy352.addProcessFormChildDatax(Unknown Source)
     at Thor.API.Operations.tcFormInstanceOperationsIntfEJB_h6wb8n_tcFormInstanceOperationsIntfRemoteImpl.__WL_invoke(Unknown Source)
     at weblogic.ejb.container.internal.SessionRemoteMethodInvoker.invoke(SessionRemoteMethodInvoker.java:40)
     at Thor.API.Operations.tcFormInstanceOperationsIntfEJB_h6wb8n_tcFormInstanceOperationsIntfRemoteImpl.addProcessFormChildDatax(Unknown Source)
     at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
     at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
     at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
     at java.lang.reflect.Method.invoke(Method.java:597)
     at weblogic.ejb.container.internal.RemoteBusinessIntfProxy.invoke(RemoteBusinessIntfProxy.java:85)
     at $Proxy175.addProcessFormChildDatax(Unknown Source)
     at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
     at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
     at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
     at java.lang.reflect.Method.invoke(Method.java:597)
     at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:307)
     at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:198)
     at $Proxy351.addProcessFormChildDatax(Unknown Source)
     at Thor.API.Operations.tcFormInstanceOperationsIntfDelegate.addProcessFormChildData(Unknown Source)
     at com.thortech.xl.webclient.actions.DirectProvisionUserAction.handleVerifyProcessData(DirectProvisionUserAction.java:2093)
     at com.thortech.xl.webclient.actions.DirectProvisionUserAction.goNext(DirectProvisionUserAction.java:363)
     at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
     at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
     at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
     at java.lang.reflect.Method.invoke(Method.java:597)
     at org.apache.struts.actions.DispatchAction.dispatchMethod(DispatchAction.java:269)
     at com.thortech.xl.webclient.actions.tcLookupDispatchAction.execute(tcLookupDispatchAction.java:133)
     at com.thortech.xl.webclient.actions.tcActionBase.execute(tcActionBase.java:894)
     at com.thortech.xl.webclient.actions.tcAction.execute(tcAction.java:213)
     at org.apache.struts.chain.commands.servlet.ExecuteAction.execute(ExecuteAction.java:58)
     at org.apache.struts.chain.commands.AbstractExecuteAction.execute(AbstractExecuteAction.java:67)
     at org.apache.struts.chain.commands.ActionCommandBase.execute(ActionCommandBase.java:51)
     at org.apache.commons.chain.impl.ChainBase.execute(ChainBase.java:191)
     at org.apache.commons.chain.generic.LookupCommand.execute(LookupCommand.java:305)
     at org.apache.commons.chain.impl.ChainBase.execute(ChainBase.java:191)
     at org.apache.struts.chain.ComposableRequestProcessor.process(ComposableRequestProcessor.java:283)
     at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1913)
     at org.apache.struts.action.ActionServlet.doPost(ActionServlet.java:462)
     at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)
     at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
     at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:227)
     at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
     at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:300)
     at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)
     at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
     at com.thortech.xl.webclient.security.CSRFFilter.doFilter(CSRFFilter.java:76)
     at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
     at oracle.iam.platform.auth.web.PwdMgmtNavigationFilter.doFilter(PwdMgmtNavigationFilter.java:121)
     at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
     at oracle.iam.platform.auth.web.OIMAuthContextFilter.doFilter(OIMAuthContextFilter.java:107)
     at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
     at oracle.security.jps.ee.http.JpsAbsFilter$1.run(JpsAbsFilter.java:111)
     at java.security.AccessController.doPrivileged(Native Method)
     at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:313)
     at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUtil.java:413)
     at oracle.security.jps.ee.http.JpsAbsFilter.runJaasMode(JpsAbsFilter.java:94)
     at oracle.security.jps.ee.http.JpsAbsFilter.doFilter(JpsAbsFilter.java:161)
     at oracle.security.jps.ee.http.JpsFilter.doFilter(JpsFilter.java:71)
     at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
     at oracle.dms.servlet.DMSServletFilter.doFilter(DMSServletFilter.java:136)
     at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
     at weblogic.servlet.internal.RequestEventsFilter.doFilter(RequestEventsFilter.java:27)
     at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:56)
     at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.wrapRun(WebAppServletContext.java:3715)
     at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3681)
     at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
     at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:120)
     at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2277)
     at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2183)
     at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1454)
     at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
     at weblogic.work.ExecuteThread.run(ExecuteThread.java:178)
[2012-10-31T19:22:58.674-03:00] [oim_server1] [ERROR] [] [OIMCP.DBUM] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b66,0] [APP: oim#11.1.1.3.0] ================= End Stack Trace =======================
[2012-10-31T19:22:58.674-03:00] [oim_server1] [TRACE] [] [OIMCP.DBUM] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b66,0] [SRC_CLASS: com.thortech.util.logging.Logger] [APP: oim#11.1.1.3.0] [SRC_METHOD: debug] oracle.iam.connectors.dbum.common.db.util.DBConnection : closeConnection:: STARTED
[2012-10-31T19:22:58.675-03:00] [oim_server1] [TRACE] [] [OIMCP.DBUM] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b66,0] [SRC_CLASS: com.thortech.util.logging.Logger] [APP: oim#11.1.1.3.0] [SRC_METHOD: debug] oracle.iam.connectors.dbum.common.db.util.DBConnection : closeConnection : Connection closed....
[2012-10-31T19:22:58.677-03:00] [oim_server1] [TRACE] [] [OIMCP.DBUM] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b66,0] [SRC_CLASS: com.thortech.util.logging.Logger] [APP: oim#11.1.1.3.0] [SRC_METHOD: debug] oracle.iam.connectors.dbum.common.db.util.DBConnection : closeConnection:: FINISHED
[2012-10-31T19:22:58.678-03:00] [oim_server1] [TRACE] [] [OIMCP.DBUM] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b66,0] [SRC_CLASS: com.thortech.util.logging.Logger] [APP: oim#11.1.1.3.0] [SRC_METHOD: debug] oracle.iam.connectors.dbum.integration.DBUMProvisionProxyManager : executeQuery : result:- 1741
[2012-10-31T19:22:58.679-03:00] [oim_server1] [TRACE] [] [OIMCP.DBUM] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b66,0] [SRC_CLASS: com.thortech.util.logging.Logger] [APP: oim#11.1.1.3.0] [SRC_METHOD: debug] oracle.iam.connectors.dbum.integration.DBUMProvisionProxyManager : executeQuery:: FINISHED
[2012-10-31T19:22:58.679-03:00] [oim_server1] [TRACE] [] [OIMCP.DBUM] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b66,0] [SRC_CLASS: com.thortech.util.logging.Logger] [APP: oim#11.1.1.3.0] [SRC_METHOD: debug] oracle.iam.connectors.dbum.integration.DBUMProvisionManager : executeQuery : Error code received: 1741
[2012-10-31T19:22:58.680-03:00] [oim_server1] [TRACE] [] [OIMCP.DBUM] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b66,0] [SRC_CLASS: com.thortech.util.logging.Logger] [APP: oim#11.1.1.3.0] [SRC_METHOD: debug] oracle.iam.connectors.dbum.integration.DBUMProvisionManager : getErrorCodeKey:: STARTED
[2012-10-31T19:22:58.681-03:00] [oim_server1] [TRACE] [] [OIMCP.DBUM] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b66,0] [SRC_CLASS: com.thortech.util.logging.Logger] [APP: oim#11.1.1.3.0] [SRC_METHOD: debug] oracle.iam.connectors.dbum.integration.DBUMProvisionManager : getErrorCodeKey : return code to be looked for:1741
[2012-10-31T19:22:58.681-03:00] [oim_server1] [TRACE] [] [OIMCP.DBUM] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b66,0] [SRC_CLASS: com.thortech.util.logging.Logger] [APP: oim#11.1.1.3.0] [SRC_METHOD: debug] oracle.iam.connectors.dbum.integration.DBUMProvisionManager : getErrorCodeKey : Error code lookup name :Lookup.DBUM.Oracle.Error.Mapping
[2012-10-31T19:22:58.682-03:00] [oim_server1] [TRACE] [] [OIMCP.DBUM] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b66,0] [SRC_CLASS: com.thortech.util.logging.Logger] [APP: oim#11.1.1.3.0] [SRC_METHOD: debug] oracle.iam.connectors.common.dao.OIMUtil : getLookUpMap():: STARTED
[2012-10-31T19:22:58.683-03:00] [oim_server1] [TRACE] [] [OIMCP.DBUM] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b66,0] [SRC_CLASS: com.thortech.util.logging.Logger] [APP: oim#11.1.1.3.0] [SRC_METHOD: debug] oracle.iam.connectors.common.dao.OIMUtil : getLookUpMap() : LookUpName : Lookup.DBUM.Oracle.Error.Mapping
[2012-10-31T19:22:58.695-03:00] [oim_server1] [TRACE] [] [OIMCP.DBUM] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b66,0] [SRC_CLASS: com.thortech.util.logging.Logger] [APP: oim#11.1.1.3.0] [SRC_METHOD: debug] oracle.iam.connectors.common.dao.OIMUtil : getLookUpMap():: FINISHED
[2012-10-31T19:22:58.696-03:00] [oim_server1] [TRACE] [] [OIMCP.DBUM] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b66,0] [SRC_CLASS: com.thortech.util.logging.Logger] [APP: oim#11.1.1.3.0] [SRC_METHOD: debug] oracle.iam.connectors.dbum.integration.DBUMProvisionManager : getErrorCodeKey : Error code lookup map :{959=INVALID_TABLE_NAME, 1935=MISSING_ROLE, 1920=USER_ALREADY_EXIST, 1031=INSUFFICIENT_PRIVILEGE, 50004=CHILDNAME_NOT_PROVIDED, 900=INVALID_SQL, 998=INVALID_PASSWORD}
[2012-10-31T19:22:58.697-03:00] [oim_server1] [TRACE] [] [OIMCP.DBUM] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b66,0] [SRC_CLASS: com.thortech.util.logging.Logger] [APP: oim#11.1.1.3.0] [SRC_METHOD: debug] oracle.iam.connectors.dbum.integration.DBUMProvisionManager : getErrorCodeKey:: FINISHED
[2012-10-31T19:22:58.946-03:00] [oim_server1] [NOTIFICATION] [IAM-0060016] [oracle.iam.platform.auth.impl] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b68,0] [APP: oim#11.1.1.3.0] La dirección IP desde la que se dispara el explorador es 130.120.5.9
[2012-10-31T19:22:58.950-03:00] [oim_server1] [NOTIFICATION] [IAM-0060016] [oracle.iam.platform.auth.impl] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b6a,0] [APP: oim#11.1.1.3.0] La dirección IP desde la que se dispara el explorador es 130.120.5.9
[2012-10-31T19:22:58.950-03:00] [oim_server1] [NOTIFICATION] [IAM-0060016] [oracle.iam.platform.auth.impl] [tid: [ACTIVE].ExecuteThread: '2' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b6c,0] [APP: oim#11.1.1.3.0] La dirección IP desde la que se dispara el explorador es 130.120.5.9
[2012-10-31T19:22:58.950-03:00] [oim_server1] [NOTIFICATION] [IAM-0060016] [oracle.iam.platform.auth.impl] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b6e,0] [APP: oim#11.1.1.3.0] La dirección IP desde la que se dispara el explorador es 130.120.5.9
[2012-10-31T19:22:58.967-03:00] [oim_server1] [NOTIFICATION] [IAM-0060016] [oracle.iam.platform.auth.impl] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b70,0] [APP: oim#11.1.1.3.0] La dirección IP desde la que se dispara el explorador es 130.120.5.9
[2012-10-31T19:23:06.811-03:00] [oim_server1] [NOTIFICATION] [IAM-0060016] [oracle.iam.platform.auth.impl] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b72,0] [APP: oim#11.1.1.3.0] La dirección IP desde la que se dispara el explorador es 130.120.5.9
[2012-10-31T19:23:06.834-03:00] [oim_server1] [NOTIFICATION] [IAM-1010010] [oracle.iam.platform.authz.impl] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b72,0] [APP: oim#11.1.1.3.0] ********** Entrando en el segmento de autorización con los parámetros:: LoggedInUserId = 1, target resourceID = 126, Feature = USER_MANAGEMENT, Action = VIEW_USER_DETAILS **********
[2012-10-31T19:23:06.834-03:00] [oim_server1] [NOTIFICATION] [IAM-1010029] [oracle.iam.platform.authz.impl] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b72,0] [APP: oim#11.1.1.3.0] Se han encontrado resultados de OES en caché con la clave F: USER_MANAGEMENTS: 1P: VIEW_USER_DETAILSOESDefinition
[2012-10-31T19:23:06.834-03:00] [oim_server1] [NOTIFICATION] [IAM-1010021] [oracle.iam.platform.authz.impl] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b72,0] [APP: oim#11.1.1.3.0] Validando las obligaciones internas: [InternalObligation: name: VIEW_USER_DETAILS, values: [ALL_ATTRIB_OBLI], convertToObligation: true, InternalObligation: name: noop, values: [true], convertToObligation: false, InternalObligation: name: UDCAO, values: [true], convertToObligation: false, InternalObligation: name: MODIFY_USER_PROFILE, values: [ALL_ATTRIB_OBLI], convertToObligation: false, InternalObligation: name: VIEW_USER_DETAILS, values: [ALL_ATTRIB_OBLI], convertToObligation: true, InternalObligation: name: noop, values: [true], convertToObligation: false, InternalObligation: name: UDCAO, values: [true], convertToObligation: false, InternalObligation: name: MODIFY_USER_PROFILE, values: [ALL_ATTRIB_OBLI], convertToObligation: false]
[2012-10-31T19:23:06.834-03:00] [oim_server1] [NOTIFICATION] [IAM-1010022] [oracle.iam.platform.authz.impl] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b72,0] [APP: oim#11.1.1.3.0] ---------- Se ha cumplido la lista de obligaciones internas, devolviendo TRUE ----------
[2012-10-31T19:23:06.834-03:00] [oim_server1] [NOTIFICATION] [IAM-1010021] [oracle.iam.platform.authz.impl] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b72,0] [APP: oim#11.1.1.3.0] Validando las obligaciones internas: [InternalObligation: name: VIEW_USER_DETAILS, values: [usr_key, LDAP GUID, Status, usr_manager_key, User Login], convertToObligation: true, InternalObligation: name: noop, values: [true], convertToObligation: false, InternalObligation: name: UDCAO, values: [true], convertToObligation: false]
[2012-10-31T19:23:06.834-03:00] [oim_server1] [NOTIFICATION] [IAM-1010022] [oracle.iam.platform.authz.impl] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b72,0] [APP: oim#11.1.1.3.0] ---------- Se ha cumplido la lista de obligaciones internas, devolviendo TRUE ----------
[2012-10-31T19:23:06.834-03:00] [oim_server1] [NOTIFICATION] [IAM-1010021] [oracle.iam.platform.authz.impl] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b72,0] [APP: oim#11.1.1.3.0] Validando las obligaciones internas: [InternalObligation: name: VIEW_USER_DETAILS, values: [usr_key, Full Name, Display Name, User Login, First Name, Last Name, act_key, Status, usr_manager_key], convertToObligation: true, InternalObligation: name: noop, values: [true], convertToObligation: false, InternalObligation: name: UDCAO, values: [true], convertToObligation: false, InternalObligation: name: VIEW_USER_DETAILS, values: [usr_key, Full Name, Display Name, User Login, First Name, Last Name, act_key, Status, usr_manager_key], convertToObligation: true, InternalObligation: name: noop, values: [true], convertToObligation: false, InternalObligation: name: UDCAO, values: [true], convertToObligation: false, InternalObligation: name: VIEW_USER_DETAILS, values: [usr_key, Full Name, Display Name, User Login, First Name, Last Name, act_key, Status, usr_manager_key], convertToObligation: true, InternalObligation: name: noop, values: [true], convertToObligation: false, InternalObligation: name: UDCAO, values: [true], convertToObligation: false, InternalObligation: name: VIEW_USER_DETAILS, values: [usr_key, Full Name, Display Name, User Login, First Name, Last Name, act_key, Status, usr_manager_key], convertToObligation: true, InternalObligation: name: noop, values: [true], convertToObligation: false, InternalObligation: name: UDCAO, values: [true], convertToObligation: false]
[2012-10-31T19:23:06.834-03:00] [oim_server1] [NOTIFICATION] [IAM-1010022] [oracle.iam.platform.authz.impl] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b72,0] [APP: oim#11.1.1.3.0] ---------- Se ha cumplido la lista de obligaciones internas, devolviendo TRUE ----------
[2012-10-31T19:23:06.834-03:00] [oim_server1] [NOTIFICATION] [IAM-1010026] [oracle.iam.platform.authz.impl] [tid: [ACTIVE].ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: xelsysadm] [ecid: b5b137796995ea37:-53f1ad5e:13ab2c66c07:-8000-0000000000006b72,0] [APP: oim#11.1.1.3.0] ********** Saliendo del segmento de autorización con resultado Decision :PERMIT[[
Obligations from policy:
Name: VIEW_USER_DETAILS values: [ALL_ATTRIB_OBLI]
Name: UDCAO values: [true]
Name: MODIFY_USER_PROFILE values: [ALL_ATTRIB_OBLI]
Name: VIEW_USER_DETAILS values: [ALL_ATTRIB_OBLI]
Name: UDCAO values: [true]
Name: MODIFY_USER_PROFILE values: [ALL_ATTRIB_OBLI]
Obligations from policy:
Name: VIEW_USER_DETAILS values: [usr_key, LDAP GUID, Status, usr_manager_key, User Login]
Name: UDCAO values: [true]
Obligations from policy:
Name: VIEW_USER_DETAILS values: [usr_key, Full Name, Display Name, User Login, First Name, Last Name, act_key, Status, usr_manager_key]
Name: UDCAO values: [true]
Name: VIEW_USER_DETAILS values: [usr_key, Full Name, Display Name, User Login, First Name, Last Name, act_key, Status, usr_manager_key]
Name: UDCAO values: [true]
Name: VIEW_USER_DETAILS values: [usr_key, Full Name, Display Name, User Login, First Name, Last Name, act_key, Status, usr_manager_key]
Name: UDCAO values: [true]
Name: VIEW_USER_DETAILS values: [usr_key, Full Name, Display Name, User Login, First Name, Last Name, act_key, Status, usr_manager_key]
Name: UDCAO values: [true] **********
thanks again!
Guido

Add roles in the DMZ

Similar Messages

Maybe you are looking for