"No write authorization for personal portfolio of user" from BW

Similar Messages

• How do you create default Read/Write Permissions for more than 1 user?

  My wife and I share an iMac, but use separate User accounts for separate mail accounts, etc.
  However, we have a business where we both need to have access to the same files and both have Read/Write permissions on when one of us creates a new file/folder.
  By default new files and folders grant Read/Write to the creator of the new file/folder, and read-only to the Group "Staff" in our own accounts or "Wheel" in the /Users/Public/ folder, and read-only to Everyone.
  We are both administrators on the machine, and I know we can manually override the settings for a particular file/folder by changing the permissions, but I would like to set things up so that the Read/Write persmissions are assigned for both of us in the folder for that holds our business files.
  It is only the 2 of us on the machine, we trust each other and need to have complete access to these many files that we share. I have archiveing programs running so I can get back old versions if we need that, so I'm not worried about us overwriting the file with bad info. I'm more concerned with us having duplicates that are not up to date in our respective user accounts.
  Here is what I have tried so far:
  1. I tried to just set the persmissions of the containing folder with us both having read/write persmissions, and applied that to all containing elements.
  RESULT -> This did nothing for newly created files or folders, they still had the default permissions of Read/Write for the creating User, Read for the default Group, Read for Everyone
  2. I tried using Sandbox ( http://www.mikey-san.net/sandbox/ ) to set the inheritance of the folder using the methods laid out at http://forums.macosxhints.com/showthread.php?t=93742
  RESULT -> Still this did nothing for newly created files or folders, they still had the default permissions of Read/Write for the creating User, Read for the default Group, Read for Everyone
  3. I have set the umask to 002 ( http://support.apple.com/kb/HT2202 ) so that new files and folders have a default permission that gives the default group Read/Write permissions. This unfortunately changes the default for the entire computer, not just a give folder.
  I then had to add wife's user account to the "Staff" group because for some reason her account was not included in that. I think this is due to the fact that her account was ported into the computer when we upgraded, where as mine was created new. I read something about that somewhere, but don't recall where now. I discovered what groups we were each in by using the Terminal and typing in "groups username" where username was the user I was checking on.
  I added my wife to the "Staff" group, and both of us to the "Wheel" group using the procedures I found at
  http://discussions.apple.com/thread.jspa?messageID=8765421&#8765421
  RESULT -> I could create a new file using TextEdit and save it anywhere in my account and it would have the permissions: My Username - Read/Write, "Staff" or "Wheel" (depending on where I saved it) - Read/Write, Everyone - Read Only, as expected from the default umask.
  I could then switch over to my wife's account, open the file, edited it, and save it, but then the permissions changed to: Her Username - Read/Write, (unknown) - Read/Write, Everyone - Read Only.
  And when I switch back to my account, now I can open the file, but I can't save it with my edits.
  I'm at my wits end with this, and I can believe it is impossible to create a common folder that we can both put files in to have Read/Write permissions on like a True Shared Folder. Anyone who has used windows knows what you can do with the Shared folder in that operating system, ie. Anyone with access can do anything with those files.
  So if anyone can provide me some insight on how to accomplish what I really want to do here and help me get my system back to remove the things it seems like I have screwed up, I greatly appreciate it.
  I tried to give as detailed a description of the problem and what I have done as possible, without being to long winded, but if you need to know anything else to help me, please ask, I certainly won't be offended!
  Thanks In Advance!
  Steve

  Thanks again, V.K., for your assistance and especially for the very prompt responses.
  I was unaware that I could create a volume on the HD non-destructively using disk utility. This may then turn out to be the better solution after all, but I will have to free up space on this HD and try that.
  Also, I was obviously unaware of the special treatment of file creation by TextEdit. I have been using this to test my various settings, and so the inheritance of ACLs has probably been working properly, I just have been testing it incorrectly. URGH!
  I created a file from Word in my wife's account, and it properly inherited the permissions of the company folder: barara - Custom, steve - Custom, barara - Read/Write, admin - Read Only, Everyone - Read Only
  I tried doing the chmod commands on $TMPDIR for both of us from each of our accounts, but I still have the same behavior for TextEdit files though.
  I changed the group on your shared folder to admin from wheel as you instructed with chgrp. I had already changed the umask to 002, and I just changed it back to 022 because it didn't seem to help. But now I know my testing was faulty. I will leave it this way though because I don't think it will be necessary to have it set to 002.
  I do apparently still have a problem though, probably as a result of all the things I have tried to get this work while I was testing incorrectly with TextEdit.
  I have just discovered that the "unknown user" only appears when I create the a file from my wife's account. It happens with any file or folder I create in her account, and it exists for very old files and folders that were migrated from the old computer. i.e. new and old files and foders have permissions: barara - Read/Write, unknown user - Read Only, Everyone - Read Only
  Apparently the unknown user gets the default permissions of a group, as the umask is currently set to 022 and unknown user now gets Read Only permissions on new items, but when I had umask set to 002, the unknown user got Read/Write permissions on new items.
  I realize this is now taking this thread in a different direction, but perhaps you know what might be the cause of this and how to correct or at least know where to point me to get the answer.
  Also, do you happen to know how to remove users from groups? I added myself and my wife to the Wheel group because that kept showing up as the default group for folders in /Users/Shared
  Thanks for your help on this, I just don't know how else one can learn these little "gotchas" without assistance from people like you!
  Steve

• Authorization for all the maintenance views from one table

  I have one table with data related to 5 systems.
  I have created views with related data for each system.
  These all are from one table only. while i am editing in one view, i must be able to edit the another view also. at a time 2 users cant edit the same view but at a time two users have to edit two different viws from same table.
  I have to provide all authorization to all views at the same time.How to achieve this?.
  Thanks.
  Edited by: pagidala Ramesh on Oct 27, 2008 10:52 AM

  Hi Pagidala,
  This is my idea how much it can help you i am not sure but, create txcode for views and assign the authorizations for the txcodes according to your requirements. May be your issue will resolve.
  Cheers!!
  VEnk@

• How to retrieve User Description for a particular MDM User from Console ?

  In my Application i  have to retrieve User Descripton(a field) for the MDM Users  from Console. I am using MDM Java Api 1(MDM4j) in my application. Is there any way i can retrieve MDM User Description from Console without using MDM Admin API?

  Hi Namrata,
  Sorry, I have a different perspective from you (I don't work with the Java API). So, you can ignore what I said about the protocols. That's lower-level than what you would care about.
  The correct thing to do is to use the Admin API to get the users, as you are doing. If you have to log in twice, it might be because you're using the old Java API.
  Please verify that you're using these packages:
  mdm-core.jar, mdm-common.jar, mdm-protocol.jar, mdm-data.jar, mdm-admin.jar
  versus the old API, which was called mdm4.jar.
  Thanks,
  Cleopatra

• Remove authorization for Tcode: ME21 and ME22 from certain users

  Hi Guys,
  I'm new to BASIS.
  My requirement is to: Remove authorization to Tcodes ME21/ME22 from a list of users.
  How do I acheive this? We run on SAP 4.0B version.
  Hoping to get this resolved as soon as possible.
  Thanks
  SAPUser

  dear friend,
  1.
  run SU01
  goto Information-Information system
  select node Roles-By Transaction Assignment
  type ME21, ME22
  execute report
  see the roles displayed
  2.
  then find user who have these roles (usually company uses z-roles copied from standard)
  just highlight the role and hit user assignment (Cntrl-Shift-F9)
  you see all users who have this role. that means they are able to run these transactions.
  3.
  let's remove the role(s) we found.
  open second session, run SU01 type one of the user , goto Roles tab and delete the particular role you found.
  save user and test it (ask hem/her to log in sap and run ME21 and ME22). if needed adjust it again (may be another role to be deleted)
  say, fix completely one user/test it and then do the same things for other. test them.
  good luck!

• Need Script/Excel Macro for Deletion of Bulk users from Enterprise BO 3.1

  Hello All,
  I am planning to delete the Bulk Users (2500) from environment, I need a script or Excel Macro to perform it in my environment.
  Please someone provide the JSP script or Excel Macro to perform the activity. Thank you so much in advance.
  Thanks,
  Srikanth Y

  You should have the list of inactive users.Right?
  It will always read the usernames from the txt file which will be entered by you and delete those user accounts.
  You would need to save the attached sample as .jsp and can place it inside InfoViewApp application.
  Also it would be best to test the code in a DEV/TEST environment before you actually try to touch your prod systems.
  Try for few user accounts first and check the status.
  Also it would be apt to take a back of your CMS DB before you run any script so that you can rollback to a save point.
  Thanks,
  Prithvi

• User Authorization for a Query

  Hi,
  I have assigned a single role to a user, in which I have authorization for all the Infoproviders, including authorization for reporting. The user is able to access most of the queries, except one query. If there is a problem, he should not have accessed all the queries.
  What problem could have prevented the user from accessing on particular query???
  Any Ideas will be highly appreciated,
  Thanks and Regards,
  Ravi Sankar

  Some possibilities:
  The one query which the user is not able to run , who is the author of this query?
  You need to give authirozation for the object S_RS_COMP1.
  If the user has authorization for this object, then the next possibility is:
  The query may have a filter or a characteristic value for which the value is not set for the user.
  Ravi Thothadri

• User PI_JCO_RFC has no RFC authorization for function group ERFC

  I am doing IDOC-File scenario between newly installed PI and ECC 6.0 systems.
  I have done all the configurations on XI and R/3 end.
  When I TEST to send an IDOC from WE19, I could do it successfully and the status is 03 in we02.
  But when I go and check SM58, I get the said error: User PI_JCO_RFC has no RFC authorization for function group ERFC.
  From that I understand RFC in R/3 end require some authorizations. Am I right? If so, what objects need to be added my user role?
  Please advise.
  Thanks
  Shiva

  Hi,
  Try to add the following authorization object to the role(s) of the RFC user:
  S_RFC
  Set the following authorizations:
  RFC_TYPE = FUGR (function group)
  RFC_NAME = <name of the function group containing the BAPI>
  ACTVT = 16 (execute)
  Regards
  Seshagiri

• User SIMPCDIA has no RFC authorization for function group BBPC

  Hello all, I am working with SRM 7.0 and when I try to list all account values in the corresponding matchcode, I have this error message:
  User SIMPCDIA has no RFC authorization for function group BBPC
  User SIMPCDIA is a dialog user created in backend system with authorization objetc S_RFC. I don´t know what is the problem...
  Can you help me please?
  Thanks in advance
  Rosa Rodríguez

  Try testing with a user that has the 'SAP_ALL' profile
  OR
  see if below link is helpful to you.
  [Probable Solution|http://www.sapkb.com/question.php?ID=10]
  Edited by: Saurabh Agarwal on Sep 1, 2010 11:59 AM

• Maintenance of Authorization for transactions in CRM 5.0.

  Hi Experts .
  We are using CRM 5.0 with PCUI.
  TheBusiness  requirement is to maintain authorization for own transactions.the users who is involved in transactions should only be authorized to  Open & see the transactions.Other users who are not involved in partner function like "Assigned to" & "Account responsible " should not be able to open &  see the transactions like Activity .Lead , Opportunity ,Sales orders.& Service orders.System should give error message saying no authorizations.
  We tried with below authorization objects to achieve this
  CRM_ORD_OP (your own documents)
  - CRM_ORD_LP (organization levels)
  - CRM_ORD_PR (transaction type)
  - CRM_ORD_OE (sales area/service Org).
  - CRM_ORD_RL
  - CRM_ORD_RS
  But still system allows to open transaction belong to others.
  Is there any alternative to control this.
  Helpful answers would be rewarded max points.
  Thanks in Advance.
  Regards,
  Basavaraj Patil

  Hello
  in order to check authority object CRM_ORD_OE,
  CRM_ORD_OP and CRM_ORD_LP must not give authority. Please see
  online documentation for detailed information:
  http://help.sap.com/saphelp_crm40/helpdata/en/e9/
  b29a39e7aee372e10000000a11402f/frameset.htm
  Under the chapter 'Process Flow of Authorization Check in Business
  Transactions' you will find detailed explanations.
  I hope that I could be of help with that information. 
  Gerhard

• Has no RFC authorization for function group ZRFC_XI

  Hi All,
     I have a scenario where I am calling RFC inside the BPM.  When I execute I got the errror as
  User SKXXXXX has no RFC authorization for function group ZRFC_XI
  I have gone though the form
  no RFC authorization for function group RFC2
  User abcd has no RFC authorization for function group SYST
  and I understood that  we need to set authroization object S_RFC with RFC_TYPE = FUGR, RFC_NAME = SYST and ACTVT = 16. I think we need to set this to XIISUSER and the password and for PI7.0 user PIISUSER and its password
  But not able to understand where we need to do this activity.  I request you to kindly let me know how to assign this object... do we need to assign in SAP system or in XI system.  please help me out on this problem.
  Regards,
  Dhill

  Dhil,
  I never worked on these stuffs. But I found some useful stuff ,I think surely it will help u.
  http://sap.ittoolbox.com/groups/technical-functional/sap-basis/please-how-to-create-an-authorization-object-386391
  https://www.sdn.sap.com/irj/servlet/prt/portal/prtroot/docs/library/uuid/a92195a9-0b01-0010-909c-f330ea4a585c
  Best regards,
  raj.

• Cash book -FBCJ authorization for configuration of layout - need help

  Hi All,
  We are facing problem that our end users who all maintaining the cash book are all keep changing the alv layout by clicking the configuration button, I need to control this activities....
  Regards
  Krishnamoorthy T
  Edited by: Krishnamoorthy T on Dec 28, :02 PM

  Hi Krishnamoorthy,
  Please arrest the authorization for all the end user and please go to the field status and make the filed suppressed.
  Warm Regards,
  Sivakumar Sathiaymoorthy

• Authorization for Form settings button?

  Hi Experts,
  How we can set Authorization for Form settings button?
  Regards,
  Sanju M S

  Hi Sanju,
  Please use Additional Authorization Creator Window to restrict users from accessing User Tables.
  Definition
  Use this window to create and add a new permissions object for user-created forms.
  To get here.. Admin.>System Init > Authorization > Additional Authorization Creator
  In the Additional Authorization Creator window, enter an Authorization Id and Name, From the option dropdown Select the options you want.
  To enter the FormID in your case 63771, Click Edit and enter the Form Number of the User defined table.
  NOTE: To get the Form number open the user defined table and on the Status Bar at the bottom you can see the Form=xxxxx (number). Use this number. To view the form details on the status bar, please click View > System information on the Top Menu.
  One you have entered the Form number click Update.
  Now in the General Authorization Window you can see an additional entry on the right side window bottom called User Authorization clicking which you will see the Additional Authorization you created.
  Thanks,
  Joseph

• Can I have two phone lines on my iPhone 4G (one for biz and one for personal calls)?

  can I have two phone lines on my iPhone 4G (one for biz and one for personal calls)?

  FWIW, from my experience I was not able to get this to work.  When I conected a second bluetooth audio device the first device disconnected.

• A very important question for every After Effects user

  a very important question for every After Effects user, from product manager Steve Forde:
  http://adobe.ly/1exI6tI

  Tom Daigon Great idea everybody! Encourage Adobe to do ONLY ONE THING with AE for 2014. Since theres not a heck of a lot of development that can be done on the present foundation, they can really stretch the rental scheme out for many years.And once you get used to the concept, every year they will do ONE THING to placate you. So now they have you swallowing no "ownership" of software and limited development.