OAM11g - How to perform direct login without accessing protected resource?

Similar Messages

• Root cause of error " Access denied. You do not have permission to perform this action or access this resource" - workflow - SharePoint 2013

  Good evening, technet community
  I hope you are doing well.
  When configuring my SharePoint workflow, I encounter the problem below:
  Problem Description:
  Let's say my domain is: test.com, my group user is: test\group , my user is: test\user1
  Except an admin account with full control at both "Web Application" and "Site Collection", all others account all have problem when creating a list item. After creating a list item, the workflow status is "cancelled" immediately
  with the following message:
  RequestorId: 262a35e4-99f4-40f0-929b-5d04b415f147. Details: System.ApplicationException: HTTP 401 {"Transfer-Encoding":["chunked"],"X-SharePointHealthScore":["0"],"SPClientServiceRequestDuration":["10"],"SPRequestGuid":["262a35e4-99f4-40f0-929b-5d04b415f147"],"request-id":["262a35e4-99f4-40f0-929b-5d04b415f147"],"X-FRAME-OPTIONS":["SAMEORIGIN"],"MicrosoftSharePointTeamServices":["15.0.0.4420"],"X-Content-Type-Options":["nosniff"],"X-MS-InvokeApp":["1;
  RequireReadOnly"],"Cache-Control":["max-age=0, private"],"Date":["Thu, 06 Nov 2014 12:14:28 GMT"],"Server":["Microsoft-IIS\/7.5"],"WWW-Authenticate":["NTLM"],"X-AspNet-Version":["4.0.30319"],"X-Powered-By":["ASP.NET"]}
  {"error":{"code":"-2147024891, System.UnauthorizedAccessException","message":{"lang":"en-US","value":"Access denied. You do not have permission to perform
  this action or access this resource."}}} at Microsoft.Activities.Hosting.Runtime.Subroutine.SubroutineChild.Execute(CodeActivityContext context) at System.Activities.CodeActivity.InternalExecute(ActivityInstance instance, ActivityExecutor executor,
  BookmarkManager bookmarkManager) at System.Activities.Runtime.ActivityExecutor.ExecuteActivityWorkItem.ExecuteBody(ActivityExecutor executor, BookmarkManager bookmarkManager, Location resultLocation)
  - The workflow is still fail even I assign "full control" to my users group "test\group" – at Site Collection level.
  Surprisingly, I have successfully found a solution for this error message. However, I still have some points that I do not clearly understand. Let's start with my solution first.
  Solution:
  *** i. Assign permission policy at Web Application level – Central Admin site ***
  1. Central Administration ==> Application management
  ==> Manage Web application 
  2. Go to "permission policy", then create a new permission level. This permission level contains all "edit item" permission.
  3. Select "user policy", then I assign it directly to my user account: test\user1.
  *** ii. Assign "edit item" permission at Site Collection level ***
  1. Site Setting ==> Site permission
  2. Assign "Edit" permission to my test\group.
  (Actually I removed all permissions of my user group at Site Collection level. It seem my group has inherited permission from Web Application level, is that correct? )
  *** iii. Create a new list item and workflow runs ……. ***
  ==> My question is:
  1. Why I cannot assign permission to my users group - "test\group" -
   at "Web Application" level? Instead I have to assign permission policy for each users, one by one?
  2. Could you please let me know how to collect full detail error message of workflow status?
  Thank you very much! Have a nice weekend.

  Thank you for your very detail response.
  Point 1: Yes my 2 service: user profile & profile sync service are running. I performed "full synchronization" as well. Actually i've tried 3 another action plans before coming up with the solution i posted:
  *** Actions completed ***
  1. Activate the feature: workflow can use app permissions.
  Site actions > Site Settings > Site features >activate the feature below:
   Workflows can use app permissions
  2.
  Refresh trusted security token services metadata feed
  Get-SPTimerJob
  "RefreshMetadataFeed"
  | Start-SPTimerJob
  - then restart the machine.
  3. Start full user profile synchronization.
  Point 2:
  - Yes my user had Edit permission at workflow task list + list affected by workflow.
  I have just remove all permissions of my user at "Site Collection" level. However, when i show my user permissions at my workflow task list and my users still have "Edit" Permission ( assigned at Web Application level. These permissions
  still exist even after my workflow task list stop inheriting permission).
  ==> the problems probably belongs to "permission" at "Site Collection level". It seems "permission level at my Site Collection does not work". All users accounts are also suffer from the same issues except farm admin account
  ( which has full control at Web Application level).
  I would appreciate if your guys can guide me how to make "permission" at my "Site Collection level" work again?
  Thank you very much.

• How do i turn on network access protection on windows 8.1 with an hp p6-2326S pc?

  i got a phone call from a unknown source today  at around  3 pm they said  that hackers where trying to access my computer . they  ran a scan  and it showed thre things one was  my network access protection was turned off .  2 hackers were trying to hack into my computer  i cant remember the 3rd one its in my note pad  but  then i got this big run around and i told them from the start that i had no money and that i had just buried my mom on the 2nd of this month after a long battle   and that i had just had a bad episode with my blood pressure wasnt feeling god  and so on ,all of which are true  once i finally convinced the  worker of the fact i had no money he put his super visor on the line .the supervisor was stalling i could tell im no dummy when it comes to software and computers i taught myself  xp professional and the windows 8.1 which im still learning   i finally got tired of his super visor retstartd my computer and got control uninstalled skype  mozilla nightly and mozilla experimental  and several other prorams  with my revo pro uninstaller  my computer is rinning smooth now but i have seen .that ny network access protection is turned off ,how do i turn this on and is it neccasary i have malware bytes new 2.7. something full time  bought and paid for protection and windows defender .i run  a discclean every day and my mal;ware bytes and windows defender any thoughts and ideas would be appreciated i do have HP SUPPORT ASSISTANT AND MY  WARRANTY IS UP TO DATE AND PAID FOR .. sincerely donald hutchison

  dhutch1 wrote:
  i got a phone call from a unknown source today  at around  3 pm they said  that hackers where trying to access my computer . they  ran a scan  and it showed thre things one was  my network access protection was turned off . ...
  Hi,
  Now the trouble may start, you did allow people to logon to your computer and you believe them !  HP Support Assisstant is there to support your technical problems it does not know you will open the door of your house for someone to comes in to steal your money.
  Now, please change all your passwords to logon to email, bank account(s) ..... before too late. Also please download the following tool nd run on your computer, hope it can remove the nasty bits.
  Good luck.
  BH
  **Click the KUDOS thumb up on the left to say 'Thanks'**
  Make it easier for other people to find solutions by marking a Reply 'Accept as Solution' if it solves your problem.

• How to retrieve purchased albums without access to the original computer?

  I purchased a lot of music off of itunes at my old job and I no longer have access to that computer. Is there any way to download the songs to my new computer or are they lost in cyberspace?

  If you didn't make a back-up of your purchases to restore from (as you are advised to do) then I'm sorry to say that the policy on lost purchases is that you have to pay to download them again:
  "Once a Product is purchased and you receive the Product, it is your responsibility not to lose, destroy, or damage the Product, and Apple shall be without liability to you in the event of any loss, destruction, or damage." iTunes Store: Purchased content can be downloaded only once
  You could try contacting the iTunes Music Store Customer Service and you might be able to persuade them to sanction a second free download. There have been occasional reports in the iTunes forum of this happening, however just be aware that they are not under any obligation to do so. If you click on this link you'll be able to email your query: iTMS Customer Service
  If you have an iPod that still has the purchases on it the transfer of purchased content from the iPod to authorised computers was introduced with iTunes 7. You'll find details in this article: Copying iTunes Store purchases from your iPod or iPhone to a computer
  You might also want to check out these pages for future reference:
  How to back up your media in iTunes
  Back up your iTunes library by copying to an external hard drive

• How to rename a site without accessing the Central Admin if there is a treshold...

  SP2010 - I'm SCA of a site collection...
  I need to rename a site, (site settings, title etc), but when  I rename and try to save, it says   "The
  attempted operation is prohibited because it exceeds the list view threshold enforced by the administrator."
  ok I understand the problem, but I don't have access to Central Admin and increase the Treshold or whatever.
  I need to do that within the Site collection  - I've rights use Sandbox solution.
  Please advise how to rename the site?  (LINK)

  As Alex said, it is one of the biggest weaknesses in SharePoint.
  You need to decide when and how you are going to reduce the size of the list.  And put a governance policy (written document that is vetted through management) in place that states that lists need to be below the default 5000 item limit. 
  I DO NOT recommend increasing the limit, although I have seen companies do this.  All it leads to is the eventual crash of your farm and many, many more lists that then need to be paired down.
  to fix your issue though, you could increase the limit, then export the list to excel, then decrease the limit back to default 5000 and then do your work in excel by parsing the list into however many you want, based on some criteria that you decide (date,
  unit numbers, or what ever makes sense)
  then import the excel files to new lists, after you have the new lists imported, business could test, then you could increase the limit one more time, so you can delete the original list.
  and for renaming the site, if you don't want to do all the list work, you could increase the limit, and rename the site with set-spsite, assuming you're using host named site collections.  If you're using path based, you could export the site, then
  create the site and all its subsites, and perform the import; which is one more reason why HNSC is the way to go.
  Stacy Simpkins | MCSE SharePoint | www.sharepointpapa.com

• How to change AppleID password without access to security questions or rescue email?

  Hi,
  I am curious how a friend managed to change his AppleID password via his iPhone without knowing the answers to the security questions or access to the rescue email. As someone else helped him with the process (not an Apple employee), he hasn't been able to explain it. I still haven't been able to figure how it was done. Wonder if anyone out here could shed some light, thanks!

  Hi there mokcl,
  You may find the troubleshooting steps in the article below helpful.
  If you forgot the answers to your Apple ID security questions
  http://support.apple.com/kb/HT6170
  If you can't reset your security questions
  Contact Apple Support in either of these circumstances:
  You don't see the link to send a reset email, which means you don't have a rescue address.
  You see the link to send a reset email, but you don't have access to email at the rescue address.
  A temporary support PIN isn't usually required, but Apple may ask you to generate a PIN if your identity needs to be verified.
  -Griff W.

• How can create new Login without admin privilage schema........

  Hi,
  Any body suggest me to create the new user without any admin acccount or here no sys account or privilage login.......
  i don't no the login id or password of any admin schema........(For exm sys,system etc)
  Thanks,
  Ritesh

  Is there any relation to Oracle Reports?
  create the new user without any admin acccountThis is a DBA job, and your DBA hasn't given you the system password. Ask your DBA for CREATE USER privilege if you need to do this as a non-DBA user.

• How can I restore iPad without access to Apple ID or last PC used?

  My organization has about 25 iPads. I just had one returned to me as "Disabled", and I am unable to recover it using the usual procedure because I don't have access to the last PC it was connected to.  This iPad was used by a former employee.  I have no idea what he set up as his Apple ID or password, and do not have access to his PC/iTunes account.  The normal approach to recovery requires the Apple ID and Password and last PC used for iTunes.  What can I do? 
  This recovery approach is designed for consumers, not a business with a normal rotation of employees.  Do I have to download one of those hacking tools?
  John Straub

  You can restore it from any computer with iTunes. If, however, the previous employee set up Find My iPhone and hence Activation Lock, you will need that employee's Apple ID and password to activate the device after the restore, or you'll need to get him/her to remove the device from his/her iCloud account:
  http://support.apple.com/kb/PH2702
  If you can't reach the previous user or he/she is unwilling to cooperate, you will need to contact Apple Support and ask if they can help. If your company can provide proof of ownership, there may be something they can do.
  For the future, most companies either set up Find My iPhone using an Apple ID and password the company controls, or they lock off the ability to make account changes so that the employee can't set up iCloud.
  Regards.

• HT201394 I am travelling. How can I fix this without access to my iTunes account?

  The article talks about having to use a a desk/laptop to revert to the old iOS. I dont have access to mine. So, am I out of luck?

  Unfortunately you need access to iTunes in order to downgrade. A new update, ios 8.0.2, will be out in a few days. If you have access to the internet on your phone you can update it through your phone by going to settings>general>software update.

• How to delete iCloud account without access to email account or password

  Hello,

  Yes you can...watch this video. Saved me from pulling out all of my hair!
  https://www.youtube.com/watch?v=-zW21pt3UWg

• Avoiding relog-in when accessing protected resource

  Hi. I'm using form based authentication on Weblogic 6.0, RDBMSRealm,
  JDK1.3.
  I used the weblogic ServletAuthentication
  class to authenticate the user instead of j_security_check since
  I have to store the user in the session after successful
  authentication. This works relatively well except in the case where
  I specify security constraints in my web app descriptor
  (web.xml) For some pages, I limit access rights to roles like
  admin, judge. For others, it's everyone, or contestant.
  So for example my contest entry page is limited to contestants.
  It asks me to log in. I successfully log in but when I hit the
  scoring page which is limited to judges only, I am asked to log
  in again. I just want to forward to a page with an error message
  saying 'access is denied'. I don't want to have to log in again.
  Is there a way around this?
  Thanks,
  Karen

  Hi Andreas,
  did you find any clue on this matter?
  I'm experiencing a similar problem - at least the exception is exactly the same.
  Here it occurs when an web application instantiates two EJB remote interface - one in the same WLS instance and other in a remote one. After that it invokes a service in the local EJB instance that tries to lookup the datasource; and the error happens!
  Two strange facts:
  1) the problem could not be reproduced in any other environment but the production one.
  2) (more strange!) if we take out the remote EJB instantiation it works fine - but we can't do that... :-( - and note that when the error occurs this instance was not used yet.
  Any clue you have will be certainly helpful.
  Thanks in advance.
  Heleno

• How can i telnet or get access to other LAN members in LAN without using third party software?

  I have admin access to the main  router in our LAN, so how can i telnet or get access to other LAN  members in LAN without using third party software?
  its linksys3500 router and  i login as admin using the gateway address in address bar..
  i  want to access the c drive of my colleague in same subnet in same  office and i know his ip address.but he not configured telnet accept  request.so without it how can i open his telnet port and access him

  I think you are using the wrong terminology. You can browse the hidden share of any pc if you know the ip and have a valid user account on the pc by typing in the following \\computername\c$ or \\ipaddress\c$ . It should prompt you for a user account. You may have to allow this through the windows firewall (or disable it completely).

• I have admin access to the main router in our LAN, so how can i telnet or get access to other LAN members in LAN without using third party software?

  I have admin access to the main router in our LAN, so how can i telnet or get access to other LAN members in LAN without using third party software?
  its linksys3500 router and  i login as admin using the gateway address in address bar..
  i want to access the c drive of my colleague in same subnet in same office and i know his ip address.but he not configured telnet accept request.so without it how can i open his telnet port and access him

  Duplicate post. 

• Progress Reporter. I can't access,not granted access for direct login

  I am trying to Access to Progress Reporter.
  Web Access is running correctly and I got access with "admin" user. But when I am trying to use the admin user for Progress Reporter I got this message:
  Logon denied for[admin]. You are not granted access for direct login,please contact your administrator. Please choose 'OK' to make corrections or 'Cancel' to exit tha application.
  I don't know how to create user for Progress Report if that is the problem. Please help me......I will appreciate your help a lot.
  Thanks

  I have the same problem (p6v7), but the diference with the case mentioned, I have all checkbox marked correctly and all permision to users.
  When I tried to loggin appear the same error
  Have someone any tip???
  Thanks

• How can I get my old iTunes music onto my new computer without access to my old computer? I left my previous job and forgot to transfer my music. I bought iTunes match and it shows my old Mac as a device, but I cannot get the music off it.

  How can I get my old iTunes music onto my new computer without access to my old computer? I left my previous job and forgot to transfer my music. I bought iTunes match and it shows my old Mac as a device, but I cannot access any of the old music. All I can find are what was on my iPhone, but that's not what I want. I need all my old music from my old Mac, which has been wiped clean by IT at my old job. BUT, I did have iCloud at that time and I thought all my music would be accessible through it. I don't understand the Cloud! And I'm thinking spending $24.99 on iTunes Match was a waste of money because I still can't access my old music.

  When you are done with this issue, consider the computer back at the office may still
  have access to your iTunes account, and it should be de-auhorized. You can do that
  remotely, but be sure you carefully do not mess up your other computer iTunes libraries.
  Good luck & happy computing!