Problem deleting users with delegated admin

Similar Messages

• Deleting users with Delegated Admin

  Hope anyone can help with this:
  When I delete a user with Delegated Admin (For Messaging 5.x) the user
  seems to be deleted in iDA, but it is not deleted in LDAP.
  Therefore, I cannot re-use it's attributes (like E-mail address) for
  another (new) user.
  This causes all kind of problems.
  I can go into the Console and through away the user, then everything
  works again. But I expected iDA also to delete the user if I use the
  delete button.
  Any ideas? Did I forget something?
  Thanks in advance,
  Niels de Troye

  Hi..
  the nda does not remove the user... is put it in suspend mode...
  you have to run the imsimta purge command to remove the user.. or to wait
  the server to do that
  in a day or so....
  take a look at the manual to see how you can do that...
  "N. de Troye" wrote:
  Hope anyone can help with this:
  When I delete a user with Delegated Admin (For Messaging 5.x) the user
  seems to be deleted in iDA, but it is not deleted in LDAP.
  Therefore, I cannot re-use it's attributes (like E-mail address) for
  another (new) user.
  This causes all kind of problems.
  I can go into the Console and through away the user, then everything
  works again. But I expected iDA also to delete the user if I use the
  delete button.
  Any ideas? Did I forget something?
  Thanks in advance,
  Niels de Troye--
  Over and Out
  Giorgos Kiriakidis
  Technical Department
  NetSmart S.A.
  Panepistimiou 58.
  Athens 10678
  Hellas
  Tel +3013302608
  Fax +3013302658
  Email [email protected]
  This message contains confidential information intended for a specific
  individual and purpose,
  is protective by law. If you are not the intended recipient, you should
  delete this message.
  Any disclosure, coping, distribution or taking any action based on this
  message is strictly prohibited.

• Macbook crash when trying to autorize user with system admin account  in maverick

  macbook crash when trying to autorize user with system admin account  in maverick,
  Please help

  Hi Frank,
  Please refer to following operations and check if can help you.
  1.
  wmic /node:"HOSTNAME" /user:"ADMIN_USER" /password:"PASSWORD" logicaldisk
  Please replace HOSTNAME with IP address, then monitor the result.
  2. Please open Control Panel, select User Accounts and click Manage another account. Then select the user account which you will use in WMIC command. Then please select Change
  the account type and check if you have set it as Administrator. If no, please set it as Administrator and check if this issue still persists.
  3. Please refer to the following thread and check if can help you.
  WMI
  Remote "Access Denied"
  If this issue still persists, please let me know the edition information of Windows OS that this issue occurred
  in. Meanwhile, you described “The user account is a member of Administrators.” Would you please let me summarily know how operate?
  Hope this helps.
  Best regards,
  Justin Gu

• Can't create user with Delegated Administrator Console! Thank you!

  I have installed JES2005Q4 (include Deirectory Server、Access Manager、Web Server、Messaging Server、Calendar Server、Instant Messaging、Communications Express and Delegated Administrator) ,
  i can create domain and user with "commadmin" command, but can't create user with Delegated Administrator console.
  When i checked the logs of the Web Server, found some errors:
  [04/Feb/2006:11:55:25] failure (12015): for host 192.168.182.130 trying to POST /da/wizard/WizardWindow, service-j2ee reports: ApplicationDispatcher[da] WEB2649: Servlet.service() for servlet jsp threw exception
  javax.servlet.ServletException
       at org.apache.jasper.runtime.PageContextImpl.handlePageException(PageContextImpl.java:536)
       at jsps.com_sun_web_ui._jsp._wizard._WizardWindow_jsp._jspService(_WizardWindow_jsp.java:559)
       at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:107)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
       at com.iplanet.ias.web.jsp.JspServlet$JspServletWrapper.service(JspServlet.java:687)
       at com.iplanet.ias.web.jsp.JspServlet.serviceJspFile(JspServlet.java:459)
       at com.iplanet.ias.web.jsp.JspServlet.service(JspServlet.java:375)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
       at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:772)
       at org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:471)
       at org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:382)
       at com.iplanet.jato.view.ViewBeanBase.forward(ViewBeanBase.java:340)
       at com.iplanet.jato.view.ViewBeanBase.forwardTo(ViewBeanBase.java:261)
       at com.sun.web.ui.view.wizard.CCWizard.handleNextButtonRequest(CCWizard.java:730)
       at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
       at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
       at java.lang.reflect.Method.invoke(Method.java:585)
       at com.iplanet.jato.view.command.DefaultRequestHandlingCommand.execute(DefaultRequestHandlingCommand.java:183)
       at com.iplanet.jato.view.RequestHandlingViewBase.handleRequest(RequestHandlingViewBase.java:308)
       at com.iplanet.jato.view.ViewBeanBase.dispatchInvocation(ViewBeanBase.java:802)
       at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandlerInternal(ViewBeanBase.java:740)
       at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandlerInternal(ViewBeanBase.java:760)
       at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandler(ViewBeanBase.java:571)
       at com.iplanet.jato.ApplicationServletBase.dispatchRequest(ApplicationServletBase.java:957)
       at com.iplanet.jato.ApplicationServletBase.processRequest(ApplicationServletBase.java:615)
       at com.iplanet.jato.ApplicationServletBase.doPost(ApplicationServletBase.java:473)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:807)
       at com.sun.comm.da.WizardWinServlet.service(WizardWinServlet.java:111)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
       at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:247)
       at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
       at com.sun.comm.da.LoginFilter.doFilter(LoginFilter.java:128)
       at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:213)
       at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
       at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:280)
       at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
       at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:212)
       at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
       at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:209)
       at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
       at com.iplanet.ias.web.connector.nsapi.NSAPIProcessor.process(NSAPIProcessor.java:161)
       at com.iplanet.ias.web.WebContainer.service(WebContainer.java:580)
  ----- Root Cause -----
  javax.servlet.jsp.JspException
       at com.sun.web.ui.taglib.wizard.CCWizardTag.getWizardPageHTML(CCWizardTag.java:1577)
       at com.sun.web.ui.taglib.wizard.CCWizardTag.appendPageletBodyContentHTML(CCWizardTag.java:668)
       at com.sun.web.ui.taglib.wizard.CCWizardTag.appendWizardBodyHTML(CCW
  [04/Feb/2006:11:55:25] failure (12015): for host 192.168.182.130 trying to POST /da/wizard/WizardWindow, service-j2ee reports: WEB2798: [da] ServletContext.log(): [ERROR] Uncaught application exception
  com.iplanet.jato.NavigationException: Exception encountered during forward
  Root cause = [javax.servlet.jsp.JspException]
       at com.iplanet.jato.view.ViewBeanBase.forward(ViewBeanBase.java:380)
       at com.iplanet.jato.view.ViewBeanBase.forwardTo(ViewBeanBase.java:261)
       at com.sun.web.ui.view.wizard.CCWizard.handleNextButtonRequest(CCWizard.java:730)
       at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
       at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
       at java.lang.reflect.Method.invoke(Method.java:585)
       at com.iplanet.jato.view.command.DefaultRequestHandlingCommand.execute(DefaultRequestHandlingCommand.java:183)
       at com.iplanet.jato.view.RequestHandlingViewBase.handleRequest(RequestHandlingViewBase.java:308)
       at com.iplanet.jato.view.ViewBeanBase.dispatchInvocation(ViewBeanBase.java:802)
       at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandlerInternal(ViewBeanBase.java:740)
       at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandlerInternal(ViewBeanBase.java:760)
       at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandler(ViewBeanBase.java:571)
       at com.iplanet.jato.ApplicationServletBase.dispatchRequest(ApplicationServletBase.java:957)
       at com.iplanet.jato.ApplicationServletBase.processRequest(ApplicationServletBase.java:615)
       at com.iplanet.jato.ApplicationServletBase.doPost(ApplicationServletBase.java:473)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:807)
       at com.sun.comm.da.WizardWinServlet.service(WizardWinServlet.java:111)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
       at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:247)
       at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
       at com.sun.comm.da.LoginFilter.doFilter(LoginFilter.java:128)
       at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:213)
       at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
       at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:280)
       at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
       at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:212)
       at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
       at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:209)
       at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
       at com.iplanet.ias.web.connector.nsapi.NSAPIProcessor.process(NSAPIProcessor.java:161)
       at com.iplanet.ias.web.WebContainer.service(WebContainer.java:580)
  Root cause:
  javax.servlet.jsp.JspException
       at com.sun.web.ui.taglib.wizard.CCWizardTag.getWizardPageHTML(CCWizardTag.java:1577)
       at com.sun.web.ui.taglib.wizard.CCWizardTag.appendPageletBodyContentHTML(CCWizardTag.java:668)
       at com.sun.web.ui.taglib.wizard.CCWizardTag.appendWizardBodyHTML(CCWizardTag.java:658)
       at com.sun.web.ui.taglib.wizard.CCWizardTag.getHTMLStringInternal(CCWizardTag.java:469)
       at com.sun.web.ui.taglib.common.CCTagBase.doEndTag(CCTagBase.java:114)
       at jsps.com_sun_web_ui._jsp._wizard._WizardWindow_jsp._jspService(_WizardWindow_jsp.java:260)
       at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:107)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
       at com.iplanet.ias.web.jsp.JspServlet$JspServletWrapper.service(JspServlet.java:687)
       at com.iplanet.ias.web.jsp.JspServlet.serviceJspFile(JspServlet.java:459)
       at com.iplanet.ias.web.jsp.JspServlet.service(JspServlet.java:375)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
       at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:772)
       at org.apache.catalina.co
  [04/Feb/2006:11:55:26] failure (12015): for host 192.168.182.130 trying to POST /da/wizard/WizardWindow, service-j2ee reports: StandardWrapperValve[WizardWinServlet]: WEB2792: Servlet.service() for servlet WizardWinServlet threw exception
  javax.servlet.ServletException: Uncaught exception
       at com.iplanet.jato.ApplicationServletBase.onUncaughtException(ApplicationServletBase.java:1415)
       at com.sun.comm.da.WizardWinServlet.onUncaughtException(WizardWinServlet.java:98)
       at com.iplanet.jato.ApplicationServletBase.fireUncaughtException(ApplicationServletBase.java:1164)
       at com.iplanet.jato.ApplicationServletBase.processRequest(ApplicationServletBase.java:639)
       at com.iplanet.jato.ApplicationServletBase.doPost(ApplicationServletBase.java:473)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:807)
       at com.sun.comm.da.WizardWinServlet.service(WizardWinServlet.java:111)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
       at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:247)
       at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
       at com.sun.comm.da.LoginFilter.doFilter(LoginFilter.java:128)
       at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:213)
       at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
       at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:280)
       at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
       at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:212)
       at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
       at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:209)
       at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
       at com.iplanet.ias.web.connector.nsapi.NSAPIProcessor.process(NSAPIProcessor.java:161)
       at com.iplanet.ias.web.WebContainer.service(WebContainer.java:580)
  ----- Root Cause -----
  com.iplanet.jato.NavigationException: Exception encountered during forward
  Root cause = [javax.servlet.jsp.JspException]
       at com.iplanet.jato.view.ViewBeanBase.forward(ViewBeanBase.java:380)
       at com.iplanet.jato.view.ViewBeanBase.forwardTo(ViewBeanBase.java:261)
       at com.sun.web.ui.view.wizard.CCWizard.handleNextButtonRequest(CCWizard.java:730)
       at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
       at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
       at java.lang.reflect.Method.invoke(Method.java:585)
       at com.iplanet.jato.view.command.DefaultRequestHandlingCommand.execute(DefaultRequestHandlingCommand.java:183)
       at com.iplanet.jato.view.RequestHandlingViewBase.handleRequest(RequestHandlingViewBase.java:308)
       at com.iplanet.jato.view.ViewBeanBase.dispatchInvocation(ViewBeanBase.java:802)
       at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandlerInternal(ViewBeanBase.java:740)
       at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandlerInternal(ViewBeanBase.java:760)
       at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandler(ViewBeanBase.java:571)
       at com.iplanet.jato.ApplicationServletBase.dispatchRequest(ApplicationServletBase.java:957)
       at com.iplanet.jato.ApplicationServletBase.processRequest(ApplicationServletBase.java:615)
       at com.iplanet.jato.ApplicationServletBase.doPost(ApplicationServletBase.java:473)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:807)
       at com.sun.comm.da.WizardWinServlet.service(WizardWinServlet.java:111)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
       at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:247)
       at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
       at com.sun.comm.da.LoginFilter.doFilter(LoginFilter.java:128)
       at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain

  Now i want to update the Delegated Administrator with the 119778-09.jar patch, but the error show:
  Unable to open keystore </var/sadm/security/patchadd/trustore> for reading.
  Signature invalid on signed patch <119778-09>.

• Delete user with db owner roles

  Dear All,
  I want delete user with db owner roles from all database and from server using sql query.
  So i want using one query to delete user from all database and also from server
  how i can do that?
  best regards,
  Surbakti

  I means it's login.
  I want delete because user whom use that login already resign from my company.
  so if i delete that login i can use that slot for the other user.
  best regards,
  Surbakti
  First you said you want to delete all logins with db owner roles and now you are saying I want to delete use login who has left the company. Was there mass exodus.
  If login was a domain login you should also make sure it gets removed from domain, then from local windows machine  and then from SQL server. If it is SQL Server login it can be removed straight. Search online you would find various methods to remove
  login
  Have alook at below links
  Question about removing logins from database
  Drop login
  Also note that any job which the login owned would be affected if login is removed. So you need to be careful
  Please mark this reply as answer if it solved your issue or vote as helpful if it helped so that other forum members can benefit from it
  My Technet Wiki Article
  MVP

• Problem allocating service packages to users via delegated admin

  I've created a custom service package using the sample templates. Upon assigning this newly created package to a user via Delegated Administrator I receive the following message "cannot create user - all service packages of this type have been allocated". Problem is I've made about 200 available and the stats for this package show 0 used. Please advice.
  Cheers

  Please post this question at Developer Forums > E-Mail, Calendar, & Collaboration

• EBS 11.5.1 - Problem creating user with NO APPS user

  Hi everybody.
  I am working on an EBS enviroment on demand that we are trying to set up for a Colombian customer. We are trying to set up the connector between Oracle IDentity Manager and EBS and it is not working.
  After some test cases we figured out that the main issues are related with the privileges that has the user that is going to interact with the EBS DB Procedures. In fact, we are trying to call this procedure:
  declare
  user1 varchar2(50);
  owner varchar2(50);
  begin
  user1 := 'USERNAME';
  owner := '-23432';
  fnd_user_pkg.CreateUser(user1,owner);
  end;
  IF WE RUN THIS SENTENCE OVER APPS USER (THE EBS ADMIN USER) IT WORKS. HOWEVER when we try to use the OIM user it throws the following error:
  Unable to create user USERNAME due to the following reason(s):
  Oracle error -1031: ORA-01031: insufficient privileges has been detected in FND_WEB_SEC.VALIDATE_PASSWORD..
  ORA-06512: at "APPS.APP_EXCEPTION", line 72
  ORA-06512: at "APPS.FND_USER_PKG", line 869
  ORA-06512: at "APPS.FND_USER_PKG", line 915
  ORA-06512: at "APPS.FND_USER_PKG", line 1034
  ORA-06512: at line 1
  We already checked the FND_WEB_SEC Package (that has the VALIDATE_PASSWORD function) and it looks like the problem is when it calls the function VALIDATE_PASSWORD_JAVA wich tries to validate the password with a Java task. It looks like the OIM user doesn't have privileges to access this remote java function.
  Anyone knows wich is the real problem and how can i solve it??
  Many thanks for the help

  Hi everybody.
  I am working on an EBS enviroment on demand that we are trying to set up for a Colombian customer. We are trying to set up the connector between Oracle IDentity Manager and EBS and it is not working.
  After some test cases we figured out that the main issues are related with the privileges that has the user that is going to interact with the EBS DB Procedures. In fact, we are trying to call this procedure:
  declare
  user1 varchar2(50);
  owner varchar2(50);
  begin
  user1 := 'USERNAME';
  owner := '-23432';
  fnd_user_pkg.CreateUser(user1,owner);
  end;
  IF WE RUN THIS SENTENCE OVER APPS USER (THE EBS ADMIN USER) IT WORKS. HOWEVER when we try to use the OIM user it throws the following error:
  Unable to create user USERNAME due to the following reason(s):
  Oracle error -1031: ORA-01031: insufficient privileges has been detected in FND_WEB_SEC.VALIDATE_PASSWORD..
  ORA-06512: at "APPS.APP_EXCEPTION", line 72
  ORA-06512: at "APPS.FND_USER_PKG", line 869
  ORA-06512: at "APPS.FND_USER_PKG", line 915
  ORA-06512: at "APPS.FND_USER_PKG", line 1034
  ORA-06512: at line 1
  We already checked the FND_WEB_SEC Package (that has the VALIDATE_PASSWORD function) and it looks like the problem is when it calls the function VALIDATE_PASSWORD_JAVA wich tries to validate the password with a Java task. It looks like the OIM user doesn't have privileges to access this remote java function.
  Anyone knows wich is the real problem and how can i solve it??
  Many thanks for the help

• Deployment Software on user with no admin rights

  Hello,
  We are using SCCM 2012 R2 and our environment machines are Windows 8.1 with no admin rights for all users.
  We are trying to deploy some sprecific software but with no luck.
  On the Deployment method we specify "Install for User" and what happens on User side is "Past due it will be retried".
  If I modify my script and instead of /qn I use /qb I have the UAC control that pops up.
  But from my understanding SCCM should install the software as system account.
  How can we do to make it work?
  Thank You,
  Chris

  Hello,
  I have already bypass my problem using the "install for system".
  Creating 2 deployment method. One for the application (msi) "Install for system" and the second for the settings (cmd) "Install for User" and it works like a charm.
  But there is no way for SSCM to elevate the privileges when installing an application with "Install for user" set?
  Chris

• MPR for helpdesk to create / delete users with authZ

  Hi everybody,
  I'm facing a strange situation with two MPRs. I'm setting up 6 policies for the IT helpdesk to manage users with and without authZ workflows in place, and so far I managed the grant really granular rights depending on the target and modified attributes.
  Today I wanted to create my last 2 simple policies for the create resource and delete resource operations, having:
  - Policy disabled unchecked
  - IT Helpdesk as requestor
  - Grants permission unchecked
  - Create / delete resource checked
  - All Active People for create / All Non-Administrators for delete as target resources, All attributes selected.
  - The 2 authZ workflows checked; they are the same as for 2 other policies
  When a helpdesk user is creating/deleting a user trough the portal it gets an Access Denied error on submit, when I search the request as admin I see the create/ delete policies are the only ones applied. When I check the Grants permission the user is created/deleted
  without authZ, but this is not what I want.
  Does anyone has an clue why the workflows are not triggered in these 2 cases, and why are they fired in the other two?
  Thanks for helping me out.
  Cristian

  Even though this post is old I think it worthwhile to answer for others. Hopefully, Christian has already found his solution.
  A key to troubleshooting these issues is to go to "Search Requests" and look at the request and see what MPR's were applied. Then look to see if the workflows started requests.
  Request Processing
  http://msdn.microsoft.com/en-us/library/windows/desktop/ee652475(v=vs.100).aspx
  David Lundell, Get your copy of FIM Best Practices Volume 1 http://blog.ilmbestpractices.com/2010/08/book-is-here-fim-best-practices-volume.html

• Video on skype not workin only in facetime and photo booth appears to be a common problem amongst user with a recently bought macbook air

  Video on skype not working. Only functioning in facetime and photo booth. Seems to be a common problem amongst users having bought a new macbook air recently. When you go to Preference and click on audio/video item video works but when clicking on another menue and returning to audio/videio picture is gone. Understand has something to do with a recent update von Apple (10.8.5... missing file for 32 bit version).
  Anybody there to give me an advice?
  Thanks.

  Wait until a fix is available from Apple or Skype.
  Best.

• Network User with Local Admin Privileges?

  I have a small network (around 25 clients total) that was setup prior to my arrival. Each client has its own unique local admin (each machine was setup by the individual user) and it's become somewhat daunting to support them.
  All of the machines are connected (but not specifically bound) to an Open Directory and each is accessible via Remote Desktop, however I cannot push software updates, etc. without local admin privileges.
  I'd rather not create an account on each machine, nor do I want to completely lock down each computer (I'd like them to still have the flexibility to be admins so they can install apps, etc.)
  Is it possible to authenticate against OD and obtain local admin privileges?

  Yes.
  You can wipe all account information and then recreate a common initial admin account. This will make administration far easier as all machines will have the same admin username/password combination. Next, bind all of the systems to the domain and create domain accounts for all users on the server (likely already exist). Log in as the domain accounts and migrate permissions to domain ids. Finally, promote the user to the local admin group through System Preferences > Accounts on the workstation. You must enable the account as a mobile account in Workgroup Manager first. If you do not, the account will not cache to the workstation and you will be unable to add it to the admin group.
  Also, in a workgroup of 25, I would recommend rethinking the decision to grant local admin access to end users. This is asking for trouble as you will have no control over when updates are applied or even if they are. In theory (and probably in practice), you will have 25 completely different machines configurations. This is far harder to manage and troubleshoot than 25 systems with different admin accounts.
  If you must provide some level of autonomy, while not trivial, you might want to consider modifying /etc/authorization and granting limited admin rights to the users.
  Hope this helps - congrats on the opportunity

• How to reconcile deleted users with GTC

  Hi all,
  I'm wandering wich is the best approach to perform reconciliation of deleted users using GTC connector. (It doesn't concile it by default, does it?).
  I don't know if it's a bad idea to mark the deletion in the target table row (setting a value in a column) and revoke the user through an Entity Adapter. Should it be better to develop a custom Scheduled Task for this?
  Any tip will be considered!
  Thanks in advance,

  Hi,
  Yes I run both Schedule task as "time-programmed" . I usually run creation task first and then it is followed by delete recon task.
  I am not fully understanding what do you mean by starting GTC generated task automatically? Please give me more insight before I comment on this.
  For delete recon you need to do following
  HashMap userValues[];
  userValues = null;
  userValues=createDeleteHashMap(results);
  Set deletedAcc = reconUtil.provideDeletionDetectionData(resourceObject, userValues);
  missingUser = reconUtil.getMissingAccounts(resourceObject, deletedAcc);
  long reconEvent[] = reconUtil.deleteDetectedAccounts(missingUser);
  Here userValues is array of Hashmap which have all the non revoked user.
  So your steps should be.
  1.Query the table wich store all active users and store them in an array of hashmap
  2.Pass it to provideDeletionDetectionData method.
  3.pass step 2 result set to getMissingAccounts method.
  4.Pass step 3 result set to deleteDetectedAccounts.
  Alternatively you do following.If in your query you can find out which user is deleted and if you are oim9.1 then follow these steps.
  1.Query the table and get revoked/deleted user and store then in a hashmap.
  2.Use createDeleteReconciliationEvent(java.lang.String psObjName, java.util.Map poAttributeList) to create the delete reconciliation event.
  First approach is bit risky because if somehow in your table or view all the record are delete or revoked or by any error GTC connector did not find any record then it will revoked all the user from OIM which can lead to disaster as you are doing trusted recon.
  Please let me know if you have any more questions.
  Regards
  Nitesh

• Accessing network drive (kind:sharepoint) as user with no admin priviliges

  I have a (linux) server which stores - and backs - up quite a bit of data for several users on my mac (Leopard).
  I have set up AppleTalk on the server and password protected access. This works excellent. But for some reason I have to enable admin rights for all users to my computer - otherwise it is not possible to access the server data. I can see all the shared folders - but it simply does not allow me to access the data. It seems that my mac does not allow me to "mount" the drive...
  On the log I get.
  "NetworkNode:handleMountCallBack returned -6602"
  It is a bit uncomfortable to have all users of my mac as "admin". Do you know how to fix this problem?
  With kind regards,
  Björn
  Message was edited by: Bjorn_is

  Hiya,
  Your absolutely right in the last part. Recreating the user, gives them a new SID and you have the add that SID to SharePoint.
  I would use a Powershell script to find all the places the user has permissions and replace with the new user SID.

• How do I recover lost files from a deleted user with no backup?

  So I was locked out of my account for no reason giving me an error occurred message. I came on here to get help and the guy who helped me made me delete the account and then make a new one with the same name. The next steps to recover the files that he gave me do not work and he mentions that if it doesn't work to find the files and if I do not have a back up I will never be able to recover those files. If I knew deleting the user would have a chance on loosing all my files I would have never done it! I CAN NOT LOOSE ALL MY FILE. I REALLY NEED ALL MY PHOTOS 10 years of photos. Some of the photos were in an older iphoto which was deleted after Yosemite update. WHY I DON'T KNOW. However most of my photos were in files never connected to iphoto. Can anyone please help me find and recover all my photos. PLEASE, there has to be a way. I appreciate all the help provided.

  General File Recovery
  If you stop using the drive it's possible to recover deleted files that have not been overwritten by using recovery software such as MAC Data Recovery, Data Rescue II, File Salvage or TechTool Pro.  Each of the preceding come on bootable CDs to enable usage without risk of writing more data to the hard drive.  Two free alternatives are Disk Drill and TestDisk.  Look for them and demos at MacUpdate or CNET Downloads. Recovery software usually provide trial versions that enable you to determine if the software would help before actually paying for it. Beyond this or if the drive has completely failed, then you would need to send the drive to a recovery service which is very expensive.
  The longer the hard drive remains in use and data are written to it, the greater the risk your deleted files will be overwritten.
  Also visit The XLab FAQs and read the FAQ on Data Recovery.

• Problem deleting user from Unity Connection 8.5.1 - BulkUserDelete

  We are having issue deleting a user from Unity Connection 8.5.1
  We tried the command line to remove the user, no go. We also installed the CUC Clean Inconsistency 1.2 and that to did not remove it.
  We then tried BulkUserDelete tool and the initiial search in BulkUserDelete see's the problem user (alias) but on the next screen where you select the users, on that step the BulkUserDelete no longer see's the problem user.
  Anyone know of other way to remove a problem user from CUC?

  Thanks, Rob. I appreciate you taking the time to reply. I feel much more confident about the whole procedure now.
  I've read many of your replies to others on this same issue so I'm pretty certain you know what you're talking about. One of the documents I read that made me doubt what TAC said is the document by Saurabh - I've read it through several times already and found it very helpful. Thanks for linking to it.
  There's a scheduled back up of UC performed every night (all options are checked). Should I still do a COBRAS backup too or is that unnecessary?
  Once the upgrade file installation is complete, do I need to do anything else? From what I've read, this is similar to running a Windows (or Mac) operating system update/patch - start the upgrade file, wait for it to run and once it's complete, reboot the system and continue as usual (assuming everything went OK). Is that right?
  Thanks again!
  Lisa