BBP_MON_SC read only privileges

Similar Messages

• Every file has staff and everyone "read only" privileges

  Just upgraded to SL with a clean install. Copied over all my documents. Now it seems like every single file has staff and everyone read only privileges (in addition to me having read & write).
  How can this be? Under System Preferences, Sharing, I have absolutely nothing checked.
  Anyone know anything about this? Thanks.

  santranyc wrote:
  Just upgraded to SL with a clean install. Copied over all my documents. Now it seems like every single file has staff and everyone read only privileges (in addition to me having read & write).
  these are standard permissions in both leopard and snow leopard. any new files you create in your home directory will have those permissions.
  How can this be? Under System Preferences, Sharing, I have absolutely nothing checked.
  this has nothing to do with sharing.
  Anyone know anything about this? Thanks.

• Read Only privileges for Access Server and Identity Server - OAM 10g

  Hi,
  I am working on Oracle Access Manager 10g version 10.1.4.
  I use an administrative account that is a member of the 'COREid Administrators' group to log into the access console and identity console of OAM.
  Since this is the administrative account, it has the rights to modify and update all access/identity entities.
  How can I set up an account that has "view only" privileges over all access and identity objects in OAM?
  I need to log into the access and identity consoles of OAM and view all policy domains/policies/access system configuration/user manager config/group manager config etc bt not be able to modify any of them.
  Is there a way to setup such an account in OAM?
  Regards,
  Abhishek.

  Hi Abhishek,
  It is possible to define different levels of administrator, but it is not possible to give an admin read access (to objects in the consoles) without also giving modify access. I do not believe that there is a straightforward way to meet this requirement - for the Access System you could use the Policy Manager API and write your own interface (which does not have the ability to modify) but obviously this would be some development effort.
  Regards,
  Colin

• Discoverer BI for OLAP "read-only" privilege problem

  Hello!
  I set the user privilege to "read-only" but still it allows me to save and edit the report within the user. I'm expecting to read only the report and not to modify it.
  Please let me do know if you have a solution for this.
  Grace

  I think Shared is only for viewing. Try giving full control on main folder( folder which has old reports) in users to the new user.
  thanks
  kiran

• Home directory is read only

  Hi -
  I'm having a strange problem with my home directory on my MacBook Pro that is running Leopard.
  The finder window for my home directory claims it is read only (the pencil with a line through it shows up). However, if I do a Get Info on it, it says I have read/write permissions. All the directories inside my home directory are fine. If I go into terminal and change the permissions, I still can't write to it:
  Tims-MacBookPro:Users Tim$ ls -l
  total 0
  drwxrwxrwt 4 root wheel 136 Sep 15 2008 Shared
  drwxrwx---+ 46 Tim Tim 1564 Jul 4 16:26 Tim
  Tims-MacBookPro:Users Tim$
  Tims-MacBookPro:Users Tim$ cd Tim
  Tims-MacBookPro:~ Tim$ mkdir test
  mkdir: test: Permission denied
  Tims-MacBookPro:~ Tim$
  From the snippet above, clearly I have r/w access, yet I can't create a directory!
  Any ideas what could be wrong?
  Thanks.

  Actually you do not have read/write access. Your Home folder is owned by the system user and the group is wheel. The correct values for a Home folder are:
  Owner=you with r/w privileges
  Group=staff with r/w or read-only privileges
  Everyone=read-only privileges
  Try this:
  you can reset the ACLs on your home folder by the following series of terminal commands. It's up to you if you want to do that. I personally like them but I hate the way the ACLs are implemented in leopard so that many ACLs are invisible from GUI and yet can be propagated by using "apply to enclosed items" button. That's a major No-No in my book.
  Here are the commands (in bold). just copy and paste the commands (they are in bold).
  *chmod -R -N ~*
  this removes all ACLs from files in the home directory.
  The following two commands put the necessary ACLs back where they belong.
  *chmod +a "everyone deny delete" ~/ ~/Desktop ~/Documents ~/Downloads ~/Library ~/Movies ~/Music ~/Pictures ~/Public ~/Sites*
  *chmod +a "`id -un` allow list,addfile,search,delete,add_subdirectory,delete_child,readattr,writeattr,readextattr, writeextattr,readsecurity,writesecurity,chown,file_inherit,directoryinherit" ~/Public/Drop\ Box*
  The above was provided by user V.K. in this forum discussion.

• Permit user to administrate Model AND have read-only attributes

  This issue concerns SQL Server Master Data Services 2012
  I have a scenario where the same user is handling data and doing version management. Now I want to make one attribute in one specific entity read-only as I want to make sure the attribute is never changed.
  The problem is, as soon as I set the read-only privilege on the attribute, the user
  loses all administrative rights on the entire model. This, of course, includes version management.
  I've tried working around the issue by making sure the user has explicit update permissions on both the model and the entity (and all attributes except the one I need read-only). But the result is the same. 
  Does anyone know a workaround?

  Hi,
  I think if you explicitly grant the update permissions, it should work. According to the MSDN doc. Could you please check if the user belongs to other hierarchy?
  When a member belongs to multiple hierarchies
  Two or more hierarchies can contain the same member.
  •If one hierarchy node is assigned Update permission and another is assigned Read-only, then the members in the node are Read-only.
  •If one hierarchy node is assigned Update or Read-only permission and another node is assigned Deny, then the members in the node are not displayed.
  Hierarchy Member Permissions (Master Data Services)
  https://technet.microsoft.com/en-us/library/ee633750(v=sql.110).aspx
  Model Object Permissions (Master Data Services)
  https://technet.microsoft.com/en-us/library/ee633764(v=sql.110).aspx
  Regards,
  Doris Ji

• Connecting to SMB / PDC home share is read-only

  I have an absolute mystery (to me at least). I have a Linux SMB server with home shares enabled. I connect to the home shares no problem from Windows. On my Mac (OS 10.6.3), one user is able to connect to their home share, but I cannot with my account. Investigating further using terminal, I noticed that the SMB mount (in /Volumes/%Username) is mounting with mode 555 (r xr xr x) instead of mode 755. I verified that there are no ACL's on these directories. The user that is working has their home directory with 755 as I would expect. Note - Mac OS GUI is doing the mounting automatically using the standard "connect to server" from Finder and just using smb://servername/username. It is bizarre, as I there is no difference that I can find between the two users on the SMB share and it works fine from Windows. I tried chmod'ing the smb mount to 755, but it just reverts to 555 on remount. I've done an "smbstatus" from the SMB server and it shows that my username is connected and shows no difference between the windows and mac, so all the permissions on the SMB server seem to be correct (I am connected to the home share with the correct username and not as "guest"). I'm at the limit of my expertise with this one.

  Actually you do not have read/write access. Your Home folder is owned by the system user and the group is wheel. The correct values for a Home folder are:
  Owner=you with r/w privileges
  Group=staff with r/w or read-only privileges
  Everyone=read-only privileges
  Try this:
  you can reset the ACLs on your home folder by the following series of terminal commands. It's up to you if you want to do that. I personally like them but I hate the way the ACLs are implemented in leopard so that many ACLs are invisible from GUI and yet can be propagated by using "apply to enclosed items" button. That's a major No-No in my book.
  Here are the commands (in bold). just copy and paste the commands (they are in bold).
  *chmod -R -N ~*
  this removes all ACLs from files in the home directory.
  The following two commands put the necessary ACLs back where they belong.
  *chmod +a "everyone deny delete" ~/ ~/Desktop ~/Documents ~/Downloads ~/Library ~/Movies ~/Music ~/Pictures ~/Public ~/Sites*
  *chmod +a "`id -un` allow list,addfile,search,delete,add_subdirectory,delete_child,readattr,writeattr,readextattr, writeextattr,readsecurity,writesecurity,chown,file_inherit,directoryinherit" ~/Public/Drop\ Box*
  The above was provided by user V.K. in this forum discussion.

• Remove read only on linked workbooks

  I am using a Macbook Pro upgraded to Maverick.
  I am using Excel and have several workbook that are linked. 
  When I try to open them it says they are read only.
  How do I remove the read only.  I have tried to work it out but have not been able to resolve the problem.
  Thank you

  Djay-OC wrote:
  Hello All,
  I have one database user for whom read only privilege is there to him on a particular table.
  I want to remove that privilege also for that table so that table will become invisible to him only.
  Please help me how can i achieve this !
  Regards,
  Djay
  It will depend how he got the permission in the first place.  Any of the following will give a specific user (SNUFFY) the ability to SELECT a given table (SCOTT.EMP).
  GRANT SELECT ON SCOTT.EMP TO SNUFFY;
  GRANT SELECT ON SCOTT.EMP TO PUBLIC
  GRANT SELECT ANY TABLE TO SNUFFY;
  GRANT SELECT ANY TABLE TO PUBLIC;
  GRANT SELECT ON SCOTT.EMP TO SOME_ROLE;  ... GRANT SOME_ROLE TO SNUFFY;
  GRANT SELECT ANY TABLE TO SOME_ROLE;  ... GRANT SOME_ROLE TO SNUFFY;

• OBIEE11g: Set user privileges to  Open RPD in Read Only mode.

  Hi All,
  Can some one help me , how to set user privileges to open RPD in read only mode.
  1) If a user ( xxxx) logs into the RPD then the rpd should open in Read Only Mode for xxxx user.
  2) If other user (YYYY) logs in online mode then it should open in online mode for other user (YYYY).
  How to set the security to achieve this.

  863866 wrote:
  Hi All,
  Can some one help me , how to set user privileges to open RPD in read only mode.
  1) If a user ( xxxx) logs into the RPD then the rpd should open in Read Only Mode for xxxx user.
  2) If other user (YYYY) logs in online mode then it should open in online mode for other user (YYYY).
  How to set the security to achieve this.Hi,
  I don't think it's possible, can go with metadata dictionary option which is also help to analysis RPD.
  refer section,
  http://docs.oracle.com/cd/E23943_01/bi.1111/e10540/utilitiesexprbldr.htm#BIEMG325
  Thanks
  Deva

• 10.7.5 New Folder Privileges are Read Only

  I have a 2.8G Quad-Core running 10.7.5 with dual Hard drives; a Mac HD and a Data Drive.  I share the Data Drive with two other Macs running 10.5.8.
  Whenever I create a new folder on either the Mac HD or the Data Drive I get R&W privileges for my user account, and Read only for the other accounts.  I've used the 'get info' command to change all privileges for individual folders to R&W for all users, and used the gear to 'apply to enclosed items' to the entire drive, but files across multiple applications are still opening as Read Only.
  Here is some more details for full disclosure;  The Data Drive used to be in one of the other shared computers and I didn't have any problems until recently moving the Data Drive over to the 'new machine' with 10.7.5
  When I create a new folder locally I get R&W for "csp2 (me)" and Read Only for 'staff' and 'everyone'
  When I create a new folder on the Data Drive from the shared machines I get R&W for 'nobody' and Ready only for 'admin' and 'everyone'
  All these drives should be open and not have any access privileges. Any help would be greatly appreciated!  Thank you.

• Generally when creating a Word file from either a Mac or Win7 pc and opening it on two different machines (either one first) it always prompts that the file is open and will be opened as read only. However opening a CSS file does not prompt that it is alr

  Generally when creating a Word file from either a Mac or Win7 pc and opening it on two different machines (either one first) it always prompts that the file is open and will be opened as read only.
  However opening a CSS file does not prompt that it is already open on or from any machine which is causing code edits to be lost.
  What we found from out testing:
  - The file can be saved from one user to the server and WILL NOT PROMPT on other machines until the saving machine has the Dreamweaver program closed completely
  - The file can be closed and  Dreamweaver minimised to the launch bar but it still will not register on other machines that it has been changed.
  - Also, until the  Dreamweaver program is closed on the machines, it will continue to open it's saved version of the file. 
  Example Scenario:
  - User 1 opens test.css (which is 2000 lines) and adds some code to the end of the file to bring it up to 2500 lines
  - Meanwhile User 2 opens test.css as well (opens as 2000 lines as User 1’s edits have not yet been saved) and adds in code to bring it to 2300 lines
  - User 1 saves his file and closes it - but  Dreamweaver is still open.
  - User 2 also saves his file and leaves  Dreamweaver  open.
  - The server will report the size and last edit of the file the same as User 2 as he was the last person to save it (and if you open from the Win7 Machine it will show as User 2’s 2300 line version)
  - If User 1 then open's the file again (from either the 'recent' in Dreamweaver OR clicking on the file directly in Finder...which version opens.... The version that User 1 saved! Not the true version on the server, but the version that User 1 edited and saved with 2500 lines in it.
  - Same for User 2, he will open 'his' version with 2300 lines in.
  Other information:
  - Files are opened directly from the server
  - Sometimes the users will save incrementally and re-open
  - Most of the time users will save incrementally and keep the files open
  - The users will never not save incrementally and just save when closing the file once finished
  - The users are usually working on the files all day
  - It is always the bottom lines of code that are lost. It could be a case of the two versions being mixed up and cutting off the newly added lines based on the line count (possibly).
  It is as if Dreamweaver is holding a cache of the version locally and then only properly looking back to the server when it has been completely closed. It is very difficult to see how the server is causing such an impact on these files, there are very few logs which are giving any indication to the root cause of the problems.
  Anyone know if this is a known issue?
  Is there a way that there can be a featured implemented on the server that doesn't allow another user to open a file if it is already open on another machine?
  Thanks

  Your server file handling has nothing, and really nothing to do with Adobe software. If files don't get locked for (over-)writing and/or lose connection to the program opening them, then your server is misconfigured. It's as plain and simple and that. Anything from "known file types"/ file associations not being set correctly, MIME types being botched, crooked user privileges and file permissions, missing Mac server extensions, delayed file writing on the server, generic network timeout issues and what have you. Either way, you have written a longwinded post with no real value since you haven't bothered to provide any proper technical info, most notably about the alleged server. Either way, the only way you can "fix" it is by straightening out your server and network configuration, not some magic switch in Adobe's software.
  Mylenium

• How to create files with read/write privileges for everyone?

  I have two iMacs 7,1 (one with Snow Leopard and the other with Mountain Lion) in a local area wireless network.
  I have shared the "documents" folder in the Snow Leopard iMac in order to have files available to the other iMac. The folder has read/write privileges for everyone.
  When I create a new file in the shared "Documents" folder (for example a new Open office document, or a Keynote presentation) this file is by default "read/write" for the Administrator but only "read" for all the other users, so when I try to open it from the other iMac, I am informed that the file is "read only".
  I can obviously change the privileges of the file in the information window, but I have to do on a file per file basis and this takes too long.
  Is it possible to change settings in order to create files which are always "read/write" for everyone?
  And, secondly, since I have several existing files whose privileges I should manually change one by one, is it possible to make global changes of their privileges?
  Thanks in advance
  Best regards

  couple of different changes - 1st, if you want to share folders, doing your whole documents folder is not the best way.  Since both your computers can handle AidDrop, that's what I would recommend - http://osxdaily.com/2011/11/14/how-to-use-airdrop-in-mac-os-x/ - as it create an instant Ad-Hoc network between the two computers and then let's it done. 
  A second possibility that may not be what you're looking for, is to use google drive or some similay cloud sharing app to sync the documents back and forth.  both of these solutions will transfer the files well, but the airdrop may be simplest

• How can I change the permissions on a read only external HD

  I have a WD external HD and I am transferring a file more than 4GB in size. The current partition scheme supported by Ma, being FAT 32, supports only up to 4GB in file transfer size. If I format the external HD on my PC in a NTFS file format it is supposed to handle file transfers bigger than 4GB. Which is true, but it only goes one way, so for example if I am transferring a file from PC to HD to Mac it works just fine, with a few minor hickups, but the other way it does not work at all. So if I want to add anything onto the external HD being hooked up to my Mac, and still being in NTFS format I get a message saying that I do not have sufficient privileges, and under drive info it says that it is read only. Any help on the topic, please.......All the best
  Rafcio

  Hi Rafcio
  I get a message saying that I do not have sufficient privileges, and under drive info it says that it is read only. Any help on the topic, please
  Basically, this is not a privileges problem, it is a limitation of the formats. OS X can read NTFS, but not write it. See How to transfer data from a PC to a Macintosh:
  Mac OS X 10.3 and 10.4 work with local NTFS-formatted volumes. The volume will be read-only.
  … and Boot Camp 2.0, Mac OS X 10.5: Frequently asked questions:
  Mac OS X can read and write FAT volumes, but only read NTFS volumes.

• Want to create a Read Only user for a given app owner user

  Hi Folks,
  We have an application owner schema, lets call it OWNER, which has different objects living under it.
  Now, for certain reasons, the app group wants a read only user which should be able to view objects living only in OWNER. It would only be able to read things, and have no create or alter types of priv to be able to change anything.
  The first idea was to create a new user (e.g. RO) and give this explicit grants (select only) for all objects in OWNER. Though this works, is a maintenance havoc, since everytime there is a new object in OWNER, you have to remember to give explicit grants to all RO (or RW ) kind of users.
  What i am looking forward to is, some sort of privilege or role concept that apply on the user level, and not on object level. something that allows me to say, all objects of this schema (e.g. OWNER) are visible to user RO. Other restrictions on RO would control read or write behaviour.
  Does this thing exist ? please point me to the documentation/example..
  regards
  raghav..

  CREATE OR REPLACE TRIGGER myTest.trg_mytest
  AFTER DDL
  ON myTest.SCHEMA
  DECLARE
       lv_obj_type VARCHAR2(20) := TRIM(UPPER(ora_dict_obj_type));
       lv_evt_type VARCHAR(20)      := TRIM(UPPER(ora_sysevent));
       lv_obj_name     VARCHAR2(30) := trim(UPPER(ora_dict_obj_name));
       lv_role_name     VARCHAR2(30) := 'myTest_RO';
       lv_stmt          VARCHAR2(4000) := NULL;
       ln_job_nr     NUMBER;
  BEGIN
       IF lv_evt_type != 'GRANT' --lv_obj_type <> 'OBJECT PRIVILEGE' --
       THEN
            DBMS_JOB.SUBMIT(ln_job_nr,'begin execute immediate ''grant ' || ' select on ' ||
                                     lv_obj_name || ' to ' || lv_role_name || '''; END;');
       END IF;
     INSERT INTO TB_EVT_LOG(d_date, description)
     VALUES(SYSDATE,  lv_obj_name || '~~~~ created ' || lv_obj_type || '~~~~' || lv_evt_type );
     EXCEPTION
       WHEN OTHERS THEN
         RAISE;
  END trg_mytest;
  /This works. But, my problem is that it is not able to filter out the Grant statement itself, Its logging an entry for the grant (as a ddl operation as well).
  what am I doing wrong here ?
  regards
  raghav..

• Read-only access (hide a portion of the config)

  Is there a way to alloww read-only access to only a portion of the config.  I have customers who are requesting read-only access, but i don't want them seeing portions of the config. 
  Any help or suggestions would be greatly appreciated.  Thanks

  If they have an enable level login they will be able to see the whole configuration (absent encrypted passwords assuming you're using service password-encryption).
  You can make logins more granular and prevent customers from having, say, the ability to execute arbitrary commands such as "show run". You could, for instance setup a given user to only be alllowed to execute "show interface status" etc. NX-OS has this ability pretty much 'baked-in'. For IOS-based systems, a bit more work is required.
  Here is a guide for how to do it if you use TACACS for AAA:
  https://supportforums.cisco.com/docs/DOC-15765
  If you're using local authentication, you can do similar things using either privilege levels or cli views:
  http://www.cisco.com/en/US/docs/ios/12_2t/12_2t13/feature/guide/ftprienh.html
  http://www.cisco.com/en/US/docs/ios/12_3t/12_3t7/feature/guide/gtclivws.html
  http://www.networkworld.com/community/node/57553
  Hope this helps.