Best way to provision users in LDAP on a schedule?
Hi,
I am trying to work out the best way to automatically create users in an LDAP resource. the sceanrio is as follows:
I have an authorititive directory from which I wish to pull users into IDM which is under my control. I have another directory which I want to provision users to. It does not have a changelog - I'm not sure that active synch will work? This directory is not under my control so I can't simply add one.
I want to update the list of IDM users nightly from the authorititive directory then push the changes to the other directory.
I read on here about per-account workflows, I have 10k accounts at present, but this is likely to grow quickly, so I guess that has to be ruled out on performance grounds?
Can anyone suggest a way to create users in the remote directory. could I have a workflow which iterates through all the IDM users and provisions an account if it doesn't exist? how would I configure and schedule this?
Thanks for your help,
Toby.
Edited by: Toby.ORourke on Jan 7, 2008 1:48 PM
You stated, "This directory is not under my control so I can't simply add one", can you expand on this? Do you not have an account to connect to this directory? Do you not have a resource adaptor for this directory? If you do not have a resource adaptor you will have difficulties connecting via sim, it is not impossible. You can connect to and ldap directory using the jndi api in java.
Your questions are of a larger design question that I feel might be out of context for this forum based on business rules we cannot answer.
Similar Messages
-
Question on LDAPSync Post Enable Provision Users to LDAP task
Hi All,
Can you please clarify my doubt on
I created a user "testaccount" in OIM and via ldapsync, it gets created in OID.
Now, I manaully deleted that user "testaccount" in OID and wants to recreate the user account again in OID. Will this schedule task "LDAPSync Post Enable Provision Users to LDAP" solve my purpose or not?
Regards,
SunnyI would not expect the account to be re-created. As far as OIM concerned it is in OID, as it was reconciled from OID, and OIM has a record of it's DN and GUID. If OIM later sees the account as disappeared it just treats this as an operation error, and does not update itself to say the account is deleted.
Have you run the LDAP Sync user deletion reconciliation job? If so it should have deleted the user in OIM. You can then create a new user with the same name (but different logon unless you set the system property to allow logon re-use), to create a new OID account.
If you do want to create the same user in OID without deleting and recreating the OIM user, via this post-create scheduled it is possible, but involves messing about with the OIM user record in the database to cleat out its old DN and GUID. In that way OIM thinks the user is not in LDAP and should try to recreate. -
Whats the best way to create USER variable in BI Apps?
I have just installled BI Apps and am trying to integrate EBS R12 with OBIEE 11g
We have USER variable already defined in the BI Apps rpd.
In EBS Security context init block i need to define USER variable, but when i define it... it says *'USER' has already been defined in the variable "Authentication"."USER"*
Whats the best way to create USER variable for EBS Security Context init block?
1) Delete the existing USER variable and then define a new one ( in this case all the places where USER variable is getting used in the rpd would become <missing>)
And i was told that it should not be done.
Let me know how can it be done.
Thanks
AshishDisable existing Init block and then double click on USER variable and hit on NEW... button to create new Init block
Thanks
Edited by: Srini VEERAVALLI on May 1, 2013 4:18 PM -
Best way to save user's choices
Hello everybody
I am working on a Website built on JSP and Servlets . One of the features of the site is to give user the chance to subscribe to different newsletters under different categories.
There are 6, 7 available categories. So for example, user1 surfs to the page which displays category sport and under that some options (check boxes) and he can choose zero or more newsletters, and he clicks to add the next catetory options , for example entertainement. He may choose to go to final summary page without seeing all the categories.
From the summary page , something like this is displayed to user if he has choices from 3 categoires of Sport , Social, Home ; but he did not choose anything from Movies and other categories:
Sport : edit (hyperlink) , remove (hyperlink)
Social : edit (hyperlink) , remove (hyperlink)
Home edit (hyperlink) , remove (hyperlink)
The user should have a choice to go back to each category page and edit it (he will see the page of that category with his previous choices in check boxes) .Another option is just by clicking the remove link in the final summary page, to remove that category and all the values chosen for that category.
I am new at Java and I'd be grateful if you help me with my questions:
1. What is the best way to keep user's choices as he surfs and adds options under each category ? I thought of using session vars , in form of 2 dimentional arrays, but I wonder if there is a better more efficient way ?
2. At the last page, user is shown the category names with two links beside them , edit and remove ... could you also advise what is the best way to implement this as well? For example if I use array session vars, I am not sure how to display that particular page again with his previous choices shown .....
The categories and options under each are read from database. User's choices are not commited to DB until he reviews the summary and clicks confirm button at the last stage.
Thank you in advance
VajraYou continue along the same lines; keep the DTO in the session as an attribute. When you display your JSP, read the appropriate values for choices from the DTO and set your checkboxes/ radio buttons to 'selected' if they should be.
When the page is submitted, read the parameters from the form submit and update your session attribute ( DTO ) to reflect any changes the user might have made like selecting a new option or deselecting a previously selected one.
People on the forum help others voluntarily, it's not their job.
Help them help you.
Learn how to ask questions first: http://faq.javaranch.com/java/HowToAskQuestionsOnJavaRanch
(Yes I know it's on JavaRanch but I think it applies everywhere)
---------------------------------------------------------------- -
what is the best way to move user data and settings from one system to another? and how about backing up users? thanks in advance...
Just wanted to clarify:
1. Mike Bombich's method entails moving the entire /Users folder to another drive so everyone's home is moved?
2. David Pogue's method (as described in the Missing Manual) only entails moving individual, selected home folders to another drive (and no soft links needed)?
3. It sounds like Pogue's method is preferable anyway (for the paranoid at least), so if the 2nd drive dies or needs maintenance, I can still login as a user whose home folder is in the boot drive?
4. So, if I use Pogue's method, all that is needed are the steps listed in my original post above, and nothing else?
Thanks. -
What's the best way to get user testing of our app (we're based in the UK)
Hi all.
We've just developed our first app for Palm and would really like to get some feedback from Palm users (our app allows users to take photos and send them as real printed postcards. We'd be very happy to give users free postcards in exchange for feedback).
The problem we have is that Palm users are pretty sparse in the UK. We've found that user testing with non-Palm users becomes handset testing rather than app testing. We have to teach them how to use Palm ("Where's the back button?") and so the testing mainly focuses on the particularities of Palm rather than our app. Plus, we don't benefit from the user being able to compare to other Palm apps.
Any advice on the best way to get feedback from Palm users? Especially as they'll need to download the SDK and install our app using it in order to get it onto their phones.
If any of the users of this forum are interested in giving the app a go and sending us feedback, I'd love to send you the IPK and then chat. Just send me an email using [email protected]
Our app is available for Pixi+, Pre+ and Pre2.
Thanks,
Freddie.
Post relates to: Pixi Plus p121ueu (SFR)Hello freddie:
Welcome to the Palm Forums. Thank You for the offer. I highly suggest offering it up
to our many enthusiasts on Twitter as a beta with the #webos hashtag or joining
the Precentral.net community and list it in a topic there, homebrew beta. You would
get better beta response if you Package your app and put it in an ipk to simplify
the install.
Hope that helps... Best of luck with your app!
notimeoff -
Best way for multiple users to edit same pics and catalog
Dear All
Please can I pick your brains about how best to arrange things so that my wife and I can edit the same stock of photos (not necessarily simultaneously, which I take it could cause problems).
We will soon have bought (unless advised otherwise!) two Apple MBPs (since we tend after long days at work to edit on the sofa!).
I take the options are roughly: external drives, sticks, cloud, network. In detail …
A. We keep the pics and catalog on an external hard drive which whoever’s editing plugs into their computer. Downside: it’s a bit irritating when editing or showing pics to someone to have to keep an eye to ensure the USB cable doesn’t get knocked out; it’s somehow nicer to be self-contained.
B. Same as A, but using a 512GB or 1TB memory stick instead. Downside: the sticks are still pretty big, so same downside as A, to an extent, and also (is this right?) I’ve been told that memory sticks are relatively unreliable.
C. We keep the pics and catalog in the cloud and wirelessly edit them there. Downside: perhaps impossible, or at any rate too slow?
D. Same as C, but using some sort of on-site server or drive (I’m a bit out of my depth here), perhaps like Apple’s Time Capsule. Downside: perhaps impossible, or at any rate too slow?
Are there other options? For example: is there an option where the pics reside on my MBP’s internal SSD but, in some very easy way I can get them onto an external drive if my wife wants to edit or take them somewhere? (If there is, I should ensure I buy a MBP with a big enough SSD; otherwise, I needn’t worry about that so much.)
Perhaps there’s an option involving smart previews, which I am just beginning to get my mind around?
Any asdvice you have would be MOST welcome.
Thank you.
David2. Keep the images (unlike the catalog) on a networked drive and edit either (a) them or (b) smart previews of them (stored, I guess, on the computer of whoever is editing them, either my wife's or mine).
Even though I have mentioned this a few times, you do NOT need smart previews if the images are available. It's an extra step, completely optional, done only for speed purposes, and to be honest, if your catalog is on a thumb drive, that may be the speed limitation, not the speed of loading photos. In addition, smart previews are stored with the catalog ... I do not think you can put them on a different drive.
3. Keep the images (unlike the catalog) on my MBP's internal ssd, and network my computer to my wife's so she can access either (a) them there (when I am around) or (b) smart previews of them.
Using the SSD for images is not going to produce speed benefits, other than trivial benefits that you probably can't even notice.
a. I take it 1 would deliver pretty good performance. I sometimes worry that it might seem mad to get an MBP with a fast internal ssd if I then don't use that ssd for images! But I guess the internal ssd will still deliver good speed simply in terms of housekeeping, I take it, even if the machine has to go to a stick for the images. Right?
I remain skeptical that a catalog on a thumb drive would produce "pretty good performance", but I admit that I have not tried. I fail to see what benefit you think you are getting from the SSD, "good speed simply in terms of housekeeping" is a phrase that I am not understanding. Yes, there are benefits to putting operating system and software on an SSD, but that's not what you are talking about, is it?
b. By contrast, I take it that 2 and 3 really would be quite sluggish on the original images option, i.e. if someone were editing original images located on a network drive (whether that's a third drive or my internal drive, with my wife editing them wirelessly). Yes?
No. Here's a major misundertanding on your part. The speed of the drive where the images are stored has little effect on the performance speed of Lightroom. Ian Lyons did a study, read it for yourself. A network drive would not cause performance issues in Lightroom, unless the network was failing to perform. Wireless? Well that's a different story, who knows, you haven't specified what type of wireless or the speed of the wireless
c. But would 2 and 3 work not only better, but pretty well, if the person editing were editing only smart previews?
Possibly, but I reject the premise that 2 and 3 are sluggish because of the location of the photos, it may be sluggish because your catalog is on a thumb drive.
d. Even if so, IF I can get a thumb drive which is bigger for the images, there doesn't seem much point going for 2 or 3, and some point in not doing so, i.e. editing smart previews has its limitations, and on option 3 my wife wouldn't be able to edit when I was travelling (unless we'd taken steps in advance to make smart previews of all the relevant pics)? Or perhaps this last point is wrong? Does LR make smart previews, locally, of ALL pictures in the catalog?
Number 2 is a very reasonable solution, even without smart previews, it is fine if you are accessing photos on a network drive. The speed limitation is the speed of accessing the catalog on the thumb drive.
e. What's the best way of backing up the images? I currently back up the catalog BOTH to dropox and to (yet more) external drives that I then take off-site, to the latter of which I also backup the images. I guess that's the best way? Apple's Timecapsule sounds good but wouldn't get anything off-site. And I take it uploading thousands of raw images to the cloud would be either impossible or costly in terms of time or money?
All backup strategies are best when they are automatic (i.e. don't rely on the human user to remember to do it) and backups must go on a different physical disk than the originals. Many people backup to the cloud, see for example, the commercial service called Carbonite. In your backup strategy for Lightroom, you need to make regular, automated bakcups of the images and also of the catalog file. -
Problem with activesync provisioning user from ldap to red hat
hello,
i am using activesync to provision the user from ldap to red hat linux . i am getting the following error message
An error occurred adding user '#########' to resource 'Red Hat Linux'.
Script failed waiting for " PASSWORD:" in response "passwd: Only one user name may be specified.
_,)#+(:"
Script processor timed out with nothing to read and the following unprocessed text: "passwd: Only one user name may be specified.
_,)#+(:".
when to try to assign redhat resource to a user from the idm the user is getting provisioned to redhat successfully .active sync form is working for all the other resource except the redhat.
can anyone give me solution for the above problem
thanks in advance.Have you set the xhost as ROOT (xhost +hostname), and then as the ORACLE user type "export DISPLAY:0.0" (without the quotes of course) ? This needs to be done prior to running the installer. Try this site for further information - http://www.puschitz.com/OracleOnLinux.shtml
-
The best way to implement user's access level via Servlet & JSP (or more)?
Hi all,
I am trying to implement user's access level in an application to allow certain access to certain page or components within a page (buttons, etc.). From my experience with JSP, Java, servlet, I am think of having the jsp/servlet to check for user's access level to decide what jsp components or forward page to go to next but that doesn't seem clean or elegant way to handle it.
Any suggestions of how to do this? Are there other technologies (Struts) out there that can handle this?
Thanks so much in advance for your feedback or suggestion,
Thong BuiI haven't experienced a lot in defining security roles before, and there is probably a lot to learn about this area. However I might be able to assist you in some way. Whenever I have 2 or more objects that need to be stored in the session, I create a class called UserContainer. Say you have three properties:
empSsn (String) , isAdmin (Boolean), isAgent (Boolean), then:
public class UserContainer implements Serializable {
private String empSsn = null;
private Boolean isAdmin = null;
private Boolean isAgent = null;
public UserContainer() {
super();
public void setIsAdmin(Boolean isAdmin) {
this.isAdmin = isAdmin;
public Boolean getIsAdmin() {
return this.isAdmin;
// getters and setters for the other properties
Of course after you decide (in your sevlet) whether the app user is an administrator or an agent, you can set the corresponding property in the user container, and then save it in the session. Afterwords, in any jsp, you can decide to display a certain element (e.g a button) after you check the user's role. Example:
// Welcome.jsp
<% UserContainer userContainer = (UserContainer) session.getAttribute("userContainer");
boolean isAdmin = userContainer.getIsAdmin().booleanValue();
boolean isAgent = userContainer.getIsAgent.booleanValue();
if(isAdmin) { %>
<!-- HTML/Code corresponding to an administrator -->
<% } if(isAgent) { %>
<!-- HTML /Code corresponding to an agent -->
<% } >Of course, this is a very simple way of doing such a task, you will find more secure ways if you look at LDAP or something of that matter.
Cheers -
Best way to link user form with user table
Hi all.
What is the best way to link an user form with a user table (with all of the functions, add, update...)? I have created a simple form, and the question is next:
depending the type object of the user table (document, master...) i have facilities to imlement the basic operations in the form? if i create an UDO i have the functions but i want to use the form that i created with a screen painter.
Thanks.Hi again i want add a new comment please.
If i want do all functions (add,update...) of my form in my user table, and i want my user table is a <b>type document</b>? how can add new lines in my user table with objet <b>type document</b>? because when i make the instance i nedd to say what type of document is (item,order...) and when i do an add(), not add() in my user table. In what moment or how can assign that the add,update functions... affect in my table?
Thanks again. -
Best way to ask user for duration ??
I am wondering what the best way to set up a dialog to ask the user for a duration is ?
I need to query the user for the following duration example 1 month 3 days 5 hours 15 mins
I have tried messing around with JSpinners with date formats but they really only work with fixed calendar dates not calendar durations...
Any ideas on a neat approach..
Currently i have an individual number spinner for each of the items which looks ugly and is hard to manage as you have to take care of up to 23 hours but 24 is one day so one day etc etc..
Thanks in advance
-AlanYou continue along the same lines; keep the DTO in the session as an attribute. When you display your JSP, read the appropriate values for choices from the DTO and set your checkboxes/ radio buttons to 'selected' if they should be.
When the page is submitted, read the parameters from the form submit and update your session attribute ( DTO ) to reflect any changes the user might have made like selecting a new option or deselecting a previously selected one.
People on the forum help others voluntarily, it's not their job.
Help them help you.
Learn how to ask questions first: http://faq.javaranch.com/java/HowToAskQuestionsOnJavaRanch
(Yes I know it's on JavaRanch but I think it applies everywhere)
---------------------------------------------------------------- -
Best way for a user to stop a program from running - B1 V8.8
Hi
I have written some import routines for a customer which import invoices and other documents into SAP from an ascii file
These can take some time to run depending on the size of the file
What's the best way of allowing the user to cancel the program ?
I have tried adding application.doevents but it doesn't seem to help when I try clicking on the cancel button on the form
Thanks for any ideas
Regards AndyHello Andy,
1.st Use transacation to roll back when user presses the Cancel Button
2.nd You may run the import file in a different thread from the addon, with a static global marker that the import must be cancelled or not
3. Rigth now, because of a different thread, the addon will keep alive and wait for the cancel button event.
4. when cancel button event raises, you send join into the separated thread, and stop it (eg cancel the thread).
5. You can rollback the transactions done by the thread.
I think you must do a multi threaded addon to handle this case.
Regards
János -
Best way to allow user to change text and image
Hi,
A friend wants to change his product images and pricing etc.,
on his static web pages.
At the moment each product is within a cell in a table and
the cell below is where the text for details and pricing is. This
is the only area he will need to be in. Each product and edtails in
each cell of a table on each page.
He does not know anything about web design, Dreamweaver etc.,
but wants to do update himself.
I would like to know the best way for me to go about this
using DW CS3. Maybe there is another script or program that will
allow this.
Thanks
ozozstar wrote:
> Hi,
>
> A friend wants to change his product images and pricing
etc., on his static
> web pages.
>
> At the moment each product is within a cell in a table
and the cell below is
> where the text for details and pricing is. This is the
only area he will need
> to be in. Each product and edtails in each cell of a
table on each page.
>
> He does not know anything about web design, Dreamweaver
etc., but wants to do
> update himself.
>
> I would like to know the best way for me to go about
this using DW CS3. Maybe
> there is another script or program that will allow this.
>
> Thanks
>
>
> oz
>
Hi,
You could use....
An easy CMS like -
http://www.cushycms.com/
Contentseed -
http://contentseed.com/
Contribute -
http://www.adobe.com/products/contribute/
HTH
chin chin
Sinclair -
Best way to allow user to create JFrame
Hi,
I'm working on a part of an application that needs to allow a user to create some type of "Frame". I'll give an example: when you use an IDE an create a JFrame you can drag object to the frame until your happy with it. I you like to do something similar, obviously much more simple than an IDE.
I have been looking at some libraries, specially XML - SWING, but not sure if its the best solution. I don't want to reinvent the wheel. So anything that could help, is more than welcome.
thanks.I may not have explained myself well here.
I want to only allow the operator to select sequences that are set up to be able to run independently. I don't want the callbacks and initialization sequences to show up in the list the operator can choose from.
The way I figured out how to do it is a little tricky, and I think I may have found a bug.
This is what I did:
For the sequences I do not want to be selectable, I setPropFlags_Hidden to true. (Sequence Properties...Advanced...Flags, check the box).
This immediately hides the sequence. In order to see all hidden sequences to edit them, set Configure->Station Options...Preferences->Show Hidden Properties.
I wanted to set this up automatically for the sequence file, so I added a SequenceFileLoad callback to set ThisContext.RunState.Engine.StationOptions.ShowHiddenProperties = False, and a SequenceFileUnload callback to set it back to true.
The bug I think I found:
This solution works when I open the sequence file in the editor, but not when I use the simple operator interface. The simple operator interface will show the hidden sequences, but only the unhidden sequences show up in the RUN_SEQUENCE control. If I make sure the station is configured not to show hidden properties BEFORE I run the simple operator interface, then the hidden sequences are indeed hidden in the Sequences list (except, because I hid MainSequence, the first list entry shows up blank until I select one of the unhidden sequences).
(see also
http://forums.ni.com/t5/NI-TestStand/Ignore-a-Sequence-in-a-SequenceCall/m-p/1754984/highlight/false...) -
Best way to create user interfaces
Hello Everyone,
So far my work with sap NetWeaver development was on the background processes but now i need to create some user interfaces, i read there are more than one way to do this like jsp, HTMLB , WebDynpro , and some others i think.
Can you give me some advises (and guides if it's possible) about what can i use?
The user interfaces must have the same look and feel as the SAP modules. I need to include some uploadcontrols, table views with sorting and paging features, buttons, list box, options buttons, check buttons, etc.
Also i need to send emails on demand and a task scheduler to send remaining by email.
Is there a user interface designer like dreamweaver or something like that to create user interfaces?
Hope you have some time to help me.
Regards.Webdynpro java is best solution in userinterface devlopment
check the below links.
https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/40239f38-a94a-2b10-c583-9b89187c3856
Send Email in webdynpro for java
http://help.sap.com/saphelp_nw04/helpdata/en/91/9c2226df76f64fa7783dcaa4534395/frameset.htm
SDN RSS Feeds spider using WAS Timeout Service
webdynpro sample tutorials
Now it is located under the link https://www.sdn.sap.com/irj/servlet/prt/portal/prtroot/com.sap.km.cm.docs/documents/a1-8-4/web%20dynpro%20sample%20applications%20and%20tutorials.htm.
Koti Reddy
Maybe you are looking for
-
My iphone5 no longer shows up as a device on my computer when I plug it in to a USB port on my laptop. It does not appear in iTunes as connected, either. It does show that it is connected and charging on the phone itself. This is a new problem. I
-
Offline backup scheduled in DB13 failed
Hello everybody, Whole database offline + redo log backup scheduled in DB13 failed. We are running SAP on Oracle 10.2.0.2 on HP UX B.11.23 Here is the portion of log mentioning the error. BR0202I Saving /oracle/TU4/sapbackup/.tape.hdr0
-
Rebel t3i viewfinder is blurry, not the diopter adjustment.
Ok, I own a Rebel t3i. Everytime I look in the viewfinder, it's blurry. However the picture comes out crisp. It isn't the diopter adjusment. Sometimes when I hold the camera up and wiggle it, the viewfinder will be clear for a couple seconds, then it
-
Hi All, Is there any report in SAP ECC 5.0 version through which we can check total cost accumulated for each project. We are looking for following type of standard SAP report on Project System Name of project Cost of the proje
-
Problems with the technical assistance and Warranty in BRAZIL
My English is not the best, but I will do my best. I've bought an Iphone 4 from a telephony company called TIM here in Brazil, and after 15 days the device was not working anymore. I sent it to the technical assistance 32 days ago, and they said yest