Changing Role created with Customizing Auth. Utility

I created a role in PFCG using the Customizing Auth. option under Utilities by referencing a project view that I created in the IMG. My intent was to create a security role with access to all of the SPRO tcodes and related security objects. I then modified that role so that it only granted display access to these transactions.
Later, I discovered that this role also granted access to SE38, SE37, SA38 and other critical transactions. I know this will raise concerns with my auditors so I attempted to delete these transactions from my role. I was unable to do this because my role was created with the Customizing Auth. option.
Does anyone know of a way that I can remove these tcodes from the S_TCODE object?
Thanks,
Dennis Beausoleil
<telephone_number_removed_by_moderator>
Edited by: Julius Bussche on Feb 23, 2010 12:04 PM
Please use your business card options for such details.

>
Dennis Beausoleil wrote:
> I created a role in PFCG using the Customizing Auth. option under Utilities by referencing a project view that I created in the IMG. My intent was to create a security role with access to all of the SPRO tcodes and related security objects. I then modified that role so that it only granted display access to these transactions.
>
> Later, I discovered that this role also granted access to SE38, SE37, SA38 and other critical transactions. I know this will raise concerns with my auditors so I attempted to delete these transactions from my role. I was unable to do this because my role was created with the Customizing Auth. option.
>
> Does anyone know of a way that I can remove these tcodes from the S_TCODE object?
>
> Thanks,
>
> Dennis Beausoleil
> <telephone_number_removed_by_moderator>
>
> Edited by: Julius Bussche on Feb 23, 2010 12:04 PM
> Please use your business card options for such details.
Dennis,
In PFCG authorization change, inactivate the S_TCODE auth object then manually add S_TCODE and enter/paste the desired transactions with the exception of SE38, SE37, SA38 and other critical transactions.
Good Luck!

Similar Messages

PE 10 TRIAL: all clips inserted get changed to "created with PE 10 trial version"

Installed PE 10 trial version. when I add clips, immediatly they get changed to " created with Adobe Premier Elements trial version". It happens all the time. Inserting one two or any number of clips, they all get changed to "created with Adobe Premier Elements trial version". I can save the project and when I open it up it's the same results. Any ideas as to what to try to solve this problem?

>clips are from a canon powershot a710 camera
Video from a still camera will "often" use the MJPEG (Motion JPEG) codec... but, read on...
Read Bill Hunt on a file type as WRAPPER http://forums.adobe.com/thread/440037
What is a CODEC... a Primer http://forums.adobe.com/thread/546811
What CODEC is INSIDE that file? http://forums.adobe.com/thread/440037
Report back with the codec details of your file, use the programs below... a screen shot works well to SHOW people what you are doing
http://forums.adobe.com/thread/592070?tstart=30
For PC http://mediainfo.sourceforge.net/en or http://www.headbands.com/gspot/
And... more on learning the program
Importing Video http://forums.adobe.com/thread/1065281
Saving & Sharing http://forums.adobe.com/thread/1051093
-v10 http://www.amazon.com/Muvipix-com-Guide-Premiere-Elements-Version/dp/1466286377/
-and http://forums.adobe.com/thread/498626
-and http://prodesigntools.com/four-hours-free-video-tutorials-new-photoshop-elements-9-pse9.ht ml
-and http://prodesigntools.com/five-hours-free-tutorials-photoshop-and-premiere-elements-7-and- 8.html
FAQ http://forums.adobe.com/community/premiere_elements/premiere_elements_faq
TIPS http://forums.adobe.com/community/premiere_elements/premiere_elements_tips
Another help site http://muvipix.com/ or http://muvipix.com/phpBB3/
User Guide PDF http://help.adobe.com/en_US/premiereelements/using/index.html
Right click PDF link in the upper right corner and select to save to your hard drive

Custom Composed Look not appearing in Change the Look with custom color palette

Hi,
I created custom color palette, (which was a copy of one of the out of the box ones) and uploaded it to the Themes folder under a different name. I then went to the Composed Looks and created a new Composed Look(using the New
Items), which the seattle master page, and the new color palette that I created.
When I go to Change a Look, the new Composed Look does not appear as part of the options.
When I change the color palette of the Composed Look, to one of the out of the box ones, I see it I the Change a Look page.
What am I doing wrong?
Thanks

I would check two things. First, did you check in the spcolor file you created? Second, I would review all of the properties of your composed look found in "/_catalogs/design/AllItems.aspx". You might want to copy and paste all properties (except
title and name) and see if your new composed look shows up in "Change the look". Then link to your own custom spcolor file.
Eric Overfield - PixelMill -
blog.pixelmill.com/ericoverfield -
@EricOverfield

Install changes my path ( with no auth ) and sets it wrong ?

Hi,
oracle installs two jre 1.3.* and 1.1.*.
Adds the paths to both bin dirs to the system enviroment.
( I'd like to be asked if i want to change my enviroment ).
So i go on convinced i'm using jre 1.4 that i always append at the END of the path
( since i do NOT that there are already two jre paths in it )
But this would be fine, after all, if it worked !!
Instead i had to spend days trying to understand NoClassDefFoundError(s)
[ java.sql.DataSource, java.sql.Savepoint ]
until i discover that oracle forced me to use:
1. on my system
2. for any java invocation
3. with no explicit authorization
a jre different from the one i wanted to use.
I froce my program to run on the jre I installed on MY system and ORACLE's program
( eg. OCIConnectionPool.java ) wirks fine.
Regards
Alessandro Scotti

Hi,
oracle installs two jre 1.3.* and 1.1.*.
Adds the paths to both bin dirs to the system enviroment.
( I'd like to be asked if i want to change my enviroment ).
So i go on convinced i'm using jre 1.4 that i always append at the END of the path
( since i do NOT that there are already two jre paths in it )
But this would be fine, after all, if it worked !!
Instead i had to spend days trying to understand NoClassDefFoundError(s)
[ java.sql.DataSource, java.sql.Savepoint ]
until i discover that oracle forced me to use:
1. on my system
2. for any java invocation
3. with no explicit authorization
a jre different from the one i wanted to use.
I froce my program to run on the jre I installed on MY system and ORACLE's program
( eg. OCIConnectionPool.java ) wirks fine.
Regards
Alessandro Scotti

How to change Sold-to party in S.O when creating with ref to Quotation

Dear All,
We are creating Sales Orders with reference to Quotation.
The requirement is that the same quotation will be used for different sold-tp parties when creating sales order. Currently the System does not allow to change the Sold-to when creating Sales Order for a different Sold-to with reference to a Sales order (that was created with a different Sold-to).
Please let me know the best possible options so that the sold-to party in the sales order can be changed when creating with reference to Quotation that is created with a different sold-to party.
Regards
Venkat.

Hi,
Try This.
IMG-SD-SALES-MAINTAIN COPY CONTROL FOR SALES DOC-SALES DOC TO SALES DOC.
Choose the required sales DOCs and change the settings of Coping Requirements to 2
I think this will solve ur issue..
Regards,
boseavi

Can we modify the standard AOL Message with custom Message in Seeded Page?

Hi,
I have a requirement to change AOL Message with custom Message in Seeded Page.
In a seeded OAF page when a user clicks on a submit button a standard AOL Processing Message is populated.
I Need to change the Standard Message and call Custom Message.
Did controller extension and found that both the messages are populating.
called the code after super and tried to call before super also.
Did any one face this issue and resolved it. Kindly provide the solution.
Regards
Chaitanya

Hi Gyan,
I have tried by extending a sample custom controller.
Below is the code of TestCO calling create message
public void processFormRequest(OAPageContext pageContext, OAWebBean webBean)
    super.processFormRequest(pageContext, webBean);
      OAApplicationModule am = pageContext.getApplicationModule(webBean);
      if (pageContext.getParameter("Test") != null)
          OAException confirmMessage = new OAException("AK", "FWK_TBX_T_EMP_CREATE_CONFIRM",    null,
          OAException.CONFIRMATION, null);
          pageContext.putDialogMessage(confirmMessage);
}Then I extending the TestCO to XXTestCO and it is calling Update Message
    public void processFormRequest(OAPageContext pageContext, OAWebBean webBean)
      super.processFormRequest(pageContext, webBean);
        OAApplicationModule am = pageContext.getApplicationModule(webBean);
        if (pageContext.getParameter("Test") != null)
            OAException confirmMessage = new OAException("AK", "FWK_TBX_T_EMP_UPDATE_CONFIRM",    null,
            OAException.CONFIRMATION, null);
            pageContext.putDialogMessage(confirmMessage);
    }got below Confirmation
Confirmation
Employee &EMP_NAME with the number &EMP_NUMBER has been created.
Employee (&EMP_NAME) has been updated.
Tried below approach also calling the message before super class
    public void processFormRequest(OAPageContext pageContext, OAWebBean webBean)
        OAApplicationModule am = pageContext.getApplicationModule(webBean);
        if (pageContext.getParameter("Test") != null)
            OAException confirmMessage = new OAException("AK", "FWK_TBX_T_EMP_UPDATE_CONFIRM",    null,
            OAException.CONFIRMATION, null);
            pageContext.putDialogMessage(confirmMessage);
      super.processFormRequest(pageContext, webBean);
    }got below Confirmation
Confirmation
Employee (&EMP_NAME) has been updated.
Employee &EMP_NAME with the number &EMP_NUMBER has been created.
My requirement is to print only the message which I have kept in Extended controller i.e. Update message
Regards,
chaitanya

Custom Auth. Object with Profile and role assignment not working

Hi,
I have created custom Authorization Object with field ACTVT with allowed values - 01,02, 03. Now test it with custom program using AUTHORITY-CHECK OBJECT 'Z_AUTHORIZ' it is working fine and returning sy-subrc 12. At this point i have not created any role using this Auth Object.
Now I have created custom role ZPM_**** and assigned above Auth object to it with value ACTVT 03. Assigned this role to user.
When I try to test the above custom program with any ACTVT value it is giving sy-subrc as 0. Used below custom code in program.
AUTHORITY-CHECK OBJECT 'Z_AUTHORIZ'
ID 'ACTVT' FIELD '01'.
Am I missing anything? The profiles are generated correctly.
Best Regards,
Nilesh

Below are the screen shots for PFCG:

I am changing from Word to Pages. I have created my custom template with all my styles etc and that is what comes up when I go for a New Document. Fine. How do I get it to use the same Custom Template when I use Pages to open a Word document?

I am changing from Word to Pages. I have created my custom template with all my styles etc and that is what comes up when I go for a New Document. Fine. How do I get it to use the same Custom Template when I use Pages to open a Word document?

The template is a document in itself, it is not applied to an existing document whether it is a Pages document or a Word document converted to a Pages document.
You would need to either copy and paste content, using existing styles, or apply the styles to the converted Word document.
You can Import the Styles from an existing document and those imported Styles can be used to override the current document's styles:
Menu > Format > Import Styles
The process is simplified if the styles use the same names, otherwise you will need to delete the style you don't want and replace it with the one that you do want when asked, then the substitution is pretty straightforward.
Peter

Change/Create purchase order with customer BSART via CIF

Hi,
we create Purchase Orders in SCM SNP. Those POs are passed via CIF to R/3, but the Purchase orders should be created with a customer BSART.
In SCM the POs currently use the standard ATPCategories. I found an exit in CIF_PO_INBOUND where you can change BSART, but at this point there is no access to the data from APO.
Has anybody already implemented such a scenario?

Hi Michael,
I used CIF outbound user exit from APO , for filtering purchase requisions going to SAP R/3.
You are creating purchase oders in SCM APO and transferring the same to SAP R/3 / ECC through CIF.
We may have two options : Change the data before publishing to SAP R/3 from APO. This happens in APO , outbound .
Otherwise we can change the data in the PO before it is created in SAP R/3 , for this we use user exit inbound SAP R/3.
You have option of changing or enahancing purchase order data inbound in SAP R/3, before the PO is created in SAP R/3.
The enhancement is CIFPUR02.
With this enhancement, you can change purchase order data from your APO system before a purchase requisition or purchase order is created in the ERP system
The enhancement contains the following components:
EXIT_SAPLCPUR_001
You can use this enhancement to change purchasing data (purchase requisitions, purchase orders) in ERP inbound. To do this, you can change the existing transfer data or include additional customer-specific data in your own tables.
Other enhancements in the same
EXIT_SAPLMEPI_004
With this enhancement, you can change the header data of a purchase order before it is created in the ERP system.
The following data can be changed:
Document type (parameter CP_BSART)
EXIT_SAPLMEPI_007
You can use this enhancement to specify the document type of a purchase requisition or purchase order when they are created in the ERP system (parameter CP_BSART).
There are other ehancements which I have not listed.
I assume you can create an enhancemnet projects for incorporating the above enhancements in CMOD / SMOD transactions.
I hope this helps you.
Please confirm.
Regards
Datta

I have a custom template. When I edit it and try to save it asks me to name it and then I end up with an additional custom template. How do I edit the template and save the changes without creating another template?

I have a custom template. When I edit it and try to save it asks me to name it and then I end up with an additional custom template. How do I edit the template and save the changes without creating another template?

Hi Atrec,
If you don't need your old custom template, save your changes with the same template name. It will tell you that this template exists and will ask you Replace? Say yes (if you do want to replace the old with the new!)
To delete unwanted templates, go to Finder > Menu > Go and press the option key. Your Library will show in the Go Menu. Navigate to Library > Application Support > iWork > Numbers > Templates > My Templates.
Delete any unwanted template by dragging it to the Trash or click on it then command-delete.
Having gone to all that trouble to find My Templates folder, right click (or control click) on it and Make Alias. Drag the Alias to any convenient place for a quick way to get back to that folder.
Regards,
Ian.

Client certificate authentication with custom authorization for J2EE roles?

We have a Java application deployed on Sun Java Web Server 7.0u2 where we would like to secure it with client certificates, and a custom mapping of subject DNs onto J2EE roles (e.g., "visitor", "registered-user", "admin"). If we our web.xml includes:
<login-config>
 <auth-method>CLIENT-CERT</auth-method>
 <realm-name>certificate</realm-name>
<login-config>that will enforce that only users with valid client certs can access our app, but I don't see any hook for mapping different roles. Is there one? Can anyone point to documentation, or an example?
On the other hand, if we wanted to create a custom realm, the only documentation I have found is the sample JDBCRealm, which includes extending IASPasswordLoginModule. In our case, we wouldn't want to prompt for a password, we would want to examine the client certificate, so we would want to extend some base class higher up the hierarchy. I'm not sure whether I can provide any class that implements javax.security.auth.spi.LoginModule, or whether the WebServer requires it to implement or extend something more specific. It would be ideal if there were an IASCertificateLoginModule that handled the certificate authentication, and allowed me to access the subject DN info from the certificate (e.g., thru a javax.security.auth.Subject) and cache group info to support a specialized IASRealm::getGroupNames(string user) method for authorization. In a case like that, I'm not sure whether the web.xml should be:
<login-config>
 <auth-method>CLIENT-CERT</auth-method>
 <realm-name>MyRealm</realm-name>
<login-config>or:
<login-config>
 <auth-method>MyRealm</auth-method>
<login-config>Anybody done anything like this before?
--Thanks

We have JDBCRealm.java and JDBCLoginModule.java in <ws-install-dir>/samples/java/webapps/security/jdbcrealm/src/samples/security/jdbcrealm. I think we need to tweak it to suite our needs :
$cat JDBCRealm.java
* JDBCRealm for supporting RDBMS authentication.
* This login module provides a sample implementation of a custom realm.
* You may use this sample as a template for creating alternate custom
* authentication realm implementations to suit your applications needs.
* In order to plug in a realm into the server you need to
* implement both a login module (see JDBCLoginModule for an example)
* which performs the authentication and a realm (as shown by this
* class) which is used to manage other realm operations.
* A custom realm should implement the following methods:
* <ul>
* <li>init(props)
* <li>getAuthType()
* <li>getGroupNames(username)
* </ul>
* IASRealm and other classes and fields referenced in the sample
* code should be treated as opaque undocumented interfaces.
final public class JDBCRealm extends IASRealm
 protected void init(Properties props)
 throws BadRealmException, NoSuchRealmException
 public java.util.Enumeration getGroupNames (String username)
 throws InvalidOperationException, NoSuchUserException
 public void setGroupNames(String username, String[] groups)
}and
$cat JDBCLoginModule.java
* JDBCRealm login module.
* This login module provides a sample implementation of a custom realm.
* You may use this sample as a template for creating alternate custom
* authentication realm implementations to suit your applications needs.
* In order to plug in a realm into the server you need to implement
* both a login module (as shown by this class) which performs the
* authentication and a realm (see JDBCRealm for an example) which is used
* to manage other realm operations.
* The PasswordLoginModule class is a JAAS LoginModule and must be
* extended by this class. PasswordLoginModule provides internal
* implementations for all the LoginModule methods (such as login(),
* commit()). This class should not override these methods.
* This class is only required to implement the authenticate() method as
* shown below. The following rules need to be followed in the implementation
* of this method:
* <ul>
* <li>Your code should obtain the user and password to authenticate from
* _username and _password fields, respectively.
* <li>The authenticate method must finish with this call:
* return commitAuthentication(_username, _password, _currentRealm,
* grpList);
* <li>The grpList parameter is a String[] which can optionally be
* populated to contain the list of groups this user belongs to
* </ul>
* The PasswordLoginModule, AuthenticationStatus and other classes and
* fields referenced in the sample code should be treated as opaque
* undocumented interfaces.
* Sample setting in server.xml for JDBCLoginModule
* <pre>
* <auth-realm name="jdbc" classname="samples.security.jdbcrealm.JDBCRealm">
* <property name="dbdrivername" value="com.pointbase.jdbc.jdbcUniversalDriver"/>
* <property name="jaas-context" value="jdbcRealm"/>
* </auth-realm>
* </pre>
public class JDBCLoginModule extends PasswordLoginModule
 protected AuthenticationStatus authenticate()
 throws LoginException
 private String[] authenticate(String username,String passwd)
 private Connection getConnection() throws SQLException
}One more article [http://developers.sun.com/appserver/reference/techart/as8_authentication/]
You can try to extend "com/iplanet/ias/security/auth/realm/certificate/CertificateRealm.java"
[http://fisheye5.cenqua.com/browse/glassfish/appserv-core/src/java/com/sun/enterprise/security/auth/realm/certificate/CertificateRealm.java?r=SJSAS_9_0]
$cat CertificateRealm.java
package com.iplanet.ias.security.auth.realm.certificate;
* Realm wrapper for supporting certificate authentication.
* The certificate realm provides the security-service functionality
* needed to process a client-cert authentication. Since the SSL processing,
* and client certificate verification is done by NSS, no authentication
* is actually done by this realm. It only serves the purpose of being
* registered as the certificate handler realm and to service group
* membership requests during web container role checks.
* There is no JAAS LoginModule corresponding to the certificate
* realm. The purpose of a JAAS LoginModule is to implement the actual
* authentication processing, which for the case of this certificate
* realm is already done by the time execution gets to Java.
* The certificate realm needs the following properties in its
* configuration: None.
* The following optional attributes can also be specified:
* <ul>
* <li>assign-groups - A comma-separated list of group names which
* will be assigned to all users who present a cryptographically
* valid certificate. Since groups are otherwise not supported
* by the cert realm, this allows grouping cert users
* for convenience.
* </ul>
public class CertificateRealm extends IASRealm
 protected void init(Properties props)
 * Returns the name of all the groups that this user belongs to.
 * @param username Name of the user in this realm whose group listing
 * is needed.
 * @return Enumeration of group names (strings).
 * @exception InvalidOperationException thrown if the realm does not
 * support this operation - e.g. Certificate realm does not support
 * this operation.
 public Enumeration getGroupNames(String username)
 throws NoSuchUserException, InvalidOperationException
 * Complete authentication of certificate user.
 * As noted, the certificate realm does not do the actual
 * authentication (signature and cert chain validation) for
 * the user certificate, this is done earlier in NSS. This default
 * implementation does nothing. The call has been preserved from S1AS
 * as a placeholder for potential subclasses which may take some
 * action.
 * @param certs The array of certificates provided in the request.
 public void authenticate(X509Certificate certs[])
 throws LoginException
 // Set up SecurityContext, but that is not applicable to S1WS..
}Edited by: mv on Apr 24, 2009 7:04 AM

Error creating custom reports. Permissions issue with custom reports

I am having permission issues with reports. I am building a new Configuration Manager 2012 infrastructure and I have configured the Site server on Server1 and the DB is on Server2. Server2 also hosts the Reporting Point and SSRS roles/features. If
I look in Monitoring at the Site Status and Component Status are all green no issues with the setup.
Running SQL 2008 SP2 (no CUs). I have a service account that I used to install Configuration Manager and SQL. This service account is running the SQL service on Server2 and i am using the same account as the Reporting Services Point Account.
I log into the SCCM console with a different user account, lets call it Admin1. This account is a member of the Full Administrator role. I can run any built in report.
When I open the SSRS website and try to create a custom report I connect the DataSource using Windows Authentication. So the Datasource is connecting using the logged in users account. In this case Admin1. I test the connection and it connects fine.
I test this query. (Select * from v_R_System) I only have about 10 workstations discovered so the report shouldn’t be very big. I get an error “The Select permission was denied on the object ‘v_R_System’, Database ‘CM_XXX’, schema ‘dbo’. (Microsoft sql server,
Error: 229)”
I have fixed the SELECT permission error by going into the database (using SQL Management studio) and granting Admin1 Select rights to the Configuration Manager database. I can now run the above query and make custom reports.
My 2nd problem is that other members of the Full Administrator role cannot run these custom reports unless I go into the database and grant them the SELECT permission.
Question:
Should I have to manually go into the database to add SELECT permissions(i could use a group)? shouldnt Configuration Manager take care of this for me?
Maybe the built in reports use the SQL service account rights and the custom ones do not? Am I doing something wrong with the Datasource when I create these custom reports?
What is the correct process for creating custom reports?

I think i am getting closer to a solution. After the Custom report is created. i can go back into the report. Delete the DataSource. Then browse for a dataSource. there is a datasource located in http://server2/reportserver/ConfigMgr_XXX/
That datasource is used by all builtin reports. if you view the properties on the Credentials tab it is set to "do not use credentials" and the option is greyed out / cannot be changed.
it looks like i still need the SELECT permissions on the database to create the report initially but at least i have solved the problem with viewing these reports.
Can anyone confirm that what i did is correct?

BP created with category Person and BP Role Consumer is not replicated

Hello Gurus,
I have created a BP with Category Person and BP Role Consumer but after saving my BP is not getting
replicated to ERP, though in the Clasification Tab i could see consumer is being selected and the Account
group 0170 - Consumer showing up.
I have also checked in PIDE transaction in ERP system this Account group has clasification E which is Consumer.person,and as numbe range is assigned to this Account group
i have checked in middleware there is an error message which says "BP XXXX doesnt not exist as customer,change not possible" and aslo one more message which says "no classification is assigned to BP"
any customizing is missing in CRM system, or only customiaing required is in ERP only?
Thanks and Regards
chandu

Hi,
With respect to your question on below link.
Re: BP created with category Person and BP Role Consumer is not replicated
Please find the below path in ECC
SPRO>Logistic General>Business Partner>Customer>Define Account Groups and Field Selection for Customers.
Select 0170 Consumer account grp and click on details. You will see the Number range in General Data.
Copy that number range and goto below path and check if the number range is internal or external.
SPRO>Logistic General>Business Partner>Customer>Define and Assign Customer Number ranges. The popup will appear and select Define Number ranges for customer master. Click on display intervals. You will see the number range is mainatined internal or external.
Hope this helps.
Regards,
Chandrakant
Edited by: Chandrakant A on Dec 15, 2009 7:41 PM

How can you create a customized page to change user password?

Hello to all,
I would like to create a customized page for a user to change their password. We are using Portal version 3.0.9 on Windows NT/2000. Currently there is a page in portal where a user can change their password.
I tried linking to that page by copying the shortcut url and adding it as an html portlet. The problem is that we want to direct the users to a
page of our choosing when they click on the "cancel" and "ok" buttons. I read in the forums that there is a selfreg.cmd script.
I also read that there is some code that has been available.
Has anyone implemented a customized user password change page? Do you know of any links that might have steps to follow or
more informatioin?
Thanks in advance,
Lindsay

Hi,
I was able to customize the change password screen through a procedure. This is what I did:
* Created a procedure under the Portal30_sso schema:
CREATE OR REPLACE procedure reports_chage_password
site2pstoretoken in varchar2 default null
,p_username in varchar2 default null
,p_error_code in varchar2 default null
,p_submit_url in varchar2 default null
,p_done_url in varchar2 default null
,p_pwd_is_exp in varchar2 default null
,p_password in varchar2 default null
is
begin
htp.htmlopen;
htp.headopen;
htp.title ('<TITLE of Page>');
htp.headclose;
htp.bodyopen;
htp.p('<table width="100%"><tr><td colspan=2 align=center><IMG SRC=<directory of image if you want>"> <hr> </td></tr>');
htp.p('<tr><td colspan=2 align=center>');
htp.p('');
htp.header(nsize => 1 ,cheader => 'Change Password');
htp.p('');
htp.p('</td></tr><tr><td align=right>');
htp.formopen(curl => p_submit_url );
htp.p('');
htp.p ('Username:');
htp.p('</td><td alight=left>');
htp.p(p_username);
htp.p('');
htp.p('</td></tr>');
htp.formHidden(cname => 'p_username',cvalue => p_username);
htp.br;
htp.p('<tr><td align=right>');
htp.p('');
htp.p ('Old Password: ');
htp.p('');
htp.p('</td><td align=left>');
htp.p ( htf.formPassword(cname => 'p_old_password',csize => 30,cmaxlength => 30) );
htp.p('</td></tr>');
htp.br;
htp.p('<tr><td align=right>');
htp.p('');
htp.p ('New Password: ');
htp.p('');
htp.p('</td><td align=left>');
htp.p ( htf.formPassword(cname => 'p_new_password',csize => 30,cmaxlength => 30) );
htp.p('</td></tr>');
htp.br;
htp.p('<tr><td align=right>');
htp.p('');
htp.p ('Confirm New Password: ');
htp.p('');
htp.p('</td><td align=left>');
htp.p ( htf.formPassword(cname => 'p_new_password_confirm',csize => 30,cmaxlength => 30) );
htp.p('</td></tr>');
htp.p('<tr><td rowsapn=2>');
htp.formHidden(cname => 'p_done_url',cvalue => '<the url that you want users to go to when they are done>');
htp.formHidden(cname => 'p_pwd_is_exp',cvalue => p_pwd_is_exp);
htp.formHidden(cname => 'p_password',cvalue => p_password);
htp.formHidden(cname => 'site2pstoretoken',cvalue => site2pstoretoken);
htp.p('</td></tr>');
htp.p('<tr><td align=right>');
htp.formSubmit(cname => 'p_action',cvalue => 'OK');
htp.p('</td><td align=left>');
htp.formSubmit(cname => 'p_action',cvalue => 'CANCEL');
htp.p('</td></tr></table>');
if p_error_code is not null then
htp.br;
htp.fontOpen(ccolor=> 'red', csize=> 4);
if p_error_code = 'auth_fail_err' then
htp.p('Old password is incorrect');
elsif p_error_code = 'pwd_rule_err' then
htp.p('The new password does not follow '||
'the password policies.');
htp.br;
htp.p('Verify with your System Administrator '||
'about the Password Policies');
elsif p_error_code = 'confirm_pwd_fail_txt' then
htp.p('Confirmation for new passord is not '||
'the same as the New Passowrd');
elsif p_error_code = 'null_new_pwd_err' then
htp.p('New password cannot be null');
elsif p_error_code = 'null_old_pwd_err' then
htp.p('Old password cannot be null');
else
htp.p ('Error: ' || p_error_code );
end if;
htp.fontClose;
end if;
end;
* Grant this procedure to PUBLIC
* Update the portal30_sso.wwsso_ls_configuration_info_$:
UPDATE portal30_sso.wwsso_ls_configuration_info_$
SET LOGIN URL = '<YOUR CUSTOM LOGIN URL OR THE WORD UNUSED IF YOU DON'T HAVE ONE> http://<MACHINE_NAME>.<DOMAIN>/pls/portal30_sso/portal30_sso.<NAME OF PROCEDURE>';
* After you update the table, go to your account information link, and click on the change password link.
* Then copy the url that you see in your address line
* And if you want a change password link at the top of your portal page, just go to EDIT on your page, then edit the banner defaults. Then in the links add the Lable and the URL. The URL would be the URL you copied from the previous step.
Hope this helps.
I've customized the login page too if you would like some sample code for that. Let me know.
Martin

Change of Sold to Party in Sales order created with Reference to Contract

Dear Gurus
I want to change the sold to party in Sales Order created with reference to contract.
When I create a Sales order with reference to contract the system copies all the partner functions- Sold to, Ship to, Bill to and Payer alongwith other data.
However Sold to is marked as "Grey" and not changable, rest of the partners can be changed.
There is no subsiquent document created with reference to this Sales Order.
Please advice.
Thanks a lot.
Regards
Raghu

Hi ,
Please follow the below mentioned step.
1) Create a partner function letts say Authorized SP .
2) Assign all the possible authorised SP (customer) in the contract.
3) When you create sales order with reff to Contract. Put the customer for whom you wish to create a sales order in release partner tab.
Hop this will resolve our problem
Regards,
Krishna O

Changing Role created with Customizing Auth. Utility

Similar Messages

Maybe you are looking for