Changing User Roles not working

Similar Messages

• Change User password not working in SAP ME 6.0

  Hi,
  In SAP ME 6.0 SP01 6.0.1.0 Counter 40, the activity "Change User Password" does not work for me or any other user.
  The activity window (Netweaver) shows, but in the top it says "An error occurred - contact system administrator".
  This is the output from the default trace file. Seems my user is not authorized, but where do I set this authorization?
  Br,
  Johan
  #2.0 #2011 09 06 11:15:11:064#+0200#Error#com.sap.security.core.wd.jmxmodel.JmxModelComp#
  #BC-JAS-SEC-UME#sap.com/tcsecumewduimodel#C0000AD3034800820000000100000450#9934850000000004#sap.com/tcsecumewdkit#com.sap.security.core.wd.jmxmodel.JmxModelComp#JONORD#16##380199ECD86811E088C3000000979802#ae0e9d52d86811e08e7a000000979802#ae0e9d52d86811e08e7a000000979802#0#Thread[HTTP Worker [@312363456],5,Dedicated_Application_Thread]#Plain##
  public void supplyCompany(IPrivateJmxModelCompInterface.ICompanyNode node, IPrivateJmxModelCompInterface.IContextElement parentElement)
  [EXCEPTION]
  com.sap.engine.services.jmx.exception.JmxSecurityException: Caller JONORD not authorized, required permission missing (javax.management.MBeanPermission -\#getCompanyConceptEnabled[:SAP_J2EECluster="",j2eeType=UmeJmxServer,name=IJmxServer] invoke)
       at com.sap.engine.services.jmx.auth.UmeAuthorization.checkMBeanPermission(UmeAuthorization.java:100)
       at com.sap.engine.services.jmx.JmxServerFrame.checkMBeanPermission(JmxServerFrame.java:101)
       at com.sap.engine.services.jmx.MBeanServerSecurityWrapper.checkMBeanPermission(MBeanServerSecurityWrapper.java:438)
       at com.sap.engine.services.jmx.MBeanServerSecurityWrapper.invoke(MBeanServerSecurityWrapper.java:288)
       at com.sap.engine.services.jmx.ClusterInterceptor.invoke(ClusterInterceptor.java:813)
       at com.sap.pj.jmx.server.interceptor.MBeanServerInterceptorChain.invoke(MBeanServerInterceptorChain.java:367)
       at com.sap.security.core.jmx._gen.IJmxServer$Impl.getCompanyConceptEnabled(IJmxServer.java:1415)
       at com.sap.security.core.wd.jmxmodel.JmxModelCompInterface.supplyCompany(JmxModelCompInterface.java:1498)
       at com.sap.security.core.wd.jmxmodel.wdp.InternalJmxModelCompInterface.supplyCompany(InternalJmxModelCompInterface.java:710)
       at com.sap.security.core.wd.jmxmodel.wdp.IPublicJmxModelCompInterface$ICompanyNode.doSupplyElements(IPublicJmxModelCompInterface.java:4301)
       at com.sap.tc.webdynpro.progmodel.context.DataNode.supplyElements(DataNode.java:110)
       at com.sap.tc.webdynpro.progmodel.context.Node.getElementListAsObject(Node.java:263)
       at com.sap.tc.webdynpro.progmodel.context.MappedNode.createMappedElementList(MappedNode.java:78)
       at com.sap.tc.webdynpro.progmodel.context.MappedNode.supplyElements(MappedNode.java:71)
       at com.sap.tc.webdynpro.progmodel.context.Node.getElementListAsObject(Node.java:263)
       at com.sap.tc.webdynpro.progmodel.context.MappedNode.createMappedElementList(MappedNode.java:78)
       at com.sap.tc.webdynpro.progmodel.context.MappedNode.supplyElements(MappedNode.java:71)
       at com.sap.tc.webdynpro.progmodel.context.Node.getElementListAsObject(Node.java:263)
       at com.sap.tc.webdynpro.progmodel.context.Node.getElements(Node.java:270)

  Hi,
  Change User Password screen is in fact user self services screen of NW UME and to access it, user must have Manage_My_Password action. Installation and Security Guide ask to assign this action to all roles.

• LSMW for changing user status on work order(IW32)

  Hi All,
  I have created a LSMW for changing user status on work order using transaction IW32. It does not change the status when i run the LSMW. In the recording for the LSMW, i select the radio button on the user status i want to select.
  When i run the LSMW in the foreground, it does everything except select the correct status.
  Is there a way to fix this or is it a problem with LSMW. I'm using ECC6
  Kind Regards
  Emanuel

  Hi ,
  I am not sure whether it would work with LSMW but if your on ECC 6.00 ,Enhacement Pack 3 then you have BADIs which allow you to make collective status changes in IW38 .The below are those BADIs :-
  BADI_EAM_RIAUFK20_FCODE_CUS1 :Implement Customer Function Code in Order List
  BADI_EAM_RIAUFK20_FCODE_SAP1 :Implement SAP Function Code in Order List
  Else if your on lower version then write up a batch programme which checks the PM Order types with specific status and sets user status using FM STATUS_CHANGE_EXTERN[This is used to set or delete User Status] in SE37 ..
  regrds
  pushpa

• I have 100 groups in planning for those 100 groups i want to build roles like interactive,view user,planner etc.for those how to change in export -import folder .xml file  in that edit  how  to change user roles in that xml it will generate automatic id.h

  I have 100 groups in planning for those 100 groups i want to build roles like interactive,view user,planner etc.for those how to change in export -import folder .xml file  in that edit  how  to change user roles in that xml it will generate automatic id.how to do that in xml file ?

  Thanks john for you are reply.
  I had tried what you sad.I open shared service in that foundation project i had export shared service.after that in import-export file.In that role.csv,user.csv,group.csv.Like this file have.When i open user file added some users after i trying save in excel it shown messgse
  I click yes and save the .csv file and import from share servie. i got error like this
  am i doing right way john.or explain clearly

• Cant seem to make photoshop default to open photos in Windows. Its defaulting to Adobe and I changed settings, still not working

  When I upload photos from my phone to computer Cant seem to make photoshop default to open photos in Windows. Its defaulting to Adobe and I changed settings, still not working. Even when I press preview on photo and they open in windows photo viewer I cannot save the file to my computer. I have Photoshop CS4

  infact both are same only..http://store.apple.com/us/product/MB572Z/B/mini-displayport-to-vga-adapter        "http://store.apple.com/us/product/MB570Z/B/mini-displayport-to-dvi-adapter"

• The Notification Center Yosemite primary user does not work in my Macbook pro and the other users if it works.

  The Notification Center Yosemite primary user does not work in my Macbook pro and the other users if it works. How can I fix it?

  The Notification Center Yosemite primary user does not work in my Macbook pro and the other users if it works. How can I fix it?

• SLD connection user/password not working.

  Hello friends,
  I am new bee in SAP Netweaver.
  I installed SAP Netweaver for java.
  Now I want to connect it with BAPI from SAP.
  so, some where i am sucked with SLD. I opened Visula Administrator and nothing there to connect.
  I also tried http://localhost:50000/sld but my user/password not working.
  1. What to do to see/get username/password for SLD?
  2. How to connect netweaver to access SAP ZBAPI?
  Regards,
  RH

  Hello friends,
  I am new bee in SAP Netweaver.
  I installed SAP Netweaver for java.
  Now I want to connect it with BAPI from SAP.
  so, some where i am sucked with SLD. I opened Visula Administrator and nothing there to connect.
  I also tried http://localhost:50000/sld but my user/password not working.
  1. What to do to see/get username/password for SLD?
  2. How to connect netweaver to access SAP ZBAPI?
  Regards,
  RH
  Hi Ronny.
  Where is your UME running? On the java engine, on an ABAP system or at a LDAP?
  What i want to say is that your user has to gain the rights to connect to the SLD. Easiest way is to give you admin rights - to do that you have to know where your userstore is running....
  I am not sure if this is correct http://localhost:50000/sld
  Normally it should look like http://my.sap.com/56600/sld where my.sap.com is a fqdn and 56600 is the port of the java engine. 66 ist the system number of the as java.
  ZBAPI? I do not really know but i think you have to use a jco to connect...
  regards,
  Martin

• Transaction variant to disallow change in FB02 not working for FBL5N / FB09

  Hi SAPtechies,
  I have created a transaction variant to disallow change in all fields other than Text (BSEG-SGTXT), and activated it for standard transaction FB02.
  This works well when FI document is changed via transaction FB02, but fails when the same document is changed via FBL5N / FB09.
  The screen is same for FB02 & FBL5N:
  Program (screen)     SAPMF05L
  Screen number        301
  Program (GUI)        SAPMF05L
  I have already checked for enhancement in PBO INCLUDE MF05LO00, but there was no success.
  Can anyone suggest me another methadology to greyout or make FB02 fields uneditable, with same functionality also working for FBL5N/FB09?

  Hi ,
  I could achieve  a way to disallow editing in FB02 item level fields using substitution & custom exit.
  Additional requirement was that I want to assign authorization for particular users who can change all fields.
  Any suggestions on it?
  Our Basis team has created new role & assigned this role for FB02.
  But this role has got many technical authorization objects.
  Below check is not working:
  AUTHORITY-CHECK OBJECT 'S_TCODE'
             ID 'TCD' FIELD sy-tcode.
  Thanks...Tanaya

• OOTB create user is not working for AD

  Hi,
  While creating the user am getting the following error.
  [6/1/11 0:33:28:153 EDT] 00000037 SystemOut O DEBUG,01 Jun 2011 00:33:28,153,[XELLERATE.ADAPTERS],Class/Method: tcAdpEvent/getRunTimeVariableMappings - Data: adv name - Value: PasswordNeverExpires
  [6/1/11 0:33:28:153 EDT] 00000037 SystemOut O DEBUG,01 Jun 2011 00:33:28,153,[XELLERATE.ADAPTERS],Class/Method: tcAdpEvent/getRunTimeVariableMappings left.
  [6/1/11 0:33:28:153 EDT] 00000037 SystemOut O DEBUG,01 Jun 2011 00:33:28,153,[XELLERATE.ADAPTERS],Class/Method: tcAdpEvent/getRunTimeValue - Data: Variable Name - Value: PasswordNeverExpires
  [6/1/11 0:33:28:153 EDT] 00000037 SystemOut O DEBUG,01 Jun 2011 00:33:28,153,[XELLERATE.ADAPTERS],Class/Method: tcAdpEvent/getRunTimeValue - Data: MapTo - Value: Process Data
  [6/1/11 0:33:28:153 EDT] 00000037 SystemOut O DEBUG,01 Jun 2011 00:33:28,153,[XELLERATE.ADAPTERS],Class/Method: tcAdpEvent/getRunTimeValue - Data: sMapQualifier - Value: Password never expires
  [6/1/11 0:33:28:153 EDT] 00000037 SystemOut O DEBUG,01 Jun 2011 00:33:28,153,[XELLERATE.ADAPTERS],Class/Method: tcAdpEvent/getRunTimeValue - Data: sMapValue - Value: UD_ADBURG_NEVER
  [6/1/11 0:33:28:153 EDT] 00000037 SystemOut O DEBUG,01 Jun 2011 00:33:28,153,[XELLERATE.ADAPTERS],Class/Method: tcAdpEvent/getRunTimeValue - Data: sVarDataType - Value: Boolean
  [6/1/11 0:33:28:153 EDT] 00000037 SystemOut O DEBUG,01 Jun 2011 00:33:28,153,[XELLERATE.ADAPTERS],Class/Method: tcAdpEvent/getRunTimeValue - Data: sMapOldValue - Value: 0
  [6/1/11 0:33:28:153 EDT] 00000037 SystemOut O DEBUG,01 Jun 2011 00:33:28,153,[XELLERATE.ADAPTERS],Class/Method: tcAdpEvent/getRunTimeValue - Data: sMapChildTableName - Value:
  [6/1/11 0:33:28:153 EDT] 00000037 SystemOut O DEBUG,01 Jun 2011 00:33:28,153,[XELLERATE.ADAPTERS],Class/Method: tcAdpEvent/getDataSetFieldValue entered.
  [6/1/11 0:33:28:153 EDT] 00000037 SystemOut O DEBUG,01 Jun 2011 00:33:28,153,[XELLERATE.ADAPTERS],Class/Method: tcAdpEvent/getDataSetFieldValue - Data: psFieldName - Value: UD_ADBURG_NEVER
  [6/1/11 0:33:28:153 EDT] 00000037 SystemOut O DEBUG,01 Jun 2011 00:33:28,153,[XELLERATE.ADAPTERS],Class/Method: tcAdpEvent/getDataSetFieldValue - Data: psMapSourceDataType - Value: Boolean
  [6/1/11 0:33:28:153 EDT] 00000037 SystemOut O DEBUG,01 Jun 2011 00:33:28,153,[XELLERATE.ADAPTERS],tcAdpEvent/getDataSetFieldValue poDataSet is null
  [6/1/11 0:33:28:157 EDT] 00000037 SystemOut O DEBUG,01 Jun 2011 00:33:28,157,[XELLERATE.ADAPTERS],Class/Method: tcAdpEvent/updateSchItem entered.
  [6/1/11 0:33:28:157 EDT] 00000037 SystemOut O DEBUG,01 Jun 2011 00:33:28,157,[XELLERATE.ADAPTERS],Class/Method: tcAdpEvent/updateSchItem - Data: event - Value: adpADCSCREATEUSER
  [6/1/11 0:33:28:157 EDT] 00000037 SystemOut O DEBUG,01 Jun 2011 00:33:28,157,[XELLERATE.ADAPTERS],Class/Method: tcAdpEvent/updateSchItem - Data: New Status - Value: R
  [6/1/11 0:33:28:157 EDT] 00000037 SystemOut O DEBUG,01 Jun 2011 00:33:28,157,[XELLERATE.ADAPTERS],Class/Method: tcAdpEvent/updateSchItem - Data: SchData - Value: {2}
  *[6/1/11 0:33:28:157 EDT] 00000037 SystemOut O DEBUG,01 Jun 2011 00:33:28,157,[XELLERATE.ADAPTERS],Class/Method: tcAdpEvent/updateSchItem - Data: Reason - Value: Exception java.lang.NullPointerException was thrown in adapter "ADCS Create User". The Adapter Response was "null"*
  NOTE:
  Am creating user through the access policy, it throwing the above error for auto provisioning…
  IF open (edit) process form of AD and click on save (w/o changing the process data) and retrying the crate user task it working .
  Advance Thanks..

  This is typically the result of the checkboxes on the form. You need to give a default value of 0 or 1 either using the Default option, or prepopulate. If you do not fill this in, when the form is completed through auto-save, it will have a null value.
  -Kevin

• WDJ - Right click- User settings , not working at all times

  We are working on SAP Netweaver 7.4.
  We have developed WDJ applications in PO server and are displaying the application in SAP EP using the remote iview method.
  Our requirement: We need to show the users , right click ->User settings so that they can modify the view.
  Steps taken: The allowuserpersonalisation has been set to True.
  Issue:
  Not all of the remote WDJ application are showing the User settings.
  For e.g: If it is working for WDJ application A, it is not working for WDJ application B.
  Here is where it gets more confusing !!!:
  If role A contains WDJ application A and role B contains WDJ application B.
  then:
  1) if WDJ application B is assigned to the role A, then the User settings start working for it
  2) if WDJ application A is assigned to the role B, then the User settings still work for it
  3) if WDJ application B is assigned to the role C, then the User settings do not work.
  Can anyone please help?

  Hi,
  normal right mouseclick is disabled as of 710 I guess, I assume you mean the ctrl+alt+right mouse click, right?
  Also , I am not sure I fully understand your A-B-C example. Can you please elaborate it in a less abstract way? Can you show concrete examples what is not working regarding the end-user personalization? Are all wd java applications running in a non-standalone way when you test end-user personalization?
  Cheers,
  Ervin

• Enable User is not working for Provisioning

  Hi,
  I am trying to provision enable user to target system. For that, in my process definition, I have a task "Enable User" added with Task Effect as "Enables Process Or Access To Application" with Conditional, Required for Completion, Allow Cancellation while Pending, and Allow Multiple Instances selected. But somehow it's not working. I have checked, system property XL.EnableDisabledResources is set to TRUE. Can you please help me with this.
  As an alternative solution, I have also tried adding "USR_STATUS" or "USR_DISABLED" code under Lookup.USR_PROCESS_TRIGGERS and having a task and having a task added in my process definition with same name as meaning of this code. But those are also not working. This is exactly like Change First Name meaning under Lookup.USR_PROCESS_TRIGGERS. So, I hoped change in USR_STATUS or USR_DISABLED will trigger my task, but no luck :-(
  Can anybody please help with this? I have also read some that Enable User has some issues in OIM 11g R2. If that is the case, what's my alternatives?
  BTW, scheduled job "Evaluate User Policies" is also enabled and running successful every 10 minutes.
  Thanks,
  Ashish

  Hi Have you get to know what was cause of this issue yet? If yes, can you share of what have you found?
  Thanks

• Mail Per User Quotas Not Working

  We just migrated from 10.9 server to the new 10.10 server and noticed that our per user mail quotas were no longer working.  If I change the Server app - Mail setting - to have a global mail quota on it work, however, we have a few accounts that we need to leave unlimited and the per user quota will not override the global quota.  So far we have had to leave the global quota disabled because of this.
  Even without global quota turned off - trying to set per user mail limits is still not working.  We are changing it thru the Server app and clicking users - selecting a user - then select edit mail options - and changing the setting for the limit size.  No matter what we set it to - it will not work.
  Does anyone know what command or how to change the per user quota limits from the command line?  I found that Dovecotadm quota -u username  shows you what the quota is, but I am stumped as how to change it via a command line or thru another method since the server app is not working.
  Any help would be appreciated!
  ps. Also posted my doveconf -n file below, but I am missing if there is anything not configured properly.
  bash-3.2# dovecot -n
  bash: dovecot: command not found
  bash-3.2# doveconf -n
  # 2.2.5: /Library/Server/Mail/Config/dovecot/dovecot.conf
  # OS: Darwin 14.1.0 x86_64  hfs
  aps_topic = com.apple.mail.XServer.a1c54f6d-f4ad-4431-b882-0f11570dd637
  auth_mechanisms = cram-md5 plain login
  auth_socket_path = /var/run/dovecot/auth-userdb
  auth_username_format = %n
  debug_log_path = /Library/Logs/Mail/mail-debug.log
  default_internal_user = _dovecot
  default_login_user = _dovenull
  disable_plaintext_auth = no
  first_valid_gid = 6
  first_valid_uid = 6
  imap_id_log = *
  imap_id_send = "name" * "version" *
  imap_urlauth_submit_user = submit
  info_log_path = /Library/Logs/Mail/mail-info.log
  log_path = /Library/Logs/Mail/mail-err.log
  login_log_format_elements = user=<%u> method=%m rip=%r lip=%l mpid=%e %c
  mail_access_groups = mail
  mail_attribute_dict = file:/Library/Server/Mail/Data/attributes/attributes.dict
  mail_location = maildir:/Library/Server/Mail/Data/mail/%u
  mail_log_prefix = "%s(pid %p user %u): "
  mail_plugins = quota zlib acl fts fts_sk
  managesieve_notify_capability = mailto
  managesieve_sieve_capability = fileinto reject envelope encoded-character vacation subaddress comparator-i;ascii-numeric relational regex imap4flags copy include variables body enotify environment mailbox date ihave
  mdbox_rotate_size = 200 M
  namespace acl-mailboxes {
    list = children
    location = maildir:/Library/Server/Mail/Data/mail/users/%%u:INDEX=/Library/Server/Mail/Dat a/mail/shared/%%u
    prefix = shared.%%u.
    separator = .
    subscriptions = no
    type = shared
  namespace inbox {
    inbox = yes
    location =
    mailbox Drafts {
      special_use = \Drafts
    mailbox Junk {
      special_use = \Junk
    mailbox Sent {
      special_use = \Sent
    mailbox "Sent Messages" {
      special_use = \Sent
    mailbox Trash {
      special_use = \Trash
    prefix =
  namespace list-archives {
    list = children
    location = maildir:/Library/Server/Mail/Data/listserver/messages/archive/lists/%%u:INDEX=/ Library/Server/Mail/Data/listserver/messages/archive/shared/%%u
    prefix = archives.%%u.
    separator = .
    subscriptions = no
    type = shared
  passdb {
    driver = od
  passdb {
    args = /Library/Server/Mail/Config/dovecot/submit.passdb
    driver = passwd-file
  plugin {
    acl = vfile:/Library/Server/Mail/Config/dovecot/global-acls:cache_secs=300
    acl_shared_dict = file:/Library/Server/Mail/Data/shared/shared-mailboxes
    fts = sk
    quota = maildir:User quota
    quota_warning = storage=100%% quota-exceeded %u
    quota_warning2 = storage=85%% quota-warning %u
    sieve = /Library/Server/Mail/Data/rules/%u/dovecot.sieve
    sieve_dir = /Library/Server/Mail/Data/rules/%u
    stats_refresh = 30 secs
    stats_track_cmds = yes
  protocols = imap lmtp sieve pop3
  quota_full_tempfail = yes
  service auth {
    extra_groups = _keytabusers
    idle_kill = 15 mins
    unix_listener auth-userdb {
      user = _dovecot
  service dns_client {
    unix_listener dns-client {
      mode = 0600
  service imap-login {
    inet_listener imap {
      port = 143
    inet_listener imaps {
      port = 993
      ssl = yes
    service_count = 0
  service imap {
    client_limit = 5
    process_limit = 200
    service_count = 0
  service indexer-worker {
    user = _dovecot
  service lmtp {
    unix_listener lmtp {
      mode = 0600
  service managesieve-login {
    inet_listener sieve {
      port = 4190
  service pop3-login {
    inet_listener pop3 {
      port = 110
    inet_listener pop3s {
      port = 995
      ssl = yes
  service pop3 {
    client_limit = 5
    process_limit = 200
    service_count = 0
  service quota-exceeded {
    executable = script /Applications/Server.app/Contents/ServerRoot/usr/libexec/dovecot/quota-exceeded .sh
    unix_listener quota-exceeded {
      group = mail
      mode = 0660
      user = _dovecot
    user = _dovecot
  service quota-warning {
    executable = script /Applications/Server.app/Contents/ServerRoot/usr/libexec/dovecot/quota-warning. sh
    unix_listener quota-warning {
      group = mail
      mode = 0660
      user = _dovecot
    user = _dovecot
  service stats {
    fifo_listener stats-mail {
      mode = 0600
      user = _dovecot
  ssl = required
  ssl_ca = </etc/certificates/mail.maxxx.com.3524D1A33970C65E8A8DFF78E757DDE3C66AED10.chai n.pem
  ssl_cert = </etc/certificates/mail.maxxx.com.3524D1A33970C65E8A8DFF78E757DDE3C66AED10.cert .pem
  ssl_cipher_list = ALL:!LOW:!SSLv2:!EXP:!aNULL:!ADH:!eNULL
  ssl_key = </etc/certificates/mail.maxxx.com.3524D1A33970C65E8A8DFF78E757DDE3C66AED10.key. pem
  ssl_key_path = /etc/certificates/mail.maxxx.com.3524D1A33970C65E8A8DFF78E757DDE3C66AED10.key.p em
  userdb {
    args = partition=/Library/Server/Mail/Config/dovecot/partition_map.conf global_quota=0 enforce_quotas=yes
    driver = od
  userdb {
    args = /Library/Server/Mail/Config/dovecot/submit.passdb
    driver = passwd-file
  verbose_proctitle = yes
  protocol lmtp {
    mail_plugins = quota zlib acl fts fts_sk sieve
  protocol lda {
    mail_plugins = quota zlib acl fts fts_sk sieve push_notify
  protocol imap {
    mail_max_userip_connections = 20
    mail_plugins = quota zlib acl fts fts_sk imap_acl imap_quota imap_zlib
  protocol pop3 {
    mail_max_userip_connections = 6

  I guess the problem didn't resolve itself, rather it has revealed that it is intermittent (my favorite kind).
  What could made a message sent to a legitimate alias username not get picked up during the imap connection. I know the smtp server accepted the message (see logs above).

• WebCenter user role not getting propagated

  Hi,
  I am creating a WebCenter WSRP portlet application. I expected, after registering the application as a portlet, when I will consume it in WebCenter, the currently logged in user's name and role will be accessible. But in my case, when I am trying to check the logged in user's role using request.isUserInRole(...) method, it always return false. When I debugged the application, I saw that the user role is empty.
  Can someone please help me understand, if I have to do anything to successfully propagate the logged user's role to the custom portlet application.
  Just so you know, I could access the logged in user's name using request.getUserPrincipal().getName(). Please help.
  Thank you,
  Kanchan Upadhyay

  Hi,
  Yes, I am using LDAP and everything else in webcenter works fine. Just the user role is not getting propagated to my custom application developed using portlet. I have tried in taskflow also, seems like the user role is not accessible from there as well. Is there any specific way of accessing user information for custom application hosted in webcenter as portlets?
  Your help is appreciated!!
  Thank you,
  Kanchan

• J2EE and user authentication not working

  Hi,
  has anyone gotten the basic/form based authentication to
  work in the latest version of the 9iAS?
  Oracle9iAS (9.0.2.0.0)
  I've read all the posts and articles from orionsupport.com
  BUT it still does not work.
  Support Folks from ORacle: Where is the latest documentation
  for the Server ???? Everything seems outdated??
  cheers,
  Vijay

  Hi,
  You can change User and password through SU01 through UME. and also read SNote:  Note 891614 - Login problems / Expired password
  Regards
  Thomas

• Changing User Roles

  Hi,
  I need to change the user roles from Admin to some other roles from transaction. Is it possible to do this without going into UME and java codes? How to do this from BLS transaction?
  Regards,
  Senthil

  Sentil,
  I do not know BLS, but if you are trying to change Java users then you have to use a Java application like the UME identity management application to change them. You can change ABAP users with this application if the data source of the UME is the ABAP system in question. The standard ABAP tools for managing users and roles are SU01 and PFCG. Does that help?
  -Michael