Check a group assigned to which role

Similar Messages

• How to check the privileges assigned to a role

  Hi All,
  Can you please let me know how to check the privileges assigned to a role in Oracle?
  When I query the dba_tab_privs it says no rows returned.
  Please help..
  Regards,
  Dan

  user9212851 wrote:
  Can you please let me know how to check the privileges assigned to a role in Oracle?
  When I query the dba_tab_privs it says no rows returned.
  When you've checked the manuals and identified the views suggested by other posters you will find that it's still not a trivial problem since a role may be granted to another role - which means you need to do some recursion to uncover all the privileges available to a role.
  Pete Finnigan - who specialises in Oracle security - published some appropriate scipts a few years ago; they are probably still relevant. Here's a starting link: http://www.petefinnigan.com/weblog/archives/00001243.htm
  Regards
  Jonathan Lewis

• PFCG - Table in which role?

  Hello,
  how can I find out which table is assigned to which role.
  E.g. I have tabel ABC and I want to know in which role this table is assigned.
  Any idea?

  Hi
  Is it type of table or role?
  If you are looking fr type of table
  A -- Application tables(master data and transaction data)
  C -- Customizing tables
  L --Tables storing for temporary data.
  E -- Control table
  S --- System tables
  check the below link
  http://www.abapguide.com/notes/abap-data-dictionary-interview-questions/
  Regards,
  Venkatesh

• Which roles we should assign to user , then the user can create COMPONENT_CATALOG

  Hi support ,
  Which roles we should assign to user , then the user can create componet catalog，
  I have yet assigned COMPONENT_CATALOG_ID_ADMIN . but can not find the menu in GSM to create new componet catalog.
  Terry

  Hi Terry
  I think you are looking for [FIC_CREATOR] role that lets you create new component catalogs.
  There is [FIC_READER] role that provides read-only access to component catalogs.
  Also, you need to check if GSM.SideNav.ComponentCatalog.Enabled feature configuration is set to true since this feature drives component catalog menu visibility in GSM.
  Dmitriy

• Cost center assigned to which group

  Hi,
  Can someone guide me how to ascertain which cost center is assigned to which group? for eg: i want to know cost center 4000xxxx is assigned to which cost center group? is there a standard t code in sap to ascertain the same?
  Thanks in advance
  Rajesh

  Hi,
  You can use transaction code OKENN, the cost center standard hierarchy, in this you are able to see the cost center group and cost center created under your controlling area.

• How to create authority check object and assign to  ztcode which is of modu

  Dear ,
           how to create authority check object and assign to  ztcode which is of custom module pool program.its urgent kindly help points rewarded.

  Manoj,
  You can check with your Basis team to create authorisation object and assigining tcodes to the user profiles.
  K.Kiran.

• Effective start and end dates for roles/group assignment

  Hi,
  Does Access Manager (in legacy or realm) mode support effective start date/end date on a role/group assignment on a user?
  Thanks,
  Srinivas

  Hi Ankush,
  I am also of the same opinion. Start and end dates can probably be enforced by a policy condition in AM but would lead to proliferation of policies as we would end up creating policies per role entitlement duration for a user.
  Any thoughts on whether the sunrise/sunset concept of Identity Manager can be used for this requirement.
  Thanks,
  Srinivas

• Assigning Group(of users)  to Role when starting a process programmatically

  Hi All,
  I m starting a process programmatically(using startProcess()).
  Process initiation is working fine, but i need to assign a 'Group' to the role, and not a user. It is a portal group, available at portal end only. How can this be done?
  Please guide.
  Thanks and Regards,
  Sakshi

  you can use the following code
  import com.sap.caf.eu.gp.process.api.GPProcessFactory;
  import com.sap.caf.eu.gp.process.api.IGPProcess;
  import com.sap.caf.eu.gp.process.rt.api.IGPProcessRoleInstanceList;
  import com.sap.caf.eu.gp.process.rt.api.IGPRuntimeManager;
  import com.sap.security.api.IUser;
  public void startProcess( java.lang.String processId )
     // retrieve the Runtime Manager
     IGPRuntimeManager rtm = GPProcessFactory.getRuntimeManager();
     // create an empty role assignment list
     IGPProcessRoleInstanceList roles = rtm.createProcessRoleInstanceList();
     // get the process role number
     int rolenum = process.getRoleInfoCount();
     // iterate over the required roles
     for (int i = 0; i < rolenum; i++) {
        // create a new role instance by specifying the role's unique name
        IGPProcessRoleInstance roleInstance = roles. createProcessRoleInstance(process.getRoleInfo(i).getRoleName());
        // add a user to the role instance
        roleInstance.addUser(roleUser);
        // add the new role to the assignment list
        roles.addProcessRoleInstance(roleInstance);    
  Thanks and Regards
  shanto aloor

• BDC to assign MIC -:Error occurred when checking type $ group $.

  Hi
  We have developed a BDC program to assign MIC`s in routing operations,at the end of assigning the MIC`s in the operations the system is giving the below message .
  Error occurred when checking type $ group $.  
  Please note that 100% sampling procedure is assigned in MIC`s.
  Please advise how to recfity the same .
  PS :- while creating it manually there are no errors.
  Regards
  Trishna Nambiar

  There was some problem with Sampling unit of the MICs assigned in the operations.  This caused the error. Error log was in Tasklist checklist in the Inspection plan.

• How to retrieve the Role of a custom sharepoint Group Progrmatically and also assigning the same roles to new user?

   I want to retrieve the roles assigned to custom group progrmatically and assigning the same roles to new user?

  Hi,
  According to your post, my understanding is that you want to retrieve the Role of a custom sharepoint Group Progrmatically and also assigning the same roles to new user.
  To retrieve the Role of a custom sharepoint Group, you can refer to:
  http://www.sharepointfix.com/2011/05/find-rolepermissions-of-currently.html
  To assign the same roles to new user, you can refer to:
  http://msdn.microsoft.com/library/Microsoft.SharePoint.SPRoleAssignment
  Best Regards,
  Linda Li
  Linda Li
  TechNet Community Support

• Authorization check for caller assignment to J2EE security role

  Dears experts, in the default.trc logs in, my Enterprise Portal NW2004s, appear this error:
  #1.#0018714E4A14005E000027E1000057B8000441BB7EF2FC03#1198173451524#com.sap.engine.services.security.roles.SecurityRoleReference#sap.com/irj#com.sap.engine.services.security.roles.SecurityRoleReference#Guest#2126####46ce8210aefd11dcc68f0018714e4a14#Thread[Thread-59,5,SAPEngine_Application_Thread[impl:3]_Group]##0#0#Error#1#/System/Security/Audit/J2EE#Java###: Authorization check for caller assignment to J2EE security role [ : ] referencing J2EE security role [ : ].#5#ACCESS.ERROR#service.jms.default.authorization#administrators#SAP-J2EE-Engine#administrators#
  #1.#0018714E4A14005E000027E5000057B8000441BB7F8BDC21#1198173461543#com.sap.engine.services.security.roles.SecurityRoleImpl#sap.com/irj#com.sap.engine.services.security.roles.SecurityRoleImpl#Guest#2127####46ce8210aefd11dcc68f0018714e4a14#Thread[Thread-59,5,SAPEngine_Application_Thread[impl:3]_Group]##0#0#Error#1#/System/Security/Audit/J2EE#Java###: Authorization check for caller assignment to J2EE security role [ :
  Any idea about it?
  Thanks friends

  Hi Holger,
  Thanks for the tip, it could be the case, I just checked and we are on Patch 0 for JEECOR as you can see here below:
  sap.com/SAP-JEECOR   7.00 SP13 (1000.7.00.13.0.20070907082334)  20071028144036 
  sap.com/SAP-JEE          7.00 SP13 (1000.7.00.13.2.20071026143730)  20071203150628 
  Will inform some people internally to patch to atleast 3 to check if it still occures.
  Anyway, Thanks again..
  Benjamin Houttuin

• Error :Authorization check for caller assignment to J2EE security role whil

  Hi Experts,
               i m working as a portal resource .
  after the deployment of standered Sap e-rec package .
  i m getting some error. i have assigned the recruiter role to one test user.
  Now i m getting two issue:
  1)All the services are appearing in Detailed Navigation Pannel but not in Portal content area..
  2) I m able to see few iview for the test user but those are also in detailed navigation view.
     And few ivews are giving following error :
    i)Internal error
  ii)error 2011-12-19 07:59:57:315 ACCESS.ERROR: Authorization check for caller assignment to J2EE security role [sap.com/com.sap.lcr*sld : LcrInstanceWriterNR] referencing J2EE security role [SAP-J2EE-Engine : administrators].
  /System/Security/Audit/J2EE com.sap.engine.services.security.roles.audit n/a EP-DEV-KRT Server 0 0_97989
  Full Message Text
  ACCESS.ERROR: Authorization check for caller assignment to J2EE security role [sap.com/com.sap.lcr*sld : LcrInstanceWriterNR] referencing J2EE security role [SAP-J2EE-Engine : administrators].
  please suggest what can be  done or what is pending from my side.

  Prajakta2602 wrote:
  Hi Experts,
  >
  > the previous issue got solved..
  > it was due to servies pack miss match and applying notes
  > the Basis guy  checked the SLD logs and accordingly found that the base components J2EECORE and JTECHS required paching as per
  > notes 1445294 and 1175239 were applied.
  > now the issue is:
  >
  >
  >  After implemetation and  i assigning the standerd sap roles
  > 1)Recruiter Administrator
  > 2)Recruiter
  > to the test user .
  > but for few iview it is showing error as in
  > 1) you are not a authorized user
  > 2) internal error
  >
  > please help experts.
  >
  >  i m working on portal side have i to assign any role to that test user..
  >
  >
  > Thnaks & Regards,
  > Prajakta
  You can run a quick check using the below steps:
  1. Check in backend whether there is any authorisation errors... you may use transactions SU53 or ST22 for any ABAP errors
  2. Also check in NWA -> log viewer -> last 24 hours log for the particular user to see any java related issues.
  Regards,
  Mahesh

• Error while creating user - not authorized to assign profiles or roles

  I have configured CUA according to the help.sap.com instructions.  I am getting this error (in TCODE SCUL)..
  +You are not authorized to assign profiles
  Message no. 01589
  You are not authorized to assign profiles to users or to cancel the authorization.+
  I can create the user, change the address data, and initial password.
  I get errors on assigning to a group, parameters, or the role and profiles. 
  We are on NW Mobile 7.1 (ABAP stack only) SP05.
  I've read Note "492589 - CUA:  Minimum authorizations for communications users."
  It mentions SP07.  Is this not compatible?

  > Run SU53 (immediately after you receive the error message) and check which authorizations that failed. You probably miss S_USER_PRO with activity 01 or 02 from your own roles.
  I think that will not work in his situation. The errors show up in SCUL so they may come from one or more of the CUA children. Running SU53 in the CUA master will (if that is the case) not provide the necessary info.

• Portal:  Tab displayed but not assigned to any roles of user

  HI Experts,
  I have a problem need your great help.
  When I logon portal as a specific user, there are 5 tab in home page. When I check the role list, 3 tabs doesn't assigned to any roles this user owned.
  Then I try to copy current user into a new user, and logon in . There are only 2 tabs left, which belonged to assigned role.
  How those 3 tab assigned into this user? Can we assign iView/Page/Workset directly to user without  role?
  Any suggestion appreciate. Thanks so  much!
  Edited by: Jalyn Liang on Nov 13, 2009 9:29 AM
  Edited by: Jalyn Liang on Nov 13, 2009 9:30 AM

  Jalyn Liang ,
  You can find if the user id belong to a particular group with the following ways,
  Log in as an admin and go to User Admin -> Users- > Seach -> Enter the user Id and serach for the user -> Select the 5th icon with the  tool tip ->Assigned Groups"
  or
  User Admin -> Group -> Search for the group.
  or
  You can use UME API to find out whether the is belowng to a group though coding.
  Ram

• New BP grouping for existing BP role

  Hi Media experts,
  We have a requirement to add a new BP grouping for an existing role(Retailer- ISM001) which enable us to create a BP in the retailer role with a different number range. So we created new grouping and customer account group and assigned a new number range.The problem is that we created BP with the new number range but in change mode it shows only the general data.System not showing the company code and sales area datas.
  Note: Integration is BP to Customer
  Please give a solution
  Thanks in advance,
  Regards,
  Srikanth.M

  Thanks for your reply
  As you mentioned we checked the configuration, but it is quite okay. We normally create BP with the same settings. You mean to say that we need to change the configuration under u2018Configure Field Attributes per activityu2019 for the new BP Grouping we created? Could you please explain little more about how BP Grouping (Newly created) links with the above mentioned customizing activity? Isnu2019t this customizing common in create, change display activity irrespective of BP Grouping?
  with warm regards,
  Srikanth.M