DBLINK - restrict access to specific objects

Similar Messages

• HT201304 Is it possible to restrict access to specific IOS apps based on the WIFI profile that a user has connected to?

  Is it possible to restrict access to specific IOS apps based on the WIFI profile that a user has connected to?

  you might be able to block it if the app uses Internet access
  and depending on your wireless you might be able to block a specific user
  accessing the backend host that the app uses
  some firewalls offer application filtering but I'm not aware of any that work with ios apps

• LSMW - Access to Specific Objects Permissions to specific users

  Hi guys,
  I want to know if it is possible to allow access to specific users that are in charge of the execution of a specific object of and LSMW.
  Regards,
  Eric

  Hi guys,
  One solution i got right now (but it isn't the ideal), is to debug the execution step of the LSMW in order to find the name of the program that iit's been call and the one that its call inthe step in wich the files are been specify. Then develop a "Z" program that calls both of them and give the user the access to this new transaction.
  Any better sugestion?.
  Regards,
  Eric

• Error 23002 when restricting access to specific TS

  I am a bit stumped at the moment on my TSGW.  I am attempting to restrict which Terminal Servers the TSGW will redirect to.
  I am doing this via RAP > Network Resource > "RD Gateway-managed group"
  I created a new group and added the FQDN of the TS I want to connect to and I was unable to connect (received error 23002)
  I then modified the group to use the IP address of the TS and received the same error.
  I then set the Network Resource option in RAP to "Allow users to connect to any network resource" and I was able to connect.  I naturally don't want to do this and want to restrict access as we have other Terminal Servers for other groups.
  I must be missing something, but I am not sure what.  Any thoughts from anyone?

  OK... I may have solved my own issue here.  Sometimes typing it out makes me think...
  One thing I didn't try was the NetBIOS name within the RD Gateway-managed group.
  I entered the 3 entries:  IP/FQDN/NetBIOS  and things came alive.  Now, I shouldn't need all three, so I will need to do some more checking, but at least I'm now in the right direction.

• HT2688 How do I restrict access to *specific* songs (or give access to a specific playlist) in Home Sharing

  http://support.apple.com/kb/HT2688?
  This article describes two different things:
  Music Sharing and
  Home Sharing
  Music Sharing allows you to select playlist(s) to share, and allows you to play the song from another device. It does *not* allow you to transfer the song to another device.
  Home Sharing allows you to share your ENTIRE music library and transfer the songs to another device. It does not allow you to restrict the share to a specific playlist(s).
  Try it. You can set a password and check the boxes to restrict your playlists, but that only restricts while Home Sharing is turned off. EVERY file is accessible when you have Home Sharing running.
  I have a bunch of music I don't want my kids listening to. I've created a playlist for them, and I want them to be able to load their ipods with music from that list without accessing other music.  Any ideas?

  say suppose i have no control over wcf client. so i want to do it at client side. so what is your suggestion. thanks
  If you can't  implement role based secuirty on the client-side, the you may want to look at what is in the link.
  http://blog.clauskonrad.net/2010/04/wcf-restrict-which-clients-can-call.html

• Restrict access to specific network devices

  Is there a way through ACS to limit user logons to only specific devices? I know through NAR, I can restrict the source address, but how can I restrict the destination?
  Thanks

  I'm having the same problem.
  The ACS in NAR is mandatory to use a AAA Client plus the client and I would like to limit only by the AAA client.
  It means, the ACS uses the attributes
  Calling-station-ID (Final client)
  Called-station-ID (Network Access Server NAS)
  I would like to limit only based on Called station.
  If you get somehow to solve it please post here.
  Thanks

• Restricting Access To Specific Groups

  Can security be set such that a portal administrator can only edit individual profiles under a select group? How do I do this?

  Look at following 9026 plsql API doc link for usage of wwsec_api.remove_group_acl
  http://portalstudio.oracle.com/pls/ops/docs/FOLDER/COMMUNITY/PDK/PLSQL/DOC/PLDOC_9026/wwsec_api.html

• F_LFA1_BEK - access to specific vendor

  Hello,
  my first posting....hope someone has an answer...
  We need to give 2 users transaction FBL1N (vendor line items) with only access to 2 specific vendors.
  As far as we know there is no authority object for the vendor account number itself.
  So we thought we can use object F_LFA1_BEK. We entered an  authorization group (LFA1-BEGRU) to this 2 vendors and added this group to F_LFA1_BEK. So far so good.
  Problem is now that it is still possible to access all vendors where no authorization group is maintained in the vendors master record. (No authorization group is the default case and it is not possible to add another one the other vendors)
  Is it possible to achieve this with F_LFA1_BEK or is there any other solution? 
  Thanks a lot!
  Christian

  Hi Alex,
  of course it is possible to do it that way and we already use the LFB1-BEGRU to restrict access to specific vendors.
  But we have a lot of different accounting groups and a lot of users who create/maintain vendors each being responsible for one or more accounting groups. And furthermore this is relevant for 2 company codes.
  And what I haven't mentioned yet: This also needed for customers (FBL5N).
  So you are right it is possible and it is the standard way but in our case currently too much effort.
  Thanks.
  Christian

• XI - restrict access to Reciever agreement

  Hi All,
  We have restricted access to certain objects in the integration directory per the suggestions in an earlier post. However, we are unable to restrict access to recevier / sender agreements by this approach.
  Please advice
  Thanks
  Vijaya

  We raised an OSS message and found that the issue was due to a missing JAVA patch

• I have a requirement where I have to give the list of users who can access a specific computer. I am new with PS. Do you have a script to list users that can access a computer object of AD ?

  I have a requirement where I have to give the list of users who can access a specific computer define in AD.
  I am new with PS.
  Do you have a script to list users that can access a computer object of AD ?
  I have executed the following script  but it does not give me the access rights of who can access the computer 'computername'
  How can i have this information. please help
  Import-Module activedirectory
  $computer=get-adcomputer "computername" -properties ntSecurityDescriptor
  $omputer.ntsecurityDescriptor.Access | select-object -expandproperty IdentityReference | sort-object -unique

  I would say that, since the OP has so little info, there are no policies in use.  It there were then this question would never be asked the way it is being asked.
  I had a client call with a letter from their insurance company; an accountant with malpractice insurance.  THey asked the same question inmuch the same way.  "What computer can you users access?"  The question should be more like
  "Do you have a policy that restricts access to computers and do you audit for compliance?"
  I have had other clients whose insurance asked the question in that way.  It produces a better view of what should be happening and how to show compliance.
  I recommend that companies being asked these questions by their legal departments or insurance companies should contract with a god computer security consultant to assist with answering these very tricky questions.  Of course if it is just you boss's
  curiosity  then you may need to discuss his requirements with him in more depth.
  ¯\_(ツ)_/¯

• Restrict access to a specific method in JSE

  Hello all,
  I'd like to know if there is a way to restrict access to a specific method in JSE. Basically, my intention is to do this:
  Subject.doAs(subject, new ProtectedMethod());
  // only users with a specific role can access this method
  // (permission specified in my policy file?)
  public class ProtectedMethod implements PrivilegedAction<String> {
     public String run() {
  }I believe that is not possible to specify a method name in policy file via java.lang.RuntimePermission "accessDeclaredMembers", so is there another way to do this?
  Thanks in advance,
  Andre

  I am not an expert of this media hub, but what I would like to know is that are you referring to the security you have setup with the original folders? So after you have created a backup, whatever type of access you have setup was removed? Can you please elaborate?
  Check the FAQ's for NMH305 from here: http://support.linksys.com/en-us/support/storage/NMH305

• Restrict access with object F_LFA1_BEK - problem with F4 search

  Hello,
  we want to restrict access to some vendor accounts, which can be shown with transaction FK03 for example.
  There is an authorization object F_LFA1_BEK, which can be maintained in the special vendor accounts in field authorization group.
  A user with authorization for vendor account with authorization group ZZZZ in it can see all vendors with authorization group ZZZZ and all vendors with no authorization group. But he can't see vendor accounts with authorization group YYYY. To this point, it's ok.
  If the user uses the F4 search help he is able to see the vendor accounts with authorization group YYYY too. And this is the problem - the user should not see these vendor accounts. With this option user is able to see address data of a vendor account he should not see.
  Is there any possiblity to solve this problem?
  Regards,
  Julia

  I don't know the current status, but this is being looked into generally as it is not only limited to the F4 on LFA/B/M1.
  As you only access the name and some attribute data which you can display, it is not necessarily critical and there is no transaction data involved.
  Good news is that the BAPIs for search help make these same granular checks which you are expecting.
  If I hear something further about these developments I will let you know.
  Cheers,
  Julius

• Restricting Web Service Access from specific machines (IP)

  Is there any way by which we can restrict access of our web service to some specific machines i.e., restricting to some specific IPs.

  maybe a Filter helps you since you can know the remoteIP from the httprequest
  http://java.sun.com/products/servlet/Filters.html
  public class TestFilter implements Filter {
  FilterConfig config = null;
  public void init(FilterConfig filterConfig) throws ServletException {
  this.config = filterConfig;
  public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain) throws IOException, ServletException {
  HttpServletRequest request = (HttpServletRequest) servletRequest;
  HttpServletResponse response = (HttpServletResponse) servletResponse;
  String ssoToken=null;
  System.out.println("+++++++ENTRANDO AL FILTER DE WS++++++++");
  System.out.println("+++++++IPLOCAL++++++++"+request.getLocalAddr());
  System.out.println("+++++++HOSTLOCAL++++++++"+request.getLocalName());
  System.out.println("+++++++IPREMOTE++++++++"+request.getRemoteAddr());
  System.out.println("+++++++HOSTREMOTE++++++++"+request.getRemoteHost());
  System.out.println("+++++++REMOTE USER++++++++"+request.getRemoteUser());
  System.out.println("+++++++Filter chein++++++++");
  filterChain.doFilter(servletRequest,servletResponse);
  System.out.println("***despues de doFilter****");
  public void destroy() {
  config = null;
  }

• Restrict access of "domain user" to specific computer

  I need to restrict access of "domain user" to a specific computer in the domain/
  I try to Do it by using "Active Directory Administrative Center"
  In Computers\Computer name\Properties\Extensions\Security
  I add the name of user and I marked deny to all and I canceled inheritance
  And yet the user can login to the computer
  I searched Policy that contradicts the security and I not found.
  With the "gpo" I was able to block, but I need necessarily used the Security
  Because of Security can be partial restriction.

  Hi,
  Based on your description, I understand that you want to allow some certain users to access specific domain
  computers.
  Please open ADUC (Activity Directory Users and Computers) and click User container. Then select that specific
  user account, open its Properties and navigate to Account tab. Please click
  “Log On To…” option to open Logon Workstations panel. In Logon Workstations panel, please change
  This user can log on to: All computers to The following computers. Then type the specific computer names. Please check if this can help you to achieve target.
  If anything I misunderstand or any update, please don’t hesitate to let me know.
  Hope this helps.
  Best regards,
  Justin Gu

• Creation of roles with restricted access to infoarea

  HI !
  We need to create some custom roles in BW, which will restrict the user (with that role) to access only specific infoareas in BW,  i.e. the reports and Infoproviders etc created under those InfoAreas.
  When I tried to create a role in tcode PFCG, I dont get any such options to restrict by InfoArea. Do we have to create custom Authorization objects for this and assign them to this role? if yes, how do we create such Authorization objects?
  I am totally new to roles/profiles etc... i read the online documentations, but cudnt understand them much.
  <u>Please provide the steps to do this</u>.
  Thanks,
  SUshmita

  hi Sushmita,
  try authorization object S_RS_COMP - business explorer compnent (under RS - business information warehouse),
  you can specify infoarea, infocube
  hope this helps.