Dynamic Group Resolution Limit?

We recently created a few dynamic groups to assign certain roles and access automatically. I have it set up to resolve these groups via a script that runs at the end of a maintenance job.
The issue we encountered upon our initial load was that it would only add 1000 users at a time via the script. Is there a setting somewhere in the console that puts this limit in place?
Alternatively, I tried to resolve the group from the group properties themselves. This also failed as it gave me a time out message; however it would not allow me to retry because a process to resolve the group was already running! Has anyone encountered this and found a way to terminate that process?
I was just wondering if anyone else had encountered these issues and how they resolved them.
Thanks,
Jared

Yes, on the initial load, they will only load 1000 at a time. We ran into this problem too (had one group of 12,000 people) but just ran it 13 times using Right Click -> Recalculate.
When they crash or deadlock, they will claim to still be running for a long time. This is because of the way they do locking:
1) When the recalculation starts, it chcecks the ModifyTime column on the attribute "MX_DG_AUTORESOLVE_INTERVAL" for that Dynamic Group. If it is in the past, it continues to step two, otherwise it aborts with the error saying it is already running.
2) It sets the ModifyTime on that attribute to a future date (I forget how long exactly, but we're talking about DAYS in the future).
3) It does the calculations.
4) It sets the ModifyTime to the time it finished.
So, you see the problem -- when it crashes, the time remains far in the future.
You mentioned you run the update from a script, and that is what we do too. There is supposed to be a way to trigger the calculation based on an Attribute Change, but the feature does not work as documented in the manual. Frustrating...
Anyway, this is how I get around the issue in our script:
function recalcInternetGroups(Par){
     uSleep(10000); //Give any previous attempts at least 10 seconds to finish resolving
     importPackage(Packages.com.valero.idm);
     var sqlClass = new SQLServerConnection();
     var SQL = "Select MSKEY FROM dbo.MXIV_SENTRIES WHERE searchvalue LIKE 'INTERNET_LEVEL_%' AND attrname = 'MSKEYVALUE'"
     groups = uSelect(SQL);
     var result = groups.split('!!'); //We have 9 INTERNET_LEVEL groups, refresh them all
     for (var i=0; i<result.length; i++) {
          dynamic_group = result<i>;
          // Manually set the date into the past (picked the date I wrote this script, as it doesn't matter how far in the past)
          var sql2 = "update MXI_VALUES set Modifytime = '2010-10-15 00:00:00.000' where MSKEY = " + dynamic_group + " and Attr_ID = 33";
          var resultUpdate = '' + sqlClass.uUpdate(sql2);
          recalc = uIS_ResolveDynamicGroup(dynamic_group);
          if (recalc.indexOf("ERROR")>0) {
               uError("Recalculating " + uIS_GetValue(dynamic_group, uGetIDStore(), "MSKEYVALUE"));
               uError(recalc);
          } else {
               uWarning("Recalculating " + uIS_GetValue(dynamic_group, uGetIDStore(), "MSKEYVALUE") + ' ' + recalc);
You'll note we have our own function to allow us to run database updates in Javascript, which is required for this to work, since uSelect() won't perform updates. Anyway, doing that solves the problem. I guess you could do the same thing if you just made a To Database pass that runs before this and does these changes.
If you pick up any other tips or tricks on dealing with Dynamic Groups, let me know, as we use them fairly extensively and still find them somewhat frustrating at times.

Similar Messages

Dynamic System Resolution issues

hello forumers,
i'd like to implement a Dynamic System Resolution scenario, on an EP7 sp14.
based on the examples i've found on the sap web site, i ve created some content (R/3 transaction Iviews using an alias "SAP_SRM")
I tried to change the target R/3 server, based on the group to which the user belong !
i've created a portal service : portalapp.xml =
<?xml version="1.0" encoding="utf-8"?>
<application>
<application-config>
    <property name="releasable" value="false"/>
    <property name="startup" value="true"/>
    <property name="ServicesReference" value="com.sap.portal.usermanagement,com.sap.portal.ivs.api_dynamicSystemService"/>
</application-config>
<components/>
    <registry>
    <entry path="/runtime/alias.mappers/SAP_SRM" name="DSRPortalService" type="service"/>
</registry>
<services>
    <service name="DSRPortalService">
      <service-config>
        <property name="className" value="com.airbus.DSR.DSRPortalService"/>
        <property name="startup" value="true"/>
      </service-config>
    </service>
</services>
</application>
and a service called DSRPortalService:
public String getAlternativeSystem(IUser user, String alias) {
          String pcdLocation = "pcd:portal_content/SRMSystems/";
          String system = "xgi";
          String userName = user.getUniqueName();
          IGroupFactory fact = UMFactory.getGroupFactory();
          try {
               if (user
                    .isMemberOfGroup(
                         fact.getGroupByUniqueName("Group1").getUniqueID(),
                         true)) {
                    //the user is french
                    system = "xgi";
               } else if (
                    user.isMemberOfGroup(
                         fact.getGroupByUniqueName("Group2").getUniqueID(),
                         true)) {
                    //the user is German
                    system = "xda";
          } catch (UMException e) {
               // TODO Auto-generated catch block
               e.printStackTrace();
          return pcdLocation + system;
when i try to acces to the R/3 trasancation i get the following exception:
Exception ID:01:18_15/01/09_0001_1852850
[EXCEPTION]
com.sapportals.portal.prt.component.PortalComponentException: Error in service call of Portal Component
Component : pcd:portal_content/Olivier/ROLES/DSR/DSRRole/SRM
Component class : com.sapportals.portal.sapapplication.SAPApplicationIntegratorComponent
User : to29267
     at com.sapportals.portal.prt.core.PortalRequestManager.handlePortalComponentException(PortalRequestManager.java:973)
     at com.sapportals.portal.prt.core.PortalRequestManager.callPortalComponent(PortalRequestManager.java:343)
     at com.sapportals.portal.prt.core.PortalRequestManager.dispatchRequest(PortalRequestManager.java:136)
     at com.sapportals.portal.prt.core.PortalRequestManager.dispatchRequest(PortalRequestManager.java:189)
     at com.sapportals.portal.prt.component.PortalComponentResponse.include(PortalComponentResponse.java:215)
     at com.sapportals.portal.prt.pom.PortalNode.service(PortalNode.java:645)
     at com.sapportals.portal.prt.core.PortalRequestManager.callPortalComponent(PortalRequestManager.java:328)
     at com.sapportals.portal.prt.core.PortalRequestManager.dispatchRequest(PortalRequestManager.java:136)
     at com.sapportals.portal.prt.core.PortalRequestManager.dispatchRequest(PortalRequestManager.java:189)
     at com.sapportals.portal.prt.core.PortalRequestManager.runRequestCycle(PortalRequestManager.java:753)
     at com.sapportals.portal.prt.connection.ServletConnection.handleRequest(ServletConnection.java:240)
     at com.sapportals.portal.prt.dispatcher.Dispatcher$doService.run(Dispatcher.java:524)
     at java.security.AccessController.doPrivileged(Native Method)
     at com.sapportals.portal.prt.dispatcher.Dispatcher.service(Dispatcher.java:407)
     at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
     at com.sap.engine.services.servlets_jsp.server.servlet.InvokerServlet.service(InvokerServlet.java:156)
     at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
     at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:401)
     at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:266)
     at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:386)
     at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:364)
     at com.sap.engine.services.httpserver.server.RequestAnalizer.invokeWebContainer(RequestAnalizer.java:1039)
     at com.sap.engine.services.httpserver.server.RequestAnalizer.handle(RequestAnalizer.java:265)
     at com.sap.engine.services.httpserver.server.Client.handle(Client.java:95)
     at com.sap.engine.services.httpserver.server.Processor.request(Processor.java:175)
     at com.sap.engine.core.service630.context.cluster.session.ApplicationSessionMessageListener.process(ApplicationSessionMessageListener.java:33)
     at com.sap.engine.core.cluster.impl6.session.MessageRunner.run(MessageRunner.java:41)
     at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
     at java.security.AccessController.doPrivileged(Native Method)
     at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:102)
     at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:172)
Caused by: com.sapportals.portal.prt.runtime.PortalRuntimeException: Exception in SAP Application Integrator occured: Unable to parse template '<System.ConnectionString>'; the problem occured at position 0. Cannot process expression <System.ConnectionString> because Invalid System Attribute:
System:    &#39;SAP_LocalSystem&#39;,
Attribute: &#39;ConnectionString&#39;.
     at com.sapportals.portal.appintegrator.AbstractIntegratorComponent.doContentPass(AbstractIntegratorComponent.java:123)
     at com.sapportals.portal.appintegrator.AbstractIntegratorComponent.doContent(AbstractIntegratorComponent.java:98)
     at com.sapportals.portal.prt.component.AbstractPortalComponent.serviceDeprecated(AbstractPortalComponent.java:209)
     at com.sapportals.portal.prt.component.AbstractPortalComponent.service(AbstractPortalComponent.java:114)
     at com.sapportals.portal.prt.core.PortalRequestManager.callPortalComponent(PortalRequestManager.java:328)
     ... 29 more
have you got any ideas ?
best regards,
Olivier.

hello,
thanks for your quick reply !
i alredy used your blog to create my DSR scenario ...
as you could see, i didn't even change the alias and i used the name you have prrovided in your blog !
please find just behind a copy of "portal runtime" in the System Administration:
Portal Application Name Depends on Dependents Access State
NewPortalAppProject   com.sap.portal.ivs.api_dynamicSystemService
com.sap.portal.usermanagement   service: NewPortalAppProject|DSRPortalService     (refresh)
Portal Service Items :
Class Name Class Name Factory Pool Size Nb Accessed Last Accessed Time Last Stopped Time State
com.airbus.DSR.DSRPortalService none 0 1 Thu Jan 15 11:05:25 CET 2009 never started (restart)
and also the content of runtime in the portal Registry browser:
You are here: ROOT/runtime/alias.mappers
Child list of the current context:
Name Class name
SAP_SRM java.lang.String - NewPortalAppProject|DSRPortalService
do you have any idea of what i might have forgotten please ?
best regards,
Olivier.

Dynamic System Resolution

Hi
i want to use the IDynamicSystemService Interface to dynamically resolve the System Based on the
User Group.
1.Has anyone done this ?
2. this interface is part of which jar file ?
3. I have to create a Portal Application Project and add a Portal Service to it. is it correct ?
Any answers ?
Regards
Rajendra

Solved.
For Ref to otheres.
1 .this is part of com.sap.portal.ivs.api_dynamicSystemService_api.jar file.
2 .need to create a Portal Service.
3. Refer this URL for Details of How to do it : [Dynamic System Resolution|http://help.sap.com/saphelp_nw70/helpdata/en/21/dfd241cb76c417e10000000a155106/content.htm]
Best Regards
Rajendra
Edited by: Rajendrakumar Gaikwad on Sep 18, 2008 9:12 AM

Create a dynamic group by email address (not includes 2nd email address)

I've created a dynamic group from powershell as below, but it also shows the user who's the 2nd email address is @abc.com.
So how can exclude the user has 2nd email address from the group?
New-DynamicDistributionGroup -Name "ACB All Users Dynamic Group" -OrganizationalUnit xyz.lftltd.net/HKG/Groups -RecipientContainer lftltd.net -PrimarySmtpAddress
[email protected] -RecipientFilter {(EmailAddresses -like
'*@abc.com') -and (RecipientType -eq 'UserMailbox') -and (CustomAttribute9 -ne 'Resigned') -and (Title -ne 'System Mailbox')}
Many thanks.

Hi Timothy,
Besed on my test, to filter the recipients based on the second emailaddresses seems difficult, because there is a limit to the syntax of RecipientFilter, it's hard for me to divide the results of the property emailadresses and filter
the recipient based on the first one.
In addition, to get all the recipients from the dynamic group, please refer to the script below:
$ddg = Get-DynamicDistributionGroup ITUsers
Get-Recipient –RecipientPreviewFilter $ddg.RecipientFilter
And we can usually filter the emailaddress from get-emailbox like this:
If there is anything else regarding this issue, please feel free to post back.
Best Regards,
Anna Wang

Use Granfeldts Create Object to create dynamic groups

Trying to use Sorens Granfeldts, Create Object WF activity to create dynamic groups.
In a standard function evaluator activity I generate the Filter as [//WorkflowData/Filter]
The "string" I set it to is:
<Filter xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema" Dialect="http://schemas.microsoft.com/2006/11/XPathFilterDialect" xmlns="http://schemas.xmlsoap.org/ws/2004/09/enumeration">/Person[ObjectID
= /*[ObjectID = '8dfcb5e8-ff01-400c-8ca7-2a0002d2d2d4']/ComputedMember]</Filter>
In the CreateObject activity I then just have [//WorkflowData/Filter],Filter among the initial values.
The creation works if I remove this attribute so the rest of the attributes seems to be working.
The creation fails however end I get the error below in the Forefront Identity Manager event log.
System.NullReferenceException: Object reference not set to an instance of an object.
   at Microsoft.ResourceManagement.WFActivities.Resolver.GetDisplayStringFromGuid(Guid id, String[] expansionAttributes)
   at Microsoft.ResourceManagement.WFActivities.Resolver.ReplaceGuidWithTemplatedString(Match m)
   at System.Text.RegularExpressions.RegexReplacement.Replace(MatchEvaluator evaluator, Regex regex, String input, Int32 count, Int32 startat)
   at System.Text.RegularExpressions.Regex.Replace(String input, MatchEvaluator evaluator)
   at Microsoft.ResourceManagement.WFActivities.Resolver.GetStringAttributeValue(Object attribute)
   at Microsoft.ResourceManagement.WFActivities.Resolver.ResolveEvaluatorWithoutAntiXSS(String match, ResolverOptions resolveOptions)
   at Microsoft.ResourceManagement.WFActivities.Resolver.ResolveEvaluatorForWithAntiXSS(String match, ResolverOptions resolveOptions)
   at Microsoft.ResourceManagement.WFActivities.Resolver.ReplaceMatches(String input, Boolean useAntiXssEncoding, ResolverOptions resolveOptions)
   at Microsoft.ResourceManagement.Workflow.Hosting.ResolverEvaluationServiceImpl.ResolveLookupGrammar(Guid requestId, Guid targetId, Guid actorId, Dictionary`2 workflowDictionary, Boolean encodeForHTML, String expression)
   at Microsoft.ResourceManagement.Workflow.Activities.ResolveGrammarActivity.Execute(ActivityExecutionContext executionContext)
   at System.Workflow.ComponentModel.ActivityExecutor`1.Execute(T activity, ActivityExecutionContext executionContext)
   at System.Workflow.ComponentModel.ActivityExecutor`1.Execute(Activity activity, ActivityExecutionContext executionContext)
   at System.Workflow.ComponentModel.ActivityExecutorOperation.Run(IWorkflowCoreRuntime workflowCoreRuntime)
   at System.Workflow.Runtime.Scheduler.Run()
Have anyone used this WF activity to create dynamic groups and can tell how to set the Filter?

Hey Kent!
I did the same thing, with Søren`s Create Object WF. I did it like this on the filter part:
<Filter xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema" Dialect="http://schemas.microsoft.com/2006/11/XPathFilterDialect" xmlns="http://schemas.xmlsoap.org/ws/2004/09/enumeration">/Person[(Department = '[//Target/ObjectID]')]</Filter>,Filter
The whole thing looks like this:
(I use Function evaluator to generate a AccountName for groups based on a clean version of DisplayName).
[//Target/DisplayName],DisplayName
SEC_[//WorkFlowData/CleanAccountName],AccountName
[//Target/Manager],Owner
Security,Type
DOMAIN_STRING,Domain
Universal,Scope
[//Target/DisplayName]_SecGroup,Description
[//Target/Manager],DisplayedOwner
None,MembershipAddWorkflow
True,MembershipLocked
[//Target/CleanAccountName],MailNickname
<Filter xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema" Dialect="http://schemas.microsoft.com/2006/11/XPathFilterDialect" xmlns="http://schemas.xmlsoap.org/ws/2004/09/enumeration">/Person[(Department = '[//Target/ObjectID]')]</Filter>,Filter
Regards, Remi www.iamblogg.com

LMS 2.6 dynamic groups with wildcards

Is is possible to build dynamic groups in RME using wildcards or regular expresions? The rules that I want to define would look similar to the following:
Device.System.Name StartsWith "SW" AND (
Device.System.Name contains "........X" OR
Device.System.Name contains "........Y" OR
Device.System.Name contains "........E" OR
Device.System.Name contains "........Z")
Where the device name begins with SW and there is either an X, Y, E or Z in the 8th position of the device name.

This is not possible. The ruleset matching is based only on the operators available for the given property.
The best workaround I can give you is to apply your first rule, then manually adjust the membership list based on the other rules. The downside of this is that the membership list would require modification when you add new devices.

DIP fails loading dynamic groups into OID

Hello,
we're trying to load groups from OeBS into OID and associate them via dynamic groups feature with user records that was loaded earlier as follows:
personid=18630,cn=dev,cn=hrsyncusers,cn=users,dc=ic,dc=lan
orcltimezone=Asia/Yekaterinburg
displayname=NOT ASCII
employeetype=NOT ASCII
givenname=NOT ASCII
postalcode=628484
orcldateofbirth=19610404000000
orclgender=F
departmentnumber=342
uid=18630
mail=HRNULL
cn=NOT ASCII
initials=NOT ASCII
street=NOT ASCII
employeenumber=4824
middlename=NOT ASCII
l=NOT ASCII
orclhiredate=20051107000000
sn=NOT ASCII
personid=18630
c=Russia
title=NOT ASCII
objectclass=inetorgperson
objectclass=person
objectclass=organizationalperson
objectclass=orcluserv2
objectclass=kapitalperson
objectclass=country
objectclass=residentialperson
objectclass=locality
objectclass=top
Among other attributes each user entity has 'departmentNumber' that indicates number of his/her department.
Now trying to load list of departments as dynamic groups with the following config
files:
*** DevHRAgentGroups.cfg ***
[SELECT]
SELECT psv.version_number
, pos.name hierarchyname
, hou.organization_id depno
, poe.organization_id_parent parent_id
, REPLACE(hou2.name, '"') parentname
, poe.organization_id_child child_id
, REPLACE(hou.name, '"') orgname
, ldap://idm01.ic.lan:389/cn=DEV,cn=HRSyncUsers,cn=Users,dc=ic,dc=lan??sub?(depar
tmentnumber='||hou.organization_id||')' ldapuri
, hrl.meaning org_type
FROM per_organization_structures pos
, per_org_structure_versions psv
, per_org_structure_elements poe
, hr_all_organization_units hou
, hr_all_organization_units hou2
, hr_lookups hrl
WHERE pos.business_group_id = psv.business_group_id
AND pos.organization_structure_id = psv.organization_structure_id
AND pos.primary_structure_flag = 'Y'
AND psv.date_to IS NULL
AND poe.org_structure_version_id = psv.org_structure_version_id
AND poe.business_group_id = hou.business_group_id
AND poe.organization_id_child = hou.organization_id
AND poe.business_group_id = hou2.business_group_id
AND poe.organization_id_parent = hou2.organization_id
AND hrl.lookup_code = hou.type
AND hrl.enabled_flag = 'Y'
AND hrl.lookup_type = 'ORG_TYPE'
AND hrl.lookup_code NOT IN (30,40)
AND TRUNC(SYSDATE) BETWEEN hou.date_from AND NVL(hou.date_to, TO_DATE('31.12.4712','dd.mm.yyyy'))
AND hou.last_update_date >= to_date(:BINDVAR,'YYYYMMDDHH24MISS')
*** DevHRAgentGroups.map ***
DomainRules
NONLDAP:cn=DEV,cn=HRSyncGroups,cn=Groups,dc=ic,dc=lan:departmentID=%,cn=DEV,cn=HRSyncGroups,cn=Groups,dc=ic,dc=lan
AttributeRules
orgname:1: : :cn: :groupOfUniqueNames
depno:1: : :departmentID: :kapitalDepartment
ldapuri: : : :labeledURI: :orclDynamicGroup
We're getting the following error in ?/ldap/odi/log/DevHRAgentGroups.trc during HRAgent execution at mapping phase:
Normalized DN : departmentid=82,cn=dev,cn=hrsyncgroups,cn=groups,dc=ic,dc=lan
Changetype is 5
Processing modifyRadd Operation ..
Entry Not Found. Converting to an ADD op..
Processing Insert Operation ..
Performing createEntry..
Exception creating Entry : javax.naming.NamingException: [LDAP: error code 1 - Dynamic group cache update failed.]; remaining name 'departmentid=82,cn=dev,cn=
hrsyncgroups,cn=groups,dc=ic,dc=lan'
[LDAP: error code 1 - Dynamic group cache update failed.]
javax.naming.NamingException: [LDAP: error code 1 - Dynamic group cache update failed.]; remaining name 'departmentid=82,cn=dev,cn=hrsyncgroups,cn=groups,dc=i
c,dc=lan'
at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3028)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2934)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2740)
at com.sun.jndi.ldap.LdapCtx.c_createSubcontext(LdapCtx.java:777)
at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_createSubcontext(ComponentDirContext.java:319)
at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.createSubcontext(PartialCompositeDirContext.java:248)
at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.createSubcontext(PartialCompositeDirContext.java:236)
at javax.naming.directory.InitialDirContext.createSubcontext(InitialDirContext.java:176)
at oracle.ldap.odip.gsi.LDAPWriter.createEntry(LDAPWriter.java:1162)
at oracle.ldap.odip.gsi.LDAPWriter.insert(LDAPWriter.java:425)
at oracle.ldap.odip.gsi.LDAPWriter.modifyRadd(LDAPWriter.java:822)
at oracle.ldap.odip.gsi.LDAPWriter.writeChanges(LDAPWriter.java:349)
at oracle.ldap.odip.engine.AgentThread.mapExecute(AgentThread.java:655)
at oracle.ldap.odip.engine.AgentThread.execMapping(AgentThread.java:376)
at oracle.ldap.odip.engine.AgentThread.run(AgentThread.java:237)
DIP_LDAPWRITER_ERROR_CREATE
Error in executing mapping DIP_LDAPWRITER_ERROR_CREATE
DIP_LDAPWRITER_ERROR_CREATE
Please, note. Loading is successful if we commenting out mapping line for labeledURI attribute (that's loading static groups).
Loading is also successful when labeledURI is mapped to
'ldap://idm01.ic.lan:389/cn=DEV,cn=HRSyncUsers,cn=Users,dc=ic,dc=lan??sub?(objec
tclass=person)' but this definetly is not what we are going to get.
I don't have ideas what's wrong for example with the following generated 'labeledURI' attribute:
ldap://idm01.ic.lan:389/cn=DEV,cn=HRSyncUsers,cn=Users,dc=ic,dc=lan??sub?(departmentnumber=82)
Any help is appreciated
Thanks,
Edward

Hi Frank,
there is something wrong with departmentnumber attribute of user records. Searching users with ldapsearch using "departmentnumber=*" filter fails with the following error:
ldap_search: DSA is unwilling to perform
ldap_search: additional info: Function Not Implemented
I think this is probably the cause of failing creation of dynamic groups.
Searching on other user attributes (cn, uid, employyenumber) works fine.
Still don't understand what's wrong with this particular attribute.

SQL Query for members of dynamic group - Need to include Name, Path and Type

Hello,
I built a custom dynamic group that has all my SQL databases in it using SCOM 2012 SP1. The group works fine as I can see the Name(ie, Database name), Health State, Path (ie, hostname/instance) and Types (ie; SQL 2005). Now I'm trying to
build a custom report based off this same information using a SQL query. I'm no DBA and could use some help. So far this is what i have
use
select
SourceObjectDisplayName as
'Group Name',
TargetObjectDisplayName,TargetObjectPath
from RelationshipGenericView
where isDeleted=0
AND SourceObjectDisplayName
like
'SQL_Databases_All'
ORDERBY TargetObjectDisplayName
This gets me the Group Name (which i really don't care about), database name, and hostname/instance. What I am missing is the Health State and most importantly the Type (ie, SQL Server 2005 DB, SQL Server 2008DB).
If someone could assist me here I would appreciate it. I believe I need to do some type of INNER JOIN but have no idea where the SQL type info lives or the proper structure to use. Thanks
OperationsManager

Here's the updated Query for OpsMan 2012 R2:
To find all members of a given group (change the group name below):
select SourceObjectDisplayName as 'Group Name', TargetObjectDisplayName as 'Group Members'
from RelationshipGenericView
where isDeleted=0
AND SourceObjectDisplayName = 'Agent Managed Computer
Group'
ORDER BY TargetObjectDisplayName

LDAP Dynamic Groups

Hi,
I have been trying to do some coding around - fetching members of dynamic ldap groups. In both these code snippets.. I get the same exception:
java.lang.ClassCastException: com.sun.jndi.ldap.LdapCtx
no matter whatever i tried. Can anyone please - let me know what could be causing this exception.
Regards.
String filter = LDAPRealm.DYNAMIC_GROUP_FILTER;
          String[] targets = new String[] { target, "memberUrl" };
          try {
               SearchControls ctls = new SearchControls();
               ctls.setReturningAttributes(targets);
               ctls.setSearchScope(SearchControls.SUBTREE_SCOPE);
               ctls.setReturningObjFlag(true);
               NamingEnumeration e = context.search(baseDN, filter, ctls);
               while(e.hasMore()) {
                    SearchResult res = (SearchResult)e.next();
                    Object searchedObject = res.getObject();
                    //if(searchedObject instanceof com.sun.jndi.ldap.obj.GroupOfURLs){ // dynamic group
                         com.sun.jndi.ldap.obj.GroupOfURLs gurls = (com.sun.jndi.ldap.obj.GroupOfURLs) searchedObject;
                         Principal x500principal = new X500Principal(userDN);
                         if (gurls.isMember(x500principal)) {
and
java.security.acl.Group obj = (java.security.acl.Group)ctx.lookup(groupDN);
               Enumeration members = obj.members();
               Principal member = null;
               while (members.hasMoreElements()) {
                    member = (Principal)members.nextElement();
                    memberDNs.add(member.getName());
               }

How is this different from [your previous question|http://forums.sun.com/thread.jspa?threadID=5434523&messageID=10965220#10965220]? If it is the same queston, then please stay in the same thread.

Dynamic group membership Query based on alert description - IS package failed

Hi there all good people,
Ive got the following case:
i need to filter out some of the alerts raised bij the is package failed Alert rule.
All allerts raised need a override accept two alerts with a specific description. example:
Alert description: Package "Full Back-Up" failed. should still raise an alert also the
Alert description: Package "Full Db Back-Up" failed.
I.m playing arround with dynamic groups. Can somebody give me some pointers?
Or do i need to create an new alert rule? en override this one for all objects?
I hope the question is clear, im no native english speaking

Hi,
I would like to suggest you override this one for all objects and then create a new alert rule based on your requirement.
Regards,
Yan Li
Regards, Yan Li

Dynamic group for HSW object based on Site (Gateway) server

Hi
Using the SiteName parameter when deploying gateway servers like described in the blog post from Cameron Fuller
http://blogs.catapultsystems.com/cfuller/archive/2015/02/12/creating-dynamic-groups-for-objects-which-exist-behind-a-gateway-in-opsmgr-part-1.aspx
I would like to create an aditional dynamic Group with all Health Service Watcher objects related to an Site (Autocreate) Group.
Any ideas on the XML Query or other ways of duing this?

Yes I know this one, but the SiteName Group is not in my MP.
So I need to reference the XML to a Group outside of my own MP.
Like:
http://blogs.technet.com/b/kevinholman/archive/2014/04/09/creating-groups-of-health-service-watcher-objects-based-on-other-groups.aspx
But with the '<MonitoringClass>$MPElement[Name="grouptest.compgroup"]$</MonitoringClass>'
Line pointing to a autocreated SiteName Group.

Cannot group multiple limit items in single local PO (ECS)

We are on SRM 5.0 (SRM SERVER 5.5 SP 9) and are using SRM in the
extended classic scenario.
We use limit carts and want to be able to create a single PO with
multiple limit items. However, it seems that the implementation of note
1020305 as of SP 9 prevents the possibility to group limit items together in a
single PO completely. I tried implementing the BADI 'BBP_GROUP_LOC_PO' but it had no affect.
Can someone please provide some advice on how to group multiple limit items into a single PO?
Thanks,
Nick

Hi Atul,
Thanks for the note - it was useful, although I don't think I can get my issue resolved as it implies we cannot group multiple limits into one PO.
Can you please explain what the sentence "Multiple packages are possible starting from SRM 5.0 with hierarchies."?
What are hierarchies and how do they work? Will they allow us to have multiple limit items on one PO?
Thanks again,
Nick

Using dynamic groups for j2ee security

Hi all,
I have my realm setup in server.xml and my standard and sun-specific deployment descriptors setup for j2ee security.
Everything seems to work fine for groups defined via uniquemember attributes (all users are specified), but I'm having trouble with dynamic groups (defined with the memberurl attribute)
How do I configure my realm in my server.xml to get this working?

Hi,
I got an official answer from SUN.
"Dynamic Groups" are not (longer) supported with SJS AS 7!
It will probably be supported with SJS AS 8 SE.
If you have a iPlanet 6.5 application that is running with dynamic groups, just wait a little bit before you migrate.

Dynamic Group members error

I create 5 Dynamic Group and 1 Universal Distribution Group. I add 5 Dynamic Group in 1 Universal Distribution Group. If i view members in every all correct, but if i run in powershell Get-DynamicDistributionGroup/Get-Recipient -recipientPreviewFilter
- i view all users in domain with mailbox. How fix this?

Hi,
Do you mean that you can use EAC to view members in 5 dynamic distribution groups respectively and the preview shows correct users, but shows wrong when using EMS?
Please use the following command in EMS to preview the list of members of your dynamic distribution group:
To view Group1:
$Group1 = Get-DynamicDistributionGroup "Group1"
Get-Recipient -RecipientPreviewFilter $Group1.RecipientFilter
To view Group2:
$Group2 = Get-DynamicDistributionGroup "Group2"
Get-Recipient -RecipientPreviewFilter $Group2.RecipientFilter
Please check the results with the preview in EAC:
1. In the EAC, navigate to Recipients > Groups.
2. Select a dynamic distribution group.
3. In the details pane under Membership, the number of people who received the last message sent to the dynamic distribution group is displayed.
Regards,
Winnie Liang
TechNet Community Support

Dynamic groups

Folks,
Dynamic groups do not work in my add event window in calendar. I can search and select the group but nothing is done. I have run a search with the search filter from the group and it works as expected.
keith

Hi Rob,
I've been told by engineering that Dynamic Groups aren't supported by ZESM. A reference to this will be added into the known issues section.
Sorry for the delay,
Daniel
>>>
From: rbannerman<[email protected]>
To:novell.support.zenworks.endpoint-security-management
Date: 2/26/2010 5:46 PM
Subject: Dynamic Groups
Hi,
I have setup a couple of dynamic groups as I wanted to setup security
policy based on employee title. I assigned and published the policy but
the published icon only appears next to the dynamic group. I did test
and the policy is not applies to users.
Does endpoint 4.1 work with dynamic group and if so what do I need to
do to make work?
Rob
rbannerman
rbannerman's Profile: http://forums.novell.com/member.php?userid=10471
View this thread: http://forums.novell.com/showthread.php?t=403159

Dynamic Group Resolution Limit?

Similar Messages

Maybe you are looking for