EBS 12.1.3 Security - Provision the complete group in OID as responsibilities in EBS

Similar Messages

• What id the DIT of the portal groups in OID? - never mind. found it

  Does anyone know the DIT of the portal groups in OID? I cannot seem to find it It does not appear to be under cn=Oraclcontext,cn=groups
  Message was edited by:
  ss396s

  Keith,
  Welcome to the forums.
  Are you saying that the procedures require you to check out
  all the application or site code in addition to your RH source
  because RH may change some of that external code? To my knowledge,
  RH source is not connected to anything else in a way that it will
  make automatic changes to anything outside the project. I don't
  know about an official list, but I have seen (by using the Tortoise
  client for both CVS and SVN) that if you make edits to RH source
  files, those files change of course, and then I believe the .cpd
  file is about the only other thing that changes.
  You could try downloading and installing Tortoise if it works
  for the version control system you use. Tortoise shows graphically
  within Windows Explorer which files have changed since the last
  time you checked a directory into the repository. If you change
  nothing besides your RH source, Tortoise would plainly show that RH
  isn't touching the application or site's code.
  Hope this helps,
  Ben

• No provisioning of User Group for authorization field in user master

  We are implementing CUP 5.3 workflows. Both in manual proviosing and automated provisioning based on User Defaults the user group gets only provisioned to the Groups tab in SU01. The field User Group for authorization on the Logon data tab remains empty (field CLASS from system table USLOGOND, filling CLASS field in table USR02).
  In User defaults both under user default as on the user group tab the user groups have been defined. In manual provisioning the correct list of user groups get displayed for selection.
  Under field mapping in the Application field I only find User Group in user master maintenance, but not User group for authorization. However I would assume I do not need to use field mapping, as I want to automate this provisioning based on user defaults.
  Am I missing a configuration setting here? If so, where can I set it?
  I would assume the provisioning of this field is possible. RAR reports the user group also based on the User group for auhtorization and not from the Groups tab.

  S.Pados,
  I can assure you that what I said in my last response does provision the User Group For Authorization Check on the Logon Data tab; in fact, I was having the opposite issue where the Group tab was not being provisioned; however, I am ruunning AE 5.2 and you said you are running 5.3; maybe something did change or got lost in the releases; it probably is good to see what SAP has to say about this; I would hate to lose this capapbility when I upgrade to AE 5.3
  As far as using the custom field for multiple applications, would that field not be usable for any of the applications you would select in the request form?; if you are using the same table names in the different SAP systems (selectable by the application field on the request) would the drop down selections be whatever the table has defined for that system? I may not be understanding something here so I am just asking;
  It would be great to have a Group field automatically filled in by another selection to avoid the user involvement; I agree with you there; because of our concerns on users entering the AE request, our shop has decided to continue with the users submitting the request through normal email and the security administrators perform the AE entering; this way we have a better idea on something like the GROUP field; we have an option to include the original email as an attachment for justification of the request
  Sorry I could not be of more help
  Jerry
  Ryerson,Inc.

• Provisioning of User Group to BI systems

  Hello there,
  I am struggling a bit to find any documentation of how the User Group (BAPILOGOND-CLASS) can be provisioned to a BI system. We are already provisioning Valid From (BAPILOGOND-GLTGV) and Valid To (BAPILOGOND-GLTGB) so was imagining that it would be straight forward to provision the User Group as well. Any ideas?
  Best regards,
  Anders

  Can't have any more open questions

• An error occurred while trying to provision the service 'Discussions'.

  Hi All
  I initially got the error Failed to authenticate user when accessing the discussion and Announcement services within WebCenter. I subsequently configured WS Security by providing the required keystore as indicated in this tutorial:
  http://e20tricks.blogspot.com/2010/02/webcenter-quick-install-guide.html
  I've created a orcladmin user that is the system admin in Jive Forum too and use this as the required user in the service configuration within EM.
  I now however even though the Discussion and Announcement Service is available in WebCenter get the following error when trying to add either service to a group space:
  An error occurred while trying to provision the service 'Announcements'. The service did not get provisioned.
  I can't find anything in the logs that indicates any errors.
  Have I missed something? A slight configuration stuff-up perhaps?
  FYI my keystore defines -dname as "cn=machine name, dc=com, dc=au".
  Any advice and help would be much appreciated :)

  Make sure when you generate your keystore you use these commands:
  genkeypair
  importcert
  exportcert
  and not:
  genkey
  import
  export
  if the above commands you should be using are not available you've got an issue with your keytool which is probably an incorrect java. Make sure you have a JDK installed.

• How deploy the EJB in security on the Sun Java System Application Server 9?

  I hava deploied a simple Hello EJB Object on PE 9(Sun Java System Application Server Platform Edition 9). I can use this EJB object without user name an password On any client. See the following code section:
       public static void main(String[] args) {
            try{
                 Properties props = System.getProperties();
                 props.put(Context.INITIAL_CONTEXT_FACTORY,"com.sun.enterprise.naming.SerialInitContextFactory");
                 props.put(Context.PROVIDER_URL,"iiop://localhost:3700");
                 Context ctx = new InitialContext(props);
                 Hello h = (Hello) ctx.lookup("ejb/test/Hello");
                 System.out.println(h.sayHello());
            }catch(Exception e){
                 e.printStackTrace();
  Please tell me how deploy the EJB in security on the Sun Java System Application Server 9? So that, The client must set the user name and password when lookup the ejb object. Like the following:
  props.put(Context.SECURITY_PRINCIPAL,"admin")
  props.put(Context.SECURITY_CREDENTIALS,"1234");

  Guys,
  I too have the same issue. If anyone has an answer, please let me know.
  Is this GlassFish problem? or Prgram issue?
  Find below the source code
  package TransactionSecurity.bean;
  import javax.annotation.Resource;
  import javax.annotation.security.DeclareRoles;
  import javax.annotation.security.PermitAll;
  import javax.annotation.security.RolesAllowed;
  import javax.ejb.Remote;
  import javax.ejb.SessionContext;
  import javax.ejb.Stateless;
  import javax.ejb.TransactionAttribute;
  import javax.ejb.TransactionAttributeType;
  @Stateless
  @Remote(TSCalculator.class)
  @DeclareRoles({"student", "teacher"})
  public class TSCalculatorBean implements TSCalculator {
       private @Resource SessionContext ctx;
       @PermitAll
  //     @TransactionAttribute(TransactionAttributeType.REQUIRES_NEW)
       public int add(int x, int y) {
            System.out.println("CalculatorBean.add  Caller Principal:" + ctx.getCallerPrincipal().getName());
            return x + y;
       @RolesAllowed( { "student" })
       public int subtract(int x, int y) {
            System.out.println("CalculatorBean.subtract  Caller Principal:" + ctx.getCallerPrincipal().getName());
            System.out.println("CalculatorBean.subtract  isCallerInRole:" + ctx.isCallerInRole("student"));
            return x - y;
       @RolesAllowed( { "teacher" })
       public int divide(int x, int y) {
            System.out.println("CalculatorBean.divide  Caller Principal:" + ctx.getCallerPrincipal().getName());
            System.out.println("CalculatorBean.divide  isCallerInRole:" + ctx.isCallerInRole("teacher"));
            return x / y;
  package TransactionSecurity.bean;
  import javax.ejb.Remote;
  @Remote
  public interface TSCalculator {
          public int add(int x, int y);
          public int subtract(int x, int y);
          public int divide(int x, int y);
  package TransactionSecurity.client;
  import java.util.Properties;
  import javax.ejb.EJBAccessException;
  import javax.naming.Context;
  import javax.naming.InitialContext;
  import TransactionSecurity.bean.TSCalculator;
  public class TSCalculatorClient {
       public static void main(String[] args) throws Exception {
            // Establish the proxy with an incorrect security identity
            Properties env = new Properties();
            env.setProperty(Context.SECURITY_PRINCIPAL, "kabir");
            env.setProperty(Context.SECURITY_CREDENTIALS, "validpassword");
          env.setProperty(Context.INITIAL_CONTEXT_FACTORY,"com.sun.appserv.naming.S1ASCtxFactory");
          env.setProperty(Context.PROVIDER_URL,"iiop://127.0.0.1:3700");
          env.setProperty("java.naming.factory.initial","com.sun.enterprise.naming.SerialInitContextFactory");
          env.setProperty("java.naming.factory.url.pkgs","com.sun.enterprise.naming");
          env.setProperty("java.naming.factory.state","com.sun.corba.ee.impl.presentation.rmi.JNDIStateFactoryImpl");
          env.setProperty("org.omg.CORBA.ORBInitialHost", "127.0.0.1");
          env.setProperty("org.omg.CORBA.ORBInitialPort", "3700");
            InitialContext ctx = new InitialContext(env);
            TSCalculator calculator = null;
            try {
                 calculator = (TSCalculator) ctx.lookup(TSCalculator.class.getName());
            } catch (Exception e) {
                 System.out.println ("Error in Lookup");
                 e.printStackTrace();
                 System.exit(1);
            System.out.println("Kabir is a student.");
            System.out.println("Kabir types in the wrong password");
            try {
                 System.out.println("1 + 1 = " + calculator.add(1, 1));
            } catch (EJBAccessException ex) {
                 System.out.println("Saw expected SecurityException: "
                           + ex.getMessage());
            System.out.println("Kabir types in correct password.");
            System.out.println("Kabir does unchecked addition.");
            // Re-establish the proxy with the correct security identity
            env.setProperty(Context.SECURITY_CREDENTIALS, "validpassword");
            ctx = new InitialContext(env);
            calculator = (TSCalculator) ctx.lookup(TSCalculator.class.getName());
            System.out.println("1 + 1 = " + calculator.add(1, 1));
            System.out.println("Kabir is not a teacher so he cannot do division");
            try {
                 calculator.divide(16, 4);
            } catch (javax.ejb.EJBAccessException ex) {
                 System.out.println(ex.getMessage());
            System.out.println("Students are allowed to do subtraction");
            System.out.println("1 - 1 = " + calculator.subtract(1, 1));
  }The user kabir is created in the server and this user belongs to the group student.
  Also, I have enabled the "Default Principal To Role Mapping"
  BTW, I'm able to run other EJB3 examples [that does'nt involve any
  security features] without any problems.
  Below is the ERROR
  Error in Lookupjavax.naming.NamingException: ejb ref resolution error for remote business interfaceTransactionSecurity.bean.TSCalculator [Root exception is java.rmi.AccessException: CORBA NO_PERMISSION 0 No; nested exception is:
       org.omg.CORBA.NO_PERMISSION: ----------BEGIN server-side stack trace----------
  org.omg.CORBA.NO_PERMISSION:   vmcid: 0x0  minor code: 0  completed: No
       at com.sun.enterprise.iiop.security.SecServerRequestInterceptor.handle_null_service_context(SecServerRequestInterceptor.java:407)
       at com.sun.enterprise.iiop.security.SecServerRequestInterceptor.receive_request(SecServerRequestInterceptor.java:429)
       at com.sun.corba.ee.impl.interceptors.InterceptorInvoker.invokeServerInterceptorIntermediatePoint(InterceptorInvoker.java:627)
       at com.sun.corba.ee.impl.interceptors.PIHandlerImpl.invokeServerPIIntermediatePoint(PIHandlerImpl.java:530)
       at com.sun.corba.ee.impl.protocol.CorbaServerRequestDispatcherImpl.getServantWithPI(CorbaServerRequestDispatcherImpl.java:406)
       at com.sun.corba.ee.impl.protocol.CorbaServerRequestDispatcherImpl.dispatch(CorbaServerRequestDispatcherImpl.java:224)
       at com.sun.corba.ee.impl.protocol.CorbaMessageMediatorImpl.handleRequestRequest(CorbaMessageMediatorImpl.java:1846)
       at com.sun.corba.ee.impl.protocol.CorbaMessageMediatorImpl.handleRequest(CorbaMessageMediatorImpl.java:1706)
       at com.sun.corba.ee.impl.protocol.CorbaMessageMediatorImpl.handleInput(CorbaMessageMediatorImpl.java:1088)
       at com.sun.corba.ee.impl.protocol.giopmsgheaders.RequestMessage_1_2.callback(RequestMessage_1_2.java:223)
       at com.sun.corba.ee.impl.protocol.CorbaMessageMediatorImpl.handleRequest(CorbaMessageMediatorImpl.java:806)
       at com.sun.corba.ee.impl.protocol.CorbaMessageMediatorImpl.dispatch(CorbaMessageMediatorImpl.java:563)
       at com.sun.corba.ee.impl.protocol.CorbaMessageMediatorImpl.doWork(CorbaMessageMediatorImpl.java:2567)
       at com.sun.corba.ee.impl.orbutil.threadpool.ThreadPoolImpl$WorkerThread.run(ThreadPoolImpl.java:555)
  ----------END server-side stack trace----------  vmcid: 0x0  minor code: 0  completed: No]
       at com.sun.ejb.EJBUtils.lookupRemote30BusinessObject(EJBUtils.java:425)
       at com.sun.ejb.containers.RemoteBusinessObjectFactory.getObjectInstance(RemoteBusinessObjectFactory.java:74)
       at javax.naming.spi.NamingManager.getObjectInstance(NamingManager.java:304)
       at com.sun.enterprise.naming.SerialContext.lookup(SerialContext.java:403)
       at javax.naming.InitialContext.lookup(InitialContext.java:351)
       at TransactionSecurity.client.TSCalculatorClient.main(TSCalculatorClient.java:35)
  Caused by: java.rmi.AccessException: CORBA NO_PERMISSION 0 No; nested exception is:
       org.omg.CORBA.NO_PERMISSION: ----------BEGIN server-side stack trace----------
  org.omg.CORBA.NO_PERMISSION:   vmcid: 0x0  minor code: 0  completed: No
       at com.sun.enterprise.iiop.security.SecServerRequestInterceptor.handle_null_service_context(SecServerRequestInterceptor.java:407)
       at com.sun.enterprise.iiop.security.SecServerRequestInterceptor.receive_request(SecServerRequestInterceptor.java:429)
       at com.sun.corba.ee.impl.interceptors.InterceptorInvoker.invokeServerInterceptorIntermediatePoint(InterceptorInvoker.java:627)
       at com.sun.corba.ee.impl.interceptors.PIHandlerImpl.invokeServerPIIntermediatePoint(PIHandlerImpl.java:530)
       at com.sun.corba.ee.impl.protocol.CorbaServerRequestDispatcherImpl.getServantWithPI(CorbaServerRequestDispatcherImpl.java:406)
       at com.sun.corba.ee.impl.protocol.CorbaServerRequestDispatcherImpl.dispatch(CorbaServerRequestDispatcherImpl.java:224)
       at com.sun.corba.ee.impl.protocol.CorbaMessageMediatorImpl.handleRequestRequest(CorbaMessageMediatorImpl.java:1846)
       at com.sun.corba.ee.impl.protocol.CorbaMessageMediatorImpl.handleRequest(CorbaMessageMediatorImpl.java:1706)
       at com.sun.corba.ee.impl.protocol.CorbaMessageMediatorImpl.handleInput(CorbaMessageMediatorImpl.java:1088)
       at com.sun.corba.ee.impl.protocol.giopmsgheaders.RequestMessage_1_2.callback(RequestMessage_1_2.java:223)
       at com.sun.corba.ee.impl.protocol.CorbaMessageMediatorImpl.handleRequest(CorbaMessageMediatorImpl.java:806)
       at com.sun.corba.ee.impl.protocol.CorbaMessageMediatorImpl.dispatch(CorbaMessageMediatorImpl.java:563)
       at com.sun.corba.ee.impl.protocol.CorbaMessageMediatorImpl.doWork(CorbaMessageMediatorImpl.java:2567)
       at com.sun.corba.ee.impl.orbutil.threadpool.ThreadPoolImpl$WorkerThread.run(ThreadPoolImpl.java:555)
  ----------END server-side stack trace----------  vmcid: 0x0  minor code: 0  completed: No
       at com.sun.corba.ee.impl.javax.rmi.CORBA.Util.mapSystemException(Util.java:277)
       at com.sun.corba.ee.impl.presentation.rmi.StubInvocationHandlerImpl.privateInvoke(StubInvocationHandlerImpl.java:205)
       at com.sun.corba.ee.impl.presentation.rmi.StubInvocationHandlerImpl.invoke(StubInvocationHandlerImpl.java:152)
       at com.sun.corba.ee.impl.presentation.rmi.bcel.BCELStubBase.invoke(BCELStubBase.java:225)
       at com.sun.ejb.codegen._GenericEJBHome_Generated_DynamicStub.create(com/sun/ejb/codegen/_GenericEJBHome_Generated_DynamicStub.java)
       at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
       at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
       at java.lang.reflect.Method.invoke(Method.java:585)
       at com.sun.ejb.EJBUtils.lookupRemote30BusinessObject(EJBUtils.java:372)
       ... 5 more
  Caused by: org.omg.CORBA.NO_PERMISSION: ----------BEGIN server-side stack trace----------
  org.omg.CORBA.NO_PERMISSION:   vmcid: 0x0  minor code: 0  completed: No
       at com.sun.enterprise.iiop.security.SecServerRequestInterceptor.handle_null_service_context(SecServerRequestInterceptor.java:407)
       at com.sun.enterprise.iiop.security.SecServerRequestInterceptor.receive_request(SecServerRequestInterceptor.java:429)
       at com.sun.corba.ee.impl.interceptors.InterceptorInvoker.invokeServerInterceptorIntermediatePoint(InterceptorInvoker.java:627)
       at com.sun.corba.ee.impl.interceptors.PIHandlerImpl.invokeServerPIIntermediatePoint(PIHandlerImpl.java:530)
       at com.sun.corba.ee.impl.protocol.CorbaServerRequestDispatcherImpl.getServantWithPI(CorbaServerRequestDispatcherImpl.java:406)
       at com.sun.corba.ee.impl.protocol.CorbaServerRequestDispatcherImpl.dispatch(CorbaServerRequestDispatcherImpl.java:224)
       at com.sun.corba.ee.impl.protocol.CorbaMessageMediatorImpl.handleRequestRequest(CorbaMessageMediatorImpl.java:1846)
       at com.sun.corba.ee.impl.protocol.CorbaMessageMediatorImpl.handleRequest(CorbaMessageMediatorImpl.java:1706)
       at com.sun.corba.ee.impl.protocol.CorbaMessageMediatorImpl.handleInput(CorbaMessageMediatorImpl.java:1088)
       at com.sun.corba.ee.impl.protocol.giopmsgheaders.RequestMessage_1_2.callback(RequestMessage_1_2.java:223)
       at com.sun.corba.ee.impl.protocol.CorbaMessageMediatorImpl.handleRequest(CorbaMessageMediatorImpl.java:806)
       at com.sun.corba.ee.impl.protocol.CorbaMessageMediatorImpl.dispatch(CorbaMessageMediatorImpl.java:563)
       at com.sun.corba.ee.impl.protocol.CorbaMessageMediatorImpl.doWork(CorbaMessageMediatorImpl.java:2567)
       at com.sun.corba.ee.impl.orbutil.threadpool.ThreadPoolImpl$WorkerThread.run(ThreadPoolImpl.java:555)
  ----------END server-side stack trace----------  vmcid: 0x0  minor code: 0  completed: No
       at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
       at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:39)
       at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:27)
       at java.lang.reflect.Constructor.newInstance(Constructor.java:494)
       at com.sun.corba.ee.impl.protocol.giopmsgheaders.MessageBase.getSystemException(MessageBase.java:913)
       at com.sun.corba.ee.impl.protocol.giopmsgheaders.ReplyMessage_1_2.getSystemException(ReplyMessage_1_2.java:131)
       at com.sun.corba.ee.impl.protocol.CorbaMessageMediatorImpl.getSystemExceptionReply(CorbaMessageMediatorImpl.java:685)
       at com.sun.corba.ee.impl.protocol.CorbaClientRequestDispatcherImpl.processResponse(CorbaClientRequestDispatcherImpl.java:472)
       at com.sun.corba.ee.impl.protocol.CorbaClientRequestDispatcherImpl.marshalingComplete(CorbaClientRequestDispatcherImpl.java:363)
       at com.sun.corba.ee.impl.protocol.CorbaClientDelegateImpl.invoke(CorbaClientDelegateImpl.java:219)
       at com.sun.corba.ee.impl.presentation.rmi.StubInvocationHandlerImpl.privateInvoke(StubInvocationHandlerImpl.java:192)
       ... 13 moreAny help is appreciated.
  Regards!
  Nithi.
  Edited by: EJB3 on Aug 17, 2008 8:17 PM

• Error : (F5 263) The difference is too large for clearing in  EBS in t code FF_53wq

  hi
  Could anyone please help in this case, if FEBP can be used to clear the open items automatically.
  Also, the interpretation algorithm used in global config is '001- standard algorithm'.
  Please suggest if automatic clearing of subledger can be achieved in some other way after we run FF_5.
  Thanks in advance
  praveen

  Hi Praveen, The reason for this error is that the clearing information is not getting identified for your bank statement. The clearing information, if successfully identified, gets added in the table FEBCL with the clearing field like XBLNR or BELNR and its corresponding values. Please, search SCN forums for more information on this error as its a very common error and you will find many explanation on SCN for the same. You will also find good blogs on EBS for better understanding of the complete configuration part and process. Thanks & Regards Nikhil Kothari

• I have an old TC (A1302) which I've replaced with the newest version.  I'd like to erase everything from the old TC and, perhaps, resell it.  How do I accomplish the complete erase?

  I have an old TC (A1302) which I've replaced with the newest version (A1470).  I'd like to erase everything from the old TC and, perhaps, resell it.  How do I accomplish the complete erase?

  On your Mac.....
  Open Macintosh HD > Applications > Utilities > AirPort Utility
  Click on the old TC, then click Edit
  Click the Disks tab at the top of the window
  Click Erase Disk
  Select the Zero Out Data option.....which will take 4-6 hours depending on the size of the drive on the old TC......if you plan to sell the TC. If you plan to keep the TC, use the Quick Erase option.....which will only take a few minutes.
  Click Erase
  Click the Base Station Menu at the top of the screen
  Click Restore Default Settings and follow the prompts
  The disk has now been securely erased and the network settings have been reset back to factory defaults.

• OID 10.1.4 / eBS 12.0.6 integration - provisioning profiles vanishing

  We have, after a bit of thrashing, managed to get our OID working with SSO on eBS (lots of alphabet soup there!). We're on OID 10.1.4 and eBS 12.0.6.
  We're seeing an issue where, periodically, the connection profiles in OID, under the provisioning profiles container, will vanish. This causes all users who have new eBS accounts to receive a blank screen after authenticating in SSO. This seems logical, since without the connection profiles, OID doesn't have access to eBS to update the USER_GUID in FND_USER.
  If we rerun deregistration and reregistration, the issue is fixed, but it's sort of a sledge hammer solution.
  Has anyone else seen this issue? Are there processes, like running Autoconfig or OPMN that could cause the profiles to vanish? How about a lock on the FND_USER table?
  Charles

  Hi charles;
  Please check Note:Integrating Oracle E-Business Suite Release 12 with Oracle Internet Directory and Oracle Single Sign-On [ID 376811.1]
  Hope it helps
  Regard
  Helios

• Create users and assigning them security on the Entity dimension

  Hi All,
  I’m working with Hyperion ESSBASE 11.1.1.3 and Hyperion Planning 11.1.1.3 and I have a problem related to create new users (without admin permissions) and assigning them security on the Entity dimension.
  When I access with these users to a Dataform in Planning appears these message:
  “Security and/or filtering has resulted in a required dimension not being represented on this data form”
  I have followed these steps:
  - I have created new users (Native Directory) and provision them against essbase and the planning application in Shared Services.
  - I have expanded the essbase server > security > refresh security from shared services > all users.
  - I have assigned security roles in all members of Entity dimension in Planning.
  - I have refreshed database and security filters in Planning.
  Please help
  Thanks a lot in advance

  Hi,
  You will have to apply security to all the standard dimensions and not just entity, so that will be account, entity, scenario and version.
  Cheers
  John
  http://john-goodwin.blogspot.com/

• Error Provisioning the Federated roles from CUP to enterprise portal

  Hi Gurus,
  Need help. I am trying to provision the roles to enterprise portal using GRC CUP. I have created the connectors and field mapping and the connection is successful. We have a enterprise portal with producer consumer relation ship. The Enterprise portal acts as consumer for the BI portal. The BI portal Roles are federated to Enterprise portal and i get an error "noSuchIdentifier" when I try to provision the federated BI Portal role on the Enterprise portal. I can successfully provision the local portal roles and UME roles on the enterprise portal. I get the error only when trying to provision the roles which are from BI portal.
  Appreciate any help, in this regards.
  Thanks,
  Pavan

  Hi Alma,
  This is one of the security issue.We had faced it sometime back.We searched some CSN's and found a solution.
  Go to Service Market palce and download the latest Cryptographic Tool kit (Service Market place---->software downloads)
  You will get a sca/sda something like tc/iaik./security(something like this)
  Deploy this on to your instance using your SDM.
  After that,Restart the Portal patching.It will go fine.
  reward points if helpful................

• EBS datasource in WebLogic cluster using the EBS dbc file

  Hi All
  Please let me know if someone has successfully created EBS datasource in WebLogic cluster using the EBS dbc file.
  I have successfully created the datasource with one managed server but I am getting 'OAuth Mashaling Failure' error while adding the second managed server to this datasource.
  Thanks

  Thanks Hussein
  Here is the complete error:
  [wlst] Caused by: weblogic.common.ResourceException: weblogic.common.ResourceException: OAUTH marshaling failure
  [wlst] at weblogic.jdbc.common.internal.PooledConnectionEnvFactory.createResource(PooledConnectionEnvFactory.java:133)
  [wlst] at weblogic.common.resourcepool.ResourcePoolImpl.makeResources(ResourcePoolImpl.java:1249)
  [wlst] at weblogic.common.resourcepool.ResourcePoolImpl.makeResources(ResourcePoolImpl.java:1166)
  [wlst] at weblogic.common.resourcepool.ResourcePoolImpl.start(ResourcePoolImpl.java:249)
  [wlst] at weblogic.jdbc.common.internal.ConnectionPool.doStart(ConnectionPool.java:1154)
  [wlst] at weblogic.jdbc.common.internal.ConnectionPool.start(ConnectionPool.java:154)
  [wlst] at weblogic.jdbc.common.internal.ConnectionPoolManager.createAndStartPool(ConnectionPoolManager.java:454)
  [wlst] at weblogic.jdbc.common.internal.ConnectionPoolManager.createAndStartPool(ConnectionPoolManager.java:372)
  [wlst] at weblogic.jdbc.module.JDBCModule.prepare(JDBCModule.java:255)

• TS3694 When updating my Ipad right near the completion of the process i get the error #6 when i clicked onto this to find out what to do it sent me to -48 or 20000 - 200008 and a few more ?  What should I do ? How do I know which one to do ?

  When updating my Ipad 2  right near the completion of the porcess it gave me an error #6  not sure what to do .  I made sure i was update in I tunes before I started process ?  need some assistance ?

  What iOS is on your iPad?
  iPad: Basic troubleshooting
  http://support.apple.com/kb/TS3274
  Update and restore alert messages on iPhone, iPad, and iPod touch
  http://www.buybuyla.com/tech/view/012953a0d412000e.shtml
  iOS: Resolving update and restore alert messages
  http://support.apple.com/kb/TS1275
  From above link:
  Error 2, 4 (or -4), 6, 1000, 9006            
  Follow Troubleshooting security software. Often, uninstalling third-party security software will resolve these errors.
  There may be third-party software that modifies your default packet size in Windows by inserting a TcpWindowSize entry into your registry. Your default packet size being set incorrectly can cause these errors. Contact the manufacturer of the software that installed the packet size modification for assistance or follow this article by Microsoft: How to reset Internet Protocol (TCP/IP).
  Verify that access to ports 80 and 443 are allowed on your network.
  Verify that communication to albert.apple.com or photos.apple.com is not blocked by a firewall, or other Internet security setting.
  Discard the .ipsw file, open iTunes and attempt to download the update again. See the steps under Advanced Steps > Rename, move, or delete the iOS software file (.ipsw) below for file locations.
  Restore your device while connected to a different network.
  Restore using a different computer.
  Therefore - disable your firewall and anitvirus software temporarily.
  iPad: Unable to update or restore
  http://support.apple.com/kb/ht4097
  To update the iOS - If you have an iPad 1, the max iOS is 5.1.1. For newer iPads, the current iOS is 6.0.1. For the iPad Mini the iOS is 6.0.2. The Settings>General>Software Update only appears if you have iOS 5.0 or higher currently installed.
  iOS 5: Updating your device to iOS 5 or Later
  http://support.apple.com/kb/HT4972
  How to install iOS 6
  http://www.macworld.com/article/2010061/hands-on-with-ios-6-installation.html
  iOS: How to update your iPhone, iPad, or iPod touch
  http://support.apple.com/kb/HT4623
  To update your iOS - If you are currently running an iOS lower than 5.0, connect the iPad to the computer, open iTunes. Then select the iPad under the Devices heading on the left, click on the Summary tab and then click on Check for Update.
  Tip - If connected to your computer, you may need to disable your firewall and anitvirus software temporarily.  Then download and install the iOS update. Be sure and backup your iPad before the iOS update. After you update an iPad (except iPad 1) to iOS 6.x, the next update can be installed via wifi (i.e., not connected to your computer).
   Cheers, Tom

• You do not have security permissions to complete this operation. Contact your administrator for more information.

  Hi everyone,
  I had a little trouble finding this on ony forums, so i decided to write it myself.
  I have setup on my Windows server 2008 machine fax server manager. It is working well (recieving faxes and forwarding it through email)
  It has been setup with a d-link external fax modem.
  Everytime i try to connect my client computer (windows vista business 32 bit)  to the fax server through windows keep getting " you do not have security permissions to complete this operation. Contact your administrator for more information."
  I am having a little trouble getting around it as i am the system administrator and have all the rights to do this. I have also added extra to my account fax rights as i thorght, that could of been the problem. I have also added my account in the fax server manager, but that did not work as well.
  Everything is set up on a domain and the server that is running fax service manager is on it aswell, not sure what could be the problem.
  Thank you in advanced for your help

  Hi,
  Thanks for the post.
  First, I would like to confirm if the issue occurs with the Domain Admins.
  If so, please check if the relevant group policies are set appropriate.
  To resolve this issue, make sure that the Network Service account and the Local Service account is added to the following policy settings on the domain controller:
  ·         Adjust memory quotas for a process
  ·         Generate security audits
  ·         Log on as a service
  ·         Replace a process level token
  ·         Log on as a batch job
  To configure the policy settings for the Network Service account on the domain controller, follow these steps:
  1.    Click Start, point to Administrative Tools, and then click Local Security Policy.
  2.    Expand Local Policies, and then click User Rights Assignment.
  The policy settings are displayed in the right pane.
  3.    Double-click the policy setting that you want to add the Network Service account to.
  4.    If the Network Service account and the Local service account is not in the list of users and groups that are assigned to that policy setting, click Add User or Group.
  5.    In the Select User or Groups dialog box, type Network Service in the Enter the object names to select box, and then click OK.
  6.    Verify that NETWORK SERVICE is displayed in the list of users and groups that are assigned to that policy setting, and then click OK.
  7.    Add Local service the same way.
  8.    Reboot the server.
  Does it work?
  If the problem continues, Please collect the MPSReport from Windows Server 2008.
  1. Download proper MPS Report tool from the website below.
  Microsoft Product Support Reports
  http://www.microsoft.com/downloads/details.aspx?FamilyID=CEBF3C7C-7CA5-408F-88B7-F9C79B7306C0&displaylang=en
  2. Double-click to run it, if requirement is not met, please follow the wizard to download and install them. After that, click Next, when the "Select the diagnostics you want to run" page appears, select "General", “Business Networks”, click Next.
  3. After collecting all log files, choose "Save the results", choose a folder to save <Computername>MPSReports.cab file.
  Use Windows Live SkyDrive (http://www.skydrive.live.com/) to upload the file and then give me the download address.
  Hope this helps.

• Web Services validation before provisioning request completes...

  Hi All,
  We are working on Web Services validation before provisioning request completes to see if there are duplicated in target database. Is this possible?
  We want to check in target database for value if exists prior to provisioning the request and fail the provisioning process if the value is duplicate.
  For Eg:
  Input with ApplnID:5221 while provisioning and check in target database if ApplnID:5221 exists and then to continue provision.
  This is similar to what we are executing in our development environment.
  Can you please suggest any idea if you have worked on this earlier
  Thanks,
  Subbu

  xmllint is correct. Here's what the 1.1.3 XSD says (I put in the leading periods to fool the discussion board into preserving structure ):
  . <xsd:element name="ITunesUDocument">
  . . <xsd:complexType>
  . . . <xsd:sequence>
  . . . . <xsd:element ref="Version" minOccurs="1" maxOccurs="1"/>
  . . . . <xsd:element ref="AddCourse" minOccurs="0"/>
  . . . </xsd:sequence>
  . . </xsd:complexType>
  . </xsd:element>
  If "minOccurs" or "maxOccurs" aren't specified in sequence elements, then they both default to "1". So the "minOccurs" and "maxOccurs" specifiers are redundant in the "Version" element specification…they'd be "1" anyway. Setting "minOccurs" to "0" means that you can omit the element in XML…but unless "maxOccurs" is set, than the most any element can appear in the sequence is once to be valid. "unbounded" can be used in "maxOccurs" to set no limit on the number of times it can appear in the sequence.
  Recall that XML doesn't necessarily have to validate to "work". An XML validation is a contract between us and Apple…Apple promises that we can put at least one "AddCourse" in an "ITunesUDocument" and that is going to work, or our money back. But if we don't submit valid XML, it might still work…but there is no promise there either. It might work today, it might fail tomorrow. The iTunes U people have said, in various venues, that we should expect Apple to validate our XML…but nobody's perfect. It could be that Apple just missed this one…but we should still write code under the assumption that the XSD is being correctly applied and that our XML is being validated on Apple's end. That way, our code can never be "wrong".