End User Logon

Similar Messages

• Header text change in End User Logon page

  Hello All,
  Could you please let me know where can i change the Header text of End User logon page which is SAP GRC Access Control, 10 to an different description.
  Thanks in advance.

  Hi Abhi,
  Go to SE80
  Go to Package GRAC_ACCESS_REQUEST -> Web Dynpro -> Web Dynpro Application -> GRAC_UIBB_END_USER_LOGIN
  Open the webdynpro in Admin mode and then right click on the page and you can Edit whatever text you want in End User Logon page as well as can enable and disable fields according to your requirement.
  Regards,
  Madhu

• Batch file for End Users SAP logon pad update.

  Hi All,
  We need to make sure that some of the new systems are updated in the end users logon pad. I know that on the logon pad itself a user can create an entry for the new Server but is it possible to create a batch file that will automatically update the logon pad, when ran.
  If yes, then can someone guide me on the steps.

  the logon pad relies on a few files:
  saplogon.ini
  sapmsg.ini
  and another one less used:
  sapgraph.ini
  so, all you have to do is to copy these files from a distribution server, upon the next saplogon restart, it will use the new config.

• GRC AC 10.1 - End User Login - Request issue

  Hi experts!
  Im working in GRC AC 10.1 SP07. I have configured END USER LOGIN services; the idea is that end user from ECC system could submit request without having user in GRC box, this is working fine but i´m experimenting next problem.
  When i go to search request, those request submited by end user appears like created by Z_END_USER, this is the user in GRC that i have configured in services GRAC_UIBB_END_USER_LOGIN and GRAC_OIF_REQUEST_SUBMISSION_EU.
  ¿Is possible to configure that request appears "Created By" the requester and not the service´s user? I don´t think so, but if not, ¿is there any way to add the column User ID in Result screen? because it is avaible in parameters search but im not being able to add this in result screen (it´s not like hidden neither).
  Parameters "Created by user ID" would be service´s user and "User ID" would be the requester.
  Thanks!
  Emiliano

  Hi Emiliano,
  Your understanding is correct, request created by UserID will always show GUEST UserID configured in the End User Logon service.
  In search requests there is option to search requests by UserID but the same field has not been enabled to be available in Search Request result screen. This is as per standard functionality. You can check with SAP or can work with ABAPer to make the UserID column as display field in Search Request results.
  Regards,
  Madhu.

• Personalization preview okay but doesn't show for end user

  Hi,
  I've built a folder structure for iviews, pages, worksets, and roles and then delta linked across the standard ESS iviews into my new iview folder. I've done the same with the pages and then updated the page with the copied iview and from there built up the worksets and roles.
  I've then gone into the role down to a page, previewed it and made some personalisation changes to field labels. This all seems to work fine but then the personalization changes are not being seen when I go and view the ess screens direct (either with an end-user logon or with my admin user viewing the screens direct).
  All users are assigned the role through which I've made the personlisation changes.
  Am I missing something. My understanding is that the personalisation changes in the role will be seen by all those that use the role i.e. ESS role within com.xyz.
  Are there other things I can check?
  Any help much appreciated.
  We're on NW 7.0 EHP1.
  Regards
  Phil

  Hi Gopal,
  Thanks for your response. Unfortunately no personalization at any level is showing from an end-user view.
  One thought.... are changes required to the "URL of PCD Page" in the homepage framework to point at the new role location?
  For example the personal information page points at resource EMPLOYEE_PERSINFO_ERP2005_PAG which currently has a PCD location set as:  ROLES://portal_content/com.sap.pct/every_user/com.sap.pct.erp.ess.bp_folder/com.sap.pct.erp.ess.roles/com.sap.pct.erp.ess.employee_self_service/com.sap.pct.erp.ess.employee_self_service/com.sap.pct.erp.ess.area_personal_information/
  com.sap.pct.erp.ess.area_personal_information
  I've not read anywhere that this needs to change (to point at com_<companyname>) , but maybe it does?

• END USER TRAINING

  Dear Gurus:
  Please tell me what should be the contents of End User Training. In which area end user need to be trained after Implementing SAP HR?
  Thanks in Advance
  Regards,
  Rashmi

  Hi Rashmi,
  We should assume the  end user is a neophyte and minute of things like loging in to system,multiple logon ,sap window and its listing appearin on tool bar,status bar,appllication bar etc,working on sevarl sessions,tcodes ,using the navigation area,help features,how one must enter values in fields.snap shot of everything discussed with help a great deal.
  what is infotype,subtypes,Infotypes used in HR module,Structure in Human Resources(ent,pers,org structure)
  illustration of org units  in your client,how org units,positions,job are created ,relationships snap shot ,
  Personnel Actions  configured for client
  hiring ,sepration action shap shot
  in a nutshell the focus should be  preparing a doc that has Navigating SAP ERP,SAP HR Overview,SAP HR in client place
  this could serve as end user doc and training the same can be used to demonstrate them in the system.
  http://www.sap-img.com/general/what-are-sap-end-user-manual.htm
  Hope it helps
  No Worries
  Kg
  Edited by: SAPenjoy:) on Sep 8, 2010 7:28 AM
  Edited by: SAPenjoy:) on Sep 8, 2010 7:45 AM

• End user and password change

  Hi.
  I have a small application running on 3.0.
  I created 10 end-users with a dummy password as "not developers" and "not administrators". Further I marked for change password at next logon.
  However, users are able to logon using the the link from the logout page directly into the application without changing the password. Also, the "FIRST_PASSWORD_USE_OCCURED" = N in table wwv_flow_fnd_user.
  Change_password_on_first_use is Y.
  Anyone seen this before?
  rgds
  Kjell Ove

  Alex,
  Connect as the Application Express product schema, e.g., FLOWS_030000 for version 3.0. Unlock this account first if it is locked or simply connect as SYS and alter session set current_schema=flows_030000. Then:
  select value from wwv_flow_platform_prefs where name='MAX_LOGIN_FAILURES';
  That should show the 9999999... value. You can update that row with a new value.
  We'll look into fixing this problem. Thanks for the info.
  Scott

• End user login to CI server

  Hello,
  In R/3 landscape there are 4 Application servers  and CI Cluster (2 separate servers) and DB Cluster (2 separate servers)
  In one of the CI Server,  Message server and Enrique server  is running.   (allocated virtual IPs for this  MSG server & ENQ server)
  (End user will connect to the message server)
  So when a request comes to message server, it will direct the request to one of the Application servers.
  So according to the setup, all the users should reside in the Application servers. End- users are not allowed to login to CI server.
  Only BASIS admins can login to this.
  But when checking using al08, time to time  it shows few users are login to this CI server (erpcv)
  How this happens, Is that a problem with the message server or any other issue !!!
  regards,

  You need to configure your servers in logon groups (SMLG) and distribute the correct logon groups to the users.
  My assumption, There may be few users have SAPGUI points to directly to CI.
  We also have 4 apps and 1 CI/MS and DB as cluster, but have allowed users to logon to all the servers (4 apps + 1 CI) this is due to nothing is running on CI+MS and technically speaking waste of CI resources if you are not allowing users to logon and using system.
  Don't worry SMLG (load balancing) will take care of distributing the load.

• How to create a LOGIN Form & LOGIN ID & PASSWORD for END USERS

  hi,
  i have just created a Database and Forms & Reports using developer 6i.
  now i want to deleiver that Database to end users, but i dont know that how to create a LOGIN Form for the end users and also i want to assign each user a Login ID & Password.
  Plz help me to solve out this problem.

  1. Create the user accounts on the database CREATE USER ... IDENTIFIED BY...
  2. Grant CONNECT Role to the Users
  3. in the main form (the one which is being called initially at runtime) in the ON-LOGON-Trigger create a CALL_FORM() to the Login Form
  4. The Login Form will be called; build a Block with username, password and a Button
  5. In the Button call the LOGON Built-In
  6. Control will be passed to the initially called form again
  I also noticed a thread in here explaining this in more detail...
  Message was edited by:
  user434854

• Waiting for user logon...

  Hi,
  we're currently experiencing issues with random applications refusing to install with the message 'Waiting for user logon'. I'm seeing this in Software Center so obviously someone is logged on. It doesn't seem to matter if I'm logged in via RDP or directly
  on the pc. I've gone through the basics with the deployment monitoring tool and skimmed through some logs but nothing jumps out.
  I have to admit, I don't know a lot about sccm 2012 as it's no longer my area so my experience and training is mostly limited to sms / sccm 2007. I do know that the current guys running know very little and anything that doesn't work is a "known microsoft
  issue" - only they can never point you to a KB. I now work mostly in remediation of legacy apps to win 7 / x64 but being as it's not installing it's considered broken so naturally it has become my problem.
  Any help with this would be greatly appreciated!

  I attempted a CCMRepair on this client, and it didn't make a difference. I haven't yet uninstalled and reinstalled the client completely yet. 
  The CcmExec log shows (every time user logs in), that there's a login detected, and it shows it on session 2:
  Registering for Logon/Logoff notifications.
  Found user S-1-5-21-4083790691-3944967354-608316658-65900 on session 2
  Added CCM (user, session) is: (S-1-5-21-4083790691-3944967354-608316658-65900,2).
  No cached user during RegisterForLogon.
  New CCM (user, session) is: (S-1-5-21-4083790691-3944967354-608316658-65900,2).
  User 'S-1-5-21-4083790691-3944967354-608316658-65900' is logged on to session 2 during RegisterForLogon.
  Watching the other sccm logs as it attempts to install this application that's currently Waiting for User Logon, it essentially does this several times a second for a while. This is 10 minutes after the login log noted above. It is showing the correct
  user SID, but no session (-1). The logs were merged chronologically, and the log is noted at the end of each line where it came from.
  State message(State ID : 2002) with TopicType 1702 and TopicId MyVendorId/RequiredApplication_4a14ecbe-f411-41a6-b096-d0625d462d25/5 has been recorded for S-1-5-21-4083790691-3944967354-608316658-65900
  StateMessage
  The target instance path is CCM_Application.Id="MyVendorId/Application_4a14ecbe-f411-41a6-b096-d0625d462d25",Revision="5",IsMachineTarget=0
  CCMSDKProviderRaising client SDK event for class CCM_Application, instance CCM_Application.Id="MyVendorId/Application_4a14ecbe-f411-41a6-b096-d0625d462d25",Revision="5",IsMachineTarget=0,
  actionType 23l, value , user S-1-5-21-4083790691-3944967354-608316658-65900, session 4294967295l, level 0l, verbosity 30l
  CIAgentState message with TopicType 1702 and TopicId MyVendorId/Application_4a14ecbe-f411-41a6-b096-d0625d462d25/5 has been updated
  StateMessage
  The action type is 23
  CCMSDKProvider
  The user SID is S-1-5-21-4083790691-3944967354-608316658-65900
  CCMSDKProviderThe logon session ID is -1
  CCMSDKProvider
  The message level is 0
  CCMSDKProvider
  The verbosity is 30
  CCMSDKProvider
  The value is
  CCMSDKProviderJob({E9FD9460-DC59-434D-9661-45C96253174E}): Setting
  priority to 5 : Task(MyVendorId/RequiredApplication_4a14ecbe-f411-41a6-b096-d0625d462d25.5.Enforce)
  CIAgent
  CCIStateStore::SendStateMessages - ModelName: MyVendorId/RequiredApplication_4a14ecbe-f411-41a6-b096-d0625d462d25, Version:5 UserID:S-1-5-21-4083790691-3944967354-608316658-65900, Priority: 5
  CIStateStore
  CIStateStore
  An existing CI state is changed
  CIStateStore
  [MyVendorId/RequiredApplication_4a14ecbe-f411-41a6-b096-d0625d462d25:5] CIEnforceState changed: Enforcing --> WaitingForUserLogon
  CIStateStore
  [MyVendorId/RequiredApplication_4a14ecbe-f411-41a6-b096-d0625d462d25:5] AreDetailsUpdated: No
  CIStateStore
  CIStateStore
  GetAllInstances - 1302 instance(s) of 'CCM_StateMsg' found
  StateMessageProvider
  State message with TopicType 1701 and TopicId MyVendorId/RequiredApplication_4a14ecbe-f411-41a6-b096-d0625d462d25/5 has been updated
  StateMessageGetAllInstances - 1302 instance(s) of 'CCM_StateMsg' found
  StateMessageProvider
  Job({2C94A554-48CE-4CB6-9B70-6AC79B8A6B58}): Already Completed : Task(MyVendorId/RequiredApplication_4a14ecbe-f411-41a6-b096-d0625d462d25.5.Enforce)
  CIAgentCCIStateStore::SendStateMessages - ModelName: MyVendorId/RequiredApplication_4a14ecbe-f411-41a6-b096-d0625d462d25,
  Version:5 UserID:S-1-5-21-4083790691-3944967354-608316658-65900, Priority: 5
  CIStateStore
  CIStateStore
  An existing CI state is changed
  CIStateStore[MyVendorId/RequiredApplication_4a14ecbe-f411-41a6-b096-d0625d462d25:5]
  CIEnforceState changed: WaitingForUserLogon --> Enforcing
  CIStateStore[MyVendorId/RequiredApplication_4a14ecbe-f411-41a6-b096-d0625d462d25:5]
  AreDetailsUpdated: No
  CIStateStore

• You don't have access to any End User Layer table

  Hi
  When I created a EUL using Discoverer admin, and also created a business area successfully, then I can't logon using same username in Discoverer desktop, My Discoverer version is 4.1.37. when I logon, I received error message read: You don't have access to any End User Layer table.
  Could someone please give me some instruction, or guide me to do something.
  .

  Hi Prathima
  You should not be able to connect to an Apps mode EUL as an end user in the end user tools.
  As for administration, you need to log in as the owner of the EUL, a database user, and then assign admin rights to an Apps account. Many companies use the SYSADMIN Apps account for this purpose. After you have assigned an Apps user to have admin rights don't forget to grant that user admin privileges over each of your business areas.,
  With this done you should then manage your Discoverer administration using the Apps account.
  Page 14 to 20 of the document called Setting up an Apps mode EUL may help. This document is available for free from my website here: http://ascbi.com/downloads/downloads.htm
  Best wishes
  Michael

• Administrator's notifications to end users.

  Hello,
  we do not have portal, but would like to know is there any simple solution to include admin's notifications to end users on the page of the transaction bbpglobal.
  I would like to have it on the left side of the page, under the long descriptions of the transactions.
  TIA
  Gordan

  Hello Gordan,
  With transaction SM02, you can define system messages. They can appear in first screen after logon if you define it the logon configuration of service bbpstart.
  IIs that what you are looking for ?
  Rgds,
  Pierre

• Imlpementing EULA / end user declaration using OIM/OAM

  Hi,
  We have a requirement in which we have to make user accept EULA /end user declaration prior to adding details in portal, does any one has pointers on how to do the same using OIM/OAM.
  Early response would be much appreciated.

  I would have done it in this way: Assuming you have decent knowledge of using existing components of OOTB connector for re-usability. Also I have never tried this, its just an approach which could possibly work.
  - The only way for an end user to change its own password in OIM is via self-service which means the tcUtilityFactory would be instantiated by the user itself. If that is the case then you can obtain the User ID in the pre-insert entity adapters/plugin. Now when the password reset operation is being done, you can check the User ID of the Logged In user and the Target User and take a decision whether it was the user itself or some other admin.
  - If it was some other admin then you can set the Force Password Change at next Logon check-box in the User Profile to true.
  - Now modify the Change User Password task to use the IT Resource connection credentials if that check box is selected to create a connection OR use the credentials form the Process Form if that check box is not selected.
  This way the connection to the LDAP would be done via the user itself if it was a self-service password reset and your LDAP Policy would have no complaints.
  Assumption The user has the permissions to establish a JNDI connection with SDS and modify its own account which I am sure would be there.
  Thanks
  SRS

• Is there a way for an end user to see who has membership in a security group

  Windows Server 2008 R2
  Active Directory Domain
  Windows 7 workstations
  I am looking for a way that my end users can look at a folder security tab and then discover who has membership in the security groups listed.
  Is that possible? Any drawbacks or concerns?

  Hi Tod,
  Based on my research, other than viewing group membership in ADUC, we can use this PowerShell cmdlet
  Get-ADGroupMember GroupName and Net Group GroupName to view members in a group:
  However, these commands can only be used on Domain Controllers or when connecting to DCs remotely. That’s because accounts and account membership are stored on Domain Controllers, therefore we can only view group membership on DCs.
  More information for you:
  Viewing the Direct Members of a Group
  http://technet.microsoft.com/en-us/library/dd391915(v=WS.10).aspx
  Net group
  http://technet.microsoft.com/en-us/library/cc754051.aspx
  Best Regards,
  Amy

• Jabber for Mac - End User unable to Cut & Paste Images in IM

  Full discloure: I am an END USER, not an IT admin or anything like that. Not sure if this is the proper forum to ask this question but figured it was worth a shot...
  Running OSX 10.9.1 and Jabber 9.2.1.
  I am unable to copy-and-paste images into IM conversations with co-workers.
  My "cachedPresenceConfigStore.xml" file shows:
  "<im_cutandpaste_enabled>TRUE</im_cutandpaste_enabled>"
  and
  "<screen_capture_enabled>TRUE</screen_capture_enabled>"
  ...yet these functions seem to be missing from the IM client. As far as I know our organization's service-side policy allows for sending images over IM (confirmed this using the jabber client on a windows machine).
  Am I just "doing it wrong" somehow? Is there some special method I need to use to be able to paste images into an IM conversation?
  Any help or direction is appreciated.
  Thank you,
  Jason

  It appears they disabled it server-side as the button (a paperclip) normaly appears to the right of the emoticon button. While the jabber-config.xml file can block specific file extensions, it cannot disable the feature entirely. This is done within the Service Parameters of the server, which only an admin can see.
  ProcedureStep 1 Choose Cisco Unified CM IM and Presence Administration > System > Service Parameters.Step 2 From the Server menu, choose an IM and Presence node .Step 3 In the Service Parameter Configuration window, choose Cisco XCP Router as the service.Step 4 From the Enable file transfer drop-down list, click On or Off.Step 5 Click Save.Step 6 Restart the Cisco XCP Router Service on every node in the cluster. For more information, see Restart CiscoXCP Router service, on page 43.
  http://www.cisco.com/en/US/docs/voice_ip_comm/cucm/im_presence/deployment/9_1_1/CUP0_BK_D5B4C107_00_deployment-guide-for-imp-91.html
  Please remember to rate helpful responses and identify helpful or correct answers.