Find user of same role
Hello,
Here's situation.
I'd like to send e-mail notification to people who are in the same role.
1. Is it possible to get a list of user's e-mail address from rule?
and can i use expression in e-mail template 'to" value?
2.or do i have to user workflowservice like queryobject?
anyone has an example of queryobject?
any comments will be helpful to me.
Thank you.
Best way is to make use of Time Series Function 'AGO' to calculate YEAR AGO BALANCE as a new measure. You can do this in RPD for 10g and in both (RPD + Column formula in Presentation) for 11g. Once you get the previous year balance then its simple to go further and filter values based on prompts.
Refer http://iniu.net/content/obiee-time-comparison-using-time-series-function-ago
or
http://obiee101.blogspot.com/2008/11/obiee-ago-and-todate-series.html
Also, refer oracle tutorial for some guidance (Creating Time Series Section)
http://www.oracle.com/webfolder/technetwork/tutorials/obe/fmw/bi/biee/r1013/bi_admin/biadmin.html#t11
Incase, you are not interested to use Time Function, then follow
http://bischool.wordpress.com/2010/10/27/year-ago-calculation-without-time-series-functions/
Hope this is useful
Similar Messages
-
How to restrict login for multiple users having same Role
Our Web Application is deployed on Tomcat 5.5
The requirement is ?
There are roles in application like "operator", "admin"?
There are multiple users created for each of the above role.
When one user of "operator" role is logged in, then
It should not allow to login for another user of "operator" role.
Also, if user did not log out & application gets close, then
It should not allow to login for another user of "operator" role.
Also, it should not allow to login for multiple requests of same user
(using another browser instance...)
Is it possible using session object?
But, using session object, it will create separate objects for different users,
So here I will not be able to restrict session object creation rolewise.
Also, how to retrieve these multiple session objects created for different users on server?
If anyone is having the solution please reply as soon as possible,
Thank you.To tell you the truth, this is a stupid requirement. It must be an extremely fragile application.
In any case, you will have to write your stuff for that. Probably a filter that on login, logout, and session expiration checks, makes, or removes entries in a DB (using a synchronized resource to prevent race conditions) or possibly even simply in an application context object. -
Mitigation runs against role but not user with same role assignment
Hello, I'm currently running Compliance Calibrator 4.0. I've created a Mitigation Control and assigned a number of Risks to the Mitigation Control.
I've then assigned the Risks in that Mitigation Control to a specific role.
When I run the SoD check, the role no longer shows any issues. This is good and expected.
However, when I run the SoD against a user that has that role assigned the user is reported with issues when no SoD issues should be shown.
Am I missing something? I don't believe I need to assign Mitigation Control to the user, because one day the risk might be valid to that user, but just not for the role I'm trying to mitigate against. Many thanks.Hi Dylan, the system is reacting correctly.
When you mitigate a role, you mitigate the risk associated with the role and under 'Role Analysis' you will see that this role has been mitigated.
However when u run a User analysis, the system will still identify him if there is a 'RISK' associated with the user and this is regardless of whether the associated Role is mitigated or not because what you want to know is the risk of the user and not what roles this user has.
You will need to specifically mitigate the User in order for the mitigation control to show against the User in the report.
This is the same Vice Versa. when you mitigate a User, it also does not mean that all the associated Roles that the user have are mitigated. The risk associated with the roles will still appear when you do 'Role Analysis'
Cheers! -
Find user SAP Portal role in an abap program
Dear all,
We would like to check the SAP Portal role of a Portal user in a R/3 abap program.
do you know if there is a bapi or a RFC module function to do that ?
For example : the user CCDEMO (exists in EP and in R/3 backend) has a Buyer Portal role. In an abap program, I would like to have this information.
Thanks
kind regards
VéroniqueDear all,
We would like to check the SAP Portal role of a Portal user in a R/3 abap program.
do you know if there is a bapi or a RFC module function to do that ?
For example : the user CCDEMO (exists in EP and in R/3 backend) has a Buyer Portal role. In an abap program, I would like to have this information.
Thanks
kind regards
Véronique -
Users with same role but cannot acess/see the restrcited page
Hi, SDN Fellows.
I have a requirement as stated below:
Said, I have Role A, which have WorksetA , that contains Page1, Page2,Page3.
The requirement is: User A was assigned to RoleA, he can see all the pages in the role hierarchy.
But User B was assigned to RoleA too, but I want to restricted this user to see Page3.
In this, case, how should I manage that? Can we set some authorization from the page? If yes, is it going to be troublesome for the system admin to maintain that?
Thanks.
KentHi Kent,
> Can we set some authorization from the page?
No, you can't. Permissions ar set on the unique object within the PCD, this is the role in your case.
The standard scenario is to create two roles A and B, where user A is assigned to both roles and user B only to role B. Role B contains WorksetA and Page3, whereas role A contains WorksetA and Pages 1 & 2 -- an both roles are merged.
By this, you have one navigation structure but user B only sees page3, whereas user A sees all three pages under the workset entry (from the navigational point of view).
See http://help.sap.com/saphelp_nw04s/helpdata/en/53/89503ede925441e10000000a114084/frameset.htm for details.
Hope it helps
Detlev -
Finding roles which has many tcodes in the same role using SUIM
Hello Guru's
If I want to find a role for a t-code will get through SUIM. But now I have a multiple t-codes(eg,100 t-codes) want to find out the exact role in which all the t-codes are there.
Is there any way,please let me know. Thank you
Dina
Edited by: Julius Bussche on Nov 17, 2011 8:45 PM
Subject title made more meaningful...For 100 tcodes in a menu of 1 role you can easily work by elimination:
--> take the most exotic transaction and run it to find the roles.
--> add the role list to the role name select options of the report (this is the trick!) and run it for the next most exotic transaction in a different module unrelated to the first tcode.
--> somewhere around here you should reach a system message stating "No roles found which meet the selection criteria".
--> If you are still going strong here with a long list of functionally differentiated roles then there is a problem.
--> 5th time lucky?
--> Proceed to jail for 2 rounds and do not collect $200 at the start...
--> etc
Same goes for the Users by Complex selection criteria when you have a 4th object to check with an AND operator. Choose the most exotic one first and add the result to the select options for the user name.
Cheers,
Julius -
I want to retrieve the roles assigned to custom group progrmatically and assigning the same roles to new user?
Hi,
According to your post, my understanding is that you want to retrieve the Role of a custom sharepoint Group Progrmatically and also assigning the same roles to new user.
To retrieve the Role of a custom sharepoint Group, you can refer to:
http://www.sharepointfix.com/2011/05/find-rolepermissions-of-currently.html
To assign the same roles to new user, you can refer to:
http://msdn.microsoft.com/library/Microsoft.SharePoint.SPRoleAssignment
Best Regards,
Linda Li
Linda Li
TechNet Community Support -
When I try to use spellcheck, I get the "Cannot find the User dictionary". It has always worked in the past and when I go to choose the main dictionary, it just goes back to the same line, cannot find user dictionary.
Have you ever created a user dictionary? You have to manually create one, AppleWorks won't do for you. The user dictionary & any other dictionaries belong in the AppleWorks Essentials folder which belongs in the AppleWorks 6 folder in Applications.
Deleting & reinstalling AppleWorks from the original disk will not delete your files unless you have saved them in the application folder. The Mac OS creates a separate Documents folder for your files & that is where the documents you created should be.
Unless all of your documents are AppleWorks 6 word processing documents, Pages alone is not sufficient. The iWork applications - Keynote, Pages & Numbers - can only open AppleWorks 6 presentation, word processing & spreadsheet documents, respectively. They will not open any other type of AppleWorks 6 files or any AppleWorks 5 or any version of ClarisWorks files. -
Same select (user, name, profile, role, table_name, privilege table)
hello Everyone
1.- i don't know how to merge the two qys to see in the same select (user, name, profile, role, table_name, privilege table)
Im using the tables usuarios and view dba_users : See next qry
SELECT Nvl(US.IDUSUARIO,DU.USERNAME) USUARIO,
US.DESCRIPCION NAME,
ACCOUNT_STATUS STATUS,
DU.PROFILE,
CREATED FECHA_CREACION
FROM USUARIOS US,
SYS.DBA_USERS DU
WHERE DU.USERNAME = US.IDUSUARIO(+)
UNION
SELECT Nvl(US.IDUSUARIO,DU.USERNAME) USUARIO,
US.DESCRIPCION NAME,
ACCOUNT_STATUS STATUS,
DU.PROFILE,
CREATED FECHA_CREACION
FROM USUARIOS US,
SYS.DBA_USERS DU
WHERE DU.USERNAME = UPPER(US.IDUSUARIO)
ORDER BY NAME;
this extract me, USER, REAL NAME, STATUS, PROFILE, CREATION_DATE
JP01 Johan Pena OPEN DEFAULT 05-07-2010
on the other hand:
select * from role_tab_privs
this extract me, ROLE, TABLE_NAME and PRIVILEGE
DBA TABLE1 SELECT
DBA TABLE1 INSERT
DBA TABLE2 DELETE
1.- i don't know how to merge the two qys to see in the same select (user, name, profile, role, table_name, privilege table)
2.-i want something like this.
USER, REAL NAME, STATUS, PROFILE, CREATION_DATE ROLE, TABLE_NAME PRIVILEGE
JP01 Johan Pena OPEN DEFAULT 05-07-2010 DBA TABLE1 SELECT
JP01 Johan Pena OPEN DEFAULT 05-07-2010 DBA TABLE1 DELETE
Ect Ect. Ect.
who can HELP ME.I have part understood your requirement and assumed the rest! Hence, I have used dba_role_privs in addition to the list of tables you used.
Also, I think your LEFT OUTER JOIN on sys.dba_users is incorrect. I think you are trying to get all users from USUARIOS table for which roles / privileges exist in the database. If that is what you want the following query should help out. If not change the LEFT keyword in the MAIN query (NOT the one in WITH clause) to RIGHT but the results might be unpredictable.
Note: Using ANSI standard keywords for JOIN allows you to use functions in the JOIN clause (such as UPPER(column name), which the Oracle propreitary notation does not allow and hence made you opt for the UNION option).
WITH OS AS
SELECT
DU.USERNAME
,DU.ACCOUNT_STATUS
,DU.PROFILE
,DU.CREATED
,DRP.GRANTED_ROLE
,RTP.TABLE_NAME
,RTP.PRIVILEGE
FROM
sys.dba_role_privs drp
LEFT OUTER JOIN
role_tab_privs rtp
ON
( drp.granted_role = rtp.role )
LEFT OUTER JOIN
sys.dba_users du
ON
( du.username = drp.grantee )
SELECT
NVL (US.IDUSUARIO, OS.USERNAME) USUARIO
,US.DESCRIPCION NAME
,OS.ACCOUNT_STATUS STATUS
,OS.PROFILE PROFILE
,OS.CREATED FECHA_CREACION
,OS.GRANTED_ROLE ROLE
,OS.TABLE_NAME TABLE_NAME
,OS.PRIVILEGE PRIVILEGE
FROM
USUARIOS US
LEFT OUTER JOIN
OS -- temporary result set created using WITH clause above
ON
UPPER (US.USERNAME) = OS.USERNAME
ORDER BY 2 ;Edited by: VishnuR on Jul 5, 2010 8:44 PM
Edited by: VishnuR on Jul 5, 2010 8:47 PM -
Find users with Role A and Role B but not Role C
Hi all.
How can I find users that have a combination of roles? The find user and user reports only have one line for selecting a role the user has. Is there a report that lets you select multiple roles? It would be really handy!
Thanks,
JimIf you haven't found it, there are likely no such reports, but it is easy to do that in a custom report. The problem is that its really badly documented how to make a custom report. But, it's really not that difficult if you know what to do. I will, when I get some spare time, post a guide here on how to make a custom report, the way I, and some other people, think it should be done.
Roughly a custom report consists of three parts, a listing object, to make the report turn up in the report list, a report form, and the report WF. The trick is to know the correct subtypes, attributes and such.
But take a look here Sunday, and there will possibly be a nice custom report guide posted. -
Give same role to multiple users in CUA
Hi gurus
Urgent!!!!!! need help
How do I give same roles to multiple users in CUA without going to user id and giving access to the same role individually in CUA.SU10 or SECATT
Edited by: John Navarro on Feb 22, 2008 10:22 PM -
User cannot move WBS element even though both users were assigned same role
If same roles have been assigned to 2 users, with same authorization values in all authorization objects for both users, but one user can move WBS element and the other cannot. Can anyone tell me why this happens?
Hi,
If parameters are also same, then check whether the roles were properly added. you can do profile generation again. Some times it may not updated the buffer of the user due to some temporary problem in the system.
If still the problem exist, check with the functional team whether there is any other restriction presents other than authorization to SAP system.
Regards,
Sandip. -
Users have more than one profile for the same role
Hello,
As I said in my earlier post I'm rather new to SAP.
I'm doing now the security audit of my SAP system. In particular, I'm checking whether business users have access to DEBUG functionality.
I have run report 'Users by complex selection criteria' and found certain number of such users. Then I looked further and discover that all these users have role X assigned to them. The profile P2 of the role X displayed in PFCG has DEBUG functionality deactivated. After second look I discovered that all these users have earlier profile P1 for the same role X assigned to these users. This profile P1 contains the functionality in question.
I solved the issue by revoking the role X from the users and assigning it again. Both P1 and P2 profiles were removed from the users and only P2 was reassigned again.
I used to think that role may have only the profile that is displayed in PFCG? Also, I used to think that if the role profie is regenerated the newly generated profile automatically replace the old one assigned to users. Am I wrong?Hi Pavel
In simple and short ..
Role contains authorization objects..
Maximum limit of authorization objects for a role is 150 .
So a role can accommodate 150 authorization objects.
New Profile ABC is created , when ever you create a new role. 1-1 relation.
But if a role has more than 150 authorization objects .. then automatically a new profile ABC01 will be created and it will also be aligned to that role .
if role has 400 auth objects, then profiles will be ABC ,ABC01 ,and ABC02
i hope this helps you
Cheers
Pavan M -
Two user with same profile and role having different authorization
Dear All,
I have very strange case of authorization . We have a new abap developer in our company . Her profile as copied from an exiting abap developer's profile in Development system. But she don't have authorization for lot of transaction that the existing user have. I checked the profile tabs , role tabs . then done the user compare for all the roles , but of no use.
I did a compare of the two uses using S_BCE_68001430 and could see is that the existing abap user is having authorization starting with T_PXXXXXXXX that is giving him extra rights. These authorization is not present in any of the existing role he is assigned to (checked using S_BCE_68001396). The authirsaction in the roles start with T-DXXXXXXXX
Will appreciate if any one can give any input . The problem is i need to assign each authorisation the existing user having manually to the new user.
regards
TonyThanks for the mail.
I check the "Reference User for Additional Rights" -- there is no refernce user assgined.
I checked the table USR04 the no. of Profle for the two users are diffrent and in the table UST04 also the the existing uer is having addtional profiles.
I like to add one more point Some of the roles of the two users are composite roles and both the composite and its orignial roles are included the profile of both users.
Does any one have idea of the authorisations starting with T_PXXXXXXXX
regards
tony
MANDT BNAME PROFILE
100 CHARLHO B_LSMW_ALL
100 CHARLHO T-D1780054
100 CHARLHO T-D1780057
100 CHARLHO T-D1780058
100 CHARLHO T-D17800581
100 CHARLHO T-D1780075
100 CHARLHO T-D17800751
100 CHARLHO T-D1780086
100 CHARLHO T-D17800861
100 CHARLHO T-D17800862
100 CHARLHO T-D17800863
100 CHARLHO T-D17800864
100 CHARLHO T-D1780087
100 CHARLHO T-D1780088
100 CHARLHO T-D1780247
100 CHARLHO T-D1780304
100 CHARLHO T-D1781182
100 CHARLHO T_P0920411
100 CHARLHO T_P09204111
100 CHARLHO T_P092041110
100 CHARLHO T_P09204112
100 CHARLHO T_P09204113
100 CHARLHO T_P09204114
100 CHARLHO T_P09204115
100 CHARLHO T_P09204116
100 CHARLHO T_P09204117
100 CHARLHO T_P09204118
100 CHARLHO T_P09204119
100 TESTUSER2 B_LSMW_ALL
100 TESTUSER2 T-D1780054
100 TESTUSER2 T-D1780057
100 TESTUSER2 T-D1780058
100 TESTUSER2 T-D17800581
100 TESTUSER2 T-D1780075
100 TESTUSER2 T-D17800751
100 TESTUSER2 T-D1780086
100 TESTUSER2 T-D17800861
100 TESTUSER2 T-D17800862
100 TESTUSER2 T-D17800863
100 TESTUSER2 T-D17800864
100 TESTUSER2 T-D1780087
100 TESTUSER2 T-D1780088
100 TESTUSER2 T-D1780247
100 TESTUSER2 T-D1780304
100 TESTUSER2 T-D1781182 -
HI,how to find user gorps roles?
hi,
In my system i have many usergroups.
each usergroup having one to many roles.
how to find out and display roles
for each usergroup?
can any one help me,
thanks,
jpullareddyhi,
i solve my self.
i am getting values
jpullareddy
Maybe you are looking for
-
HD 1080i to SD DVD (anamorphic)
Hi there, I've searched around and have surprisingly not found anyone with this question: How do you go from 1080i to an anamorphic SD DVD? What I have done is the following: In FCP 5, create new sequence. There is not a sequence preset that offers 1
-
Pdf not opening with _blank in Safari Mac, opens fine in Firefox, IE7
We have pdf's ('secured' using Acrobat Pro, on a password protected site) that open fine, using _blank, in IE7 Win and also download fine with Firefox - but will only give a blank page in Safari Mac (generally latest versions of the browsers). We ha
-
SOAP Axis sender with CSV file attachment
Hi Experts, I have a requirement where I receive a CSV file attachment from a Web Service post ( i.e a SOAP sender with attachment). I decided to use SOAP with Servlet(Axis) protocol, since standard SOAP sender does not allow modules to be used. I am
-
Okay so I'm trying to download Adobe Flash Pro. I've gone to creative cloud and downloaded "Flash Professional CC and Mobile Device Packaging (2014)" and I have no idea what to do afterwards... There's no way to open or run the file. And to be honest
-
Alternate sort in interactive report
Hi, I have several interactive reports where I need to enable sort on a column where the sort order is "custom" (I mean, not alphabetical nor numeric). In other words, I want to display one column, but sort using another one when I select a sort icon